{
  "source_url": "https://github.com/xairy/linux-kernel-exploitation",
  "source_raw_url": "https://raw.githubusercontent.com/xairy/linux-kernel-exploitation/master/README.md",
  "generated_at": "2026-07-04T15:22:46.617Z",
  "node_count": 1711,
  "nodes": [
    {
      "id": "49b14dff481f3a51",
      "item_id": "baa8f834dcb0a78e",
      "slug": "undated-follow-on-x-on-mastodon-or-on-bluesky-to-be-notified-of-updates-primary-8a84121b",
      "year": null,
      "title": "Follow on X, on Mastodon, or on Bluesky to be notified of updates.",
      "item_title": "Follow on X, on Mastodon, or on Bluesky to be notified of updates.",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "",
      "subsection": "",
      "section_path": "",
      "category": "Other",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://x.com/andreyknvl",
      "primary_url": "https://x.com/andreyknvl",
      "parent_primary_url": "https://x.com/andreyknvl",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation",
      "raw_path": "/raw/undated-follow-on-x-on-mastodon-or-on-bluesky-to-be-notified-of-updates-primary-8a84121b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Follow on X, on Mastodon, or on Bluesky to be notified of updates. record_kind: linux-kernel-resource-url section: none subsection: none category: Other item_title: Follow on X, on Mastodon, or on Bluesky to be notified of updates. resource_label: primary resource_type: article resource_url: https://x.com/andreyknvl parent_primary_url: https://x.com/andreyknvl source_section_url: https://github.com/xairy/linux-kernel-exploitation source_item: Follow [@andreyknvl](https://x.com/andreyknvl) on X, [@xairy@infosec.exchange](https://infosec.exchange/@xairy) on Mastodon, or [@andreyknvl](https://bsky.app/profile/andreyknvl.bsky.social) on Bluesky to be notified of updates. cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel ra",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://x.com/andreyknvl"
        },
        {
          "label": "@xairy@infosec.exchange",
          "type": "article",
          "url": "https://infosec.exchange/@xairy"
        },
        {
          "label": "@andreyknvl",
          "type": "article",
          "url": "https://bsky.app/profile/andreyknvl.bsky.social"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://x.com/andreyknvl"
          },
          {
            "label": "@xairy@infosec.exchange",
            "type": "article",
            "url": "https://infosec.exchange/@xairy"
          },
          {
            "label": "@andreyknvl",
            "type": "article",
            "url": "https://bsky.app/profile/andreyknvl.bsky.social"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Other",
      "summary_en": "Undated Linux kernel Other resource \"Follow on X, on Mastodon, or on Bluesky to be notified of updates.\"; URL type: article.",
      "summary_zh": "未标年份 Linux 内核Other资料：「Follow on X, on Mastodon, or on Bluesky to be notified of updates.」；URL 类型：article。",
      "source_markdown": "Follow [@andreyknvl](https://x.com/andreyknvl) on X, [@xairy@infosec.exchange](https://infosec.exchange/@xairy) on Mastodon, or [@andreyknvl](https://bsky.app/profile/andreyknvl.bsky.social) on Bluesky to be notified of updates.",
      "search_text": "follow on x, on mastodon, or on bluesky to be notified of updates. follow on x, on mastodon, or on bluesky to be notified of updates.      other primary article https://x.com/andreyknvl article  other undated linux kernel other resource \"follow on x, on mastodon, or on bluesky to be notified of updates.\"; url type: article. 未标年份 linux 内核other资料：「follow on x, on mastodon, or on bluesky to be notified of updates.」；url 类型：article。 # follow on x, on mastodon, or on bluesky to be notified of updates. record_kind: linux-kernel-resource-url section: none subsection: none category: other item_title: follow on x, on mastodon, or on bluesky to be notified of updates. resource_label: primary resource_type: article resource_url: https://x.com/andreyknvl parent_primary_url: https://x.com/andreyknvl source_section_url: https://github.com/xairy/linux-kernel-exploitation source_item: follow [@andreyknvl](https://x.com/andreyknvl) on x, [@xairy@infosec.exchange](https://infosec.exchange/@xairy) on mastodon, or [@andreyknvl](https://bsky.app/profile/andreyknvl.bsky.social) on bluesky to be notified of updates. cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel ra no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9aa6873e59c94724",
      "item_id": "baa8f834dcb0a78e",
      "slug": "undated-follow-on-x-on-mastodon-or-on-bluesky-to-be-notified-of-updates-xairy-infosec-exchange-3589a525",
      "year": null,
      "title": "Follow on X, on Mastodon, or on Bluesky to be notified of updates. · @xairy@infosec.exchange",
      "item_title": "Follow on X, on Mastodon, or on Bluesky to be notified of updates.",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "",
      "subsection": "",
      "section_path": "",
      "category": "Other",
      "vulnerability_class": "",
      "resource_label": "@xairy@infosec.exchange",
      "resource_type": "article",
      "resource_url": "https://infosec.exchange/@xairy",
      "primary_url": "https://infosec.exchange/@xairy",
      "parent_primary_url": "https://x.com/andreyknvl",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation",
      "raw_path": "/raw/undated-follow-on-x-on-mastodon-or-on-bluesky-to-be-notified-of-updates-xairy-infosec-exchange-3589a525.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Follow on X, on Mastodon, or on Bluesky to be notified of updates. · @xairy@infosec.exchange record_kind: linux-kernel-resource-url section: none subsection: none category: Other item_title: Follow on X, on Mastodon, or on Bluesky to be notified of updates. resource_label: @xairy@infosec.exchange resource_type: article resource_url: https://infosec.exchange/@xairy parent_primary_url: https://x.com/andreyknvl source_section_url: https://github.com/xairy/linux-kernel-exploitation source_item: Follow [@andreyknvl](https://x.com/andreyknvl) on X, [@xairy@infosec.exchange](https://infosec.exchange/@xairy) on Mastodon, or [@andreyknvl](https://bsky.app/profile/andreyknvl.bsky.social) on Bluesky to be notified of updates. cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason:",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://x.com/andreyknvl"
        },
        {
          "label": "@xairy@infosec.exchange",
          "type": "article",
          "url": "https://infosec.exchange/@xairy"
        },
        {
          "label": "@andreyknvl",
          "type": "article",
          "url": "https://bsky.app/profile/andreyknvl.bsky.social"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://x.com/andreyknvl"
          },
          {
            "label": "@xairy@infosec.exchange",
            "type": "article",
            "url": "https://infosec.exchange/@xairy"
          },
          {
            "label": "@andreyknvl",
            "type": "article",
            "url": "https://bsky.app/profile/andreyknvl.bsky.social"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Other",
      "summary_en": "Undated Linux kernel Other resource \"Follow on X, on Mastodon, or on Bluesky to be notified of updates. · @xairy@infosec.exchange\"; URL type: article.",
      "summary_zh": "未标年份 Linux 内核Other资料：「Follow on X, on Mastodon, or on Bluesky to be notified of updates. · @xairy@infosec.exchange」；URL 类型：article。",
      "source_markdown": "Follow [@andreyknvl](https://x.com/andreyknvl) on X, [@xairy@infosec.exchange](https://infosec.exchange/@xairy) on Mastodon, or [@andreyknvl](https://bsky.app/profile/andreyknvl.bsky.social) on Bluesky to be notified of updates.",
      "search_text": "follow on x, on mastodon, or on bluesky to be notified of updates. · @xairy@infosec.exchange follow on x, on mastodon, or on bluesky to be notified of updates.      other @xairy@infosec.exchange article https://infosec.exchange/@xairy article  other undated linux kernel other resource \"follow on x, on mastodon, or on bluesky to be notified of updates. · @xairy@infosec.exchange\"; url type: article. 未标年份 linux 内核other资料：「follow on x, on mastodon, or on bluesky to be notified of updates. · @xairy@infosec.exchange」；url 类型：article。 # follow on x, on mastodon, or on bluesky to be notified of updates. · @xairy@infosec.exchange record_kind: linux-kernel-resource-url section: none subsection: none category: other item_title: follow on x, on mastodon, or on bluesky to be notified of updates. resource_label: @xairy@infosec.exchange resource_type: article resource_url: https://infosec.exchange/@xairy parent_primary_url: https://x.com/andreyknvl source_section_url: https://github.com/xairy/linux-kernel-exploitation source_item: follow [@andreyknvl](https://x.com/andreyknvl) on x, [@xairy@infosec.exchange](https://infosec.exchange/@xairy) on mastodon, or [@andreyknvl](https://bsky.app/profile/andreyknvl.bsky.social) on bluesky to be notified of updates. cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bbc104555e2aed78",
      "item_id": "baa8f834dcb0a78e",
      "slug": "undated-follow-on-x-on-mastodon-or-on-bluesky-to-be-notified-of-updates-andreyknvl-d6ab9749",
      "year": null,
      "title": "Follow on X, on Mastodon, or on Bluesky to be notified of updates. · @andreyknvl",
      "item_title": "Follow on X, on Mastodon, or on Bluesky to be notified of updates.",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "",
      "subsection": "",
      "section_path": "",
      "category": "Other",
      "vulnerability_class": "",
      "resource_label": "@andreyknvl",
      "resource_type": "article",
      "resource_url": "https://bsky.app/profile/andreyknvl.bsky.social",
      "primary_url": "https://bsky.app/profile/andreyknvl.bsky.social",
      "parent_primary_url": "https://x.com/andreyknvl",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation",
      "raw_path": "/raw/undated-follow-on-x-on-mastodon-or-on-bluesky-to-be-notified-of-updates-andreyknvl-d6ab9749.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Follow on X, on Mastodon, or on Bluesky to be notified of updates. · @andreyknvl record_kind: linux-kernel-resource-url section: none subsection: none category: Other item_title: Follow on X, on Mastodon, or on Bluesky to be notified of updates. resource_label: @andreyknvl resource_type: article resource_url: https://bsky.app/profile/andreyknvl.bsky.social parent_primary_url: https://x.com/andreyknvl source_section_url: https://github.com/xairy/linux-kernel-exploitation source_item: Follow [@andreyknvl](https://x.com/andreyknvl) on X, [@xairy@infosec.exchange](https://infosec.exchange/@xairy) on Mastodon, or [@andreyknvl](https://bsky.app/profile/andreyknvl.bsky.social) on Bluesky to be notified of updates. cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Product",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://x.com/andreyknvl"
        },
        {
          "label": "@xairy@infosec.exchange",
          "type": "article",
          "url": "https://infosec.exchange/@xairy"
        },
        {
          "label": "@andreyknvl",
          "type": "article",
          "url": "https://bsky.app/profile/andreyknvl.bsky.social"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://x.com/andreyknvl"
          },
          {
            "label": "@xairy@infosec.exchange",
            "type": "article",
            "url": "https://infosec.exchange/@xairy"
          },
          {
            "label": "@andreyknvl",
            "type": "article",
            "url": "https://bsky.app/profile/andreyknvl.bsky.social"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Other",
      "summary_en": "Undated Linux kernel Other resource \"Follow on X, on Mastodon, or on Bluesky to be notified of updates. · @andreyknvl\"; URL type: article.",
      "summary_zh": "未标年份 Linux 内核Other资料：「Follow on X, on Mastodon, or on Bluesky to be notified of updates. · @andreyknvl」；URL 类型：article。",
      "source_markdown": "Follow [@andreyknvl](https://x.com/andreyknvl) on X, [@xairy@infosec.exchange](https://infosec.exchange/@xairy) on Mastodon, or [@andreyknvl](https://bsky.app/profile/andreyknvl.bsky.social) on Bluesky to be notified of updates.",
      "search_text": "follow on x, on mastodon, or on bluesky to be notified of updates. · @andreyknvl follow on x, on mastodon, or on bluesky to be notified of updates.      other @andreyknvl article https://bsky.app/profile/andreyknvl.bsky.social article  other undated linux kernel other resource \"follow on x, on mastodon, or on bluesky to be notified of updates. · @andreyknvl\"; url type: article. 未标年份 linux 内核other资料：「follow on x, on mastodon, or on bluesky to be notified of updates. · @andreyknvl」；url 类型：article。 # follow on x, on mastodon, or on bluesky to be notified of updates. · @andreyknvl record_kind: linux-kernel-resource-url section: none subsection: none category: other item_title: follow on x, on mastodon, or on bluesky to be notified of updates. resource_label: @andreyknvl resource_type: article resource_url: https://bsky.app/profile/andreyknvl.bsky.social parent_primary_url: https://x.com/andreyknvl source_section_url: https://github.com/xairy/linux-kernel-exploitation source_item: follow [@andreyknvl](https://x.com/andreyknvl) on x, [@xairy@infosec.exchange](https://infosec.exchange/@xairy) on mastodon, or [@andreyknvl](https://bsky.app/profile/andreyknvl.bsky.social) on bluesky to be notified of updates. cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: product no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "fc2a1e4c7ce4dc5d",
      "item_id": "198ed806bb3190e7",
      "slug": "undated-subscribe-to-linkersec-on-or-for-highlights-primary-cd16e64a",
      "year": null,
      "title": "Subscribe to @linkersec on , , , , or for highlights.",
      "item_title": "Subscribe to @linkersec on , , , , or for highlights.",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "",
      "subsection": "",
      "section_path": "",
      "category": "Other",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://t.me/linkersec",
      "primary_url": "https://t.me/linkersec",
      "parent_primary_url": "https://t.me/linkersec",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation",
      "raw_path": "/raw/undated-subscribe-to-linkersec-on-or-for-highlights-primary-cd16e64a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Subscribe to @linkersec on , , , , or for highlights. record_kind: linux-kernel-resource-url section: none subsection: none category: Other item_title: Subscribe to @linkersec on , , , , or for highlights. resource_label: primary resource_type: article resource_url: https://t.me/linkersec parent_primary_url: https://t.me/linkersec source_section_url: https://github.com/xairy/linux-kernel-exploitation source_item: Subscribe to @linkersec on [Telegram](https://t.me/linkersec), [X](https://x.com/linkersec), [Mastodon](https://infosec.exchange/@linkersec), [Bluesky](https://bsky.app/profile/linkersec.bsky.social), or [Reddit](https://www.reddit.com/r/linkersec) for highlights. cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ker",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://t.me/linkersec"
        },
        {
          "label": "X",
          "type": "article",
          "url": "https://x.com/linkersec"
        },
        {
          "label": "Mastodon",
          "type": "article",
          "url": "https://infosec.exchange/@linkersec"
        },
        {
          "label": "Bluesky",
          "type": "article",
          "url": "https://bsky.app/profile/linkersec.bsky.social"
        },
        {
          "label": "Reddit",
          "type": "article",
          "url": "https://www.reddit.com/r/linkersec"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://t.me/linkersec"
          },
          {
            "label": "X",
            "type": "article",
            "url": "https://x.com/linkersec"
          },
          {
            "label": "Mastodon",
            "type": "article",
            "url": "https://infosec.exchange/@linkersec"
          },
          {
            "label": "Bluesky",
            "type": "article",
            "url": "https://bsky.app/profile/linkersec.bsky.social"
          },
          {
            "label": "Reddit",
            "type": "article",
            "url": "https://www.reddit.com/r/linkersec"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Other",
      "summary_en": "Undated Linux kernel Other resource \"Subscribe to @linkersec on , , , , or for highlights.\"; URL type: article.",
      "summary_zh": "未标年份 Linux 内核Other资料：「Subscribe to @linkersec on , , , , or for highlights.」；URL 类型：article。",
      "source_markdown": "Subscribe to @linkersec on [Telegram](https://t.me/linkersec), [X](https://x.com/linkersec), [Mastodon](https://infosec.exchange/@linkersec), [Bluesky](https://bsky.app/profile/linkersec.bsky.social), or [Reddit](https://www.reddit.com/r/linkersec) for highlights.",
      "search_text": "subscribe to @linkersec on , , , , or for highlights. subscribe to @linkersec on , , , , or for highlights.      other primary article https://t.me/linkersec article  other undated linux kernel other resource \"subscribe to @linkersec on , , , , or for highlights.\"; url type: article. 未标年份 linux 内核other资料：「subscribe to @linkersec on , , , , or for highlights.」；url 类型：article。 # subscribe to @linkersec on , , , , or for highlights. record_kind: linux-kernel-resource-url section: none subsection: none category: other item_title: subscribe to @linkersec on , , , , or for highlights. resource_label: primary resource_type: article resource_url: https://t.me/linkersec parent_primary_url: https://t.me/linkersec source_section_url: https://github.com/xairy/linux-kernel-exploitation source_item: subscribe to @linkersec on [telegram](https://t.me/linkersec), [x](https://x.com/linkersec), [mastodon](https://infosec.exchange/@linkersec), [bluesky](https://bsky.app/profile/linkersec.bsky.social), or [reddit](https://www.reddit.com/r/linkersec) for highlights. cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu ker no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "416cc4cb441fa8e9",
      "item_id": "198ed806bb3190e7",
      "slug": "undated-subscribe-to-linkersec-on-or-for-highlights-x-ccef6151",
      "year": null,
      "title": "Subscribe to @linkersec on , , , , or for highlights. · X",
      "item_title": "Subscribe to @linkersec on , , , , or for highlights.",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "",
      "subsection": "",
      "section_path": "",
      "category": "Other",
      "vulnerability_class": "",
      "resource_label": "X",
      "resource_type": "article",
      "resource_url": "https://x.com/linkersec",
      "primary_url": "https://x.com/linkersec",
      "parent_primary_url": "https://t.me/linkersec",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation",
      "raw_path": "/raw/undated-subscribe-to-linkersec-on-or-for-highlights-x-ccef6151.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Subscribe to @linkersec on , , , , or for highlights. · X record_kind: linux-kernel-resource-url section: none subsection: none category: Other item_title: Subscribe to @linkersec on , , , , or for highlights. resource_label: X resource_type: article resource_url: https://x.com/linkersec parent_primary_url: https://t.me/linkersec source_section_url: https://github.com/xairy/linux-kernel-exploitation source_item: Subscribe to @linkersec on [Telegram](https://t.me/linkersec), [X](https://x.com/linkersec), [Mastodon](https://infosec.exchange/@linkersec), [Bluesky](https://bsky.app/profile/linkersec.bsky.social), or [Reddit](https://www.reddit.com/r/linkersec) for highlights. cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kern",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://t.me/linkersec"
        },
        {
          "label": "X",
          "type": "article",
          "url": "https://x.com/linkersec"
        },
        {
          "label": "Mastodon",
          "type": "article",
          "url": "https://infosec.exchange/@linkersec"
        },
        {
          "label": "Bluesky",
          "type": "article",
          "url": "https://bsky.app/profile/linkersec.bsky.social"
        },
        {
          "label": "Reddit",
          "type": "article",
          "url": "https://www.reddit.com/r/linkersec"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://t.me/linkersec"
          },
          {
            "label": "X",
            "type": "article",
            "url": "https://x.com/linkersec"
          },
          {
            "label": "Mastodon",
            "type": "article",
            "url": "https://infosec.exchange/@linkersec"
          },
          {
            "label": "Bluesky",
            "type": "article",
            "url": "https://bsky.app/profile/linkersec.bsky.social"
          },
          {
            "label": "Reddit",
            "type": "article",
            "url": "https://www.reddit.com/r/linkersec"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Other",
      "summary_en": "Undated Linux kernel Other resource \"Subscribe to @linkersec on , , , , or for highlights. · X\"; URL type: article.",
      "summary_zh": "未标年份 Linux 内核Other资料：「Subscribe to @linkersec on , , , , or for highlights. · X」；URL 类型：article。",
      "source_markdown": "Subscribe to @linkersec on [Telegram](https://t.me/linkersec), [X](https://x.com/linkersec), [Mastodon](https://infosec.exchange/@linkersec), [Bluesky](https://bsky.app/profile/linkersec.bsky.social), or [Reddit](https://www.reddit.com/r/linkersec) for highlights.",
      "search_text": "subscribe to @linkersec on , , , , or for highlights. · x subscribe to @linkersec on , , , , or for highlights.      other x article https://x.com/linkersec article  other undated linux kernel other resource \"subscribe to @linkersec on , , , , or for highlights. · x\"; url type: article. 未标年份 linux 内核other资料：「subscribe to @linkersec on , , , , or for highlights. · x」；url 类型：article。 # subscribe to @linkersec on , , , , or for highlights. · x record_kind: linux-kernel-resource-url section: none subsection: none category: other item_title: subscribe to @linkersec on , , , , or for highlights. resource_label: x resource_type: article resource_url: https://x.com/linkersec parent_primary_url: https://t.me/linkersec source_section_url: https://github.com/xairy/linux-kernel-exploitation source_item: subscribe to @linkersec on [telegram](https://t.me/linkersec), [x](https://x.com/linkersec), [mastodon](https://infosec.exchange/@linkersec), [bluesky](https://bsky.app/profile/linkersec.bsky.social), or [reddit](https://www.reddit.com/r/linkersec) for highlights. cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kern no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7f5a5e09a935bfec",
      "item_id": "198ed806bb3190e7",
      "slug": "undated-subscribe-to-linkersec-on-or-for-highlights-mastodon-30219d74",
      "year": null,
      "title": "Subscribe to @linkersec on , , , , or for highlights. · Mastodon",
      "item_title": "Subscribe to @linkersec on , , , , or for highlights.",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "",
      "subsection": "",
      "section_path": "",
      "category": "Other",
      "vulnerability_class": "",
      "resource_label": "Mastodon",
      "resource_type": "article",
      "resource_url": "https://infosec.exchange/@linkersec",
      "primary_url": "https://infosec.exchange/@linkersec",
      "parent_primary_url": "https://t.me/linkersec",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation",
      "raw_path": "/raw/undated-subscribe-to-linkersec-on-or-for-highlights-mastodon-30219d74.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Subscribe to @linkersec on , , , , or for highlights. · Mastodon record_kind: linux-kernel-resource-url section: none subsection: none category: Other item_title: Subscribe to @linkersec on , , , , or for highlights. resource_label: Mastodon resource_type: article resource_url: https://infosec.exchange/@linkersec parent_primary_url: https://t.me/linkersec source_section_url: https://github.com/xairy/linux-kernel-exploitation source_item: Subscribe to @linkersec on [Telegram](https://t.me/linkersec), [X](https://x.com/linkersec), [Mastodon](https://infosec.exchange/@linkersec), [Bluesky](https://bsky.app/profile/linkersec.bsky.social), or [Reddit](https://www.reddit.com/r/linkersec) for highlights. cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS de",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://t.me/linkersec"
        },
        {
          "label": "X",
          "type": "article",
          "url": "https://x.com/linkersec"
        },
        {
          "label": "Mastodon",
          "type": "article",
          "url": "https://infosec.exchange/@linkersec"
        },
        {
          "label": "Bluesky",
          "type": "article",
          "url": "https://bsky.app/profile/linkersec.bsky.social"
        },
        {
          "label": "Reddit",
          "type": "article",
          "url": "https://www.reddit.com/r/linkersec"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://t.me/linkersec"
          },
          {
            "label": "X",
            "type": "article",
            "url": "https://x.com/linkersec"
          },
          {
            "label": "Mastodon",
            "type": "article",
            "url": "https://infosec.exchange/@linkersec"
          },
          {
            "label": "Bluesky",
            "type": "article",
            "url": "https://bsky.app/profile/linkersec.bsky.social"
          },
          {
            "label": "Reddit",
            "type": "article",
            "url": "https://www.reddit.com/r/linkersec"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Other",
      "summary_en": "Undated Linux kernel Other resource \"Subscribe to @linkersec on , , , , or for highlights. · Mastodon\"; URL type: article.",
      "summary_zh": "未标年份 Linux 内核Other资料：「Subscribe to @linkersec on , , , , or for highlights. · Mastodon」；URL 类型：article。",
      "source_markdown": "Subscribe to @linkersec on [Telegram](https://t.me/linkersec), [X](https://x.com/linkersec), [Mastodon](https://infosec.exchange/@linkersec), [Bluesky](https://bsky.app/profile/linkersec.bsky.social), or [Reddit](https://www.reddit.com/r/linkersec) for highlights.",
      "search_text": "subscribe to @linkersec on , , , , or for highlights. · mastodon subscribe to @linkersec on , , , , or for highlights.      other mastodon article https://infosec.exchange/@linkersec article  other undated linux kernel other resource \"subscribe to @linkersec on , , , , or for highlights. · mastodon\"; url type: article. 未标年份 linux 内核other资料：「subscribe to @linkersec on , , , , or for highlights. · mastodon」；url 类型：article。 # subscribe to @linkersec on , , , , or for highlights. · mastodon record_kind: linux-kernel-resource-url section: none subsection: none category: other item_title: subscribe to @linkersec on , , , , or for highlights. resource_label: mastodon resource_type: article resource_url: https://infosec.exchange/@linkersec parent_primary_url: https://t.me/linkersec source_section_url: https://github.com/xairy/linux-kernel-exploitation source_item: subscribe to @linkersec on [telegram](https://t.me/linkersec), [x](https://x.com/linkersec), [mastodon](https://infosec.exchange/@linkersec), [bluesky](https://bsky.app/profile/linkersec.bsky.social), or [reddit](https://www.reddit.com/r/linkersec) for highlights. cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios de no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ae2517796d266227",
      "item_id": "198ed806bb3190e7",
      "slug": "undated-subscribe-to-linkersec-on-or-for-highlights-bluesky-e038620a",
      "year": null,
      "title": "Subscribe to @linkersec on , , , , or for highlights. · Bluesky",
      "item_title": "Subscribe to @linkersec on , , , , or for highlights.",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "",
      "subsection": "",
      "section_path": "",
      "category": "Other",
      "vulnerability_class": "",
      "resource_label": "Bluesky",
      "resource_type": "article",
      "resource_url": "https://bsky.app/profile/linkersec.bsky.social",
      "primary_url": "https://bsky.app/profile/linkersec.bsky.social",
      "parent_primary_url": "https://t.me/linkersec",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation",
      "raw_path": "/raw/undated-subscribe-to-linkersec-on-or-for-highlights-bluesky-e038620a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Subscribe to @linkersec on , , , , or for highlights. · Bluesky record_kind: linux-kernel-resource-url section: none subsection: none category: Other item_title: Subscribe to @linkersec on , , , , or for highlights. resource_label: Bluesky resource_type: article resource_url: https://bsky.app/profile/linkersec.bsky.social parent_primary_url: https://t.me/linkersec source_section_url: https://github.com/xairy/linux-kernel-exploitation source_item: Subscribe to @linkersec on [Telegram](https://t.me/linkersec), [X](https://x.com/linkersec), [Mastodon](https://infosec.exchange/@linkersec), [Bluesky](https://bsky.app/profile/linkersec.bsky.social), or [Reddit](https://www.reddit.com/r/linkersec) for highlights. cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Producti",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://t.me/linkersec"
        },
        {
          "label": "X",
          "type": "article",
          "url": "https://x.com/linkersec"
        },
        {
          "label": "Mastodon",
          "type": "article",
          "url": "https://infosec.exchange/@linkersec"
        },
        {
          "label": "Bluesky",
          "type": "article",
          "url": "https://bsky.app/profile/linkersec.bsky.social"
        },
        {
          "label": "Reddit",
          "type": "article",
          "url": "https://www.reddit.com/r/linkersec"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://t.me/linkersec"
          },
          {
            "label": "X",
            "type": "article",
            "url": "https://x.com/linkersec"
          },
          {
            "label": "Mastodon",
            "type": "article",
            "url": "https://infosec.exchange/@linkersec"
          },
          {
            "label": "Bluesky",
            "type": "article",
            "url": "https://bsky.app/profile/linkersec.bsky.social"
          },
          {
            "label": "Reddit",
            "type": "article",
            "url": "https://www.reddit.com/r/linkersec"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Other",
      "summary_en": "Undated Linux kernel Other resource \"Subscribe to @linkersec on , , , , or for highlights. · Bluesky\"; URL type: article.",
      "summary_zh": "未标年份 Linux 内核Other资料：「Subscribe to @linkersec on , , , , or for highlights. · Bluesky」；URL 类型：article。",
      "source_markdown": "Subscribe to @linkersec on [Telegram](https://t.me/linkersec), [X](https://x.com/linkersec), [Mastodon](https://infosec.exchange/@linkersec), [Bluesky](https://bsky.app/profile/linkersec.bsky.social), or [Reddit](https://www.reddit.com/r/linkersec) for highlights.",
      "search_text": "subscribe to @linkersec on , , , , or for highlights. · bluesky subscribe to @linkersec on , , , , or for highlights.      other bluesky article https://bsky.app/profile/linkersec.bsky.social article  other undated linux kernel other resource \"subscribe to @linkersec on , , , , or for highlights. · bluesky\"; url type: article. 未标年份 linux 内核other资料：「subscribe to @linkersec on , , , , or for highlights. · bluesky」；url 类型：article。 # subscribe to @linkersec on , , , , or for highlights. · bluesky record_kind: linux-kernel-resource-url section: none subsection: none category: other item_title: subscribe to @linkersec on , , , , or for highlights. resource_label: bluesky resource_type: article resource_url: https://bsky.app/profile/linkersec.bsky.social parent_primary_url: https://t.me/linkersec source_section_url: https://github.com/xairy/linux-kernel-exploitation source_item: subscribe to @linkersec on [telegram](https://t.me/linkersec), [x](https://x.com/linkersec), [mastodon](https://infosec.exchange/@linkersec), [bluesky](https://bsky.app/profile/linkersec.bsky.social), or [reddit](https://www.reddit.com/r/linkersec) for highlights. cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: producti no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2c86b51bb192845b",
      "item_id": "198ed806bb3190e7",
      "slug": "undated-subscribe-to-linkersec-on-or-for-highlights-reddit-76c90e78",
      "year": null,
      "title": "Subscribe to @linkersec on , , , , or for highlights. · Reddit",
      "item_title": "Subscribe to @linkersec on , , , , or for highlights.",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "",
      "subsection": "",
      "section_path": "",
      "category": "Other",
      "vulnerability_class": "",
      "resource_label": "Reddit",
      "resource_type": "article",
      "resource_url": "https://www.reddit.com/r/linkersec",
      "primary_url": "https://www.reddit.com/r/linkersec",
      "parent_primary_url": "https://t.me/linkersec",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation",
      "raw_path": "/raw/undated-subscribe-to-linkersec-on-or-for-highlights-reddit-76c90e78.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Subscribe to @linkersec on , , , , or for highlights. · Reddit record_kind: linux-kernel-resource-url section: none subsection: none category: Other item_title: Subscribe to @linkersec on , , , , or for highlights. resource_label: Reddit resource_type: article resource_url: https://www.reddit.com/r/linkersec parent_primary_url: https://t.me/linkersec source_section_url: https://github.com/xairy/linux-kernel-exploitation source_item: Subscribe to @linkersec on [Telegram](https://t.me/linkersec), [X](https://x.com/linkersec), [Mastodon](https://infosec.exchange/@linkersec), [Bluesky](https://bsky.app/profile/linkersec.bsky.social), or [Reddit](https://www.reddit.com/r/linkersec) for highlights. cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://t.me/linkersec"
        },
        {
          "label": "X",
          "type": "article",
          "url": "https://x.com/linkersec"
        },
        {
          "label": "Mastodon",
          "type": "article",
          "url": "https://infosec.exchange/@linkersec"
        },
        {
          "label": "Bluesky",
          "type": "article",
          "url": "https://bsky.app/profile/linkersec.bsky.social"
        },
        {
          "label": "Reddit",
          "type": "article",
          "url": "https://www.reddit.com/r/linkersec"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://t.me/linkersec"
          },
          {
            "label": "X",
            "type": "article",
            "url": "https://x.com/linkersec"
          },
          {
            "label": "Mastodon",
            "type": "article",
            "url": "https://infosec.exchange/@linkersec"
          },
          {
            "label": "Bluesky",
            "type": "article",
            "url": "https://bsky.app/profile/linkersec.bsky.social"
          },
          {
            "label": "Reddit",
            "type": "article",
            "url": "https://www.reddit.com/r/linkersec"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Other",
      "summary_en": "Undated Linux kernel Other resource \"Subscribe to @linkersec on , , , , or for highlights. · Reddit\"; URL type: article.",
      "summary_zh": "未标年份 Linux 内核Other资料：「Subscribe to @linkersec on , , , , or for highlights. · Reddit」；URL 类型：article。",
      "source_markdown": "Subscribe to @linkersec on [Telegram](https://t.me/linkersec), [X](https://x.com/linkersec), [Mastodon](https://infosec.exchange/@linkersec), [Bluesky](https://bsky.app/profile/linkersec.bsky.social), or [Reddit](https://www.reddit.com/r/linkersec) for highlights.",
      "search_text": "subscribe to @linkersec on , , , , or for highlights. · reddit subscribe to @linkersec on , , , , or for highlights.      other reddit article https://www.reddit.com/r/linkersec article  other undated linux kernel other resource \"subscribe to @linkersec on , , , , or for highlights. · reddit\"; url type: article. 未标年份 linux 内核other资料：「subscribe to @linkersec on , , , , or for highlights. · reddit」；url 类型：article。 # subscribe to @linkersec on , , , , or for highlights. · reddit record_kind: linux-kernel-resource-url section: none subsection: none category: other item_title: subscribe to @linkersec on , , , , or for highlights. resource_label: reddit resource_type: article resource_url: https://www.reddit.com/r/linkersec parent_primary_url: https://t.me/linkersec source_section_url: https://github.com/xairy/linux-kernel-exploitation source_item: subscribe to @linkersec on [telegram](https://t.me/linkersec), [x](https://x.com/linkersec), [mastodon](https://infosec.exchange/@linkersec), [bluesky](https://bsky.app/profile/linkersec.bsky.social), or [reddit](https://www.reddit.com/r/linkersec) for highlights. cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "52e448e36ce39458",
      "item_id": "b5f5c621a5227247",
      "slug": "undated-trainings-see-primary-8d639474",
      "year": null,
      "title": "See .",
      "item_title": "See .",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Trainings",
      "subsection": "",
      "section_path": "Trainings",
      "category": "Trainings",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://xairy.io/trainings/",
      "primary_url": "https://xairy.io/trainings/",
      "parent_primary_url": "https://xairy.io/trainings/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#trainings",
      "raw_path": "/raw/undated-trainings-see-primary-8d639474.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# See . record_kind: linux-kernel-resource-url section: Trainings subsection: none category: Trainings item_title: See . resource_label: primary resource_type: article resource_url: https://xairy.io/trainings/ parent_primary_url: https://xairy.io/trainings/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#trainings source_item: See [xairy.io/trainings/](https://xairy.io/trainings/). cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://xairy.io/trainings/ fetch_status: skipped fetch_note: original URL is preserved; public dataset stores metadata and short excerpts rather ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://xairy.io/trainings/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://xairy.io/trainings/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Trainings",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Trainings",
      "summary_en": "Undated Linux kernel Trainings resource \"See .\"; URL type: article.",
      "summary_zh": "未标年份 Linux 内核Trainings资料：「See .」；URL 类型：article。",
      "source_markdown": "See [xairy.io/trainings/](https://xairy.io/trainings/).",
      "search_text": "see . see .    trainings  trainings primary article https://xairy.io/trainings/ trainings article  trainings undated linux kernel trainings resource \"see .\"; url type: article. 未标年份 linux 内核trainings资料：「see .」；url 类型：article。 # see . record_kind: linux-kernel-resource-url section: trainings subsection: none category: trainings item_title: see . resource_label: primary resource_type: article resource_url: https://xairy.io/trainings/ parent_primary_url: https://xairy.io/trainings/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#trainings source_item: see [xairy.io/trainings/](https://xairy.io/trainings/). cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://xairy.io/trainings/ fetch_status: skipped fetch_note: original url is preserved; public dataset stores metadata and short excerpts rather  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5d669fb4f9544919",
      "item_id": "5e7562bb0f3343b5",
      "slug": "2014-books-android-hacker-s-handbook-primary-d7849b5a",
      "year": 2014,
      "title": "Android Hacker's Handbook",
      "item_title": "Android Hacker's Handbook",
      "authors": [
        "Joshua J. Drake"
      ],
      "cves": [],
      "tags": [],
      "section": "Books",
      "subsection": "",
      "section_path": "Books",
      "category": "Books",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "book",
      "resource_url": "https://www.goodreads.com/book/show/17628293-android-hacker-s-handbook",
      "primary_url": "https://www.goodreads.com/book/show/17628293-android-hacker-s-handbook",
      "parent_primary_url": "https://www.goodreads.com/book/show/17628293-android-hacker-s-handbook",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#books",
      "raw_path": "/raw/2014-books-android-hacker-s-handbook-primary-d7849b5a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Android Hacker's Handbook record_kind: linux-kernel-resource-url section: Books subsection: none category: Books item_title: Android Hacker's Handbook resource_label: primary resource_type: book resource_url: https://www.goodreads.com/book/show/17628293-android-hacker-s-handbook parent_primary_url: https://www.goodreads.com/book/show/17628293-android-hacker-s-handbook source_section_url: https://github.com/xairy/linux-kernel-exploitation#books source_item: 2014: \"Android Hacker's Handbook\" by Joshua J. Drake [[book](https://www.goodreads.com/book/show/17628293-android-hacker-s-handbook)] cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: ",
      "link_types": [
        "book"
      ],
      "links": [
        {
          "label": "primary",
          "type": "book",
          "url": "https://www.goodreads.com/book/show/17628293-android-hacker-s-handbook"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "book",
            "url": "https://www.goodreads.com/book/show/17628293-android-hacker-s-handbook"
          }
        ]
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Books",
        "book"
      ],
      "affected_area": "",
      "exploit_stage": "Books",
      "summary_en": "2014 Linux kernel Books resource \"Android Hacker's Handbook\"; URL type: book. Android impact: yes.",
      "summary_zh": "2014 年 Linux 内核Books资料：「Android Hacker's Handbook」；URL 类型：book。 Android 影响：yes。",
      "source_markdown": "2014: \"Android Hacker's Handbook\" by Joshua J. Drake [[book](https://www.goodreads.com/book/show/17628293-android-hacker-s-handbook)]",
      "search_text": "android hacker's handbook android hacker's handbook joshua j. drake   books  books primary book https://www.goodreads.com/book/show/17628293-android-hacker-s-handbook books book  books 2014 linux kernel books resource \"android hacker's handbook\"; url type: book. android impact: yes. 2014 年 linux 内核books资料：「android hacker's handbook」；url 类型：book。 android 影响：yes。 # android hacker's handbook record_kind: linux-kernel-resource-url section: books subsection: none category: books item_title: android hacker's handbook resource_label: primary resource_type: book resource_url: https://www.goodreads.com/book/show/17628293-android-hacker-s-handbook parent_primary_url: https://www.goodreads.com/book/show/17628293-android-hacker-s-handbook source_section_url: https://github.com/xairy/linux-kernel-exploitation#books source_item: 2014: \"android hacker's handbook\" by joshua j. drake [[book](https://www.goodreads.com/book/show/17628293-android-hacker-s-handbook)] cves: none android_impact_status: unknown android_impact_reason: mentions android; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc:  unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "8778a66552f260de",
      "item_id": "165f72c34971115b",
      "slug": "2012-books-a-guide-to-kernel-exploitation-attacking-the-core-primary-ec20d008",
      "year": 2012,
      "title": "A Guide to Kernel Exploitation: Attacking the Core",
      "item_title": "A Guide to Kernel Exploitation: Attacking the Core",
      "authors": [
        "Enrico Perla",
        "Massimiliano Oldani"
      ],
      "cves": [],
      "tags": [],
      "section": "Books",
      "subsection": "",
      "section_path": "Books",
      "category": "Books",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "book",
      "resource_url": "https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation",
      "primary_url": "https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation",
      "parent_primary_url": "https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#books",
      "raw_path": "/raw/2012-books-a-guide-to-kernel-exploitation-attacking-the-core-primary-ec20d008.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Guide to Kernel Exploitation: Attacking the Core record_kind: linux-kernel-resource-url section: Books subsection: none category: Books item_title: A Guide to Kernel Exploitation: Attacking the Core resource_label: primary resource_type: book resource_url: https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation parent_primary_url: https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#books source_item: 2012: \"A Guide to Kernel Exploitation: Attacking the Core\" by Enrico Perla and Massimiliano Oldani [[book](https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation)] [[materials](https://github.com/yrp604/atc-sources)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impac",
      "link_types": [
        "book",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "book",
          "url": "https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation"
        },
        {
          "label": "materials",
          "type": "artifact",
          "url": "https://github.com/yrp604/atc-sources"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "materials",
            "type": "artifact",
            "url": "https://github.com/yrp604/atc-sources"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "book",
            "url": "https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/yrp604/atc-sources"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Books",
        "book"
      ],
      "affected_area": "",
      "exploit_stage": "Books",
      "summary_en": "2012 Linux kernel Books resource \"A Guide to Kernel Exploitation: Attacking the Core\"; URL type: book.",
      "summary_zh": "2012 年 Linux 内核Books资料：「A Guide to Kernel Exploitation: Attacking the Core」；URL 类型：book。",
      "source_markdown": "2012: \"A Guide to Kernel Exploitation: Attacking the Core\" by Enrico Perla and Massimiliano Oldani [[book](https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation)] [[materials](https://github.com/yrp604/atc-sources)]",
      "search_text": "a guide to kernel exploitation: attacking the core a guide to kernel exploitation: attacking the core enrico perla massimiliano oldani   books  books primary book https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation books book  books 2012 linux kernel books resource \"a guide to kernel exploitation: attacking the core\"; url type: book. 2012 年 linux 内核books资料：「a guide to kernel exploitation: attacking the core」；url 类型：book。 # a guide to kernel exploitation: attacking the core record_kind: linux-kernel-resource-url section: books subsection: none category: books item_title: a guide to kernel exploitation: attacking the core resource_label: primary resource_type: book resource_url: https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation parent_primary_url: https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#books source_item: 2012: \"a guide to kernel exploitation: attacking the core\" by enrico perla and massimiliano oldani [[book](https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation)] [[materials](https://github.com/yrp604/atc-sources)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impac no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "6374f48d53407226",
      "item_id": "165f72c34971115b",
      "slug": "2012-books-a-guide-to-kernel-exploitation-attacking-the-core-materials-4d98b709",
      "year": 2012,
      "title": "A Guide to Kernel Exploitation: Attacking the Core · materials",
      "item_title": "A Guide to Kernel Exploitation: Attacking the Core",
      "authors": [
        "Enrico Perla",
        "Massimiliano Oldani"
      ],
      "cves": [],
      "tags": [],
      "section": "Books",
      "subsection": "",
      "section_path": "Books",
      "category": "Books",
      "vulnerability_class": "",
      "resource_label": "materials",
      "resource_type": "artifact",
      "resource_url": "https://github.com/yrp604/atc-sources",
      "primary_url": "https://github.com/yrp604/atc-sources",
      "parent_primary_url": "https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#books",
      "raw_path": "/raw/2012-books-a-guide-to-kernel-exploitation-attacking-the-core-materials-4d98b709.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Guide to Kernel Exploitation: Attacking the Core · materials record_kind: linux-kernel-resource-url section: Books subsection: none category: Books item_title: A Guide to Kernel Exploitation: Attacking the Core resource_label: materials resource_type: artifact resource_url: https://github.com/yrp604/atc-sources parent_primary_url: https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#books source_item: 2012: \"A Guide to Kernel Exploitation: Attacking the Core\" by Enrico Perla and Massimiliano Oldani [[book](https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation)] [[materials](https://github.com/yrp604/atc-sources)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_im",
      "link_types": [
        "book",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "book",
          "url": "https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation"
        },
        {
          "label": "materials",
          "type": "artifact",
          "url": "https://github.com/yrp604/atc-sources"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "materials",
            "type": "artifact",
            "url": "https://github.com/yrp604/atc-sources"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "book",
            "url": "https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/yrp604/atc-sources"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Books",
        "artifact"
      ],
      "affected_area": "",
      "exploit_stage": "Books",
      "summary_en": "2012 Linux kernel Books resource \"A Guide to Kernel Exploitation: Attacking the Core · materials\"; URL type: artifact.",
      "summary_zh": "2012 年 Linux 内核Books资料：「A Guide to Kernel Exploitation: Attacking the Core · materials」；URL 类型：artifact。",
      "source_markdown": "2012: \"A Guide to Kernel Exploitation: Attacking the Core\" by Enrico Perla and Massimiliano Oldani [[book](https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation)] [[materials](https://github.com/yrp604/atc-sources)]",
      "search_text": "a guide to kernel exploitation: attacking the core · materials a guide to kernel exploitation: attacking the core enrico perla massimiliano oldani   books  books materials artifact https://github.com/yrp604/atc-sources books artifact  books 2012 linux kernel books resource \"a guide to kernel exploitation: attacking the core · materials\"; url type: artifact. 2012 年 linux 内核books资料：「a guide to kernel exploitation: attacking the core · materials」；url 类型：artifact。 # a guide to kernel exploitation: attacking the core · materials record_kind: linux-kernel-resource-url section: books subsection: none category: books item_title: a guide to kernel exploitation: attacking the core resource_label: materials resource_type: artifact resource_url: https://github.com/yrp604/atc-sources parent_primary_url: https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#books source_item: 2012: \"a guide to kernel exploitation: attacking the core\" by enrico perla and massimiliano oldani [[book](https://www.goodreads.com/book/show/9224826-a-guide-to-kernel-exploitation)] [[materials](https://github.com/yrp604/atc-sources)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_im no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "7eabc5ba1bd32b43",
      "item_id": "048bc50ec4569505",
      "slug": "2026-techniques-exploitation-phantommap-gpu-assisted-kernel-exploitation-primary-6c431701",
      "year": 2026,
      "title": "PhantomMap: GPU-Assisted Kernel Exploitation",
      "item_title": "PhantomMap: GPU-Assisted Kernel Exploitation",
      "authors": [
        "Jiayi Hu et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf",
      "primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf",
      "parent_primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2026-techniques-exploitation-phantommap-gpu-assisted-kernel-exploitation-primary-6c431701.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PhantomMap: GPU-Assisted Kernel Exploitation record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: PhantomMap: GPU-Assisted Kernel Exploitation resource_label: primary resource_type: paper resource_url: https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2026: \"PhantomMap: GPU-Assisted Kernel Exploitation\" by Jiayi Hu et. al](https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf)] [[video](https://www.youtube.com/watch?v=rQAU3KiTPRE)] cves: none android_impact_status: no android_impact_reason: Not enough e",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=rQAU3KiTPRE"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=rQAU3KiTPRE"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "GPU",
        "exploitation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "PhantomMap explores GPU-assisted techniques for kernel exploitation.",
      "summary_zh": "PhantomMap探讨了用于内核利用的GPU辅助技术。",
      "source_markdown": "[2026: \"PhantomMap: GPU-Assisted Kernel Exploitation\" by Jiayi Hu et. al](https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf)] [[video](https://www.youtube.com/watch?v=rQAU3KiTPRE)]",
      "search_text": "phantommap: gpu-assisted kernel exploitation phantommap: gpu-assisted kernel exploitation jiayi hu et. al   techniques exploitation technique: exploitation primary paper https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf gpu exploitation kernel  exploitation phantommap explores gpu-assisted techniques for kernel exploitation. phantommap探讨了用于内核利用的gpu辅助技术。 # phantommap: gpu-assisted kernel exploitation record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: phantommap: gpu-assisted kernel exploitation resource_label: primary resource_type: paper resource_url: https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2026: \"phantommap: gpu-assisted kernel exploitation\" by jiayi hu et. al](https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf)] [[video](https://www.youtube.com/watch?v=rqau3kitpre)] cves: none android_impact_status: no android_impact_reason: not enough e no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "0a42771bdc058885",
      "item_id": "048bc50ec4569505",
      "slug": "2026-techniques-exploitation-phantommap-gpu-assisted-kernel-exploitation-slides-60a294c1",
      "year": 2026,
      "title": "PhantomMap: GPU-Assisted Kernel Exploitation · slides",
      "item_title": "PhantomMap: GPU-Assisted Kernel Exploitation",
      "authors": [
        "Jiayi Hu et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf",
      "primary_url": "https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf",
      "parent_primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2026-techniques-exploitation-phantommap-gpu-assisted-kernel-exploitation-slides-60a294c1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PhantomMap: GPU-Assisted Kernel Exploitation · slides record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: PhantomMap: GPU-Assisted Kernel Exploitation resource_label: slides resource_type: slides resource_url: https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2026: \"PhantomMap: GPU-Assisted Kernel Exploitation\" by Jiayi Hu et. al](https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf)] [[video](https://www.youtube.com/watch?v=rQAU3KiTPRE)] cves: none android_impact_status: no android_impact_reason: Not",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=rQAU3KiTPRE"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=rQAU3KiTPRE"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "GPU",
        "exploitation",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Slides on PhantomMap provide insights into GPU-assisted kernel exploitation techniques.",
      "summary_zh": "PhantomMap的幻灯片提供了关于GPU辅助内核利用技术的见解。",
      "source_markdown": "[2026: \"PhantomMap: GPU-Assisted Kernel Exploitation\" by Jiayi Hu et. al](https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf)] [[video](https://www.youtube.com/watch?v=rQAU3KiTPRE)]",
      "search_text": "phantommap: gpu-assisted kernel exploitation · slides phantommap: gpu-assisted kernel exploitation jiayi hu et. al   techniques exploitation technique: exploitation slides slides https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf gpu exploitation slides  exploitation slides on phantommap provide insights into gpu-assisted kernel exploitation techniques. phantommap的幻灯片提供了关于gpu辅助内核利用技术的见解。 # phantommap: gpu-assisted kernel exploitation · slides record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: phantommap: gpu-assisted kernel exploitation resource_label: slides resource_type: slides resource_url: https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2026: \"phantommap: gpu-assisted kernel exploitation\" by jiayi hu et. al](https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf)] [[video](https://www.youtube.com/watch?v=rqau3kitpre)] cves: none android_impact_status: no android_impact_reason: not no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3527faa2d4e7062c",
      "item_id": "048bc50ec4569505",
      "slug": "2026-techniques-exploitation-phantommap-gpu-assisted-kernel-exploitation-video-ce494599",
      "year": 2026,
      "title": "PhantomMap: GPU-Assisted Kernel Exploitation · video",
      "item_title": "PhantomMap: GPU-Assisted Kernel Exploitation",
      "authors": [
        "Jiayi Hu et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=rQAU3KiTPRE",
      "primary_url": "https://www.youtube.com/watch?v=rQAU3KiTPRE",
      "parent_primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2026-techniques-exploitation-phantommap-gpu-assisted-kernel-exploitation-video-ce494599.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PhantomMap: GPU-Assisted Kernel Exploitation · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: PhantomMap: GPU-Assisted Kernel Exploitation resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=rQAU3KiTPRE parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2026: \"PhantomMap: GPU-Assisted Kernel Exploitation\" by Jiayi Hu et. al](https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf)] [[video](https://www.youtube.com/watch?v=rQAU3KiTPRE)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this re",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=rQAU3KiTPRE"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=rQAU3KiTPRE"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "GPU",
        "exploitation",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "A video presentation on PhantomMap detailing GPU-assisted kernel exploitation.",
      "summary_zh": "关于PhantomMap的演示视频详细介绍了GPU辅助内核利用。",
      "source_markdown": "[2026: \"PhantomMap: GPU-Assisted Kernel Exploitation\" by Jiayi Hu et. al](https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf)] [[video](https://www.youtube.com/watch?v=rQAU3KiTPRE)]",
      "search_text": "phantommap: gpu-assisted kernel exploitation · video phantommap: gpu-assisted kernel exploitation jiayi hu et. al   techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=rqau3kitpre gpu exploitation video  exploitation a video presentation on phantommap detailing gpu-assisted kernel exploitation. 关于phantommap的演示视频详细介绍了gpu辅助内核利用。 # phantommap: gpu-assisted kernel exploitation · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: phantommap: gpu-assisted kernel exploitation resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=rqau3kitpre parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2026: \"phantommap: gpu-assisted kernel exploitation\" by jiayi hu et. al](https://www.ndss-symposium.org/wp-content/uploads/2026-f201-paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/f0201-hu-slides.pdf)] [[video](https://www.youtube.com/watch?v=rqau3kitpre)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this re no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "92df2460247d1521",
      "item_id": "620de04d14b99e28",
      "slug": "2026-techniques-exploitation-some-notes-on-the-security-properties-of-the-pipe-buffer-kernel-object-primary-8d",
      "year": 2026,
      "title": "Some notes on the security properties of the pipe_buffer kernel object",
      "item_title": "Some notes on the security properties of the pipe_buffer kernel object",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://a13xp0p0v.github.io/2026/04/20/pipe-buffer-experiments.html",
      "primary_url": "https://a13xp0p0v.github.io/2026/04/20/pipe-buffer-experiments.html",
      "parent_primary_url": "https://a13xp0p0v.github.io/2026/04/20/pipe-buffer-experiments.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2026-techniques-exploitation-some-notes-on-the-security-properties-of-the-pipe-buffer-kernel-object-primary-8d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Some notes on the security properties of the pipe_buffer kernel object record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Some notes on the security properties of the pipe_buffer kernel object resource_label: primary resource_type: article resource_url: https://a13xp0p0v.github.io/2026/04/20/pipe-buffer-experiments.html parent_primary_url: https://a13xp0p0v.github.io/2026/04/20/pipe-buffer-experiments.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2026: \"Some notes on the security properties of the pipe_buffer kernel object\" by Alexander Popov](https://a13xp0p0v.github.io/2026/04/20/pipe-buffer-experiments.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://a13xp0p0v.github.io/2026/04/20/pipe-buffer-experiments.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://a13xp0p0v.github.io/2026/04/20/pipe-buffer-experiments.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://a13xp0p0v.github.io/2026/04/20/pipe-buffer-experiments.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "pipe_buffer",
        "security",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article discusses the security properties of the pipe_buffer kernel object.",
      "summary_zh": "本文讨论了pipe_buffer内核对象的安全属性。",
      "source_markdown": "[2026: \"Some notes on the security properties of the pipe_buffer kernel object\" by Alexander Popov](https://a13xp0p0v.github.io/2026/04/20/pipe-buffer-experiments.html) [article]",
      "search_text": "some notes on the security properties of the pipe_buffer kernel object some notes on the security properties of the pipe_buffer kernel object alexander popov   techniques exploitation technique: exploitation primary article https://a13xp0p0v.github.io/2026/04/20/pipe-buffer-experiments.html pipe_buffer security kernel  research this article discusses the security properties of the pipe_buffer kernel object. 本文讨论了pipe_buffer内核对象的安全属性。 # some notes on the security properties of the pipe_buffer kernel object record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: some notes on the security properties of the pipe_buffer kernel object resource_label: primary resource_type: article resource_url: https://a13xp0p0v.github.io/2026/04/20/pipe-buffer-experiments.html parent_primary_url: https://a13xp0p0v.github.io/2026/04/20/pipe-buffer-experiments.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2026: \"some notes on the security properties of the pipe_buffer kernel object\" by alexander popov](https://a13xp0p0v.github.io/2026/04/20/pipe-buffer-experiments.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices.  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "93b101374c5b9eb6",
      "item_id": "3b1f06d30860bd4c",
      "slug": "2026-techniques-exploitation-cross-cache-attacks-for-the-linux-kernel-via-pcp-massaging-primary-482310dd",
      "year": 2026,
      "title": "Cross-Cache Attacks for the Linux Kernel via PCP Massaging",
      "item_title": "Cross-Cache Attacks for the Linux Kernel via PCP Massaging",
      "authors": [
        "Claudio Migliorelli et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://claudiomigliorelli.com/assets/papers/pcplost_ndss26.pdf",
      "primary_url": "https://claudiomigliorelli.com/assets/papers/pcplost_ndss26.pdf",
      "parent_primary_url": "https://claudiomigliorelli.com/assets/papers/pcplost_ndss26.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2026-techniques-exploitation-cross-cache-attacks-for-the-linux-kernel-via-pcp-massaging-primary-482310dd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Cross-Cache Attacks for the Linux Kernel via PCP Massaging record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Cross-Cache Attacks for the Linux Kernel via PCP Massaging resource_label: primary resource_type: paper resource_url: https://claudiomigliorelli.com/assets/papers/pcplost_ndss26.pdf parent_primary_url: https://claudiomigliorelli.com/assets/papers/pcplost_ndss26.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2026: \"Cross-Cache Attacks for the Linux Kernel via PCP Massaging\" by Claudio Migliorelli et. al](https://claudiomigliorelli.com/assets/papers/pcplost_ndss26.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: ",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://claudiomigliorelli.com/assets/papers/pcplost_ndss26.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://claudiomigliorelli.com/assets/papers/pcplost_ndss26.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "cache",
        "exploitation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Cross-Cache Attacks explores new methods for exploiting the Linux kernel.",
      "summary_zh": "Cross-Cache Attacks探讨了利用Linux内核的新方法。",
      "source_markdown": "[2026: \"Cross-Cache Attacks for the Linux Kernel via PCP Massaging\" by Claudio Migliorelli et. al](https://claudiomigliorelli.com/assets/papers/pcplost_ndss26.pdf) [paper]",
      "search_text": "cross-cache attacks for the linux kernel via pcp massaging cross-cache attacks for the linux kernel via pcp massaging claudio migliorelli et. al   techniques exploitation technique: exploitation primary paper https://claudiomigliorelli.com/assets/papers/pcplost_ndss26.pdf cache exploitation kernel  exploitation cross-cache attacks explores new methods for exploiting the linux kernel. cross-cache attacks探讨了利用linux内核的新方法。 # cross-cache attacks for the linux kernel via pcp massaging record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: cross-cache attacks for the linux kernel via pcp massaging resource_label: primary resource_type: paper resource_url: https://claudiomigliorelli.com/assets/papers/pcplost_ndss26.pdf parent_primary_url: https://claudiomigliorelli.com/assets/papers/pcplost_ndss26.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2026: \"cross-cache attacks for the linux kernel via pcp massaging\" by claudio migliorelli et. al](https://claudiomigliorelli.com/assets/papers/pcplost_ndss26.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "57baf1f2358374d3",
      "item_id": "8267b2c31291be22",
      "slug": "2026-techniques-exploitation-heap-localization-cache-side-channel-based-linux-kernel-heap-exploit-techniques-p",
      "year": 2026,
      "title": "Heap Localization: Cache Side-Channel based Linux Kernel Heap Exploit Techniques",
      "item_title": "Heap Localization: Cache Side-Channel based Linux Kernel Heap Exploit Techniques",
      "authors": [
        "Yoochan Lee et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://leeyoochan.github.io/assets/pdf/Heap_Localization_SP_2026.pdf",
      "primary_url": "https://leeyoochan.github.io/assets/pdf/Heap_Localization_SP_2026.pdf",
      "parent_primary_url": "https://leeyoochan.github.io/assets/pdf/Heap_Localization_SP_2026.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2026-techniques-exploitation-heap-localization-cache-side-channel-based-linux-kernel-heap-exploit-techniques-p.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Heap Localization: Cache Side-Channel based Linux Kernel Heap Exploit Techniques record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Heap Localization: Cache Side-Channel based Linux Kernel Heap Exploit Techniques resource_label: primary resource_type: paper resource_url: https://leeyoochan.github.io/assets/pdf/Heap_Localization_SP_2026.pdf parent_primary_url: https://leeyoochan.github.io/assets/pdf/Heap_Localization_SP_2026.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2026: \"Heap Localization: Cache Side-Channel based Linux Kernel Heap Exploit Techniques\" by Yoochan Lee et. al](https://leeyoochan.github.io/assets/pdf/Heap_Localization_SP_2026.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://leeyoochan.github.io/assets/pdf/Heap_Localization_SP_2026.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://leeyoochan.github.io/assets/pdf/Heap_Localization_SP_2026.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://leeyoochan.github.io/assets/pdf/Heap_Localization_SP_2026.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "heap",
        "cache",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Heap Localization presents cache side-channel techniques for Linux kernel exploitation.",
      "summary_zh": "Heap Localization提出了用于Linux内核利用的缓存侧信道技术。",
      "source_markdown": "[2026: \"Heap Localization: Cache Side-Channel based Linux Kernel Heap Exploit Techniques\" by Yoochan Lee et. al](https://leeyoochan.github.io/assets/pdf/Heap_Localization_SP_2026.pdf) [paper]",
      "search_text": "heap localization: cache side-channel based linux kernel heap exploit techniques heap localization: cache side-channel based linux kernel heap exploit techniques yoochan lee et. al   techniques exploitation technique: exploitation primary paper https://leeyoochan.github.io/assets/pdf/heap_localization_sp_2026.pdf heap cache exploitation  exploitation heap localization presents cache side-channel techniques for linux kernel exploitation. heap localization提出了用于linux内核利用的缓存侧信道技术。 # heap localization: cache side-channel based linux kernel heap exploit techniques record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: heap localization: cache side-channel based linux kernel heap exploit techniques resource_label: primary resource_type: paper resource_url: https://leeyoochan.github.io/assets/pdf/heap_localization_sp_2026.pdf parent_primary_url: https://leeyoochan.github.io/assets/pdf/heap_localization_sp_2026.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2026: \"heap localization: cache side-channel based linux kernel heap exploit techniques\" by yoochan lee et. al](https://leeyoochan.github.io/assets/pdf/heap_localization_sp_2026.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "2102b46e7153dce2",
      "item_id": "3662c70f164c3612",
      "slug": "2026-techniques-exploitation-improving-linux-heap-exploit-reliability-with-freshslices-and-cpu-bullying-primar",
      "year": 2026,
      "title": "Improving Linux Heap Exploit Reliability with FreshSlices and CPU-Bullying",
      "item_title": "Improving Linux Heap Exploit Reliability with FreshSlices and CPU-Bullying",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.eb9f.de/2026/01/28/freshslices_and_cpubullies.html",
      "primary_url": "https://blog.eb9f.de/2026/01/28/freshslices_and_cpubullies.html",
      "parent_primary_url": "https://blog.eb9f.de/2026/01/28/freshslices_and_cpubullies.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2026-techniques-exploitation-improving-linux-heap-exploit-reliability-with-freshslices-and-cpu-bullying-primar.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Improving Linux Heap Exploit Reliability with FreshSlices and CPU-Bullying record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Improving Linux Heap Exploit Reliability with FreshSlices and CPU-Bullying resource_label: primary resource_type: article resource_url: https://blog.eb9f.de/2026/01/28/freshslices_and_cpubullies.html parent_primary_url: https://blog.eb9f.de/2026/01/28/freshslices_and_cpubullies.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2026: \"Improving Linux Heap Exploit Reliability with FreshSlices and CPU-Bullying\"](https://blog.eb9f.de/2026/01/28/freshslices_and_cpubullies.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.eb9f.de/2026/01/28/freshslices_and_cpubullies.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.eb9f.de/2026/01/28/freshslices_and_cpubullies.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "heap",
        "reliability",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article discusses improving reliability in Linux heap exploitation techniques.",
      "summary_zh": "本文讨论了提高Linux堆利用技术可靠性的方法。",
      "source_markdown": "[2026: \"Improving Linux Heap Exploit Reliability with FreshSlices and CPU-Bullying\"](https://blog.eb9f.de/2026/01/28/freshslices_and_cpubullies.html) [article]",
      "search_text": "improving linux heap exploit reliability with freshslices and cpu-bullying improving linux heap exploit reliability with freshslices and cpu-bullying    techniques exploitation technique: exploitation primary article https://blog.eb9f.de/2026/01/28/freshslices_and_cpubullies.html heap reliability exploitation  research this article discusses improving reliability in linux heap exploitation techniques. 本文讨论了提高linux堆利用技术可靠性的方法。 # improving linux heap exploit reliability with freshslices and cpu-bullying record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: improving linux heap exploit reliability with freshslices and cpu-bullying resource_label: primary resource_type: article resource_url: https://blog.eb9f.de/2026/01/28/freshslices_and_cpubullies.html parent_primary_url: https://blog.eb9f.de/2026/01/28/freshslices_and_cpubullies.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2026: \"improving linux heap exploit reliability with freshslices and cpu-bullying\"](https://blog.eb9f.de/2026/01/28/freshslices_and_cpubullies.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "dd7365def3dfd4f3",
      "item_id": "2b464248e1d640a7",
      "slug": "2026-techniques-exploitation-dirtyfree-simplified-data-oriented-programming-in-the-linux-kernel-primary-ebbe7c",
      "year": 2026,
      "title": "DIRTYFREE: Simplified Data-Oriented Programming in the Linux Kernel",
      "item_title": "DIRTYFREE: Simplified Data-Oriented Programming in the Linux Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://leeyoochan.github.io/assets/pdf/DirtyFree_NDSS_2026.pdf",
      "primary_url": "https://leeyoochan.github.io/assets/pdf/DirtyFree_NDSS_2026.pdf",
      "parent_primary_url": "https://leeyoochan.github.io/assets/pdf/DirtyFree_NDSS_2026.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2026-techniques-exploitation-dirtyfree-simplified-data-oriented-programming-in-the-linux-kernel-primary-ebbe7c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DIRTYFREE: Simplified Data-Oriented Programming in the Linux Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: DIRTYFREE: Simplified Data-Oriented Programming in the Linux Kernel resource_label: primary resource_type: paper resource_url: https://leeyoochan.github.io/assets/pdf/DirtyFree_NDSS_2026.pdf parent_primary_url: https://leeyoochan.github.io/assets/pdf/DirtyFree_NDSS_2026.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2026: \"DIRTYFREE: Simplified Data-Oriented Programming in the Linux Kernel\"](https://leeyoochan.github.io/assets/pdf/DirtyFree_NDSS_2026.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Pro",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://leeyoochan.github.io/assets/pdf/DirtyFree_NDSS_2026.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://leeyoochan.github.io/assets/pdf/DirtyFree_NDSS_2026.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://leeyoochan.github.io/assets/pdf/DirtyFree_NDSS_2026.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "data-oriented",
        "programming",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "DIRTYFREE simplifies data-oriented programming in the Linux kernel.",
      "summary_zh": "DIRTYFREE简化了Linux内核中的数据导向编程。",
      "source_markdown": "[2026: \"DIRTYFREE: Simplified Data-Oriented Programming in the Linux Kernel\"](https://leeyoochan.github.io/assets/pdf/DirtyFree_NDSS_2026.pdf) [paper]",
      "search_text": "dirtyfree: simplified data-oriented programming in the linux kernel dirtyfree: simplified data-oriented programming in the linux kernel    techniques exploitation technique: exploitation primary paper https://leeyoochan.github.io/assets/pdf/dirtyfree_ndss_2026.pdf data-oriented programming kernel  research dirtyfree simplifies data-oriented programming in the linux kernel. dirtyfree简化了linux内核中的数据导向编程。 # dirtyfree: simplified data-oriented programming in the linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: dirtyfree: simplified data-oriented programming in the linux kernel resource_label: primary resource_type: paper resource_url: https://leeyoochan.github.io/assets/pdf/dirtyfree_ndss_2026.pdf parent_primary_url: https://leeyoochan.github.io/assets/pdf/dirtyfree_ndss_2026.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2026: \"dirtyfree: simplified data-oriented programming in the linux kernel\"](https://leeyoochan.github.io/assets/pdf/dirtyfree_ndss_2026.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: pro no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "9f9733d43364aa5d",
      "item_id": "190effd0af030910",
      "slug": "2026-techniques-exploitation-table-manners-diving-into-linux-pagetables-exp-techniques-primary-8b9e020c",
      "year": 2026,
      "title": "Table Manners: Diving into Linux pagetables exp techniques",
      "item_title": "Table Manners: Diving into Linux pagetables exp techniques",
      "authors": [
        "Lau"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://github.com/Notselwyn/blogpost-files/blob/main/talk_pagetables.pdf",
      "primary_url": "https://github.com/Notselwyn/blogpost-files/blob/main/talk_pagetables.pdf",
      "parent_primary_url": "https://github.com/Notselwyn/blogpost-files/blob/main/talk_pagetables.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2026-techniques-exploitation-table-manners-diving-into-linux-pagetables-exp-techniques-primary-8b9e020c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Table Manners: Diving into Linux pagetables exp techniques record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Table Manners: Diving into Linux pagetables exp techniques resource_label: primary resource_type: slides resource_url: https://github.com/Notselwyn/blogpost-files/blob/main/talk_pagetables.pdf parent_primary_url: https://github.com/Notselwyn/blogpost-files/blob/main/talk_pagetables.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2026: \"Table Manners: Diving into Linux pagetables exp techniques\" by Lau](https://github.com/Notselwyn/blogpost-files/blob/main/talk_pagetables.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/Notselwyn/blogpost-files/blob/main/talk_pagetables.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/Notselwyn/blogpost-files/blob/main/talk_pagetables.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Notselwyn/blogpost-files/blob/main/talk_pagetables.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "pagetables",
        "exploitation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Table Manners dives into techniques for exploiting Linux pagetables.",
      "summary_zh": "Table Manners深入探讨了利用Linux页表的技术。",
      "source_markdown": "[2026: \"Table Manners: Diving into Linux pagetables exp techniques\" by Lau](https://github.com/Notselwyn/blogpost-files/blob/main/talk_pagetables.pdf) [slides]",
      "search_text": "table manners: diving into linux pagetables exp techniques table manners: diving into linux pagetables exp techniques lau   techniques exploitation technique: exploitation primary slides https://github.com/notselwyn/blogpost-files/blob/main/talk_pagetables.pdf pagetables exploitation kernel  exploitation table manners dives into techniques for exploiting linux pagetables. table manners深入探讨了利用linux页表的技术。 # table manners: diving into linux pagetables exp techniques record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: table manners: diving into linux pagetables exp techniques resource_label: primary resource_type: slides resource_url: https://github.com/notselwyn/blogpost-files/blob/main/talk_pagetables.pdf parent_primary_url: https://github.com/notselwyn/blogpost-files/blob/main/talk_pagetables.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2026: \"table manners: diving into linux pagetables exp techniques\" by lau](https://github.com/notselwyn/blogpost-files/blob/main/talk_pagetables.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b011a3c0cb33224f",
      "item_id": "2724856eeeb0dae2",
      "slug": "2025-techniques-exploitation-cross-x-generalized-and-stable-cross-cache-attack-on-the-linux-kernel-primary-190",
      "year": 2025,
      "title": "CROSS-X: Generalized and Stable Cross-Cache Attack on the Linux Kernel",
      "item_title": "CROSS-X: Generalized and Stable Cross-Cache Attack on the Linux Kernel",
      "authors": [
        "Dong-ok Kim et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://insuyun.github.io/pubs/2025/kim%3Acrossx.pdf",
      "primary_url": "https://insuyun.github.io/pubs/2025/kim%3Acrossx.pdf",
      "parent_primary_url": "https://insuyun.github.io/pubs/2025/kim%3Acrossx.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2025-techniques-exploitation-cross-x-generalized-and-stable-cross-cache-attack-on-the-linux-kernel-primary-190.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CROSS-X: Generalized and Stable Cross-Cache Attack on the Linux Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: CROSS-X: Generalized and Stable Cross-Cache Attack on the Linux Kernel resource_label: primary resource_type: paper resource_url: https://insuyun.github.io/pubs/2025/kim%3Acrossx.pdf parent_primary_url: https://insuyun.github.io/pubs/2025/kim%3Acrossx.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"CROSS-X: Generalized and Stable Cross-Cache Attack on the Linux Kernel\" by Dong-ok Kim et. al](https://insuyun.github.io/pubs/2025/kim%3Acrossx.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Produ",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://insuyun.github.io/pubs/2025/kim%3Acrossx.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://insuyun.github.io/pubs/2025/kim%3Acrossx.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://insuyun.github.io/pubs/2025/kim%3Acrossx.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "cross-cache",
        "exploitation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "CROSS-X presents a generalized approach to cross-cache attacks on the Linux kernel.",
      "summary_zh": "CROSS-X提出了一种针对Linux内核的跨缓存攻击的通用方法。",
      "source_markdown": "[2025: \"CROSS-X: Generalized and Stable Cross-Cache Attack on the Linux Kernel\" by Dong-ok Kim et. al](https://insuyun.github.io/pubs/2025/kim%3Acrossx.pdf) [paper]",
      "search_text": "cross-x: generalized and stable cross-cache attack on the linux kernel cross-x: generalized and stable cross-cache attack on the linux kernel dong-ok kim et. al   techniques exploitation technique: exploitation primary paper https://insuyun.github.io/pubs/2025/kim%3acrossx.pdf cross-cache exploitation kernel  exploitation cross-x presents a generalized approach to cross-cache attacks on the linux kernel. cross-x提出了一种针对linux内核的跨缓存攻击的通用方法。 # cross-x: generalized and stable cross-cache attack on the linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: cross-x: generalized and stable cross-cache attack on the linux kernel resource_label: primary resource_type: paper resource_url: https://insuyun.github.io/pubs/2025/kim%3acrossx.pdf parent_primary_url: https://insuyun.github.io/pubs/2025/kim%3acrossx.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"cross-x: generalized and stable cross-cache attack on the linux kernel\" by dong-ok kim et. al](https://insuyun.github.io/pubs/2025/kim%3acrossx.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: produ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "aeac332c649e85b0",
      "item_id": "875e4eb67dd5b68a",
      "slug": "2025-techniques-exploitation-bridgerouter-automated-capability-upgrading-of-out-of-bounds-write-vulnerabilitie",
      "year": 2025,
      "title": "BRIDGEROUTER: Automated Capability Upgrading of Out-Of-Bounds Write Vulnerabilities to Arbitrary Memory Write Primitives in the Linux Kernel",
      "item_title": "BRIDGEROUTER: Automated Capability Upgrading of Out-Of-Bounds Write Vulnerabilities to Arbitrary Memory Write Primitives in the Linux Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.youwei.site/papers/SP2025b.pdf",
      "primary_url": "https://www.youwei.site/papers/SP2025b.pdf",
      "parent_primary_url": "https://www.youwei.site/papers/SP2025b.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2025-techniques-exploitation-bridgerouter-automated-capability-upgrading-of-out-of-bounds-write-vulnerabilitie.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BRIDGEROUTER: Automated Capability Upgrading of Out-Of-Bounds Write Vulnerabilities to Arbitrary Memory Write Primitives in the Linux Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: BRIDGEROUTER: Automated Capability Upgrading of Out-Of-Bounds Write Vulnerabilities to Arbitrary Memory Write Primitives in the Linux Kernel resource_label: primary resource_type: paper resource_url: https://www.youwei.site/papers/SP2025b.pdf parent_primary_url: https://www.youwei.site/papers/SP2025b.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"BRIDGEROUTER: Automated Capability Upgrading of Out-Of-Bounds Write Vulnerabilities to Arbitrary Memory Write Primitives in the Linux Kernel\"](https://www.youwei.site/papers/SP2025b.pdf) [paper] cves: none android_im",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.youwei.site/papers/SP2025b.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.youwei.site/papers/SP2025b.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "out-of-bounds",
        "vulnerabilities",
        "automation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "BRIDGEROUTER automates the upgrading of out-of-bounds write vulnerabilities in the Linux kernel.",
      "summary_zh": "BRIDGEROUTER自动化了Linux内核中越界写入漏洞的升级。",
      "source_markdown": "[2025: \"BRIDGEROUTER: Automated Capability Upgrading of Out-Of-Bounds Write Vulnerabilities to Arbitrary Memory Write Primitives in the Linux Kernel\"](https://www.youwei.site/papers/SP2025b.pdf) [paper]",
      "search_text": "bridgerouter: automated capability upgrading of out-of-bounds write vulnerabilities to arbitrary memory write primitives in the linux kernel bridgerouter: automated capability upgrading of out-of-bounds write vulnerabilities to arbitrary memory write primitives in the linux kernel    techniques exploitation technique: exploitation primary paper https://www.youwei.site/papers/sp2025b.pdf out-of-bounds vulnerabilities automation  exploitation bridgerouter automates the upgrading of out-of-bounds write vulnerabilities in the linux kernel. bridgerouter自动化了linux内核中越界写入漏洞的升级。 # bridgerouter: automated capability upgrading of out-of-bounds write vulnerabilities to arbitrary memory write primitives in the linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: bridgerouter: automated capability upgrading of out-of-bounds write vulnerabilities to arbitrary memory write primitives in the linux kernel resource_label: primary resource_type: paper resource_url: https://www.youwei.site/papers/sp2025b.pdf parent_primary_url: https://www.youwei.site/papers/sp2025b.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"bridgerouter: automated capability upgrading of out-of-bounds write vulnerabilities to arbitrary memory write primitives in the linux kernel\"](https://www.youwei.site/papers/sp2025b.pdf) [paper] cves: none android_im no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ad2c43b4f194ae54",
      "item_id": "ddfeddde04244d81",
      "slug": "2025-techniques-exploitation-extending-kernel-race-windows-using-dev-shm-primary-f0dea894",
      "year": 2025,
      "title": "Extending Kernel Race Windows Using '/dev/shm'",
      "item_title": "Extending Kernel Race Windows Using '/dev/shm'",
      "authors": [
        "Faith"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://faith2dxy.xyz/2025-11-28/extending_race_window_fallocate/",
      "primary_url": "https://faith2dxy.xyz/2025-11-28/extending_race_window_fallocate/",
      "parent_primary_url": "https://faith2dxy.xyz/2025-11-28/extending_race_window_fallocate/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2025-techniques-exploitation-extending-kernel-race-windows-using-dev-shm-primary-f0dea894.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Extending Kernel Race Windows Using '/dev/shm' record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Extending Kernel Race Windows Using '/dev/shm' resource_label: primary resource_type: article resource_url: https://faith2dxy.xyz/2025-11-28/extending_race_window_fallocate/ parent_primary_url: https://faith2dxy.xyz/2025-11-28/extending_race_window_fallocate/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"Extending Kernel Race Windows Using '/dev/shm'\" by Faith](https://faith2dxy.xyz/2025-11-28/extending_race_window_fallocate/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel r",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://faith2dxy.xyz/2025-11-28/extending_race_window_fallocate/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://faith2dxy.xyz/2025-11-28/extending_race_window_fallocate/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "race condition",
        "exploitation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article discusses extending kernel race windows using '/dev/shm'.",
      "summary_zh": "本文讨论了如何使用'/dev/shm'扩展内核竞争窗口。",
      "source_markdown": "[2025: \"Extending Kernel Race Windows Using '/dev/shm'\" by Faith](https://faith2dxy.xyz/2025-11-28/extending_race_window_fallocate/) [article]",
      "search_text": "extending kernel race windows using '/dev/shm' extending kernel race windows using '/dev/shm' faith   techniques exploitation technique: exploitation primary article https://faith2dxy.xyz/2025-11-28/extending_race_window_fallocate/ race condition exploitation kernel  research this article discusses extending kernel race windows using '/dev/shm'. 本文讨论了如何使用'/dev/shm'扩展内核竞争窗口。 # extending kernel race windows using '/dev/shm' record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: extending kernel race windows using '/dev/shm' resource_label: primary resource_type: article resource_url: https://faith2dxy.xyz/2025-11-28/extending_race_window_fallocate/ parent_primary_url: https://faith2dxy.xyz/2025-11-28/extending_race_window_fallocate/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"extending kernel race windows using '/dev/shm'\" by faith](https://faith2dxy.xyz/2025-11-28/extending_race_window_fallocate/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel r no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b4e54b6dea89820f",
      "item_id": "d61a793291d1fc9f",
      "slug": "2025-techniques-exploitation-system-register-hijacking-compromising-kernel-integrity-primary-1eb60cb3",
      "year": 2025,
      "title": "System Register Hijacking: Compromising Kernel Integrity",
      "item_title": "System Register Hijacking: Compromising Kernel Integrity",
      "authors": [
        "Turning System Registers Against the System"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://kylebot.net/papers/ret2entry.pdf",
      "primary_url": "https://kylebot.net/papers/ret2entry.pdf",
      "parent_primary_url": "https://kylebot.net/papers/ret2entry.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2025-techniques-exploitation-system-register-hijacking-compromising-kernel-integrity-primary-1eb60cb3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# System Register Hijacking: Compromising Kernel Integrity record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: System Register Hijacking: Compromising Kernel Integrity resource_label: primary resource_type: paper resource_url: https://kylebot.net/papers/ret2entry.pdf parent_primary_url: https://kylebot.net/papers/ret2entry.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"System Register Hijacking: Compromising Kernel Integrity By Turning System Registers Against the System\"](https://kylebot.net/papers/ret2entry.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than ",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://kylebot.net/papers/ret2entry.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://kylebot.net/papers/ret2entry.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "register",
        "integrity",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "System Register Hijacking explores methods to compromise kernel integrity.",
      "summary_zh": "System Register Hijacking探讨了危害内核完整性的方法。",
      "source_markdown": "[2025: \"System Register Hijacking: Compromising Kernel Integrity By Turning System Registers Against the System\"](https://kylebot.net/papers/ret2entry.pdf) [paper]",
      "search_text": "system register hijacking: compromising kernel integrity system register hijacking: compromising kernel integrity turning system registers against the system   techniques exploitation technique: exploitation primary paper https://kylebot.net/papers/ret2entry.pdf register integrity exploitation  exploitation system register hijacking explores methods to compromise kernel integrity. system register hijacking探讨了危害内核完整性的方法。 # system register hijacking: compromising kernel integrity record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: system register hijacking: compromising kernel integrity resource_label: primary resource_type: paper resource_url: https://kylebot.net/papers/ret2entry.pdf parent_primary_url: https://kylebot.net/papers/ret2entry.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"system register hijacking: compromising kernel integrity by turning system registers against the system\"](https://kylebot.net/papers/ret2entry.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7309f2bb6457645d",
      "item_id": "1ed44348027f6a9f",
      "slug": "2025-techniques-exploitation-linux-kernel-exploitation-for-beginners-primary-7e3a060e",
      "year": 2025,
      "title": "Linux Kernel Exploitation for Beginners",
      "item_title": "Linux Kernel Exploitation for Beginners",
      "authors": [
        "Kevin Massey"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://rvasec.com/slides/2025/Massey_Linux_Kernel_Exploitation_For_Beginners.pdf",
      "primary_url": "https://rvasec.com/slides/2025/Massey_Linux_Kernel_Exploitation_For_Beginners.pdf",
      "parent_primary_url": "https://rvasec.com/slides/2025/Massey_Linux_Kernel_Exploitation_For_Beginners.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2025-techniques-exploitation-linux-kernel-exploitation-for-beginners-primary-7e3a060e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Exploitation for Beginners record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel Exploitation for Beginners resource_label: primary resource_type: slides resource_url: https://rvasec.com/slides/2025/Massey_Linux_Kernel_Exploitation_For_Beginners.pdf parent_primary_url: https://rvasec.com/slides/2025/Massey_Linux_Kernel_Exploitation_For_Beginners.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"Linux Kernel Exploitation for Beginners\" by Kevin Massey](https://rvasec.com/slides/2025/Massey_Linux_Kernel_Exploitation_For_Beginners.pdf) [slides] [[video](https://www.youtube.com/watch?v=YfjHCt4SzQc)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. i",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://rvasec.com/slides/2025/Massey_Linux_Kernel_Exploitation_For_Beginners.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=YfjHCt4SzQc"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://rvasec.com/slides/2025/Massey_Linux_Kernel_Exploitation_For_Beginners.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=YfjHCt4SzQc"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "beginner",
        "exploitation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "education",
      "summary_en": "A beginner's guide to Linux kernel exploitation techniques.",
      "summary_zh": "Linux内核利用技术的初学者指南。",
      "source_markdown": "[2025: \"Linux Kernel Exploitation for Beginners\" by Kevin Massey](https://rvasec.com/slides/2025/Massey_Linux_Kernel_Exploitation_For_Beginners.pdf) [slides] [[video](https://www.youtube.com/watch?v=YfjHCt4SzQc)]",
      "search_text": "linux kernel exploitation for beginners linux kernel exploitation for beginners kevin massey   techniques exploitation technique: exploitation primary slides https://rvasec.com/slides/2025/massey_linux_kernel_exploitation_for_beginners.pdf beginner exploitation kernel  education a beginner's guide to linux kernel exploitation techniques. linux内核利用技术的初学者指南。 # linux kernel exploitation for beginners record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel exploitation for beginners resource_label: primary resource_type: slides resource_url: https://rvasec.com/slides/2025/massey_linux_kernel_exploitation_for_beginners.pdf parent_primary_url: https://rvasec.com/slides/2025/massey_linux_kernel_exploitation_for_beginners.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"linux kernel exploitation for beginners\" by kevin massey](https://rvasec.com/slides/2025/massey_linux_kernel_exploitation_for_beginners.pdf) [slides] [[video](https://www.youtube.com/watch?v=yfjhct4szqc)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. i no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "eef5024086c7f047",
      "item_id": "1ed44348027f6a9f",
      "slug": "2025-techniques-exploitation-linux-kernel-exploitation-for-beginners-video-362b1426",
      "year": 2025,
      "title": "Linux Kernel Exploitation for Beginners · video",
      "item_title": "Linux Kernel Exploitation for Beginners",
      "authors": [
        "Kevin Massey"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=YfjHCt4SzQc",
      "primary_url": "https://www.youtube.com/watch?v=YfjHCt4SzQc",
      "parent_primary_url": "https://rvasec.com/slides/2025/Massey_Linux_Kernel_Exploitation_For_Beginners.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2025-techniques-exploitation-linux-kernel-exploitation-for-beginners-video-362b1426.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Exploitation for Beginners · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel Exploitation for Beginners resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=YfjHCt4SzQc parent_primary_url: https://rvasec.com/slides/2025/Massey_Linux_Kernel_Exploitation_For_Beginners.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"Linux Kernel Exploitation for Beginners\" by Kevin Massey](https://rvasec.com/slides/2025/Massey_Linux_Kernel_Exploitation_For_Beginners.pdf) [slides] [[video](https://www.youtube.com/watch?v=YfjHCt4SzQc)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_r",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://rvasec.com/slides/2025/Massey_Linux_Kernel_Exploitation_For_Beginners.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=YfjHCt4SzQc"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://rvasec.com/slides/2025/Massey_Linux_Kernel_Exploitation_For_Beginners.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=YfjHCt4SzQc"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "beginner",
        "exploitation",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "education",
      "summary_en": "A video guide for beginners on Linux kernel exploitation techniques.",
      "summary_zh": "关于Linux内核利用技术的初学者视频指南。",
      "source_markdown": "[2025: \"Linux Kernel Exploitation for Beginners\" by Kevin Massey](https://rvasec.com/slides/2025/Massey_Linux_Kernel_Exploitation_For_Beginners.pdf) [slides] [[video](https://www.youtube.com/watch?v=YfjHCt4SzQc)]",
      "search_text": "linux kernel exploitation for beginners · video linux kernel exploitation for beginners kevin massey   techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=yfjhct4szqc beginner exploitation video  education a video guide for beginners on linux kernel exploitation techniques. 关于linux内核利用技术的初学者视频指南。 # linux kernel exploitation for beginners · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel exploitation for beginners resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=yfjhct4szqc parent_primary_url: https://rvasec.com/slides/2025/massey_linux_kernel_exploitation_for_beginners.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"linux kernel exploitation for beginners\" by kevin massey](https://rvasec.com/slides/2025/massey_linux_kernel_exploitation_for_beginners.pdf) [slides] [[video](https://www.youtube.com/watch?v=yfjhct4szqc)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_r no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "a0aafa8ef6d1f14c",
      "item_id": "807ea7264336fd5f",
      "slug": "2025-techniques-exploitation-kernelgp-racing-against-the-android-kernel-primary-e0a87ce0",
      "year": 2025,
      "title": "KernelGP: Racing Against the Android Kernel",
      "item_title": "KernelGP: Racing Against the Android Kernel",
      "authors": [
        "Chariton Karamitas"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=DJBGu2fSSZg",
      "primary_url": "https://www.youtube.com/watch?v=DJBGu2fSSZg",
      "parent_primary_url": "https://www.youtube.com/watch?v=DJBGu2fSSZg",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2025-techniques-exploitation-kernelgp-racing-against-the-android-kernel-primary-e0a87ce0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KernelGP: Racing Against the Android Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: KernelGP: Racing Against the Android Kernel resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=DJBGu2fSSZg parent_primary_url: https://www.youtube.com/watch?v=DJBGu2fSSZg source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"KernelGP: Racing Against the Android Kernel\" by Chariton Karamitas](https://www.youtube.com/watch?v=DJBGu2fSSZg) [video] cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code:",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=DJBGu2fSSZg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=DJBGu2fSSZg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Android",
        "racing",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "KernelGP discusses racing techniques against the Android kernel.",
      "summary_zh": "KernelGP讨论了针对Android内核的竞争技术。",
      "source_markdown": "[2025: \"KernelGP: Racing Against the Android Kernel\" by Chariton Karamitas](https://www.youtube.com/watch?v=DJBGu2fSSZg) [video]",
      "search_text": "kernelgp: racing against the android kernel kernelgp: racing against the android kernel chariton karamitas   techniques exploitation technique: exploitation primary video https://www.youtube.com/watch?v=djbgu2fsszg android racing kernel  exploitation kernelgp discusses racing techniques against the android kernel. kernelgp讨论了针对android内核的竞争技术。 # kernelgp: racing against the android kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: kernelgp: racing against the android kernel resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=djbgu2fsszg parent_primary_url: https://www.youtube.com/watch?v=djbgu2fsszg source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"kernelgp: racing against the android kernel\" by chariton karamitas](https://www.youtube.com/watch?v=djbgu2fsszg) [video] cves: none android_impact_status: unknown android_impact_reason: mentions android; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "9e87109eea2444a3",
      "item_id": "57df226e5286ff0b",
      "slug": "2025-techniques-exploitation-control-flow-hijacking-in-the-linux-kernel-primary-c3298087",
      "year": 2025,
      "title": "Control Flow Hijacking in the Linux Kernel",
      "item_title": "Control Flow Hijacking in the Linux Kernel",
      "authors": [
        "Valeriy Yashnikov"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://pt-phdays.storage.yandexcloud.net/Yashnikov_Valerij_Obhod_sredstv_zashhity_yadra_Linux_pri_perehvate_potoka_upravleniya_compressed_373ea39bd6.pdf",
      "primary_url": "https://pt-phdays.storage.yandexcloud.net/Yashnikov_Valerij_Obhod_sredstv_zashhity_yadra_Linux_pri_perehvate_potoka_upravleniya_compressed_373ea39bd6.pdf",
      "parent_primary_url": "https://pt-phdays.storage.yandexcloud.net/Yashnikov_Valerij_Obhod_sredstv_zashhity_yadra_Linux_pri_perehvate_potoka_upravleniya_compressed_373ea39bd6.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2025-techniques-exploitation-control-flow-hijacking-in-the-linux-kernel-primary-c3298087.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Control Flow Hijacking in the Linux Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Control Flow Hijacking in the Linux Kernel resource_label: primary resource_type: slides resource_url: https://pt-phdays.storage.yandexcloud.net/Yashnikov_Valerij_Obhod_sredstv_zashhity_yadra_Linux_pri_perehvate_potoka_upravleniya_compressed_373ea39bd6.pdf parent_primary_url: https://pt-phdays.storage.yandexcloud.net/Yashnikov_Valerij_Obhod_sredstv_zashhity_yadra_Linux_pri_perehvate_potoka_upravleniya_compressed_373ea39bd6.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"Control Flow Hijacking in the Linux Kernel\" by Valeriy Yashnikov](https://pt-phdays.storage.yandexcloud.net/Yashnikov_Valerij_Obhod_sredstv_zashhity_yadra_Linux_pri_perehvate_potoka_upravle",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://pt-phdays.storage.yandexcloud.net/Yashnikov_Valerij_Obhod_sredstv_zashhity_yadra_Linux_pri_perehvate_potoka_upravleniya_compressed_373ea39bd6.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://phdays.com/en/forum/broadcast/?talk=2291&selectedDate=Fri+May+23+2025+00%3A00%3A00+GMT%2B0200+%28Central+European+Summer+Time%29&selectedTagSlug=positive-labs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://pt-phdays.storage.yandexcloud.net/Yashnikov_Valerij_Obhod_sredstv_zashhity_yadra_Linux_pri_perehvate_potoka_upravleniya_compressed_373ea39bd6.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://phdays.com/en/forum/broadcast/?talk=2291&selectedDate=Fri+May+23+2025+00%3A00%3A00+GMT%2B0200+%28Central+European+Summer+Time%29&selectedTagSlug=positive-labs"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "control flow",
        "hijacking",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Control Flow Hijacking explores techniques for hijacking control flow in the Linux kernel.",
      "summary_zh": "Control Flow Hijacking探讨了在Linux内核中劫持控制流的技术。",
      "source_markdown": "[2025: \"Control Flow Hijacking in the Linux Kernel\" by Valeriy Yashnikov](https://pt-phdays.storage.yandexcloud.net/Yashnikov_Valerij_Obhod_sredstv_zashhity_yadra_Linux_pri_perehvate_potoka_upravleniya_compressed_373ea39bd6.pdf) [slides] [[video](https://phdays.com/en/forum/broadcast/?talk=2291&selectedDate=Fri+May+23+2025+00%3A00%3A00+GMT%2B0200+%28Central+European+Summer+Time%29&selectedTagSlug=positive-labs)]",
      "search_text": "control flow hijacking in the linux kernel control flow hijacking in the linux kernel valeriy yashnikov   techniques exploitation technique: exploitation primary slides https://pt-phdays.storage.yandexcloud.net/yashnikov_valerij_obhod_sredstv_zashhity_yadra_linux_pri_perehvate_potoka_upravleniya_compressed_373ea39bd6.pdf control flow hijacking exploitation  exploitation control flow hijacking explores techniques for hijacking control flow in the linux kernel. control flow hijacking探讨了在linux内核中劫持控制流的技术。 # control flow hijacking in the linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: control flow hijacking in the linux kernel resource_label: primary resource_type: slides resource_url: https://pt-phdays.storage.yandexcloud.net/yashnikov_valerij_obhod_sredstv_zashhity_yadra_linux_pri_perehvate_potoka_upravleniya_compressed_373ea39bd6.pdf parent_primary_url: https://pt-phdays.storage.yandexcloud.net/yashnikov_valerij_obhod_sredstv_zashhity_yadra_linux_pri_perehvate_potoka_upravleniya_compressed_373ea39bd6.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"control flow hijacking in the linux kernel\" by valeriy yashnikov](https://pt-phdays.storage.yandexcloud.net/yashnikov_valerij_obhod_sredstv_zashhity_yadra_linux_pri_perehvate_potoka_upravle no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "819a8ae831d9e9de",
      "item_id": "57df226e5286ff0b",
      "slug": "2025-techniques-exploitation-control-flow-hijacking-in-the-linux-kernel-video-47a8c7f4",
      "year": 2025,
      "title": "Control Flow Hijacking in the Linux Kernel · video",
      "item_title": "Control Flow Hijacking in the Linux Kernel",
      "authors": [
        "Valeriy Yashnikov"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://phdays.com/en/forum/broadcast/?talk=2291&selectedDate=Fri+May+23+2025+00%3A00%3A00+GMT%2B0200+%28Central+European+Summer+Time%29&selectedTagSlug=positive-labs",
      "primary_url": "https://phdays.com/en/forum/broadcast/?talk=2291&selectedDate=Fri+May+23+2025+00%3A00%3A00+GMT%2B0200+%28Central+European+Summer+Time%29&selectedTagSlug=positive-labs",
      "parent_primary_url": "https://pt-phdays.storage.yandexcloud.net/Yashnikov_Valerij_Obhod_sredstv_zashhity_yadra_Linux_pri_perehvate_potoka_upravleniya_compressed_373ea39bd6.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2025-techniques-exploitation-control-flow-hijacking-in-the-linux-kernel-video-47a8c7f4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Control Flow Hijacking in the Linux Kernel · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Control Flow Hijacking in the Linux Kernel resource_label: video resource_type: video resource_url: https://phdays.com/en/forum/broadcast/?talk=2291&selectedDate=Fri+May+23+2025+00%3A00%3A00+GMT%2B0200+%28Central+European+Summer+Time%29&selectedTagSlug=positive-labs parent_primary_url: https://pt-phdays.storage.yandexcloud.net/Yashnikov_Valerij_Obhod_sredstv_zashhity_yadra_Linux_pri_perehvate_potoka_upravleniya_compressed_373ea39bd6.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"Control Flow Hijacking in the Linux Kernel\" by Valeriy Yashnikov](https://pt-phdays.storage.yandexcloud.net/Yashnikov_Valerij_Obhod_sredstv_zashhity_yadra_Linux_pri_perehv",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://pt-phdays.storage.yandexcloud.net/Yashnikov_Valerij_Obhod_sredstv_zashhity_yadra_Linux_pri_perehvate_potoka_upravleniya_compressed_373ea39bd6.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://phdays.com/en/forum/broadcast/?talk=2291&selectedDate=Fri+May+23+2025+00%3A00%3A00+GMT%2B0200+%28Central+European+Summer+Time%29&selectedTagSlug=positive-labs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://pt-phdays.storage.yandexcloud.net/Yashnikov_Valerij_Obhod_sredstv_zashhity_yadra_Linux_pri_perehvate_potoka_upravleniya_compressed_373ea39bd6.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://phdays.com/en/forum/broadcast/?talk=2291&selectedDate=Fri+May+23+2025+00%3A00%3A00+GMT%2B0200+%28Central+European+Summer+Time%29&selectedTagSlug=positive-labs"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "control flow",
        "hijacking",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "A video presentation on Control Flow Hijacking techniques in the Linux kernel.",
      "summary_zh": "关于Linux内核中控制流劫持技术的视频演示。",
      "source_markdown": "[2025: \"Control Flow Hijacking in the Linux Kernel\" by Valeriy Yashnikov](https://pt-phdays.storage.yandexcloud.net/Yashnikov_Valerij_Obhod_sredstv_zashhity_yadra_Linux_pri_perehvate_potoka_upravleniya_compressed_373ea39bd6.pdf) [slides] [[video](https://phdays.com/en/forum/broadcast/?talk=2291&selectedDate=Fri+May+23+2025+00%3A00%3A00+GMT%2B0200+%28Central+European+Summer+Time%29&selectedTagSlug=positive-labs)]",
      "search_text": "control flow hijacking in the linux kernel · video control flow hijacking in the linux kernel valeriy yashnikov   techniques exploitation technique: exploitation video video https://phdays.com/en/forum/broadcast/?talk=2291&selecteddate=fri+may+23+2025+00%3a00%3a00+gmt%2b0200+%28central+european+summer+time%29&selectedtagslug=positive-labs control flow hijacking video  exploitation a video presentation on control flow hijacking techniques in the linux kernel. 关于linux内核中控制流劫持技术的视频演示。 # control flow hijacking in the linux kernel · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: control flow hijacking in the linux kernel resource_label: video resource_type: video resource_url: https://phdays.com/en/forum/broadcast/?talk=2291&selecteddate=fri+may+23+2025+00%3a00%3a00+gmt%2b0200+%28central+european+summer+time%29&selectedtagslug=positive-labs parent_primary_url: https://pt-phdays.storage.yandexcloud.net/yashnikov_valerij_obhod_sredstv_zashhity_yadra_linux_pri_perehvate_potoka_upravleniya_compressed_373ea39bd6.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"control flow hijacking in the linux kernel\" by valeriy yashnikov](https://pt-phdays.storage.yandexcloud.net/yashnikov_valerij_obhod_sredstv_zashhity_yadra_linux_pri_perehv no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "327940c4a3279c7a",
      "item_id": "a6b039aafcdd37e5",
      "slug": "2025-techniques-exploitation-kernel-exploitation-techniques-turning-the-page-tables-primary-777c8607",
      "year": 2025,
      "title": "Kernel Exploitation Techniques: Turning The (Page) Tables",
      "item_title": "Kernel Exploitation Techniques: Turning The (Page) Tables",
      "authors": [
        "Samuel Page"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://sam4k.com/page-table-kernel-exploitation/",
      "primary_url": "https://sam4k.com/page-table-kernel-exploitation/",
      "parent_primary_url": "https://sam4k.com/page-table-kernel-exploitation/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2025-techniques-exploitation-kernel-exploitation-techniques-turning-the-page-tables-primary-777c8607.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Exploitation Techniques: Turning The (Page) Tables record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Kernel Exploitation Techniques: Turning The (Page) Tables resource_label: primary resource_type: article resource_url: https://sam4k.com/page-table-kernel-exploitation/ parent_primary_url: https://sam4k.com/page-table-kernel-exploitation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"Kernel Exploitation Techniques: Turning The (Page) Tables\" by Samuel Page](https://sam4k.com/page-table-kernel-exploitation/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather tha",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://sam4k.com/page-table-kernel-exploitation/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://sam4k.com/page-table-kernel-exploitation/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "page tables",
        "exploitation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article discusses kernel exploitation techniques focusing on page tables.",
      "summary_zh": "本文讨论了专注于页表的内核利用技术。",
      "source_markdown": "[2025: \"Kernel Exploitation Techniques: Turning The (Page) Tables\" by Samuel Page](https://sam4k.com/page-table-kernel-exploitation/) [article]",
      "search_text": "kernel exploitation techniques: turning the (page) tables kernel exploitation techniques: turning the (page) tables samuel page   techniques exploitation technique: exploitation primary article https://sam4k.com/page-table-kernel-exploitation/ page tables exploitation kernel  research this article discusses kernel exploitation techniques focusing on page tables. 本文讨论了专注于页表的内核利用技术。 # kernel exploitation techniques: turning the (page) tables record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: kernel exploitation techniques: turning the (page) tables resource_label: primary resource_type: article resource_url: https://sam4k.com/page-table-kernel-exploitation/ parent_primary_url: https://sam4k.com/page-table-kernel-exploitation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"kernel exploitation techniques: turning the (page) tables\" by samuel page](https://sam4k.com/page-table-kernel-exploitation/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather tha no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "65bc2ad7b31ef868",
      "item_id": "025b0f34ed216a2c",
      "slug": "2025-techniques-exploitation-linux-kernel-exploitation-series-primary-f98c65c5",
      "year": 2025,
      "title": "Linux Kernel Exploitation series",
      "item_title": "Linux Kernel Exploitation series",
      "authors": [
        "r1ru"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://r1ru.github.io/categories/linux-kernel-exploitation/",
      "primary_url": "https://r1ru.github.io/categories/linux-kernel-exploitation/",
      "parent_primary_url": "https://r1ru.github.io/categories/linux-kernel-exploitation/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2025-techniques-exploitation-linux-kernel-exploitation-series-primary-f98c65c5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Exploitation series record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel Exploitation series resource_label: primary resource_type: article resource_url: https://r1ru.github.io/categories/linux-kernel-exploitation/ parent_primary_url: https://r1ru.github.io/categories/linux-kernel-exploitation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"Linux Kernel Exploitation series\" by r1ru](https://r1ru.github.io/categories/linux-kernel-exploitation/) [articles] [[code](https://github.com/r1ru/linux-kernel-exploitation)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kerne",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://r1ru.github.io/categories/linux-kernel-exploitation/"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/r1ru/linux-kernel-exploitation"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://r1ru.github.io/categories/linux-kernel-exploitation/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/r1ru/linux-kernel-exploitation"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://r1ru.github.io/categories/linux-kernel-exploitation/",
        "https://github.com/r1ru/linux-kernel-exploitation"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "series",
        "exploitation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "education",
      "summary_en": "A series of articles on Linux kernel exploitation techniques.",
      "summary_zh": "关于Linux内核利用技术的一系列文章。",
      "source_markdown": "[2025: \"Linux Kernel Exploitation series\" by r1ru](https://r1ru.github.io/categories/linux-kernel-exploitation/) [articles] [[code](https://github.com/r1ru/linux-kernel-exploitation)]",
      "search_text": "linux kernel exploitation series linux kernel exploitation series r1ru   techniques exploitation technique: exploitation primary article https://r1ru.github.io/categories/linux-kernel-exploitation/ series exploitation kernel  education a series of articles on linux kernel exploitation techniques. 关于linux内核利用技术的一系列文章。 # linux kernel exploitation series record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel exploitation series resource_label: primary resource_type: article resource_url: https://r1ru.github.io/categories/linux-kernel-exploitation/ parent_primary_url: https://r1ru.github.io/categories/linux-kernel-exploitation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"linux kernel exploitation series\" by r1ru](https://r1ru.github.io/categories/linux-kernel-exploitation/) [articles] [[code](https://github.com/r1ru/linux-kernel-exploitation)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kerne no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "d2987e9a824b16bc",
      "item_id": "025b0f34ed216a2c",
      "slug": "2025-techniques-exploitation-linux-kernel-exploitation-series-code-0acb0965",
      "year": 2025,
      "title": "Linux Kernel Exploitation series · code",
      "item_title": "Linux Kernel Exploitation series",
      "authors": [
        "r1ru"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/r1ru/linux-kernel-exploitation",
      "primary_url": "https://github.com/r1ru/linux-kernel-exploitation",
      "parent_primary_url": "https://r1ru.github.io/categories/linux-kernel-exploitation/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2025-techniques-exploitation-linux-kernel-exploitation-series-code-0acb0965.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Exploitation series · code record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel Exploitation series resource_label: code resource_type: code resource_url: https://github.com/r1ru/linux-kernel-exploitation parent_primary_url: https://r1ru.github.io/categories/linux-kernel-exploitation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"Linux Kernel Exploitation series\" by r1ru](https://r1ru.github.io/categories/linux-kernel-exploitation/) [articles] [[code](https://github.com/r1ru/linux-kernel-exploitation)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather t",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://r1ru.github.io/categories/linux-kernel-exploitation/"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/r1ru/linux-kernel-exploitation"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://r1ru.github.io/categories/linux-kernel-exploitation/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/r1ru/linux-kernel-exploitation"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://r1ru.github.io/categories/linux-kernel-exploitation/",
        "https://github.com/r1ru/linux-kernel-exploitation"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel",
        "techniques"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "A comprehensive series on Linux kernel exploitation techniques and methodologies.",
      "summary_zh": "关于Linux内核利用技术和方法的全面系列。",
      "source_markdown": "[2025: \"Linux Kernel Exploitation series\" by r1ru](https://r1ru.github.io/categories/linux-kernel-exploitation/) [articles] [[code](https://github.com/r1ru/linux-kernel-exploitation)]",
      "search_text": "linux kernel exploitation series · code linux kernel exploitation series r1ru   techniques exploitation technique: exploitation code code https://github.com/r1ru/linux-kernel-exploitation exploitation kernel techniques  resource a comprehensive series on linux kernel exploitation techniques and methodologies. 关于linux内核利用技术和方法的全面系列。 # linux kernel exploitation series · code record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel exploitation series resource_label: code resource_type: code resource_url: https://github.com/r1ru/linux-kernel-exploitation parent_primary_url: https://r1ru.github.io/categories/linux-kernel-exploitation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"linux kernel exploitation series\" by r1ru](https://r1ru.github.io/categories/linux-kernel-exploitation/) [articles] [[code](https://github.com/r1ru/linux-kernel-exploitation)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather t no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "06ec6a7439c7dcff",
      "item_id": "07850c2debae3d02",
      "slug": "2025-techniques-exploitation-reviving-the-modprobe-path-technique-overcoming-search-binary-handler-patch-prima",
      "year": 2025,
      "title": "Reviving the modprobe_path Technique: Overcoming search_binary_handler() Patch",
      "item_title": "Reviving the modprobe_path Technique: Overcoming search_binary_handler() Patch",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://theori.io/blog/reviving-the-modprobe-path-technique-overcoming-search-binary-handler-patch",
      "primary_url": "https://theori.io/blog/reviving-the-modprobe-path-technique-overcoming-search-binary-handler-patch",
      "parent_primary_url": "https://theori.io/blog/reviving-the-modprobe-path-technique-overcoming-search-binary-handler-patch",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2025-techniques-exploitation-reviving-the-modprobe-path-technique-overcoming-search-binary-handler-patch-prima.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Reviving the modprobe_path Technique: Overcoming search_binary_handler() Patch record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Reviving the modprobe_path Technique: Overcoming search_binary_handler() Patch resource_label: primary resource_type: article resource_url: https://theori.io/blog/reviving-the-modprobe-path-technique-overcoming-search-binary-handler-patch parent_primary_url: https://theori.io/blog/reviving-the-modprobe-path-technique-overcoming-search-binary-handler-patch source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"Reviving the modprobe_path Technique: Overcoming search_binary_handler() Patch\"](https://theori.io/blog/reviving-the-modprobe-path-technique-overcoming-search-binary-handler-patch) [article] cves: none android_impact_status: n",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://theori.io/blog/reviving-the-modprobe-path-technique-overcoming-search-binary-handler-patch"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://theori.io/blog/reviving-the-modprobe-path-technique-overcoming-search-binary-handler-patch"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://theori.io/blog/reviving-the-modprobe-path-technique-overcoming-search-binary-handler-patch"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "modprobe_path"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "An article discussing the revival of the modprobe_path technique against recent patches.",
      "summary_zh": "一篇讨论针对最近补丁的modprobe_path技术复兴的文章。",
      "source_markdown": "[2025: \"Reviving the modprobe_path Technique: Overcoming search_binary_handler() Patch\"](https://theori.io/blog/reviving-the-modprobe-path-technique-overcoming-search-binary-handler-patch) [article]",
      "search_text": "reviving the modprobe_path technique: overcoming search_binary_handler() patch reviving the modprobe_path technique: overcoming search_binary_handler() patch    techniques exploitation technique: exploitation primary article https://theori.io/blog/reviving-the-modprobe-path-technique-overcoming-search-binary-handler-patch exploitation modprobe_path  resource an article discussing the revival of the modprobe_path technique against recent patches. 一篇讨论针对最近补丁的modprobe_path技术复兴的文章。 # reviving the modprobe_path technique: overcoming search_binary_handler() patch record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: reviving the modprobe_path technique: overcoming search_binary_handler() patch resource_label: primary resource_type: article resource_url: https://theori.io/blog/reviving-the-modprobe-path-technique-overcoming-search-binary-handler-patch parent_primary_url: https://theori.io/blog/reviving-the-modprobe-path-technique-overcoming-search-binary-handler-patch source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"reviving the modprobe_path technique: overcoming search_binary_handler() patch\"](https://theori.io/blog/reviving-the-modprobe-path-technique-overcoming-search-binary-handler-patch) [article] cves: none android_impact_status: n no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "a877572926162210",
      "item_id": "5fa156401e4389d5",
      "slug": "2025-techniques-exploitation-when-good-kernel-defenses-go-bad-reliable-and-stable-kernel-exploits-via-defense-",
      "year": 2025,
      "title": "WHEN GOOD KERNEL DEFENSES GO BAD: Reliable and Stable Kernel Exploits via Defense-Amplified TLB Side-Channel Leaks",
      "item_title": "WHEN GOOD KERNEL DEFENSES GO BAD: Reliable and Stable Kernel Exploits via Defense-Amplified TLB Side-Channel Leaks",
      "authors": [
        "Lukas Maar et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf",
      "primary_url": "https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf",
      "parent_primary_url": "https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2025-techniques-exploitation-when-good-kernel-defenses-go-bad-reliable-and-stable-kernel-exploits-via-defense-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# WHEN GOOD KERNEL DEFENSES GO BAD: Reliable and Stable Kernel Exploits via Defense-Amplified TLB Side-Channel Leaks record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: WHEN GOOD KERNEL DEFENSES GO BAD: Reliable and Stable Kernel Exploits via Defense-Amplified TLB Side-Channel Leaks resource_label: primary resource_type: paper resource_url: https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf parent_primary_url: https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"WHEN GOOD KERNEL DEFENSES GO BAD: Reliable and Stable Kernel Exploits via Defense-Amplified TLB Side-Channel Leaks\" by Lukas Maar et al.](https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf) [paper] [[artifacts](https",
      "link_types": [
        "paper",
        "artifact",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://zenodo.org/records/14736361"
        },
        {
          "label": "github",
          "type": "code",
          "url": "https://github.com/isec-tugraz/TLBSideChannel"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://zenodo.org/records/14736361"
          },
          {
            "label": "github",
            "type": "code",
            "url": "https://github.com/isec-tugraz/TLBSideChannel"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf",
        "https://zenodo.org/records/14736361",
        "https://github.com/isec-tugraz/TLBSideChannel"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "TLB",
        "side-channel"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "Research on reliable kernel exploits utilizing TLB side-channel leaks.",
      "summary_zh": "利用TLB侧信道泄漏的可靠内核利用研究。",
      "source_markdown": "[2025: \"WHEN GOOD KERNEL DEFENSES GO BAD: Reliable and Stable Kernel Exploits via Defense-Amplified TLB Side-Channel Leaks\" by Lukas Maar et al.](https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf) [paper] [[artifacts](https://zenodo.org/records/14736361)] [[github](https://github.com/isec-tugraz/TLBSideChannel)]",
      "search_text": "when good kernel defenses go bad: reliable and stable kernel exploits via defense-amplified tlb side-channel leaks when good kernel defenses go bad: reliable and stable kernel exploits via defense-amplified tlb side-channel leaks lukas maar et al.   techniques exploitation technique: exploitation primary paper https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf exploitation tlb side-channel  resource research on reliable kernel exploits utilizing tlb side-channel leaks. 利用tlb侧信道泄漏的可靠内核利用研究。 # when good kernel defenses go bad: reliable and stable kernel exploits via defense-amplified tlb side-channel leaks record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: when good kernel defenses go bad: reliable and stable kernel exploits via defense-amplified tlb side-channel leaks resource_label: primary resource_type: paper resource_url: https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf parent_primary_url: https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"when good kernel defenses go bad: reliable and stable kernel exploits via defense-amplified tlb side-channel leaks\" by lukas maar et al.](https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf) [paper] [[artifacts](https no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ecc26b64b4d214b6",
      "item_id": "5fa156401e4389d5",
      "slug": "2025-techniques-exploitation-when-good-kernel-defenses-go-bad-reliable-and-stable-kernel-exploits-via-defense--2",
      "year": 2025,
      "title": "WHEN GOOD KERNEL DEFENSES GO BAD: Reliable and Stable Kernel Exploits via Defense-Amplified TLB Side-Channel Leaks · artifacts",
      "item_title": "WHEN GOOD KERNEL DEFENSES GO BAD: Reliable and Stable Kernel Exploits via Defense-Amplified TLB Side-Channel Leaks",
      "authors": [
        "Lukas Maar et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "artifacts",
      "resource_type": "artifact",
      "resource_url": "https://zenodo.org/records/14736361",
      "primary_url": "https://zenodo.org/records/14736361",
      "parent_primary_url": "https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2025-techniques-exploitation-when-good-kernel-defenses-go-bad-reliable-and-stable-kernel-exploits-via-defense--2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# WHEN GOOD KERNEL DEFENSES GO BAD: Reliable and Stable Kernel Exploits via Defense-Amplified TLB Side-Channel Leaks · artifacts record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: WHEN GOOD KERNEL DEFENSES GO BAD: Reliable and Stable Kernel Exploits via Defense-Amplified TLB Side-Channel Leaks resource_label: artifacts resource_type: artifact resource_url: https://zenodo.org/records/14736361 parent_primary_url: https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"WHEN GOOD KERNEL DEFENSES GO BAD: Reliable and Stable Kernel Exploits via Defense-Amplified TLB Side-Channel Leaks\" by Lukas Maar et al.](https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf) [paper] [[artifacts](https://zenodo.",
      "link_types": [
        "paper",
        "artifact",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://zenodo.org/records/14736361"
        },
        {
          "label": "github",
          "type": "code",
          "url": "https://github.com/isec-tugraz/TLBSideChannel"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://zenodo.org/records/14736361"
          },
          {
            "label": "github",
            "type": "code",
            "url": "https://github.com/isec-tugraz/TLBSideChannel"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf",
        "https://zenodo.org/records/14736361",
        "https://github.com/isec-tugraz/TLBSideChannel"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "TLB",
        "artifacts"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "Artifacts related to the study of TLB side-channel leaks for kernel exploits.",
      "summary_zh": "与内核利用的TLB侧信道泄漏研究相关的文物。",
      "source_markdown": "[2025: \"WHEN GOOD KERNEL DEFENSES GO BAD: Reliable and Stable Kernel Exploits via Defense-Amplified TLB Side-Channel Leaks\" by Lukas Maar et al.](https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf) [paper] [[artifacts](https://zenodo.org/records/14736361)] [[github](https://github.com/isec-tugraz/TLBSideChannel)]",
      "search_text": "when good kernel defenses go bad: reliable and stable kernel exploits via defense-amplified tlb side-channel leaks · artifacts when good kernel defenses go bad: reliable and stable kernel exploits via defense-amplified tlb side-channel leaks lukas maar et al.   techniques exploitation technique: exploitation artifacts artifact https://zenodo.org/records/14736361 exploitation tlb artifacts  resource artifacts related to the study of tlb side-channel leaks for kernel exploits. 与内核利用的tlb侧信道泄漏研究相关的文物。 # when good kernel defenses go bad: reliable and stable kernel exploits via defense-amplified tlb side-channel leaks · artifacts record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: when good kernel defenses go bad: reliable and stable kernel exploits via defense-amplified tlb side-channel leaks resource_label: artifacts resource_type: artifact resource_url: https://zenodo.org/records/14736361 parent_primary_url: https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"when good kernel defenses go bad: reliable and stable kernel exploits via defense-amplified tlb side-channel leaks\" by lukas maar et al.](https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf) [paper] [[artifacts](https://zenodo. no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "a92424b20d46afae",
      "item_id": "5fa156401e4389d5",
      "slug": "2025-techniques-exploitation-when-good-kernel-defenses-go-bad-reliable-and-stable-kernel-exploits-via-defense--3",
      "year": 2025,
      "title": "WHEN GOOD KERNEL DEFENSES GO BAD: Reliable and Stable Kernel Exploits via Defense-Amplified TLB Side-Channel Leaks · github",
      "item_title": "WHEN GOOD KERNEL DEFENSES GO BAD: Reliable and Stable Kernel Exploits via Defense-Amplified TLB Side-Channel Leaks",
      "authors": [
        "Lukas Maar et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "github",
      "resource_type": "code",
      "resource_url": "https://github.com/isec-tugraz/TLBSideChannel",
      "primary_url": "https://github.com/isec-tugraz/TLBSideChannel",
      "parent_primary_url": "https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2025-techniques-exploitation-when-good-kernel-defenses-go-bad-reliable-and-stable-kernel-exploits-via-defense--3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# WHEN GOOD KERNEL DEFENSES GO BAD: Reliable and Stable Kernel Exploits via Defense-Amplified TLB Side-Channel Leaks · github record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: WHEN GOOD KERNEL DEFENSES GO BAD: Reliable and Stable Kernel Exploits via Defense-Amplified TLB Side-Channel Leaks resource_label: github resource_type: code resource_url: https://github.com/isec-tugraz/TLBSideChannel parent_primary_url: https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"WHEN GOOD KERNEL DEFENSES GO BAD: Reliable and Stable Kernel Exploits via Defense-Amplified TLB Side-Channel Leaks\" by Lukas Maar et al.](https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf) [paper] [[artifacts](https://zenodo.",
      "link_types": [
        "paper",
        "artifact",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://zenodo.org/records/14736361"
        },
        {
          "label": "github",
          "type": "code",
          "url": "https://github.com/isec-tugraz/TLBSideChannel"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://zenodo.org/records/14736361"
          },
          {
            "label": "github",
            "type": "code",
            "url": "https://github.com/isec-tugraz/TLBSideChannel"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf",
        "https://zenodo.org/records/14736361",
        "https://github.com/isec-tugraz/TLBSideChannel"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "TLB",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "GitHub repository containing code related to TLB side-channel exploits.",
      "summary_zh": "包含与TLB侧信道利用相关代码的GitHub库。",
      "source_markdown": "[2025: \"WHEN GOOD KERNEL DEFENSES GO BAD: Reliable and Stable Kernel Exploits via Defense-Amplified TLB Side-Channel Leaks\" by Lukas Maar et al.](https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf) [paper] [[artifacts](https://zenodo.org/records/14736361)] [[github](https://github.com/isec-tugraz/TLBSideChannel)]",
      "search_text": "when good kernel defenses go bad: reliable and stable kernel exploits via defense-amplified tlb side-channel leaks · github when good kernel defenses go bad: reliable and stable kernel exploits via defense-amplified tlb side-channel leaks lukas maar et al.   techniques exploitation technique: exploitation github code https://github.com/isec-tugraz/tlbsidechannel exploitation tlb code  resource github repository containing code related to tlb side-channel exploits. 包含与tlb侧信道利用相关代码的github库。 # when good kernel defenses go bad: reliable and stable kernel exploits via defense-amplified tlb side-channel leaks · github record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: when good kernel defenses go bad: reliable and stable kernel exploits via defense-amplified tlb side-channel leaks resource_label: github resource_type: code resource_url: https://github.com/isec-tugraz/tlbsidechannel parent_primary_url: https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"when good kernel defenses go bad: reliable and stable kernel exploits via defense-amplified tlb side-channel leaks\" by lukas maar et al.](https://lukasmaar.github.io/papers/usenix25-tlbsidechannel.pdf) [paper] [[artifacts](https://zenodo. no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "2e869a595f15a8c7",
      "item_id": "6a646043abd1038e",
      "slug": "2025-techniques-exploitation-cross-cache-attack-cheetsheet-primary-10291160",
      "year": 2025,
      "title": "Cross Cache Attack CheetSheet",
      "item_title": "Cross Cache Attack CheetSheet",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/01/03/cross-cache-attack-cheatsheet.html",
      "primary_url": "https://u1f383.github.io/linux/2025/01/03/cross-cache-attack-cheatsheet.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/01/03/cross-cache-attack-cheatsheet.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2025-techniques-exploitation-cross-cache-attack-cheetsheet-primary-10291160.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Cross Cache Attack CheetSheet record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Cross Cache Attack CheetSheet resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/01/03/cross-cache-attack-cheatsheet.html parent_primary_url: https://u1f383.github.io/linux/2025/01/03/cross-cache-attack-cheatsheet.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"Cross Cache Attack CheetSheet\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/01/03/cross-cache-attack-cheatsheet.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/01/03/cross-cache-attack-cheatsheet.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/01/03/cross-cache-attack-cheatsheet.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/01/03/cross-cache-attack-cheatsheet.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "cross-cache"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "A cheatsheet summarizing cross-cache attack techniques.",
      "summary_zh": "总结跨缓存攻击技术的备忘单。",
      "source_markdown": "[2025: \"Cross Cache Attack CheetSheet\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/01/03/cross-cache-attack-cheatsheet.html) [article]",
      "search_text": "cross cache attack cheetsheet cross cache attack cheetsheet pumpkin chang   techniques exploitation technique: exploitation primary article https://u1f383.github.io/linux/2025/01/03/cross-cache-attack-cheatsheet.html exploitation cross-cache  resource a cheatsheet summarizing cross-cache attack techniques. 总结跨缓存攻击技术的备忘单。 # cross cache attack cheetsheet record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: cross cache attack cheetsheet resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/01/03/cross-cache-attack-cheatsheet.html parent_primary_url: https://u1f383.github.io/linux/2025/01/03/cross-cache-attack-cheatsheet.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2025: \"cross cache attack cheetsheet\" by pumpkin chang](https://u1f383.github.io/linux/2025/01/03/cross-cache-attack-cheatsheet.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "596bd530ff04ad4b",
      "item_id": "5377bb9f36eba23d",
      "slug": "2024-techniques-exploitation-cross-cache-for-lazy-people-the-padding-spray-method-primary-d1eed4e8",
      "year": 2024,
      "title": "Cross Cache for Lazy People -- The Padding Spray Method",
      "item_title": "Cross Cache for Lazy People -- The Padding Spray Method",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://kaligulaarmblessed.github.io/post/cross-cache-for-lazy-people/",
      "primary_url": "https://kaligulaarmblessed.github.io/post/cross-cache-for-lazy-people/",
      "parent_primary_url": "https://kaligulaarmblessed.github.io/post/cross-cache-for-lazy-people/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-cross-cache-for-lazy-people-the-padding-spray-method-primary-d1eed4e8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Cross Cache for Lazy People -- The Padding Spray Method record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Cross Cache for Lazy People -- The Padding Spray Method resource_label: primary resource_type: article resource_url: https://kaligulaarmblessed.github.io/post/cross-cache-for-lazy-people/ parent_primary_url: https://kaligulaarmblessed.github.io/post/cross-cache-for-lazy-people/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"Cross Cache for Lazy People -- The Padding Spray Method\"](https://kaligulaarmblessed.github.io/post/cross-cache-for-lazy-people/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kaligulaarmblessed.github.io/post/cross-cache-for-lazy-people/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kaligulaarmblessed.github.io/post/cross-cache-for-lazy-people/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://kaligulaarmblessed.github.io/post/cross-cache-for-lazy-people/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "padding-spray"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "An article detailing the padding spray method for cross-cache attacks.",
      "summary_zh": "详细介绍跨缓存攻击的填充喷雾方法的文章。",
      "source_markdown": "[2024: \"Cross Cache for Lazy People -- The Padding Spray Method\"](https://kaligulaarmblessed.github.io/post/cross-cache-for-lazy-people/) [article]",
      "search_text": "cross cache for lazy people -- the padding spray method cross cache for lazy people -- the padding spray method    techniques exploitation technique: exploitation primary article https://kaligulaarmblessed.github.io/post/cross-cache-for-lazy-people/ exploitation padding-spray  resource an article detailing the padding spray method for cross-cache attacks. 详细介绍跨缓存攻击的填充喷雾方法的文章。 # cross cache for lazy people -- the padding spray method record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: cross cache for lazy people -- the padding spray method resource_label: primary resource_type: article resource_url: https://kaligulaarmblessed.github.io/post/cross-cache-for-lazy-people/ parent_primary_url: https://kaligulaarmblessed.github.io/post/cross-cache-for-lazy-people/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"cross cache for lazy people -- the padding spray method\"](https://kaligulaarmblessed.github.io/post/cross-cache-for-lazy-people/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "11a94fe1ddb1f3fc",
      "item_id": "d489068d262e378a",
      "slug": "2024-techniques-exploitation-linux-kernel-use-pipe-object-to-do-data-only-attack-primary-19a2dba0",
      "year": 2024,
      "title": "Linux Kernel Use Pipe Object to Do Data-Only Attack",
      "item_title": "Linux Kernel Use Pipe Object to Do Data-Only Attack",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2024/08/16/linux-kernel-use-pipe-object-to-do-data-only-attack.html",
      "primary_url": "https://u1f383.github.io/linux/2024/08/16/linux-kernel-use-pipe-object-to-do-data-only-attack.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2024/08/16/linux-kernel-use-pipe-object-to-do-data-only-attack.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-linux-kernel-use-pipe-object-to-do-data-only-attack-primary-19a2dba0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Use Pipe Object to Do Data-Only Attack record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel Use Pipe Object to Do Data-Only Attack resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/08/16/linux-kernel-use-pipe-object-to-do-data-only-attack.html parent_primary_url: https://u1f383.github.io/linux/2024/08/16/linux-kernel-use-pipe-object-to-do-data-only-attack.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"Linux Kernel Use Pipe Object to Do Data-Only Attack\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/08/16/linux-kernel-use-pipe-object-to-do-data-only-attack.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/08/16/linux-kernel-use-pipe-object-to-do-data-only-attack.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/08/16/linux-kernel-use-pipe-object-to-do-data-only-attack.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2024/08/16/linux-kernel-use-pipe-object-to-do-data-only-attack.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "pipe-attack"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "Discussion on using pipe objects for data-only attacks in the Linux kernel.",
      "summary_zh": "讨论在Linux内核中使用管道对象进行数据仅攻击。",
      "source_markdown": "[2024: \"Linux Kernel Use Pipe Object to Do Data-Only Attack\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/08/16/linux-kernel-use-pipe-object-to-do-data-only-attack.html) [article]",
      "search_text": "linux kernel use pipe object to do data-only attack linux kernel use pipe object to do data-only attack pumpkin chang   techniques exploitation technique: exploitation primary article https://u1f383.github.io/linux/2024/08/16/linux-kernel-use-pipe-object-to-do-data-only-attack.html exploitation pipe-attack  resource discussion on using pipe objects for data-only attacks in the linux kernel. 讨论在linux内核中使用管道对象进行数据仅攻击。 # linux kernel use pipe object to do data-only attack record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel use pipe object to do data-only attack resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/08/16/linux-kernel-use-pipe-object-to-do-data-only-attack.html parent_primary_url: https://u1f383.github.io/linux/2024/08/16/linux-kernel-use-pipe-object-to-do-data-only-attack.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"linux kernel use pipe object to do data-only attack\" by pumpkin chang](https://u1f383.github.io/linux/2024/08/16/linux-kernel-use-pipe-object-to-do-data-only-attack.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "8558c9f1ddee7a37",
      "item_id": "21eeffa5b84c5dd0",
      "slug": "2024-techniques-exploitation-ctf-style-tricks-of-linux-kernel-exploitation-primary-359c35ff",
      "year": 2024,
      "title": "CTF-style Tricks of Linux Kernel Exploitation",
      "item_title": "CTF-style Tricks of Linux Kernel Exploitation",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html",
      "primary_url": "https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-ctf-style-tricks-of-linux-kernel-exploitation-primary-359c35ff.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CTF-style Tricks of Linux Kernel Exploitation record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: CTF-style Tricks of Linux Kernel Exploitation resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html parent_primary_url: https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"CTF-style Tricks of Linux Kernel Exploitation\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html) [article] [[part 2](https://u1f383.github.io/linux/2024/08/07/ctf-style-tricks-of-linux-kernel-exploitation-part-2.html)] cv",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/08/07/ctf-style-tricks-of-linux-kernel-exploitation-part-2.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/08/07/ctf-style-tricks-of-linux-kernel-exploitation-part-2.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html",
        "https://u1f383.github.io/linux/2024/08/07/ctf-style-tricks-of-linux-kernel-exploitation-part-2.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "CTF",
        "tricks"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "An article presenting CTF-style tricks for Linux kernel exploitation.",
      "summary_zh": "介绍Linux内核利用的CTF风格技巧的文章。",
      "source_markdown": "[2024: \"CTF-style Tricks of Linux Kernel Exploitation\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html) [article] [[part 2](https://u1f383.github.io/linux/2024/08/07/ctf-style-tricks-of-linux-kernel-exploitation-part-2.html)]",
      "search_text": "ctf-style tricks of linux kernel exploitation ctf-style tricks of linux kernel exploitation pumpkin chang   techniques exploitation technique: exploitation primary article https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html exploitation ctf tricks  resource an article presenting ctf-style tricks for linux kernel exploitation. 介绍linux内核利用的ctf风格技巧的文章。 # ctf-style tricks of linux kernel exploitation record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: ctf-style tricks of linux kernel exploitation resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html parent_primary_url: https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"ctf-style tricks of linux kernel exploitation\" by pumpkin chang](https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html) [article] [[part 2](https://u1f383.github.io/linux/2024/08/07/ctf-style-tricks-of-linux-kernel-exploitation-part-2.html)] cv no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "26dca6b6d738d29e",
      "item_id": "21eeffa5b84c5dd0",
      "slug": "2024-techniques-exploitation-ctf-style-tricks-of-linux-kernel-exploitation-part-2-04862ba7",
      "year": 2024,
      "title": "CTF-style Tricks of Linux Kernel Exploitation · part 2",
      "item_title": "CTF-style Tricks of Linux Kernel Exploitation",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "part 2",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2024/08/07/ctf-style-tricks-of-linux-kernel-exploitation-part-2.html",
      "primary_url": "https://u1f383.github.io/linux/2024/08/07/ctf-style-tricks-of-linux-kernel-exploitation-part-2.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-ctf-style-tricks-of-linux-kernel-exploitation-part-2-04862ba7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CTF-style Tricks of Linux Kernel Exploitation · part 2 record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: CTF-style Tricks of Linux Kernel Exploitation resource_label: part 2 resource_type: article resource_url: https://u1f383.github.io/linux/2024/08/07/ctf-style-tricks-of-linux-kernel-exploitation-part-2.html parent_primary_url: https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"CTF-style Tricks of Linux Kernel Exploitation\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html) [article] [[part 2](https://u1f383.github.io/linux/2024/08/07/ctf-style-tricks-of-linux-kernel-exploitation-part-2.h",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/08/07/ctf-style-tricks-of-linux-kernel-exploitation-part-2.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/08/07/ctf-style-tricks-of-linux-kernel-exploitation-part-2.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html",
        "https://u1f383.github.io/linux/2024/08/07/ctf-style-tricks-of-linux-kernel-exploitation-part-2.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "CTF",
        "tricks"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "Continuation of CTF-style tricks for Linux kernel exploitation.",
      "summary_zh": "Linux内核利用的CTF风格技巧的延续。",
      "source_markdown": "[2024: \"CTF-style Tricks of Linux Kernel Exploitation\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html) [article] [[part 2](https://u1f383.github.io/linux/2024/08/07/ctf-style-tricks-of-linux-kernel-exploitation-part-2.html)]",
      "search_text": "ctf-style tricks of linux kernel exploitation · part 2 ctf-style tricks of linux kernel exploitation pumpkin chang   techniques exploitation technique: exploitation part 2 article https://u1f383.github.io/linux/2024/08/07/ctf-style-tricks-of-linux-kernel-exploitation-part-2.html exploitation ctf tricks  resource continuation of ctf-style tricks for linux kernel exploitation. linux内核利用的ctf风格技巧的延续。 # ctf-style tricks of linux kernel exploitation · part 2 record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: ctf-style tricks of linux kernel exploitation resource_label: part 2 resource_type: article resource_url: https://u1f383.github.io/linux/2024/08/07/ctf-style-tricks-of-linux-kernel-exploitation-part-2.html parent_primary_url: https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"ctf-style tricks of linux kernel exploitation\" by pumpkin chang](https://u1f383.github.io/linux/2024/08/04/ctf-style-tricks-of-linux-kernel-exploitation-part-1.html) [article] [[part 2](https://u1f383.github.io/linux/2024/08/07/ctf-style-tricks-of-linux-kernel-exploitation-part-2.h no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "07cae7a071c4b2b3",
      "item_id": "3ca6720017c8d8e3",
      "slug": "2024-techniques-exploitation-linux-kernel-exploitation-cheatsheet-primary-ce306e74",
      "year": 2024,
      "title": "Linux Kernel exploitation cheatsheet",
      "item_title": "Linux Kernel exploitation cheatsheet",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/cheatsheet/1970/01/01/welcome-to-jekyll.html",
      "primary_url": "https://u1f383.github.io/cheatsheet/1970/01/01/welcome-to-jekyll.html",
      "parent_primary_url": "https://u1f383.github.io/cheatsheet/1970/01/01/welcome-to-jekyll.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-linux-kernel-exploitation-cheatsheet-primary-ce306e74.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel exploitation cheatsheet record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel exploitation cheatsheet resource_label: primary resource_type: article resource_url: https://u1f383.github.io/cheatsheet/1970/01/01/welcome-to-jekyll.html parent_primary_url: https://u1f383.github.io/cheatsheet/1970/01/01/welcome-to-jekyll.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"Linux Kernel exploitation cheatsheet\" by Pumpkin Chang](https://u1f383.github.io/cheatsheet/1970/01/01/welcome-to-jekyll.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/cheatsheet/1970/01/01/welcome-to-jekyll.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/cheatsheet/1970/01/01/welcome-to-jekyll.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/cheatsheet/1970/01/01/welcome-to-jekyll.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "cheatsheet"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "A cheatsheet for Linux kernel exploitation techniques.",
      "summary_zh": "Linux内核利用技术的备忘单。",
      "source_markdown": "[2024: \"Linux Kernel exploitation cheatsheet\" by Pumpkin Chang](https://u1f383.github.io/cheatsheet/1970/01/01/welcome-to-jekyll.html) [article]",
      "search_text": "linux kernel exploitation cheatsheet linux kernel exploitation cheatsheet pumpkin chang   techniques exploitation technique: exploitation primary article https://u1f383.github.io/cheatsheet/1970/01/01/welcome-to-jekyll.html exploitation cheatsheet  resource a cheatsheet for linux kernel exploitation techniques. linux内核利用技术的备忘单。 # linux kernel exploitation cheatsheet record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel exploitation cheatsheet resource_label: primary resource_type: article resource_url: https://u1f383.github.io/cheatsheet/1970/01/01/welcome-to-jekyll.html parent_primary_url: https://u1f383.github.io/cheatsheet/1970/01/01/welcome-to-jekyll.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"linux kernel exploitation cheatsheet\" by pumpkin chang](https://u1f383.github.io/cheatsheet/1970/01/01/welcome-to-jekyll.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "bbeb44f93d626f8b",
      "item_id": "656b6c477e9bddf0",
      "slug": "2024-techniques-exploitation-slub-internals-for-exploit-developers-primary-0b466a5f",
      "year": 2024,
      "title": "SLUB Internals for Exploit Developers",
      "item_title": "SLUB Internals for Exploit Developers",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://static.sched.com/hosted_files/lsseu2024/37/2024%2C%20LSS%20EU_%20SLUB%20Internals%20for%20Exploit%20Developers.pdf",
      "primary_url": "https://static.sched.com/hosted_files/lsseu2024/37/2024%2C%20LSS%20EU_%20SLUB%20Internals%20for%20Exploit%20Developers.pdf",
      "parent_primary_url": "https://static.sched.com/hosted_files/lsseu2024/37/2024%2C%20LSS%20EU_%20SLUB%20Internals%20for%20Exploit%20Developers.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-slub-internals-for-exploit-developers-primary-0b466a5f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SLUB Internals for Exploit Developers record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: SLUB Internals for Exploit Developers resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/lsseu2024/37/2024%2C%20LSS%20EU_%20SLUB%20Internals%20for%20Exploit%20Developers.pdf parent_primary_url: https://static.sched.com/hosted_files/lsseu2024/37/2024%2C%20LSS%20EU_%20SLUB%20Internals%20for%20Exploit%20Developers.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"SLUB Internals for Exploit Developers\" by Andrey Konovalov](https://static.sched.com/hosted_files/lsseu2024/37/2024%2C%20LSS%20EU_%20SLUB%20Internals%20for%20Exploit%20Developers.pdf) [slides] [[video](https://www.youtube.com/watch?v=XulsBDV4n3w)] cves: none an",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lsseu2024/37/2024%2C%20LSS%20EU_%20SLUB%20Internals%20for%20Exploit%20Developers.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=XulsBDV4n3w"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lsseu2024/37/2024%2C%20LSS%20EU_%20SLUB%20Internals%20for%20Exploit%20Developers.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=XulsBDV4n3w"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "SLUB",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "Slides on SLUB internals aimed at exploit developers.",
      "summary_zh": "面向利用开发者的SLUB内部结构幻灯片。",
      "source_markdown": "[2024: \"SLUB Internals for Exploit Developers\" by Andrey Konovalov](https://static.sched.com/hosted_files/lsseu2024/37/2024%2C%20LSS%20EU_%20SLUB%20Internals%20for%20Exploit%20Developers.pdf) [slides] [[video](https://www.youtube.com/watch?v=XulsBDV4n3w)]",
      "search_text": "slub internals for exploit developers slub internals for exploit developers andrey konovalov   techniques exploitation technique: exploitation primary slides https://static.sched.com/hosted_files/lsseu2024/37/2024%2c%20lss%20eu_%20slub%20internals%20for%20exploit%20developers.pdf exploitation slub slides  resource slides on slub internals aimed at exploit developers. 面向利用开发者的slub内部结构幻灯片。 # slub internals for exploit developers record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: slub internals for exploit developers resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/lsseu2024/37/2024%2c%20lss%20eu_%20slub%20internals%20for%20exploit%20developers.pdf parent_primary_url: https://static.sched.com/hosted_files/lsseu2024/37/2024%2c%20lss%20eu_%20slub%20internals%20for%20exploit%20developers.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"slub internals for exploit developers\" by andrey konovalov](https://static.sched.com/hosted_files/lsseu2024/37/2024%2c%20lss%20eu_%20slub%20internals%20for%20exploit%20developers.pdf) [slides] [[video](https://www.youtube.com/watch?v=xulsbdv4n3w)] cves: none an no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "6dda0893238657ef",
      "item_id": "656b6c477e9bddf0",
      "slug": "2024-techniques-exploitation-slub-internals-for-exploit-developers-video-6df7d2b8",
      "year": 2024,
      "title": "SLUB Internals for Exploit Developers · video",
      "item_title": "SLUB Internals for Exploit Developers",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=XulsBDV4n3w",
      "primary_url": "https://www.youtube.com/watch?v=XulsBDV4n3w",
      "parent_primary_url": "https://static.sched.com/hosted_files/lsseu2024/37/2024%2C%20LSS%20EU_%20SLUB%20Internals%20for%20Exploit%20Developers.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-slub-internals-for-exploit-developers-video-6df7d2b8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SLUB Internals for Exploit Developers · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: SLUB Internals for Exploit Developers resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=XulsBDV4n3w parent_primary_url: https://static.sched.com/hosted_files/lsseu2024/37/2024%2C%20LSS%20EU_%20SLUB%20Internals%20for%20Exploit%20Developers.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"SLUB Internals for Exploit Developers\" by Andrey Konovalov](https://static.sched.com/hosted_files/lsseu2024/37/2024%2C%20LSS%20EU_%20SLUB%20Internals%20for%20Exploit%20Developers.pdf) [slides] [[video](https://www.youtube.com/watch?v=XulsBDV4n3w)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that th",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lsseu2024/37/2024%2C%20LSS%20EU_%20SLUB%20Internals%20for%20Exploit%20Developers.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=XulsBDV4n3w"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lsseu2024/37/2024%2C%20LSS%20EU_%20SLUB%20Internals%20for%20Exploit%20Developers.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=XulsBDV4n3w"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "SLUB",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "Video presentation on SLUB internals for exploit developers.",
      "summary_zh": "面向利用开发者的SLUB内部结构视频演示。",
      "source_markdown": "[2024: \"SLUB Internals for Exploit Developers\" by Andrey Konovalov](https://static.sched.com/hosted_files/lsseu2024/37/2024%2C%20LSS%20EU_%20SLUB%20Internals%20for%20Exploit%20Developers.pdf) [slides] [[video](https://www.youtube.com/watch?v=XulsBDV4n3w)]",
      "search_text": "slub internals for exploit developers · video slub internals for exploit developers andrey konovalov   techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=xulsbdv4n3w exploitation slub video  resource video presentation on slub internals for exploit developers. 面向利用开发者的slub内部结构视频演示。 # slub internals for exploit developers · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: slub internals for exploit developers resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=xulsbdv4n3w parent_primary_url: https://static.sched.com/hosted_files/lsseu2024/37/2024%2c%20lss%20eu_%20slub%20internals%20for%20exploit%20developers.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"slub internals for exploit developers\" by andrey konovalov](https://static.sched.com/hosted_files/lsseu2024/37/2024%2c%20lss%20eu_%20slub%20internals%20for%20exploit%20developers.pdf) [slides] [[video](https://www.youtube.com/watch?v=xulsbdv4n3w)] cves: none android_impact_status: no android_impact_reason: not enough evidence that th no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "1d50939e048f8c45",
      "item_id": "2b0d576b36b6861d",
      "slug": "2024-techniques-exploitation-scavy-automated-discovery-of-memory-corruption-targets-in-linux-kernel-for-privil",
      "year": 2024,
      "title": "SCAVY: Automated Discovery of Memory Corruption Targets in Linux Kernel for Privilege Escalation",
      "item_title": "SCAVY: Automated Discovery of Memory Corruption Targets in Linux Kernel for Privilege Escalation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity24-avllazagaj.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity24-avllazagaj.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-avllazagaj.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-scavy-automated-discovery-of-memory-corruption-targets-in-linux-kernel-for-privil.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SCAVY: Automated Discovery of Memory Corruption Targets in Linux Kernel for Privilege Escalation record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: SCAVY: Automated Discovery of Memory Corruption Targets in Linux Kernel for Privilege Escalation resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity24-avllazagaj.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-avllazagaj.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"SCAVY: Automated Discovery of Memory Corruption Targets in Linux Kernel for Privilege Escalation\"](https://www.usenix.org/system/files/usenixsecurity24-avllazagaj.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidenc",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-avllazagaj.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-avllazagaj.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "memory-corruption"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "Research paper on automated discovery of memory corruption targets in the Linux kernel.",
      "summary_zh": "关于Linux内核中内存损坏目标的自动发现的研究论文。",
      "source_markdown": "[2024: \"SCAVY: Automated Discovery of Memory Corruption Targets in Linux Kernel for Privilege Escalation\"](https://www.usenix.org/system/files/usenixsecurity24-avllazagaj.pdf) [paper]",
      "search_text": "scavy: automated discovery of memory corruption targets in linux kernel for privilege escalation scavy: automated discovery of memory corruption targets in linux kernel for privilege escalation    techniques exploitation technique: exploitation primary paper https://www.usenix.org/system/files/usenixsecurity24-avllazagaj.pdf exploitation memory-corruption  resource research paper on automated discovery of memory corruption targets in the linux kernel. 关于linux内核中内存损坏目标的自动发现的研究论文。 # scavy: automated discovery of memory corruption targets in linux kernel for privilege escalation record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: scavy: automated discovery of memory corruption targets in linux kernel for privilege escalation resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity24-avllazagaj.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-avllazagaj.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"scavy: automated discovery of memory corruption targets in linux kernel for privilege escalation\"](https://www.usenix.org/system/files/usenixsecurity24-avllazagaj.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidenc no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3a65abb28758ca29",
      "item_id": "0c6c4c9b479fe945",
      "slug": "2024-techniques-exploitation-pagejack-a-powerful-exploit-technique-with-page-level-uaf-primary-b41b90d8",
      "year": 2024,
      "title": "PageJack: A Powerful Exploit Technique With Page-Level UAF",
      "item_title": "PageJack: A Powerful Exploit Technique With Page-Level UAF",
      "authors": [
        "Zhiyun Qian et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf",
      "primary_url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf",
      "parent_primary_url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-pagejack-a-powerful-exploit-technique-with-page-level-uaf-primary-b41b90d8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PageJack: A Powerful Exploit Technique With Page-Level UAF record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: PageJack: A Powerful Exploit Technique With Page-Level UAF resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf parent_primary_url: https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"PageJack: A Powerful Exploit Technique With Page-Level UAF\" by Zhiyun Qian et. al](https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf) ",
      "link_types": [
        "slides",
        "video",
        "code",
        "summary"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=uZW9RbZaq6A"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/Lotuhu/Page-UAF"
        },
        {
          "label": "summary",
          "type": "summary",
          "url": "https://phrack.org/issues/71/13.html#article"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=uZW9RbZaq6A"
          }
        ],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/Lotuhu/Page-UAF"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "summary",
            "type": "summary",
            "url": "https://phrack.org/issues/71/13.html#article"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf",
        "https://github.com/Lotuhu/Page-UAF"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "PageJack",
        "UAF"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "Slides presenting the PageJack exploit technique with page-level UAF.",
      "summary_zh": "介绍页面级UAF的PageJack利用技术的幻灯片。",
      "source_markdown": "[2024: \"PageJack: A Powerful Exploit Technique With Page-Level UAF\" by Zhiyun Qian et. al](https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf) [slides] [[video](https://www.youtube.com/watch?v=uZW9RbZaq6A)] [[code](https://github.com/Lotuhu/Page-UAF)] [[summary](https://phrack.org/issues/71/13.html#article)]",
      "search_text": "pagejack: a powerful exploit technique with page-level uaf pagejack: a powerful exploit technique with page-level uaf zhiyun qian et. al   techniques exploitation technique: exploitation primary slides https://i.blackhat.com/bh-us-24/presentations/us24-qian-pagejack-a-powerful-exploit-technique-with-page-level-uaf-thursday.pdf exploitation pagejack uaf  resource slides presenting the pagejack exploit technique with page-level uaf. 介绍页面级uaf的pagejack利用技术的幻灯片。 # pagejack: a powerful exploit technique with page-level uaf record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: pagejack: a powerful exploit technique with page-level uaf resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/bh-us-24/presentations/us24-qian-pagejack-a-powerful-exploit-technique-with-page-level-uaf-thursday.pdf parent_primary_url: https://i.blackhat.com/bh-us-24/presentations/us24-qian-pagejack-a-powerful-exploit-technique-with-page-level-uaf-thursday.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"pagejack: a powerful exploit technique with page-level uaf\" by zhiyun qian et. al](https://i.blackhat.com/bh-us-24/presentations/us24-qian-pagejack-a-powerful-exploit-technique-with-page-level-uaf-thursday.pdf)  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "7574df2b883c3a4c",
      "item_id": "0c6c4c9b479fe945",
      "slug": "2024-techniques-exploitation-pagejack-a-powerful-exploit-technique-with-page-level-uaf-video-df97d958",
      "year": 2024,
      "title": "PageJack: A Powerful Exploit Technique With Page-Level UAF · video",
      "item_title": "PageJack: A Powerful Exploit Technique With Page-Level UAF",
      "authors": [
        "Zhiyun Qian et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=uZW9RbZaq6A",
      "primary_url": "https://www.youtube.com/watch?v=uZW9RbZaq6A",
      "parent_primary_url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-pagejack-a-powerful-exploit-technique-with-page-level-uaf-video-df97d958.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PageJack: A Powerful Exploit Technique With Page-Level UAF · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: PageJack: A Powerful Exploit Technique With Page-Level UAF resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=uZW9RbZaq6A parent_primary_url: https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"PageJack: A Powerful Exploit Technique With Page-Level UAF\" by Zhiyun Qian et. al](https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf) [slides] [[video](https://www.youtube.com/watch?v=uZW9RbZaq6A)] [[code](https:",
      "link_types": [
        "slides",
        "video",
        "code",
        "summary"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=uZW9RbZaq6A"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/Lotuhu/Page-UAF"
        },
        {
          "label": "summary",
          "type": "summary",
          "url": "https://phrack.org/issues/71/13.html#article"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=uZW9RbZaq6A"
          }
        ],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/Lotuhu/Page-UAF"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "summary",
            "type": "summary",
            "url": "https://phrack.org/issues/71/13.html#article"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf",
        "https://github.com/Lotuhu/Page-UAF"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "PageJack",
        "UAF"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "Video on the PageJack exploit technique with page-level UAF.",
      "summary_zh": "关于页面级UAF的PageJack利用技术的视频。",
      "source_markdown": "[2024: \"PageJack: A Powerful Exploit Technique With Page-Level UAF\" by Zhiyun Qian et. al](https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf) [slides] [[video](https://www.youtube.com/watch?v=uZW9RbZaq6A)] [[code](https://github.com/Lotuhu/Page-UAF)] [[summary](https://phrack.org/issues/71/13.html#article)]",
      "search_text": "pagejack: a powerful exploit technique with page-level uaf · video pagejack: a powerful exploit technique with page-level uaf zhiyun qian et. al   techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=uzw9rbzaq6a exploitation pagejack uaf  resource video on the pagejack exploit technique with page-level uaf. 关于页面级uaf的pagejack利用技术的视频。 # pagejack: a powerful exploit technique with page-level uaf · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: pagejack: a powerful exploit technique with page-level uaf resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=uzw9rbzaq6a parent_primary_url: https://i.blackhat.com/bh-us-24/presentations/us24-qian-pagejack-a-powerful-exploit-technique-with-page-level-uaf-thursday.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"pagejack: a powerful exploit technique with page-level uaf\" by zhiyun qian et. al](https://i.blackhat.com/bh-us-24/presentations/us24-qian-pagejack-a-powerful-exploit-technique-with-page-level-uaf-thursday.pdf) [slides] [[video](https://www.youtube.com/watch?v=uzw9rbzaq6a)] [[code](https: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "af89129cc2dc57e8",
      "item_id": "0c6c4c9b479fe945",
      "slug": "2024-techniques-exploitation-pagejack-a-powerful-exploit-technique-with-page-level-uaf-code-d39af9d5",
      "year": 2024,
      "title": "PageJack: A Powerful Exploit Technique With Page-Level UAF · code",
      "item_title": "PageJack: A Powerful Exploit Technique With Page-Level UAF",
      "authors": [
        "Zhiyun Qian et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/Lotuhu/Page-UAF",
      "primary_url": "https://github.com/Lotuhu/Page-UAF",
      "parent_primary_url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-pagejack-a-powerful-exploit-technique-with-page-level-uaf-code-d39af9d5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PageJack: A Powerful Exploit Technique With Page-Level UAF · code record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: PageJack: A Powerful Exploit Technique With Page-Level UAF resource_label: code resource_type: code resource_url: https://github.com/Lotuhu/Page-UAF parent_primary_url: https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"PageJack: A Powerful Exploit Technique With Page-Level UAF\" by Zhiyun Qian et. al](https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf) [slides] [[video](https://www.youtube.com/watch?v=uZW9RbZaq6A)] [[code](https://github.com",
      "link_types": [
        "slides",
        "video",
        "code",
        "summary"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=uZW9RbZaq6A"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/Lotuhu/Page-UAF"
        },
        {
          "label": "summary",
          "type": "summary",
          "url": "https://phrack.org/issues/71/13.html#article"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=uZW9RbZaq6A"
          }
        ],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/Lotuhu/Page-UAF"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "summary",
            "type": "summary",
            "url": "https://phrack.org/issues/71/13.html#article"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf",
        "https://github.com/Lotuhu/Page-UAF"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "PageJack",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "Code repository related to the PageJack exploit technique with page-level UAF.",
      "summary_zh": "与页面级UAF的PageJack利用技术相关的代码库。",
      "source_markdown": "[2024: \"PageJack: A Powerful Exploit Technique With Page-Level UAF\" by Zhiyun Qian et. al](https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf) [slides] [[video](https://www.youtube.com/watch?v=uZW9RbZaq6A)] [[code](https://github.com/Lotuhu/Page-UAF)] [[summary](https://phrack.org/issues/71/13.html#article)]",
      "search_text": "pagejack: a powerful exploit technique with page-level uaf · code pagejack: a powerful exploit technique with page-level uaf zhiyun qian et. al   techniques exploitation technique: exploitation code code https://github.com/lotuhu/page-uaf exploitation pagejack code  resource code repository related to the pagejack exploit technique with page-level uaf. 与页面级uaf的pagejack利用技术相关的代码库。 # pagejack: a powerful exploit technique with page-level uaf · code record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: pagejack: a powerful exploit technique with page-level uaf resource_label: code resource_type: code resource_url: https://github.com/lotuhu/page-uaf parent_primary_url: https://i.blackhat.com/bh-us-24/presentations/us24-qian-pagejack-a-powerful-exploit-technique-with-page-level-uaf-thursday.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"pagejack: a powerful exploit technique with page-level uaf\" by zhiyun qian et. al](https://i.blackhat.com/bh-us-24/presentations/us24-qian-pagejack-a-powerful-exploit-technique-with-page-level-uaf-thursday.pdf) [slides] [[video](https://www.youtube.com/watch?v=uzw9rbzaq6a)] [[code](https://github.com no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "2b31ea8ea43a235b",
      "item_id": "0c6c4c9b479fe945",
      "slug": "2024-techniques-exploitation-pagejack-a-powerful-exploit-technique-with-page-level-uaf-summary-c1f8eac3",
      "year": 2024,
      "title": "PageJack: A Powerful Exploit Technique With Page-Level UAF · summary",
      "item_title": "PageJack: A Powerful Exploit Technique With Page-Level UAF",
      "authors": [
        "Zhiyun Qian et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "summary",
      "resource_type": "summary",
      "resource_url": "https://phrack.org/issues/71/13.html#article",
      "primary_url": "https://phrack.org/issues/71/13.html#article",
      "parent_primary_url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-pagejack-a-powerful-exploit-technique-with-page-level-uaf-summary-c1f8eac3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PageJack: A Powerful Exploit Technique With Page-Level UAF · summary record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: PageJack: A Powerful Exploit Technique With Page-Level UAF resource_label: summary resource_type: summary resource_url: https://phrack.org/issues/71/13.html#article parent_primary_url: https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"PageJack: A Powerful Exploit Technique With Page-Level UAF\" by Zhiyun Qian et. al](https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf) [slides] [[video](https://www.youtube.com/watch?v=uZW9RbZaq6A)] [[code]",
      "link_types": [
        "slides",
        "video",
        "code",
        "summary"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=uZW9RbZaq6A"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/Lotuhu/Page-UAF"
        },
        {
          "label": "summary",
          "type": "summary",
          "url": "https://phrack.org/issues/71/13.html#article"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=uZW9RbZaq6A"
          }
        ],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/Lotuhu/Page-UAF"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "summary",
            "type": "summary",
            "url": "https://phrack.org/issues/71/13.html#article"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf",
        "https://github.com/Lotuhu/Page-UAF"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "PageJack",
        "summary"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "Summary of the PageJack exploit technique with page-level UAF.",
      "summary_zh": "关于页面级UAF的PageJack利用技术的总结。",
      "source_markdown": "[2024: \"PageJack: A Powerful Exploit Technique With Page-Level UAF\" by Zhiyun Qian et. al](https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf) [slides] [[video](https://www.youtube.com/watch?v=uZW9RbZaq6A)] [[code](https://github.com/Lotuhu/Page-UAF)] [[summary](https://phrack.org/issues/71/13.html#article)]",
      "search_text": "pagejack: a powerful exploit technique with page-level uaf · summary pagejack: a powerful exploit technique with page-level uaf zhiyun qian et. al   techniques exploitation technique: exploitation summary summary https://phrack.org/issues/71/13.html#article exploitation pagejack summary  resource summary of the pagejack exploit technique with page-level uaf. 关于页面级uaf的pagejack利用技术的总结。 # pagejack: a powerful exploit technique with page-level uaf · summary record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: pagejack: a powerful exploit technique with page-level uaf resource_label: summary resource_type: summary resource_url: https://phrack.org/issues/71/13.html#article parent_primary_url: https://i.blackhat.com/bh-us-24/presentations/us24-qian-pagejack-a-powerful-exploit-technique-with-page-level-uaf-thursday.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"pagejack: a powerful exploit technique with page-level uaf\" by zhiyun qian et. al](https://i.blackhat.com/bh-us-24/presentations/us24-qian-pagejack-a-powerful-exploit-technique-with-page-level-uaf-thursday.pdf) [slides] [[video](https://www.youtube.com/watch?v=uzw9rbzaq6a)] [[code] no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "e81f4c9fdd8e57ea",
      "item_id": "d1c40e035b947c8d",
      "slug": "2024-techniques-exploitation-slubstick-arbitrary-memory-writes-through-practical-software-cross-cache-attacks-",
      "year": 2024,
      "title": "SLUBStick: Arbitrary Memory Writes through Practical Software Cross-Cache Attacks within the Linux Kernel",
      "item_title": "SLUBStick: Arbitrary Memory Writes through Practical Software Cross-Cache Attacks within the Linux Kernel",
      "authors": [
        "Lukas Maar et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://stefangast.eu/papers/slubstick.pdf",
      "primary_url": "https://stefangast.eu/papers/slubstick.pdf",
      "parent_primary_url": "https://stefangast.eu/papers/slubstick.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-slubstick-arbitrary-memory-writes-through-practical-software-cross-cache-attacks-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SLUBStick: Arbitrary Memory Writes through Practical Software Cross-Cache Attacks within the Linux Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: SLUBStick: Arbitrary Memory Writes through Practical Software Cross-Cache Attacks within the Linux Kernel resource_label: primary resource_type: paper resource_url: https://stefangast.eu/papers/slubstick.pdf parent_primary_url: https://stefangast.eu/papers/slubstick.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"SLUBStick: Arbitrary Memory Writes through Practical Software Cross-Cache Attacks within the Linux Kernel\" by Lukas Maar et. al](https://stefangast.eu/papers/slubstick.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps t",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://stefangast.eu/papers/slubstick.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://stefangast.eu/papers/slubstick.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "cross-cache",
        "memory-writes"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "Research on arbitrary memory writes through cross-cache attacks in the Linux kernel.",
      "summary_zh": "关于通过Linux内核中的跨缓存攻击进行任意内存写入的研究。",
      "source_markdown": "[2024: \"SLUBStick: Arbitrary Memory Writes through Practical Software Cross-Cache Attacks within the Linux Kernel\" by Lukas Maar et. al](https://stefangast.eu/papers/slubstick.pdf) [paper]",
      "search_text": "slubstick: arbitrary memory writes through practical software cross-cache attacks within the linux kernel slubstick: arbitrary memory writes through practical software cross-cache attacks within the linux kernel lukas maar et. al   techniques exploitation technique: exploitation primary paper https://stefangast.eu/papers/slubstick.pdf exploitation cross-cache memory-writes  resource research on arbitrary memory writes through cross-cache attacks in the linux kernel. 关于通过linux内核中的跨缓存攻击进行任意内存写入的研究。 # slubstick: arbitrary memory writes through practical software cross-cache attacks within the linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: slubstick: arbitrary memory writes through practical software cross-cache attacks within the linux kernel resource_label: primary resource_type: paper resource_url: https://stefangast.eu/papers/slubstick.pdf parent_primary_url: https://stefangast.eu/papers/slubstick.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"slubstick: arbitrary memory writes through practical software cross-cache attacks within the linux kernel\" by lukas maar et. al](https://stefangast.eu/papers/slubstick.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps t no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "cf9a3bbaaaeda003",
      "item_id": "e104722f446e2a8e",
      "slug": "2024-techniques-exploitation-linux-kernel-exploitation-ret2usr-primary-33537ca5",
      "year": 2024,
      "title": "Linux Kernel Exploitation - ret2usr",
      "item_title": "Linux Kernel Exploitation - ret2usr",
      "authors": [
        "Sascha Schirra"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://scoding.de/linux-kernel-exploitation-buffer_overflow",
      "primary_url": "https://scoding.de/linux-kernel-exploitation-buffer_overflow",
      "parent_primary_url": "https://scoding.de/linux-kernel-exploitation-buffer_overflow",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-linux-kernel-exploitation-ret2usr-primary-33537ca5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Exploitation - ret2usr record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel Exploitation - ret2usr resource_label: primary resource_type: article resource_url: https://scoding.de/linux-kernel-exploitation-buffer_overflow parent_primary_url: https://scoding.de/linux-kernel-exploitation-buffer_overflow source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"Linux Kernel Exploitation - ret2usr\" by Sascha Schirra](https://scoding.de/linux-kernel-exploitation-buffer_overflow) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_p",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://scoding.de/linux-kernel-exploitation-buffer_overflow"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://scoding.de/linux-kernel-exploitation-buffer_overflow"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "ret2usr"
      ],
      "affected_area": "",
      "exploit_stage": "resource",
      "summary_en": "An article discussing ret2usr exploitation techniques in the Linux kernel.",
      "summary_zh": "讨论Linux内核中ret2usr利用技术的文章。",
      "source_markdown": "[2024: \"Linux Kernel Exploitation - ret2usr\" by Sascha Schirra](https://scoding.de/linux-kernel-exploitation-buffer_overflow) [article]",
      "search_text": "linux kernel exploitation - ret2usr linux kernel exploitation - ret2usr sascha schirra   techniques exploitation technique: exploitation primary article https://scoding.de/linux-kernel-exploitation-buffer_overflow exploitation ret2usr  resource an article discussing ret2usr exploitation techniques in the linux kernel. 讨论linux内核中ret2usr利用技术的文章。 # linux kernel exploitation - ret2usr record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel exploitation - ret2usr resource_label: primary resource_type: article resource_url: https://scoding.de/linux-kernel-exploitation-buffer_overflow parent_primary_url: https://scoding.de/linux-kernel-exploitation-buffer_overflow source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"linux kernel exploitation - ret2usr\" by sascha schirra](https://scoding.de/linux-kernel-exploitation-buffer_overflow) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_p no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "590daf69e6ba5093",
      "item_id": "7e1e01d7f15728e4",
      "slug": "2024-techniques-exploitation-binary-exploitation-notes-kernel-primary-c559157a",
      "year": 2024,
      "title": "Binary Exploitation Notes: Kernel",
      "item_title": "Binary Exploitation Notes: Kernel",
      "authors": [
        "Andrej Ljubic"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ir0nstone.gitbook.io/notes/types/kernel",
      "primary_url": "https://ir0nstone.gitbook.io/notes/types/kernel",
      "parent_primary_url": "https://ir0nstone.gitbook.io/notes/types/kernel",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-binary-exploitation-notes-kernel-primary-c559157a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Binary Exploitation Notes: Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Binary Exploitation Notes: Kernel resource_label: primary resource_type: article resource_url: https://ir0nstone.gitbook.io/notes/types/kernel parent_primary_url: https://ir0nstone.gitbook.io/notes/types/kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"Binary Exploitation Notes: Kernel\" by Andrej Ljubic](https://ir0nstone.gitbook.io/notes/types/kernel) [articles] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ir0nstone.gitbook.io/notes/types/kernel"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ir0nstone.gitbook.io/notes/types/kernel"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "binary_exploitation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This resource provides insights into binary exploitation techniques specific to the Linux kernel.",
      "summary_zh": "该资源提供了针对Linux内核的二进制利用技术的见解。",
      "source_markdown": "[2024: \"Binary Exploitation Notes: Kernel\" by Andrej Ljubic](https://ir0nstone.gitbook.io/notes/types/kernel) [articles]",
      "search_text": "binary exploitation notes: kernel binary exploitation notes: kernel andrej ljubic   techniques exploitation technique: exploitation primary article https://ir0nstone.gitbook.io/notes/types/kernel binary_exploitation kernel  exploitation this resource provides insights into binary exploitation techniques specific to the linux kernel. 该资源提供了针对linux内核的二进制利用技术的见解。 # binary exploitation notes: kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: binary exploitation notes: kernel resource_label: primary resource_type: article resource_url: https://ir0nstone.gitbook.io/notes/types/kernel parent_primary_url: https://ir0nstone.gitbook.io/notes/types/kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"binary exploitation notes: kernel\" by andrej ljubic](https://ir0nstone.gitbook.io/notes/types/kernel) [articles] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "297515d66884862f",
      "item_id": "20d9ec4728485794",
      "slug": "2024-techniques-exploitation-take-a-step-further-understanding-page-spray-in-linux-kernel-exploitation-primary",
      "year": 2024,
      "title": "Take a Step Further: Understanding Page Spray in Linux Kernel Exploitation",
      "item_title": "Take a Step Further: Understanding Page Spray in Linux Kernel Exploitation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/2406.02624",
      "primary_url": "https://arxiv.org/pdf/2406.02624",
      "parent_primary_url": "https://arxiv.org/pdf/2406.02624",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-take-a-step-further-understanding-page-spray-in-linux-kernel-exploitation-primary.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Take a Step Further: Understanding Page Spray in Linux Kernel Exploitation record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Take a Step Further: Understanding Page Spray in Linux Kernel Exploitation resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2406.02624 parent_primary_url: https://arxiv.org/pdf/2406.02624 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"Take a Step Further: Understanding Page Spray in Linux Kernel Exploitation\"](https://arxiv.org/pdf/2406.02624) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: ",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/2406.02624"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/2406.02624"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "page_spray",
        "kernel_exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The paper discusses the concept of page spray in the context of Linux kernel exploitation.",
      "summary_zh": "本文讨论了在Linux内核利用背景下的页面喷洒概念。",
      "source_markdown": "[2024: \"Take a Step Further: Understanding Page Spray in Linux Kernel Exploitation\"](https://arxiv.org/pdf/2406.02624) [paper]",
      "search_text": "take a step further: understanding page spray in linux kernel exploitation take a step further: understanding page spray in linux kernel exploitation    techniques exploitation technique: exploitation primary paper https://arxiv.org/pdf/2406.02624 page_spray kernel_exploitation  exploitation the paper discusses the concept of page spray in the context of linux kernel exploitation. 本文讨论了在linux内核利用背景下的页面喷洒概念。 # take a step further: understanding page spray in linux kernel exploitation record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: take a step further: understanding page spray in linux kernel exploitation resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2406.02624 parent_primary_url: https://arxiv.org/pdf/2406.02624 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"take a step further: understanding page spray in linux kernel exploitation\"](https://arxiv.org/pdf/2406.02624) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "775082834ec0bf3a",
      "item_id": "1af1be1889045b97",
      "slug": "2024-techniques-exploitation-ghostrace-exploiting-and-mitigating-speculative-race-conditions-primary-193335cf",
      "year": 2024,
      "title": "GhostRace: Exploiting and Mitigating Speculative Race Conditions",
      "item_title": "GhostRace: Exploiting and Mitigating Speculative Race Conditions",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.vusec.net/projects/ghostrace/",
      "primary_url": "https://www.vusec.net/projects/ghostrace/",
      "parent_primary_url": "https://www.vusec.net/projects/ghostrace/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-ghostrace-exploiting-and-mitigating-speculative-race-conditions-primary-193335cf.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# GhostRace: Exploiting and Mitigating Speculative Race Conditions record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: GhostRace: Exploiting and Mitigating Speculative Race Conditions resource_label: primary resource_type: paper resource_url: https://www.vusec.net/projects/ghostrace/ parent_primary_url: https://www.vusec.net/projects/ghostrace/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"GhostRace: Exploiting and Mitigating Speculative Race Conditions\"](https://www.vusec.net/projects/ghostrace/) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: fal",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.vusec.net/projects/ghostrace/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.vusec.net/projects/ghostrace/"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "speculative_execution",
        "race_condition"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This paper explores the exploitation and mitigation of speculative race conditions in the Linux kernel.",
      "summary_zh": "本文探讨了在Linux内核中利用和缓解推测性竞争条件。",
      "source_markdown": "[2024: \"GhostRace: Exploiting and Mitigating Speculative Race Conditions\"](https://www.vusec.net/projects/ghostrace/) [paper]",
      "search_text": "ghostrace: exploiting and mitigating speculative race conditions ghostrace: exploiting and mitigating speculative race conditions    techniques exploitation technique: exploitation primary paper https://www.vusec.net/projects/ghostrace/ speculative_execution race_condition  exploitation this paper explores the exploitation and mitigation of speculative race conditions in the linux kernel. 本文探讨了在linux内核中利用和缓解推测性竞争条件。 # ghostrace: exploiting and mitigating speculative race conditions record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: ghostrace: exploiting and mitigating speculative race conditions resource_label: primary resource_type: paper resource_url: https://www.vusec.net/projects/ghostrace/ parent_primary_url: https://www.vusec.net/projects/ghostrace/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"ghostrace: exploiting and mitigating speculative race conditions\"](https://www.vusec.net/projects/ghostrace/) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: fal no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4ff3ff0af1b7997e",
      "item_id": "2e59e19f3538fe19",
      "slug": "2024-techniques-exploitation-k-leak-towards-automating-the-generation-of-multi-step-infoleak-exploits-against-",
      "year": 2024,
      "title": "K-LEAK: Towards Automating the Generation of Multi-Step Infoleak Exploits against the Linux Kernel",
      "item_title": "K-LEAK: Towards Automating the Generation of Multi-Step Infoleak Exploits against the Linux Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.ndss-symposium.org/wp-content/uploads/2024-935-paper.pdf",
      "primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2024-935-paper.pdf",
      "parent_primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2024-935-paper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-k-leak-towards-automating-the-generation-of-multi-step-infoleak-exploits-against-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# K-LEAK: Towards Automating the Generation of Multi-Step Infoleak Exploits against the Linux Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: K-LEAK: Towards Automating the Generation of Multi-Step Infoleak Exploits against the Linux Kernel resource_label: primary resource_type: paper resource_url: https://www.ndss-symposium.org/wp-content/uploads/2024-935-paper.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2024-935-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"K-LEAK: Towards Automating the Generation of Multi-Step Infoleak Exploits against the Linux Kernel\"](https://www.ndss-symposium.org/wp-content/uploads/2024-935-paper.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enoug",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/2024-935-paper.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/2024-935-paper.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "infoleak",
        "automation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "K-LEAK aims to automate the generation of multi-step infoleak exploits against the Linux kernel.",
      "summary_zh": "K-LEAK旨在自动生成针对Linux内核的多步骤信息泄露利用。",
      "source_markdown": "[2024: \"K-LEAK: Towards Automating the Generation of Multi-Step Infoleak Exploits against the Linux Kernel\"](https://www.ndss-symposium.org/wp-content/uploads/2024-935-paper.pdf) [paper]",
      "search_text": "k-leak: towards automating the generation of multi-step infoleak exploits against the linux kernel k-leak: towards automating the generation of multi-step infoleak exploits against the linux kernel    techniques exploitation technique: exploitation primary paper https://www.ndss-symposium.org/wp-content/uploads/2024-935-paper.pdf infoleak automation  exploitation k-leak aims to automate the generation of multi-step infoleak exploits against the linux kernel. k-leak旨在自动生成针对linux内核的多步骤信息泄露利用。 # k-leak: towards automating the generation of multi-step infoleak exploits against the linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: k-leak: towards automating the generation of multi-step infoleak exploits against the linux kernel resource_label: primary resource_type: paper resource_url: https://www.ndss-symposium.org/wp-content/uploads/2024-935-paper.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2024-935-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"k-leak: towards automating the generation of multi-step infoleak exploits against the linux kernel\"](https://www.ndss-symposium.org/wp-content/uploads/2024-935-paper.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enoug no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "0f3366a6a8fbbc47",
      "item_id": "7476047605576ff1",
      "slug": "2024-techniques-exploitation-beyond-control-exploring-novel-file-system-objects-for-data-only-attacks-on-linux",
      "year": 2024,
      "title": "Beyond Control: Exploring Novel File System Objects for Data-Only Attacks on Linux Systems",
      "item_title": "Beyond Control: Exploring Novel File System Objects for Data-Only Attacks on Linux Systems",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/2401.17618.pdf",
      "primary_url": "https://arxiv.org/pdf/2401.17618.pdf",
      "parent_primary_url": "https://arxiv.org/pdf/2401.17618.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2024-techniques-exploitation-beyond-control-exploring-novel-file-system-objects-for-data-only-attacks-on-linux.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Beyond Control: Exploring Novel File System Objects for Data-Only Attacks on Linux Systems record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Beyond Control: Exploring Novel File System Objects for Data-Only Attacks on Linux Systems resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2401.17618.pdf parent_primary_url: https://arxiv.org/pdf/2401.17618.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"Beyond Control: Exploring Novel File System Objects for Data-Only Attacks on Linux Systems\"](https://arxiv.org/pdf/2401.17618.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS ",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/2401.17618.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/2401.17618.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "file_system",
        "data_attack"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This paper investigates novel file system objects for executing data-only attacks on Linux systems.",
      "summary_zh": "本文研究了用于在Linux系统上执行仅数据攻击的新型文件系统对象。",
      "source_markdown": "[2024: \"Beyond Control: Exploring Novel File System Objects for Data-Only Attacks on Linux Systems\"](https://arxiv.org/pdf/2401.17618.pdf) [paper]",
      "search_text": "beyond control: exploring novel file system objects for data-only attacks on linux systems beyond control: exploring novel file system objects for data-only attacks on linux systems    techniques exploitation technique: exploitation primary paper https://arxiv.org/pdf/2401.17618.pdf file_system data_attack  exploitation this paper investigates novel file system objects for executing data-only attacks on linux systems. 本文研究了用于在linux系统上执行仅数据攻击的新型文件系统对象。 # beyond control: exploring novel file system objects for data-only attacks on linux systems record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: beyond control: exploring novel file system objects for data-only attacks on linux systems resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2401.17618.pdf parent_primary_url: https://arxiv.org/pdf/2401.17618.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2024: \"beyond control: exploring novel file system objects for data-only attacks on linux systems\"](https://arxiv.org/pdf/2401.17618.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7788a2b4d5ca7496",
      "item_id": "c173631b70573f78",
      "slug": "2023-techniques-exploitation-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-prim",
      "year": 2023,
      "title": "Deep-Kernel Treasure Hunt: Finding exploitable structures in the Linux kernel",
      "item_title": "Deep-Kernel Treasure Hunt: Finding exploitable structures in the Linux kernel",
      "authors": [
        "Yudai Fujiwara"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yudai-fujiwara.pdf",
      "primary_url": "https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yudai-fujiwara.pdf",
      "parent_primary_url": "https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yudai-fujiwara.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-prim.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Deep-Kernel Treasure Hunt: Finding exploitable structures in the Linux kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Deep-Kernel Treasure Hunt: Finding exploitable structures in the Linux kernel resource_label: primary resource_type: slides resource_url: https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yudai-fujiwara.pdf parent_primary_url: https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yudai-fujiwara.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Deep-Kernel Treasure Hunt: Finding exploitable structures in the Linux kernel\" by Yudai Fujiwara](https://archive.codeblue.jp/2023/",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yudai-fujiwara.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=mamm_23fHD4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yudai-fujiwara.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=mamm_23fHD4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitable_structures",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The slides present a treasure hunt for finding exploitable structures in the Linux kernel.",
      "summary_zh": "这些幻灯片展示了在Linux内核中寻找可利用结构的寻宝活动。",
      "source_markdown": "[2023: \"Deep-Kernel Treasure Hunt: Finding exploitable structures in the Linux kernel\" by Yudai Fujiwara](https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yudai-fujiwara.pdf) [slides] [[video](https://www.youtube.com/watch?v=mamm_23fHD4)]",
      "search_text": "deep-kernel treasure hunt: finding exploitable structures in the linux kernel deep-kernel treasure hunt: finding exploitable structures in the linux kernel yudai fujiwara   techniques exploitation technique: exploitation primary slides https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yudai-fujiwara.pdf exploitable_structures kernel  exploitation the slides present a treasure hunt for finding exploitable structures in the linux kernel. 这些幻灯片展示了在linux内核中寻找可利用结构的寻宝活动。 # deep-kernel treasure hunt: finding exploitable structures in the linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: deep-kernel treasure hunt: finding exploitable structures in the linux kernel resource_label: primary resource_type: slides resource_url: https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yudai-fujiwara.pdf parent_primary_url: https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yudai-fujiwara.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"deep-kernel treasure hunt: finding exploitable structures in the linux kernel\" by yudai fujiwara](https://archive.codeblue.jp/2023/ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "11f5838cc15a2ebc",
      "item_id": "c173631b70573f78",
      "slug": "2023-techniques-exploitation-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-vide",
      "year": 2023,
      "title": "Deep-Kernel Treasure Hunt: Finding exploitable structures in the Linux kernel · video",
      "item_title": "Deep-Kernel Treasure Hunt: Finding exploitable structures in the Linux kernel",
      "authors": [
        "Yudai Fujiwara"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=mamm_23fHD4",
      "primary_url": "https://www.youtube.com/watch?v=mamm_23fHD4",
      "parent_primary_url": "https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yudai-fujiwara.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-vide.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Deep-Kernel Treasure Hunt: Finding exploitable structures in the Linux kernel · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Deep-Kernel Treasure Hunt: Finding exploitable structures in the Linux kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=mamm_23fHD4 parent_primary_url: https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yudai-fujiwara.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Deep-Kernel Treasure Hunt: Finding exploitable structures in the Linux kernel\" by Yudai Fujiwara](https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yud",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yudai-fujiwara.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=mamm_23fHD4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yudai-fujiwara.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=mamm_23fHD4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitable_structures",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This video complements the slides on finding exploitable structures in the Linux kernel.",
      "summary_zh": "该视频补充了关于在Linux内核中寻找可利用结构的幻灯片。",
      "source_markdown": "[2023: \"Deep-Kernel Treasure Hunt: Finding exploitable structures in the Linux kernel\" by Yudai Fujiwara](https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yudai-fujiwara.pdf) [slides] [[video](https://www.youtube.com/watch?v=mamm_23fHD4)]",
      "search_text": "deep-kernel treasure hunt: finding exploitable structures in the linux kernel · video deep-kernel treasure hunt: finding exploitable structures in the linux kernel yudai fujiwara   techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=mamm_23fhd4 exploitable_structures kernel  exploitation this video complements the slides on finding exploitable structures in the linux kernel. 该视频补充了关于在linux内核中寻找可利用结构的幻灯片。 # deep-kernel treasure hunt: finding exploitable structures in the linux kernel · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: deep-kernel treasure hunt: finding exploitable structures in the linux kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=mamm_23fhd4 parent_primary_url: https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yudai-fujiwara.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"deep-kernel treasure hunt: finding exploitable structures in the linux kernel\" by yudai fujiwara](https://archive.codeblue.jp/2023/result/pdf/cb23-deep-kernel-treasure-hunt-finding-exploitable-structures-in-the-linux-kernel-by-yud no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "6b72cb7c5553905c",
      "item_id": "f7a3c94316370140",
      "slug": "2023-techniques-exploitation-d-3ctf2023-d3kcache-from-null-byte-cross-cache-overflow-to-infinite-arbitrary-rea",
      "year": 2023,
      "title": "D^ 3CTF2023 d3kcache: From null-byte cross-cache overflow to infinite arbitrary read & write.",
      "item_title": "D^ 3CTF2023 d3kcache: From null-byte cross-cache overflow to infinite arbitrary read & write.",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/",
      "primary_url": "https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/",
      "parent_primary_url": "https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-d-3ctf2023-d3kcache-from-null-byte-cross-cache-overflow-to-infinite-arbitrary-rea.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# D^ 3CTF2023 d3kcache: From null-byte cross-cache overflow to infinite arbitrary read & write. record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: D^ 3CTF2023 d3kcache: From null-byte cross-cache overflow to infinite arbitrary read & write. resource_label: primary resource_type: article resource_url: https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/ parent_primary_url: https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"D^ 3CTF2023 d3kcache: From null-byte cross-cache overflow to infinite arbitrary read & write.\"](https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this re",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "cache_overflow",
        "arbitrary_read_write"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The article discusses a CTF challenge involving a null-byte cross-cache overflow leading to arbitrary read and write.",
      "summary_zh": "该文章讨论了一个CTF挑战，涉及到一个空字节跨缓存溢出，导致任意读写。",
      "source_markdown": "[2023: \"D^ 3CTF2023 d3kcache: From null-byte cross-cache overflow to infinite arbitrary read & write.\"](https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/) [article]",
      "search_text": "d^ 3ctf2023 d3kcache: from null-byte cross-cache overflow to infinite arbitrary read & write. d^ 3ctf2023 d3kcache: from null-byte cross-cache overflow to infinite arbitrary read & write.    techniques exploitation technique: exploitation primary article https://blog.arttnba3.cn/2023/05/02/ctf-0x08_d3ctf2023_d3kcache/ cache_overflow arbitrary_read_write  exploitation the article discusses a ctf challenge involving a null-byte cross-cache overflow leading to arbitrary read and write. 该文章讨论了一个ctf挑战，涉及到一个空字节跨缓存溢出，导致任意读写。 # d^ 3ctf2023 d3kcache: from null-byte cross-cache overflow to infinite arbitrary read & write. record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: d^ 3ctf2023 d3kcache: from null-byte cross-cache overflow to infinite arbitrary read & write. resource_label: primary resource_type: article resource_url: https://blog.arttnba3.cn/2023/05/02/ctf-0x08_d3ctf2023_d3kcache/ parent_primary_url: https://blog.arttnba3.cn/2023/05/02/ctf-0x08_d3ctf2023_d3kcache/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"d^ 3ctf2023 d3kcache: from null-byte cross-cache overflow to infinite arbitrary read & write.\"](https://blog.arttnba3.cn/2023/05/02/ctf-0x08_d3ctf2023_d3kcache/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this re no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4dd487841bab1acb",
      "item_id": "bb956b15a7d7f57f",
      "slug": "2023-techniques-exploitation-no-tux-given-diving-into-contemporary-linux-kernel-exploitation-primary-164deff8",
      "year": 2023,
      "title": "No Tux Given: Diving Into Contemporary Linux Kernel Exploitation",
      "item_title": "No Tux Given: Diving Into Contemporary Linux Kernel Exploitation",
      "authors": [
        "sam4k"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://sam4k.com/content/files/2024/01/no_tux_given.pdf",
      "primary_url": "https://sam4k.com/content/files/2024/01/no_tux_given.pdf",
      "parent_primary_url": "https://sam4k.com/content/files/2024/01/no_tux_given.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-no-tux-given-diving-into-contemporary-linux-kernel-exploitation-primary-164deff8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# No Tux Given: Diving Into Contemporary Linux Kernel Exploitation record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: No Tux Given: Diving Into Contemporary Linux Kernel Exploitation resource_label: primary resource_type: slides resource_url: https://sam4k.com/content/files/2024/01/no_tux_given.pdf parent_primary_url: https://sam4k.com/content/files/2024/01/no_tux_given.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"No Tux Given: Diving Into Contemporary Linux Kernel Exploitation\" by sam4k](https://sam4k.com/content/files/2024/01/no_tux_given.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://sam4k.com/content/files/2024/01/no_tux_given.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://sam4k.com/content/files/2024/01/no_tux_given.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "contemporary_exploitation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "These slides dive into contemporary techniques for exploiting the Linux kernel.",
      "summary_zh": "这些幻灯片深入探讨了利用Linux内核的当代技术。",
      "source_markdown": "[2023: \"No Tux Given: Diving Into Contemporary Linux Kernel Exploitation\" by sam4k](https://sam4k.com/content/files/2024/01/no_tux_given.pdf) [slides]",
      "search_text": "no tux given: diving into contemporary linux kernel exploitation no tux given: diving into contemporary linux kernel exploitation sam4k   techniques exploitation technique: exploitation primary slides https://sam4k.com/content/files/2024/01/no_tux_given.pdf contemporary_exploitation kernel  exploitation these slides dive into contemporary techniques for exploiting the linux kernel. 这些幻灯片深入探讨了利用linux内核的当代技术。 # no tux given: diving into contemporary linux kernel exploitation record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: no tux given: diving into contemporary linux kernel exploitation resource_label: primary resource_type: slides resource_url: https://sam4k.com/content/files/2024/01/no_tux_given.pdf parent_primary_url: https://sam4k.com/content/files/2024/01/no_tux_given.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"no tux given: diving into contemporary linux kernel exploitation\" by sam4k](https://sam4k.com/content/files/2024/01/no_tux_given.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c6d96b3d7d46bc6d",
      "item_id": "6234b5036b942e9d",
      "slug": "2023-techniques-exploitation-linux-kernel-exploitation-series-primary-00283019",
      "year": 2023,
      "title": "Linux Kernel Exploitation series",
      "item_title": "Linux Kernel Exploitation series",
      "authors": [
        "santaclz"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html",
      "primary_url": "https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html",
      "parent_primary_url": "https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-linux-kernel-exploitation-series-primary-00283019.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Exploitation series record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel Exploitation series resource_label: primary resource_type: article resource_url: https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html parent_primary_url: https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Linux Kernel Exploitation series\" by santaclz](https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html) [article] [[part2](https://santaclz.github.io/2024/01/20/Linux-Kernel-Exploitation-Heap-techniques.html)] [[part 3](https://santaclz.github.io/2024/01/29/Linux-Kernel-Exploitation-exploitin",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html"
        },
        {
          "label": "part2",
          "type": "article",
          "url": "https://santaclz.github.io/2024/01/20/Linux-Kernel-Exploitation-Heap-techniques.html"
        },
        {
          "label": "part 3",
          "type": "article",
          "url": "https://santaclz.github.io/2024/01/29/Linux-Kernel-Exploitation-exploiting-race-condition-and-UAF.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html"
          },
          {
            "label": "part2",
            "type": "article",
            "url": "https://santaclz.github.io/2024/01/20/Linux-Kernel-Exploitation-Heap-techniques.html"
          },
          {
            "label": "part 3",
            "type": "article",
            "url": "https://santaclz.github.io/2024/01/29/Linux-Kernel-Exploitation-exploiting-race-condition-and-UAF.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html",
        "https://santaclz.github.io/2024/01/20/Linux-Kernel-Exploitation-Heap-techniques.html",
        "https://santaclz.github.io/2024/01/29/Linux-Kernel-Exploitation-exploiting-race-condition-and-UAF.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_exploitation",
        "series"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The series provides a comprehensive overview of Linux kernel exploitation techniques.",
      "summary_zh": "该系列提供了Linux内核利用技术的全面概述。",
      "source_markdown": "[2023: \"Linux Kernel Exploitation series\" by santaclz](https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html) [article] [[part2](https://santaclz.github.io/2024/01/20/Linux-Kernel-Exploitation-Heap-techniques.html)] [[part 3](https://santaclz.github.io/2024/01/29/Linux-Kernel-Exploitation-exploiting-race-condition-and-UAF.html)]",
      "search_text": "linux kernel exploitation series linux kernel exploitation series santaclz   techniques exploitation technique: exploitation primary article https://santaclz.github.io/2023/11/03/linux-kernel-exploitation-getting-started-and-bof.html kernel_exploitation series  exploitation the series provides a comprehensive overview of linux kernel exploitation techniques. 该系列提供了linux内核利用技术的全面概述。 # linux kernel exploitation series record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel exploitation series resource_label: primary resource_type: article resource_url: https://santaclz.github.io/2023/11/03/linux-kernel-exploitation-getting-started-and-bof.html parent_primary_url: https://santaclz.github.io/2023/11/03/linux-kernel-exploitation-getting-started-and-bof.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"linux kernel exploitation series\" by santaclz](https://santaclz.github.io/2023/11/03/linux-kernel-exploitation-getting-started-and-bof.html) [article] [[part2](https://santaclz.github.io/2024/01/20/linux-kernel-exploitation-heap-techniques.html)] [[part 3](https://santaclz.github.io/2024/01/29/linux-kernel-exploitation-exploitin no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "27bdee580a75d4a3",
      "item_id": "6234b5036b942e9d",
      "slug": "2023-techniques-exploitation-linux-kernel-exploitation-series-part2-0e08489c",
      "year": 2023,
      "title": "Linux Kernel Exploitation series · part2",
      "item_title": "Linux Kernel Exploitation series",
      "authors": [
        "santaclz"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "part2",
      "resource_type": "article",
      "resource_url": "https://santaclz.github.io/2024/01/20/Linux-Kernel-Exploitation-Heap-techniques.html",
      "primary_url": "https://santaclz.github.io/2024/01/20/Linux-Kernel-Exploitation-Heap-techniques.html",
      "parent_primary_url": "https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-linux-kernel-exploitation-series-part2-0e08489c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Exploitation series · part2 record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel Exploitation series resource_label: part2 resource_type: article resource_url: https://santaclz.github.io/2024/01/20/Linux-Kernel-Exploitation-Heap-techniques.html parent_primary_url: https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Linux Kernel Exploitation series\" by santaclz](https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html) [article] [[part2](https://santaclz.github.io/2024/01/20/Linux-Kernel-Exploitation-Heap-techniques.html)] [[part 3](https://santaclz.github.io/2024/01/29/Linux-Kernel-Exploitation-exploiting-",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html"
        },
        {
          "label": "part2",
          "type": "article",
          "url": "https://santaclz.github.io/2024/01/20/Linux-Kernel-Exploitation-Heap-techniques.html"
        },
        {
          "label": "part 3",
          "type": "article",
          "url": "https://santaclz.github.io/2024/01/29/Linux-Kernel-Exploitation-exploiting-race-condition-and-UAF.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html"
          },
          {
            "label": "part2",
            "type": "article",
            "url": "https://santaclz.github.io/2024/01/20/Linux-Kernel-Exploitation-Heap-techniques.html"
          },
          {
            "label": "part 3",
            "type": "article",
            "url": "https://santaclz.github.io/2024/01/29/Linux-Kernel-Exploitation-exploiting-race-condition-and-UAF.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html",
        "https://santaclz.github.io/2024/01/20/Linux-Kernel-Exploitation-Heap-techniques.html",
        "https://santaclz.github.io/2024/01/29/Linux-Kernel-Exploitation-exploiting-race-condition-and-UAF.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_exploitation",
        "series"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Part 2 of the series continues to explore Linux kernel exploitation techniques.",
      "summary_zh": "该系列的第二部分继续探讨Linux内核利用技术。",
      "source_markdown": "[2023: \"Linux Kernel Exploitation series\" by santaclz](https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html) [article] [[part2](https://santaclz.github.io/2024/01/20/Linux-Kernel-Exploitation-Heap-techniques.html)] [[part 3](https://santaclz.github.io/2024/01/29/Linux-Kernel-Exploitation-exploiting-race-condition-and-UAF.html)]",
      "search_text": "linux kernel exploitation series · part2 linux kernel exploitation series santaclz   techniques exploitation technique: exploitation part2 article https://santaclz.github.io/2024/01/20/linux-kernel-exploitation-heap-techniques.html kernel_exploitation series  exploitation part 2 of the series continues to explore linux kernel exploitation techniques. 该系列的第二部分继续探讨linux内核利用技术。 # linux kernel exploitation series · part2 record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel exploitation series resource_label: part2 resource_type: article resource_url: https://santaclz.github.io/2024/01/20/linux-kernel-exploitation-heap-techniques.html parent_primary_url: https://santaclz.github.io/2023/11/03/linux-kernel-exploitation-getting-started-and-bof.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"linux kernel exploitation series\" by santaclz](https://santaclz.github.io/2023/11/03/linux-kernel-exploitation-getting-started-and-bof.html) [article] [[part2](https://santaclz.github.io/2024/01/20/linux-kernel-exploitation-heap-techniques.html)] [[part 3](https://santaclz.github.io/2024/01/29/linux-kernel-exploitation-exploiting- no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "d1bb27f76aee37e4",
      "item_id": "6234b5036b942e9d",
      "slug": "2023-techniques-exploitation-linux-kernel-exploitation-series-part-3-5ad3f7e5",
      "year": 2023,
      "title": "Linux Kernel Exploitation series · part 3",
      "item_title": "Linux Kernel Exploitation series",
      "authors": [
        "santaclz"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "part 3",
      "resource_type": "article",
      "resource_url": "https://santaclz.github.io/2024/01/29/Linux-Kernel-Exploitation-exploiting-race-condition-and-UAF.html",
      "primary_url": "https://santaclz.github.io/2024/01/29/Linux-Kernel-Exploitation-exploiting-race-condition-and-UAF.html",
      "parent_primary_url": "https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-linux-kernel-exploitation-series-part-3-5ad3f7e5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Exploitation series · part 3 record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel Exploitation series resource_label: part 3 resource_type: article resource_url: https://santaclz.github.io/2024/01/29/Linux-Kernel-Exploitation-exploiting-race-condition-and-UAF.html parent_primary_url: https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Linux Kernel Exploitation series\" by santaclz](https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html) [article] [[part2](https://santaclz.github.io/2024/01/20/Linux-Kernel-Exploitation-Heap-techniques.html)] [[part 3](https://santaclz.github.io/2024/01/29/Linux-Kernel-Expl",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html"
        },
        {
          "label": "part2",
          "type": "article",
          "url": "https://santaclz.github.io/2024/01/20/Linux-Kernel-Exploitation-Heap-techniques.html"
        },
        {
          "label": "part 3",
          "type": "article",
          "url": "https://santaclz.github.io/2024/01/29/Linux-Kernel-Exploitation-exploiting-race-condition-and-UAF.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html"
          },
          {
            "label": "part2",
            "type": "article",
            "url": "https://santaclz.github.io/2024/01/20/Linux-Kernel-Exploitation-Heap-techniques.html"
          },
          {
            "label": "part 3",
            "type": "article",
            "url": "https://santaclz.github.io/2024/01/29/Linux-Kernel-Exploitation-exploiting-race-condition-and-UAF.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html",
        "https://santaclz.github.io/2024/01/20/Linux-Kernel-Exploitation-Heap-techniques.html",
        "https://santaclz.github.io/2024/01/29/Linux-Kernel-Exploitation-exploiting-race-condition-and-UAF.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "race_condition",
        "use_after_free"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Part 3 of the series focuses on exploiting race conditions and use-after-free vulnerabilities.",
      "summary_zh": "该系列的第三部分重点讨论利用竞争条件和使用后释放漏洞。",
      "source_markdown": "[2023: \"Linux Kernel Exploitation series\" by santaclz](https://santaclz.github.io/2023/11/03/Linux-Kernel-Exploitation-Getting-started-and-BOF.html) [article] [[part2](https://santaclz.github.io/2024/01/20/Linux-Kernel-Exploitation-Heap-techniques.html)] [[part 3](https://santaclz.github.io/2024/01/29/Linux-Kernel-Exploitation-exploiting-race-condition-and-UAF.html)]",
      "search_text": "linux kernel exploitation series · part 3 linux kernel exploitation series santaclz   techniques exploitation technique: exploitation part 3 article https://santaclz.github.io/2024/01/29/linux-kernel-exploitation-exploiting-race-condition-and-uaf.html race_condition use_after_free  exploitation part 3 of the series focuses on exploiting race conditions and use-after-free vulnerabilities. 该系列的第三部分重点讨论利用竞争条件和使用后释放漏洞。 # linux kernel exploitation series · part 3 record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel exploitation series resource_label: part 3 resource_type: article resource_url: https://santaclz.github.io/2024/01/29/linux-kernel-exploitation-exploiting-race-condition-and-uaf.html parent_primary_url: https://santaclz.github.io/2023/11/03/linux-kernel-exploitation-getting-started-and-bof.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"linux kernel exploitation series\" by santaclz](https://santaclz.github.io/2023/11/03/linux-kernel-exploitation-getting-started-and-bof.html) [article] [[part2](https://santaclz.github.io/2024/01/20/linux-kernel-exploitation-heap-techniques.html)] [[part 3](https://santaclz.github.io/2024/01/29/linux-kernel-expl no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "c65c6ac5e0433e7a",
      "item_id": "7c481467de55178f",
      "slug": "2023-techniques-exploitation-retspill-igniting-user-controlled-data-to-burn-away-linux-kernel-protections-prim",
      "year": 2023,
      "title": "RetSpill: Igniting User-Controlled Data to Burn Away Linux Kernel Protections",
      "item_title": "RetSpill: Igniting User-Controlled Data to Burn Away Linux Kernel Protections",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://kylebot.net/papers/retspill.pdf",
      "primary_url": "https://kylebot.net/papers/retspill.pdf",
      "parent_primary_url": "https://kylebot.net/papers/retspill.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-retspill-igniting-user-controlled-data-to-burn-away-linux-kernel-protections-prim.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# RetSpill: Igniting User-Controlled Data to Burn Away Linux Kernel Protections record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: RetSpill: Igniting User-Controlled Data to Burn Away Linux Kernel Protections resource_label: primary resource_type: paper resource_url: https://kylebot.net/papers/retspill.pdf parent_primary_url: https://kylebot.net/papers/retspill.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"RetSpill: Igniting User-Controlled Data to Burn Away Linux Kernel Protections\"](https://kylebot.net/papers/retspill.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://kylebot.net/papers/retspill.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://kylebot.net/papers/retspill.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_protection_bypass",
        "user_controlled_data"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "RetSpill discusses techniques to bypass Linux kernel protections using user-controlled data.",
      "summary_zh": "RetSpill讨论了使用用户控制数据绕过Linux内核保护的技术。",
      "source_markdown": "[2023: \"RetSpill: Igniting User-Controlled Data to Burn Away Linux Kernel Protections\"](https://kylebot.net/papers/retspill.pdf) [paper]",
      "search_text": "retspill: igniting user-controlled data to burn away linux kernel protections retspill: igniting user-controlled data to burn away linux kernel protections    techniques exploitation technique: exploitation primary paper https://kylebot.net/papers/retspill.pdf kernel_protection_bypass user_controlled_data  exploitation retspill discusses techniques to bypass linux kernel protections using user-controlled data. retspill讨论了使用用户控制数据绕过linux内核保护的技术。 # retspill: igniting user-controlled data to burn away linux kernel protections record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: retspill: igniting user-controlled data to burn away linux kernel protections resource_label: primary resource_type: paper resource_url: https://kylebot.net/papers/retspill.pdf parent_primary_url: https://kylebot.net/papers/retspill.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"retspill: igniting user-controlled data to burn away linux kernel protections\"](https://kylebot.net/papers/retspill.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "99381d4a727ef3c6",
      "item_id": "49c9cfee6987fa5b",
      "slug": "2023-techniques-exploitation-understanding-dirty-pagetable-m0lecon-finals-2023-ctf-writeup-primary-1745177a",
      "year": 2023,
      "title": "Understanding Dirty Pagetable - m0leCon Finals 2023 CTF Writeup",
      "item_title": "Understanding Dirty Pagetable - m0leCon Finals 2023 CTF Writeup",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ptr-yudai.hatenablog.com/entry/2023/12/08/093606",
      "primary_url": "https://ptr-yudai.hatenablog.com/entry/2023/12/08/093606",
      "parent_primary_url": "https://ptr-yudai.hatenablog.com/entry/2023/12/08/093606",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-understanding-dirty-pagetable-m0lecon-finals-2023-ctf-writeup-primary-1745177a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Understanding Dirty Pagetable - m0leCon Finals 2023 CTF Writeup record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Understanding Dirty Pagetable - m0leCon Finals 2023 CTF Writeup resource_label: primary resource_type: article resource_url: https://ptr-yudai.hatenablog.com/entry/2023/12/08/093606 parent_primary_url: https://ptr-yudai.hatenablog.com/entry/2023/12/08/093606 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Understanding Dirty Pagetable - m0leCon Finals 2023 CTF Writeup\"](https://ptr-yudai.hatenablog.com/entry/2023/12/08/093606) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ptr-yudai.hatenablog.com/entry/2023/12/08/093606"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ptr-yudai.hatenablog.com/entry/2023/12/08/093606"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "dirty_pagetable",
        "ctf"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This writeup explains the exploitation of dirty pagetables in a CTF context.",
      "summary_zh": "该写作解释了在CTF背景下利用脏页表的过程。",
      "source_markdown": "[2023: \"Understanding Dirty Pagetable - m0leCon Finals 2023 CTF Writeup\"](https://ptr-yudai.hatenablog.com/entry/2023/12/08/093606) [article]",
      "search_text": "understanding dirty pagetable - m0lecon finals 2023 ctf writeup understanding dirty pagetable - m0lecon finals 2023 ctf writeup    techniques exploitation technique: exploitation primary article https://ptr-yudai.hatenablog.com/entry/2023/12/08/093606 dirty_pagetable ctf  exploitation this writeup explains the exploitation of dirty pagetables in a ctf context. 该写作解释了在ctf背景下利用脏页表的过程。 # understanding dirty pagetable - m0lecon finals 2023 ctf writeup record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: understanding dirty pagetable - m0lecon finals 2023 ctf writeup resource_label: primary resource_type: article resource_url: https://ptr-yudai.hatenablog.com/entry/2023/12/08/093606 parent_primary_url: https://ptr-yudai.hatenablog.com/entry/2023/12/08/093606 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"understanding dirty pagetable - m0lecon finals 2023 ctf writeup\"](https://ptr-yudai.hatenablog.com/entry/2023/12/08/093606) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "82bcd85d8c7ac759",
      "item_id": "ec9b08c2caf14d96",
      "slug": "2023-techniques-exploitation-abusing-rcu-callbacks-with-a-use-after-free-read-to-defeat-kaslr-primary-cd95af33",
      "year": 2023,
      "title": "Abusing RCU callbacks with a Use-After-Free read to defeat KASLR",
      "item_title": "Abusing RCU callbacks with a Use-After-Free read to defeat KASLR",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://anatomic.rip/abusing_rcu_callbacks_to_defeat_kaslr/",
      "primary_url": "https://anatomic.rip/abusing_rcu_callbacks_to_defeat_kaslr/",
      "parent_primary_url": "https://anatomic.rip/abusing_rcu_callbacks_to_defeat_kaslr/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-abusing-rcu-callbacks-with-a-use-after-free-read-to-defeat-kaslr-primary-cd95af33.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Abusing RCU callbacks with a Use-After-Free read to defeat KASLR record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Abusing RCU callbacks with a Use-After-Free read to defeat KASLR resource_label: primary resource_type: article resource_url: https://anatomic.rip/abusing_rcu_callbacks_to_defeat_kaslr/ parent_primary_url: https://anatomic.rip/abusing_rcu_callbacks_to_defeat_kaslr/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Abusing RCU callbacks with a Use-After-Free read to defeat KASLR\"](https://anatomic.rip/abusing_rcu_callbacks_to_defeat_kaslr/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devic",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://anatomic.rip/abusing_rcu_callbacks_to_defeat_kaslr/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://anatomic.rip/abusing_rcu_callbacks_to_defeat_kaslr/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KASLR",
        "use_after_free"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The article details a method to defeat KASLR using a use-after-free read via RCU callbacks.",
      "summary_zh": "该文章详细介绍了一种通过RCU回调使用后释放读取来击败KASLR的方法。",
      "source_markdown": "[2023: \"Abusing RCU callbacks with a Use-After-Free read to defeat KASLR\"](https://anatomic.rip/abusing_rcu_callbacks_to_defeat_kaslr/) [article]",
      "search_text": "abusing rcu callbacks with a use-after-free read to defeat kaslr abusing rcu callbacks with a use-after-free read to defeat kaslr    techniques exploitation technique: exploitation primary article https://anatomic.rip/abusing_rcu_callbacks_to_defeat_kaslr/ kaslr use_after_free  exploitation the article details a method to defeat kaslr using a use-after-free read via rcu callbacks. 该文章详细介绍了一种通过rcu回调使用后释放读取来击败kaslr的方法。 # abusing rcu callbacks with a use-after-free read to defeat kaslr record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: abusing rcu callbacks with a use-after-free read to defeat kaslr resource_label: primary resource_type: article resource_url: https://anatomic.rip/abusing_rcu_callbacks_to_defeat_kaslr/ parent_primary_url: https://anatomic.rip/abusing_rcu_callbacks_to_defeat_kaslr/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"abusing rcu callbacks with a use-after-free read to defeat kaslr\"](https://anatomic.rip/abusing_rcu_callbacks_to_defeat_kaslr/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devic no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "79cbd4edd4a2a675",
      "item_id": "092434cb2c5cd866",
      "slug": "2023-techniques-exploitation-evils-in-the-sparse-texture-memory-exploit-kernel-based-on-undefined-behaviors-of",
      "year": 2023,
      "title": "Evils in the Sparse Texture Memory: Exploit Kernel Based on Undefined Behaviors of Graphic APIs",
      "item_title": "Evils in the Sparse Texture Memory: Exploit Kernel Based on Undefined Behaviors of Graphic APIs",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/EU-23/Presentations/EU-23-Jin-Evils-in-the-Sparse-Texture.pdf",
      "primary_url": "https://i.blackhat.com/EU-23/Presentations/EU-23-Jin-Evils-in-the-Sparse-Texture.pdf",
      "parent_primary_url": "https://i.blackhat.com/EU-23/Presentations/EU-23-Jin-Evils-in-the-Sparse-Texture.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-evils-in-the-sparse-texture-memory-exploit-kernel-based-on-undefined-behaviors-of.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Evils in the Sparse Texture Memory: Exploit Kernel Based on Undefined Behaviors of Graphic APIs record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Evils in the Sparse Texture Memory: Exploit Kernel Based on Undefined Behaviors of Graphic APIs resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/EU-23/Presentations/EU-23-Jin-Evils-in-the-Sparse-Texture.pdf parent_primary_url: https://i.blackhat.com/EU-23/Presentations/EU-23-Jin-Evils-in-the-Sparse-Texture.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Evils in the Sparse Texture Memory: Exploit Kernel Based on Undefined Behaviors of Graphic APIs\"](https://i.blackhat.com/EU-23/Presentations/EU-23-Jin-Evils-in-the-Sparse-Texture.pdf) [slides] [[abstract](https://www.blac",
      "link_types": [
        "slides",
        "abstract"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/EU-23/Presentations/EU-23-Jin-Evils-in-the-Sparse-Texture.pdf"
        },
        {
          "label": "abstract",
          "type": "abstract",
          "url": "https://www.blackhat.com/eu-23/briefings/schedule/index.html#evils-in-the-sparse-texture-memory-exploit-kernel-based-on-undefined-behaviors-of-graphic-apis-35059"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/EU-23/Presentations/EU-23-Jin-Evils-in-the-Sparse-Texture.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "abstract",
            "type": "abstract",
            "url": "https://www.blackhat.com/eu-23/briefings/schedule/index.html#evils-in-the-sparse-texture-memory-exploit-kernel-based-on-undefined-behaviors-of-graphic-apis-35059"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://www.blackhat.com/eu-23/briefings/schedule/index.html#evils-in-the-sparse-texture-memory-exploit-kernel-based-on-undefined-behaviors-of-graphic-apis-35059"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "undefined_behavior",
        "graphic_apis"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This presentation discusses exploiting undefined behaviors in graphic APIs to attack the kernel.",
      "summary_zh": "该演示讨论了利用图形API中的未定义行为来攻击内核。",
      "source_markdown": "[2023: \"Evils in the Sparse Texture Memory: Exploit Kernel Based on Undefined Behaviors of Graphic APIs\"](https://i.blackhat.com/EU-23/Presentations/EU-23-Jin-Evils-in-the-Sparse-Texture.pdf) [slides] [[abstract](https://www.blackhat.com/eu-23/briefings/schedule/index.html#evils-in-the-sparse-texture-memory-exploit-kernel-based-on-undefined-behaviors-of-graphic-apis-35059)]",
      "search_text": "evils in the sparse texture memory: exploit kernel based on undefined behaviors of graphic apis evils in the sparse texture memory: exploit kernel based on undefined behaviors of graphic apis    techniques exploitation technique: exploitation primary slides https://i.blackhat.com/eu-23/presentations/eu-23-jin-evils-in-the-sparse-texture.pdf undefined_behavior graphic_apis  exploitation this presentation discusses exploiting undefined behaviors in graphic apis to attack the kernel. 该演示讨论了利用图形api中的未定义行为来攻击内核。 # evils in the sparse texture memory: exploit kernel based on undefined behaviors of graphic apis record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: evils in the sparse texture memory: exploit kernel based on undefined behaviors of graphic apis resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/eu-23/presentations/eu-23-jin-evils-in-the-sparse-texture.pdf parent_primary_url: https://i.blackhat.com/eu-23/presentations/eu-23-jin-evils-in-the-sparse-texture.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"evils in the sparse texture memory: exploit kernel based on undefined behaviors of graphic apis\"](https://i.blackhat.com/eu-23/presentations/eu-23-jin-evils-in-the-sparse-texture.pdf) [slides] [[abstract](https://www.blac no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "66776a009287c0fe",
      "item_id": "092434cb2c5cd866",
      "slug": "2023-techniques-exploitation-evils-in-the-sparse-texture-memory-exploit-kernel-based-on-undefined-behaviors-of-2",
      "year": 2023,
      "title": "Evils in the Sparse Texture Memory: Exploit Kernel Based on Undefined Behaviors of Graphic APIs · abstract",
      "item_title": "Evils in the Sparse Texture Memory: Exploit Kernel Based on Undefined Behaviors of Graphic APIs",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "abstract",
      "resource_type": "abstract",
      "resource_url": "https://www.blackhat.com/eu-23/briefings/schedule/index.html#evils-in-the-sparse-texture-memory-exploit-kernel-based-on-undefined-behaviors-of-graphic-apis-35059",
      "primary_url": "https://www.blackhat.com/eu-23/briefings/schedule/index.html#evils-in-the-sparse-texture-memory-exploit-kernel-based-on-undefined-behaviors-of-graphic-apis-35059",
      "parent_primary_url": "https://i.blackhat.com/EU-23/Presentations/EU-23-Jin-Evils-in-the-Sparse-Texture.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-evils-in-the-sparse-texture-memory-exploit-kernel-based-on-undefined-behaviors-of-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Evils in the Sparse Texture Memory: Exploit Kernel Based on Undefined Behaviors of Graphic APIs · abstract record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Evils in the Sparse Texture Memory: Exploit Kernel Based on Undefined Behaviors of Graphic APIs resource_label: abstract resource_type: abstract resource_url: https://www.blackhat.com/eu-23/briefings/schedule/index.html#evils-in-the-sparse-texture-memory-exploit-kernel-based-on-undefined-behaviors-of-graphic-apis-35059 parent_primary_url: https://i.blackhat.com/EU-23/Presentations/EU-23-Jin-Evils-in-the-Sparse-Texture.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Evils in the Sparse Texture Memory: Exploit Kernel Based on Undefined Behaviors of Graphic APIs\"](https://i.blackhat.com/EU-23/Pre",
      "link_types": [
        "slides",
        "abstract"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/EU-23/Presentations/EU-23-Jin-Evils-in-the-Sparse-Texture.pdf"
        },
        {
          "label": "abstract",
          "type": "abstract",
          "url": "https://www.blackhat.com/eu-23/briefings/schedule/index.html#evils-in-the-sparse-texture-memory-exploit-kernel-based-on-undefined-behaviors-of-graphic-apis-35059"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/EU-23/Presentations/EU-23-Jin-Evils-in-the-Sparse-Texture.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "abstract",
            "type": "abstract",
            "url": "https://www.blackhat.com/eu-23/briefings/schedule/index.html#evils-in-the-sparse-texture-memory-exploit-kernel-based-on-undefined-behaviors-of-graphic-apis-35059"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://www.blackhat.com/eu-23/briefings/schedule/index.html#evils-in-the-sparse-texture-memory-exploit-kernel-based-on-undefined-behaviors-of-graphic-apis-35059"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "abstract"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2023 Linux kernel Technique: Exploitation resource \"Evils in the Sparse Texture Memory: Exploit Kernel Based on Undefined Behaviors of Graphic APIs · abstract\"; URL type: abstract.",
      "summary_zh": "2023 年 Linux 内核Technique: Exploitation资料：「Evils in the Sparse Texture Memory: Exploit Kernel Based on Undefined Behaviors of Graphic APIs · abstract」；URL 类型：abstract。",
      "source_markdown": "[2023: \"Evils in the Sparse Texture Memory: Exploit Kernel Based on Undefined Behaviors of Graphic APIs\"](https://i.blackhat.com/EU-23/Presentations/EU-23-Jin-Evils-in-the-Sparse-Texture.pdf) [slides] [[abstract](https://www.blackhat.com/eu-23/briefings/schedule/index.html#evils-in-the-sparse-texture-memory-exploit-kernel-based-on-undefined-behaviors-of-graphic-apis-35059)]",
      "search_text": "evils in the sparse texture memory: exploit kernel based on undefined behaviors of graphic apis · abstract evils in the sparse texture memory: exploit kernel based on undefined behaviors of graphic apis    techniques exploitation technique: exploitation abstract abstract https://www.blackhat.com/eu-23/briefings/schedule/index.html#evils-in-the-sparse-texture-memory-exploit-kernel-based-on-undefined-behaviors-of-graphic-apis-35059 techniques exploitation abstract  technique: exploitation 2023 linux kernel technique: exploitation resource \"evils in the sparse texture memory: exploit kernel based on undefined behaviors of graphic apis · abstract\"; url type: abstract. 2023 年 linux 内核technique: exploitation资料：「evils in the sparse texture memory: exploit kernel based on undefined behaviors of graphic apis · abstract」；url 类型：abstract。 # evils in the sparse texture memory: exploit kernel based on undefined behaviors of graphic apis · abstract record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: evils in the sparse texture memory: exploit kernel based on undefined behaviors of graphic apis resource_label: abstract resource_type: abstract resource_url: https://www.blackhat.com/eu-23/briefings/schedule/index.html#evils-in-the-sparse-texture-memory-exploit-kernel-based-on-undefined-behaviors-of-graphic-apis-35059 parent_primary_url: https://i.blackhat.com/eu-23/presentations/eu-23-jin-evils-in-the-sparse-texture.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"evils in the sparse texture memory: exploit kernel based on undefined behaviors of graphic apis\"](https://i.blackhat.com/eu-23/pre no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "4dec43f195166239",
      "item_id": "a951c7973eba7ba4",
      "slug": "2023-techniques-exploitation-make-ksma-great-again-the-art-of-rooting-android-devices-primary-2de1b471",
      "year": 2023,
      "title": "Make KSMA Great Again: The Art of Rooting Android devices",
      "item_title": "Make KSMA Great Again: The Art of Rooting Android devices",
      "authors": [
        "GPU MMU features\" by Yong Wang"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-WANG-The-Art-of-Rooting-Android-devices-by-GPU-MMU-features.pdf",
      "primary_url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-WANG-The-Art-of-Rooting-Android-devices-by-GPU-MMU-features.pdf",
      "parent_primary_url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-WANG-The-Art-of-Rooting-Android-devices-by-GPU-MMU-features.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-make-ksma-great-again-the-art-of-rooting-android-devices-primary-2de1b471.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Make KSMA Great Again: The Art of Rooting Android devices record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Make KSMA Great Again: The Art of Rooting Android devices resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/BH-US-23/Presentations/US-23-WANG-The-Art-of-Rooting-Android-devices-by-GPU-MMU-features.pdf parent_primary_url: https://i.blackhat.com/BH-US-23/Presentations/US-23-WANG-The-Art-of-Rooting-Android-devices-by-GPU-MMU-features.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Make KSMA Great Again: The Art of Rooting Android devices by GPU MMU features\" by Yong Wang](https://i.blackhat.com/BH-US-23/Presentations/US-23-WANG-The-Art-of-Rooting-Android-devices-by-GPU-MMU-features.pdf) [[video](https://www.yout",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-WANG-The-Art-of-Rooting-Android-devices-by-GPU-MMU-features.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=2qkwSPnQqrU"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-WANG-The-Art-of-Rooting-Android-devices-by-GPU-MMU-features.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=2qkwSPnQqrU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "rooting",
        "android",
        "GPU_MMU"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The slides present techniques for rooting Android devices using GPU MMU features.",
      "summary_zh": "这些幻灯片展示了使用GPU MMU特性对Android设备进行root的技术。",
      "source_markdown": "[2023: \"Make KSMA Great Again: The Art of Rooting Android devices by GPU MMU features\" by Yong Wang](https://i.blackhat.com/BH-US-23/Presentations/US-23-WANG-The-Art-of-Rooting-Android-devices-by-GPU-MMU-features.pdf) [[video](https://www.youtube.com/watch?v=2qkwSPnQqrU)] [slides]",
      "search_text": "make ksma great again: the art of rooting android devices make ksma great again: the art of rooting android devices gpu mmu features\" by yong wang   techniques exploitation technique: exploitation primary slides https://i.blackhat.com/bh-us-23/presentations/us-23-wang-the-art-of-rooting-android-devices-by-gpu-mmu-features.pdf rooting android gpu_mmu  exploitation the slides present techniques for rooting android devices using gpu mmu features. 这些幻灯片展示了使用gpu mmu特性对android设备进行root的技术。 # make ksma great again: the art of rooting android devices record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: make ksma great again: the art of rooting android devices resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/bh-us-23/presentations/us-23-wang-the-art-of-rooting-android-devices-by-gpu-mmu-features.pdf parent_primary_url: https://i.blackhat.com/bh-us-23/presentations/us-23-wang-the-art-of-rooting-android-devices-by-gpu-mmu-features.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"make ksma great again: the art of rooting android devices by gpu mmu features\" by yong wang](https://i.blackhat.com/bh-us-23/presentations/us-23-wang-the-art-of-rooting-android-devices-by-gpu-mmu-features.pdf) [[video](https://www.yout unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "68b53e1c1253b09e",
      "item_id": "a951c7973eba7ba4",
      "slug": "2023-techniques-exploitation-make-ksma-great-again-the-art-of-rooting-android-devices-video-d50acad6",
      "year": 2023,
      "title": "Make KSMA Great Again: The Art of Rooting Android devices · video",
      "item_title": "Make KSMA Great Again: The Art of Rooting Android devices",
      "authors": [
        "GPU MMU features\" by Yong Wang"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=2qkwSPnQqrU",
      "primary_url": "https://www.youtube.com/watch?v=2qkwSPnQqrU",
      "parent_primary_url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-WANG-The-Art-of-Rooting-Android-devices-by-GPU-MMU-features.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-make-ksma-great-again-the-art-of-rooting-android-devices-video-d50acad6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Make KSMA Great Again: The Art of Rooting Android devices · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Make KSMA Great Again: The Art of Rooting Android devices resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=2qkwSPnQqrU parent_primary_url: https://i.blackhat.com/BH-US-23/Presentations/US-23-WANG-The-Art-of-Rooting-Android-devices-by-GPU-MMU-features.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Make KSMA Great Again: The Art of Rooting Android devices by GPU MMU features\" by Yong Wang](https://i.blackhat.com/BH-US-23/Presentations/US-23-WANG-The-Art-of-Rooting-Android-devices-by-GPU-MMU-features.pdf) [[video](https://www.youtube.com/watch?v=2qkwSPnQqrU)] [slides] cves: none android_impact_st",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-WANG-The-Art-of-Rooting-Android-devices-by-GPU-MMU-features.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=2qkwSPnQqrU"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-WANG-The-Art-of-Rooting-Android-devices-by-GPU-MMU-features.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=2qkwSPnQqrU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "rooting",
        "android",
        "GPU_MMU"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This video accompanies the slides on rooting Android devices using GPU MMU features.",
      "summary_zh": "该视频伴随关于使用GPU MMU特性对Android设备进行root的幻灯片。",
      "source_markdown": "[2023: \"Make KSMA Great Again: The Art of Rooting Android devices by GPU MMU features\" by Yong Wang](https://i.blackhat.com/BH-US-23/Presentations/US-23-WANG-The-Art-of-Rooting-Android-devices-by-GPU-MMU-features.pdf) [[video](https://www.youtube.com/watch?v=2qkwSPnQqrU)] [slides]",
      "search_text": "make ksma great again: the art of rooting android devices · video make ksma great again: the art of rooting android devices gpu mmu features\" by yong wang   techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=2qkwspnqqru rooting android gpu_mmu  exploitation this video accompanies the slides on rooting android devices using gpu mmu features. 该视频伴随关于使用gpu mmu特性对android设备进行root的幻灯片。 # make ksma great again: the art of rooting android devices · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: make ksma great again: the art of rooting android devices resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=2qkwspnqqru parent_primary_url: https://i.blackhat.com/bh-us-23/presentations/us-23-wang-the-art-of-rooting-android-devices-by-gpu-mmu-features.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"make ksma great again: the art of rooting android devices by gpu mmu features\" by yong wang](https://i.blackhat.com/bh-us-23/presentations/us-23-wang-the-art-of-rooting-android-devices-by-gpu-mmu-features.pdf) [[video](https://www.youtube.com/watch?v=2qkwspnqqru)] [slides] cves: none android_impact_st unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "89af0d49a7dd1dd1",
      "item_id": "5380b87b152a62cc",
      "slug": "2023-techniques-exploitation-a-new-method-for-container-escape-using-file-based-dirtycred-primary-356c1c8f",
      "year": 2023,
      "title": "A new method for container escape using file-based DirtyCred",
      "item_title": "A new method for container escape using file-based DirtyCred",
      "authors": [
        "Choo Yi Kai"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://starlabs.sg/blog/2023/07-a-new-method-for-container-escape-using-file-based-dirtycred/",
      "primary_url": "https://starlabs.sg/blog/2023/07-a-new-method-for-container-escape-using-file-based-dirtycred/",
      "parent_primary_url": "https://starlabs.sg/blog/2023/07-a-new-method-for-container-escape-using-file-based-dirtycred/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-a-new-method-for-container-escape-using-file-based-dirtycred-primary-356c1c8f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A new method for container escape using file-based DirtyCred record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: A new method for container escape using file-based DirtyCred resource_label: primary resource_type: article resource_url: https://starlabs.sg/blog/2023/07-a-new-method-for-container-escape-using-file-based-dirtycred/ parent_primary_url: https://starlabs.sg/blog/2023/07-a-new-method-for-container-escape-using-file-based-dirtycred/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"A new method for container escape using file-based DirtyCred\" by Choo Yi Kai](https://starlabs.sg/blog/2023/07-a-new-method-for-container-escape-using-file-based-dirtycred/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that t",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://starlabs.sg/blog/2023/07-a-new-method-for-container-escape-using-file-based-dirtycred/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://starlabs.sg/blog/2023/07-a-new-method-for-container-escape-using-file-based-dirtycred/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "container_escape",
        "DirtyCred"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The article introduces a new method for container escape using file-based DirtyCred.",
      "summary_zh": "该文章介绍了一种使用基于文件的DirtyCred进行容器逃逸的新方法。",
      "source_markdown": "[2023: \"A new method for container escape using file-based DirtyCred\" by Choo Yi Kai](https://starlabs.sg/blog/2023/07-a-new-method-for-container-escape-using-file-based-dirtycred/) [article]",
      "search_text": "a new method for container escape using file-based dirtycred a new method for container escape using file-based dirtycred choo yi kai   techniques exploitation technique: exploitation primary article https://starlabs.sg/blog/2023/07-a-new-method-for-container-escape-using-file-based-dirtycred/ container_escape dirtycred  exploitation the article introduces a new method for container escape using file-based dirtycred. 该文章介绍了一种使用基于文件的dirtycred进行容器逃逸的新方法。 # a new method for container escape using file-based dirtycred record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: a new method for container escape using file-based dirtycred resource_label: primary resource_type: article resource_url: https://starlabs.sg/blog/2023/07-a-new-method-for-container-escape-using-file-based-dirtycred/ parent_primary_url: https://starlabs.sg/blog/2023/07-a-new-method-for-container-escape-using-file-based-dirtycred/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"a new method for container escape using file-based dirtycred\" by choo yi kai](https://starlabs.sg/blog/2023/07-a-new-method-for-container-escape-using-file-based-dirtycred/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that t no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b18990b17ee50e4f",
      "item_id": "84dcade7ebfc9529",
      "slug": "2023-techniques-exploitation-prctl-anon-vma-name-an-amusing-linux-kernel-heap-spray-primary-242d3388",
      "year": 2023,
      "title": "prctl anon_vma_name: An Amusing Linux Kernel Heap Spray",
      "item_title": "prctl anon_vma_name: An Amusing Linux Kernel Heap Spray",
      "authors": [
        "Cherie-Anne Lee"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://starlabs.sg/blog/2023/07-prctl-anon_vma_name-an-amusing-heap-spray/",
      "primary_url": "https://starlabs.sg/blog/2023/07-prctl-anon_vma_name-an-amusing-heap-spray/",
      "parent_primary_url": "https://starlabs.sg/blog/2023/07-prctl-anon_vma_name-an-amusing-heap-spray/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-prctl-anon-vma-name-an-amusing-linux-kernel-heap-spray-primary-242d3388.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# prctl anon_vma_name: An Amusing Linux Kernel Heap Spray record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: prctl anon_vma_name: An Amusing Linux Kernel Heap Spray resource_label: primary resource_type: article resource_url: https://starlabs.sg/blog/2023/07-prctl-anon_vma_name-an-amusing-heap-spray/ parent_primary_url: https://starlabs.sg/blog/2023/07-prctl-anon_vma_name-an-amusing-heap-spray/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"prctl anon_vma_name: An Amusing Linux Kernel Heap Spray\" by Cherie-Anne Lee](https://starlabs.sg/blog/2023/07-prctl-anon_vma_name-an-amusing-heap-spray/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://starlabs.sg/blog/2023/07-prctl-anon_vma_name-an-amusing-heap-spray/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://starlabs.sg/blog/2023/07-prctl-anon_vma_name-an-amusing-heap-spray/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2023 Linux kernel Technique: Exploitation resource \"prctl anon_vma_name: An Amusing Linux Kernel Heap Spray\"; URL type: article.",
      "summary_zh": "2023 年 Linux 内核Technique: Exploitation资料：「prctl anon_vma_name: An Amusing Linux Kernel Heap Spray」；URL 类型：article。",
      "source_markdown": "[2023: \"prctl anon_vma_name: An Amusing Linux Kernel Heap Spray\" by Cherie-Anne Lee](https://starlabs.sg/blog/2023/07-prctl-anon_vma_name-an-amusing-heap-spray/) [article]",
      "search_text": "prctl anon_vma_name: an amusing linux kernel heap spray prctl anon_vma_name: an amusing linux kernel heap spray cherie-anne lee   techniques exploitation technique: exploitation primary article https://starlabs.sg/blog/2023/07-prctl-anon_vma_name-an-amusing-heap-spray/ techniques exploitation article  technique: exploitation 2023 linux kernel technique: exploitation resource \"prctl anon_vma_name: an amusing linux kernel heap spray\"; url type: article. 2023 年 linux 内核technique: exploitation资料：「prctl anon_vma_name: an amusing linux kernel heap spray」；url 类型：article。 # prctl anon_vma_name: an amusing linux kernel heap spray record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: prctl anon_vma_name: an amusing linux kernel heap spray resource_label: primary resource_type: article resource_url: https://starlabs.sg/blog/2023/07-prctl-anon_vma_name-an-amusing-heap-spray/ parent_primary_url: https://starlabs.sg/blog/2023/07-prctl-anon_vma_name-an-amusing-heap-spray/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"prctl anon_vma_name: an amusing linux kernel heap spray\" by cherie-anne lee](https://starlabs.sg/blog/2023/07-prctl-anon_vma_name-an-amusing-heap-spray/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1a419c91d9ea916b",
      "item_id": "30c9c5239c54599b",
      "slug": "2023-techniques-exploitation-dirty-pagetable-a-novel-exploitation-technique-to-rule-linux-kernel-primary-e80c9",
      "year": 2023,
      "title": "Dirty Pagetable: A Novel Exploitation Technique To Rule Linux Kernel",
      "item_title": "Dirty Pagetable: A Novel Exploitation Technique To Rule Linux Kernel",
      "authors": [
        "Nicolas Wu"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://yanglingxi1993.github.io/dirty_pagetable/dirty_pagetable.html",
      "primary_url": "https://yanglingxi1993.github.io/dirty_pagetable/dirty_pagetable.html",
      "parent_primary_url": "https://yanglingxi1993.github.io/dirty_pagetable/dirty_pagetable.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-dirty-pagetable-a-novel-exploitation-technique-to-rule-linux-kernel-primary-e80c9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Dirty Pagetable: A Novel Exploitation Technique To Rule Linux Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Dirty Pagetable: A Novel Exploitation Technique To Rule Linux Kernel resource_label: primary resource_type: article resource_url: https://yanglingxi1993.github.io/dirty_pagetable/dirty_pagetable.html parent_primary_url: https://yanglingxi1993.github.io/dirty_pagetable/dirty_pagetable.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Dirty Pagetable: A Novel Exploitation Technique To Rule Linux Kernel\" by Nicolas Wu](https://yanglingxi1993.github.io/dirty_pagetable/dirty_pagetable.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_i",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://yanglingxi1993.github.io/dirty_pagetable/dirty_pagetable.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://yanglingxi1993.github.io/dirty_pagetable/dirty_pagetable.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://yanglingxi1993.github.io/dirty_pagetable/dirty_pagetable.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2023 Linux kernel Technique: Exploitation resource \"Dirty Pagetable: A Novel Exploitation Technique To Rule Linux Kernel\"; URL type: article.",
      "summary_zh": "2023 年 Linux 内核Technique: Exploitation资料：「Dirty Pagetable: A Novel Exploitation Technique To Rule Linux Kernel」；URL 类型：article。",
      "source_markdown": "[2023: \"Dirty Pagetable: A Novel Exploitation Technique To Rule Linux Kernel\" by Nicolas Wu](https://yanglingxi1993.github.io/dirty_pagetable/dirty_pagetable.html) [article]",
      "search_text": "dirty pagetable: a novel exploitation technique to rule linux kernel dirty pagetable: a novel exploitation technique to rule linux kernel nicolas wu   techniques exploitation technique: exploitation primary article https://yanglingxi1993.github.io/dirty_pagetable/dirty_pagetable.html techniques exploitation article  technique: exploitation 2023 linux kernel technique: exploitation resource \"dirty pagetable: a novel exploitation technique to rule linux kernel\"; url type: article. 2023 年 linux 内核technique: exploitation资料：「dirty pagetable: a novel exploitation technique to rule linux kernel」；url 类型：article。 # dirty pagetable: a novel exploitation technique to rule linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: dirty pagetable: a novel exploitation technique to rule linux kernel resource_label: primary resource_type: article resource_url: https://yanglingxi1993.github.io/dirty_pagetable/dirty_pagetable.html parent_primary_url: https://yanglingxi1993.github.io/dirty_pagetable/dirty_pagetable.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"dirty pagetable: a novel exploitation technique to rule linux kernel\" by nicolas wu](https://yanglingxi1993.github.io/dirty_pagetable/dirty_pagetable.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_i no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "7a279839a0baa82a",
      "item_id": "04d4c81c4b2f51cb",
      "slug": "2023-techniques-exploitation-exploit-engineering-attacking-the-linux-kernel-primary-89772e9d",
      "year": 2023,
      "title": "Exploit Engineering – Attacking the Linux Kernel",
      "item_title": "Exploit Engineering – Attacking the Linux Kernel",
      "authors": [
        "Alex Plaskett",
        "Cedric Halbronn"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf",
      "primary_url": "https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf",
      "parent_primary_url": "https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-exploit-engineering-attacking-the-linux-kernel-primary-89772e9d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploit Engineering – Attacking the Linux Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Exploit Engineering – Attacking the Linux Kernel resource_label: primary resource_type: slides resource_url: https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf parent_primary_url: https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Exploit Engineering – Attacking the Linux Kernel\" by Alex Plaskett and Cedric Halbronn](https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf) [slides] [[video](https://www.youtube.com/watch?v=9wgHENj_YNk)] cves: none android_impact_status: no android_impac",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=9wgHENj_YNk"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=9wgHENj_YNk"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2023 Linux kernel Technique: Exploitation resource \"Exploit Engineering – Attacking the Linux Kernel\"; URL type: slides.",
      "summary_zh": "2023 年 Linux 内核Technique: Exploitation资料：「Exploit Engineering – Attacking the Linux Kernel」；URL 类型：slides。",
      "source_markdown": "[2023: \"Exploit Engineering – Attacking the Linux Kernel\" by Alex Plaskett and Cedric Halbronn](https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf) [slides] [[video](https://www.youtube.com/watch?v=9wgHENj_YNk)]",
      "search_text": "exploit engineering – attacking the linux kernel exploit engineering – attacking the linux kernel alex plaskett cedric halbronn   techniques exploitation technique: exploitation primary slides https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf techniques exploitation slides  technique: exploitation 2023 linux kernel technique: exploitation resource \"exploit engineering – attacking the linux kernel\"; url type: slides. 2023 年 linux 内核technique: exploitation资料：「exploit engineering – attacking the linux kernel」；url 类型：slides。 # exploit engineering – attacking the linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: exploit engineering – attacking the linux kernel resource_label: primary resource_type: slides resource_url: https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf parent_primary_url: https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"exploit engineering – attacking the linux kernel\" by alex plaskett and cedric halbronn](https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf) [slides] [[video](https://www.youtube.com/watch?v=9wghenj_ynk)] cves: none android_impact_status: no android_impac no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "0fddae737e14488a",
      "item_id": "04d4c81c4b2f51cb",
      "slug": "2023-techniques-exploitation-exploit-engineering-attacking-the-linux-kernel-video-f05096a6",
      "year": 2023,
      "title": "Exploit Engineering – Attacking the Linux Kernel · video",
      "item_title": "Exploit Engineering – Attacking the Linux Kernel",
      "authors": [
        "Alex Plaskett",
        "Cedric Halbronn"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=9wgHENj_YNk",
      "primary_url": "https://www.youtube.com/watch?v=9wgHENj_YNk",
      "parent_primary_url": "https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-exploit-engineering-attacking-the-linux-kernel-video-f05096a6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploit Engineering – Attacking the Linux Kernel · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Exploit Engineering – Attacking the Linux Kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=9wgHENj_YNk parent_primary_url: https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Exploit Engineering – Attacking the Linux Kernel\" by Alex Plaskett and Cedric Halbronn](https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf) [slides] [[video](https://www.youtube.com/watch?v=9wgHENj_YNk)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resou",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=9wgHENj_YNk"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=9wgHENj_YNk"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2023 Linux kernel Technique: Exploitation resource \"Exploit Engineering – Attacking the Linux Kernel · video\"; URL type: video.",
      "summary_zh": "2023 年 Linux 内核Technique: Exploitation资料：「Exploit Engineering – Attacking the Linux Kernel · video」；URL 类型：video。",
      "source_markdown": "[2023: \"Exploit Engineering – Attacking the Linux Kernel\" by Alex Plaskett and Cedric Halbronn](https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf) [slides] [[video](https://www.youtube.com/watch?v=9wgHENj_YNk)]",
      "search_text": "exploit engineering – attacking the linux kernel · video exploit engineering – attacking the linux kernel alex plaskett cedric halbronn   techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=9wghenj_ynk techniques exploitation video  technique: exploitation 2023 linux kernel technique: exploitation resource \"exploit engineering – attacking the linux kernel · video\"; url type: video. 2023 年 linux 内核technique: exploitation资料：「exploit engineering – attacking the linux kernel · video」；url 类型：video。 # exploit engineering – attacking the linux kernel · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: exploit engineering – attacking the linux kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=9wghenj_ynk parent_primary_url: https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"exploit engineering – attacking the linux kernel\" by alex plaskett and cedric halbronn](https://research.nccgroup.com/wp-content/uploads/2023/05/exploit-engineering-linux-kernel.pdf) [slides] [[video](https://www.youtube.com/watch?v=9wghenj_ynk)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resou no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "74690af208b929d0",
      "item_id": "c4cce1cf0ead62e3",
      "slug": "2023-techniques-exploitation-algorithmic-heap-layout-manipulation-in-the-linux-kernel-primary-3319c35d",
      "year": 2023,
      "title": "Algorithmic Heap Layout Manipulation in the Linux Kernel",
      "item_title": "Algorithmic Heap Layout Manipulation in the Linux Kernel",
      "authors": [
        "Max Ufer",
        "Daniel Baier"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf",
      "primary_url": "https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf",
      "parent_primary_url": "https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-algorithmic-heap-layout-manipulation-in-the-linux-kernel-primary-3319c35d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Algorithmic Heap Layout Manipulation in the Linux Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Algorithmic Heap Layout Manipulation in the Linux Kernel resource_label: primary resource_type: paper resource_url: https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf parent_primary_url: https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Algorithmic Heap Layout Manipulation in the Linux Kernel\" by Max Ufer and Daniel Baier](https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf) [paper] [[artifacts](https://github.com/fkie-cad/Algorithmic-Heap-Layout-Manipulation-in-the-Linux-Kernel)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resour",
      "link_types": [
        "paper",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://github.com/fkie-cad/Algorithmic-Heap-Layout-Manipulation-in-the-Linux-Kernel"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://github.com/fkie-cad/Algorithmic-Heap-Layout-Manipulation-in-the-Linux-Kernel"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/fkie-cad/Algorithmic-Heap-Layout-Manipulation-in-the-Linux-Kernel"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "paper"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2023 Linux kernel Technique: Exploitation resource \"Algorithmic Heap Layout Manipulation in the Linux Kernel\"; URL type: paper.",
      "summary_zh": "2023 年 Linux 内核Technique: Exploitation资料：「Algorithmic Heap Layout Manipulation in the Linux Kernel」；URL 类型：paper。",
      "source_markdown": "[2023: \"Algorithmic Heap Layout Manipulation in the Linux Kernel\" by Max Ufer and Daniel Baier](https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf) [paper] [[artifacts](https://github.com/fkie-cad/Algorithmic-Heap-Layout-Manipulation-in-the-Linux-Kernel)]",
      "search_text": "algorithmic heap layout manipulation in the linux kernel algorithmic heap layout manipulation in the linux kernel max ufer daniel baier   techniques exploitation technique: exploitation primary paper https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf techniques exploitation paper  technique: exploitation 2023 linux kernel technique: exploitation resource \"algorithmic heap layout manipulation in the linux kernel\"; url type: paper. 2023 年 linux 内核technique: exploitation资料：「algorithmic heap layout manipulation in the linux kernel」；url 类型：paper。 # algorithmic heap layout manipulation in the linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: algorithmic heap layout manipulation in the linux kernel resource_label: primary resource_type: paper resource_url: https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf parent_primary_url: https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"algorithmic heap layout manipulation in the linux kernel\" by max ufer and daniel baier](https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf) [paper] [[artifacts](https://github.com/fkie-cad/algorithmic-heap-layout-manipulation-in-the-linux-kernel)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resour no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6cc788802ff1056e",
      "item_id": "c4cce1cf0ead62e3",
      "slug": "2023-techniques-exploitation-algorithmic-heap-layout-manipulation-in-the-linux-kernel-artifacts-1b551f44",
      "year": 2023,
      "title": "Algorithmic Heap Layout Manipulation in the Linux Kernel · artifacts",
      "item_title": "Algorithmic Heap Layout Manipulation in the Linux Kernel",
      "authors": [
        "Max Ufer",
        "Daniel Baier"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "artifacts",
      "resource_type": "artifact",
      "resource_url": "https://github.com/fkie-cad/Algorithmic-Heap-Layout-Manipulation-in-the-Linux-Kernel",
      "primary_url": "https://github.com/fkie-cad/Algorithmic-Heap-Layout-Manipulation-in-the-Linux-Kernel",
      "parent_primary_url": "https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-algorithmic-heap-layout-manipulation-in-the-linux-kernel-artifacts-1b551f44.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Algorithmic Heap Layout Manipulation in the Linux Kernel · artifacts record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Algorithmic Heap Layout Manipulation in the Linux Kernel resource_label: artifacts resource_type: artifact resource_url: https://github.com/fkie-cad/Algorithmic-Heap-Layout-Manipulation-in-the-Linux-Kernel parent_primary_url: https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Algorithmic Heap Layout Manipulation in the Linux Kernel\" by Max Ufer and Daniel Baier](https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf) [paper] [[artifacts](https://github.com/fkie-cad/Algorithmic-Heap-Layout-Manipulation-in-the-Linux-Kernel)] cves: none android_impact_status: no android_impact_r",
      "link_types": [
        "paper",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://github.com/fkie-cad/Algorithmic-Heap-Layout-Manipulation-in-the-Linux-Kernel"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://github.com/fkie-cad/Algorithmic-Heap-Layout-Manipulation-in-the-Linux-Kernel"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/fkie-cad/Algorithmic-Heap-Layout-Manipulation-in-the-Linux-Kernel"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "artifact"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2023 Linux kernel Technique: Exploitation resource \"Algorithmic Heap Layout Manipulation in the Linux Kernel · artifacts\"; URL type: artifact.",
      "summary_zh": "2023 年 Linux 内核Technique: Exploitation资料：「Algorithmic Heap Layout Manipulation in the Linux Kernel · artifacts」；URL 类型：artifact。",
      "source_markdown": "[2023: \"Algorithmic Heap Layout Manipulation in the Linux Kernel\" by Max Ufer and Daniel Baier](https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf) [paper] [[artifacts](https://github.com/fkie-cad/Algorithmic-Heap-Layout-Manipulation-in-the-Linux-Kernel)]",
      "search_text": "algorithmic heap layout manipulation in the linux kernel · artifacts algorithmic heap layout manipulation in the linux kernel max ufer daniel baier   techniques exploitation technique: exploitation artifacts artifact https://github.com/fkie-cad/algorithmic-heap-layout-manipulation-in-the-linux-kernel techniques exploitation artifact  technique: exploitation 2023 linux kernel technique: exploitation resource \"algorithmic heap layout manipulation in the linux kernel · artifacts\"; url type: artifact. 2023 年 linux 内核technique: exploitation资料：「algorithmic heap layout manipulation in the linux kernel · artifacts」；url 类型：artifact。 # algorithmic heap layout manipulation in the linux kernel · artifacts record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: algorithmic heap layout manipulation in the linux kernel resource_label: artifacts resource_type: artifact resource_url: https://github.com/fkie-cad/algorithmic-heap-layout-manipulation-in-the-linux-kernel parent_primary_url: https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"algorithmic heap layout manipulation in the linux kernel\" by max ufer and daniel baier](https://escholarship.org/content/qt8ss3f7w1/qt8ss3f7w1.pdf) [paper] [[artifacts](https://github.com/fkie-cad/algorithmic-heap-layout-manipulation-in-the-linux-kernel)] cves: none android_impact_status: no android_impact_r no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "7b0b91e13230c7fa",
      "item_id": "94c773e1801705e3",
      "slug": "2023-techniques-exploitation-the-return-of-stack-overflows-in-the-linux-kernel-primary-e2d2f9a5",
      "year": 2023,
      "title": "The Return of Stack Overflows in the Linux Kernel",
      "item_title": "The Return of Stack Overflows in the Linux Kernel",
      "authors": [
        "Davide Ornaghi"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://conference.hitb.org/hitbsecconf2023ams/materials/D2%20COMMSEC%20-%20The%20Return%20of%20Stack%20Overflows%20in%20the%20Linux%20Kernel%20-%20Davide%20Ornaghi.pdf",
      "primary_url": "https://conference.hitb.org/hitbsecconf2023ams/materials/D2%20COMMSEC%20-%20The%20Return%20of%20Stack%20Overflows%20in%20the%20Linux%20Kernel%20-%20Davide%20Ornaghi.pdf",
      "parent_primary_url": "https://conference.hitb.org/hitbsecconf2023ams/materials/D2%20COMMSEC%20-%20The%20Return%20of%20Stack%20Overflows%20in%20the%20Linux%20Kernel%20-%20Davide%20Ornaghi.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-the-return-of-stack-overflows-in-the-linux-kernel-primary-e2d2f9a5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Return of Stack Overflows in the Linux Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: The Return of Stack Overflows in the Linux Kernel resource_label: primary resource_type: slides resource_url: https://conference.hitb.org/hitbsecconf2023ams/materials/D2%20COMMSEC%20-%20The%20Return%20of%20Stack%20Overflows%20in%20the%20Linux%20Kernel%20-%20Davide%20Ornaghi.pdf parent_primary_url: https://conference.hitb.org/hitbsecconf2023ams/materials/D2%20COMMSEC%20-%20The%20Return%20of%20Stack%20Overflows%20in%20the%20Linux%20Kernel%20-%20Davide%20Ornaghi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"The Return of Stack Overflows in the Linux Kernel\" by Davide Ornaghi](https://conference.hitb.org/hitbsecconf2023ams/materials/D2%20COMMSEC%20-%2",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://conference.hitb.org/hitbsecconf2023ams/materials/D2%20COMMSEC%20-%20The%20Return%20of%20Stack%20Overflows%20in%20the%20Linux%20Kernel%20-%20Davide%20Ornaghi.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=5b9UlBrzvG0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://conference.hitb.org/hitbsecconf2023ams/materials/D2%20COMMSEC%20-%20The%20Return%20of%20Stack%20Overflows%20in%20the%20Linux%20Kernel%20-%20Davide%20Ornaghi.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=5b9UlBrzvG0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2023 Linux kernel Technique: Exploitation resource \"The Return of Stack Overflows in the Linux Kernel\"; URL type: slides.",
      "summary_zh": "2023 年 Linux 内核Technique: Exploitation资料：「The Return of Stack Overflows in the Linux Kernel」；URL 类型：slides。",
      "source_markdown": "[2023: \"The Return of Stack Overflows in the Linux Kernel\" by Davide Ornaghi](https://conference.hitb.org/hitbsecconf2023ams/materials/D2%20COMMSEC%20-%20The%20Return%20of%20Stack%20Overflows%20in%20the%20Linux%20Kernel%20-%20Davide%20Ornaghi.pdf) [slides] [[video](https://www.youtube.com/watch?v=5b9UlBrzvG0)]",
      "search_text": "the return of stack overflows in the linux kernel the return of stack overflows in the linux kernel davide ornaghi   techniques exploitation technique: exploitation primary slides https://conference.hitb.org/hitbsecconf2023ams/materials/d2%20commsec%20-%20the%20return%20of%20stack%20overflows%20in%20the%20linux%20kernel%20-%20davide%20ornaghi.pdf techniques exploitation slides  technique: exploitation 2023 linux kernel technique: exploitation resource \"the return of stack overflows in the linux kernel\"; url type: slides. 2023 年 linux 内核technique: exploitation资料：「the return of stack overflows in the linux kernel」；url 类型：slides。 # the return of stack overflows in the linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: the return of stack overflows in the linux kernel resource_label: primary resource_type: slides resource_url: https://conference.hitb.org/hitbsecconf2023ams/materials/d2%20commsec%20-%20the%20return%20of%20stack%20overflows%20in%20the%20linux%20kernel%20-%20davide%20ornaghi.pdf parent_primary_url: https://conference.hitb.org/hitbsecconf2023ams/materials/d2%20commsec%20-%20the%20return%20of%20stack%20overflows%20in%20the%20linux%20kernel%20-%20davide%20ornaghi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"the return of stack overflows in the linux kernel\" by davide ornaghi](https://conference.hitb.org/hitbsecconf2023ams/materials/d2%20commsec%20-%2 no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a2ef0693d8a40801",
      "item_id": "94c773e1801705e3",
      "slug": "2023-techniques-exploitation-the-return-of-stack-overflows-in-the-linux-kernel-video-6d2854da",
      "year": 2023,
      "title": "The Return of Stack Overflows in the Linux Kernel · video",
      "item_title": "The Return of Stack Overflows in the Linux Kernel",
      "authors": [
        "Davide Ornaghi"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=5b9UlBrzvG0",
      "primary_url": "https://www.youtube.com/watch?v=5b9UlBrzvG0",
      "parent_primary_url": "https://conference.hitb.org/hitbsecconf2023ams/materials/D2%20COMMSEC%20-%20The%20Return%20of%20Stack%20Overflows%20in%20the%20Linux%20Kernel%20-%20Davide%20Ornaghi.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-the-return-of-stack-overflows-in-the-linux-kernel-video-6d2854da.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Return of Stack Overflows in the Linux Kernel · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: The Return of Stack Overflows in the Linux Kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=5b9UlBrzvG0 parent_primary_url: https://conference.hitb.org/hitbsecconf2023ams/materials/D2%20COMMSEC%20-%20The%20Return%20of%20Stack%20Overflows%20in%20the%20Linux%20Kernel%20-%20Davide%20Ornaghi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"The Return of Stack Overflows in the Linux Kernel\" by Davide Ornaghi](https://conference.hitb.org/hitbsecconf2023ams/materials/D2%20COMMSEC%20-%20The%20Return%20of%20Stack%20Overflows%20in%20the%20Linux%20Kernel%20-%20Davide%20Ornaghi.pdf) [slides] [[video](https:/",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://conference.hitb.org/hitbsecconf2023ams/materials/D2%20COMMSEC%20-%20The%20Return%20of%20Stack%20Overflows%20in%20the%20Linux%20Kernel%20-%20Davide%20Ornaghi.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=5b9UlBrzvG0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://conference.hitb.org/hitbsecconf2023ams/materials/D2%20COMMSEC%20-%20The%20Return%20of%20Stack%20Overflows%20in%20the%20Linux%20Kernel%20-%20Davide%20Ornaghi.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=5b9UlBrzvG0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2023 Linux kernel Technique: Exploitation resource \"The Return of Stack Overflows in the Linux Kernel · video\"; URL type: video.",
      "summary_zh": "2023 年 Linux 内核Technique: Exploitation资料：「The Return of Stack Overflows in the Linux Kernel · video」；URL 类型：video。",
      "source_markdown": "[2023: \"The Return of Stack Overflows in the Linux Kernel\" by Davide Ornaghi](https://conference.hitb.org/hitbsecconf2023ams/materials/D2%20COMMSEC%20-%20The%20Return%20of%20Stack%20Overflows%20in%20the%20Linux%20Kernel%20-%20Davide%20Ornaghi.pdf) [slides] [[video](https://www.youtube.com/watch?v=5b9UlBrzvG0)]",
      "search_text": "the return of stack overflows in the linux kernel · video the return of stack overflows in the linux kernel davide ornaghi   techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=5b9ulbrzvg0 techniques exploitation video  technique: exploitation 2023 linux kernel technique: exploitation resource \"the return of stack overflows in the linux kernel · video\"; url type: video. 2023 年 linux 内核technique: exploitation资料：「the return of stack overflows in the linux kernel · video」；url 类型：video。 # the return of stack overflows in the linux kernel · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: the return of stack overflows in the linux kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=5b9ulbrzvg0 parent_primary_url: https://conference.hitb.org/hitbsecconf2023ams/materials/d2%20commsec%20-%20the%20return%20of%20stack%20overflows%20in%20the%20linux%20kernel%20-%20davide%20ornaghi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"the return of stack overflows in the linux kernel\" by davide ornaghi](https://conference.hitb.org/hitbsecconf2023ams/materials/d2%20commsec%20-%20the%20return%20of%20stack%20overflows%20in%20the%20linux%20kernel%20-%20davide%20ornaghi.pdf) [slides] [[video](https:/ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c2baecd06e812940",
      "item_id": "3a3a3aed5b7fca42",
      "slug": "2023-techniques-exploitation-exploiting-null-dereferences-in-the-linux-kernel-primary-5427023d",
      "year": 2023,
      "title": "Exploiting null-dereferences in the Linux kernel",
      "item_title": "Exploiting null-dereferences in the Linux kernel",
      "authors": [
        "Seth Jenkins"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2023/01/exploiting-null-dereferences-in-linux.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2023/01/exploiting-null-dereferences-in-linux.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2023/01/exploiting-null-dereferences-in-linux.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-exploiting-null-dereferences-in-the-linux-kernel-primary-5427023d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting null-dereferences in the Linux kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Exploiting null-dereferences in the Linux kernel resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2023/01/exploiting-null-dereferences-in-linux.html parent_primary_url: https://googleprojectzero.blogspot.com/2023/01/exploiting-null-dereferences-in-linux.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Exploiting null-dereferences in the Linux kernel\" by Seth Jenkins](https://googleprojectzero.blogspot.com/2023/01/exploiting-null-dereferences-in-linux.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2023/01/exploiting-null-dereferences-in-linux.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2023/01/exploiting-null-dereferences-in-linux.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2023 Linux kernel Technique: Exploitation resource \"Exploiting null-dereferences in the Linux kernel\"; URL type: article.",
      "summary_zh": "2023 年 Linux 内核Technique: Exploitation资料：「Exploiting null-dereferences in the Linux kernel」；URL 类型：article。",
      "source_markdown": "[2023: \"Exploiting null-dereferences in the Linux kernel\" by Seth Jenkins](https://googleprojectzero.blogspot.com/2023/01/exploiting-null-dereferences-in-linux.html) [article]",
      "search_text": "exploiting null-dereferences in the linux kernel exploiting null-dereferences in the linux kernel seth jenkins   techniques exploitation technique: exploitation primary article https://googleprojectzero.blogspot.com/2023/01/exploiting-null-dereferences-in-linux.html techniques exploitation article  technique: exploitation 2023 linux kernel technique: exploitation resource \"exploiting null-dereferences in the linux kernel\"; url type: article. 2023 年 linux 内核technique: exploitation资料：「exploiting null-dereferences in the linux kernel」；url 类型：article。 # exploiting null-dereferences in the linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: exploiting null-dereferences in the linux kernel resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2023/01/exploiting-null-dereferences-in-linux.html parent_primary_url: https://googleprojectzero.blogspot.com/2023/01/exploiting-null-dereferences-in-linux.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"exploiting null-dereferences in the linux kernel\" by seth jenkins](https://googleprojectzero.blogspot.com/2023/01/exploiting-null-dereferences-in-linux.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "351ee93120b3b1c5",
      "item_id": "4f3987849e11cb2b",
      "slug": "2023-techniques-exploitation-pspray-timing-side-channel-based-linux-kernel-heap-exploitation-technique-primary",
      "year": 2023,
      "title": "PSPRAY: Timing Side-Channel based Linux Kernel Heap Exploitation Technique",
      "item_title": "PSPRAY: Timing Side-Channel based Linux Kernel Heap Exploitation Technique",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-pspray-timing-side-channel-based-linux-kernel-heap-exploitation-technique-primary.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PSPRAY: Timing Side-Channel based Linux Kernel Heap Exploitation Technique record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: PSPRAY: Timing Side-Channel based Linux Kernel Heap Exploitation Technique resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf parent_primary_url: https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"PSPRAY: Timing Side-Channel based Linux Kernel Heap Exploitation Technique\"](https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf) [paper] [[video](https://www.youtube.com/watch?v=C3ta-uUthfA)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resou",
      "link_types": [
        "paper",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=C3ta-uUthfA"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf"
          }
        ],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=C3ta-uUthfA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "paper"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2023 Linux kernel Technique: Exploitation resource \"PSPRAY: Timing Side-Channel based Linux Kernel Heap Exploitation Technique\"; URL type: paper.",
      "summary_zh": "2023 年 Linux 内核Technique: Exploitation资料：「PSPRAY: Timing Side-Channel based Linux Kernel Heap Exploitation Technique」；URL 类型：paper。",
      "source_markdown": "[2023: \"PSPRAY: Timing Side-Channel based Linux Kernel Heap Exploitation Technique\"](https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf) [paper] [[video](https://www.youtube.com/watch?v=C3ta-uUthfA)]",
      "search_text": "pspray: timing side-channel based linux kernel heap exploitation technique pspray: timing side-channel based linux kernel heap exploitation technique    techniques exploitation technique: exploitation primary paper https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf techniques exploitation paper  technique: exploitation 2023 linux kernel technique: exploitation resource \"pspray: timing side-channel based linux kernel heap exploitation technique\"; url type: paper. 2023 年 linux 内核technique: exploitation资料：「pspray: timing side-channel based linux kernel heap exploitation technique」；url 类型：paper。 # pspray: timing side-channel based linux kernel heap exploitation technique record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: pspray: timing side-channel based linux kernel heap exploitation technique resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf parent_primary_url: https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"pspray: timing side-channel based linux kernel heap exploitation technique\"](https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf) [paper] [[video](https://www.youtube.com/watch?v=c3ta-uuthfa)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resou no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7d05333b684faa50",
      "item_id": "4f3987849e11cb2b",
      "slug": "2023-techniques-exploitation-pspray-timing-side-channel-based-linux-kernel-heap-exploitation-technique-video-6",
      "year": 2023,
      "title": "PSPRAY: Timing Side-Channel based Linux Kernel Heap Exploitation Technique · video",
      "item_title": "PSPRAY: Timing Side-Channel based Linux Kernel Heap Exploitation Technique",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=C3ta-uUthfA",
      "primary_url": "https://www.youtube.com/watch?v=C3ta-uUthfA",
      "parent_primary_url": "https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-pspray-timing-side-channel-based-linux-kernel-heap-exploitation-technique-video-6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PSPRAY: Timing Side-Channel based Linux Kernel Heap Exploitation Technique · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: PSPRAY: Timing Side-Channel based Linux Kernel Heap Exploitation Technique resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=C3ta-uUthfA parent_primary_url: https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"PSPRAY: Timing Side-Channel based Linux Kernel Heap Exploitation Technique\"](https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf) [paper] [[video](https://www.youtube.com/watch?v=C3ta-uUthfA)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to rele",
      "link_types": [
        "paper",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=C3ta-uUthfA"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf"
          }
        ],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=C3ta-uUthfA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2023 Linux kernel Technique: Exploitation resource \"PSPRAY: Timing Side-Channel based Linux Kernel Heap Exploitation Technique · video\"; URL type: video.",
      "summary_zh": "2023 年 Linux 内核Technique: Exploitation资料：「PSPRAY: Timing Side-Channel based Linux Kernel Heap Exploitation Technique · video」；URL 类型：video。",
      "source_markdown": "[2023: \"PSPRAY: Timing Side-Channel based Linux Kernel Heap Exploitation Technique\"](https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf) [paper] [[video](https://www.youtube.com/watch?v=C3ta-uUthfA)]",
      "search_text": "pspray: timing side-channel based linux kernel heap exploitation technique · video pspray: timing side-channel based linux kernel heap exploitation technique    techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=c3ta-uuthfa techniques exploitation video  technique: exploitation 2023 linux kernel technique: exploitation resource \"pspray: timing side-channel based linux kernel heap exploitation technique · video\"; url type: video. 2023 年 linux 内核technique: exploitation资料：「pspray: timing side-channel based linux kernel heap exploitation technique · video」；url 类型：video。 # pspray: timing side-channel based linux kernel heap exploitation technique · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: pspray: timing side-channel based linux kernel heap exploitation technique resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=c3ta-uuthfa parent_primary_url: https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"pspray: timing side-channel based linux kernel heap exploitation technique\"](https://www.usenix.org/system/files/sec23summer_79-lee-prepub.pdf) [paper] [[video](https://www.youtube.com/watch?v=c3ta-uuthfa)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to rele no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "05ee3a61c2d3a2c7",
      "item_id": "f9f6b203ec1fd1c0",
      "slug": "2023-techniques-exploitation-linux-kernel-pwn-06-dirtycred-primary-14e4a1d5",
      "year": 2023,
      "title": "Linux Kernel PWN | 06 DirtyCred",
      "item_title": "Linux Kernel PWN | 06 DirtyCred",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.wohin.me/posts/linux-kernel-pwn-06/",
      "primary_url": "https://blog.wohin.me/posts/linux-kernel-pwn-06/",
      "parent_primary_url": "https://blog.wohin.me/posts/linux-kernel-pwn-06/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-linux-kernel-pwn-06-dirtycred-primary-14e4a1d5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel PWN | 06 DirtyCred record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel PWN | 06 DirtyCred resource_label: primary resource_type: article resource_url: https://blog.wohin.me/posts/linux-kernel-pwn-06/ parent_primary_url: https://blog.wohin.me/posts/linux-kernel-pwn-06/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Linux Kernel PWN | 06 DirtyCred\"](https://blog.wohin.me/posts/linux-kernel-pwn-06/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: -",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.wohin.me/posts/linux-kernel-pwn-06/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.wohin.me/posts/linux-kernel-pwn-06/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2023 Linux kernel Technique: Exploitation resource \"Linux Kernel PWN | 06 DirtyCred\"; URL type: article.",
      "summary_zh": "2023 年 Linux 内核Technique: Exploitation资料：「Linux Kernel PWN | 06 DirtyCred」；URL 类型：article。",
      "source_markdown": "[2023: \"Linux Kernel PWN | 06 DirtyCred\"](https://blog.wohin.me/posts/linux-kernel-pwn-06/) [article]",
      "search_text": "linux kernel pwn | 06 dirtycred linux kernel pwn | 06 dirtycred    techniques exploitation technique: exploitation primary article https://blog.wohin.me/posts/linux-kernel-pwn-06/ techniques exploitation article  technique: exploitation 2023 linux kernel technique: exploitation resource \"linux kernel pwn | 06 dirtycred\"; url type: article. 2023 年 linux 内核technique: exploitation资料：「linux kernel pwn | 06 dirtycred」；url 类型：article。 # linux kernel pwn | 06 dirtycred record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel pwn | 06 dirtycred resource_label: primary resource_type: article resource_url: https://blog.wohin.me/posts/linux-kernel-pwn-06/ parent_primary_url: https://blog.wohin.me/posts/linux-kernel-pwn-06/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"linux kernel pwn | 06 dirtycred\"](https://blog.wohin.me/posts/linux-kernel-pwn-06/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "51a8fc98c814b516",
      "item_id": "492e0db3b79a1b5e",
      "slug": "2023-techniques-exploitation-linux-kernel-pwn-05-ret2dir-primary-9aecefdc",
      "year": 2023,
      "title": "Linux Kernel PWN | 05 ret2dir",
      "item_title": "Linux Kernel PWN | 05 ret2dir",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.wohin.me/posts/linux-kernel-pwn-05/",
      "primary_url": "https://blog.wohin.me/posts/linux-kernel-pwn-05/",
      "parent_primary_url": "https://blog.wohin.me/posts/linux-kernel-pwn-05/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2023-techniques-exploitation-linux-kernel-pwn-05-ret2dir-primary-9aecefdc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel PWN | 05 ret2dir record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel PWN | 05 ret2dir resource_label: primary resource_type: article resource_url: https://blog.wohin.me/posts/linux-kernel-pwn-05/ parent_primary_url: https://blog.wohin.me/posts/linux-kernel-pwn-05/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"Linux Kernel PWN | 05 ret2dir\"](https://blog.wohin.me/posts/linux-kernel-pwn-05/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [arti",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.wohin.me/posts/linux-kernel-pwn-05/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.wohin.me/posts/linux-kernel-pwn-05/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2023 Linux kernel Technique: Exploitation resource \"Linux Kernel PWN | 05 ret2dir\"; URL type: article.",
      "summary_zh": "2023 年 Linux 内核Technique: Exploitation资料：「Linux Kernel PWN | 05 ret2dir」；URL 类型：article。",
      "source_markdown": "[2023: \"Linux Kernel PWN | 05 ret2dir\"](https://blog.wohin.me/posts/linux-kernel-pwn-05/) [article]",
      "search_text": "linux kernel pwn | 05 ret2dir linux kernel pwn | 05 ret2dir    techniques exploitation technique: exploitation primary article https://blog.wohin.me/posts/linux-kernel-pwn-05/ techniques exploitation article  technique: exploitation 2023 linux kernel technique: exploitation resource \"linux kernel pwn | 05 ret2dir\"; url type: article. 2023 年 linux 内核technique: exploitation资料：「linux kernel pwn | 05 ret2dir」；url 类型：article。 # linux kernel pwn | 05 ret2dir record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel pwn | 05 ret2dir resource_label: primary resource_type: article resource_url: https://blog.wohin.me/posts/linux-kernel-pwn-05/ parent_primary_url: https://blog.wohin.me/posts/linux-kernel-pwn-05/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2023: \"linux kernel pwn | 05 ret2dir\"](https://blog.wohin.me/posts/linux-kernel-pwn-05/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [arti no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b2b8586cd75a027c",
      "item_id": "1993c0a981d4eedb",
      "slug": "2022-techniques-exploitation-ret2page-the-art-of-exploiting-use-after-free-vulnerabilities-in-the-dedicated-ca",
      "year": 2022,
      "title": "Ret2page: The Art of Exploiting Use-After-Free Vulnerabilities in the Dedicated Cache",
      "item_title": "Ret2page: The Art of Exploiting Use-After-Free Vulnerabilities in the Dedicated Cache",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/USA-22/Thursday/US-22-WANG-Ret2page-The-Art-of-Exploiting-Use-After-Free-Vulnerabilities-in-the-Dedicated-Cache.pdf",
      "primary_url": "https://i.blackhat.com/USA-22/Thursday/US-22-WANG-Ret2page-The-Art-of-Exploiting-Use-After-Free-Vulnerabilities-in-the-Dedicated-Cache.pdf",
      "parent_primary_url": "https://i.blackhat.com/USA-22/Thursday/US-22-WANG-Ret2page-The-Art-of-Exploiting-Use-After-Free-Vulnerabilities-in-the-Dedicated-Cache.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-ret2page-the-art-of-exploiting-use-after-free-vulnerabilities-in-the-dedicated-ca.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Ret2page: The Art of Exploiting Use-After-Free Vulnerabilities in the Dedicated Cache record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Ret2page: The Art of Exploiting Use-After-Free Vulnerabilities in the Dedicated Cache resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/USA-22/Thursday/US-22-WANG-Ret2page-The-Art-of-Exploiting-Use-After-Free-Vulnerabilities-in-the-Dedicated-Cache.pdf parent_primary_url: https://i.blackhat.com/USA-22/Thursday/US-22-WANG-Ret2page-The-Art-of-Exploiting-Use-After-Free-Vulnerabilities-in-the-Dedicated-Cache.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"Ret2page: The Art of Exploiting Use-After-Free Vulnerabilities in the Dedicated Cache\"](https://i.blackhat.com/USA-22/Thursday/US-22-",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/USA-22/Thursday/US-22-WANG-Ret2page-The-Art-of-Exploiting-Use-After-Free-Vulnerabilities-in-the-Dedicated-Cache.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=HZk2egYDXxg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/USA-22/Thursday/US-22-WANG-Ret2page-The-Art-of-Exploiting-Use-After-Free-Vulnerabilities-in-the-Dedicated-Cache.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=HZk2egYDXxg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2022 Linux kernel Technique: Exploitation resource \"Ret2page: The Art of Exploiting Use-After-Free Vulnerabilities in the Dedicated Cache\"; URL type: slides.",
      "summary_zh": "2022 年 Linux 内核Technique: Exploitation资料：「Ret2page: The Art of Exploiting Use-After-Free Vulnerabilities in the Dedicated Cache」；URL 类型：slides。",
      "source_markdown": "[2022: \"Ret2page: The Art of Exploiting Use-After-Free Vulnerabilities in the Dedicated Cache\"](https://i.blackhat.com/USA-22/Thursday/US-22-WANG-Ret2page-The-Art-of-Exploiting-Use-After-Free-Vulnerabilities-in-the-Dedicated-Cache.pdf) [slides] [[video](https://www.youtube.com/watch?v=HZk2egYDXxg)]",
      "search_text": "ret2page: the art of exploiting use-after-free vulnerabilities in the dedicated cache ret2page: the art of exploiting use-after-free vulnerabilities in the dedicated cache    techniques exploitation technique: exploitation primary slides https://i.blackhat.com/usa-22/thursday/us-22-wang-ret2page-the-art-of-exploiting-use-after-free-vulnerabilities-in-the-dedicated-cache.pdf techniques exploitation slides  technique: exploitation 2022 linux kernel technique: exploitation resource \"ret2page: the art of exploiting use-after-free vulnerabilities in the dedicated cache\"; url type: slides. 2022 年 linux 内核technique: exploitation资料：「ret2page: the art of exploiting use-after-free vulnerabilities in the dedicated cache」；url 类型：slides。 # ret2page: the art of exploiting use-after-free vulnerabilities in the dedicated cache record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: ret2page: the art of exploiting use-after-free vulnerabilities in the dedicated cache resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/usa-22/thursday/us-22-wang-ret2page-the-art-of-exploiting-use-after-free-vulnerabilities-in-the-dedicated-cache.pdf parent_primary_url: https://i.blackhat.com/usa-22/thursday/us-22-wang-ret2page-the-art-of-exploiting-use-after-free-vulnerabilities-in-the-dedicated-cache.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"ret2page: the art of exploiting use-after-free vulnerabilities in the dedicated cache\"](https://i.blackhat.com/usa-22/thursday/us-22- no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "efb51733b7ce98ea",
      "item_id": "1993c0a981d4eedb",
      "slug": "2022-techniques-exploitation-ret2page-the-art-of-exploiting-use-after-free-vulnerabilities-in-the-dedicated-ca-2",
      "year": 2022,
      "title": "Ret2page: The Art of Exploiting Use-After-Free Vulnerabilities in the Dedicated Cache · video",
      "item_title": "Ret2page: The Art of Exploiting Use-After-Free Vulnerabilities in the Dedicated Cache",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=HZk2egYDXxg",
      "primary_url": "https://www.youtube.com/watch?v=HZk2egYDXxg",
      "parent_primary_url": "https://i.blackhat.com/USA-22/Thursday/US-22-WANG-Ret2page-The-Art-of-Exploiting-Use-After-Free-Vulnerabilities-in-the-Dedicated-Cache.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-ret2page-the-art-of-exploiting-use-after-free-vulnerabilities-in-the-dedicated-ca-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Ret2page: The Art of Exploiting Use-After-Free Vulnerabilities in the Dedicated Cache · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Ret2page: The Art of Exploiting Use-After-Free Vulnerabilities in the Dedicated Cache resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=HZk2egYDXxg parent_primary_url: https://i.blackhat.com/USA-22/Thursday/US-22-WANG-Ret2page-The-Art-of-Exploiting-Use-After-Free-Vulnerabilities-in-the-Dedicated-Cache.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"Ret2page: The Art of Exploiting Use-After-Free Vulnerabilities in the Dedicated Cache\"](https://i.blackhat.com/USA-22/Thursday/US-22-WANG-Ret2page-The-Art-of-Exploiting-Use-After-Free-Vulnerabilities-in-the-Dedicated-Cache.",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/USA-22/Thursday/US-22-WANG-Ret2page-The-Art-of-Exploiting-Use-After-Free-Vulnerabilities-in-the-Dedicated-Cache.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=HZk2egYDXxg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/USA-22/Thursday/US-22-WANG-Ret2page-The-Art-of-Exploiting-Use-After-Free-Vulnerabilities-in-the-Dedicated-Cache.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=HZk2egYDXxg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2022 Linux kernel Technique: Exploitation resource \"Ret2page: The Art of Exploiting Use-After-Free Vulnerabilities in the Dedicated Cache · video\"; URL type: video.",
      "summary_zh": "2022 年 Linux 内核Technique: Exploitation资料：「Ret2page: The Art of Exploiting Use-After-Free Vulnerabilities in the Dedicated Cache · video」；URL 类型：video。",
      "source_markdown": "[2022: \"Ret2page: The Art of Exploiting Use-After-Free Vulnerabilities in the Dedicated Cache\"](https://i.blackhat.com/USA-22/Thursday/US-22-WANG-Ret2page-The-Art-of-Exploiting-Use-After-Free-Vulnerabilities-in-the-Dedicated-Cache.pdf) [slides] [[video](https://www.youtube.com/watch?v=HZk2egYDXxg)]",
      "search_text": "ret2page: the art of exploiting use-after-free vulnerabilities in the dedicated cache · video ret2page: the art of exploiting use-after-free vulnerabilities in the dedicated cache    techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=hzk2egydxxg techniques exploitation video  technique: exploitation 2022 linux kernel technique: exploitation resource \"ret2page: the art of exploiting use-after-free vulnerabilities in the dedicated cache · video\"; url type: video. 2022 年 linux 内核technique: exploitation资料：「ret2page: the art of exploiting use-after-free vulnerabilities in the dedicated cache · video」；url 类型：video。 # ret2page: the art of exploiting use-after-free vulnerabilities in the dedicated cache · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: ret2page: the art of exploiting use-after-free vulnerabilities in the dedicated cache resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=hzk2egydxxg parent_primary_url: https://i.blackhat.com/usa-22/thursday/us-22-wang-ret2page-the-art-of-exploiting-use-after-free-vulnerabilities-in-the-dedicated-cache.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"ret2page: the art of exploiting use-after-free vulnerabilities in the dedicated cache\"](https://i.blackhat.com/usa-22/thursday/us-22-wang-ret2page-the-art-of-exploiting-use-after-free-vulnerabilities-in-the-dedicated-cache. no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "4ed102bf2aa5839b",
      "item_id": "c2ca02d56d27eb09",
      "slug": "2022-techniques-exploitation-devils-are-in-the-file-descriptors-it-is-time-to-catch-them-all-primary-4bc340c6",
      "year": 2022,
      "title": "Devils Are in the File Descriptors: It Is Time To Catch Them All",
      "item_title": "Devils Are in the File Descriptors: It Is Time To Catch Them All",
      "authors": [
        "Le Wu"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Wu-Devils-Are-in-the-File.pdf",
      "primary_url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Wu-Devils-Are-in-the-File.pdf",
      "parent_primary_url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Wu-Devils-Are-in-the-File.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-devils-are-in-the-file-descriptors-it-is-time-to-catch-them-all-primary-4bc340c6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Devils Are in the File Descriptors: It Is Time To Catch Them All record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Devils Are in the File Descriptors: It Is Time To Catch Them All resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/USA-22/Wednesday/US-22-Wu-Devils-Are-in-the-File.pdf parent_primary_url: https://i.blackhat.com/USA-22/Wednesday/US-22-Wu-Devils-Are-in-the-File.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"Devils Are in the File Descriptors: It Is Time To Catch Them All\" by Le Wu](https://i.blackhat.com/USA-22/Wednesday/US-22-Wu-Devils-Are-in-the-File.pdf) [slides] [[video](https://www.youtube.com/watch?v=dIVjQrqpKC0)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Wu-Devils-Are-in-the-File.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=dIVjQrqpKC0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Wu-Devils-Are-in-the-File.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=dIVjQrqpKC0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2022 Linux kernel Technique: Exploitation resource \"Devils Are in the File Descriptors: It Is Time To Catch Them All\"; URL type: slides.",
      "summary_zh": "2022 年 Linux 内核Technique: Exploitation资料：「Devils Are in the File Descriptors: It Is Time To Catch Them All」；URL 类型：slides。",
      "source_markdown": "[2022: \"Devils Are in the File Descriptors: It Is Time To Catch Them All\" by Le Wu](https://i.blackhat.com/USA-22/Wednesday/US-22-Wu-Devils-Are-in-the-File.pdf) [slides] [[video](https://www.youtube.com/watch?v=dIVjQrqpKC0)]",
      "search_text": "devils are in the file descriptors: it is time to catch them all devils are in the file descriptors: it is time to catch them all le wu   techniques exploitation technique: exploitation primary slides https://i.blackhat.com/usa-22/wednesday/us-22-wu-devils-are-in-the-file.pdf techniques exploitation slides  technique: exploitation 2022 linux kernel technique: exploitation resource \"devils are in the file descriptors: it is time to catch them all\"; url type: slides. 2022 年 linux 内核technique: exploitation资料：「devils are in the file descriptors: it is time to catch them all」；url 类型：slides。 # devils are in the file descriptors: it is time to catch them all record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: devils are in the file descriptors: it is time to catch them all resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/usa-22/wednesday/us-22-wu-devils-are-in-the-file.pdf parent_primary_url: https://i.blackhat.com/usa-22/wednesday/us-22-wu-devils-are-in-the-file.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"devils are in the file descriptors: it is time to catch them all\" by le wu](https://i.blackhat.com/usa-22/wednesday/us-22-wu-devils-are-in-the-file.pdf) [slides] [[video](https://www.youtube.com/watch?v=divjqrqpkc0)] cves: none android_impact_status: no android_impact_reason: not enough evidence that no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "8b496509170d7ba3",
      "item_id": "c2ca02d56d27eb09",
      "slug": "2022-techniques-exploitation-devils-are-in-the-file-descriptors-it-is-time-to-catch-them-all-video-5ae431b0",
      "year": 2022,
      "title": "Devils Are in the File Descriptors: It Is Time To Catch Them All · video",
      "item_title": "Devils Are in the File Descriptors: It Is Time To Catch Them All",
      "authors": [
        "Le Wu"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=dIVjQrqpKC0",
      "primary_url": "https://www.youtube.com/watch?v=dIVjQrqpKC0",
      "parent_primary_url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Wu-Devils-Are-in-the-File.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-devils-are-in-the-file-descriptors-it-is-time-to-catch-them-all-video-5ae431b0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Devils Are in the File Descriptors: It Is Time To Catch Them All · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Devils Are in the File Descriptors: It Is Time To Catch Them All resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=dIVjQrqpKC0 parent_primary_url: https://i.blackhat.com/USA-22/Wednesday/US-22-Wu-Devils-Are-in-the-File.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"Devils Are in the File Descriptors: It Is Time To Catch Them All\" by Le Wu](https://i.blackhat.com/USA-22/Wednesday/US-22-Wu-Devils-Are-in-the-File.pdf) [slides] [[video](https://www.youtube.com/watch?v=dIVjQrqpKC0)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to rele",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Wu-Devils-Are-in-the-File.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=dIVjQrqpKC0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Wu-Devils-Are-in-the-File.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=dIVjQrqpKC0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2022 Linux kernel Technique: Exploitation resource \"Devils Are in the File Descriptors: It Is Time To Catch Them All · video\"; URL type: video.",
      "summary_zh": "2022 年 Linux 内核Technique: Exploitation资料：「Devils Are in the File Descriptors: It Is Time To Catch Them All · video」；URL 类型：video。",
      "source_markdown": "[2022: \"Devils Are in the File Descriptors: It Is Time To Catch Them All\" by Le Wu](https://i.blackhat.com/USA-22/Wednesday/US-22-Wu-Devils-Are-in-the-File.pdf) [slides] [[video](https://www.youtube.com/watch?v=dIVjQrqpKC0)]",
      "search_text": "devils are in the file descriptors: it is time to catch them all · video devils are in the file descriptors: it is time to catch them all le wu   techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=divjqrqpkc0 techniques exploitation video  technique: exploitation 2022 linux kernel technique: exploitation resource \"devils are in the file descriptors: it is time to catch them all · video\"; url type: video. 2022 年 linux 内核technique: exploitation资料：「devils are in the file descriptors: it is time to catch them all · video」；url 类型：video。 # devils are in the file descriptors: it is time to catch them all · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: devils are in the file descriptors: it is time to catch them all resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=divjqrqpkc0 parent_primary_url: https://i.blackhat.com/usa-22/wednesday/us-22-wu-devils-are-in-the-file.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"devils are in the file descriptors: it is time to catch them all\" by le wu](https://i.blackhat.com/usa-22/wednesday/us-22-wu-devils-are-in-the-file.pdf) [slides] [[video](https://www.youtube.com/watch?v=divjqrqpkc0)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to rele no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "814155b6e796cb20",
      "item_id": "64b56f709a65cc25",
      "slug": "2022-techniques-exploitation-fuse-for-linux-exploitation-101-primary-437fdd71",
      "year": 2022,
      "title": "FUSE for Linux Exploitation 101",
      "item_title": "FUSE for Linux Exploitation 101",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://exploiter.dev/blog/2022/FUSE-exploit.html",
      "primary_url": "https://exploiter.dev/blog/2022/FUSE-exploit.html",
      "parent_primary_url": "https://exploiter.dev/blog/2022/FUSE-exploit.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-fuse-for-linux-exploitation-101-primary-437fdd71.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# FUSE for Linux Exploitation 101 record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: FUSE for Linux Exploitation 101 resource_label: primary resource_type: article resource_url: https://exploiter.dev/blog/2022/FUSE-exploit.html parent_primary_url: https://exploiter.dev/blog/2022/FUSE-exploit.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"FUSE for Linux Exploitation 101\"](https://exploiter.dev/blog/2022/FUSE-exploit.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://exploiter.dev",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://exploiter.dev/blog/2022/FUSE-exploit.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://exploiter.dev/blog/2022/FUSE-exploit.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://exploiter.dev/blog/2022/FUSE-exploit.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2022 Linux kernel Technique: Exploitation resource \"FUSE for Linux Exploitation 101\"; URL type: article.",
      "summary_zh": "2022 年 Linux 内核Technique: Exploitation资料：「FUSE for Linux Exploitation 101」；URL 类型：article。",
      "source_markdown": "[2022: \"FUSE for Linux Exploitation 101\"](https://exploiter.dev/blog/2022/FUSE-exploit.html) [article]",
      "search_text": "fuse for linux exploitation 101 fuse for linux exploitation 101    techniques exploitation technique: exploitation primary article https://exploiter.dev/blog/2022/fuse-exploit.html techniques exploitation article  technique: exploitation 2022 linux kernel technique: exploitation resource \"fuse for linux exploitation 101\"; url type: article. 2022 年 linux 内核technique: exploitation资料：「fuse for linux exploitation 101」；url 类型：article。 # fuse for linux exploitation 101 record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: fuse for linux exploitation 101 resource_label: primary resource_type: article resource_url: https://exploiter.dev/blog/2022/fuse-exploit.html parent_primary_url: https://exploiter.dev/blog/2022/fuse-exploit.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"fuse for linux exploitation 101\"](https://exploiter.dev/blog/2022/fuse-exploit.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://exploiter.dev no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "5c5854700abc7fb0",
      "item_id": "537e871b75b745b3",
      "slug": "2022-techniques-exploitation-kernel-exploit-recipes-primary-64eed861",
      "year": 2022,
      "title": "Kernel Exploit Recipes",
      "item_title": "Kernel Exploit Recipes",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "brochure",
      "resource_url": "https://drive.google.com/file/d/1kRHgQ9qDr4vgxJ4rVL-UNKvCamva_TRB/view",
      "primary_url": "https://drive.google.com/file/d/1kRHgQ9qDr4vgxJ4rVL-UNKvCamva_TRB/view",
      "parent_primary_url": "https://drive.google.com/file/d/1kRHgQ9qDr4vgxJ4rVL-UNKvCamva_TRB/view",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-kernel-exploit-recipes-primary-64eed861.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Exploit Recipes record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Kernel Exploit Recipes resource_label: primary resource_type: brochure resource_url: https://drive.google.com/file/d/1kRHgQ9qDr4vgxJ4rVL-UNKvCamva_TRB/view parent_primary_url: https://drive.google.com/file/d/1kRHgQ9qDr4vgxJ4rVL-UNKvCamva_TRB/view source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"Kernel Exploit Recipes\"](https://drive.google.com/file/d/1kRHgQ9qDr4vgxJ4rVL-UNKvCamva_TRB/view) [brochure] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_lin",
      "link_types": [
        "brochure"
      ],
      "links": [
        {
          "label": "primary",
          "type": "brochure",
          "url": "https://drive.google.com/file/d/1kRHgQ9qDr4vgxJ4rVL-UNKvCamva_TRB/view"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "brochure",
            "url": "https://drive.google.com/file/d/1kRHgQ9qDr4vgxJ4rVL-UNKvCamva_TRB/view"
          }
        ]
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "brochure"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2022 Linux kernel Technique: Exploitation resource \"Kernel Exploit Recipes\"; URL type: brochure.",
      "summary_zh": "2022 年 Linux 内核Technique: Exploitation资料：「Kernel Exploit Recipes」；URL 类型：brochure。",
      "source_markdown": "[2022: \"Kernel Exploit Recipes\"](https://drive.google.com/file/d/1kRHgQ9qDr4vgxJ4rVL-UNKvCamva_TRB/view) [brochure]",
      "search_text": "kernel exploit recipes kernel exploit recipes    techniques exploitation technique: exploitation primary brochure https://drive.google.com/file/d/1krhgq9qdr4vgxj4rvl-unkvcamva_trb/view techniques exploitation brochure  technique: exploitation 2022 linux kernel technique: exploitation resource \"kernel exploit recipes\"; url type: brochure. 2022 年 linux 内核technique: exploitation资料：「kernel exploit recipes」；url 类型：brochure。 # kernel exploit recipes record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: kernel exploit recipes resource_label: primary resource_type: brochure resource_url: https://drive.google.com/file/d/1krhgq9qdr4vgxj4rvl-unkvcamva_trb/view parent_primary_url: https://drive.google.com/file/d/1krhgq9qdr4vgxj4rvl-unkvcamva_trb/view source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"kernel exploit recipes\"](https://drive.google.com/file/d/1krhgq9qdr4vgxj4rvl-unkvcamva_trb/view) [brochure] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_lin no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e670909571033a94",
      "item_id": "8b5999802de76fc7",
      "slug": "2022-techniques-exploitation-pipe-buffer-arbitrary-read-write-primary-bb38e53f",
      "year": 2022,
      "title": "pipe_buffer arbitrary read write",
      "item_title": "pipe_buffer arbitrary read write",
      "authors": [
        "Jayden R"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://interruptlabs.co.uk/labs/pipe_buffer/",
      "primary_url": "https://interruptlabs.co.uk/labs/pipe_buffer/",
      "parent_primary_url": "https://interruptlabs.co.uk/labs/pipe_buffer/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-pipe-buffer-arbitrary-read-write-primary-bb38e53f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# pipe_buffer arbitrary read write record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: pipe_buffer arbitrary read write resource_label: primary resource_type: article resource_url: https://interruptlabs.co.uk/labs/pipe_buffer/ parent_primary_url: https://interruptlabs.co.uk/labs/pipe_buffer/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"pipe_buffer arbitrary read write\" by Jayden R](https://interruptlabs.co.uk/labs/pipe_buffer/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_li",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://interruptlabs.co.uk/labs/pipe_buffer/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://interruptlabs.co.uk/labs/pipe_buffer/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2022 Linux kernel Technique: Exploitation resource \"pipe_buffer arbitrary read write\"; URL type: article.",
      "summary_zh": "2022 年 Linux 内核Technique: Exploitation资料：「pipe_buffer arbitrary read write」；URL 类型：article。",
      "source_markdown": "[2022: \"pipe_buffer arbitrary read write\" by Jayden R](https://interruptlabs.co.uk/labs/pipe_buffer/) [article]",
      "search_text": "pipe_buffer arbitrary read write pipe_buffer arbitrary read write jayden r   techniques exploitation technique: exploitation primary article https://interruptlabs.co.uk/labs/pipe_buffer/ techniques exploitation article  technique: exploitation 2022 linux kernel technique: exploitation resource \"pipe_buffer arbitrary read write\"; url type: article. 2022 年 linux 内核technique: exploitation资料：「pipe_buffer arbitrary read write」；url 类型：article。 # pipe_buffer arbitrary read write record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: pipe_buffer arbitrary read write resource_label: primary resource_type: article resource_url: https://interruptlabs.co.uk/labs/pipe_buffer/ parent_primary_url: https://interruptlabs.co.uk/labs/pipe_buffer/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"pipe_buffer arbitrary read write\" by jayden r](https://interruptlabs.co.uk/labs/pipe_buffer/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_li no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "fd7f473e66ac9d3e",
      "item_id": "22b5f9d19c286ac6",
      "slug": "2022-techniques-exploitation-joy-of-exploiting-the-kernel-primary-1282ff32",
      "year": 2022,
      "title": "Joy of exploiting the Kernel",
      "item_title": "Joy of exploiting the Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://docs.google.com/presentation/d/e/2PACX-1vR4mpH3aARLMOhJemVGEw1cduXPEo_PvrbZMum8QwOJ6rhZvvezsif4qtgSydVVt8jPT1fztgD5Mj7q/pub?slide=id.p",
      "primary_url": "https://docs.google.com/presentation/d/e/2PACX-1vR4mpH3aARLMOhJemVGEw1cduXPEo_PvrbZMum8QwOJ6rhZvvezsif4qtgSydVVt8jPT1fztgD5Mj7q/pub?slide=id.p",
      "parent_primary_url": "https://docs.google.com/presentation/d/e/2PACX-1vR4mpH3aARLMOhJemVGEw1cduXPEo_PvrbZMum8QwOJ6rhZvvezsif4qtgSydVVt8jPT1fztgD5Mj7q/pub?slide=id.p",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-joy-of-exploiting-the-kernel-primary-1282ff32.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Joy of exploiting the Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Joy of exploiting the Kernel resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/e/2PACX-1vR4mpH3aARLMOhJemVGEw1cduXPEo_PvrbZMum8QwOJ6rhZvvezsif4qtgSydVVt8jPT1fztgD5Mj7q/pub?slide=id.p parent_primary_url: https://docs.google.com/presentation/d/e/2PACX-1vR4mpH3aARLMOhJemVGEw1cduXPEo_PvrbZMum8QwOJ6rhZvvezsif4qtgSydVVt8jPT1fztgD5Mj7q/pub?slide=id.p source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"Joy of exploiting the Kernel\"](https://docs.google.com/presentation/d/e/2PACX-1vR4mpH3aARLMOhJemVGEw1cduXPEo_PvrbZMum8QwOJ6rhZvvezsif4qtgSydVVt8jPT1fztgD5Mj7q/pub?slide=id.p) [slides] cves: none android_impact_status: no android_impact_rea",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/e/2PACX-1vR4mpH3aARLMOhJemVGEw1cduXPEo_PvrbZMum8QwOJ6rhZvvezsif4qtgSydVVt8jPT1fztgD5Mj7q/pub?slide=id.p"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/e/2PACX-1vR4mpH3aARLMOhJemVGEw1cduXPEo_PvrbZMum8QwOJ6rhZvvezsif4qtgSydVVt8jPT1fztgD5Mj7q/pub?slide=id.p"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "presentation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Presentation on techniques for exploiting the Linux kernel.",
      "summary_zh": "关于Linux内核利用技术的演示文稿。",
      "source_markdown": "[2022: \"Joy of exploiting the Kernel\"](https://docs.google.com/presentation/d/e/2PACX-1vR4mpH3aARLMOhJemVGEw1cduXPEo_PvrbZMum8QwOJ6rhZvvezsif4qtgSydVVt8jPT1fztgD5Mj7q/pub?slide=id.p) [slides]",
      "search_text": "joy of exploiting the kernel joy of exploiting the kernel    techniques exploitation technique: exploitation primary slides https://docs.google.com/presentation/d/e/2pacx-1vr4mph3aarlmohjemvgew1cduxpeo_pvrbzmum8qwoj6rhzvvezsif4qtgsydvvt8jpt1fztgd5mj7q/pub?slide=id.p exploitation presentation  exploitation presentation on techniques for exploiting the linux kernel. 关于linux内核利用技术的演示文稿。 # joy of exploiting the kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: joy of exploiting the kernel resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/e/2pacx-1vr4mph3aarlmohjemvgew1cduxpeo_pvrbzmum8qwoj6rhzvvezsif4qtgsydvvt8jpt1fztgd5mj7q/pub?slide=id.p parent_primary_url: https://docs.google.com/presentation/d/e/2pacx-1vr4mph3aarlmohjemvgew1cduxpeo_pvrbzmum8qwoj6rhzvvezsif4qtgsydvvt8jpt1fztgd5mj7q/pub?slide=id.p source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"joy of exploiting the kernel\"](https://docs.google.com/presentation/d/e/2pacx-1vr4mph3aarlmohjemvgew1cduxpeo_pvrbzmum8qwoj6rhzvvezsif4qtgsydvvt8jpt1fztgd5mj7q/pub?slide=id.p) [slides] cves: none android_impact_status: no android_impact_rea no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5ad6b1489194db0a",
      "item_id": "6874590373a55684",
      "slug": "2022-techniques-exploitation-an-exploit-primitive-in-the-linux-kernel-inspired-primary-e1850346",
      "year": 2022,
      "title": "An exploit primitive in the Linux kernel inspired",
      "item_title": "An exploit primitive in the Linux kernel inspired",
      "authors": [
        "DirtyPipe"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/veritas501/pipe-primitive",
      "primary_url": "https://github.com/veritas501/pipe-primitive",
      "parent_primary_url": "https://github.com/veritas501/pipe-primitive",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-an-exploit-primitive-in-the-linux-kernel-inspired-primary-e1850346.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An exploit primitive in the Linux kernel inspired record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: An exploit primitive in the Linux kernel inspired resource_label: primary resource_type: article resource_url: https://github.com/veritas501/pipe-primitive parent_primary_url: https://github.com/veritas501/pipe-primitive source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"An exploit primitive in the Linux kernel inspired by DirtyPipe\"](https://github.com/veritas501/pipe-primitive) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false ha",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/veritas501/pipe-primitive"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/veritas501/pipe-primitive"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/veritas501/pipe-primitive"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "primitive"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Article discussing an exploit primitive in the Linux kernel inspired by DirtyPipe.",
      "summary_zh": "讨论受DirtyPipe启发的Linux内核利用原语的文章。",
      "source_markdown": "[2022: \"An exploit primitive in the Linux kernel inspired by DirtyPipe\"](https://github.com/veritas501/pipe-primitive) [article]",
      "search_text": "an exploit primitive in the linux kernel inspired an exploit primitive in the linux kernel inspired dirtypipe   techniques exploitation technique: exploitation primary article https://github.com/veritas501/pipe-primitive exploitation primitive  exploitation article discussing an exploit primitive in the linux kernel inspired by dirtypipe. 讨论受dirtypipe启发的linux内核利用原语的文章。 # an exploit primitive in the linux kernel inspired record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: an exploit primitive in the linux kernel inspired resource_label: primary resource_type: article resource_url: https://github.com/veritas501/pipe-primitive parent_primary_url: https://github.com/veritas501/pipe-primitive source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"an exploit primitive in the linux kernel inspired by dirtypipe\"](https://github.com/veritas501/pipe-primitive) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false ha no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "94be208958e75f59",
      "item_id": "73e18f8cff60d84e",
      "slug": "2022-techniques-exploitation-dirtycred-escalating-privilege-in-linux-kernel-primary-0e0d7d0d",
      "year": 2022,
      "title": "DirtyCred: Escalating Privilege in Linux Kernel",
      "item_title": "DirtyCred: Escalating Privilege in Linux Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://zplin.me/papers/DirtyCred.pdf",
      "primary_url": "https://zplin.me/papers/DirtyCred.pdf",
      "parent_primary_url": "https://zplin.me/papers/DirtyCred.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-dirtycred-escalating-privilege-in-linux-kernel-primary-0e0d7d0d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DirtyCred: Escalating Privilege in Linux Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: DirtyCred: Escalating Privilege in Linux Kernel resource_label: primary resource_type: paper resource_url: https://zplin.me/papers/DirtyCred.pdf parent_primary_url: https://zplin.me/papers/DirtyCred.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"DirtyCred: Escalating Privilege in Linux Kernel\"](https://zplin.me/papers/DirtyCred.pdf) [paper] [[slides](https://zplin.me/papers/DirtyCred_CCS_slides.pdf)] [[artifacts](https://github.com/Markakd/DirtyCred)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use A",
      "link_types": [
        "paper",
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://zplin.me/papers/DirtyCred.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://zplin.me/papers/DirtyCred_CCS_slides.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://github.com/Markakd/DirtyCred"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://zplin.me/papers/DirtyCred.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://zplin.me/papers/DirtyCred_CCS_slides.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://github.com/Markakd/DirtyCred"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Markakd/DirtyCred"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "privilege escalation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Paper detailing a method for escalating privileges in the Linux kernel.",
      "summary_zh": "详细介绍在Linux内核中提升权限的方法的论文。",
      "source_markdown": "[2022: \"DirtyCred: Escalating Privilege in Linux Kernel\"](https://zplin.me/papers/DirtyCred.pdf) [paper] [[slides](https://zplin.me/papers/DirtyCred_CCS_slides.pdf)] [[artifacts](https://github.com/Markakd/DirtyCred)]",
      "search_text": "dirtycred: escalating privilege in linux kernel dirtycred: escalating privilege in linux kernel    techniques exploitation technique: exploitation primary paper https://zplin.me/papers/dirtycred.pdf exploitation privilege escalation  exploitation paper detailing a method for escalating privileges in the linux kernel. 详细介绍在linux内核中提升权限的方法的论文。 # dirtycred: escalating privilege in linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: dirtycred: escalating privilege in linux kernel resource_label: primary resource_type: paper resource_url: https://zplin.me/papers/dirtycred.pdf parent_primary_url: https://zplin.me/papers/dirtycred.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"dirtycred: escalating privilege in linux kernel\"](https://zplin.me/papers/dirtycred.pdf) [paper] [[slides](https://zplin.me/papers/dirtycred_ccs_slides.pdf)] [[artifacts](https://github.com/markakd/dirtycred)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use a no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "99cc7507c09960fe",
      "item_id": "73e18f8cff60d84e",
      "slug": "2022-techniques-exploitation-dirtycred-escalating-privilege-in-linux-kernel-slides-17be1981",
      "year": 2022,
      "title": "DirtyCred: Escalating Privilege in Linux Kernel · slides",
      "item_title": "DirtyCred: Escalating Privilege in Linux Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://zplin.me/papers/DirtyCred_CCS_slides.pdf",
      "primary_url": "https://zplin.me/papers/DirtyCred_CCS_slides.pdf",
      "parent_primary_url": "https://zplin.me/papers/DirtyCred.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-dirtycred-escalating-privilege-in-linux-kernel-slides-17be1981.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DirtyCred: Escalating Privilege in Linux Kernel · slides record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: DirtyCred: Escalating Privilege in Linux Kernel resource_label: slides resource_type: slides resource_url: https://zplin.me/papers/DirtyCred_CCS_slides.pdf parent_primary_url: https://zplin.me/papers/DirtyCred.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"DirtyCred: Escalating Privilege in Linux Kernel\"](https://zplin.me/papers/DirtyCred.pdf) [paper] [[slides](https://zplin.me/papers/DirtyCred_CCS_slides.pdf)] [[artifacts](https://github.com/Markakd/DirtyCred)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Producti",
      "link_types": [
        "paper",
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://zplin.me/papers/DirtyCred.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://zplin.me/papers/DirtyCred_CCS_slides.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://github.com/Markakd/DirtyCred"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://zplin.me/papers/DirtyCred.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://zplin.me/papers/DirtyCred_CCS_slides.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://github.com/Markakd/DirtyCred"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Markakd/DirtyCred"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "privilege escalation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Slides accompanying the DirtyCred paper on privilege escalation in the Linux kernel.",
      "summary_zh": "关于Linux内核中权限提升的DirtyCred论文的幻灯片。",
      "source_markdown": "[2022: \"DirtyCred: Escalating Privilege in Linux Kernel\"](https://zplin.me/papers/DirtyCred.pdf) [paper] [[slides](https://zplin.me/papers/DirtyCred_CCS_slides.pdf)] [[artifacts](https://github.com/Markakd/DirtyCred)]",
      "search_text": "dirtycred: escalating privilege in linux kernel · slides dirtycred: escalating privilege in linux kernel    techniques exploitation technique: exploitation slides slides https://zplin.me/papers/dirtycred_ccs_slides.pdf exploitation privilege escalation  exploitation slides accompanying the dirtycred paper on privilege escalation in the linux kernel. 关于linux内核中权限提升的dirtycred论文的幻灯片。 # dirtycred: escalating privilege in linux kernel · slides record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: dirtycred: escalating privilege in linux kernel resource_label: slides resource_type: slides resource_url: https://zplin.me/papers/dirtycred_ccs_slides.pdf parent_primary_url: https://zplin.me/papers/dirtycred.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"dirtycred: escalating privilege in linux kernel\"](https://zplin.me/papers/dirtycred.pdf) [paper] [[slides](https://zplin.me/papers/dirtycred_ccs_slides.pdf)] [[artifacts](https://github.com/markakd/dirtycred)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: producti no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "dd5ac6929ed5a53d",
      "item_id": "73e18f8cff60d84e",
      "slug": "2022-techniques-exploitation-dirtycred-escalating-privilege-in-linux-kernel-artifacts-8744cde8",
      "year": 2022,
      "title": "DirtyCred: Escalating Privilege in Linux Kernel · artifacts",
      "item_title": "DirtyCred: Escalating Privilege in Linux Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "artifacts",
      "resource_type": "artifact",
      "resource_url": "https://github.com/Markakd/DirtyCred",
      "primary_url": "https://github.com/Markakd/DirtyCred",
      "parent_primary_url": "https://zplin.me/papers/DirtyCred.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-dirtycred-escalating-privilege-in-linux-kernel-artifacts-8744cde8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DirtyCred: Escalating Privilege in Linux Kernel · artifacts record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: DirtyCred: Escalating Privilege in Linux Kernel resource_label: artifacts resource_type: artifact resource_url: https://github.com/Markakd/DirtyCred parent_primary_url: https://zplin.me/papers/DirtyCred.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"DirtyCred: Escalating Privilege in Linux Kernel\"](https://zplin.me/papers/DirtyCred.pdf) [paper] [[slides](https://zplin.me/papers/DirtyCred_CCS_slides.pdf)] [[artifacts](https://github.com/Markakd/DirtyCred)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production i",
      "link_types": [
        "paper",
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://zplin.me/papers/DirtyCred.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://zplin.me/papers/DirtyCred_CCS_slides.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://github.com/Markakd/DirtyCred"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://zplin.me/papers/DirtyCred.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://zplin.me/papers/DirtyCred_CCS_slides.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://github.com/Markakd/DirtyCred"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Markakd/DirtyCred"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "artifacts"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Artifacts related to the DirtyCred privilege escalation technique in the Linux kernel.",
      "summary_zh": "与Linux内核中DirtyCred权限提升技术相关的工件。",
      "source_markdown": "[2022: \"DirtyCred: Escalating Privilege in Linux Kernel\"](https://zplin.me/papers/DirtyCred.pdf) [paper] [[slides](https://zplin.me/papers/DirtyCred_CCS_slides.pdf)] [[artifacts](https://github.com/Markakd/DirtyCred)]",
      "search_text": "dirtycred: escalating privilege in linux kernel · artifacts dirtycred: escalating privilege in linux kernel    techniques exploitation technique: exploitation artifacts artifact https://github.com/markakd/dirtycred exploitation artifacts  exploitation artifacts related to the dirtycred privilege escalation technique in the linux kernel. 与linux内核中dirtycred权限提升技术相关的工件。 # dirtycred: escalating privilege in linux kernel · artifacts record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: dirtycred: escalating privilege in linux kernel resource_label: artifacts resource_type: artifact resource_url: https://github.com/markakd/dirtycred parent_primary_url: https://zplin.me/papers/dirtycred.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"dirtycred: escalating privilege in linux kernel\"](https://zplin.me/papers/dirtycred.pdf) [paper] [[slides](https://zplin.me/papers/dirtycred_ccs_slides.pdf)] [[artifacts](https://github.com/markakd/dirtycred)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production i no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "29054dff909801ce",
      "item_id": "76d4df9553d7a044",
      "slug": "2022-techniques-exploitation-dirtycred-cautious-a-new-exploitation-method-no-pipe-but-as-nasty-as-dirty-pipe-p",
      "year": 2022,
      "title": "DirtyCred: Cautious! A New Exploitation Method! No Pipe but as Nasty as Dirty Pipe",
      "item_title": "DirtyCred: Cautious! A New Exploitation Method! No Pipe but as Nasty as Dirty Pipe",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/USA-22/Thursday/US-22-Lin-Cautious-A-New-Exploitation-Method.pdf",
      "primary_url": "https://i.blackhat.com/USA-22/Thursday/US-22-Lin-Cautious-A-New-Exploitation-Method.pdf",
      "parent_primary_url": "https://i.blackhat.com/USA-22/Thursday/US-22-Lin-Cautious-A-New-Exploitation-Method.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-dirtycred-cautious-a-new-exploitation-method-no-pipe-but-as-nasty-as-dirty-pipe-p.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DirtyCred: Cautious! A New Exploitation Method! No Pipe but as Nasty as Dirty Pipe record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: DirtyCred: Cautious! A New Exploitation Method! No Pipe but as Nasty as Dirty Pipe resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/USA-22/Thursday/US-22-Lin-Cautious-A-New-Exploitation-Method.pdf parent_primary_url: https://i.blackhat.com/USA-22/Thursday/US-22-Lin-Cautious-A-New-Exploitation-Method.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"DirtyCred: Cautious! A New Exploitation Method! No Pipe but as Nasty as Dirty Pipe\"](https://i.blackhat.com/USA-22/Thursday/US-22-Lin-Cautious-A-New-Exploitation-Method.pdf) [slides] [[artifacts](https://github.com/Markakd/DirtyCred)] cves: ",
      "link_types": [
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/USA-22/Thursday/US-22-Lin-Cautious-A-New-Exploitation-Method.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://github.com/Markakd/DirtyCred"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/USA-22/Thursday/US-22-Lin-Cautious-A-New-Exploitation-Method.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://github.com/Markakd/DirtyCred"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Markakd/DirtyCred"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "presentation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Presentation on a new exploitation method related to DirtyCred.",
      "summary_zh": "关于与DirtyCred相关的新利用方法的演示文稿。",
      "source_markdown": "[2022: \"DirtyCred: Cautious! A New Exploitation Method! No Pipe but as Nasty as Dirty Pipe\"](https://i.blackhat.com/USA-22/Thursday/US-22-Lin-Cautious-A-New-Exploitation-Method.pdf) [slides] [[artifacts](https://github.com/Markakd/DirtyCred)]",
      "search_text": "dirtycred: cautious! a new exploitation method! no pipe but as nasty as dirty pipe dirtycred: cautious! a new exploitation method! no pipe but as nasty as dirty pipe    techniques exploitation technique: exploitation primary slides https://i.blackhat.com/usa-22/thursday/us-22-lin-cautious-a-new-exploitation-method.pdf exploitation presentation  exploitation presentation on a new exploitation method related to dirtycred. 关于与dirtycred相关的新利用方法的演示文稿。 # dirtycred: cautious! a new exploitation method! no pipe but as nasty as dirty pipe record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: dirtycred: cautious! a new exploitation method! no pipe but as nasty as dirty pipe resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/usa-22/thursday/us-22-lin-cautious-a-new-exploitation-method.pdf parent_primary_url: https://i.blackhat.com/usa-22/thursday/us-22-lin-cautious-a-new-exploitation-method.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"dirtycred: cautious! a new exploitation method! no pipe but as nasty as dirty pipe\"](https://i.blackhat.com/usa-22/thursday/us-22-lin-cautious-a-new-exploitation-method.pdf) [slides] [[artifacts](https://github.com/markakd/dirtycred)] cves:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "35e6504fa4b0d2f2",
      "item_id": "76d4df9553d7a044",
      "slug": "2022-techniques-exploitation-dirtycred-cautious-a-new-exploitation-method-no-pipe-but-as-nasty-as-dirty-pipe-a",
      "year": 2022,
      "title": "DirtyCred: Cautious! A New Exploitation Method! No Pipe but as Nasty as Dirty Pipe · artifacts",
      "item_title": "DirtyCred: Cautious! A New Exploitation Method! No Pipe but as Nasty as Dirty Pipe",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "artifacts",
      "resource_type": "artifact",
      "resource_url": "https://github.com/Markakd/DirtyCred",
      "primary_url": "https://github.com/Markakd/DirtyCred",
      "parent_primary_url": "https://i.blackhat.com/USA-22/Thursday/US-22-Lin-Cautious-A-New-Exploitation-Method.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-dirtycred-cautious-a-new-exploitation-method-no-pipe-but-as-nasty-as-dirty-pipe-a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DirtyCred: Cautious! A New Exploitation Method! No Pipe but as Nasty as Dirty Pipe · artifacts record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: DirtyCred: Cautious! A New Exploitation Method! No Pipe but as Nasty as Dirty Pipe resource_label: artifacts resource_type: artifact resource_url: https://github.com/Markakd/DirtyCred parent_primary_url: https://i.blackhat.com/USA-22/Thursday/US-22-Lin-Cautious-A-New-Exploitation-Method.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"DirtyCred: Cautious! A New Exploitation Method! No Pipe but as Nasty as Dirty Pipe\"](https://i.blackhat.com/USA-22/Thursday/US-22-Lin-Cautious-A-New-Exploitation-Method.pdf) [slides] [[artifacts](https://github.com/Markakd/DirtyCred)] cves: none android_impact_status: no andr",
      "link_types": [
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/USA-22/Thursday/US-22-Lin-Cautious-A-New-Exploitation-Method.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://github.com/Markakd/DirtyCred"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/USA-22/Thursday/US-22-Lin-Cautious-A-New-Exploitation-Method.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://github.com/Markakd/DirtyCred"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Markakd/DirtyCred"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "artifacts"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Artifacts associated with the new exploitation method discussed in DirtyCred.",
      "summary_zh": "与DirtyCred中讨论的新利用方法相关的工件。",
      "source_markdown": "[2022: \"DirtyCred: Cautious! A New Exploitation Method! No Pipe but as Nasty as Dirty Pipe\"](https://i.blackhat.com/USA-22/Thursday/US-22-Lin-Cautious-A-New-Exploitation-Method.pdf) [slides] [[artifacts](https://github.com/Markakd/DirtyCred)]",
      "search_text": "dirtycred: cautious! a new exploitation method! no pipe but as nasty as dirty pipe · artifacts dirtycred: cautious! a new exploitation method! no pipe but as nasty as dirty pipe    techniques exploitation technique: exploitation artifacts artifact https://github.com/markakd/dirtycred exploitation artifacts  exploitation artifacts associated with the new exploitation method discussed in dirtycred. 与dirtycred中讨论的新利用方法相关的工件。 # dirtycred: cautious! a new exploitation method! no pipe but as nasty as dirty pipe · artifacts record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: dirtycred: cautious! a new exploitation method! no pipe but as nasty as dirty pipe resource_label: artifacts resource_type: artifact resource_url: https://github.com/markakd/dirtycred parent_primary_url: https://i.blackhat.com/usa-22/thursday/us-22-lin-cautious-a-new-exploitation-method.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"dirtycred: cautious! a new exploitation method! no pipe but as nasty as dirty pipe\"](https://i.blackhat.com/usa-22/thursday/us-22-lin-cautious-a-new-exploitation-method.pdf) [slides] [[artifacts](https://github.com/markakd/dirtycred)] cves: none android_impact_status: no andr no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "291e2c05e6fc36a2",
      "item_id": "c78fcaaeb781f2d3",
      "slug": "2022-techniques-exploitation-corjail-from-null-byte-overflow-to-docker-escape-exploiting-poll-list-objects-in-",
      "year": 2022,
      "title": "CoRJail: From Null Byte Overflow To Docker Escape Exploiting poll_list Objects In The Linux Kernel",
      "item_title": "CoRJail: From Null Byte Overflow To Docker Escape Exploiting poll_list Objects In The Linux Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://syst3mfailure.io/corjail",
      "primary_url": "https://syst3mfailure.io/corjail",
      "parent_primary_url": "https://syst3mfailure.io/corjail",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-corjail-from-null-byte-overflow-to-docker-escape-exploiting-poll-list-objects-in-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CoRJail: From Null Byte Overflow To Docker Escape Exploiting poll_list Objects In The Linux Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: CoRJail: From Null Byte Overflow To Docker Escape Exploiting poll_list Objects In The Linux Kernel resource_label: primary resource_type: article resource_url: https://syst3mfailure.io/corjail parent_primary_url: https://syst3mfailure.io/corjail source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"CoRJail: From Null Byte Overflow To Docker Escape Exploiting poll_list Objects In The Linux Kernel\"](https://syst3mfailure.io/corjail) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason:",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://syst3mfailure.io/corjail"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://syst3mfailure.io/corjail"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "docker escape"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Article on exploiting poll_list objects in the Linux kernel for Docker escape.",
      "summary_zh": "关于在Linux内核中利用poll_list对象进行Docker逃逸的文章。",
      "source_markdown": "[2022: \"CoRJail: From Null Byte Overflow To Docker Escape Exploiting poll_list Objects In The Linux Kernel\"](https://syst3mfailure.io/corjail) [article]",
      "search_text": "corjail: from null byte overflow to docker escape exploiting poll_list objects in the linux kernel corjail: from null byte overflow to docker escape exploiting poll_list objects in the linux kernel    techniques exploitation technique: exploitation primary article https://syst3mfailure.io/corjail exploitation docker escape  exploitation article on exploiting poll_list objects in the linux kernel for docker escape. 关于在linux内核中利用poll_list对象进行docker逃逸的文章。 # corjail: from null byte overflow to docker escape exploiting poll_list objects in the linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: corjail: from null byte overflow to docker escape exploiting poll_list objects in the linux kernel resource_label: primary resource_type: article resource_url: https://syst3mfailure.io/corjail parent_primary_url: https://syst3mfailure.io/corjail source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"corjail: from null byte overflow to docker escape exploiting poll_list objects in the linux kernel\"](https://syst3mfailure.io/corjail) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "75397f2af0fa6282",
      "item_id": "bf5c18cf47a3a9a1",
      "slug": "2022-techniques-exploitation-reviving-exploits-against-cred-structs-six-byte-cross-cache-overflow-to-leakless-",
      "year": 2022,
      "title": "Reviving Exploits Against Cred Structs - Six Byte Cross Cache Overflow to Leakless Data-Oriented Kernel Pwnage",
      "item_title": "Reviving Exploits Against Cred Structs - Six Byte Cross Cache Overflow to Leakless Data-Oriented Kernel Pwnage",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.willsroot.io/2022/08/reviving-exploits-against-cred-struct.html",
      "primary_url": "https://www.willsroot.io/2022/08/reviving-exploits-against-cred-struct.html",
      "parent_primary_url": "https://www.willsroot.io/2022/08/reviving-exploits-against-cred-struct.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-reviving-exploits-against-cred-structs-six-byte-cross-cache-overflow-to-leakless-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Reviving Exploits Against Cred Structs - Six Byte Cross Cache Overflow to Leakless Data-Oriented Kernel Pwnage record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Reviving Exploits Against Cred Structs - Six Byte Cross Cache Overflow to Leakless Data-Oriented Kernel Pwnage resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2022/08/reviving-exploits-against-cred-struct.html parent_primary_url: https://www.willsroot.io/2022/08/reviving-exploits-against-cred-struct.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"Reviving Exploits Against Cred Structs - Six Byte Cross Cache Overflow to Leakless Data-Oriented Kernel Pwnage\"](https://www.willsroot.io/2022/08/reviving-exploits-against-cred-struct.html) [article] cves: no",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.willsroot.io/2022/08/reviving-exploits-against-cred-struct.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.willsroot.io/2022/08/reviving-exploits-against-cred-struct.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "cred structs"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Article on reviving exploits against cred structs in the Linux kernel.",
      "summary_zh": "关于在Linux内核中复兴针对cred结构的利用的文章。",
      "source_markdown": "[2022: \"Reviving Exploits Against Cred Structs - Six Byte Cross Cache Overflow to Leakless Data-Oriented Kernel Pwnage\"](https://www.willsroot.io/2022/08/reviving-exploits-against-cred-struct.html) [article]",
      "search_text": "reviving exploits against cred structs - six byte cross cache overflow to leakless data-oriented kernel pwnage reviving exploits against cred structs - six byte cross cache overflow to leakless data-oriented kernel pwnage    techniques exploitation technique: exploitation primary article https://www.willsroot.io/2022/08/reviving-exploits-against-cred-struct.html exploitation cred structs  exploitation article on reviving exploits against cred structs in the linux kernel. 关于在linux内核中复兴针对cred结构的利用的文章。 # reviving exploits against cred structs - six byte cross cache overflow to leakless data-oriented kernel pwnage record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: reviving exploits against cred structs - six byte cross cache overflow to leakless data-oriented kernel pwnage resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2022/08/reviving-exploits-against-cred-struct.html parent_primary_url: https://www.willsroot.io/2022/08/reviving-exploits-against-cred-struct.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"reviving exploits against cred structs - six byte cross cache overflow to leakless data-oriented kernel pwnage\"](https://www.willsroot.io/2022/08/reviving-exploits-against-cred-struct.html) [article] cves: no no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "639b4628ef0db936",
      "item_id": "d6180e20e9a62b56",
      "slug": "2022-techniques-exploitation-usma-share-kernel-code-with-me-primary-cc129d79",
      "year": 2022,
      "title": "USMA: Share Kernel Code With Me",
      "item_title": "USMA: Share Kernel Code With Me",
      "authors": [
        "Yong Liu",
        "Jun Yao",
        "and Xiaodong Wang"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf",
      "primary_url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf",
      "parent_primary_url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-usma-share-kernel-code-with-me-primary-cc129d79.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# USMA: Share Kernel Code With Me record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: USMA: Share Kernel Code With Me resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf parent_primary_url: https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"USMA: Share Kernel Code With Me\" by Yong Liu, Jun Yao, and Xiaodong Wang](https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf) [slides] [[video](https://www.youtube.com/watch?v=JpPWp-LjmZU)] [[paper](https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf)] [[",
      "link_types": [
        "slides",
        "video",
        "paper",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=JpPWp-LjmZU"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf"
        },
        {
          "label": "article",
          "type": "article",
          "url": "https://vul.360.net/archives/391?continueFlag=2065c4d6bed3a8e7a80c495d7066e013"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "article",
            "type": "article",
            "url": "https://vul.360.net/archives/391?continueFlag=2065c4d6bed3a8e7a80c495d7066e013"
          }
        ],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=JpPWp-LjmZU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf",
        "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "presentation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Slides discussing the USMA technique for sharing kernel code.",
      "summary_zh": "讨论USMA技术以共享内核代码的幻灯片。",
      "source_markdown": "[2022: \"USMA: Share Kernel Code With Me\" by Yong Liu, Jun Yao, and Xiaodong Wang](https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf) [slides] [[video](https://www.youtube.com/watch?v=JpPWp-LjmZU)] [[paper](https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf)] [[article](https://vul.360.net/archives/391?continueFlag=2065c4d6bed3a8e7a80c495d7066e013)]",
      "search_text": "usma: share kernel code with me usma: share kernel code with me yong liu jun yao and xiaodong wang   techniques exploitation technique: exploitation primary slides https://i.blackhat.com/asia-22/thursday-materials/as-22-yongliu-usma-share-kernel-code.pdf exploitation presentation  exploitation slides discussing the usma technique for sharing kernel code. 讨论usma技术以共享内核代码的幻灯片。 # usma: share kernel code with me record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: usma: share kernel code with me resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/asia-22/thursday-materials/as-22-yongliu-usma-share-kernel-code.pdf parent_primary_url: https://i.blackhat.com/asia-22/thursday-materials/as-22-yongliu-usma-share-kernel-code.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"usma: share kernel code with me\" by yong liu, jun yao, and xiaodong wang](https://i.blackhat.com/asia-22/thursday-materials/as-22-yongliu-usma-share-kernel-code.pdf) [slides] [[video](https://www.youtube.com/watch?v=jppwp-ljmzu)] [[paper](https://i.blackhat.com/asia-22/thursday-materials/as-22-yongliu-usma-share-kernel-code-wp.pdf)] [[ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "eb867e99bab18a20",
      "item_id": "d6180e20e9a62b56",
      "slug": "2022-techniques-exploitation-usma-share-kernel-code-with-me-video-b3c16d2a",
      "year": 2022,
      "title": "USMA: Share Kernel Code With Me · video",
      "item_title": "USMA: Share Kernel Code With Me",
      "authors": [
        "Yong Liu",
        "Jun Yao",
        "and Xiaodong Wang"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=JpPWp-LjmZU",
      "primary_url": "https://www.youtube.com/watch?v=JpPWp-LjmZU",
      "parent_primary_url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-usma-share-kernel-code-with-me-video-b3c16d2a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# USMA: Share Kernel Code With Me · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: USMA: Share Kernel Code With Me resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=JpPWp-LjmZU parent_primary_url: https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"USMA: Share Kernel Code With Me\" by Yong Liu, Jun Yao, and Xiaodong Wang](https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf) [slides] [[video](https://www.youtube.com/watch?v=JpPWp-LjmZU)] [[paper](https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf)] [[article](https://vul.360.net/archives/391?",
      "link_types": [
        "slides",
        "video",
        "paper",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=JpPWp-LjmZU"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf"
        },
        {
          "label": "article",
          "type": "article",
          "url": "https://vul.360.net/archives/391?continueFlag=2065c4d6bed3a8e7a80c495d7066e013"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "article",
            "type": "article",
            "url": "https://vul.360.net/archives/391?continueFlag=2065c4d6bed3a8e7a80c495d7066e013"
          }
        ],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=JpPWp-LjmZU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf",
        "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Video presentation on the USMA technique for sharing kernel code.",
      "summary_zh": "关于USMA技术以共享内核代码的视频演示。",
      "source_markdown": "[2022: \"USMA: Share Kernel Code With Me\" by Yong Liu, Jun Yao, and Xiaodong Wang](https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf) [slides] [[video](https://www.youtube.com/watch?v=JpPWp-LjmZU)] [[paper](https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf)] [[article](https://vul.360.net/archives/391?continueFlag=2065c4d6bed3a8e7a80c495d7066e013)]",
      "search_text": "usma: share kernel code with me · video usma: share kernel code with me yong liu jun yao and xiaodong wang   techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=jppwp-ljmzu exploitation video  exploitation video presentation on the usma technique for sharing kernel code. 关于usma技术以共享内核代码的视频演示。 # usma: share kernel code with me · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: usma: share kernel code with me resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=jppwp-ljmzu parent_primary_url: https://i.blackhat.com/asia-22/thursday-materials/as-22-yongliu-usma-share-kernel-code.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"usma: share kernel code with me\" by yong liu, jun yao, and xiaodong wang](https://i.blackhat.com/asia-22/thursday-materials/as-22-yongliu-usma-share-kernel-code.pdf) [slides] [[video](https://www.youtube.com/watch?v=jppwp-ljmzu)] [[paper](https://i.blackhat.com/asia-22/thursday-materials/as-22-yongliu-usma-share-kernel-code-wp.pdf)] [[article](https://vul.360.net/archives/391? no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3d56edcad3e5a672",
      "item_id": "d6180e20e9a62b56",
      "slug": "2022-techniques-exploitation-usma-share-kernel-code-with-me-paper-4a331d52",
      "year": 2022,
      "title": "USMA: Share Kernel Code With Me · paper",
      "item_title": "USMA: Share Kernel Code With Me",
      "authors": [
        "Yong Liu",
        "Jun Yao",
        "and Xiaodong Wang"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "paper",
      "resource_type": "paper",
      "resource_url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf",
      "primary_url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf",
      "parent_primary_url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-usma-share-kernel-code-with-me-paper-4a331d52.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# USMA: Share Kernel Code With Me · paper record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: USMA: Share Kernel Code With Me resource_label: paper resource_type: paper resource_url: https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf parent_primary_url: https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"USMA: Share Kernel Code With Me\" by Yong Liu, Jun Yao, and Xiaodong Wang](https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf) [slides] [[video](https://www.youtube.com/watch?v=JpPWp-LjmZU)] [[paper](https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.",
      "link_types": [
        "slides",
        "video",
        "paper",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=JpPWp-LjmZU"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf"
        },
        {
          "label": "article",
          "type": "article",
          "url": "https://vul.360.net/archives/391?continueFlag=2065c4d6bed3a8e7a80c495d7066e013"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "article",
            "type": "article",
            "url": "https://vul.360.net/archives/391?continueFlag=2065c4d6bed3a8e7a80c495d7066e013"
          }
        ],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=JpPWp-LjmZU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf",
        "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "paper"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Paper detailing the USMA technique for sharing kernel code.",
      "summary_zh": "详细介绍USMA技术以共享内核代码的论文。",
      "source_markdown": "[2022: \"USMA: Share Kernel Code With Me\" by Yong Liu, Jun Yao, and Xiaodong Wang](https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf) [slides] [[video](https://www.youtube.com/watch?v=JpPWp-LjmZU)] [[paper](https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf)] [[article](https://vul.360.net/archives/391?continueFlag=2065c4d6bed3a8e7a80c495d7066e013)]",
      "search_text": "usma: share kernel code with me · paper usma: share kernel code with me yong liu jun yao and xiaodong wang   techniques exploitation technique: exploitation paper paper https://i.blackhat.com/asia-22/thursday-materials/as-22-yongliu-usma-share-kernel-code-wp.pdf exploitation paper  exploitation paper detailing the usma technique for sharing kernel code. 详细介绍usma技术以共享内核代码的论文。 # usma: share kernel code with me · paper record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: usma: share kernel code with me resource_label: paper resource_type: paper resource_url: https://i.blackhat.com/asia-22/thursday-materials/as-22-yongliu-usma-share-kernel-code-wp.pdf parent_primary_url: https://i.blackhat.com/asia-22/thursday-materials/as-22-yongliu-usma-share-kernel-code.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"usma: share kernel code with me\" by yong liu, jun yao, and xiaodong wang](https://i.blackhat.com/asia-22/thursday-materials/as-22-yongliu-usma-share-kernel-code.pdf) [slides] [[video](https://www.youtube.com/watch?v=jppwp-ljmzu)] [[paper](https://i.blackhat.com/asia-22/thursday-materials/as-22-yongliu-usma-share-kernel-code-wp. no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "95bf11abb084b2a9",
      "item_id": "d6180e20e9a62b56",
      "slug": "2022-techniques-exploitation-usma-share-kernel-code-with-me-article-ad669f48",
      "year": 2022,
      "title": "USMA: Share Kernel Code With Me · article",
      "item_title": "USMA: Share Kernel Code With Me",
      "authors": [
        "Yong Liu",
        "Jun Yao",
        "and Xiaodong Wang"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "article",
      "resource_type": "article",
      "resource_url": "https://vul.360.net/archives/391?continueFlag=2065c4d6bed3a8e7a80c495d7066e013",
      "primary_url": "https://vul.360.net/archives/391?continueFlag=2065c4d6bed3a8e7a80c495d7066e013",
      "parent_primary_url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-usma-share-kernel-code-with-me-article-ad669f48.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# USMA: Share Kernel Code With Me · article record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: USMA: Share Kernel Code With Me resource_label: article resource_type: article resource_url: https://vul.360.net/archives/391?continueFlag=2065c4d6bed3a8e7a80c495d7066e013 parent_primary_url: https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"USMA: Share Kernel Code With Me\" by Yong Liu, Jun Yao, and Xiaodong Wang](https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf) [slides] [[video](https://www.youtube.com/watch?v=JpPWp-LjmZU)] [[paper](https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf)] [[a",
      "link_types": [
        "slides",
        "video",
        "paper",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=JpPWp-LjmZU"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf"
        },
        {
          "label": "article",
          "type": "article",
          "url": "https://vul.360.net/archives/391?continueFlag=2065c4d6bed3a8e7a80c495d7066e013"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "article",
            "type": "article",
            "url": "https://vul.360.net/archives/391?continueFlag=2065c4d6bed3a8e7a80c495d7066e013"
          }
        ],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=JpPWp-LjmZU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf",
        "https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Article discussing the USMA technique for sharing kernel code.",
      "summary_zh": "讨论USMA技术以共享内核代码的文章。",
      "source_markdown": "[2022: \"USMA: Share Kernel Code With Me\" by Yong Liu, Jun Yao, and Xiaodong Wang](https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code.pdf) [slides] [[video](https://www.youtube.com/watch?v=JpPWp-LjmZU)] [[paper](https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-YongLiu-USMA-Share-Kernel-Code-wp.pdf)] [[article](https://vul.360.net/archives/391?continueFlag=2065c4d6bed3a8e7a80c495d7066e013)]",
      "search_text": "usma: share kernel code with me · article usma: share kernel code with me yong liu jun yao and xiaodong wang   techniques exploitation technique: exploitation article article https://vul.360.net/archives/391?continueflag=2065c4d6bed3a8e7a80c495d7066e013 exploitation article  exploitation article discussing the usma technique for sharing kernel code. 讨论usma技术以共享内核代码的文章。 # usma: share kernel code with me · article record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: usma: share kernel code with me resource_label: article resource_type: article resource_url: https://vul.360.net/archives/391?continueflag=2065c4d6bed3a8e7a80c495d7066e013 parent_primary_url: https://i.blackhat.com/asia-22/thursday-materials/as-22-yongliu-usma-share-kernel-code.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"usma: share kernel code with me\" by yong liu, jun yao, and xiaodong wang](https://i.blackhat.com/asia-22/thursday-materials/as-22-yongliu-usma-share-kernel-code.pdf) [slides] [[video](https://www.youtube.com/watch?v=jppwp-ljmzu)] [[paper](https://i.blackhat.com/asia-22/thursday-materials/as-22-yongliu-usma-share-kernel-code-wp.pdf)] [[a no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "f96cef6d8242b257",
      "item_id": "f8190bc4abdf39a6",
      "slug": "2022-techniques-exploitation-linux-kernel-heap-feng-shui-in-2022-primary-b0fe3b74",
      "year": 2022,
      "title": "Linux kernel heap feng shui in 2022",
      "item_title": "Linux kernel heap feng shui in 2022",
      "authors": [
        "Michael S",
        "Vitaly Nikolenko"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://duasynt.com/blog/linux-kernel-heap-feng-shui-2022",
      "primary_url": "https://duasynt.com/blog/linux-kernel-heap-feng-shui-2022",
      "parent_primary_url": "https://duasynt.com/blog/linux-kernel-heap-feng-shui-2022",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-linux-kernel-heap-feng-shui-in-2022-primary-b0fe3b74.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux kernel heap feng shui in 2022 record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux kernel heap feng shui in 2022 resource_label: primary resource_type: article resource_url: https://duasynt.com/blog/linux-kernel-heap-feng-shui-2022 parent_primary_url: https://duasynt.com/blog/linux-kernel-heap-feng-shui-2022 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"Linux kernel heap feng shui in 2022\" by Michael S and Vitaly Nikolenko](https://duasynt.com/blog/linux-kernel-heap-feng-shui-2022) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: fals",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://duasynt.com/blog/linux-kernel-heap-feng-shui-2022"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://duasynt.com/blog/linux-kernel-heap-feng-shui-2022"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "heap"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Article on heap feng shui techniques in the Linux kernel.",
      "summary_zh": "关于Linux内核中堆风水技术的文章。",
      "source_markdown": "[2022: \"Linux kernel heap feng shui in 2022\" by Michael S and Vitaly Nikolenko](https://duasynt.com/blog/linux-kernel-heap-feng-shui-2022) [article]",
      "search_text": "linux kernel heap feng shui in 2022 linux kernel heap feng shui in 2022 michael s vitaly nikolenko   techniques exploitation technique: exploitation primary article https://duasynt.com/blog/linux-kernel-heap-feng-shui-2022 exploitation heap  exploitation article on heap feng shui techniques in the linux kernel. 关于linux内核中堆风水技术的文章。 # linux kernel heap feng shui in 2022 record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel heap feng shui in 2022 resource_label: primary resource_type: article resource_url: https://duasynt.com/blog/linux-kernel-heap-feng-shui-2022 parent_primary_url: https://duasynt.com/blog/linux-kernel-heap-feng-shui-2022 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"linux kernel heap feng shui in 2022\" by michael s and vitaly nikolenko](https://duasynt.com/blog/linux-kernel-heap-feng-shui-2022) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: fals no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "907b8d1b9edad3a8",
      "item_id": "c456ed8dc7f9ee69",
      "slug": "2022-techniques-exploitation-like-a-series-on-linux-kernel-exploitation-primary-c9cbf178",
      "year": 2022,
      "title": "LiKE: A Series on Linux Kernel Exploitation",
      "item_title": "LiKE: A Series on Linux Kernel Exploitation",
      "authors": [
        "sam4k"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://sam4k.com/like-a-series-on-linux-kernel-exploitation/",
      "primary_url": "https://sam4k.com/like-a-series-on-linux-kernel-exploitation/",
      "parent_primary_url": "https://sam4k.com/like-a-series-on-linux-kernel-exploitation/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-like-a-series-on-linux-kernel-exploitation-primary-c9cbf178.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# LiKE: A Series on Linux Kernel Exploitation record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: LiKE: A Series on Linux Kernel Exploitation resource_label: primary resource_type: article resource_url: https://sam4k.com/like-a-series-on-linux-kernel-exploitation/ parent_primary_url: https://sam4k.com/like-a-series-on-linux-kernel-exploitation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"LiKE: A Series on Linux Kernel Exploitation\" by sam4k](https://sam4k.com/like-a-series-on-linux-kernel-exploitation/) [article] [[modprobe_path](https://sam4k.com/like-techniques-modprobe_path/)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://sam4k.com/like-a-series-on-linux-kernel-exploitation/"
        },
        {
          "label": "modprobe_path",
          "type": "article",
          "url": "https://sam4k.com/like-techniques-modprobe_path/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://sam4k.com/like-a-series-on-linux-kernel-exploitation/"
          },
          {
            "label": "modprobe_path",
            "type": "article",
            "url": "https://sam4k.com/like-techniques-modprobe_path/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "series"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Series of articles on Linux kernel exploitation techniques.",
      "summary_zh": "关于Linux内核利用技术的系列文章。",
      "source_markdown": "[2022: \"LiKE: A Series on Linux Kernel Exploitation\" by sam4k](https://sam4k.com/like-a-series-on-linux-kernel-exploitation/) [article] [[modprobe_path](https://sam4k.com/like-techniques-modprobe_path/)]",
      "search_text": "like: a series on linux kernel exploitation like: a series on linux kernel exploitation sam4k   techniques exploitation technique: exploitation primary article https://sam4k.com/like-a-series-on-linux-kernel-exploitation/ exploitation series  exploitation series of articles on linux kernel exploitation techniques. 关于linux内核利用技术的系列文章。 # like: a series on linux kernel exploitation record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: like: a series on linux kernel exploitation resource_label: primary resource_type: article resource_url: https://sam4k.com/like-a-series-on-linux-kernel-exploitation/ parent_primary_url: https://sam4k.com/like-a-series-on-linux-kernel-exploitation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"like: a series on linux kernel exploitation\" by sam4k](https://sam4k.com/like-a-series-on-linux-kernel-exploitation/) [article] [[modprobe_path](https://sam4k.com/like-techniques-modprobe_path/)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "b15830c74279fa48",
      "item_id": "c456ed8dc7f9ee69",
      "slug": "2022-techniques-exploitation-like-a-series-on-linux-kernel-exploitation-modprobe-path-bc343919",
      "year": 2022,
      "title": "LiKE: A Series on Linux Kernel Exploitation · modprobe_path",
      "item_title": "LiKE: A Series on Linux Kernel Exploitation",
      "authors": [
        "sam4k"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "modprobe_path",
      "resource_type": "article",
      "resource_url": "https://sam4k.com/like-techniques-modprobe_path/",
      "primary_url": "https://sam4k.com/like-techniques-modprobe_path/",
      "parent_primary_url": "https://sam4k.com/like-a-series-on-linux-kernel-exploitation/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-like-a-series-on-linux-kernel-exploitation-modprobe-path-bc343919.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# LiKE: A Series on Linux Kernel Exploitation · modprobe_path record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: LiKE: A Series on Linux Kernel Exploitation resource_label: modprobe_path resource_type: article resource_url: https://sam4k.com/like-techniques-modprobe_path/ parent_primary_url: https://sam4k.com/like-a-series-on-linux-kernel-exploitation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"LiKE: A Series on Linux Kernel Exploitation\" by sam4k](https://sam4k.com/like-a-series-on-linux-kernel-exploitation/) [article] [[modprobe_path](https://sam4k.com/like-techniques-modprobe_path/)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://sam4k.com/like-a-series-on-linux-kernel-exploitation/"
        },
        {
          "label": "modprobe_path",
          "type": "article",
          "url": "https://sam4k.com/like-techniques-modprobe_path/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://sam4k.com/like-a-series-on-linux-kernel-exploitation/"
          },
          {
            "label": "modprobe_path",
            "type": "article",
            "url": "https://sam4k.com/like-techniques-modprobe_path/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "specific technique"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Article on a specific exploitation technique in the Linux kernel.",
      "summary_zh": "关于Linux内核中特定利用技术的文章。",
      "source_markdown": "[2022: \"LiKE: A Series on Linux Kernel Exploitation\" by sam4k](https://sam4k.com/like-a-series-on-linux-kernel-exploitation/) [article] [[modprobe_path](https://sam4k.com/like-techniques-modprobe_path/)]",
      "search_text": "like: a series on linux kernel exploitation · modprobe_path like: a series on linux kernel exploitation sam4k   techniques exploitation technique: exploitation modprobe_path article https://sam4k.com/like-techniques-modprobe_path/ exploitation specific technique  exploitation article on a specific exploitation technique in the linux kernel. 关于linux内核中特定利用技术的文章。 # like: a series on linux kernel exploitation · modprobe_path record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: like: a series on linux kernel exploitation resource_label: modprobe_path resource_type: article resource_url: https://sam4k.com/like-techniques-modprobe_path/ parent_primary_url: https://sam4k.com/like-a-series-on-linux-kernel-exploitation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"like: a series on linux kernel exploitation\" by sam4k](https://sam4k.com/like-a-series-on-linux-kernel-exploitation/) [article] [[modprobe_path](https://sam4k.com/like-techniques-modprobe_path/)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "dece8ef6b9abc4ea",
      "item_id": "620f636593ca9982",
      "slug": "2022-techniques-exploitation-racing-against-the-clock-hitting-a-tiny-kernel-race-window-primary-0f9288b0",
      "year": 2022,
      "title": "Racing against the clock -- hitting a tiny kernel race window",
      "item_title": "Racing against the clock -- hitting a tiny kernel race window",
      "authors": [
        "Jann Horn"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2022/03/racing-against-clock-hitting-tiny.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2022/03/racing-against-clock-hitting-tiny.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2022/03/racing-against-clock-hitting-tiny.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-racing-against-the-clock-hitting-a-tiny-kernel-race-window-primary-0f9288b0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Racing against the clock -- hitting a tiny kernel race window record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Racing against the clock -- hitting a tiny kernel race window resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2022/03/racing-against-clock-hitting-tiny.html parent_primary_url: https://googleprojectzero.blogspot.com/2022/03/racing-against-clock-hitting-tiny.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"Racing against the clock -- hitting a tiny kernel race window\" by Jann Horn](https://googleprojectzero.blogspot.com/2022/03/racing-against-clock-hitting-tiny.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to relea",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2022/03/racing-against-clock-hitting-tiny.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2022/03/racing-against-clock-hitting-tiny.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "race condition"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Article on hitting a tiny kernel race window for exploitation.",
      "summary_zh": "关于利用微小内核竞争窗口的文章。",
      "source_markdown": "[2022: \"Racing against the clock -- hitting a tiny kernel race window\" by Jann Horn](https://googleprojectzero.blogspot.com/2022/03/racing-against-clock-hitting-tiny.html) [article]",
      "search_text": "racing against the clock -- hitting a tiny kernel race window racing against the clock -- hitting a tiny kernel race window jann horn   techniques exploitation technique: exploitation primary article https://googleprojectzero.blogspot.com/2022/03/racing-against-clock-hitting-tiny.html exploitation race condition  exploitation article on hitting a tiny kernel race window for exploitation. 关于利用微小内核竞争窗口的文章。 # racing against the clock -- hitting a tiny kernel race window record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: racing against the clock -- hitting a tiny kernel race window resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2022/03/racing-against-clock-hitting-tiny.html parent_primary_url: https://googleprojectzero.blogspot.com/2022/03/racing-against-clock-hitting-tiny.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"racing against the clock -- hitting a tiny kernel race window\" by jann horn](https://googleprojectzero.blogspot.com/2022/03/racing-against-clock-hitting-tiny.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to relea no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "0403ae498162281f",
      "item_id": "1540db61bbeff18d",
      "slug": "2022-techniques-exploitation-playing-for-k-h-eaps-understanding-and-improving-linux-kernel-exploit-reliability",
      "year": 2022,
      "title": "Playing for K(H)eaps: Understanding and Improving Linux Kernel Exploit Reliability",
      "item_title": "Playing for K(H)eaps: Understanding and Improving Linux Kernel Exploit Reliability",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec22fall_zeng.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec22fall_zeng.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec22fall_zeng.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-playing-for-k-h-eaps-understanding-and-improving-linux-kernel-exploit-reliability.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Playing for K(H)eaps: Understanding and Improving Linux Kernel Exploit Reliability record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Playing for K(H)eaps: Understanding and Improving Linux Kernel Exploit Reliability resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec22fall_zeng.pdf parent_primary_url: https://www.usenix.org/system/files/sec22fall_zeng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"Playing for K(H)eaps: Understanding and Improving Linux Kernel Exploit Reliability\"](https://www.usenix.org/system/files/sec22fall_zeng.pdf) [paper] [[artifacts](https://github.com/sefcom/KHeaps)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to rele",
      "link_types": [
        "paper",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec22fall_zeng.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://github.com/sefcom/KHeaps"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec22fall_zeng.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://github.com/sefcom/KHeaps"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/sefcom/KHeaps"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "reliability"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Paper discussing improving reliability of Linux kernel exploits.",
      "summary_zh": "讨论提高Linux内核利用可靠性的论文。",
      "source_markdown": "[2022: \"Playing for K(H)eaps: Understanding and Improving Linux Kernel Exploit Reliability\"](https://www.usenix.org/system/files/sec22fall_zeng.pdf) [paper] [[artifacts](https://github.com/sefcom/KHeaps)]",
      "search_text": "playing for k(h)eaps: understanding and improving linux kernel exploit reliability playing for k(h)eaps: understanding and improving linux kernel exploit reliability    techniques exploitation technique: exploitation primary paper https://www.usenix.org/system/files/sec22fall_zeng.pdf exploitation reliability  exploitation paper discussing improving reliability of linux kernel exploits. 讨论提高linux内核利用可靠性的论文。 # playing for k(h)eaps: understanding and improving linux kernel exploit reliability record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: playing for k(h)eaps: understanding and improving linux kernel exploit reliability resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec22fall_zeng.pdf parent_primary_url: https://www.usenix.org/system/files/sec22fall_zeng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"playing for k(h)eaps: understanding and improving linux kernel exploit reliability\"](https://www.usenix.org/system/files/sec22fall_zeng.pdf) [paper] [[artifacts](https://github.com/sefcom/kheaps)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to rele no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "18de074dd7cbf84a",
      "item_id": "1540db61bbeff18d",
      "slug": "2022-techniques-exploitation-playing-for-k-h-eaps-understanding-and-improving-linux-kernel-exploit-reliability-2",
      "year": 2022,
      "title": "Playing for K(H)eaps: Understanding and Improving Linux Kernel Exploit Reliability · artifacts",
      "item_title": "Playing for K(H)eaps: Understanding and Improving Linux Kernel Exploit Reliability",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "artifacts",
      "resource_type": "artifact",
      "resource_url": "https://github.com/sefcom/KHeaps",
      "primary_url": "https://github.com/sefcom/KHeaps",
      "parent_primary_url": "https://www.usenix.org/system/files/sec22fall_zeng.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-playing-for-k-h-eaps-understanding-and-improving-linux-kernel-exploit-reliability-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Playing for K(H)eaps: Understanding and Improving Linux Kernel Exploit Reliability · artifacts record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Playing for K(H)eaps: Understanding and Improving Linux Kernel Exploit Reliability resource_label: artifacts resource_type: artifact resource_url: https://github.com/sefcom/KHeaps parent_primary_url: https://www.usenix.org/system/files/sec22fall_zeng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"Playing for K(H)eaps: Understanding and Improving Linux Kernel Exploit Reliability\"](https://www.usenix.org/system/files/sec22fall_zeng.pdf) [paper] [[artifacts](https://github.com/sefcom/KHeaps)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released ",
      "link_types": [
        "paper",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec22fall_zeng.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://github.com/sefcom/KHeaps"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec22fall_zeng.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://github.com/sefcom/KHeaps"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/sefcom/KHeaps"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "learning"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Article on learning Linux kernel exploitation techniques with a focus on CVE-2022-0847.",
      "summary_zh": "关于学习Linux内核利用技术的文章，重点关注CVE-2022-0847。",
      "source_markdown": "[2022: \"Playing for K(H)eaps: Understanding and Improving Linux Kernel Exploit Reliability\"](https://www.usenix.org/system/files/sec22fall_zeng.pdf) [paper] [[artifacts](https://github.com/sefcom/KHeaps)]",
      "search_text": "playing for k(h)eaps: understanding and improving linux kernel exploit reliability · artifacts playing for k(h)eaps: understanding and improving linux kernel exploit reliability    techniques exploitation technique: exploitation artifacts artifact https://github.com/sefcom/kheaps exploitation learning  exploitation article on learning linux kernel exploitation techniques with a focus on cve-2022-0847. 关于学习linux内核利用技术的文章，重点关注cve-2022-0847。 # playing for k(h)eaps: understanding and improving linux kernel exploit reliability · artifacts record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: playing for k(h)eaps: understanding and improving linux kernel exploit reliability resource_label: artifacts resource_type: artifact resource_url: https://github.com/sefcom/kheaps parent_primary_url: https://www.usenix.org/system/files/sec22fall_zeng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"playing for k(h)eaps: understanding and improving linux kernel exploit reliability\"](https://www.usenix.org/system/files/sec22fall_zeng.pdf) [paper] [[artifacts](https://github.com/sefcom/kheaps)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "bca4452798e9e78a",
      "item_id": "fd22935af71576b7",
      "slug": "2022-techniques-exploitation-learning-linux-kernel-exploitation-primary-803aa8cb",
      "year": 2022,
      "title": "Learning Linux kernel exploitation",
      "item_title": "Learning Linux kernel exploitation",
      "authors": [
        "0x434b"
      ],
      "cves": [
        "CVE-2022-0847"
      ],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/",
      "primary_url": "https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/",
      "parent_primary_url": "https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-learning-linux-kernel-exploitation-primary-803aa8cb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Learning Linux kernel exploitation record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Learning Linux kernel exploitation resource_label: primary resource_type: article resource_url: https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/ parent_primary_url: https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"Learning Linux kernel exploitation\" by 0x434b](https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/) [article] [[part 2](https://0x434b.dev/learning-linux-kernel-exploitation-part-2-cve-2022-0847/)] cves: CVE-2022-0847 android_impact_status: no android_impact_reason: Not enough evid",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://0x434b.dev/learning-linux-kernel-exploitation-part-2-cve-2022-0847/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://0x434b.dev/learning-linux-kernel-exploitation-part-2-cve-2022-0847/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "article",
        "CVE-2022-0847"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2022 Linux kernel Technique: Exploitation resource \"Learning Linux kernel exploitation\" (CVE-2022-0847); URL type: article.",
      "summary_zh": "2022 年 Linux 内核Technique: Exploitation资料：「Learning Linux kernel exploitation」（CVE-2022-0847）；URL 类型：article。",
      "source_markdown": "[2022: \"Learning Linux kernel exploitation\" by 0x434b](https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/) [article] [[part 2](https://0x434b.dev/learning-linux-kernel-exploitation-part-2-cve-2022-0847/)]",
      "search_text": "learning linux kernel exploitation learning linux kernel exploitation 0x434b cve-2022-0847  techniques exploitation technique: exploitation primary article https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/ techniques exploitation article cve-2022-0847  technique: exploitation 2022 linux kernel technique: exploitation resource \"learning linux kernel exploitation\" (cve-2022-0847); url type: article. 2022 年 linux 内核technique: exploitation资料：「learning linux kernel exploitation」（cve-2022-0847）；url 类型：article。 # learning linux kernel exploitation record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: learning linux kernel exploitation resource_label: primary resource_type: article resource_url: https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/ parent_primary_url: https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"learning linux kernel exploitation\" by 0x434b](https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/) [article] [[part 2](https://0x434b.dev/learning-linux-kernel-exploitation-part-2-cve-2022-0847/)] cves: cve-2022-0847 android_impact_status: no android_impact_reason: not enough evid no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "de74dd5b56c17647",
      "item_id": "fd22935af71576b7",
      "slug": "2022-techniques-exploitation-learning-linux-kernel-exploitation-part-2-eabbc91a",
      "year": 2022,
      "title": "Learning Linux kernel exploitation · part 2",
      "item_title": "Learning Linux kernel exploitation",
      "authors": [
        "0x434b"
      ],
      "cves": [
        "CVE-2022-0847"
      ],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "part 2",
      "resource_type": "article",
      "resource_url": "https://0x434b.dev/learning-linux-kernel-exploitation-part-2-cve-2022-0847/",
      "primary_url": "https://0x434b.dev/learning-linux-kernel-exploitation-part-2-cve-2022-0847/",
      "parent_primary_url": "https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2022-techniques-exploitation-learning-linux-kernel-exploitation-part-2-eabbc91a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Learning Linux kernel exploitation · part 2 record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Learning Linux kernel exploitation resource_label: part 2 resource_type: article resource_url: https://0x434b.dev/learning-linux-kernel-exploitation-part-2-cve-2022-0847/ parent_primary_url: https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"Learning Linux kernel exploitation\" by 0x434b](https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/) [article] [[part 2](https://0x434b.dev/learning-linux-kernel-exploitation-part-2-cve-2022-0847/)] cves: CVE-2022-0847 android_impact_status: no android_impact_reason: Not enough evidence that ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://0x434b.dev/learning-linux-kernel-exploitation-part-2-cve-2022-0847/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://0x434b.dev/learning-linux-kernel-exploitation-part-2-cve-2022-0847/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel",
        "CVE-2022-0847"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This article discusses techniques for exploiting the Linux kernel, specifically focusing on CVE-2022-0847.",
      "summary_zh": "本文讨论了Linux内核的利用技术，特别关注CVE-2022-0847。",
      "source_markdown": "[2022: \"Learning Linux kernel exploitation\" by 0x434b](https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/) [article] [[part 2](https://0x434b.dev/learning-linux-kernel-exploitation-part-2-cve-2022-0847/)]",
      "search_text": "learning linux kernel exploitation · part 2 learning linux kernel exploitation 0x434b cve-2022-0847  techniques exploitation technique: exploitation part 2 article https://0x434b.dev/learning-linux-kernel-exploitation-part-2-cve-2022-0847/ exploitation kernel cve-2022-0847  exploitation this article discusses techniques for exploiting the linux kernel, specifically focusing on cve-2022-0847. 本文讨论了linux内核的利用技术，特别关注cve-2022-0847。 # learning linux kernel exploitation · part 2 record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: learning linux kernel exploitation resource_label: part 2 resource_type: article resource_url: https://0x434b.dev/learning-linux-kernel-exploitation-part-2-cve-2022-0847/ parent_primary_url: https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2022: \"learning linux kernel exploitation\" by 0x434b](https://0x434b.dev/dabbling-with-linux-kernel-exploitation-ctf-challenges-to-learn-the-ropes/) [article] [[part 2](https://0x434b.dev/learning-linux-kernel-exploitation-part-2-cve-2022-0847/)] cves: cve-2022-0847 android_impact_status: no android_impact_reason: not enough evidence that  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "0e5c2bbccca65c31",
      "item_id": "d22f853bfef55a71",
      "slug": "2021-techniques-exploitation-exprace-exploiting-kernel-races-through-raising-interrupts-at-usenix-primary-359e",
      "year": 2021,
      "title": "ExpRace: Exploiting Kernel Races through Raising Interrupts\" at USENIX",
      "item_title": "ExpRace: Exploiting Kernel Races through Raising Interrupts\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec21-lee-yoochan.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec21-lee-yoochan.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-lee-yoochan.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2021-techniques-exploitation-exprace-exploiting-kernel-races-through-raising-interrupts-at-usenix-primary-359e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ExpRace: Exploiting Kernel Races through Raising Interrupts\" at USENIX record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: ExpRace: Exploiting Kernel Races through Raising Interrupts\" at USENIX resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec21-lee-yoochan.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-lee-yoochan.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2021: \"ExpRace: Exploiting Kernel Races through Raising Interrupts\" at USENIX](https://www.usenix.org/system/files/sec21-lee-yoochan.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf)] [[video](https://www.youtube.com/watch?v=CIHRw5YPr9o)] cves: none android_impact_status: no android_impact_rea",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-lee-yoochan.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=CIHRw5YPr9o"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-lee-yoochan.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=CIHRw5YPr9o"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel",
        "races"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This paper presents a method for exploiting kernel races by raising interrupts.",
      "summary_zh": "本文介绍了一种通过提升中断来利用内核竞争的方法。",
      "source_markdown": "[2021: \"ExpRace: Exploiting Kernel Races through Raising Interrupts\" at USENIX](https://www.usenix.org/system/files/sec21-lee-yoochan.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf)] [[video](https://www.youtube.com/watch?v=CIHRw5YPr9o)]",
      "search_text": "exprace: exploiting kernel races through raising interrupts\" at usenix exprace: exploiting kernel races through raising interrupts\" at usenix    techniques exploitation technique: exploitation primary paper https://www.usenix.org/system/files/sec21-lee-yoochan.pdf exploitation kernel races  exploitation this paper presents a method for exploiting kernel races by raising interrupts. 本文介绍了一种通过提升中断来利用内核竞争的方法。 # exprace: exploiting kernel races through raising interrupts\" at usenix record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: exprace: exploiting kernel races through raising interrupts\" at usenix resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec21-lee-yoochan.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-lee-yoochan.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2021: \"exprace: exploiting kernel races through raising interrupts\" at usenix](https://www.usenix.org/system/files/sec21-lee-yoochan.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf)] [[video](https://www.youtube.com/watch?v=cihrw5ypr9o)] cves: none android_impact_status: no android_impact_rea no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "feed1593ba938d4d",
      "item_id": "d22f853bfef55a71",
      "slug": "2021-techniques-exploitation-exprace-exploiting-kernel-races-through-raising-interrupts-at-usenix-slides-e4b5f",
      "year": 2021,
      "title": "ExpRace: Exploiting Kernel Races through Raising Interrupts\" at USENIX · slides",
      "item_title": "ExpRace: Exploiting Kernel Races through Raising Interrupts\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-lee-yoochan.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2021-techniques-exploitation-exprace-exploiting-kernel-races-through-raising-interrupts-at-usenix-slides-e4b5f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ExpRace: Exploiting Kernel Races through Raising Interrupts\" at USENIX · slides record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: ExpRace: Exploiting Kernel Races through Raising Interrupts\" at USENIX resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-lee-yoochan.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2021: \"ExpRace: Exploiting Kernel Races through Raising Interrupts\" at USENIX](https://www.usenix.org/system/files/sec21-lee-yoochan.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf)] [[video](https://www.youtube.com/watch?v=CIHRw5YPr9o)] cves: none android_impact_status: no an",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-lee-yoochan.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=CIHRw5YPr9o"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-lee-yoochan.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=CIHRw5YPr9o"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel",
        "races"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Slides from a presentation on exploiting kernel races through raising interrupts.",
      "summary_zh": "关于通过提升中断利用内核竞争的演示文稿幻灯片。",
      "source_markdown": "[2021: \"ExpRace: Exploiting Kernel Races through Raising Interrupts\" at USENIX](https://www.usenix.org/system/files/sec21-lee-yoochan.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf)] [[video](https://www.youtube.com/watch?v=CIHRw5YPr9o)]",
      "search_text": "exprace: exploiting kernel races through raising interrupts\" at usenix · slides exprace: exploiting kernel races through raising interrupts\" at usenix    techniques exploitation technique: exploitation slides slides https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf exploitation kernel races  exploitation slides from a presentation on exploiting kernel races through raising interrupts. 关于通过提升中断利用内核竞争的演示文稿幻灯片。 # exprace: exploiting kernel races through raising interrupts\" at usenix · slides record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: exprace: exploiting kernel races through raising interrupts\" at usenix resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-lee-yoochan.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2021: \"exprace: exploiting kernel races through raising interrupts\" at usenix](https://www.usenix.org/system/files/sec21-lee-yoochan.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf)] [[video](https://www.youtube.com/watch?v=cihrw5ypr9o)] cves: none android_impact_status: no an no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4c8145631d753d3c",
      "item_id": "d22f853bfef55a71",
      "slug": "2021-techniques-exploitation-exprace-exploiting-kernel-races-through-raising-interrupts-at-usenix-video-2e59fc",
      "year": 2021,
      "title": "ExpRace: Exploiting Kernel Races through Raising Interrupts\" at USENIX · video",
      "item_title": "ExpRace: Exploiting Kernel Races through Raising Interrupts\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=CIHRw5YPr9o",
      "primary_url": "https://www.youtube.com/watch?v=CIHRw5YPr9o",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-lee-yoochan.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2021-techniques-exploitation-exprace-exploiting-kernel-races-through-raising-interrupts-at-usenix-video-2e59fc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ExpRace: Exploiting Kernel Races through Raising Interrupts\" at USENIX · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: ExpRace: Exploiting Kernel Races through Raising Interrupts\" at USENIX resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=CIHRw5YPr9o parent_primary_url: https://www.usenix.org/system/files/sec21-lee-yoochan.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2021: \"ExpRace: Exploiting Kernel Races through Raising Interrupts\" at USENIX](https://www.usenix.org/system/files/sec21-lee-yoochan.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf)] [[video](https://www.youtube.com/watch?v=CIHRw5YPr9o)] cves: none android_impact_status: no android_impact_reason: Not",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-lee-yoochan.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=CIHRw5YPr9o"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-lee-yoochan.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=CIHRw5YPr9o"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel",
        "races"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Video presentation on exploiting kernel races through raising interrupts.",
      "summary_zh": "关于通过提升中断利用内核竞争的视频演示。",
      "source_markdown": "[2021: \"ExpRace: Exploiting Kernel Races through Raising Interrupts\" at USENIX](https://www.usenix.org/system/files/sec21-lee-yoochan.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf)] [[video](https://www.youtube.com/watch?v=CIHRw5YPr9o)]",
      "search_text": "exprace: exploiting kernel races through raising interrupts\" at usenix · video exprace: exploiting kernel races through raising interrupts\" at usenix    techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=cihrw5ypr9o exploitation kernel races  exploitation video presentation on exploiting kernel races through raising interrupts. 关于通过提升中断利用内核竞争的视频演示。 # exprace: exploiting kernel races through raising interrupts\" at usenix · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: exprace: exploiting kernel races through raising interrupts\" at usenix resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=cihrw5ypr9o parent_primary_url: https://www.usenix.org/system/files/sec21-lee-yoochan.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2021: \"exprace: exploiting kernel races through raising interrupts\" at usenix](https://www.usenix.org/system/files/sec21-lee-yoochan.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_lee_yoochan.pdf)] [[video](https://www.youtube.com/watch?v=cihrw5ypr9o)] cves: none android_impact_status: no android_impact_reason: not no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "8c671122074fdf9f",
      "item_id": "69d64c1362cc1f5e",
      "slug": "2021-techniques-exploitation-utilizing-msg-msg-objects-for-arbitrary-read-and-arbitrary-write-in-the-linux-ker",
      "year": 2021,
      "title": "Utilizing msg_msg Objects for Arbitrary Read and Arbitrary Write in the Linux Kernel",
      "item_title": "Utilizing msg_msg Objects for Arbitrary Read and Arbitrary Write in the Linux Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html",
      "primary_url": "https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html",
      "parent_primary_url": "https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2021-techniques-exploitation-utilizing-msg-msg-objects-for-arbitrary-read-and-arbitrary-write-in-the-linux-ker.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Utilizing msg_msg Objects for Arbitrary Read and Arbitrary Write in the Linux Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Utilizing msg_msg Objects for Arbitrary Read and Arbitrary Write in the Linux Kernel resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html parent_primary_url: https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2021: \"Utilizing msg_msg Objects for Arbitrary Read and Arbitrary Write in the Linux Kernel\"](https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html) [article] [[part2](https://syst3mfailure.io/wall-of-perdition)] cves: none android_impact_status",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html"
        },
        {
          "label": "part2",
          "type": "article",
          "url": "https://syst3mfailure.io/wall-of-perdition"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html"
          },
          {
            "label": "part2",
            "type": "article",
            "url": "https://syst3mfailure.io/wall-of-perdition"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel",
        "msg_msg"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This article explores the use of msg_msg objects for arbitrary read and write in the Linux kernel.",
      "summary_zh": "本文探讨了在Linux内核中使用msg_msg对象进行任意读写。",
      "source_markdown": "[2021: \"Utilizing msg_msg Objects for Arbitrary Read and Arbitrary Write in the Linux Kernel\"](https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html) [article] [[part2](https://syst3mfailure.io/wall-of-perdition)]",
      "search_text": "utilizing msg_msg objects for arbitrary read and arbitrary write in the linux kernel utilizing msg_msg objects for arbitrary read and arbitrary write in the linux kernel    techniques exploitation technique: exploitation primary article https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html exploitation kernel msg_msg  exploitation this article explores the use of msg_msg objects for arbitrary read and write in the linux kernel. 本文探讨了在linux内核中使用msg_msg对象进行任意读写。 # utilizing msg_msg objects for arbitrary read and arbitrary write in the linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: utilizing msg_msg objects for arbitrary read and arbitrary write in the linux kernel resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html parent_primary_url: https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2021: \"utilizing msg_msg objects for arbitrary read and arbitrary write in the linux kernel\"](https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html) [article] [[part2](https://syst3mfailure.io/wall-of-perdition)] cves: none android_impact_status no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "54c3fdb7aed83ac7",
      "item_id": "69d64c1362cc1f5e",
      "slug": "2021-techniques-exploitation-utilizing-msg-msg-objects-for-arbitrary-read-and-arbitrary-write-in-the-linux-ker-2",
      "year": 2021,
      "title": "Utilizing msg_msg Objects for Arbitrary Read and Arbitrary Write in the Linux Kernel · part2",
      "item_title": "Utilizing msg_msg Objects for Arbitrary Read and Arbitrary Write in the Linux Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "part2",
      "resource_type": "article",
      "resource_url": "https://syst3mfailure.io/wall-of-perdition",
      "primary_url": "https://syst3mfailure.io/wall-of-perdition",
      "parent_primary_url": "https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2021-techniques-exploitation-utilizing-msg-msg-objects-for-arbitrary-read-and-arbitrary-write-in-the-linux-ker-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Utilizing msg_msg Objects for Arbitrary Read and Arbitrary Write in the Linux Kernel · part2 record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Utilizing msg_msg Objects for Arbitrary Read and Arbitrary Write in the Linux Kernel resource_label: part2 resource_type: article resource_url: https://syst3mfailure.io/wall-of-perdition parent_primary_url: https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2021: \"Utilizing msg_msg Objects for Arbitrary Read and Arbitrary Write in the Linux Kernel\"](https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html) [article] [[part2](https://syst3mfailure.io/wall-of-perdition)] cves: none android_impact_status: no android_impact_reason:",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html"
        },
        {
          "label": "part2",
          "type": "article",
          "url": "https://syst3mfailure.io/wall-of-perdition"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html"
          },
          {
            "label": "part2",
            "type": "article",
            "url": "https://syst3mfailure.io/wall-of-perdition"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel",
        "msg_msg"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Part 2 of an article discussing the use of msg_msg objects for arbitrary read and write in the Linux kernel.",
      "summary_zh": "关于在Linux内核中使用msg_msg对象进行任意读写的文章第二部分。",
      "source_markdown": "[2021: \"Utilizing msg_msg Objects for Arbitrary Read and Arbitrary Write in the Linux Kernel\"](https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html) [article] [[part2](https://syst3mfailure.io/wall-of-perdition)]",
      "search_text": "utilizing msg_msg objects for arbitrary read and arbitrary write in the linux kernel · part2 utilizing msg_msg objects for arbitrary read and arbitrary write in the linux kernel    techniques exploitation technique: exploitation part2 article https://syst3mfailure.io/wall-of-perdition exploitation kernel msg_msg  exploitation part 2 of an article discussing the use of msg_msg objects for arbitrary read and write in the linux kernel. 关于在linux内核中使用msg_msg对象进行任意读写的文章第二部分。 # utilizing msg_msg objects for arbitrary read and arbitrary write in the linux kernel · part2 record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: utilizing msg_msg objects for arbitrary read and arbitrary write in the linux kernel resource_label: part2 resource_type: article resource_url: https://syst3mfailure.io/wall-of-perdition parent_primary_url: https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2021: \"utilizing msg_msg objects for arbitrary read and arbitrary write in the linux kernel\"](https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html) [article] [[part2](https://syst3mfailure.io/wall-of-perdition)] cves: none android_impact_status: no android_impact_reason: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e766126d0a1dde39",
      "item_id": "bd6795abdc4b55a1",
      "slug": "2021-techniques-exploitation-linux-kernel-exploitation-technique-overwriting-modprobe-path-primary-b9574d6a",
      "year": 2021,
      "title": "Linux Kernel Exploitation Technique: Overwriting modprobe_path",
      "item_title": "Linux Kernel Exploitation Technique: Overwriting modprobe_path",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://lkmidas.github.io/posts/20210223-linux-kernel-pwn-modprobe/",
      "primary_url": "https://lkmidas.github.io/posts/20210223-linux-kernel-pwn-modprobe/",
      "parent_primary_url": "https://lkmidas.github.io/posts/20210223-linux-kernel-pwn-modprobe/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2021-techniques-exploitation-linux-kernel-exploitation-technique-overwriting-modprobe-path-primary-b9574d6a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Exploitation Technique: Overwriting modprobe_path record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel Exploitation Technique: Overwriting modprobe_path resource_label: primary resource_type: article resource_url: https://lkmidas.github.io/posts/20210223-linux-kernel-pwn-modprobe/ parent_primary_url: https://lkmidas.github.io/posts/20210223-linux-kernel-pwn-modprobe/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2021: \"Linux Kernel Exploitation Technique: Overwriting modprobe_path\"](https://lkmidas.github.io/posts/20210223-linux-kernel-pwn-modprobe/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Pr",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://lkmidas.github.io/posts/20210223-linux-kernel-pwn-modprobe/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://lkmidas.github.io/posts/20210223-linux-kernel-pwn-modprobe/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://lkmidas.github.io/posts/20210223-linux-kernel-pwn-modprobe/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel",
        "modprobe"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This article details a technique for overwriting modprobe_path in the Linux kernel.",
      "summary_zh": "本文详细介绍了在Linux内核中覆盖modprobe_path的技术。",
      "source_markdown": "[2021: \"Linux Kernel Exploitation Technique: Overwriting modprobe_path\"](https://lkmidas.github.io/posts/20210223-linux-kernel-pwn-modprobe/) [article]",
      "search_text": "linux kernel exploitation technique: overwriting modprobe_path linux kernel exploitation technique: overwriting modprobe_path    techniques exploitation technique: exploitation primary article https://lkmidas.github.io/posts/20210223-linux-kernel-pwn-modprobe/ exploitation kernel modprobe  exploitation this article details a technique for overwriting modprobe_path in the linux kernel. 本文详细介绍了在linux内核中覆盖modprobe_path的技术。 # linux kernel exploitation technique: overwriting modprobe_path record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel exploitation technique: overwriting modprobe_path resource_label: primary resource_type: article resource_url: https://lkmidas.github.io/posts/20210223-linux-kernel-pwn-modprobe/ parent_primary_url: https://lkmidas.github.io/posts/20210223-linux-kernel-pwn-modprobe/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2021: \"linux kernel exploitation technique: overwriting modprobe_path\"](https://lkmidas.github.io/posts/20210223-linux-kernel-pwn-modprobe/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: pr no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "cf150a4c4a4b828e",
      "item_id": "d1f8f3d8eb5e6416",
      "slug": "2021-techniques-exploitation-learning-linux-kernel-exploitation-primary-7664ce75",
      "year": 2021,
      "title": "Learning Linux Kernel Exploitation",
      "item_title": "Learning Linux Kernel Exploitation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/",
      "primary_url": "https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/",
      "parent_primary_url": "https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2021-techniques-exploitation-learning-linux-kernel-exploitation-primary-7664ce75.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Learning Linux Kernel Exploitation record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Learning Linux Kernel Exploitation resource_label: primary resource_type: article resource_url: https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/ parent_primary_url: https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2021: \"Learning Linux Kernel Exploitation\"](https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/) [article] [[part 2](https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/)] [[part 3](https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to rel",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/"
        },
        {
          "label": "part 3",
          "type": "article",
          "url": "https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/"
          },
          {
            "label": "part 3",
            "type": "article",
            "url": "https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/",
        "https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/",
        "https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "An introductory article on Linux kernel exploitation techniques.",
      "summary_zh": "关于Linux内核利用技术的介绍性文章。",
      "source_markdown": "[2021: \"Learning Linux Kernel Exploitation\"](https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/) [article] [[part 2](https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/)] [[part 3](https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/)]",
      "search_text": "learning linux kernel exploitation learning linux kernel exploitation    techniques exploitation technique: exploitation primary article https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/ exploitation kernel  exploitation an introductory article on linux kernel exploitation techniques. 关于linux内核利用技术的介绍性文章。 # learning linux kernel exploitation record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: learning linux kernel exploitation resource_label: primary resource_type: article resource_url: https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/ parent_primary_url: https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2021: \"learning linux kernel exploitation\"](https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/) [article] [[part 2](https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/)] [[part 3](https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to rel no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "13e4d3616647a55f",
      "item_id": "d1f8f3d8eb5e6416",
      "slug": "2021-techniques-exploitation-learning-linux-kernel-exploitation-part-2-f60b2f0f",
      "year": 2021,
      "title": "Learning Linux Kernel Exploitation · part 2",
      "item_title": "Learning Linux Kernel Exploitation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "part 2",
      "resource_type": "article",
      "resource_url": "https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/",
      "primary_url": "https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/",
      "parent_primary_url": "https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2021-techniques-exploitation-learning-linux-kernel-exploitation-part-2-f60b2f0f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Learning Linux Kernel Exploitation · part 2 record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Learning Linux Kernel Exploitation resource_label: part 2 resource_type: article resource_url: https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/ parent_primary_url: https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2021: \"Learning Linux Kernel Exploitation\"](https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/) [article] [[part 2](https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/)] [[part 3](https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource map",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/"
        },
        {
          "label": "part 3",
          "type": "article",
          "url": "https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/"
          },
          {
            "label": "part 3",
            "type": "article",
            "url": "https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/",
        "https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/",
        "https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Part 2 of an introductory article on Linux kernel exploitation techniques.",
      "summary_zh": "关于Linux内核利用技术的介绍性文章第二部分。",
      "source_markdown": "[2021: \"Learning Linux Kernel Exploitation\"](https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/) [article] [[part 2](https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/)] [[part 3](https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/)]",
      "search_text": "learning linux kernel exploitation · part 2 learning linux kernel exploitation    techniques exploitation technique: exploitation part 2 article https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/ exploitation kernel  exploitation part 2 of an introductory article on linux kernel exploitation techniques. 关于linux内核利用技术的介绍性文章第二部分。 # learning linux kernel exploitation · part 2 record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: learning linux kernel exploitation resource_label: part 2 resource_type: article resource_url: https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/ parent_primary_url: https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2021: \"learning linux kernel exploitation\"](https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/) [article] [[part 2](https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/)] [[part 3](https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource map no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "7e575fbe56ef205e",
      "item_id": "d1f8f3d8eb5e6416",
      "slug": "2021-techniques-exploitation-learning-linux-kernel-exploitation-part-3-7dfe9211",
      "year": 2021,
      "title": "Learning Linux Kernel Exploitation · part 3",
      "item_title": "Learning Linux Kernel Exploitation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "part 3",
      "resource_type": "article",
      "resource_url": "https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/",
      "primary_url": "https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/",
      "parent_primary_url": "https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2021-techniques-exploitation-learning-linux-kernel-exploitation-part-3-7dfe9211.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Learning Linux Kernel Exploitation · part 3 record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Learning Linux Kernel Exploitation resource_label: part 3 resource_type: article resource_url: https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/ parent_primary_url: https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2021: \"Learning Linux Kernel Exploitation\"](https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/) [article] [[part 2](https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/)] [[part 3](https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource map",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/"
        },
        {
          "label": "part 3",
          "type": "article",
          "url": "https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/"
          },
          {
            "label": "part 3",
            "type": "article",
            "url": "https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/",
        "https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/",
        "https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Part 3 of an introductory article on Linux kernel exploitation techniques.",
      "summary_zh": "关于Linux内核利用技术的介绍性文章第三部分。",
      "source_markdown": "[2021: \"Learning Linux Kernel Exploitation\"](https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/) [article] [[part 2](https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/)] [[part 3](https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/)]",
      "search_text": "learning linux kernel exploitation · part 3 learning linux kernel exploitation    techniques exploitation technique: exploitation part 3 article https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/ exploitation kernel  exploitation part 3 of an introductory article on linux kernel exploitation techniques. 关于linux内核利用技术的介绍性文章第三部分。 # learning linux kernel exploitation · part 3 record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: learning linux kernel exploitation resource_label: part 3 resource_type: article resource_url: https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/ parent_primary_url: https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2021: \"learning linux kernel exploitation\"](https://lkmidas.github.io/posts/20210123-linux-kernel-pwn-part-1/) [article] [[part 2](https://lkmidas.github.io/posts/20210128-linux-kernel-pwn-part-2/)] [[part 3](https://lkmidas.github.io/posts/20210205-linux-kernel-pwn-part-3/)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource map no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "dd926d7dac5b2452",
      "item_id": "4edaa77ee7f826e8",
      "slug": "2020-techniques-exploitation-ptma-page-table-manipulation-attack-attacking-the-core-of-memory-permission-prima",
      "year": 2020,
      "title": "PTMA (Page Table Manipulation Attack): Attacking the core of memory permission",
      "item_title": "PTMA (Page Table Manipulation Attack): Attacking the core of memory permission",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.slideshare.net/JungseungLee2/page-table-manipulation-attack",
      "primary_url": "https://www.slideshare.net/JungseungLee2/page-table-manipulation-attack",
      "parent_primary_url": "https://www.slideshare.net/JungseungLee2/page-table-manipulation-attack",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2020-techniques-exploitation-ptma-page-table-manipulation-attack-attacking-the-core-of-memory-permission-prima.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PTMA (Page Table Manipulation Attack): Attacking the core of memory permission record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: PTMA (Page Table Manipulation Attack): Attacking the core of memory permission resource_label: primary resource_type: slides resource_url: https://www.slideshare.net/JungseungLee2/page-table-manipulation-attack parent_primary_url: https://www.slideshare.net/JungseungLee2/page-table-manipulation-attack source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"PTMA (Page Table Manipulation Attack): Attacking the core of memory permission\"](https://www.slideshare.net/JungseungLee2/page-table-manipulation-attack) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released An",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.slideshare.net/JungseungLee2/page-table-manipulation-attack"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.slideshare.net/JungseungLee2/page-table-manipulation-attack"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel",
        "PTMA"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Slides discussing Page Table Manipulation Attack (PTMA) targeting memory permissions.",
      "summary_zh": "讨论针对内存权限的页面表操纵攻击（PTMA）的幻灯片。",
      "source_markdown": "[2020: \"PTMA (Page Table Manipulation Attack): Attacking the core of memory permission\"](https://www.slideshare.net/JungseungLee2/page-table-manipulation-attack) [slides]",
      "search_text": "ptma (page table manipulation attack): attacking the core of memory permission ptma (page table manipulation attack): attacking the core of memory permission    techniques exploitation technique: exploitation primary slides https://www.slideshare.net/jungseunglee2/page-table-manipulation-attack exploitation kernel ptma  exploitation slides discussing page table manipulation attack (ptma) targeting memory permissions. 讨论针对内存权限的页面表操纵攻击（ptma）的幻灯片。 # ptma (page table manipulation attack): attacking the core of memory permission record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: ptma (page table manipulation attack): attacking the core of memory permission resource_label: primary resource_type: slides resource_url: https://www.slideshare.net/jungseunglee2/page-table-manipulation-attack parent_primary_url: https://www.slideshare.net/jungseunglee2/page-table-manipulation-attack source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"ptma (page table manipulation attack): attacking the core of memory permission\"](https://www.slideshare.net/jungseunglee2/page-table-manipulation-attack) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released an no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ce62985165ca138c",
      "item_id": "8d237aa84f588827",
      "slug": "2020-techniques-exploitation-exploiting-kernel-races-through-taming-thread-interleaving-primary-ff64223e",
      "year": 2020,
      "title": "Exploiting Kernel Races Through Taming Thread Interleaving",
      "item_title": "Exploiting Kernel Races Through Taming Thread Interleaving",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/USA-20/Thursday/us-20-Lee-Exploiting-Kernel-Races-Through-Taming-Thread-Interleaving.pdf",
      "primary_url": "https://i.blackhat.com/USA-20/Thursday/us-20-Lee-Exploiting-Kernel-Races-Through-Taming-Thread-Interleaving.pdf",
      "parent_primary_url": "https://i.blackhat.com/USA-20/Thursday/us-20-Lee-Exploiting-Kernel-Races-Through-Taming-Thread-Interleaving.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2020-techniques-exploitation-exploiting-kernel-races-through-taming-thread-interleaving-primary-ff64223e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting Kernel Races Through Taming Thread Interleaving record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Exploiting Kernel Races Through Taming Thread Interleaving resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/USA-20/Thursday/us-20-Lee-Exploiting-Kernel-Races-Through-Taming-Thread-Interleaving.pdf parent_primary_url: https://i.blackhat.com/USA-20/Thursday/us-20-Lee-Exploiting-Kernel-Races-Through-Taming-Thread-Interleaving.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"Exploiting Kernel Races Through Taming Thread Interleaving\"](https://i.blackhat.com/USA-20/Thursday/us-20-Lee-Exploiting-Kernel-Races-Through-Taming-Thread-Interleaving.pdf) [slides] [[video](https://www.youtube.com/watch?v=5M3WhLVLCzs)] cve",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/USA-20/Thursday/us-20-Lee-Exploiting-Kernel-Races-Through-Taming-Thread-Interleaving.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=5M3WhLVLCzs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/USA-20/Thursday/us-20-Lee-Exploiting-Kernel-Races-Through-Taming-Thread-Interleaving.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=5M3WhLVLCzs"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel",
        "races"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Slides on exploiting kernel races through taming thread interleaving.",
      "summary_zh": "关于通过驯服线程交错利用内核竞争的幻灯片。",
      "source_markdown": "[2020: \"Exploiting Kernel Races Through Taming Thread Interleaving\"](https://i.blackhat.com/USA-20/Thursday/us-20-Lee-Exploiting-Kernel-Races-Through-Taming-Thread-Interleaving.pdf) [slides] [[video](https://www.youtube.com/watch?v=5M3WhLVLCzs)]",
      "search_text": "exploiting kernel races through taming thread interleaving exploiting kernel races through taming thread interleaving    techniques exploitation technique: exploitation primary slides https://i.blackhat.com/usa-20/thursday/us-20-lee-exploiting-kernel-races-through-taming-thread-interleaving.pdf exploitation kernel races  exploitation slides on exploiting kernel races through taming thread interleaving. 关于通过驯服线程交错利用内核竞争的幻灯片。 # exploiting kernel races through taming thread interleaving record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: exploiting kernel races through taming thread interleaving resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/usa-20/thursday/us-20-lee-exploiting-kernel-races-through-taming-thread-interleaving.pdf parent_primary_url: https://i.blackhat.com/usa-20/thursday/us-20-lee-exploiting-kernel-races-through-taming-thread-interleaving.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"exploiting kernel races through taming thread interleaving\"](https://i.blackhat.com/usa-20/thursday/us-20-lee-exploiting-kernel-races-through-taming-thread-interleaving.pdf) [slides] [[video](https://www.youtube.com/watch?v=5m3whlvlczs)] cve no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "3127470f586c3e7b",
      "item_id": "8d237aa84f588827",
      "slug": "2020-techniques-exploitation-exploiting-kernel-races-through-taming-thread-interleaving-video-8cedf103",
      "year": 2020,
      "title": "Exploiting Kernel Races Through Taming Thread Interleaving · video",
      "item_title": "Exploiting Kernel Races Through Taming Thread Interleaving",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=5M3WhLVLCzs",
      "primary_url": "https://www.youtube.com/watch?v=5M3WhLVLCzs",
      "parent_primary_url": "https://i.blackhat.com/USA-20/Thursday/us-20-Lee-Exploiting-Kernel-Races-Through-Taming-Thread-Interleaving.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2020-techniques-exploitation-exploiting-kernel-races-through-taming-thread-interleaving-video-8cedf103.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting Kernel Races Through Taming Thread Interleaving · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Exploiting Kernel Races Through Taming Thread Interleaving resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=5M3WhLVLCzs parent_primary_url: https://i.blackhat.com/USA-20/Thursday/us-20-Lee-Exploiting-Kernel-Races-Through-Taming-Thread-Interleaving.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"Exploiting Kernel Races Through Taming Thread Interleaving\"](https://i.blackhat.com/USA-20/Thursday/us-20-Lee-Exploiting-Kernel-Races-Through-Taming-Thread-Interleaving.pdf) [slides] [[video](https://www.youtube.com/watch?v=5M3WhLVLCzs)] cves: none android_impact_status: no android_impact_reason: Not en",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/USA-20/Thursday/us-20-Lee-Exploiting-Kernel-Races-Through-Taming-Thread-Interleaving.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=5M3WhLVLCzs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/USA-20/Thursday/us-20-Lee-Exploiting-Kernel-Races-Through-Taming-Thread-Interleaving.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=5M3WhLVLCzs"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel",
        "races"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Video presentation on exploiting kernel races through taming thread interleaving.",
      "summary_zh": "关于通过驯服线程交错利用内核竞争的视频演示。",
      "source_markdown": "[2020: \"Exploiting Kernel Races Through Taming Thread Interleaving\"](https://i.blackhat.com/USA-20/Thursday/us-20-Lee-Exploiting-Kernel-Races-Through-Taming-Thread-Interleaving.pdf) [slides] [[video](https://www.youtube.com/watch?v=5M3WhLVLCzs)]",
      "search_text": "exploiting kernel races through taming thread interleaving · video exploiting kernel races through taming thread interleaving    techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=5m3whlvlczs exploitation kernel races  exploitation video presentation on exploiting kernel races through taming thread interleaving. 关于通过驯服线程交错利用内核竞争的视频演示。 # exploiting kernel races through taming thread interleaving · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: exploiting kernel races through taming thread interleaving resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=5m3whlvlczs parent_primary_url: https://i.blackhat.com/usa-20/thursday/us-20-lee-exploiting-kernel-races-through-taming-thread-interleaving.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"exploiting kernel races through taming thread interleaving\"](https://i.blackhat.com/usa-20/thursday/us-20-lee-exploiting-kernel-races-through-taming-thread-interleaving.pdf) [slides] [[video](https://www.youtube.com/watch?v=5m3whlvlczs)] cves: none android_impact_status: no android_impact_reason: not en no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "465dc20735487cc9",
      "item_id": "e64aa7d97027e855",
      "slug": "2020-techniques-exploitation-locating-the-kernel-pgd-on-android-aarch64-primary-c7c2dab4",
      "year": 2020,
      "title": "Locating the kernel PGD on Android/aarch64",
      "item_title": "Locating the kernel PGD on Android/aarch64",
      "authors": [
        "Vitaly Nikolenko"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://duasynt.com/blog/android-pgd-page-tables",
      "primary_url": "https://duasynt.com/blog/android-pgd-page-tables",
      "parent_primary_url": "https://duasynt.com/blog/android-pgd-page-tables",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2020-techniques-exploitation-locating-the-kernel-pgd-on-android-aarch64-primary-c7c2dab4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Locating the kernel PGD on Android/aarch64 record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Locating the kernel PGD on Android/aarch64 resource_label: primary resource_type: article resource_url: https://duasynt.com/blog/android-pgd-page-tables parent_primary_url: https://duasynt.com/blog/android-pgd-page-tables source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"Locating the kernel PGD on Android/aarch64\" by Vitaly Nikolenko](https://duasynt.com/blog/android-pgd-page-tables) [article] cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Li",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://duasynt.com/blog/android-pgd-page-tables"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://duasynt.com/blog/android-pgd-page-tables"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "An article on locating the kernel PGD on Android/aarch64.",
      "summary_zh": "关于在Android/aarch64上定位内核PGD的文章。",
      "source_markdown": "[2020: \"Locating the kernel PGD on Android/aarch64\" by Vitaly Nikolenko](https://duasynt.com/blog/android-pgd-page-tables) [article]",
      "search_text": "locating the kernel pgd on android/aarch64 locating the kernel pgd on android/aarch64 vitaly nikolenko   techniques exploitation technique: exploitation primary article https://duasynt.com/blog/android-pgd-page-tables exploitation kernel android  exploitation an article on locating the kernel pgd on android/aarch64. 关于在android/aarch64上定位内核pgd的文章。 # locating the kernel pgd on android/aarch64 record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: locating the kernel pgd on android/aarch64 resource_label: primary resource_type: article resource_url: https://duasynt.com/blog/android-pgd-page-tables parent_primary_url: https://duasynt.com/blog/android-pgd-page-tables source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"locating the kernel pgd on android/aarch64\" by vitaly nikolenko](https://duasynt.com/blog/android-pgd-page-tables) [article] cves: none android_impact_status: unknown android_impact_reason: mentions android; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than li unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "a456c57f138d2b2f",
      "item_id": "346adc51c3aadc78",
      "slug": "2020-techniques-exploitation-a-systematic-study-of-elastic-objects-in-kernel-exploitation-primary-1fe1bea4",
      "year": 2020,
      "title": "A Systematic Study of Elastic Objects in Kernel Exploitation",
      "item_title": "A Systematic Study of Elastic Objects in Kernel Exploitation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://zplin.me/papers/ELOISE.pdf",
      "primary_url": "https://zplin.me/papers/ELOISE.pdf",
      "parent_primary_url": "https://zplin.me/papers/ELOISE.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2020-techniques-exploitation-a-systematic-study-of-elastic-objects-in-kernel-exploitation-primary-1fe1bea4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Systematic Study of Elastic Objects in Kernel Exploitation record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: A Systematic Study of Elastic Objects in Kernel Exploitation resource_label: primary resource_type: paper resource_url: https://zplin.me/papers/ELOISE.pdf parent_primary_url: https://zplin.me/papers/ELOISE.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"A Systematic Study of Elastic Objects in Kernel Exploitation\"](https://zplin.me/papers/ELOISE.pdf) [paper] [[video](https://www.youtube.com/watch?v=yXhH0IJAxkE)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather tha",
      "link_types": [
        "paper",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://zplin.me/papers/ELOISE.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=yXhH0IJAxkE"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://zplin.me/papers/ELOISE.pdf"
          }
        ],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=yXhH0IJAxkE"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel",
        "elastic_objects"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "A paper presenting a systematic study of elastic objects in kernel exploitation.",
      "summary_zh": "一篇关于内核利用中弹性对象的系统研究的论文。",
      "source_markdown": "[2020: \"A Systematic Study of Elastic Objects in Kernel Exploitation\"](https://zplin.me/papers/ELOISE.pdf) [paper] [[video](https://www.youtube.com/watch?v=yXhH0IJAxkE)]",
      "search_text": "a systematic study of elastic objects in kernel exploitation a systematic study of elastic objects in kernel exploitation    techniques exploitation technique: exploitation primary paper https://zplin.me/papers/eloise.pdf exploitation kernel elastic_objects  exploitation a paper presenting a systematic study of elastic objects in kernel exploitation. 一篇关于内核利用中弹性对象的系统研究的论文。 # a systematic study of elastic objects in kernel exploitation record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: a systematic study of elastic objects in kernel exploitation resource_label: primary resource_type: paper resource_url: https://zplin.me/papers/eloise.pdf parent_primary_url: https://zplin.me/papers/eloise.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"a systematic study of elastic objects in kernel exploitation\"](https://zplin.me/papers/eloise.pdf) [paper] [[video](https://www.youtube.com/watch?v=yxhh0ijaxke)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather tha no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "dfd48d4a71ddb1c4",
      "item_id": "346adc51c3aadc78",
      "slug": "2020-techniques-exploitation-a-systematic-study-of-elastic-objects-in-kernel-exploitation-video-78d99b10",
      "year": 2020,
      "title": "A Systematic Study of Elastic Objects in Kernel Exploitation · video",
      "item_title": "A Systematic Study of Elastic Objects in Kernel Exploitation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=yXhH0IJAxkE",
      "primary_url": "https://www.youtube.com/watch?v=yXhH0IJAxkE",
      "parent_primary_url": "https://zplin.me/papers/ELOISE.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2020-techniques-exploitation-a-systematic-study-of-elastic-objects-in-kernel-exploitation-video-78d99b10.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Systematic Study of Elastic Objects in Kernel Exploitation · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: A Systematic Study of Elastic Objects in Kernel Exploitation resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=yXhH0IJAxkE parent_primary_url: https://zplin.me/papers/ELOISE.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"A Systematic Study of Elastic Objects in Kernel Exploitation\"](https://zplin.me/papers/ELOISE.pdf) [paper] [[video](https://www.youtube.com/watch?v=yXhH0IJAxkE)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ke",
      "link_types": [
        "paper",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://zplin.me/papers/ELOISE.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=yXhH0IJAxkE"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://zplin.me/papers/ELOISE.pdf"
          }
        ],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=yXhH0IJAxkE"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel",
        "elastic_objects"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Video presentation on a systematic study of elastic objects in kernel exploitation.",
      "summary_zh": "关于内核利用中弹性对象的系统研究的视频演示。",
      "source_markdown": "[2020: \"A Systematic Study of Elastic Objects in Kernel Exploitation\"](https://zplin.me/papers/ELOISE.pdf) [paper] [[video](https://www.youtube.com/watch?v=yXhH0IJAxkE)]",
      "search_text": "a systematic study of elastic objects in kernel exploitation · video a systematic study of elastic objects in kernel exploitation    techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=yxhh0ijaxke exploitation kernel elastic_objects  exploitation video presentation on a systematic study of elastic objects in kernel exploitation. 关于内核利用中弹性对象的系统研究的视频演示。 # a systematic study of elastic objects in kernel exploitation · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: a systematic study of elastic objects in kernel exploitation resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=yxhh0ijaxke parent_primary_url: https://zplin.me/papers/eloise.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"a systematic study of elastic objects in kernel exploitation\"](https://zplin.me/papers/eloise.pdf) [paper] [[video](https://www.youtube.com/watch?v=yxhh0ijaxke)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu ke no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bea395229de54c84",
      "item_id": "bbc71107e6c1d97e",
      "slug": "2020-techniques-exploitation-exploiting-uses-of-uninitialized-stack-variables-in-linux-kernels-to-leak-kernel-",
      "year": 2020,
      "title": "Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers",
      "item_title": "Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf",
      "primary_url": "https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2020-techniques-exploitation-exploiting-uses-of-uninitialized-stack-variables-in-linux-kernels-to-leak-kernel-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers resource_label: primary resource_type: slides resource_url: https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf parent_primary_url: https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers\"](https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf) [slides] [[paper](https://www.usenix.org/system/files/woot20-paper-cho.pdf)] [[video](https://www.youtube.com/watch",
      "link_types": [
        "slides",
        "paper",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/woot20-paper-cho.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=uI377m9S0qs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/woot20-paper-cho.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=uI377m9S0qs"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel",
        "uninitialized_variables"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Slides on exploiting uninitialized stack variables in Linux kernels to leak kernel pointers.",
      "summary_zh": "关于利用Linux内核中未初始化的栈变量泄露内核指针的幻灯片。",
      "source_markdown": "[2020: \"Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers\"](https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf) [slides] [[paper](https://www.usenix.org/system/files/woot20-paper-cho.pdf)] [[video](https://www.youtube.com/watch?v=uI377m9S0qs)]",
      "search_text": "exploiting uses of uninitialized stack variables in linux kernels to leak kernel pointers exploiting uses of uninitialized stack variables in linux kernels to leak kernel pointers    techniques exploitation technique: exploitation primary slides https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf exploitation kernel uninitialized_variables  exploitation slides on exploiting uninitialized stack variables in linux kernels to leak kernel pointers. 关于利用linux内核中未初始化的栈变量泄露内核指针的幻灯片。 # exploiting uses of uninitialized stack variables in linux kernels to leak kernel pointers record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: exploiting uses of uninitialized stack variables in linux kernels to leak kernel pointers resource_label: primary resource_type: slides resource_url: https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf parent_primary_url: https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"exploiting uses of uninitialized stack variables in linux kernels to leak kernel pointers\"](https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf) [slides] [[paper](https://www.usenix.org/system/files/woot20-paper-cho.pdf)] [[video](https://www.youtube.com/watch no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f7795a318b985cf3",
      "item_id": "bbc71107e6c1d97e",
      "slug": "2020-techniques-exploitation-exploiting-uses-of-uninitialized-stack-variables-in-linux-kernels-to-leak-kernel--2",
      "year": 2020,
      "title": "Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers · paper",
      "item_title": "Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "paper",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/woot20-paper-cho.pdf",
      "primary_url": "https://www.usenix.org/system/files/woot20-paper-cho.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2020-techniques-exploitation-exploiting-uses-of-uninitialized-stack-variables-in-linux-kernels-to-leak-kernel--2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers · paper record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers resource_label: paper resource_type: paper resource_url: https://www.usenix.org/system/files/woot20-paper-cho.pdf parent_primary_url: https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers\"](https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf) [slides] [[paper](https://www.usenix.org/system/files/woot20-paper-cho.pdf)] [[video](https://www.youtube.com/watch?v=",
      "link_types": [
        "slides",
        "paper",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/woot20-paper-cho.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=uI377m9S0qs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/woot20-paper-cho.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=uI377m9S0qs"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel",
        "Spectre"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "A paper discussing speculative probing in the context of the Spectre vulnerability.",
      "summary_zh": "一篇讨论在Spectre漏洞背景下的推测性探测的论文。",
      "source_markdown": "[2020: \"Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers\"](https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf) [slides] [[paper](https://www.usenix.org/system/files/woot20-paper-cho.pdf)] [[video](https://www.youtube.com/watch?v=uI377m9S0qs)]",
      "search_text": "exploiting uses of uninitialized stack variables in linux kernels to leak kernel pointers · paper exploiting uses of uninitialized stack variables in linux kernels to leak kernel pointers    techniques exploitation technique: exploitation paper paper https://www.usenix.org/system/files/woot20-paper-cho.pdf exploitation kernel spectre  exploitation a paper discussing speculative probing in the context of the spectre vulnerability. 一篇讨论在spectre漏洞背景下的推测性探测的论文。 # exploiting uses of uninitialized stack variables in linux kernels to leak kernel pointers · paper record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: exploiting uses of uninitialized stack variables in linux kernels to leak kernel pointers resource_label: paper resource_type: paper resource_url: https://www.usenix.org/system/files/woot20-paper-cho.pdf parent_primary_url: https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"exploiting uses of uninitialized stack variables in linux kernels to leak kernel pointers\"](https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf) [slides] [[paper](https://www.usenix.org/system/files/woot20-paper-cho.pdf)] [[video](https://www.youtube.com/watch?v= no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d31c0a32864d3da1",
      "item_id": "bbc71107e6c1d97e",
      "slug": "2020-techniques-exploitation-exploiting-uses-of-uninitialized-stack-variables-in-linux-kernels-to-leak-kernel--3",
      "year": 2020,
      "title": "Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers · video",
      "item_title": "Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=uI377m9S0qs",
      "primary_url": "https://www.youtube.com/watch?v=uI377m9S0qs",
      "parent_primary_url": "https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2020-techniques-exploitation-exploiting-uses-of-uninitialized-stack-variables-in-linux-kernels-to-leak-kernel--3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=uI377m9S0qs parent_primary_url: https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers\"](https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf) [slides] [[paper](https://www.usenix.org/system/files/woot20-paper-cho.pdf)] [[video](https://www.youtube.com/watch?v=uI377m9S0qs)]",
      "link_types": [
        "slides",
        "paper",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/woot20-paper-cho.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=uI377m9S0qs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/woot20-paper-cho.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=uI377m9S0qs"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2020 Linux kernel Technique: Exploitation resource \"Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers · video\"; URL type: video.",
      "summary_zh": "2020 年 Linux 内核Technique: Exploitation资料：「Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers · video」；URL 类型：video。",
      "source_markdown": "[2020: \"Exploiting Uses of Uninitialized Stack Variables in Linux Kernels to Leak Kernel Pointers\"](https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf) [slides] [[paper](https://www.usenix.org/system/files/woot20-paper-cho.pdf)] [[video](https://www.youtube.com/watch?v=uI377m9S0qs)]",
      "search_text": "exploiting uses of uninitialized stack variables in linux kernels to leak kernel pointers · video exploiting uses of uninitialized stack variables in linux kernels to leak kernel pointers    techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=ui377m9s0qs techniques exploitation video  technique: exploitation 2020 linux kernel technique: exploitation resource \"exploiting uses of uninitialized stack variables in linux kernels to leak kernel pointers · video\"; url type: video. 2020 年 linux 内核technique: exploitation资料：「exploiting uses of uninitialized stack variables in linux kernels to leak kernel pointers · video」；url 类型：video。 # exploiting uses of uninitialized stack variables in linux kernels to leak kernel pointers · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: exploiting uses of uninitialized stack variables in linux kernels to leak kernel pointers resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=ui377m9s0qs parent_primary_url: https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"exploiting uses of uninitialized stack variables in linux kernels to leak kernel pointers\"](https://www.usenix.org/system/files/woot20-paper1-slides-cho.pdf) [slides] [[paper](https://www.usenix.org/system/files/woot20-paper-cho.pdf)] [[video](https://www.youtube.com/watch?v=ui377m9s0qs)] no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6308920ad49c7e5b",
      "item_id": "c10c6a9328418f27",
      "slug": "2020-techniques-exploitation-blindside-speculative-probing-hacking-blind-in-the-spectre-era-primary-c25fcbc2",
      "year": 2020,
      "title": "BlindSide: Speculative Probing: Hacking Blind in the Spectre Era",
      "item_title": "BlindSide: Speculative Probing: Hacking Blind in the Spectre Era",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.vusec.net/projects/blindside/",
      "primary_url": "https://www.vusec.net/projects/blindside/",
      "parent_primary_url": "https://www.vusec.net/projects/blindside/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2020-techniques-exploitation-blindside-speculative-probing-hacking-blind-in-the-spectre-era-primary-c25fcbc2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BlindSide: Speculative Probing: Hacking Blind in the Spectre Era record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: BlindSide: Speculative Probing: Hacking Blind in the Spectre Era resource_label: primary resource_type: paper resource_url: https://www.vusec.net/projects/blindside/ parent_primary_url: https://www.vusec.net/projects/blindside/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"BlindSide: Speculative Probing: Hacking Blind in the Spectre Era\"](https://www.vusec.net/projects/blindside/) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: fal",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.vusec.net/projects/blindside/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.vusec.net/projects/blindside/"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Exploitation",
        "paper"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Exploitation",
      "summary_en": "2020 Linux kernel Technique: Exploitation resource \"BlindSide: Speculative Probing: Hacking Blind in the Spectre Era\"; URL type: paper.",
      "summary_zh": "2020 年 Linux 内核Technique: Exploitation资料：「BlindSide: Speculative Probing: Hacking Blind in the Spectre Era」；URL 类型：paper。",
      "source_markdown": "[2020: \"BlindSide: Speculative Probing: Hacking Blind in the Spectre Era\"](https://www.vusec.net/projects/blindside/) [paper]",
      "search_text": "blindside: speculative probing: hacking blind in the spectre era blindside: speculative probing: hacking blind in the spectre era    techniques exploitation technique: exploitation primary paper https://www.vusec.net/projects/blindside/ techniques exploitation paper  technique: exploitation 2020 linux kernel technique: exploitation resource \"blindside: speculative probing: hacking blind in the spectre era\"; url type: paper. 2020 年 linux 内核technique: exploitation资料：「blindside: speculative probing: hacking blind in the spectre era」；url 类型：paper。 # blindside: speculative probing: hacking blind in the spectre era record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: blindside: speculative probing: hacking blind in the spectre era resource_label: primary resource_type: paper resource_url: https://www.vusec.net/projects/blindside/ parent_primary_url: https://www.vusec.net/projects/blindside/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"blindside: speculative probing: hacking blind in the spectre era\"](https://www.vusec.net/projects/blindside/) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: fal no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "086d0a777a8e6401",
      "item_id": "656b15623cc5772e",
      "slug": "2020-techniques-exploitation-linux-kernel-stack-smashing-primary-b6b9e65e",
      "year": 2020,
      "title": "Linux Kernel Stack Smashing",
      "item_title": "Linux Kernel Stack Smashing",
      "authors": [
        "Silvio Cesare"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.infosectcbr.com.au/2020/02/linux-kernel-stack-smashing.html?m=1",
      "primary_url": "https://blog.infosectcbr.com.au/2020/02/linux-kernel-stack-smashing.html?m=1",
      "parent_primary_url": "https://blog.infosectcbr.com.au/2020/02/linux-kernel-stack-smashing.html?m=1",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2020-techniques-exploitation-linux-kernel-stack-smashing-primary-b6b9e65e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Stack Smashing record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel Stack Smashing resource_label: primary resource_type: article resource_url: https://blog.infosectcbr.com.au/2020/02/linux-kernel-stack-smashing.html?m=1 parent_primary_url: https://blog.infosectcbr.com.au/2020/02/linux-kernel-stack-smashing.html?m=1 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"Linux Kernel Stack Smashing\" by Silvio Cesare](https://blog.infosectcbr.com.au/2020/02/linux-kernel-stack-smashing.html?m=1) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.infosectcbr.com.au/2020/02/linux-kernel-stack-smashing.html?m=1"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.infosectcbr.com.au/2020/02/linux-kernel-stack-smashing.html?m=1"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "stack_smashing",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This article discusses stack smashing vulnerabilities in the Linux kernel.",
      "summary_zh": "本文讨论了Linux内核中的栈溢出漏洞。",
      "source_markdown": "[2020: \"Linux Kernel Stack Smashing\" by Silvio Cesare](https://blog.infosectcbr.com.au/2020/02/linux-kernel-stack-smashing.html?m=1) [article]",
      "search_text": "linux kernel stack smashing linux kernel stack smashing silvio cesare   techniques exploitation technique: exploitation primary article https://blog.infosectcbr.com.au/2020/02/linux-kernel-stack-smashing.html?m=1 stack_smashing vulnerability  exploitation this article discusses stack smashing vulnerabilities in the linux kernel. 本文讨论了linux内核中的栈溢出漏洞。 # linux kernel stack smashing record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel stack smashing resource_label: primary resource_type: article resource_url: https://blog.infosectcbr.com.au/2020/02/linux-kernel-stack-smashing.html?m=1 parent_primary_url: https://blog.infosectcbr.com.au/2020/02/linux-kernel-stack-smashing.html?m=1 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"linux kernel stack smashing\" by silvio cesare](https://blog.infosectcbr.com.au/2020/02/linux-kernel-stack-smashing.html?m=1) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2b7777e6c7b62e97",
      "item_id": "7444742b77934232",
      "slug": "2020-techniques-exploitation-structures-that-can-be-used-in-kernel-exploits-primary-ed3914d6",
      "year": 2020,
      "title": "Structures that can be used in kernel exploits",
      "item_title": "Structures that can be used in kernel exploits",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ptr-yudai.hatenablog.com/entry/2020/03/16/165628",
      "primary_url": "https://ptr-yudai.hatenablog.com/entry/2020/03/16/165628",
      "parent_primary_url": "https://ptr-yudai.hatenablog.com/entry/2020/03/16/165628",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2020-techniques-exploitation-structures-that-can-be-used-in-kernel-exploits-primary-ed3914d6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Structures that can be used in kernel exploits record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Structures that can be used in kernel exploits resource_label: primary resource_type: article resource_url: https://ptr-yudai.hatenablog.com/entry/2020/03/16/165628 parent_primary_url: https://ptr-yudai.hatenablog.com/entry/2020/03/16/165628 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"Structures that can be used in kernel exploits\"](https://ptr-yudai.hatenablog.com/entry/2020/03/16/165628) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false ha",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ptr-yudai.hatenablog.com/entry/2020/03/16/165628"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ptr-yudai.hatenablog.com/entry/2020/03/16/165628"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_exploits",
        "structures"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The article outlines various structures that can be leveraged in kernel exploits.",
      "summary_zh": "本文概述了可以在内核利用中使用的各种结构。",
      "source_markdown": "[2020: \"Structures that can be used in kernel exploits\"](https://ptr-yudai.hatenablog.com/entry/2020/03/16/165628) [article]",
      "search_text": "structures that can be used in kernel exploits structures that can be used in kernel exploits    techniques exploitation technique: exploitation primary article https://ptr-yudai.hatenablog.com/entry/2020/03/16/165628 kernel_exploits structures  exploitation the article outlines various structures that can be leveraged in kernel exploits. 本文概述了可以在内核利用中使用的各种结构。 # structures that can be used in kernel exploits record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: structures that can be used in kernel exploits resource_label: primary resource_type: article resource_url: https://ptr-yudai.hatenablog.com/entry/2020/03/16/165628 parent_primary_url: https://ptr-yudai.hatenablog.com/entry/2020/03/16/165628 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2020: \"structures that can be used in kernel exploits\"](https://ptr-yudai.hatenablog.com/entry/2020/03/16/165628) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false ha no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ebc7d5b89021a620",
      "item_id": "8f381b10bac7c120",
      "slug": "2019-techniques-exploitation-the-route-to-root-container-escape-using-kernel-exploitation-primary-28524741",
      "year": 2019,
      "title": "The Route to Root: Container Escape Using Kernel Exploitation",
      "item_title": "The Route to Root: Container Escape Using Kernel Exploitation",
      "authors": [
        "Nimrod Stoler"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.cyberark.com/resources/threat-research-blog/the-route-to-root-container-escape-using-kernel-exploitation",
      "primary_url": "https://www.cyberark.com/resources/threat-research-blog/the-route-to-root-container-escape-using-kernel-exploitation",
      "parent_primary_url": "https://www.cyberark.com/resources/threat-research-blog/the-route-to-root-container-escape-using-kernel-exploitation",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2019-techniques-exploitation-the-route-to-root-container-escape-using-kernel-exploitation-primary-28524741.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Route to Root: Container Escape Using Kernel Exploitation record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: The Route to Root: Container Escape Using Kernel Exploitation resource_label: primary resource_type: article resource_url: https://www.cyberark.com/resources/threat-research-blog/the-route-to-root-container-escape-using-kernel-exploitation parent_primary_url: https://www.cyberark.com/resources/threat-research-blog/the-route-to-root-container-escape-using-kernel-exploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"The Route to Root: Container Escape Using Kernel Exploitation\" by Nimrod Stoler](https://www.cyberark.com/resources/threat-research-blog/the-route-to-root-container-escape-using-kernel-exploitation) [article] cves: none andr",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.cyberark.com/resources/threat-research-blog/the-route-to-root-container-escape-using-kernel-exploitation"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.cyberark.com/resources/threat-research-blog/the-route-to-root-container-escape-using-kernel-exploitation"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "container_escape",
        "kernel_exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This article explores container escape techniques using kernel exploitation.",
      "summary_zh": "本文探讨了使用内核利用进行容器逃逸的技术。",
      "source_markdown": "[2019: \"The Route to Root: Container Escape Using Kernel Exploitation\" by Nimrod Stoler](https://www.cyberark.com/resources/threat-research-blog/the-route-to-root-container-escape-using-kernel-exploitation) [article]",
      "search_text": "the route to root: container escape using kernel exploitation the route to root: container escape using kernel exploitation nimrod stoler   techniques exploitation technique: exploitation primary article https://www.cyberark.com/resources/threat-research-blog/the-route-to-root-container-escape-using-kernel-exploitation container_escape kernel_exploitation  exploitation this article explores container escape techniques using kernel exploitation. 本文探讨了使用内核利用进行容器逃逸的技术。 # the route to root: container escape using kernel exploitation record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: the route to root: container escape using kernel exploitation resource_label: primary resource_type: article resource_url: https://www.cyberark.com/resources/threat-research-blog/the-route-to-root-container-escape-using-kernel-exploitation parent_primary_url: https://www.cyberark.com/resources/threat-research-blog/the-route-to-root-container-escape-using-kernel-exploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"the route to root: container escape using kernel exploitation\" by nimrod stoler](https://www.cyberark.com/resources/threat-research-blog/the-route-to-root-container-escape-using-kernel-exploitation) [article] cves: none andr no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "c889e67acabb2539",
      "item_id": "a7f32bac61ba8407",
      "slug": "2019-techniques-exploitation-linux-kernel-the-rop-exploit-of-stack-overflow-in-android-kernel-primary-317d6e09",
      "year": 2019,
      "title": "Linux Kernel: the ROP Exploit of Stack Overflow in Android Kernel",
      "item_title": "Linux Kernel: the ROP Exploit of Stack Overflow in Android Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://medium.com/@knownsec404team/linux-kernel-the-rop-exploit-of-stack-overflow-in-android-kernel-87aa8eda770d",
      "primary_url": "https://medium.com/@knownsec404team/linux-kernel-the-rop-exploit-of-stack-overflow-in-android-kernel-87aa8eda770d",
      "parent_primary_url": "https://medium.com/@knownsec404team/linux-kernel-the-rop-exploit-of-stack-overflow-in-android-kernel-87aa8eda770d",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2019-techniques-exploitation-linux-kernel-the-rop-exploit-of-stack-overflow-in-android-kernel-primary-317d6e09.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel: the ROP Exploit of Stack Overflow in Android Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel: the ROP Exploit of Stack Overflow in Android Kernel resource_label: primary resource_type: article resource_url: https://medium.com/@knownsec404team/linux-kernel-the-rop-exploit-of-stack-overflow-in-android-kernel-87aa8eda770d parent_primary_url: https://medium.com/@knownsec404team/linux-kernel-the-rop-exploit-of-stack-overflow-in-android-kernel-87aa8eda770d source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"Linux Kernel: the ROP Exploit of Stack Overflow in Android Kernel\"](https://medium.com/@knownsec404team/linux-kernel-the-rop-exploit-of-stack-overflow-in-android-kernel-87aa8eda770d) [article] cves: none android_impact_sta",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://medium.com/@knownsec404team/linux-kernel-the-rop-exploit-of-stack-overflow-in-android-kernel-87aa8eda770d"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://medium.com/@knownsec404team/linux-kernel-the-rop-exploit-of-stack-overflow-in-android-kernel-87aa8eda770d"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://medium.com/@knownsec404team/linux-kernel-the-rop-exploit-of-stack-overflow-in-android-kernel-87aa8eda770d"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "ROP",
        "stack_overflow"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The article details a ROP exploit targeting stack overflow vulnerabilities in the Android kernel.",
      "summary_zh": "本文详细介绍了针对Android内核中栈溢出漏洞的ROP利用。",
      "source_markdown": "[2019: \"Linux Kernel: the ROP Exploit of Stack Overflow in Android Kernel\"](https://medium.com/@knownsec404team/linux-kernel-the-rop-exploit-of-stack-overflow-in-android-kernel-87aa8eda770d) [article]",
      "search_text": "linux kernel: the rop exploit of stack overflow in android kernel linux kernel: the rop exploit of stack overflow in android kernel    techniques exploitation technique: exploitation primary article https://medium.com/@knownsec404team/linux-kernel-the-rop-exploit-of-stack-overflow-in-android-kernel-87aa8eda770d rop stack_overflow  exploitation the article details a rop exploit targeting stack overflow vulnerabilities in the android kernel. 本文详细介绍了针对android内核中栈溢出漏洞的rop利用。 # linux kernel: the rop exploit of stack overflow in android kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel: the rop exploit of stack overflow in android kernel resource_label: primary resource_type: article resource_url: https://medium.com/@knownsec404team/linux-kernel-the-rop-exploit-of-stack-overflow-in-android-kernel-87aa8eda770d parent_primary_url: https://medium.com/@knownsec404team/linux-kernel-the-rop-exploit-of-stack-overflow-in-android-kernel-87aa8eda770d source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"linux kernel: the rop exploit of stack overflow in android kernel\"](https://medium.com/@knownsec404team/linux-kernel-the-rop-exploit-of-stack-overflow-in-android-kernel-87aa8eda770d) [article] cves: none android_impact_sta unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "fa8871906c8d79fd",
      "item_id": "57af783baf683f07",
      "slug": "2019-techniques-exploitation-hands-off-and-putting-slab-slub-feng-shui-in-blackbox-primary-7593d88a",
      "year": 2019,
      "title": "Hands Off and Putting SLAB/SLUB Feng Shui in Blackbox",
      "item_title": "Hands Off and Putting SLAB/SLUB Feng Shui in Blackbox",
      "authors": [
        "Yueqi (Lewis) Chen at Black Hat Europe"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/eu-19/Wednesday/eu-19-Chen-Hands-Off-And-Putting-SLAB-SLUB-Feng-Shui-In-A-Blackbox.pdf",
      "primary_url": "https://i.blackhat.com/eu-19/Wednesday/eu-19-Chen-Hands-Off-And-Putting-SLAB-SLUB-Feng-Shui-In-A-Blackbox.pdf",
      "parent_primary_url": "https://i.blackhat.com/eu-19/Wednesday/eu-19-Chen-Hands-Off-And-Putting-SLAB-SLUB-Feng-Shui-In-A-Blackbox.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2019-techniques-exploitation-hands-off-and-putting-slab-slub-feng-shui-in-blackbox-primary-7593d88a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Hands Off and Putting SLAB/SLUB Feng Shui in Blackbox record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Hands Off and Putting SLAB/SLUB Feng Shui in Blackbox resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/eu-19/Wednesday/eu-19-Chen-Hands-Off-And-Putting-SLAB-SLUB-Feng-Shui-In-A-Blackbox.pdf parent_primary_url: https://i.blackhat.com/eu-19/Wednesday/eu-19-Chen-Hands-Off-And-Putting-SLAB-SLUB-Feng-Shui-In-A-Blackbox.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"Hands Off and Putting SLAB/SLUB Feng Shui in Blackbox\" by Yueqi (Lewis) Chen at Black Hat Europe](https://i.blackhat.com/eu-19/Wednesday/eu-19-Chen-Hands-Off-And-Putting-SLAB-SLUB-Feng-Shui-In-A-Blackbox.pdf) [slides] [[code](https://www.dropbox.com/sh/2k",
      "link_types": [
        "slides",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/eu-19/Wednesday/eu-19-Chen-Hands-Off-And-Putting-SLAB-SLUB-Feng-Shui-In-A-Blackbox.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://www.dropbox.com/sh/2kwcwqb8rjro80j/AAC8QBCIhcCylNUDLUd1OZCZa?dl=0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/eu-19/Wednesday/eu-19-Chen-Hands-Off-And-Putting-SLAB-SLUB-Feng-Shui-In-A-Blackbox.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://www.dropbox.com/sh/2kwcwqb8rjro80j/AAC8QBCIhcCylNUDLUd1OZCZa?dl=0"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://www.dropbox.com/sh/2kwcwqb8rjro80j/AAC8QBCIhcCylNUDLUd1OZCZa?dl=0"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "SLAB",
        "SLUB",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This presentation discusses SLAB/SLUB feng shui techniques for exploitation.",
      "summary_zh": "本演示讨论了用于利用的SLAB/SLUB风水技术。",
      "source_markdown": "[2019: \"Hands Off and Putting SLAB/SLUB Feng Shui in Blackbox\" by Yueqi (Lewis) Chen at Black Hat Europe](https://i.blackhat.com/eu-19/Wednesday/eu-19-Chen-Hands-Off-And-Putting-SLAB-SLUB-Feng-Shui-In-A-Blackbox.pdf) [slides] [[code](https://www.dropbox.com/sh/2kwcwqb8rjro80j/AAC8QBCIhcCylNUDLUd1OZCZa?dl=0)]",
      "search_text": "hands off and putting slab/slub feng shui in blackbox hands off and putting slab/slub feng shui in blackbox yueqi (lewis) chen at black hat europe   techniques exploitation technique: exploitation primary slides https://i.blackhat.com/eu-19/wednesday/eu-19-chen-hands-off-and-putting-slab-slub-feng-shui-in-a-blackbox.pdf slab slub exploitation  exploitation this presentation discusses slab/slub feng shui techniques for exploitation. 本演示讨论了用于利用的slab/slub风水技术。 # hands off and putting slab/slub feng shui in blackbox record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: hands off and putting slab/slub feng shui in blackbox resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/eu-19/wednesday/eu-19-chen-hands-off-and-putting-slab-slub-feng-shui-in-a-blackbox.pdf parent_primary_url: https://i.blackhat.com/eu-19/wednesday/eu-19-chen-hands-off-and-putting-slab-slub-feng-shui-in-a-blackbox.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"hands off and putting slab/slub feng shui in blackbox\" by yueqi (lewis) chen at black hat europe](https://i.blackhat.com/eu-19/wednesday/eu-19-chen-hands-off-and-putting-slab-slub-feng-shui-in-a-blackbox.pdf) [slides] [[code](https://www.dropbox.com/sh/2k no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "645de64c35ec20ee",
      "item_id": "57af783baf683f07",
      "slug": "2019-techniques-exploitation-hands-off-and-putting-slab-slub-feng-shui-in-blackbox-code-4d97715f",
      "year": 2019,
      "title": "Hands Off and Putting SLAB/SLUB Feng Shui in Blackbox · code",
      "item_title": "Hands Off and Putting SLAB/SLUB Feng Shui in Blackbox",
      "authors": [
        "Yueqi (Lewis) Chen at Black Hat Europe"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://www.dropbox.com/sh/2kwcwqb8rjro80j/AAC8QBCIhcCylNUDLUd1OZCZa?dl=0",
      "primary_url": "https://www.dropbox.com/sh/2kwcwqb8rjro80j/AAC8QBCIhcCylNUDLUd1OZCZa?dl=0",
      "parent_primary_url": "https://i.blackhat.com/eu-19/Wednesday/eu-19-Chen-Hands-Off-And-Putting-SLAB-SLUB-Feng-Shui-In-A-Blackbox.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2019-techniques-exploitation-hands-off-and-putting-slab-slub-feng-shui-in-blackbox-code-4d97715f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Hands Off and Putting SLAB/SLUB Feng Shui in Blackbox · code record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Hands Off and Putting SLAB/SLUB Feng Shui in Blackbox resource_label: code resource_type: code resource_url: https://www.dropbox.com/sh/2kwcwqb8rjro80j/AAC8QBCIhcCylNUDLUd1OZCZa?dl=0 parent_primary_url: https://i.blackhat.com/eu-19/Wednesday/eu-19-Chen-Hands-Off-And-Putting-SLAB-SLUB-Feng-Shui-In-A-Blackbox.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"Hands Off and Putting SLAB/SLUB Feng Shui in Blackbox\" by Yueqi (Lewis) Chen at Black Hat Europe](https://i.blackhat.com/eu-19/Wednesday/eu-19-Chen-Hands-Off-And-Putting-SLAB-SLUB-Feng-Shui-In-A-Blackbox.pdf) [slides] [[code](https://www.dropbox.com/sh/2kwcwqb8rjro80j/AAC8QBCIhcCylNUDLUd1",
      "link_types": [
        "slides",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/eu-19/Wednesday/eu-19-Chen-Hands-Off-And-Putting-SLAB-SLUB-Feng-Shui-In-A-Blackbox.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://www.dropbox.com/sh/2kwcwqb8rjro80j/AAC8QBCIhcCylNUDLUd1OZCZa?dl=0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/eu-19/Wednesday/eu-19-Chen-Hands-Off-And-Putting-SLAB-SLUB-Feng-Shui-In-A-Blackbox.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://www.dropbox.com/sh/2kwcwqb8rjro80j/AAC8QBCIhcCylNUDLUd1OZCZa?dl=0"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://www.dropbox.com/sh/2kwcwqb8rjro80j/AAC8QBCIhcCylNUDLUd1OZCZa?dl=0"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "SLAB",
        "SLUB",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The code related to SLAB/SLUB feng shui techniques is provided for exploitation.",
      "summary_zh": "提供了与SLAB/SLUB风水技术相关的代码以供利用。",
      "source_markdown": "[2019: \"Hands Off and Putting SLAB/SLUB Feng Shui in Blackbox\" by Yueqi (Lewis) Chen at Black Hat Europe](https://i.blackhat.com/eu-19/Wednesday/eu-19-Chen-Hands-Off-And-Putting-SLAB-SLUB-Feng-Shui-In-A-Blackbox.pdf) [slides] [[code](https://www.dropbox.com/sh/2kwcwqb8rjro80j/AAC8QBCIhcCylNUDLUd1OZCZa?dl=0)]",
      "search_text": "hands off and putting slab/slub feng shui in blackbox · code hands off and putting slab/slub feng shui in blackbox yueqi (lewis) chen at black hat europe   techniques exploitation technique: exploitation code code https://www.dropbox.com/sh/2kwcwqb8rjro80j/aac8qbcihccylnudlud1ozcza?dl=0 slab slub code  exploitation the code related to slab/slub feng shui techniques is provided for exploitation. 提供了与slab/slub风水技术相关的代码以供利用。 # hands off and putting slab/slub feng shui in blackbox · code record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: hands off and putting slab/slub feng shui in blackbox resource_label: code resource_type: code resource_url: https://www.dropbox.com/sh/2kwcwqb8rjro80j/aac8qbcihccylnudlud1ozcza?dl=0 parent_primary_url: https://i.blackhat.com/eu-19/wednesday/eu-19-chen-hands-off-and-putting-slab-slub-feng-shui-in-a-blackbox.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"hands off and putting slab/slub feng shui in blackbox\" by yueqi (lewis) chen at black hat europe](https://i.blackhat.com/eu-19/wednesday/eu-19-chen-hands-off-and-putting-slab-slub-feng-shui-in-a-blackbox.pdf) [slides] [[code](https://www.dropbox.com/sh/2kwcwqb8rjro80j/aac8qbcihccylnudlud1 no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "4e77bd6f6a2f5b69",
      "item_id": "d95206481342f7e8",
      "slug": "2019-techniques-exploitation-slake-facilitating-slab-manipulation-for-exploiting-vulnerabilities-in-the-linux-",
      "year": 2019,
      "title": "SLAKE: Facilitating Slab Manipulation for Exploiting Vulnerabilities in the Linux Kernel",
      "item_title": "SLAKE: Facilitating Slab Manipulation for Exploiting Vulnerabilities in the Linux Kernel",
      "authors": [
        "Yueqi (Lewis) Chen",
        "Xinyu Xing"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "http://personal.psu.edu/yxc431/publications/SLAKE_Slides.pdf",
      "primary_url": "http://personal.psu.edu/yxc431/publications/SLAKE_Slides.pdf",
      "parent_primary_url": "http://personal.psu.edu/yxc431/publications/SLAKE_Slides.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2019-techniques-exploitation-slake-facilitating-slab-manipulation-for-exploiting-vulnerabilities-in-the-linux-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SLAKE: Facilitating Slab Manipulation for Exploiting Vulnerabilities in the Linux Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: SLAKE: Facilitating Slab Manipulation for Exploiting Vulnerabilities in the Linux Kernel resource_label: primary resource_type: slides resource_url: http://personal.psu.edu/yxc431/publications/SLAKE_Slides.pdf parent_primary_url: http://personal.psu.edu/yxc431/publications/SLAKE_Slides.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"SLAKE: Facilitating Slab Manipulation for Exploiting Vulnerabilities in the Linux Kernel\" by Yueqi (Lewis) Chen and Xinyu Xing](http://personal.psu.edu/yxc431/publications/SLAKE_Slides.pdf) [slides] [[paper](http://personal.psu.edu/yxc431/publications/SLAKE.pdf)] cves: none android_",
      "link_types": [
        "slides",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "http://personal.psu.edu/yxc431/publications/SLAKE_Slides.pdf"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "http://personal.psu.edu/yxc431/publications/SLAKE.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "http://personal.psu.edu/yxc431/publications/SLAKE.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "http://personal.psu.edu/yxc431/publications/SLAKE_Slides.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "SLAKE",
        "slab_manipulation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This presentation introduces SLAKE, a tool for slab manipulation in kernel vulnerabilities.",
      "summary_zh": "本演示介绍了SLAKE，一个用于内核漏洞的slab操控工具。",
      "source_markdown": "[2019: \"SLAKE: Facilitating Slab Manipulation for Exploiting Vulnerabilities in the Linux Kernel\" by Yueqi (Lewis) Chen and Xinyu Xing](http://personal.psu.edu/yxc431/publications/SLAKE_Slides.pdf) [slides] [[paper](http://personal.psu.edu/yxc431/publications/SLAKE.pdf)]",
      "search_text": "slake: facilitating slab manipulation for exploiting vulnerabilities in the linux kernel slake: facilitating slab manipulation for exploiting vulnerabilities in the linux kernel yueqi (lewis) chen xinyu xing   techniques exploitation technique: exploitation primary slides http://personal.psu.edu/yxc431/publications/slake_slides.pdf slake slab_manipulation  exploitation this presentation introduces slake, a tool for slab manipulation in kernel vulnerabilities. 本演示介绍了slake，一个用于内核漏洞的slab操控工具。 # slake: facilitating slab manipulation for exploiting vulnerabilities in the linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: slake: facilitating slab manipulation for exploiting vulnerabilities in the linux kernel resource_label: primary resource_type: slides resource_url: http://personal.psu.edu/yxc431/publications/slake_slides.pdf parent_primary_url: http://personal.psu.edu/yxc431/publications/slake_slides.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"slake: facilitating slab manipulation for exploiting vulnerabilities in the linux kernel\" by yueqi (lewis) chen and xinyu xing](http://personal.psu.edu/yxc431/publications/slake_slides.pdf) [slides] [[paper](http://personal.psu.edu/yxc431/publications/slake.pdf)] cves: none android_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d93f961ab13d2d7d",
      "item_id": "d95206481342f7e8",
      "slug": "2019-techniques-exploitation-slake-facilitating-slab-manipulation-for-exploiting-vulnerabilities-in-the-linux--2",
      "year": 2019,
      "title": "SLAKE: Facilitating Slab Manipulation for Exploiting Vulnerabilities in the Linux Kernel · paper",
      "item_title": "SLAKE: Facilitating Slab Manipulation for Exploiting Vulnerabilities in the Linux Kernel",
      "authors": [
        "Yueqi (Lewis) Chen",
        "Xinyu Xing"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "paper",
      "resource_type": "paper",
      "resource_url": "http://personal.psu.edu/yxc431/publications/SLAKE.pdf",
      "primary_url": "http://personal.psu.edu/yxc431/publications/SLAKE.pdf",
      "parent_primary_url": "http://personal.psu.edu/yxc431/publications/SLAKE_Slides.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2019-techniques-exploitation-slake-facilitating-slab-manipulation-for-exploiting-vulnerabilities-in-the-linux--2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SLAKE: Facilitating Slab Manipulation for Exploiting Vulnerabilities in the Linux Kernel · paper record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: SLAKE: Facilitating Slab Manipulation for Exploiting Vulnerabilities in the Linux Kernel resource_label: paper resource_type: paper resource_url: http://personal.psu.edu/yxc431/publications/SLAKE.pdf parent_primary_url: http://personal.psu.edu/yxc431/publications/SLAKE_Slides.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"SLAKE: Facilitating Slab Manipulation for Exploiting Vulnerabilities in the Linux Kernel\" by Yueqi (Lewis) Chen and Xinyu Xing](http://personal.psu.edu/yxc431/publications/SLAKE_Slides.pdf) [slides] [[paper](http://personal.psu.edu/yxc431/publications/SLAKE.pdf)] cves: none android_im",
      "link_types": [
        "slides",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "http://personal.psu.edu/yxc431/publications/SLAKE_Slides.pdf"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "http://personal.psu.edu/yxc431/publications/SLAKE.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "http://personal.psu.edu/yxc431/publications/SLAKE.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "http://personal.psu.edu/yxc431/publications/SLAKE_Slides.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "SLAKE",
        "vulnerability_exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The paper discusses SLAKE, a method for exploiting vulnerabilities in the Linux kernel.",
      "summary_zh": "本文讨论了SLAKE，一种利用Linux内核漏洞的方法。",
      "source_markdown": "[2019: \"SLAKE: Facilitating Slab Manipulation for Exploiting Vulnerabilities in the Linux Kernel\" by Yueqi (Lewis) Chen and Xinyu Xing](http://personal.psu.edu/yxc431/publications/SLAKE_Slides.pdf) [slides] [[paper](http://personal.psu.edu/yxc431/publications/SLAKE.pdf)]",
      "search_text": "slake: facilitating slab manipulation for exploiting vulnerabilities in the linux kernel · paper slake: facilitating slab manipulation for exploiting vulnerabilities in the linux kernel yueqi (lewis) chen xinyu xing   techniques exploitation technique: exploitation paper paper http://personal.psu.edu/yxc431/publications/slake.pdf slake vulnerability_exploitation  exploitation the paper discusses slake, a method for exploiting vulnerabilities in the linux kernel. 本文讨论了slake，一种利用linux内核漏洞的方法。 # slake: facilitating slab manipulation for exploiting vulnerabilities in the linux kernel · paper record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: slake: facilitating slab manipulation for exploiting vulnerabilities in the linux kernel resource_label: paper resource_type: paper resource_url: http://personal.psu.edu/yxc431/publications/slake.pdf parent_primary_url: http://personal.psu.edu/yxc431/publications/slake_slides.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"slake: facilitating slab manipulation for exploiting vulnerabilities in the linux kernel\" by yueqi (lewis) chen and xinyu xing](http://personal.psu.edu/yxc431/publications/slake_slides.pdf) [slides] [[paper](http://personal.psu.edu/yxc431/publications/slake.pdf)] cves: none android_im no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b37c4078d851aceb",
      "item_id": "d5437c89c069c498",
      "slug": "2019-techniques-exploitation-exploiting-race-conditions-using-the-scheduler-primary-00f84135",
      "year": 2019,
      "title": "Exploiting Race Conditions Using the Scheduler",
      "item_title": "Exploiting Race Conditions Using the Scheduler",
      "authors": [
        "Jann Horn at Linux Security Summit EU"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://static.sched.com/hosted_files/lsseu2019/04/LSSEU2019%20-%20Exploiting%20race%20conditions%20on%20Linux.pdf",
      "primary_url": "https://static.sched.com/hosted_files/lsseu2019/04/LSSEU2019%20-%20Exploiting%20race%20conditions%20on%20Linux.pdf",
      "parent_primary_url": "https://static.sched.com/hosted_files/lsseu2019/04/LSSEU2019%20-%20Exploiting%20race%20conditions%20on%20Linux.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2019-techniques-exploitation-exploiting-race-conditions-using-the-scheduler-primary-00f84135.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting Race Conditions Using the Scheduler record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Exploiting Race Conditions Using the Scheduler resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/lsseu2019/04/LSSEU2019%20-%20Exploiting%20race%20conditions%20on%20Linux.pdf parent_primary_url: https://static.sched.com/hosted_files/lsseu2019/04/LSSEU2019%20-%20Exploiting%20race%20conditions%20on%20Linux.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"Exploiting Race Conditions Using the Scheduler\" by Jann Horn at Linux Security Summit EU](https://static.sched.com/hosted_files/lsseu2019/04/LSSEU2019%20-%20Exploiting%20race%20conditions%20on%20Linux.pdf) [slides] [[video](https://www.youtube.com/watch?v=MIJ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lsseu2019/04/LSSEU2019%20-%20Exploiting%20race%20conditions%20on%20Linux.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=MIJL5wLUtKE"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lsseu2019/04/LSSEU2019%20-%20Exploiting%20race%20conditions%20on%20Linux.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=MIJL5wLUtKE"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "race_conditions",
        "scheduler"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This presentation covers exploiting race conditions using the Linux scheduler.",
      "summary_zh": "本演示涵盖了使用Linux调度程序利用竞争条件。",
      "source_markdown": "[2019: \"Exploiting Race Conditions Using the Scheduler\" by Jann Horn at Linux Security Summit EU](https://static.sched.com/hosted_files/lsseu2019/04/LSSEU2019%20-%20Exploiting%20race%20conditions%20on%20Linux.pdf) [slides] [[video](https://www.youtube.com/watch?v=MIJL5wLUtKE)]",
      "search_text": "exploiting race conditions using the scheduler exploiting race conditions using the scheduler jann horn at linux security summit eu   techniques exploitation technique: exploitation primary slides https://static.sched.com/hosted_files/lsseu2019/04/lsseu2019%20-%20exploiting%20race%20conditions%20on%20linux.pdf race_conditions scheduler  exploitation this presentation covers exploiting race conditions using the linux scheduler. 本演示涵盖了使用linux调度程序利用竞争条件。 # exploiting race conditions using the scheduler record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: exploiting race conditions using the scheduler resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/lsseu2019/04/lsseu2019%20-%20exploiting%20race%20conditions%20on%20linux.pdf parent_primary_url: https://static.sched.com/hosted_files/lsseu2019/04/lsseu2019%20-%20exploiting%20race%20conditions%20on%20linux.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"exploiting race conditions using the scheduler\" by jann horn at linux security summit eu](https://static.sched.com/hosted_files/lsseu2019/04/lsseu2019%20-%20exploiting%20race%20conditions%20on%20linux.pdf) [slides] [[video](https://www.youtube.com/watch?v=mij no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "13f3dd6dc3401713",
      "item_id": "d5437c89c069c498",
      "slug": "2019-techniques-exploitation-exploiting-race-conditions-using-the-scheduler-video-1509bee5",
      "year": 2019,
      "title": "Exploiting Race Conditions Using the Scheduler · video",
      "item_title": "Exploiting Race Conditions Using the Scheduler",
      "authors": [
        "Jann Horn at Linux Security Summit EU"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=MIJL5wLUtKE",
      "primary_url": "https://www.youtube.com/watch?v=MIJL5wLUtKE",
      "parent_primary_url": "https://static.sched.com/hosted_files/lsseu2019/04/LSSEU2019%20-%20Exploiting%20race%20conditions%20on%20Linux.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2019-techniques-exploitation-exploiting-race-conditions-using-the-scheduler-video-1509bee5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting Race Conditions Using the Scheduler · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Exploiting Race Conditions Using the Scheduler resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=MIJL5wLUtKE parent_primary_url: https://static.sched.com/hosted_files/lsseu2019/04/LSSEU2019%20-%20Exploiting%20race%20conditions%20on%20Linux.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"Exploiting Race Conditions Using the Scheduler\" by Jann Horn at Linux Security Summit EU](https://static.sched.com/hosted_files/lsseu2019/04/LSSEU2019%20-%20Exploiting%20race%20conditions%20on%20Linux.pdf) [slides] [[video](https://www.youtube.com/watch?v=MIJL5wLUtKE)] cves: none android_impact_status: no android_impact_rea",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lsseu2019/04/LSSEU2019%20-%20Exploiting%20race%20conditions%20on%20Linux.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=MIJL5wLUtKE"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lsseu2019/04/LSSEU2019%20-%20Exploiting%20race%20conditions%20on%20Linux.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=MIJL5wLUtKE"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "race_conditions",
        "scheduler"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The video discusses exploiting race conditions using the scheduler in Linux.",
      "summary_zh": "该视频讨论了如何在Linux中利用调度程序的竞争条件。",
      "source_markdown": "[2019: \"Exploiting Race Conditions Using the Scheduler\" by Jann Horn at Linux Security Summit EU](https://static.sched.com/hosted_files/lsseu2019/04/LSSEU2019%20-%20Exploiting%20race%20conditions%20on%20Linux.pdf) [slides] [[video](https://www.youtube.com/watch?v=MIJL5wLUtKE)]",
      "search_text": "exploiting race conditions using the scheduler · video exploiting race conditions using the scheduler jann horn at linux security summit eu   techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=mijl5wlutke race_conditions scheduler  exploitation the video discusses exploiting race conditions using the scheduler in linux. 该视频讨论了如何在linux中利用调度程序的竞争条件。 # exploiting race conditions using the scheduler · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: exploiting race conditions using the scheduler resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=mijl5wlutke parent_primary_url: https://static.sched.com/hosted_files/lsseu2019/04/lsseu2019%20-%20exploiting%20race%20conditions%20on%20linux.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"exploiting race conditions using the scheduler\" by jann horn at linux security summit eu](https://static.sched.com/hosted_files/lsseu2019/04/lsseu2019%20-%20exploiting%20race%20conditions%20on%20linux.pdf) [slides] [[video](https://www.youtube.com/watch?v=mijl5wlutke)] cves: none android_impact_status: no android_impact_rea no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "df7588fb092d339a",
      "item_id": "95122cad63456292",
      "slug": "2019-techniques-exploitation-kepler-facilitating-control-flow-hijacking-primitive-evaluation-for-linux-kernel-",
      "year": 2019,
      "title": "Kepler: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities",
      "item_title": "Kepler: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf",
      "primary_url": "https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf",
      "parent_primary_url": "https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2019-techniques-exploitation-kepler-facilitating-control-flow-hijacking-primitive-evaluation-for-linux-kernel-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kepler: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Kepler: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities resource_label: primary resource_type: slides resource_url: https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf parent_primary_url: https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"Kepler: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities\"](https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf) [sli",
      "link_types": [
        "slides",
        "video",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=4b_GbFs5XZI"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec19-wu-wei.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec19-wu-wei.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=4b_GbFs5XZI"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Kepler",
        "control_flow_hijacking"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This presentation introduces Kepler, a tool for evaluating control-flow hijacking primitives.",
      "summary_zh": "本演示介绍了Kepler，一个用于评估控制流劫持原语的工具。",
      "source_markdown": "[2019: \"Kepler: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities\"](https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf) [slides] [[video](https://www.youtube.com/watch?v=4b_GbFs5XZI)] [[paper](https://www.usenix.org/system/files/sec19-wu-wei.pdf)]",
      "search_text": "kepler: facilitating control-flow hijacking primitive evaluation for linux kernel vulnerabilities kepler: facilitating control-flow hijacking primitive evaluation for linux kernel vulnerabilities    techniques exploitation technique: exploitation primary slides https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf kepler control_flow_hijacking  exploitation this presentation introduces kepler, a tool for evaluating control-flow hijacking primitives. 本演示介绍了kepler，一个用于评估控制流劫持原语的工具。 # kepler: facilitating control-flow hijacking primitive evaluation for linux kernel vulnerabilities record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: kepler: facilitating control-flow hijacking primitive evaluation for linux kernel vulnerabilities resource_label: primary resource_type: slides resource_url: https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf parent_primary_url: https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"kepler: facilitating control-flow hijacking primitive evaluation for linux kernel vulnerabilities\"](https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf) [sli no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b97f6be7ad76c7de",
      "item_id": "95122cad63456292",
      "slug": "2019-techniques-exploitation-kepler-facilitating-control-flow-hijacking-primitive-evaluation-for-linux-kernel--2",
      "year": 2019,
      "title": "Kepler: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities · video",
      "item_title": "Kepler: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=4b_GbFs5XZI",
      "primary_url": "https://www.youtube.com/watch?v=4b_GbFs5XZI",
      "parent_primary_url": "https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2019-techniques-exploitation-kepler-facilitating-control-flow-hijacking-primitive-evaluation-for-linux-kernel--2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kepler: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Kepler: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=4b_GbFs5XZI parent_primary_url: https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"Kepler: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities\"](https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf) [slides] [[video](https://www.youtube.com/watch?v",
      "link_types": [
        "slides",
        "video",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=4b_GbFs5XZI"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec19-wu-wei.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec19-wu-wei.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=4b_GbFs5XZI"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Kepler",
        "control_flow_hijacking"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The video presents Kepler, focusing on control-flow hijacking in Linux kernel vulnerabilities.",
      "summary_zh": "该视频介绍了Kepler，重点关注Linux内核漏洞中的控制流劫持。",
      "source_markdown": "[2019: \"Kepler: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities\"](https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf) [slides] [[video](https://www.youtube.com/watch?v=4b_GbFs5XZI)] [[paper](https://www.usenix.org/system/files/sec19-wu-wei.pdf)]",
      "search_text": "kepler: facilitating control-flow hijacking primitive evaluation for linux kernel vulnerabilities · video kepler: facilitating control-flow hijacking primitive evaluation for linux kernel vulnerabilities    techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=4b_gbfs5xzi kepler control_flow_hijacking  exploitation the video presents kepler, focusing on control-flow hijacking in linux kernel vulnerabilities. 该视频介绍了kepler，重点关注linux内核漏洞中的控制流劫持。 # kepler: facilitating control-flow hijacking primitive evaluation for linux kernel vulnerabilities · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: kepler: facilitating control-flow hijacking primitive evaluation for linux kernel vulnerabilities resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=4b_gbfs5xzi parent_primary_url: https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"kepler: facilitating control-flow hijacking primitive evaluation for linux kernel vulnerabilities\"](https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf) [slides] [[video](https://www.youtube.com/watch?v no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "afaf5e443b853fec",
      "item_id": "95122cad63456292",
      "slug": "2019-techniques-exploitation-kepler-facilitating-control-flow-hijacking-primitive-evaluation-for-linux-kernel--3",
      "year": 2019,
      "title": "Kepler: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities · paper",
      "item_title": "Kepler: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "paper",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec19-wu-wei.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec19-wu-wei.pdf",
      "parent_primary_url": "https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2019-techniques-exploitation-kepler-facilitating-control-flow-hijacking-primitive-evaluation-for-linux-kernel--3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kepler: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities · paper record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Kepler: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities resource_label: paper resource_type: paper resource_url: https://www.usenix.org/system/files/sec19-wu-wei.pdf parent_primary_url: https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"Kepler: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities\"](https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf) [slides] [[video](https://www.youtube.co",
      "link_types": [
        "slides",
        "video",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=4b_GbFs5XZI"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec19-wu-wei.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec19-wu-wei.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=4b_GbFs5XZI"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Kepler",
        "control_flow_hijacking"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The paper discusses Kepler and its role in evaluating control-flow hijacking primitives.",
      "summary_zh": "本文讨论了Kepler及其在评估控制流劫持原语中的作用。",
      "source_markdown": "[2019: \"Kepler: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities\"](https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf) [slides] [[video](https://www.youtube.com/watch?v=4b_GbFs5XZI)] [[paper](https://www.usenix.org/system/files/sec19-wu-wei.pdf)]",
      "search_text": "kepler: facilitating control-flow hijacking primitive evaluation for linux kernel vulnerabilities · paper kepler: facilitating control-flow hijacking primitive evaluation for linux kernel vulnerabilities    techniques exploitation technique: exploitation paper paper https://www.usenix.org/system/files/sec19-wu-wei.pdf kepler control_flow_hijacking  exploitation the paper discusses kepler and its role in evaluating control-flow hijacking primitives. 本文讨论了kepler及其在评估控制流劫持原语中的作用。 # kepler: facilitating control-flow hijacking primitive evaluation for linux kernel vulnerabilities · paper record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: kepler: facilitating control-flow hijacking primitive evaluation for linux kernel vulnerabilities resource_label: paper resource_type: paper resource_url: https://www.usenix.org/system/files/sec19-wu-wei.pdf parent_primary_url: https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"kepler: facilitating control-flow hijacking primitive evaluation for linux kernel vulnerabilities\"](https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_wu-wei.pdf) [slides] [[video](https://www.youtube.co no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "209e35b5a4108431",
      "item_id": "9e8d1c3a6f8c8b40",
      "slug": "2019-techniques-exploitation-leak-kernel-pointer-primary-f99ac413",
      "year": 2019,
      "title": "Leak kernel pointer",
      "item_title": "Leak kernel pointer",
      "authors": [
        "exploiting uninitialized uses in Linux kernel\" by Jinbum Park"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://jinb-park.github.io/leak-kptr.html",
      "primary_url": "https://jinb-park.github.io/leak-kptr.html",
      "parent_primary_url": "https://jinb-park.github.io/leak-kptr.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2019-techniques-exploitation-leak-kernel-pointer-primary-f99ac413.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Leak kernel pointer record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Leak kernel pointer resource_label: primary resource_type: slides resource_url: https://jinb-park.github.io/leak-kptr.html parent_primary_url: https://jinb-park.github.io/leak-kptr.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"Leak kernel pointer by exploiting uninitialized uses in Linux kernel\" by Jinbum Park](https://jinb-park.github.io/leak-kptr.html) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://jinb-p",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://jinb-park.github.io/leak-kptr.html"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://jinb-park.github.io/leak-kptr.html"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://jinb-park.github.io/leak-kptr.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_pointer",
        "leak"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This presentation covers techniques for leaking kernel pointers through uninitialized uses.",
      "summary_zh": "本演示涵盖了通过未初始化使用泄露内核指针的技术。",
      "source_markdown": "[2019: \"Leak kernel pointer by exploiting uninitialized uses in Linux kernel\" by Jinbum Park](https://jinb-park.github.io/leak-kptr.html) [slides]",
      "search_text": "leak kernel pointer leak kernel pointer exploiting uninitialized uses in linux kernel\" by jinbum park   techniques exploitation technique: exploitation primary slides https://jinb-park.github.io/leak-kptr.html kernel_pointer leak  exploitation this presentation covers techniques for leaking kernel pointers through uninitialized uses. 本演示涵盖了通过未初始化使用泄露内核指针的技术。 # leak kernel pointer record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: leak kernel pointer resource_label: primary resource_type: slides resource_url: https://jinb-park.github.io/leak-kptr.html parent_primary_url: https://jinb-park.github.io/leak-kptr.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"leak kernel pointer by exploiting uninitialized uses in linux kernel\" by jinbum park](https://jinb-park.github.io/leak-kptr.html) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://jinb-p no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "32f665824db15146",
      "item_id": "4527ac3e5a104178",
      "slug": "2019-techniques-exploitation-kernel-idt-priviledge-escalation-primary-ba90eac6",
      "year": 2019,
      "title": "Kernel IDT priviledge escalation",
      "item_title": "Kernel IDT priviledge escalation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/rdomanski/kernel/tree/master/writeups/Kernel-IDT-priviledge-escalation",
      "primary_url": "https://github.com/rdomanski/kernel/tree/master/writeups/Kernel-IDT-priviledge-escalation",
      "parent_primary_url": "https://github.com/rdomanski/kernel/tree/master/writeups/Kernel-IDT-priviledge-escalation",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2019-techniques-exploitation-kernel-idt-priviledge-escalation-primary-ba90eac6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel IDT priviledge escalation record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Kernel IDT priviledge escalation resource_label: primary resource_type: article resource_url: https://github.com/rdomanski/kernel/tree/master/writeups/Kernel-IDT-priviledge-escalation parent_primary_url: https://github.com/rdomanski/kernel/tree/master/writeups/Kernel-IDT-priviledge-escalation source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"Kernel IDT priviledge escalation\"](https://github.com/rdomanski/kernel/tree/master/writeups/Kernel-IDT-priviledge-escalation) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/rdomanski/kernel/tree/master/writeups/Kernel-IDT-priviledge-escalation"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/rdomanski/kernel/tree/master/writeups/Kernel-IDT-priviledge-escalation"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/rdomanski/kernel/tree/master/writeups/Kernel-IDT-priviledge-escalation"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "privilege_escalation",
        "IDT"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The article discusses privilege escalation through kernel IDT manipulation.",
      "summary_zh": "本文讨论了通过内核IDT操作进行特权提升。",
      "source_markdown": "[2019: \"Kernel IDT priviledge escalation\"](https://github.com/rdomanski/kernel/tree/master/writeups/Kernel-IDT-priviledge-escalation) [article]",
      "search_text": "kernel idt priviledge escalation kernel idt priviledge escalation    techniques exploitation technique: exploitation primary article https://github.com/rdomanski/kernel/tree/master/writeups/kernel-idt-priviledge-escalation privilege_escalation idt  exploitation the article discusses privilege escalation through kernel idt manipulation. 本文讨论了通过内核idt操作进行特权提升。 # kernel idt priviledge escalation record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: kernel idt priviledge escalation resource_label: primary resource_type: article resource_url: https://github.com/rdomanski/kernel/tree/master/writeups/kernel-idt-priviledge-escalation parent_primary_url: https://github.com/rdomanski/kernel/tree/master/writeups/kernel-idt-priviledge-escalation source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2019: \"kernel idt priviledge escalation\"](https://github.com/rdomanski/kernel/tree/master/writeups/kernel-idt-priviledge-escalation) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "99b2fa96633e04b9",
      "item_id": "f6137c79f9e73e99",
      "slug": "2018-techniques-exploitation-fuze-towards-facilitating-exploit-generation-for-kernel-use-after-free-vulnerabil",
      "year": 2018,
      "title": "FUZE: Towards Facilitating Exploit Generation for Kernel Use-After-Free Vulnerabilities",
      "item_title": "FUZE: Towards Facilitating Exploit Generation for Kernel Use-After-Free Vulnerabilities",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "http://personal.psu.edu/yxc431/publications/FUZE_Slides.pdf",
      "primary_url": "http://personal.psu.edu/yxc431/publications/FUZE_Slides.pdf",
      "parent_primary_url": "http://personal.psu.edu/yxc431/publications/FUZE_Slides.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2018-techniques-exploitation-fuze-towards-facilitating-exploit-generation-for-kernel-use-after-free-vulnerabil.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# FUZE: Towards Facilitating Exploit Generation for Kernel Use-After-Free Vulnerabilities record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: FUZE: Towards Facilitating Exploit Generation for Kernel Use-After-Free Vulnerabilities resource_label: primary resource_type: slides resource_url: http://personal.psu.edu/yxc431/publications/FUZE_Slides.pdf parent_primary_url: http://personal.psu.edu/yxc431/publications/FUZE_Slides.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"FUZE: Towards Facilitating Exploit Generation for Kernel Use-After-Free Vulnerabilities\"](http://personal.psu.edu/yxc431/publications/FUZE_Slides.pdf) [slides] [[paper](http://personal.psu.edu/yxc431/publications/FUZE.pdf)] cves: none android_impact_status: no android_impact_reason: Not",
      "link_types": [
        "slides",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "http://personal.psu.edu/yxc431/publications/FUZE_Slides.pdf"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "http://personal.psu.edu/yxc431/publications/FUZE.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "http://personal.psu.edu/yxc431/publications/FUZE.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "http://personal.psu.edu/yxc431/publications/FUZE_Slides.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "FUZE",
        "use_after_free"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This presentation introduces FUZE, a tool for generating exploits for use-after-free vulnerabilities.",
      "summary_zh": "本演示介绍了FUZE，一个用于生成使用后释放漏洞利用的工具。",
      "source_markdown": "[2018: \"FUZE: Towards Facilitating Exploit Generation for Kernel Use-After-Free Vulnerabilities\"](http://personal.psu.edu/yxc431/publications/FUZE_Slides.pdf) [slides] [[paper](http://personal.psu.edu/yxc431/publications/FUZE.pdf)]",
      "search_text": "fuze: towards facilitating exploit generation for kernel use-after-free vulnerabilities fuze: towards facilitating exploit generation for kernel use-after-free vulnerabilities    techniques exploitation technique: exploitation primary slides http://personal.psu.edu/yxc431/publications/fuze_slides.pdf fuze use_after_free  exploitation this presentation introduces fuze, a tool for generating exploits for use-after-free vulnerabilities. 本演示介绍了fuze，一个用于生成使用后释放漏洞利用的工具。 # fuze: towards facilitating exploit generation for kernel use-after-free vulnerabilities record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: fuze: towards facilitating exploit generation for kernel use-after-free vulnerabilities resource_label: primary resource_type: slides resource_url: http://personal.psu.edu/yxc431/publications/fuze_slides.pdf parent_primary_url: http://personal.psu.edu/yxc431/publications/fuze_slides.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"fuze: towards facilitating exploit generation for kernel use-after-free vulnerabilities\"](http://personal.psu.edu/yxc431/publications/fuze_slides.pdf) [slides] [[paper](http://personal.psu.edu/yxc431/publications/fuze.pdf)] cves: none android_impact_status: no android_impact_reason: not no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "12deaba47cd8dfc0",
      "item_id": "f6137c79f9e73e99",
      "slug": "2018-techniques-exploitation-fuze-towards-facilitating-exploit-generation-for-kernel-use-after-free-vulnerabil-2",
      "year": 2018,
      "title": "FUZE: Towards Facilitating Exploit Generation for Kernel Use-After-Free Vulnerabilities · paper",
      "item_title": "FUZE: Towards Facilitating Exploit Generation for Kernel Use-After-Free Vulnerabilities",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "paper",
      "resource_type": "paper",
      "resource_url": "http://personal.psu.edu/yxc431/publications/FUZE.pdf",
      "primary_url": "http://personal.psu.edu/yxc431/publications/FUZE.pdf",
      "parent_primary_url": "http://personal.psu.edu/yxc431/publications/FUZE_Slides.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2018-techniques-exploitation-fuze-towards-facilitating-exploit-generation-for-kernel-use-after-free-vulnerabil-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# FUZE: Towards Facilitating Exploit Generation for Kernel Use-After-Free Vulnerabilities · paper record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: FUZE: Towards Facilitating Exploit Generation for Kernel Use-After-Free Vulnerabilities resource_label: paper resource_type: paper resource_url: http://personal.psu.edu/yxc431/publications/FUZE.pdf parent_primary_url: http://personal.psu.edu/yxc431/publications/FUZE_Slides.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"FUZE: Towards Facilitating Exploit Generation for Kernel Use-After-Free Vulnerabilities\"](http://personal.psu.edu/yxc431/publications/FUZE_Slides.pdf) [slides] [[paper](http://personal.psu.edu/yxc431/publications/FUZE.pdf)] cves: none android_impact_status: no android_impact_reason: Not e",
      "link_types": [
        "slides",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "http://personal.psu.edu/yxc431/publications/FUZE_Slides.pdf"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "http://personal.psu.edu/yxc431/publications/FUZE.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "http://personal.psu.edu/yxc431/publications/FUZE.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "http://personal.psu.edu/yxc431/publications/FUZE_Slides.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "FUZE",
        "use_after_free"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The paper discusses FUZE and its application in generating exploits for use-after-free vulnerabilities.",
      "summary_zh": "本文讨论了FUZE及其在生成使用后释放漏洞利用中的应用。",
      "source_markdown": "[2018: \"FUZE: Towards Facilitating Exploit Generation for Kernel Use-After-Free Vulnerabilities\"](http://personal.psu.edu/yxc431/publications/FUZE_Slides.pdf) [slides] [[paper](http://personal.psu.edu/yxc431/publications/FUZE.pdf)]",
      "search_text": "fuze: towards facilitating exploit generation for kernel use-after-free vulnerabilities · paper fuze: towards facilitating exploit generation for kernel use-after-free vulnerabilities    techniques exploitation technique: exploitation paper paper http://personal.psu.edu/yxc431/publications/fuze.pdf fuze use_after_free  exploitation the paper discusses fuze and its application in generating exploits for use-after-free vulnerabilities. 本文讨论了fuze及其在生成使用后释放漏洞利用中的应用。 # fuze: towards facilitating exploit generation for kernel use-after-free vulnerabilities · paper record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: fuze: towards facilitating exploit generation for kernel use-after-free vulnerabilities resource_label: paper resource_type: paper resource_url: http://personal.psu.edu/yxc431/publications/fuze.pdf parent_primary_url: http://personal.psu.edu/yxc431/publications/fuze_slides.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"fuze: towards facilitating exploit generation for kernel use-after-free vulnerabilities\"](http://personal.psu.edu/yxc431/publications/fuze_slides.pdf) [slides] [[paper](http://personal.psu.edu/yxc431/publications/fuze.pdf)] cves: none android_impact_status: no android_impact_reason: not e no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5c84ff6e868c14e8",
      "item_id": "f1099780fc837c06",
      "slug": "2018-techniques-exploitation-linux-kernel-universal-heap-spray-primary-9a5a8b36",
      "year": 2018,
      "title": "Linux Kernel universal heap spray",
      "item_title": "Linux Kernel universal heap spray",
      "authors": [
        "Vitaly Nikolenko"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://cyseclabs.com/blog/linux-kernel-heap-spray",
      "primary_url": "https://cyseclabs.com/blog/linux-kernel-heap-spray",
      "parent_primary_url": "https://cyseclabs.com/blog/linux-kernel-heap-spray",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2018-techniques-exploitation-linux-kernel-universal-heap-spray-primary-9a5a8b36.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel universal heap spray record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel universal heap spray resource_label: primary resource_type: article resource_url: https://cyseclabs.com/blog/linux-kernel-heap-spray parent_primary_url: https://cyseclabs.com/blog/linux-kernel-heap-spray source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"Linux Kernel universal heap spray\" by Vitaly Nikolenko](https://cyseclabs.com/blog/linux-kernel-heap-spray) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://cyseclabs.com/blog/linux-kernel-heap-spray"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://cyseclabs.com/blog/linux-kernel-heap-spray"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "heap_spray",
        "Linux_kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This article discusses universal heap spray techniques in the Linux kernel.",
      "summary_zh": "本文讨论了Linux内核中的通用堆喷射技术。",
      "source_markdown": "[2018: \"Linux Kernel universal heap spray\" by Vitaly Nikolenko](https://cyseclabs.com/blog/linux-kernel-heap-spray) [article]",
      "search_text": "linux kernel universal heap spray linux kernel universal heap spray vitaly nikolenko   techniques exploitation technique: exploitation primary article https://cyseclabs.com/blog/linux-kernel-heap-spray heap_spray linux_kernel  exploitation this article discusses universal heap spray techniques in the linux kernel. 本文讨论了linux内核中的通用堆喷射技术。 # linux kernel universal heap spray record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel universal heap spray resource_label: primary resource_type: article resource_url: https://cyseclabs.com/blog/linux-kernel-heap-spray parent_primary_url: https://cyseclabs.com/blog/linux-kernel-heap-spray source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"linux kernel universal heap spray\" by vitaly nikolenko](https://cyseclabs.com/blog/linux-kernel-heap-spray) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4ce029e08f48bdd4",
      "item_id": "e7973a834d738c0c",
      "slug": "2018-techniques-exploitation-linux-kernel-exploit-stack-smashing-primary-aee2c170",
      "year": 2018,
      "title": "Linux-Kernel-Exploit Stack Smashing",
      "item_title": "Linux-Kernel-Exploit Stack Smashing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://web.archive.org/web/20190421131414/http://tacxingxing.com/2018/02/15/linux-kernel-exploit-stack-smashing/",
      "primary_url": "https://web.archive.org/web/20190421131414/http://tacxingxing.com/2018/02/15/linux-kernel-exploit-stack-smashing/",
      "parent_primary_url": "https://web.archive.org/web/20190421131414/http://tacxingxing.com/2018/02/15/linux-kernel-exploit-stack-smashing/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2018-techniques-exploitation-linux-kernel-exploit-stack-smashing-primary-aee2c170.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux-Kernel-Exploit Stack Smashing record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux-Kernel-Exploit Stack Smashing resource_label: primary resource_type: article resource_url: https://web.archive.org/web/20190421131414/http://tacxingxing.com/2018/02/15/linux-kernel-exploit-stack-smashing/ parent_primary_url: https://web.archive.org/web/20190421131414/http://tacxingxing.com/2018/02/15/linux-kernel-exploit-stack-smashing/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"Linux-Kernel-Exploit Stack Smashing\"](https://web.archive.org/web/20190421131414/http://tacxingxing.com/2018/02/15/linux-kernel-exploit-stack-smashing/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released And",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://web.archive.org/web/20190421131414/http://tacxingxing.com/2018/02/15/linux-kernel-exploit-stack-smashing/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://web.archive.org/web/20190421131414/http://tacxingxing.com/2018/02/15/linux-kernel-exploit-stack-smashing/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://web.archive.org/web/20190421131414/http://tacxingxing.com/2018/02/15/linux-kernel-exploit-stack-smashing/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "stack_smashing",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The article details stack smashing exploits in the Linux kernel.",
      "summary_zh": "本文详细介绍了Linux内核中的栈溢出利用。",
      "source_markdown": "[2018: \"Linux-Kernel-Exploit Stack Smashing\"](https://web.archive.org/web/20190421131414/http://tacxingxing.com/2018/02/15/linux-kernel-exploit-stack-smashing/) [article]",
      "search_text": "linux-kernel-exploit stack smashing linux-kernel-exploit stack smashing    techniques exploitation technique: exploitation primary article https://web.archive.org/web/20190421131414/http://tacxingxing.com/2018/02/15/linux-kernel-exploit-stack-smashing/ stack_smashing exploit  exploitation the article details stack smashing exploits in the linux kernel. 本文详细介绍了linux内核中的栈溢出利用。 # linux-kernel-exploit stack smashing record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux-kernel-exploit stack smashing resource_label: primary resource_type: article resource_url: https://web.archive.org/web/20190421131414/http://tacxingxing.com/2018/02/15/linux-kernel-exploit-stack-smashing/ parent_primary_url: https://web.archive.org/web/20190421131414/http://tacxingxing.com/2018/02/15/linux-kernel-exploit-stack-smashing/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"linux-kernel-exploit stack smashing\"](https://web.archive.org/web/20190421131414/http://tacxingxing.com/2018/02/15/linux-kernel-exploit-stack-smashing/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released and no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "6a17c82747c34d6d",
      "item_id": "77cc4bbaf78f8c6b",
      "slug": "2018-techniques-exploitation-entering-god-mode-the-kernel-space-mirroring-attack-primary-1bd13ea8",
      "year": 2018,
      "title": "Entering God Mode  -  The Kernel Space Mirroring Attack",
      "item_title": "Entering God Mode  -  The Kernel Space Mirroring Attack",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://hackernoon.com/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f",
      "primary_url": "https://hackernoon.com/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f",
      "parent_primary_url": "https://hackernoon.com/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2018-techniques-exploitation-entering-god-mode-the-kernel-space-mirroring-attack-primary-1bd13ea8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Entering God Mode - The Kernel Space Mirroring Attack record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Entering God Mode - The Kernel Space Mirroring Attack resource_label: primary resource_type: article resource_url: https://hackernoon.com/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f parent_primary_url: https://hackernoon.com/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"Entering God Mode - The Kernel Space Mirroring Attack\"](https://hackernoon.com/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://hackernoon.com/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://hackernoon.com/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_space",
        "mirroring_attack"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This article presents the kernel space mirroring attack technique.",
      "summary_zh": "本文介绍了内核空间镜像攻击技术。",
      "source_markdown": "[2018: \"Entering God Mode  -  The Kernel Space Mirroring Attack\"](https://hackernoon.com/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f) [article]",
      "search_text": "entering god mode  -  the kernel space mirroring attack entering god mode  -  the kernel space mirroring attack    techniques exploitation technique: exploitation primary article https://hackernoon.com/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f kernel_space mirroring_attack  exploitation this article presents the kernel space mirroring attack technique. 本文介绍了内核空间镜像攻击技术。 # entering god mode - the kernel space mirroring attack record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: entering god mode - the kernel space mirroring attack resource_label: primary resource_type: article resource_url: https://hackernoon.com/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f parent_primary_url: https://hackernoon.com/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"entering god mode - the kernel space mirroring attack\"](https://hackernoon.com/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "05a6f31dc02b0db3",
      "item_id": "4a9949d9ed3e3722",
      "slug": "2018-techniques-exploitation-mirror-mirror-rooting-android-8-with-a-kernel-space-mirroring-attack-primary-c3e5",
      "year": 2018,
      "title": "Mirror Mirror: Rooting Android 8 with a Kernel Space Mirroring Attack",
      "item_title": "Mirror Mirror: Rooting Android 8 with a Kernel Space Mirroring Attack",
      "authors": [
        "Wang Yong at HitB"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://conference.hitb.org/hitbsecconf2018ams/materials/D1T2%20-%20Yong%20Wang%20&%20Yang%20Song%20-%20Rooting%20Android%208%20with%20a%20Kernel%20Space%20Mirroring%20Attack.pdf",
      "primary_url": "https://conference.hitb.org/hitbsecconf2018ams/materials/D1T2%20-%20Yong%20Wang%20&%20Yang%20Song%20-%20Rooting%20Android%208%20with%20a%20Kernel%20Space%20Mirroring%20Attack.pdf",
      "parent_primary_url": "https://conference.hitb.org/hitbsecconf2018ams/materials/D1T2%20-%20Yong%20Wang%20&%20Yang%20Song%20-%20Rooting%20Android%208%20with%20a%20Kernel%20Space%20Mirroring%20Attack.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2018-techniques-exploitation-mirror-mirror-rooting-android-8-with-a-kernel-space-mirroring-attack-primary-c3e5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mirror Mirror: Rooting Android 8 with a Kernel Space Mirroring Attack record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Mirror Mirror: Rooting Android 8 with a Kernel Space Mirroring Attack resource_label: primary resource_type: slides resource_url: https://conference.hitb.org/hitbsecconf2018ams/materials/D1T2%20-%20Yong%20Wang%20&%20Yang%20Song%20-%20Rooting%20Android%208%20with%20a%20Kernel%20Space%20Mirroring%20Attack.pdf parent_primary_url: https://conference.hitb.org/hitbsecconf2018ams/materials/D1T2%20-%20Yong%20Wang%20&%20Yang%20Song%20-%20Rooting%20Android%208%20with%20a%20Kernel%20Space%20Mirroring%20Attack.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"Mirror Mirror: Rooting Android 8 with a Kernel Space Mirroring Attack\" by Wang Yong a",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://conference.hitb.org/hitbsecconf2018ams/materials/D1T2%20-%20Yong%20Wang%20&%20Yang%20Song%20-%20Rooting%20Android%208%20with%20a%20Kernel%20Space%20Mirroring%20Attack.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://conference.hitb.org/hitbsecconf2018ams/materials/D1T2%20-%20Yong%20Wang%20&%20Yang%20Song%20-%20Rooting%20Android%208%20with%20a%20Kernel%20Space%20Mirroring%20Attack.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "Android",
        "exploitation"
      ],
      "affected_area": "kernel",
      "exploit_stage": "exploitation",
      "summary_en": "This presentation discusses a kernel space mirroring attack to root Android 8.",
      "summary_zh": "本演示讨论了一种内核空间镜像攻击以获取Android 8的root权限。",
      "source_markdown": "[2018: \"Mirror Mirror: Rooting Android 8 with a Kernel Space Mirroring Attack\" by Wang Yong at HitB](https://conference.hitb.org/hitbsecconf2018ams/materials/D1T2%20-%20Yong%20Wang%20&%20Yang%20Song%20-%20Rooting%20Android%208%20with%20a%20Kernel%20Space%20Mirroring%20Attack.pdf) [slides]",
      "search_text": "mirror mirror: rooting android 8 with a kernel space mirroring attack mirror mirror: rooting android 8 with a kernel space mirroring attack wang yong at hitb   techniques exploitation technique: exploitation primary slides https://conference.hitb.org/hitbsecconf2018ams/materials/d1t2%20-%20yong%20wang%20&%20yang%20song%20-%20rooting%20android%208%20with%20a%20kernel%20space%20mirroring%20attack.pdf kernel android exploitation kernel exploitation this presentation discusses a kernel space mirroring attack to root android 8. 本演示讨论了一种内核空间镜像攻击以获取android 8的root权限。 # mirror mirror: rooting android 8 with a kernel space mirroring attack record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: mirror mirror: rooting android 8 with a kernel space mirroring attack resource_label: primary resource_type: slides resource_url: https://conference.hitb.org/hitbsecconf2018ams/materials/d1t2%20-%20yong%20wang%20&%20yang%20song%20-%20rooting%20android%208%20with%20a%20kernel%20space%20mirroring%20attack.pdf parent_primary_url: https://conference.hitb.org/hitbsecconf2018ams/materials/d1t2%20-%20yong%20wang%20&%20yang%20song%20-%20rooting%20android%208%20with%20a%20kernel%20space%20mirroring%20attack.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"mirror mirror: rooting android 8 with a kernel space mirroring attack\" by wang yong a unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "59bee1f24d8c7f36",
      "item_id": "f7b67e983b44b2a4",
      "slug": "2018-techniques-exploitation-ksma-breaking-android-kernel-isolation-and-rooting-with-arm-mmu-features-primary-",
      "year": 2018,
      "title": "KSMA: Breaking Android kernel isolation and Rooting with ARM MMU features",
      "item_title": "KSMA: Breaking Android kernel isolation and Rooting with ARM MMU features",
      "authors": [
        "Wang Yong at BlackHat"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.blackhat.com/docs/asia-18/asia-18-WANG-KSMA-Breaking-Android-kernel-isolation-and-Rooting-with-ARM-MMU-features.pdf",
      "primary_url": "https://www.blackhat.com/docs/asia-18/asia-18-WANG-KSMA-Breaking-Android-kernel-isolation-and-Rooting-with-ARM-MMU-features.pdf",
      "parent_primary_url": "https://www.blackhat.com/docs/asia-18/asia-18-WANG-KSMA-Breaking-Android-kernel-isolation-and-Rooting-with-ARM-MMU-features.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2018-techniques-exploitation-ksma-breaking-android-kernel-isolation-and-rooting-with-arm-mmu-features-primary-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KSMA: Breaking Android kernel isolation and Rooting with ARM MMU features record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: KSMA: Breaking Android kernel isolation and Rooting with ARM MMU features resource_label: primary resource_type: slides resource_url: https://www.blackhat.com/docs/asia-18/asia-18-WANG-KSMA-Breaking-Android-kernel-isolation-and-Rooting-with-ARM-MMU-features.pdf parent_primary_url: https://www.blackhat.com/docs/asia-18/asia-18-WANG-KSMA-Breaking-Android-kernel-isolation-and-Rooting-with-ARM-MMU-features.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"KSMA: Breaking Android kernel isolation and Rooting with ARM MMU features\" by Wang Yong at BlackHat](https://www.blackhat.com/docs/asia-18/asia-18-WANG-KSMA-Breaking-Android-kerne",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.blackhat.com/docs/asia-18/asia-18-WANG-KSMA-Breaking-Android-kernel-isolation-and-Rooting-with-ARM-MMU-features.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.blackhat.com/docs/asia-18/asia-18-WANG-KSMA-Breaking-Android-kernel-isolation-and-Rooting-with-ARM-MMU-features.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "Android",
        "exploitation"
      ],
      "affected_area": "kernel",
      "exploit_stage": "exploitation",
      "summary_en": "This presentation covers breaking Android kernel isolation using ARM MMU features.",
      "summary_zh": "本演示介绍了如何利用ARM MMU特性打破Android内核隔离。",
      "source_markdown": "[2018: \"KSMA: Breaking Android kernel isolation and Rooting with ARM MMU features\" by Wang Yong at BlackHat](https://www.blackhat.com/docs/asia-18/asia-18-WANG-KSMA-Breaking-Android-kernel-isolation-and-Rooting-with-ARM-MMU-features.pdf) [slides]",
      "search_text": "ksma: breaking android kernel isolation and rooting with arm mmu features ksma: breaking android kernel isolation and rooting with arm mmu features wang yong at blackhat   techniques exploitation technique: exploitation primary slides https://www.blackhat.com/docs/asia-18/asia-18-wang-ksma-breaking-android-kernel-isolation-and-rooting-with-arm-mmu-features.pdf kernel android exploitation kernel exploitation this presentation covers breaking android kernel isolation using arm mmu features. 本演示介绍了如何利用arm mmu特性打破android内核隔离。 # ksma: breaking android kernel isolation and rooting with arm mmu features record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: ksma: breaking android kernel isolation and rooting with arm mmu features resource_label: primary resource_type: slides resource_url: https://www.blackhat.com/docs/asia-18/asia-18-wang-ksma-breaking-android-kernel-isolation-and-rooting-with-arm-mmu-features.pdf parent_primary_url: https://www.blackhat.com/docs/asia-18/asia-18-wang-ksma-breaking-android-kernel-isolation-and-rooting-with-arm-mmu-features.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"ksma: breaking android kernel isolation and rooting with arm mmu features\" by wang yong at blackhat](https://www.blackhat.com/docs/asia-18/asia-18-wang-ksma-breaking-android-kerne unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "a15025c70f7f05ec",
      "item_id": "387b70d85092fb0f",
      "slug": "2018-techniques-exploitation-still-hammerable-and-exploitable-on-the-effectiveness-of-software-only-physical-k",
      "year": 2018,
      "title": "Still Hammerable and Exploitable: on the Effectiveness of Software-only Physical Kernel Isolation",
      "item_title": "Still Hammerable and Exploitable: on the Effectiveness of Software-only Physical Kernel Isolation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/1802.07060.pdf",
      "primary_url": "https://arxiv.org/pdf/1802.07060.pdf",
      "parent_primary_url": "https://arxiv.org/pdf/1802.07060.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2018-techniques-exploitation-still-hammerable-and-exploitable-on-the-effectiveness-of-software-only-physical-k.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Still Hammerable and Exploitable: on the Effectiveness of Software-only Physical Kernel Isolation record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Still Hammerable and Exploitable: on the Effectiveness of Software-only Physical Kernel Isolation resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/1802.07060.pdf parent_primary_url: https://arxiv.org/pdf/1802.07060.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"Still Hammerable and Exploitable: on the Effectiveness of Software-only Physical Kernel Isolation\"](https://arxiv.org/pdf/1802.07060.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_re",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/1802.07060.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/1802.07060.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "isolation",
        "evaluation"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This paper evaluates the effectiveness of software-only physical kernel isolation.",
      "summary_zh": "本文评估了仅使用软件的物理内核隔离的有效性。",
      "source_markdown": "[2018: \"Still Hammerable and Exploitable: on the Effectiveness of Software-only Physical Kernel Isolation\"](https://arxiv.org/pdf/1802.07060.pdf) [paper]",
      "search_text": "still hammerable and exploitable: on the effectiveness of software-only physical kernel isolation still hammerable and exploitable: on the effectiveness of software-only physical kernel isolation    techniques exploitation technique: exploitation primary paper https://arxiv.org/pdf/1802.07060.pdf kernel isolation evaluation  research this paper evaluates the effectiveness of software-only physical kernel isolation. 本文评估了仅使用软件的物理内核隔离的有效性。 # still hammerable and exploitable: on the effectiveness of software-only physical kernel isolation record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: still hammerable and exploitable: on the effectiveness of software-only physical kernel isolation resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/1802.07060.pdf parent_primary_url: https://arxiv.org/pdf/1802.07060.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"still hammerable and exploitable: on the effectiveness of software-only physical kernel isolation\"](https://arxiv.org/pdf/1802.07060.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_re no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "feaf9395976ce2b6",
      "item_id": "9062496500d2d493",
      "slug": "2018-techniques-exploitation-linux-kernel-pwn-notes-primary-da418fd0",
      "year": 2018,
      "title": "linux kernel pwn notes",
      "item_title": "linux kernel pwn notes",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.cnblogs.com/hac425/p/9416886.html",
      "primary_url": "https://www.cnblogs.com/hac425/p/9416886.html",
      "parent_primary_url": "https://www.cnblogs.com/hac425/p/9416886.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2018-techniques-exploitation-linux-kernel-pwn-notes-primary-da418fd0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# linux kernel pwn notes record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: linux kernel pwn notes resource_label: primary resource_type: article resource_url: https://www.cnblogs.com/hac425/p/9416886.html parent_primary_url: https://www.cnblogs.com/hac425/p/9416886.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"linux kernel pwn notes\"](https://www.cnblogs.com/hac425/p/9416886.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://www.cnbl",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.cnblogs.com/hac425/p/9416886.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.cnblogs.com/hac425/p/9416886.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "exploitation",
        "notes"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This article provides notes on exploiting the Linux kernel.",
      "summary_zh": "本文提供了关于利用Linux内核的笔记。",
      "source_markdown": "[2018: \"linux kernel pwn notes\"](https://www.cnblogs.com/hac425/p/9416886.html) [article]",
      "search_text": "linux kernel pwn notes linux kernel pwn notes    techniques exploitation technique: exploitation primary article https://www.cnblogs.com/hac425/p/9416886.html kernel exploitation notes  exploitation this article provides notes on exploiting the linux kernel. 本文提供了关于利用linux内核的笔记。 # linux kernel pwn notes record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel pwn notes resource_label: primary resource_type: article resource_url: https://www.cnblogs.com/hac425/p/9416886.html parent_primary_url: https://www.cnblogs.com/hac425/p/9416886.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"linux kernel pwn notes\"](https://www.cnblogs.com/hac425/p/9416886.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://www.cnbl no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5f8ff55defd33f6e",
      "item_id": "c31f9a4e163423d0",
      "slug": "2018-techniques-exploitation-use-of-timer-list-structure-in-linux-kernel-exploit-primary-ce976960",
      "year": 2018,
      "title": "Use of timer_list structure in linux kernel exploit",
      "item_title": "Use of timer_list structure in linux kernel exploit",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://xz.aliyun.com/t/3455",
      "primary_url": "https://xz.aliyun.com/t/3455",
      "parent_primary_url": "https://xz.aliyun.com/t/3455",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2018-techniques-exploitation-use-of-timer-list-structure-in-linux-kernel-exploit-primary-ce976960.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Use of timer_list structure in linux kernel exploit record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Use of timer_list structure in linux kernel exploit resource_label: primary resource_type: article resource_url: https://xz.aliyun.com/t/3455 parent_primary_url: https://xz.aliyun.com/t/3455 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"Use of timer_list structure in linux kernel exploit\"](https://xz.aliyun.com/t/3455) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: -",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://xz.aliyun.com/t/3455"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://xz.aliyun.com/t/3455"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "exploitation",
        "timer"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This article discusses the use of the timer_list structure in Linux kernel exploits.",
      "summary_zh": "本文讨论了在Linux内核利用中使用timer_list结构。",
      "source_markdown": "[2018: \"Use of timer_list structure in linux kernel exploit\"](https://xz.aliyun.com/t/3455) [article]",
      "search_text": "use of timer_list structure in linux kernel exploit use of timer_list structure in linux kernel exploit    techniques exploitation technique: exploitation primary article https://xz.aliyun.com/t/3455 kernel exploitation timer  exploitation this article discusses the use of the timer_list structure in linux kernel exploits. 本文讨论了在linux内核利用中使用timer_list结构。 # use of timer_list structure in linux kernel exploit record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: use of timer_list structure in linux kernel exploit resource_label: primary resource_type: article resource_url: https://xz.aliyun.com/t/3455 parent_primary_url: https://xz.aliyun.com/t/3455 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"use of timer_list structure in linux kernel exploit\"](https://xz.aliyun.com/t/3455) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3b0116a8e9304831",
      "item_id": "713c80346b59651b",
      "slug": "2018-techniques-exploitation-entering-god-mode-the-kernel-space-mirroring-attack-primary-04658ac0",
      "year": 2018,
      "title": "Entering God Mode — The Kernel Space Mirroring Attack",
      "item_title": "Entering God Mode — The Kernel Space Mirroring Attack",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://medium.com/hackernoon/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f",
      "primary_url": "https://medium.com/hackernoon/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f",
      "parent_primary_url": "https://medium.com/hackernoon/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2018-techniques-exploitation-entering-god-mode-the-kernel-space-mirroring-attack-primary-04658ac0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Entering God Mode — The Kernel Space Mirroring Attack record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Entering God Mode — The Kernel Space Mirroring Attack resource_label: primary resource_type: article resource_url: https://medium.com/hackernoon/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f parent_primary_url: https://medium.com/hackernoon/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"Entering God Mode — The Kernel Space Mirroring Attack\"](https://medium.com/hackernoon/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Androi",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://medium.com/hackernoon/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://medium.com/hackernoon/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "exploitation",
        "privilege escalation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This article describes a kernel space mirroring attack for privilege escalation.",
      "summary_zh": "本文描述了一种用于权限提升的内核空间镜像攻击。",
      "source_markdown": "[2018: \"Entering God Mode — The Kernel Space Mirroring Attack\"](https://medium.com/hackernoon/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f) [article]",
      "search_text": "entering god mode — the kernel space mirroring attack entering god mode — the kernel space mirroring attack    techniques exploitation technique: exploitation primary article https://medium.com/hackernoon/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f kernel exploitation privilege escalation  exploitation this article describes a kernel space mirroring attack for privilege escalation. 本文描述了一种用于权限提升的内核空间镜像攻击。 # entering god mode — the kernel space mirroring attack record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: entering god mode — the kernel space mirroring attack resource_label: primary resource_type: article resource_url: https://medium.com/hackernoon/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f parent_primary_url: https://medium.com/hackernoon/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2018: \"entering god mode — the kernel space mirroring attack\"](https://medium.com/hackernoon/entering-god-mode-the-kernel-space-mirroring-attack-8a86b749545f) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released androi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "aae8ff428fe77b5d",
      "item_id": "75bf433343299c23",
      "slug": "2017-techniques-exploitation-escalating-privileges-in-linux-using-fault-injection-primary-7dbdbbbf",
      "year": 2017,
      "title": "Escalating Privileges in Linux using Fault Injection",
      "item_title": "Escalating Privileges in Linux using Fault Injection",
      "authors": [
        "Niek Timmers",
        "Cristofaro Mune"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf",
      "primary_url": "https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf",
      "parent_primary_url": "https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2017-techniques-exploitation-escalating-privileges-in-linux-using-fault-injection-primary-7dbdbbbf.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Escalating Privileges in Linux using Fault Injection record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Escalating Privileges in Linux using Fault Injection resource_label: primary resource_type: slides resource_url: https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf parent_primary_url: https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"Escalating Privileges in Linux using Fault Injection\" by Niek Timmers and Cristofaro Mune](https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf) [slides] [[video](https://www.youtube.com/watch?v=nqF_IjXg_uM)] ",
      "link_types": [
        "slides",
        "video",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=nqF_IjXg_uM"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://www.riscure.com/uploads/2017/10/Riscure_Whitepaper_Escalating_Privileges_in_Linux_using_Fault_Injection.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://www.riscure.com/uploads/2017/10/Riscure_Whitepaper_Escalating_Privileges_in_Linux_using_Fault_Injection.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=nqF_IjXg_uM"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Linux",
        "privilege escalation",
        "fault injection"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This presentation explores escalating privileges in Linux using fault injection techniques.",
      "summary_zh": "本演示探讨了如何使用故障注入技术在Linux中提升权限。",
      "source_markdown": "[2017: \"Escalating Privileges in Linux using Fault Injection\" by Niek Timmers and Cristofaro Mune](https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf) [slides] [[video](https://www.youtube.com/watch?v=nqF_IjXg_uM)] [[paper](https://www.riscure.com/uploads/2017/10/Riscure_Whitepaper_Escalating_Privileges_in_Linux_using_Fault_Injection.pdf)]",
      "search_text": "escalating privileges in linux using fault injection escalating privileges in linux using fault injection niek timmers cristofaro mune   techniques exploitation technique: exploitation primary slides https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf linux privilege escalation fault injection  exploitation this presentation explores escalating privileges in linux using fault injection techniques. 本演示探讨了如何使用故障注入技术在linux中提升权限。 # escalating privileges in linux using fault injection record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: escalating privileges in linux using fault injection resource_label: primary resource_type: slides resource_url: https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf parent_primary_url: https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"escalating privileges in linux using fault injection\" by niek timmers and cristofaro mune](https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf) [slides] [[video](https://www.youtube.com/watch?v=nqf_ijxg_um)]  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f2deedab9e4a2b9b",
      "item_id": "75bf433343299c23",
      "slug": "2017-techniques-exploitation-escalating-privileges-in-linux-using-fault-injection-video-d7928fe6",
      "year": 2017,
      "title": "Escalating Privileges in Linux using Fault Injection · video",
      "item_title": "Escalating Privileges in Linux using Fault Injection",
      "authors": [
        "Niek Timmers",
        "Cristofaro Mune"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=nqF_IjXg_uM",
      "primary_url": "https://www.youtube.com/watch?v=nqF_IjXg_uM",
      "parent_primary_url": "https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2017-techniques-exploitation-escalating-privileges-in-linux-using-fault-injection-video-d7928fe6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Escalating Privileges in Linux using Fault Injection · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Escalating Privileges in Linux using Fault Injection resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=nqF_IjXg_uM parent_primary_url: https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"Escalating Privileges in Linux using Fault Injection\" by Niek Timmers and Cristofaro Mune](https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf) [slides] [[video](https://www.youtube.com/watch?v=nqF_IjXg_uM)] [[paper](https://www.riscure.com/uploads/2017/10/Riscure_W",
      "link_types": [
        "slides",
        "video",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=nqF_IjXg_uM"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://www.riscure.com/uploads/2017/10/Riscure_Whitepaper_Escalating_Privileges_in_Linux_using_Fault_Injection.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://www.riscure.com/uploads/2017/10/Riscure_Whitepaper_Escalating_Privileges_in_Linux_using_Fault_Injection.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=nqF_IjXg_uM"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Linux",
        "privilege escalation",
        "fault injection"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This video presents techniques for escalating privileges in Linux using fault injection.",
      "summary_zh": "本视频展示了如何使用故障注入技术在Linux中提升权限。",
      "source_markdown": "[2017: \"Escalating Privileges in Linux using Fault Injection\" by Niek Timmers and Cristofaro Mune](https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf) [slides] [[video](https://www.youtube.com/watch?v=nqF_IjXg_uM)] [[paper](https://www.riscure.com/uploads/2017/10/Riscure_Whitepaper_Escalating_Privileges_in_Linux_using_Fault_Injection.pdf)]",
      "search_text": "escalating privileges in linux using fault injection · video escalating privileges in linux using fault injection niek timmers cristofaro mune   techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=nqf_ijxg_um linux privilege escalation fault injection  exploitation this video presents techniques for escalating privileges in linux using fault injection. 本视频展示了如何使用故障注入技术在linux中提升权限。 # escalating privileges in linux using fault injection · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: escalating privileges in linux using fault injection resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=nqf_ijxg_um parent_primary_url: https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"escalating privileges in linux using fault injection\" by niek timmers and cristofaro mune](https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf) [slides] [[video](https://www.youtube.com/watch?v=nqf_ijxg_um)] [[paper](https://www.riscure.com/uploads/2017/10/riscure_w no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b2be4ed6de60cefa",
      "item_id": "75bf433343299c23",
      "slug": "2017-techniques-exploitation-escalating-privileges-in-linux-using-fault-injection-paper-81389564",
      "year": 2017,
      "title": "Escalating Privileges in Linux using Fault Injection · paper",
      "item_title": "Escalating Privileges in Linux using Fault Injection",
      "authors": [
        "Niek Timmers",
        "Cristofaro Mune"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "paper",
      "resource_type": "paper",
      "resource_url": "https://www.riscure.com/uploads/2017/10/Riscure_Whitepaper_Escalating_Privileges_in_Linux_using_Fault_Injection.pdf",
      "primary_url": "https://www.riscure.com/uploads/2017/10/Riscure_Whitepaper_Escalating_Privileges_in_Linux_using_Fault_Injection.pdf",
      "parent_primary_url": "https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2017-techniques-exploitation-escalating-privileges-in-linux-using-fault-injection-paper-81389564.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Escalating Privileges in Linux using Fault Injection · paper record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Escalating Privileges in Linux using Fault Injection resource_label: paper resource_type: paper resource_url: https://www.riscure.com/uploads/2017/10/Riscure_Whitepaper_Escalating_Privileges_in_Linux_using_Fault_Injection.pdf parent_primary_url: https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"Escalating Privileges in Linux using Fault Injection\" by Niek Timmers and Cristofaro Mune](https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf) [slides] [[video](https://www.youtube.com/watch?v=",
      "link_types": [
        "slides",
        "video",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=nqF_IjXg_uM"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://www.riscure.com/uploads/2017/10/Riscure_Whitepaper_Escalating_Privileges_in_Linux_using_Fault_Injection.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://www.riscure.com/uploads/2017/10/Riscure_Whitepaper_Escalating_Privileges_in_Linux_using_Fault_Injection.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=nqF_IjXg_uM"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Linux",
        "privilege escalation",
        "fault injection"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This paper discusses fault injection techniques for privilege escalation in Linux.",
      "summary_zh": "本文讨论了在Linux中提升权限的故障注入技术。",
      "source_markdown": "[2017: \"Escalating Privileges in Linux using Fault Injection\" by Niek Timmers and Cristofaro Mune](https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf) [slides] [[video](https://www.youtube.com/watch?v=nqF_IjXg_uM)] [[paper](https://www.riscure.com/uploads/2017/10/Riscure_Whitepaper_Escalating_Privileges_in_Linux_using_Fault_Injection.pdf)]",
      "search_text": "escalating privileges in linux using fault injection · paper escalating privileges in linux using fault injection niek timmers cristofaro mune   techniques exploitation technique: exploitation paper paper https://www.riscure.com/uploads/2017/10/riscure_whitepaper_escalating_privileges_in_linux_using_fault_injection.pdf linux privilege escalation fault injection  research this paper discusses fault injection techniques for privilege escalation in linux. 本文讨论了在linux中提升权限的故障注入技术。 # escalating privileges in linux using fault injection · paper record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: escalating privileges in linux using fault injection resource_label: paper resource_type: paper resource_url: https://www.riscure.com/uploads/2017/10/riscure_whitepaper_escalating_privileges_in_linux_using_fault_injection.pdf parent_primary_url: https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"escalating privileges in linux using fault injection\" by niek timmers and cristofaro mune](https://www.riscure.com/uploads/2017/10/escalating-privileges-in-linux-using-fi-presentation-fdtc-2017.pdf) [slides] [[video](https://www.youtube.com/watch?v= no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "224ff79b0f0e33a1",
      "item_id": "4caa1deeb4a50f09",
      "slug": "2017-techniques-exploitation-kernel-driver-mmap-handler-exploitation-primary-3babcbb7",
      "year": 2017,
      "title": "Kernel Driver mmap Handler Exploitation",
      "item_title": "Kernel Driver mmap Handler Exploitation",
      "authors": [
        "Mateusz Fruba"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://labs.withsecure.com/content/dam/labs/docs/mwri-mmap-exploitation-whitepaper-2017-09-18.pdf",
      "primary_url": "https://labs.withsecure.com/content/dam/labs/docs/mwri-mmap-exploitation-whitepaper-2017-09-18.pdf",
      "parent_primary_url": "https://labs.withsecure.com/content/dam/labs/docs/mwri-mmap-exploitation-whitepaper-2017-09-18.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2017-techniques-exploitation-kernel-driver-mmap-handler-exploitation-primary-3babcbb7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Driver mmap Handler Exploitation record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Kernel Driver mmap Handler Exploitation resource_label: primary resource_type: paper resource_url: https://labs.withsecure.com/content/dam/labs/docs/mwri-mmap-exploitation-whitepaper-2017-09-18.pdf parent_primary_url: https://labs.withsecure.com/content/dam/labs/docs/mwri-mmap-exploitation-whitepaper-2017-09-18.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"Kernel Driver mmap Handler Exploitation\" by Mateusz Fruba](https://labs.withsecure.com/content/dam/labs/docs/mwri-mmap-exploitation-whitepaper-2017-09-18.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_im",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://labs.withsecure.com/content/dam/labs/docs/mwri-mmap-exploitation-whitepaper-2017-09-18.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://labs.withsecure.com/content/dam/labs/docs/mwri-mmap-exploitation-whitepaper-2017-09-18.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "mmap",
        "exploitation"
      ],
      "affected_area": "driver",
      "exploit_stage": "exploitation",
      "summary_en": "This paper details exploitation techniques for kernel driver mmap handlers.",
      "summary_zh": "本文详细介绍了内核驱动mmap处理程序的利用技术。",
      "source_markdown": "[2017: \"Kernel Driver mmap Handler Exploitation\" by Mateusz Fruba](https://labs.withsecure.com/content/dam/labs/docs/mwri-mmap-exploitation-whitepaper-2017-09-18.pdf) [paper]",
      "search_text": "kernel driver mmap handler exploitation kernel driver mmap handler exploitation mateusz fruba   techniques exploitation technique: exploitation primary paper https://labs.withsecure.com/content/dam/labs/docs/mwri-mmap-exploitation-whitepaper-2017-09-18.pdf kernel mmap exploitation driver exploitation this paper details exploitation techniques for kernel driver mmap handlers. 本文详细介绍了内核驱动mmap处理程序的利用技术。 # kernel driver mmap handler exploitation record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: kernel driver mmap handler exploitation resource_label: primary resource_type: paper resource_url: https://labs.withsecure.com/content/dam/labs/docs/mwri-mmap-exploitation-whitepaper-2017-09-18.pdf parent_primary_url: https://labs.withsecure.com/content/dam/labs/docs/mwri-mmap-exploitation-whitepaper-2017-09-18.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"kernel driver mmap handler exploitation\" by mateusz fruba](https://labs.withsecure.com/content/dam/labs/docs/mwri-mmap-exploitation-whitepaper-2017-09-18.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_im no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "31466795f1a9044e",
      "item_id": "e441fac6f2d4ba85",
      "slug": "2017-techniques-exploitation-linux-kernel-addr-limit-bug-exploitation-primary-b45b6996",
      "year": 2017,
      "title": "Linux kernel addr_limit bug / exploitation",
      "item_title": "Linux kernel addr_limit bug / exploitation",
      "authors": [
        "Vitaly Nikolenko"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=UFakJa3t8Ls",
      "primary_url": "https://www.youtube.com/watch?v=UFakJa3t8Ls",
      "parent_primary_url": "https://www.youtube.com/watch?v=UFakJa3t8Ls",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2017-techniques-exploitation-linux-kernel-addr-limit-bug-exploitation-primary-b45b6996.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux kernel addr_limit bug / exploitation record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux kernel addr_limit bug / exploitation resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=UFakJa3t8Ls parent_primary_url: https://www.youtube.com/watch?v=UFakJa3t8Ls source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"Linux kernel addr_limit bug / exploitation\" by Vitaly Nikolenko](https://www.youtube.com/watch?v=UFakJa3t8Ls) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: fals",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=UFakJa3t8Ls"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=UFakJa3t8Ls"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "addr_limit",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This video discusses the exploitation of the Linux kernel addr_limit bug.",
      "summary_zh": "本视频讨论了Linux内核addr_limit漏洞的利用。",
      "source_markdown": "[2017: \"Linux kernel addr_limit bug / exploitation\" by Vitaly Nikolenko](https://www.youtube.com/watch?v=UFakJa3t8Ls) [video]",
      "search_text": "linux kernel addr_limit bug / exploitation linux kernel addr_limit bug / exploitation vitaly nikolenko   techniques exploitation technique: exploitation primary video https://www.youtube.com/watch?v=ufakja3t8ls kernel addr_limit exploitation  exploitation this video discusses the exploitation of the linux kernel addr_limit bug. 本视频讨论了linux内核addr_limit漏洞的利用。 # linux kernel addr_limit bug / exploitation record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel addr_limit bug / exploitation resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=ufakja3t8ls parent_primary_url: https://www.youtube.com/watch?v=ufakja3t8ls source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"linux kernel addr_limit bug / exploitation\" by vitaly nikolenko](https://www.youtube.com/watch?v=ufakja3t8ls) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: fals no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "56d2a8573de81489",
      "item_id": "e7a7c97b2c0c42ac",
      "slug": "2017-techniques-exploitation-the-stack-clash-primary-c0d0afb5",
      "year": 2017,
      "title": "The Stack Clash",
      "item_title": "The Stack Clash",
      "authors": [
        "Qualys Research Team"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt",
      "primary_url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt",
      "parent_primary_url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2017-techniques-exploitation-the-stack-clash-primary-c0d0afb5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Stack Clash record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: The Stack Clash resource_label: primary resource_type: article resource_url: https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt parent_primary_url: https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"The Stack Clash\" by Qualys Research Team](https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none c",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "Stack Clash",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article analyzes the Stack Clash vulnerability in the Linux kernel.",
      "summary_zh": "本文分析了Linux内核中的Stack Clash漏洞。",
      "source_markdown": "[2017: \"The Stack Clash\" by Qualys Research Team](https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt) [article]",
      "search_text": "the stack clash the stack clash qualys research team   techniques exploitation technique: exploitation primary article https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt kernel stack clash vulnerability  research this article analyzes the stack clash vulnerability in the linux kernel. 本文分析了linux内核中的stack clash漏洞。 # the stack clash record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: the stack clash resource_label: primary resource_type: article resource_url: https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt parent_primary_url: https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"the stack clash\" by qualys research team](https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none c no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "710a78807b1eb599",
      "item_id": "1657812a7cc6f7fe",
      "slug": "2017-techniques-exploitation-new-reliable-android-kernel-root-exploitation-techniques-primary-21e6f8f0",
      "year": 2017,
      "title": "New Reliable Android Kernel Root Exploitation Techniques",
      "item_title": "New Reliable Android Kernel Root Exploitation Techniques",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "http://powerofcommunity.net/poc2016/x82.pdf",
      "primary_url": "http://powerofcommunity.net/poc2016/x82.pdf",
      "parent_primary_url": "http://powerofcommunity.net/poc2016/x82.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2017-techniques-exploitation-new-reliable-android-kernel-root-exploitation-techniques-primary-21e6f8f0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# New Reliable Android Kernel Root Exploitation Techniques record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: New Reliable Android Kernel Root Exploitation Techniques resource_label: primary resource_type: slides resource_url: http://powerofcommunity.net/poc2016/x82.pdf parent_primary_url: http://powerofcommunity.net/poc2016/x82.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"New Reliable Android Kernel Root Exploitation Techniques\"](http://powerofcommunity.net/poc2016/x82.pdf) [slides] cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather th",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "http://powerofcommunity.net/poc2016/x82.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "http://powerofcommunity.net/poc2016/x82.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Android",
        "kernel",
        "exploitation"
      ],
      "affected_area": "kernel",
      "exploit_stage": "exploitation",
      "summary_en": "This presentation introduces new techniques for reliable Android kernel root exploitation.",
      "summary_zh": "本演示介绍了可靠的Android内核root利用的新技术。",
      "source_markdown": "[2017: \"New Reliable Android Kernel Root Exploitation Techniques\"](http://powerofcommunity.net/poc2016/x82.pdf) [slides]",
      "search_text": "new reliable android kernel root exploitation techniques new reliable android kernel root exploitation techniques    techniques exploitation technique: exploitation primary slides http://powerofcommunity.net/poc2016/x82.pdf android kernel exploitation kernel exploitation this presentation introduces new techniques for reliable android kernel root exploitation. 本演示介绍了可靠的android内核root利用的新技术。 # new reliable android kernel root exploitation techniques record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: new reliable android kernel root exploitation techniques resource_label: primary resource_type: slides resource_url: http://powerofcommunity.net/poc2016/x82.pdf parent_primary_url: http://powerofcommunity.net/poc2016/x82.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"new reliable android kernel root exploitation techniques\"](http://powerofcommunity.net/poc2016/x82.pdf) [slides] cves: none android_impact_status: unknown android_impact_reason: mentions android; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather th unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "b43af6f0d1f318f6",
      "item_id": "1482b1ab3534ef1a",
      "slug": "2017-techniques-exploitation-unleashing-use-before-initialization-vulnerabilities-in-the-linux-kernel-using-ta",
      "year": 2017,
      "title": "Unleashing Use-Before-Initialization Vulnerabilities in the Linux Kernel Using Targeted Stack Spraying",
      "item_title": "Unleashing Use-Before-Initialization Vulnerabilities in the Linux Kernel Using Targeted Stack Spraying",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www-users.cs.umn.edu/~kjlu/papers/tss.pdf",
      "primary_url": "https://www-users.cs.umn.edu/~kjlu/papers/tss.pdf",
      "parent_primary_url": "https://www-users.cs.umn.edu/~kjlu/papers/tss.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2017-techniques-exploitation-unleashing-use-before-initialization-vulnerabilities-in-the-linux-kernel-using-ta.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Unleashing Use-Before-Initialization Vulnerabilities in the Linux Kernel Using Targeted Stack Spraying record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Unleashing Use-Before-Initialization Vulnerabilities in the Linux Kernel Using Targeted Stack Spraying resource_label: primary resource_type: paper resource_url: https://www-users.cs.umn.edu/~kjlu/papers/tss.pdf parent_primary_url: https://www-users.cs.umn.edu/~kjlu/papers/tss.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"Unleashing Use-Before-Initialization Vulnerabilities in the Linux Kernel Using Targeted Stack Spraying\"](https://www-users.cs.umn.edu/~kjlu/papers/tss.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to release",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www-users.cs.umn.edu/~kjlu/papers/tss.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www-users.cs.umn.edu/~kjlu/papers/tss.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "vulnerability",
        "stack spraying"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This paper discusses targeted stack spraying to exploit use-before-initialization vulnerabilities in the Linux kernel.",
      "summary_zh": "本文讨论了针对性堆栈喷涂以利用Linux内核中的使用前初始化漏洞。",
      "source_markdown": "[2017: \"Unleashing Use-Before-Initialization Vulnerabilities in the Linux Kernel Using Targeted Stack Spraying\"](https://www-users.cs.umn.edu/~kjlu/papers/tss.pdf) [paper]",
      "search_text": "unleashing use-before-initialization vulnerabilities in the linux kernel using targeted stack spraying unleashing use-before-initialization vulnerabilities in the linux kernel using targeted stack spraying    techniques exploitation technique: exploitation primary paper https://www-users.cs.umn.edu/~kjlu/papers/tss.pdf kernel vulnerability stack spraying  research this paper discusses targeted stack spraying to exploit use-before-initialization vulnerabilities in the linux kernel. 本文讨论了针对性堆栈喷涂以利用linux内核中的使用前初始化漏洞。 # unleashing use-before-initialization vulnerabilities in the linux kernel using targeted stack spraying record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: unleashing use-before-initialization vulnerabilities in the linux kernel using targeted stack spraying resource_label: primary resource_type: paper resource_url: https://www-users.cs.umn.edu/~kjlu/papers/tss.pdf parent_primary_url: https://www-users.cs.umn.edu/~kjlu/papers/tss.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"unleashing use-before-initialization vulnerabilities in the linux kernel using targeted stack spraying\"](https://www-users.cs.umn.edu/~kjlu/papers/tss.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to release no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "10ea0f7fc93fc420",
      "item_id": "8afd6eefff51c223",
      "slug": "2017-techniques-exploitation-breaking-kaslr-with-perf-primary-00c3e5e9",
      "year": 2017,
      "title": "Breaking KASLR with perf",
      "item_title": "Breaking KASLR with perf",
      "authors": [
        "Lizzie Dixon"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.lizzie.io/kaslr-and-perf.html",
      "primary_url": "https://blog.lizzie.io/kaslr-and-perf.html",
      "parent_primary_url": "https://blog.lizzie.io/kaslr-and-perf.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2017-techniques-exploitation-breaking-kaslr-with-perf-primary-00c3e5e9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Breaking KASLR with perf record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Breaking KASLR with perf resource_label: primary resource_type: article resource_url: https://blog.lizzie.io/kaslr-and-perf.html parent_primary_url: https://blog.lizzie.io/kaslr-and-perf.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"Breaking KASLR with perf\" by Lizzie Dixon](https://blog.lizzie.io/kaslr-and-perf.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: htt",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.lizzie.io/kaslr-and-perf.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.lizzie.io/kaslr-and-perf.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "KASLR",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This article explains how to break KASLR using perf tools.",
      "summary_zh": "本文解释了如何使用perf工具打破KASLR。",
      "source_markdown": "[2017: \"Breaking KASLR with perf\" by Lizzie Dixon](https://blog.lizzie.io/kaslr-and-perf.html) [article]",
      "search_text": "breaking kaslr with perf breaking kaslr with perf lizzie dixon   techniques exploitation technique: exploitation primary article https://blog.lizzie.io/kaslr-and-perf.html kernel kaslr exploitation  exploitation this article explains how to break kaslr using perf tools. 本文解释了如何使用perf工具打破kaslr。 # breaking kaslr with perf record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: breaking kaslr with perf resource_label: primary resource_type: article resource_url: https://blog.lizzie.io/kaslr-and-perf.html parent_primary_url: https://blog.lizzie.io/kaslr-and-perf.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"breaking kaslr with perf\" by lizzie dixon](https://blog.lizzie.io/kaslr-and-perf.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: htt no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bef1436f13fd4107",
      "item_id": "64095cb11efa3bae",
      "slug": "2017-techniques-exploitation-linux-kernel-exploit-cheetsheet-primary-b42e6f5e",
      "year": 2017,
      "title": "Linux kernel exploit cheetsheet",
      "item_title": "Linux kernel exploit cheetsheet",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/verctor/MyNotes/blob/master/linux/linux_kernel_exploit_cheetsheet.md",
      "primary_url": "https://github.com/verctor/MyNotes/blob/master/linux/linux_kernel_exploit_cheetsheet.md",
      "parent_primary_url": "https://github.com/verctor/MyNotes/blob/master/linux/linux_kernel_exploit_cheetsheet.md",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2017-techniques-exploitation-linux-kernel-exploit-cheetsheet-primary-b42e6f5e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux kernel exploit cheetsheet record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux kernel exploit cheetsheet resource_label: primary resource_type: article resource_url: https://github.com/verctor/MyNotes/blob/master/linux/linux_kernel_exploit_cheetsheet.md parent_primary_url: https://github.com/verctor/MyNotes/blob/master/linux/linux_kernel_exploit_cheetsheet.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"Linux kernel exploit cheetsheet\"](https://github.com/verctor/MyNotes/blob/master/linux/linux_kernel_exploit_cheetsheet.md) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/verctor/MyNotes/blob/master/linux/linux_kernel_exploit_cheetsheet.md"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/verctor/MyNotes/blob/master/linux/linux_kernel_exploit_cheetsheet.md"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/verctor/MyNotes/blob/master/linux/linux_kernel_exploit_cheetsheet.md"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "exploitation",
        "cheat sheet"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This article serves as a cheat sheet for Linux kernel exploitation techniques.",
      "summary_zh": "本文作为Linux内核利用技术的备忘单。",
      "source_markdown": "[2017: \"Linux kernel exploit cheetsheet\"](https://github.com/verctor/MyNotes/blob/master/linux/linux_kernel_exploit_cheetsheet.md) [article]",
      "search_text": "linux kernel exploit cheetsheet linux kernel exploit cheetsheet    techniques exploitation technique: exploitation primary article https://github.com/verctor/mynotes/blob/master/linux/linux_kernel_exploit_cheetsheet.md kernel exploitation cheat sheet  exploitation this article serves as a cheat sheet for linux kernel exploitation techniques. 本文作为linux内核利用技术的备忘单。 # linux kernel exploit cheetsheet record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel exploit cheetsheet resource_label: primary resource_type: article resource_url: https://github.com/verctor/mynotes/blob/master/linux/linux_kernel_exploit_cheetsheet.md parent_primary_url: https://github.com/verctor/mynotes/blob/master/linux/linux_kernel_exploit_cheetsheet.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2017: \"linux kernel exploit cheetsheet\"](https://github.com/verctor/mynotes/blob/master/linux/linux_kernel_exploit_cheetsheet.md) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "ca0c6baa7c05a20b",
      "item_id": "8a19eedaab6c6958",
      "slug": "2016-techniques-exploitation-getting-physical-extreme-abuse-of-intel-based-paging-systems-primary-a3284968",
      "year": 2016,
      "title": "Getting Physical Extreme abuse of Intel based Paging Systems",
      "item_title": "Getting Physical Extreme abuse of Intel based Paging Systems",
      "authors": [
        "Nicolas Economou",
        "Enrique Nissim"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://cansecwest.com/slides/2016/CSW2016_Economou-Nissim_GettingPhysical.pdf",
      "primary_url": "https://cansecwest.com/slides/2016/CSW2016_Economou-Nissim_GettingPhysical.pdf",
      "parent_primary_url": "https://cansecwest.com/slides/2016/CSW2016_Economou-Nissim_GettingPhysical.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2016-techniques-exploitation-getting-physical-extreme-abuse-of-intel-based-paging-systems-primary-a3284968.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Getting Physical Extreme abuse of Intel based Paging Systems record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Getting Physical Extreme abuse of Intel based Paging Systems resource_label: primary resource_type: slides resource_url: https://cansecwest.com/slides/2016/CSW2016_Economou-Nissim_GettingPhysical.pdf parent_primary_url: https://cansecwest.com/slides/2016/CSW2016_Economou-Nissim_GettingPhysical.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"Getting Physical Extreme abuse of Intel based Paging Systems\" by Nicolas Economou and Enrique Nissim](https://cansecwest.com/slides/2016/CSW2016_Economou-Nissim_GettingPhysical.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to relea",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://cansecwest.com/slides/2016/CSW2016_Economou-Nissim_GettingPhysical.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://cansecwest.com/slides/2016/CSW2016_Economou-Nissim_GettingPhysical.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Intel",
        "paging",
        "abuse"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This presentation discusses extreme abuse of Intel-based paging systems.",
      "summary_zh": "本演示讨论了对基于Intel的分页系统的极端滥用。",
      "source_markdown": "[2016: \"Getting Physical Extreme abuse of Intel based Paging Systems\" by Nicolas Economou and Enrique Nissim](https://cansecwest.com/slides/2016/CSW2016_Economou-Nissim_GettingPhysical.pdf) [slides]",
      "search_text": "getting physical extreme abuse of intel based paging systems getting physical extreme abuse of intel based paging systems nicolas economou enrique nissim   techniques exploitation technique: exploitation primary slides https://cansecwest.com/slides/2016/csw2016_economou-nissim_gettingphysical.pdf intel paging abuse  exploitation this presentation discusses extreme abuse of intel-based paging systems. 本演示讨论了对基于intel的分页系统的极端滥用。 # getting physical extreme abuse of intel based paging systems record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: getting physical extreme abuse of intel based paging systems resource_label: primary resource_type: slides resource_url: https://cansecwest.com/slides/2016/csw2016_economou-nissim_gettingphysical.pdf parent_primary_url: https://cansecwest.com/slides/2016/csw2016_economou-nissim_gettingphysical.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"getting physical extreme abuse of intel based paging systems\" by nicolas economou and enrique nissim](https://cansecwest.com/slides/2016/csw2016_economou-nissim_gettingphysical.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to relea no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "29a39bc4c10c621f",
      "item_id": "4ff6e761b357a468",
      "slug": "2016-techniques-exploitation-linux-kernel-rop-ropping-your-way-to-part-1-primary-6d6233ac",
      "year": 2016,
      "title": "Linux Kernel ROP - Ropping your way to # (Part 1)",
      "item_title": "Linux Kernel ROP - Ropping your way to # (Part 1)",
      "authors": [
        "Vitaly Nikolenko"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-1",
      "primary_url": "https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-1",
      "parent_primary_url": "https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-1",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2016-techniques-exploitation-linux-kernel-rop-ropping-your-way-to-part-1-primary-6d6233ac.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel ROP - Ropping your way to # (Part 1) record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel ROP - Ropping your way to # (Part 1) resource_label: primary resource_type: article resource_url: https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-1 parent_primary_url: https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-1 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"Linux Kernel ROP - Ropping your way to # (Part 1)\" by Vitaly Nikolenko](https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-1)/) [article] [[exercise](https://github.com/vnik5287/kernel_rop)] cves: none android_impact_status: no andr",
      "link_types": [
        "article",
        "exercise"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-1"
        },
        {
          "label": "exercise",
          "type": "exercise",
          "url": "https://github.com/vnik5287/kernel_rop"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-1"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "exercise",
            "type": "exercise",
            "url": "https://github.com/vnik5287/kernel_rop"
          }
        ]
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/vnik5287/kernel_rop"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "ROP",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This article introduces ROP techniques for Linux kernel exploitation.",
      "summary_zh": "本文介绍了Linux内核利用的ROP技术。",
      "source_markdown": "[2016: \"Linux Kernel ROP - Ropping your way to # (Part 1)\" by Vitaly Nikolenko](https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-1)/) [article] [[exercise](https://github.com/vnik5287/kernel_rop)]",
      "search_text": "linux kernel rop - ropping your way to # (part 1) linux kernel rop - ropping your way to # (part 1) vitaly nikolenko   techniques exploitation technique: exploitation primary article https://www.trustwave.com/resources/spiderlabs-blog/linux-kernel-rop---ropping-your-way-to---(part-1 kernel rop exploitation  exploitation this article introduces rop techniques for linux kernel exploitation. 本文介绍了linux内核利用的rop技术。 # linux kernel rop - ropping your way to # (part 1) record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel rop - ropping your way to # (part 1) resource_label: primary resource_type: article resource_url: https://www.trustwave.com/resources/spiderlabs-blog/linux-kernel-rop---ropping-your-way-to---(part-1 parent_primary_url: https://www.trustwave.com/resources/spiderlabs-blog/linux-kernel-rop---ropping-your-way-to---(part-1 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"linux kernel rop - ropping your way to # (part 1)\" by vitaly nikolenko](https://www.trustwave.com/resources/spiderlabs-blog/linux-kernel-rop---ropping-your-way-to---(part-1)/) [article] [[exercise](https://github.com/vnik5287/kernel_rop)] cves: none android_impact_status: no andr no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "55c1d24820bf2d4c",
      "item_id": "4ff6e761b357a468",
      "slug": "2016-techniques-exploitation-linux-kernel-rop-ropping-your-way-to-part-1-exercise-1abd65c1",
      "year": 2016,
      "title": "Linux Kernel ROP - Ropping your way to # (Part 1) · exercise",
      "item_title": "Linux Kernel ROP - Ropping your way to # (Part 1)",
      "authors": [
        "Vitaly Nikolenko"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "exercise",
      "resource_type": "exercise",
      "resource_url": "https://github.com/vnik5287/kernel_rop",
      "primary_url": "https://github.com/vnik5287/kernel_rop",
      "parent_primary_url": "https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-1",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2016-techniques-exploitation-linux-kernel-rop-ropping-your-way-to-part-1-exercise-1abd65c1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel ROP - Ropping your way to # (Part 1) · exercise record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel ROP - Ropping your way to # (Part 1) resource_label: exercise resource_type: exercise resource_url: https://github.com/vnik5287/kernel_rop parent_primary_url: https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-1 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"Linux Kernel ROP - Ropping your way to # (Part 1)\" by Vitaly Nikolenko](https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-1)/) [article] [[exercise](https://github.com/vnik5287/kernel_rop)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this ",
      "link_types": [
        "article",
        "exercise"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-1"
        },
        {
          "label": "exercise",
          "type": "exercise",
          "url": "https://github.com/vnik5287/kernel_rop"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-1"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "exercise",
            "type": "exercise",
            "url": "https://github.com/vnik5287/kernel_rop"
          }
        ]
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/vnik5287/kernel_rop"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "ROP",
        "exercise"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This exercise provides practical ROP techniques for Linux kernel exploitation.",
      "summary_zh": "本练习提供了Linux内核利用的实用ROP技术。",
      "source_markdown": "[2016: \"Linux Kernel ROP - Ropping your way to # (Part 1)\" by Vitaly Nikolenko](https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-1)/) [article] [[exercise](https://github.com/vnik5287/kernel_rop)]",
      "search_text": "linux kernel rop - ropping your way to # (part 1) · exercise linux kernel rop - ropping your way to # (part 1) vitaly nikolenko   techniques exploitation technique: exploitation exercise exercise https://github.com/vnik5287/kernel_rop kernel rop exercise  exploitation this exercise provides practical rop techniques for linux kernel exploitation. 本练习提供了linux内核利用的实用rop技术。 # linux kernel rop - ropping your way to # (part 1) · exercise record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel rop - ropping your way to # (part 1) resource_label: exercise resource_type: exercise resource_url: https://github.com/vnik5287/kernel_rop parent_primary_url: https://www.trustwave.com/resources/spiderlabs-blog/linux-kernel-rop---ropping-your-way-to---(part-1 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"linux kernel rop - ropping your way to # (part 1)\" by vitaly nikolenko](https://www.trustwave.com/resources/spiderlabs-blog/linux-kernel-rop---ropping-your-way-to---(part-1)/) [article] [[exercise](https://github.com/vnik5287/kernel_rop)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "83dc301143802dae",
      "item_id": "c3c027ed4b958944",
      "slug": "2016-techniques-exploitation-linux-kernel-rop-ropping-your-way-to-part-2-primary-6dbd8709",
      "year": 2016,
      "title": "Linux Kernel ROP - Ropping your way to # (Part 2)",
      "item_title": "Linux Kernel ROP - Ropping your way to # (Part 2)",
      "authors": [
        "Vitaly Nikolenko"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-2",
      "primary_url": "https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-2",
      "parent_primary_url": "https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-2",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2016-techniques-exploitation-linux-kernel-rop-ropping-your-way-to-part-2-primary-6dbd8709.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel ROP - Ropping your way to # (Part 2) record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel ROP - Ropping your way to # (Part 2) resource_label: primary resource_type: article resource_url: https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-2 parent_primary_url: https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-2 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"Linux Kernel ROP - Ropping your way to # (Part 2)\" by Vitaly Nikolenko](https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-2)/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this reso",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-2"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-2"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "ROP",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This article continues the discussion on ROP techniques for Linux kernel exploitation.",
      "summary_zh": "本文继续讨论Linux内核利用的ROP技术。",
      "source_markdown": "[2016: \"Linux Kernel ROP - Ropping your way to # (Part 2)\" by Vitaly Nikolenko](https://www.trustwave.com/Resources/SpiderLabs-Blog/Linux-Kernel-ROP---Ropping-your-way-to---(Part-2)/) [article]",
      "search_text": "linux kernel rop - ropping your way to # (part 2) linux kernel rop - ropping your way to # (part 2) vitaly nikolenko   techniques exploitation technique: exploitation primary article https://www.trustwave.com/resources/spiderlabs-blog/linux-kernel-rop---ropping-your-way-to---(part-2 kernel rop exploitation  exploitation this article continues the discussion on rop techniques for linux kernel exploitation. 本文继续讨论linux内核利用的rop技术。 # linux kernel rop - ropping your way to # (part 2) record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel rop - ropping your way to # (part 2) resource_label: primary resource_type: article resource_url: https://www.trustwave.com/resources/spiderlabs-blog/linux-kernel-rop---ropping-your-way-to---(part-2 parent_primary_url: https://www.trustwave.com/resources/spiderlabs-blog/linux-kernel-rop---ropping-your-way-to---(part-2 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"linux kernel rop - ropping your way to # (part 2)\" by vitaly nikolenko](https://www.trustwave.com/resources/spiderlabs-blog/linux-kernel-rop---ropping-your-way-to---(part-2)/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this reso no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6e6a234ee2a34fbd",
      "item_id": "034ab03c285f0a97",
      "slug": "2016-techniques-exploitation-exploiting-cof-vulnerabilities-in-the-linux-kernel-primary-6e331cad",
      "year": 2016,
      "title": "Exploiting COF Vulnerabilities in the Linux kernel",
      "item_title": "Exploiting COF Vulnerabilities in the Linux kernel",
      "authors": [
        "Vitaly Nikolenko at Ruxcon"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://ruxcon.org.au/assets/2016/slides/ruxcon2016-Vitaly.pdf",
      "primary_url": "https://ruxcon.org.au/assets/2016/slides/ruxcon2016-Vitaly.pdf",
      "parent_primary_url": "https://ruxcon.org.au/assets/2016/slides/ruxcon2016-Vitaly.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2016-techniques-exploitation-exploiting-cof-vulnerabilities-in-the-linux-kernel-primary-6e331cad.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting COF Vulnerabilities in the Linux kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Exploiting COF Vulnerabilities in the Linux kernel resource_label: primary resource_type: slides resource_url: https://ruxcon.org.au/assets/2016/slides/ruxcon2016-Vitaly.pdf parent_primary_url: https://ruxcon.org.au/assets/2016/slides/ruxcon2016-Vitaly.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"Exploiting COF Vulnerabilities in the Linux kernel\" by Vitaly Nikolenko at Ruxcon](https://ruxcon.org.au/assets/2016/slides/ruxcon2016-Vitaly.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices us",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://ruxcon.org.au/assets/2016/slides/ruxcon2016-Vitaly.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://ruxcon.org.au/assets/2016/slides/ruxcon2016-Vitaly.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "COF",
        "vulnerabilities"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This resource discusses exploiting COF vulnerabilities in the Linux kernel.",
      "summary_zh": "该资源讨论了如何利用Linux内核中的COF漏洞。",
      "source_markdown": "[2016: \"Exploiting COF Vulnerabilities in the Linux kernel\" by Vitaly Nikolenko at Ruxcon](https://ruxcon.org.au/assets/2016/slides/ruxcon2016-Vitaly.pdf) [slides]",
      "search_text": "exploiting cof vulnerabilities in the linux kernel exploiting cof vulnerabilities in the linux kernel vitaly nikolenko at ruxcon   techniques exploitation technique: exploitation primary slides https://ruxcon.org.au/assets/2016/slides/ruxcon2016-vitaly.pdf exploitation cof vulnerabilities  exploitation this resource discusses exploiting cof vulnerabilities in the linux kernel. 该资源讨论了如何利用linux内核中的cof漏洞。 # exploiting cof vulnerabilities in the linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: exploiting cof vulnerabilities in the linux kernel resource_label: primary resource_type: slides resource_url: https://ruxcon.org.au/assets/2016/slides/ruxcon2016-vitaly.pdf parent_primary_url: https://ruxcon.org.au/assets/2016/slides/ruxcon2016-vitaly.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"exploiting cof vulnerabilities in the linux kernel\" by vitaly nikolenko at ruxcon](https://ruxcon.org.au/assets/2016/slides/ruxcon2016-vitaly.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices us no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "02e0621bbee49296",
      "item_id": "64a01442876f2a79",
      "slug": "2016-techniques-exploitation-using-userfaultfd-primary-ec74b8ae",
      "year": 2016,
      "title": "Using userfaultfd",
      "item_title": "Using userfaultfd",
      "authors": [
        "Lizzie Dixon"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.lizzie.io/using-userfaultfd.html",
      "primary_url": "https://blog.lizzie.io/using-userfaultfd.html",
      "parent_primary_url": "https://blog.lizzie.io/using-userfaultfd.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2016-techniques-exploitation-using-userfaultfd-primary-ec74b8ae.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Using userfaultfd record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Using userfaultfd resource_label: primary resource_type: article resource_url: https://blog.lizzie.io/using-userfaultfd.html parent_primary_url: https://blog.lizzie.io/using-userfaultfd.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"Using userfaultfd\" by Lizzie Dixon](https://blog.lizzie.io/using-userfaultfd.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://blog.li",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.lizzie.io/using-userfaultfd.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.lizzie.io/using-userfaultfd.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "userfaultfd"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "An article detailing the use of userfaultfd in Linux kernel exploitation.",
      "summary_zh": "一篇详细介绍在Linux内核利用中使用userfaultfd的文章。",
      "source_markdown": "[2016: \"Using userfaultfd\" by Lizzie Dixon](https://blog.lizzie.io/using-userfaultfd.html) [article]",
      "search_text": "using userfaultfd using userfaultfd lizzie dixon   techniques exploitation technique: exploitation primary article https://blog.lizzie.io/using-userfaultfd.html exploitation userfaultfd  exploitation an article detailing the use of userfaultfd in linux kernel exploitation. 一篇详细介绍在linux内核利用中使用userfaultfd的文章。 # using userfaultfd record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: using userfaultfd resource_label: primary resource_type: article resource_url: https://blog.lizzie.io/using-userfaultfd.html parent_primary_url: https://blog.lizzie.io/using-userfaultfd.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"using userfaultfd\" by lizzie dixon](https://blog.lizzie.io/using-userfaultfd.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://blog.li no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "965ed55f27d491cc",
      "item_id": "ecb07dc0e478376c",
      "slug": "2016-techniques-exploitation-direct-memory-attack-the-kernel-primary-07261b5d",
      "year": 2016,
      "title": "Direct Memory Attack the Kernel",
      "item_title": "Direct Memory Attack the Kernel",
      "authors": [
        "Ulf Frisk at DEF CON"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=fXthwl6ShOg",
      "primary_url": "https://www.youtube.com/watch?v=fXthwl6ShOg",
      "parent_primary_url": "https://www.youtube.com/watch?v=fXthwl6ShOg",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2016-techniques-exploitation-direct-memory-attack-the-kernel-primary-07261b5d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Direct Memory Attack the Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Direct Memory Attack the Kernel resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=fXthwl6ShOg parent_primary_url: https://www.youtube.com/watch?v=fXthwl6ShOg source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"Direct Memory Attack the Kernel\" by Ulf Frisk at DEF CON](https://www.youtube.com/watch?v=fXthwl6ShOg) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_lin",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=fXthwl6ShOg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=fXthwl6ShOg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "memory attack"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "A video presentation on direct memory attacks targeting the Linux kernel.",
      "summary_zh": "关于针对Linux内核的直接内存攻击的视频演示。",
      "source_markdown": "[2016: \"Direct Memory Attack the Kernel\" by Ulf Frisk at DEF CON](https://www.youtube.com/watch?v=fXthwl6ShOg) [video]",
      "search_text": "direct memory attack the kernel direct memory attack the kernel ulf frisk at def con   techniques exploitation technique: exploitation primary video https://www.youtube.com/watch?v=fxthwl6shog exploitation memory attack  exploitation a video presentation on direct memory attacks targeting the linux kernel. 关于针对linux内核的直接内存攻击的视频演示。 # direct memory attack the kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: direct memory attack the kernel resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=fxthwl6shog parent_primary_url: https://www.youtube.com/watch?v=fxthwl6shog source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"direct memory attack the kernel\" by ulf frisk at def con](https://www.youtube.com/watch?v=fxthwl6shog) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_lin no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f7ffdccb0ce7fecc",
      "item_id": "b6628b020bc91c12",
      "slug": "2016-techniques-exploitation-randomization-can-t-stop-bpf-jit-spray-primary-7c5d0efa",
      "year": 2016,
      "title": "Randomization Can't Stop BPF JIT Spray",
      "item_title": "Randomization Can't Stop BPF JIT Spray",
      "authors": [
        "Elena Reshetova at Black Hat"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf",
      "primary_url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf",
      "parent_primary_url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2016-techniques-exploitation-randomization-can-t-stop-bpf-jit-spray-primary-7c5d0efa.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Randomization Can't Stop BPF JIT Spray record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Randomization Can't Stop BPF JIT Spray resource_label: primary resource_type: slides resource_url: https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf parent_primary_url: https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"Randomization Can't Stop BPF JIT Spray\" by Elena Reshetova at Black Hat](https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf) [slides] [[video](https://www.youtube.com/watch?v=_F7iQQ1Um2M)] [[paper](https://www.blackhat.com/docs/eu-16/materia",
      "link_types": [
        "slides",
        "video",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=_F7iQQ1Um2M"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray-wp.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray-wp.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=_F7iQQ1Um2M"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "BPF",
        "JIT spray"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Slides discussing the limitations of randomization against BPF JIT spray attacks.",
      "summary_zh": "讨论随机化对抗BPF JIT喷射攻击局限性的幻灯片。",
      "source_markdown": "[2016: \"Randomization Can't Stop BPF JIT Spray\" by Elena Reshetova at Black Hat](https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf) [slides] [[video](https://www.youtube.com/watch?v=_F7iQQ1Um2M)] [[paper](https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray-wp.pdf)]",
      "search_text": "randomization can't stop bpf jit spray randomization can't stop bpf jit spray elena reshetova at black hat   techniques exploitation technique: exploitation primary slides https://www.blackhat.com/docs/eu-16/materials/eu-16-reshetova-randomization-can't-stop-bpf-jit-spray.pdf exploitation bpf jit spray  exploitation slides discussing the limitations of randomization against bpf jit spray attacks. 讨论随机化对抗bpf jit喷射攻击局限性的幻灯片。 # randomization can't stop bpf jit spray record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: randomization can't stop bpf jit spray resource_label: primary resource_type: slides resource_url: https://www.blackhat.com/docs/eu-16/materials/eu-16-reshetova-randomization-can't-stop-bpf-jit-spray.pdf parent_primary_url: https://www.blackhat.com/docs/eu-16/materials/eu-16-reshetova-randomization-can't-stop-bpf-jit-spray.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"randomization can't stop bpf jit spray\" by elena reshetova at black hat](https://www.blackhat.com/docs/eu-16/materials/eu-16-reshetova-randomization-can't-stop-bpf-jit-spray.pdf) [slides] [[video](https://www.youtube.com/watch?v=_f7iqq1um2m)] [[paper](https://www.blackhat.com/docs/eu-16/materia no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "fbfdc6895f5f7e80",
      "item_id": "b6628b020bc91c12",
      "slug": "2016-techniques-exploitation-randomization-can-t-stop-bpf-jit-spray-video-1ee3e74b",
      "year": 2016,
      "title": "Randomization Can't Stop BPF JIT Spray · video",
      "item_title": "Randomization Can't Stop BPF JIT Spray",
      "authors": [
        "Elena Reshetova at Black Hat"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=_F7iQQ1Um2M",
      "primary_url": "https://www.youtube.com/watch?v=_F7iQQ1Um2M",
      "parent_primary_url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2016-techniques-exploitation-randomization-can-t-stop-bpf-jit-spray-video-1ee3e74b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Randomization Can't Stop BPF JIT Spray · video record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Randomization Can't Stop BPF JIT Spray resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=_F7iQQ1Um2M parent_primary_url: https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"Randomization Can't Stop BPF JIT Spray\" by Elena Reshetova at Black Hat](https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf) [slides] [[video](https://www.youtube.com/watch?v=_F7iQQ1Um2M)] [[paper](https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spra",
      "link_types": [
        "slides",
        "video",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=_F7iQQ1Um2M"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray-wp.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray-wp.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=_F7iQQ1Um2M"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "BPF",
        "JIT spray"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "A video presentation on the BPF JIT spray technique and its implications.",
      "summary_zh": "关于BPF JIT喷射技术及其影响的视频演示。",
      "source_markdown": "[2016: \"Randomization Can't Stop BPF JIT Spray\" by Elena Reshetova at Black Hat](https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf) [slides] [[video](https://www.youtube.com/watch?v=_F7iQQ1Um2M)] [[paper](https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray-wp.pdf)]",
      "search_text": "randomization can't stop bpf jit spray · video randomization can't stop bpf jit spray elena reshetova at black hat   techniques exploitation technique: exploitation video video https://www.youtube.com/watch?v=_f7iqq1um2m exploitation bpf jit spray  exploitation a video presentation on the bpf jit spray technique and its implications. 关于bpf jit喷射技术及其影响的视频演示。 # randomization can't stop bpf jit spray · video record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: randomization can't stop bpf jit spray resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=_f7iqq1um2m parent_primary_url: https://www.blackhat.com/docs/eu-16/materials/eu-16-reshetova-randomization-can't-stop-bpf-jit-spray.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"randomization can't stop bpf jit spray\" by elena reshetova at black hat](https://www.blackhat.com/docs/eu-16/materials/eu-16-reshetova-randomization-can't-stop-bpf-jit-spray.pdf) [slides] [[video](https://www.youtube.com/watch?v=_f7iqq1um2m)] [[paper](https://www.blackhat.com/docs/eu-16/materials/eu-16-reshetova-randomization-can't-stop-bpf-jit-spra no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "72a301078e5af2c7",
      "item_id": "b6628b020bc91c12",
      "slug": "2016-techniques-exploitation-randomization-can-t-stop-bpf-jit-spray-paper-89c853dc",
      "year": 2016,
      "title": "Randomization Can't Stop BPF JIT Spray · paper",
      "item_title": "Randomization Can't Stop BPF JIT Spray",
      "authors": [
        "Elena Reshetova at Black Hat"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "paper",
      "resource_type": "paper",
      "resource_url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray-wp.pdf",
      "primary_url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray-wp.pdf",
      "parent_primary_url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2016-techniques-exploitation-randomization-can-t-stop-bpf-jit-spray-paper-89c853dc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Randomization Can't Stop BPF JIT Spray · paper record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Randomization Can't Stop BPF JIT Spray resource_label: paper resource_type: paper resource_url: https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray-wp.pdf parent_primary_url: https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"Randomization Can't Stop BPF JIT Spray\" by Elena Reshetova at Black Hat](https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf) [slides] [[video](https://www.youtube.com/watch?v=_F7iQQ1Um2M)] [[paper](https://www.blackhat.com/docs/eu-16",
      "link_types": [
        "slides",
        "video",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=_F7iQQ1Um2M"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray-wp.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray-wp.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=_F7iQQ1Um2M"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "BPF",
        "JIT spray"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "A paper detailing the BPF JIT spray technique and its effectiveness.",
      "summary_zh": "详细介绍BPF JIT喷射技术及其有效性的论文。",
      "source_markdown": "[2016: \"Randomization Can't Stop BPF JIT Spray\" by Elena Reshetova at Black Hat](https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray.pdf) [slides] [[video](https://www.youtube.com/watch?v=_F7iQQ1Um2M)] [[paper](https://www.blackhat.com/docs/eu-16/materials/eu-16-Reshetova-Randomization-Can't-Stop-BPF-JIT-Spray-wp.pdf)]",
      "search_text": "randomization can't stop bpf jit spray · paper randomization can't stop bpf jit spray elena reshetova at black hat   techniques exploitation technique: exploitation paper paper https://www.blackhat.com/docs/eu-16/materials/eu-16-reshetova-randomization-can't-stop-bpf-jit-spray-wp.pdf exploitation bpf jit spray  exploitation a paper detailing the bpf jit spray technique and its effectiveness. 详细介绍bpf jit喷射技术及其有效性的论文。 # randomization can't stop bpf jit spray · paper record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: randomization can't stop bpf jit spray resource_label: paper resource_type: paper resource_url: https://www.blackhat.com/docs/eu-16/materials/eu-16-reshetova-randomization-can't-stop-bpf-jit-spray-wp.pdf parent_primary_url: https://www.blackhat.com/docs/eu-16/materials/eu-16-reshetova-randomization-can't-stop-bpf-jit-spray.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2016: \"randomization can't stop bpf jit spray\" by elena reshetova at black hat](https://www.blackhat.com/docs/eu-16/materials/eu-16-reshetova-randomization-can't-stop-bpf-jit-spray.pdf) [slides] [[video](https://www.youtube.com/watch?v=_f7iqq1um2m)] [[paper](https://www.blackhat.com/docs/eu-16 no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "8403a87305804062",
      "item_id": "8691b911ed94363a",
      "slug": "2015-techniques-exploitation-kernel-data-attack-is-a-realistic-security-threat-primary-d06e5ade",
      "year": 2015,
      "title": "Kernel Data Attack is a Realistic Security Threat",
      "item_title": "Kernel Data Attack is a Realistic Security Threat",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.eecis.udel.edu/~hnw/paper/kerneldata.pdf",
      "primary_url": "https://www.eecis.udel.edu/~hnw/paper/kerneldata.pdf",
      "parent_primary_url": "https://www.eecis.udel.edu/~hnw/paper/kerneldata.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2015-techniques-exploitation-kernel-data-attack-is-a-realistic-security-threat-primary-d06e5ade.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Data Attack is a Realistic Security Threat record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Kernel Data Attack is a Realistic Security Threat resource_label: primary resource_type: paper resource_url: https://www.eecis.udel.edu/~hnw/paper/kerneldata.pdf parent_primary_url: https://www.eecis.udel.edu/~hnw/paper/kerneldata.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2015: \"Kernel Data Attack is a Realistic Security Threat\"](https://www.eecis.udel.edu/~hnw/paper/kerneldata.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: ",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.eecis.udel.edu/~hnw/paper/kerneldata.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.eecis.udel.edu/~hnw/paper/kerneldata.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel data attack"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This paper discusses the realistic threats posed by kernel data attacks.",
      "summary_zh": "该论文讨论了内核数据攻击带来的现实威胁。",
      "source_markdown": "[2015: \"Kernel Data Attack is a Realistic Security Threat\"](https://www.eecis.udel.edu/~hnw/paper/kerneldata.pdf) [paper]",
      "search_text": "kernel data attack is a realistic security threat kernel data attack is a realistic security threat    techniques exploitation technique: exploitation primary paper https://www.eecis.udel.edu/~hnw/paper/kerneldata.pdf exploitation kernel data attack  exploitation this paper discusses the realistic threats posed by kernel data attacks. 该论文讨论了内核数据攻击带来的现实威胁。 # kernel data attack is a realistic security threat record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: kernel data attack is a realistic security threat resource_label: primary resource_type: paper resource_url: https://www.eecis.udel.edu/~hnw/paper/kerneldata.pdf parent_primary_url: https://www.eecis.udel.edu/~hnw/paper/kerneldata.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2015: \"kernel data attack is a realistic security threat\"](https://www.eecis.udel.edu/~hnw/paper/kerneldata.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d7c6f9e08ef0f19f",
      "item_id": "c0b2a830df21f45a",
      "slug": "2015-techniques-exploitation-from-collision-to-exploitation-unleashing-use-after-free-vulnerabilities-in-linux",
      "year": 2015,
      "title": "From Collision To Exploitation: Unleashing Use-After-Free Vulnerabilities in Linux Kernel",
      "item_title": "From Collision To Exploitation: Unleashing Use-After-Free Vulnerabilities in Linux Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "http://repository.root-me.org/Exploitation%20-%20Syst%C3%A8me/Unix/EN%20-%20From%20collision%20to%20exploitation%3A%20Unleashing%20Use-After-Free%20vulnerabilities%20in%20Linux%20Kernel.pdf",
      "primary_url": "http://repository.root-me.org/Exploitation%20-%20Syst%C3%A8me/Unix/EN%20-%20From%20collision%20to%20exploitation%3A%20Unleashing%20Use-After-Free%20vulnerabilities%20in%20Linux%20Kernel.pdf",
      "parent_primary_url": "http://repository.root-me.org/Exploitation%20-%20Syst%C3%A8me/Unix/EN%20-%20From%20collision%20to%20exploitation%3A%20Unleashing%20Use-After-Free%20vulnerabilities%20in%20Linux%20Kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2015-techniques-exploitation-from-collision-to-exploitation-unleashing-use-after-free-vulnerabilities-in-linux.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# From Collision To Exploitation: Unleashing Use-After-Free Vulnerabilities in Linux Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: From Collision To Exploitation: Unleashing Use-After-Free Vulnerabilities in Linux Kernel resource_label: primary resource_type: paper resource_url: http://repository.root-me.org/Exploitation%20-%20Syst%C3%A8me/Unix/EN%20-%20From%20collision%20to%20exploitation%3A%20Unleashing%20Use-After-Free%20vulnerabilities%20in%20Linux%20Kernel.pdf parent_primary_url: http://repository.root-me.org/Exploitation%20-%20Syst%C3%A8me/Unix/EN%20-%20From%20collision%20to%20exploitation%3A%20Unleashing%20Use-After-Free%20vulnerabilities%20in%20Linux%20Kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2015: \"From Collision To Exploi",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "http://repository.root-me.org/Exploitation%20-%20Syst%C3%A8me/Unix/EN%20-%20From%20collision%20to%20exploitation%3A%20Unleashing%20Use-After-Free%20vulnerabilities%20in%20Linux%20Kernel.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "http://repository.root-me.org/Exploitation%20-%20Syst%C3%A8me/Unix/EN%20-%20From%20collision%20to%20exploitation%3A%20Unleashing%20Use-After-Free%20vulnerabilities%20in%20Linux%20Kernel.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "use-after-free"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "A paper on exploiting use-after-free vulnerabilities in the Linux kernel.",
      "summary_zh": "关于利用Linux内核中的使用后释放漏洞的论文。",
      "source_markdown": "[2015: \"From Collision To Exploitation: Unleashing Use-After-Free Vulnerabilities in Linux Kernel\"](http://repository.root-me.org/Exploitation%20-%20Syst%C3%A8me/Unix/EN%20-%20From%20collision%20to%20exploitation%3A%20Unleashing%20Use-After-Free%20vulnerabilities%20in%20Linux%20Kernel.pdf) [paper]",
      "search_text": "from collision to exploitation: unleashing use-after-free vulnerabilities in linux kernel from collision to exploitation: unleashing use-after-free vulnerabilities in linux kernel    techniques exploitation technique: exploitation primary paper http://repository.root-me.org/exploitation%20-%20syst%c3%a8me/unix/en%20-%20from%20collision%20to%20exploitation%3a%20unleashing%20use-after-free%20vulnerabilities%20in%20linux%20kernel.pdf exploitation use-after-free  exploitation a paper on exploiting use-after-free vulnerabilities in the linux kernel. 关于利用linux内核中的使用后释放漏洞的论文。 # from collision to exploitation: unleashing use-after-free vulnerabilities in linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: from collision to exploitation: unleashing use-after-free vulnerabilities in linux kernel resource_label: primary resource_type: paper resource_url: http://repository.root-me.org/exploitation%20-%20syst%c3%a8me/unix/en%20-%20from%20collision%20to%20exploitation%3a%20unleashing%20use-after-free%20vulnerabilities%20in%20linux%20kernel.pdf parent_primary_url: http://repository.root-me.org/exploitation%20-%20syst%c3%a8me/unix/en%20-%20from%20collision%20to%20exploitation%3a%20unleashing%20use-after-free%20vulnerabilities%20in%20linux%20kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2015: \"from collision to exploi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "676a82193bac1c5e",
      "item_id": "d9e1d23eba96aa74",
      "slug": "2015-techniques-exploitation-modern-binary-exploitation-linux-kernel-exploitation-primary-acf87ba1",
      "year": 2015,
      "title": "Modern Binary Exploitation: Linux Kernel Exploitation",
      "item_title": "Modern Binary Exploitation: Linux Kernel Exploitation",
      "authors": [
        "Patrick Biernat"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf",
      "primary_url": "https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf",
      "parent_primary_url": "https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2015-techniques-exploitation-modern-binary-exploitation-linux-kernel-exploitation-primary-acf87ba1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Modern Binary Exploitation: Linux Kernel Exploitation record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Modern Binary Exploitation: Linux Kernel Exploitation resource_label: primary resource_type: slides resource_url: https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf parent_primary_url: https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2015: \"Modern Binary Exploitation: Linux Kernel Exploitation\" by Patrick Biernat](https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf) [slides] [[exercise](https://g",
      "link_types": [
        "slides",
        "exercise"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf"
        },
        {
          "label": "exercise",
          "type": "exercise",
          "url": "https://github.com/RPISEC/MBE/tree/master/src/lab10"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "exercise",
            "type": "exercise",
            "url": "https://github.com/RPISEC/MBE/tree/master/src/lab10"
          }
        ]
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/RPISEC/MBE/tree/master/src/lab10"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "binary exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Slides on modern binary exploitation techniques specific to the Linux kernel.",
      "summary_zh": "关于特定于Linux内核的现代二进制利用技术的幻灯片。",
      "source_markdown": "[2015: \"Modern Binary Exploitation: Linux Kernel Exploitation\" by Patrick Biernat](https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf) [slides] [[exercise](https://github.com/RPISEC/MBE/tree/master/src/lab10)]",
      "search_text": "modern binary exploitation: linux kernel exploitation modern binary exploitation: linux kernel exploitation patrick biernat   techniques exploitation technique: exploitation primary slides https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf exploitation binary exploitation  exploitation slides on modern binary exploitation techniques specific to the linux kernel. 关于特定于linux内核的现代二进制利用技术的幻灯片。 # modern binary exploitation: linux kernel exploitation record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: modern binary exploitation: linux kernel exploitation resource_label: primary resource_type: slides resource_url: https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf parent_primary_url: https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2015: \"modern binary exploitation: linux kernel exploitation\" by patrick biernat](https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf) [slides] [[exercise](https://g no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b343bce237758a04",
      "item_id": "d9e1d23eba96aa74",
      "slug": "2015-techniques-exploitation-modern-binary-exploitation-linux-kernel-exploitation-exercise-0440e219",
      "year": 2015,
      "title": "Modern Binary Exploitation: Linux Kernel Exploitation · exercise",
      "item_title": "Modern Binary Exploitation: Linux Kernel Exploitation",
      "authors": [
        "Patrick Biernat"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "exercise",
      "resource_type": "exercise",
      "resource_url": "https://github.com/RPISEC/MBE/tree/master/src/lab10",
      "primary_url": "https://github.com/RPISEC/MBE/tree/master/src/lab10",
      "parent_primary_url": "https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2015-techniques-exploitation-modern-binary-exploitation-linux-kernel-exploitation-exercise-0440e219.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Modern Binary Exploitation: Linux Kernel Exploitation · exercise record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Modern Binary Exploitation: Linux Kernel Exploitation resource_label: exercise resource_type: exercise resource_url: https://github.com/RPISEC/MBE/tree/master/src/lab10 parent_primary_url: https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2015: \"Modern Binary Exploitation: Linux Kernel Exploitation\" by Patrick Biernat](https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf) [slides] [[exercise](https://github.com/RPISEC/MBE/tree/master/src/lab10)] cves: none a",
      "link_types": [
        "slides",
        "exercise"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf"
        },
        {
          "label": "exercise",
          "type": "exercise",
          "url": "https://github.com/RPISEC/MBE/tree/master/src/lab10"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "exercise",
            "type": "exercise",
            "url": "https://github.com/RPISEC/MBE/tree/master/src/lab10"
          }
        ]
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/RPISEC/MBE/tree/master/src/lab10"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "exercise"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "An exercise resource for practicing Linux kernel exploitation techniques.",
      "summary_zh": "一个用于练习Linux内核利用技术的练习资源。",
      "source_markdown": "[2015: \"Modern Binary Exploitation: Linux Kernel Exploitation\" by Patrick Biernat](https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf) [slides] [[exercise](https://github.com/RPISEC/MBE/tree/master/src/lab10)]",
      "search_text": "modern binary exploitation: linux kernel exploitation · exercise modern binary exploitation: linux kernel exploitation patrick biernat   techniques exploitation technique: exploitation exercise exercise https://github.com/rpisec/mbe/tree/master/src/lab10 exploitation exercise  exploitation an exercise resource for practicing linux kernel exploitation techniques. 一个用于练习linux内核利用技术的练习资源。 # modern binary exploitation: linux kernel exploitation · exercise record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: modern binary exploitation: linux kernel exploitation resource_label: exercise resource_type: exercise resource_url: https://github.com/rpisec/mbe/tree/master/src/lab10 parent_primary_url: https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2015: \"modern binary exploitation: linux kernel exploitation\" by patrick biernat](https://web.archive.org/web/20150714005950/http://security.cs.rpi.edu/courses/binexp-spring2015/lectures/23/13_lecture.pdf) [slides] [[exercise](https://github.com/rpisec/mbe/tree/master/src/lab10)] cves: none a no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "733d79447dd25c02",
      "item_id": "78963136416b28e6",
      "slug": "2013-techniques-exploitation-hacking-like-in-the-movies-visualizing-page-tables-for-local-exploitation-at-blac",
      "year": 2013,
      "title": "Hacking like in the Movies: Visualizing Page Tables for Local Exploitation\" at Black Hat",
      "item_title": "Hacking like in the Movies: Visualizing Page Tables for Local Exploitation\" at Black Hat",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=Of6DemoMLaA",
      "primary_url": "https://www.youtube.com/watch?v=Of6DemoMLaA",
      "parent_primary_url": "https://www.youtube.com/watch?v=Of6DemoMLaA",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2013-techniques-exploitation-hacking-like-in-the-movies-visualizing-page-tables-for-local-exploitation-at-blac.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Hacking like in the Movies: Visualizing Page Tables for Local Exploitation\" at Black Hat record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Hacking like in the Movies: Visualizing Page Tables for Local Exploitation\" at Black Hat resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=Of6DemoMLaA parent_primary_url: https://www.youtube.com/watch?v=Of6DemoMLaA source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2013: \"Hacking like in the Movies: Visualizing Page Tables for Local Exploitation\" at Black Hat](https://www.youtube.com/watch?v=Of6DemoMLaA) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Productio",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Of6DemoMLaA"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Of6DemoMLaA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "visualization"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "A video presentation visualizing page tables for local exploitation.",
      "summary_zh": "一个可视化页面表以进行本地利用的视频演示。",
      "source_markdown": "[2013: \"Hacking like in the Movies: Visualizing Page Tables for Local Exploitation\" at Black Hat](https://www.youtube.com/watch?v=Of6DemoMLaA)",
      "search_text": "hacking like in the movies: visualizing page tables for local exploitation\" at black hat hacking like in the movies: visualizing page tables for local exploitation\" at black hat    techniques exploitation technique: exploitation primary video https://www.youtube.com/watch?v=of6demomlaa exploitation visualization  exploitation a video presentation visualizing page tables for local exploitation. 一个可视化页面表以进行本地利用的视频演示。 # hacking like in the movies: visualizing page tables for local exploitation\" at black hat record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: hacking like in the movies: visualizing page tables for local exploitation\" at black hat resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=of6demomlaa parent_primary_url: https://www.youtube.com/watch?v=of6demomlaa source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2013: \"hacking like in the movies: visualizing page tables for local exploitation\" at black hat](https://www.youtube.com/watch?v=of6demomlaa) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: productio no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "65de2d5ec13b355f",
      "item_id": "a454e0a030afa9c5",
      "slug": "2013-techniques-exploitation-exploiting-linux-kernel-heap-corruptions-primary-c40a2113",
      "year": 2013,
      "title": "Exploiting linux kernel heap corruptions",
      "item_title": "Exploiting linux kernel heap corruptions",
      "authors": [
        "Mohamed Channam"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://resources.infosecinstitute.com/exploiting-linux-kernel-heap-corruptions-slub-allocator/",
      "primary_url": "http://resources.infosecinstitute.com/exploiting-linux-kernel-heap-corruptions-slub-allocator/",
      "parent_primary_url": "http://resources.infosecinstitute.com/exploiting-linux-kernel-heap-corruptions-slub-allocator/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2013-techniques-exploitation-exploiting-linux-kernel-heap-corruptions-primary-c40a2113.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting linux kernel heap corruptions record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Exploiting linux kernel heap corruptions resource_label: primary resource_type: article resource_url: http://resources.infosecinstitute.com/exploiting-linux-kernel-heap-corruptions-slub-allocator/ parent_primary_url: http://resources.infosecinstitute.com/exploiting-linux-kernel-heap-corruptions-slub-allocator/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2013: \"Exploiting linux kernel heap corruptions\" by Mohamed Channam](http://resources.infosecinstitute.com/exploiting-linux-kernel-heap-corruptions-slub-allocator/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impac",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://resources.infosecinstitute.com/exploiting-linux-kernel-heap-corruptions-slub-allocator/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://resources.infosecinstitute.com/exploiting-linux-kernel-heap-corruptions-slub-allocator/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "heap corruption"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "An article on exploiting heap corruptions in the Linux kernel.",
      "summary_zh": "关于利用Linux内核中的堆损坏的文章。",
      "source_markdown": "[2013: \"Exploiting linux kernel heap corruptions\" by Mohamed Channam](http://resources.infosecinstitute.com/exploiting-linux-kernel-heap-corruptions-slub-allocator/) [article]",
      "search_text": "exploiting linux kernel heap corruptions exploiting linux kernel heap corruptions mohamed channam   techniques exploitation technique: exploitation primary article http://resources.infosecinstitute.com/exploiting-linux-kernel-heap-corruptions-slub-allocator/ exploitation heap corruption  exploitation an article on exploiting heap corruptions in the linux kernel. 关于利用linux内核中的堆损坏的文章。 # exploiting linux kernel heap corruptions record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: exploiting linux kernel heap corruptions resource_label: primary resource_type: article resource_url: http://resources.infosecinstitute.com/exploiting-linux-kernel-heap-corruptions-slub-allocator/ parent_primary_url: http://resources.infosecinstitute.com/exploiting-linux-kernel-heap-corruptions-slub-allocator/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2013: \"exploiting linux kernel heap corruptions\" by mohamed channam](http://resources.infosecinstitute.com/exploiting-linux-kernel-heap-corruptions-slub-allocator/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impac no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "67402864a22bc2d7",
      "item_id": "e5d43e08016e01d3",
      "slug": "2012-techniques-exploitation-writing-kernel-exploits-primary-49363c97",
      "year": 2012,
      "title": "Writing kernel exploits",
      "item_title": "Writing kernel exploits",
      "authors": [
        "Keegan McAllister"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://tc.gtisc.gatech.edu/bss/2014/r/kernel-exploits.pdf",
      "primary_url": "https://tc.gtisc.gatech.edu/bss/2014/r/kernel-exploits.pdf",
      "parent_primary_url": "https://tc.gtisc.gatech.edu/bss/2014/r/kernel-exploits.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2012-techniques-exploitation-writing-kernel-exploits-primary-49363c97.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Writing kernel exploits record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Writing kernel exploits resource_label: primary resource_type: slides resource_url: https://tc.gtisc.gatech.edu/bss/2014/r/kernel-exploits.pdf parent_primary_url: https://tc.gtisc.gatech.edu/bss/2014/r/kernel-exploits.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2012: \"Writing kernel exploits\" by Keegan McAllister](https://tc.gtisc.gatech.edu/bss/2014/r/kernel-exploits.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: true has_exploit_link: true code_urls",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://tc.gtisc.gatech.edu/bss/2014/r/kernel-exploits.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://tc.gtisc.gatech.edu/bss/2014/r/kernel-exploits.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel exploits"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Slides on writing kernel exploits and their methodologies.",
      "summary_zh": "关于编写内核利用及其方法的幻灯片。",
      "source_markdown": "[2012: \"Writing kernel exploits\" by Keegan McAllister](https://tc.gtisc.gatech.edu/bss/2014/r/kernel-exploits.pdf) [slides]",
      "search_text": "writing kernel exploits writing kernel exploits keegan mcallister   techniques exploitation technique: exploitation primary slides https://tc.gtisc.gatech.edu/bss/2014/r/kernel-exploits.pdf exploitation kernel exploits  exploitation slides on writing kernel exploits and their methodologies. 关于编写内核利用及其方法的幻灯片。 # writing kernel exploits record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: writing kernel exploits resource_label: primary resource_type: slides resource_url: https://tc.gtisc.gatech.edu/bss/2014/r/kernel-exploits.pdf parent_primary_url: https://tc.gtisc.gatech.edu/bss/2014/r/kernel-exploits.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2012: \"writing kernel exploits\" by keegan mcallister](https://tc.gtisc.gatech.edu/bss/2014/r/kernel-exploits.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: true has_exploit_link: true code_urls no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "5157c23eb747f9a3",
      "item_id": "a61a3638a5ba378b",
      "slug": "2012-techniques-exploitation-understanding-linux-kernel-vulnerabilities-primary-c593a6d3",
      "year": 2012,
      "title": "Understanding Linux Kernel Vulnerabilities",
      "item_title": "Understanding Linux Kernel Vulnerabilities",
      "authors": [
        "Richard Carback"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.csee.umbc.edu/courses/undergraduate/421/Spring12/02/slides/ULKV.pdf",
      "primary_url": "https://www.csee.umbc.edu/courses/undergraduate/421/Spring12/02/slides/ULKV.pdf",
      "parent_primary_url": "https://www.csee.umbc.edu/courses/undergraduate/421/Spring12/02/slides/ULKV.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2012-techniques-exploitation-understanding-linux-kernel-vulnerabilities-primary-c593a6d3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Understanding Linux Kernel Vulnerabilities record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Understanding Linux Kernel Vulnerabilities resource_label: primary resource_type: slides resource_url: https://www.csee.umbc.edu/courses/undergraduate/421/Spring12/02/slides/ULKV.pdf parent_primary_url: https://www.csee.umbc.edu/courses/undergraduate/421/Spring12/02/slides/ULKV.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2012: \"Understanding Linux Kernel Vulnerabilities\" by Richard Carback](https://www.csee.umbc.edu/courses/undergraduate/421/Spring12/02/slides/ULKV.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Productio",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.csee.umbc.edu/courses/undergraduate/421/Spring12/02/slides/ULKV.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.csee.umbc.edu/courses/undergraduate/421/Spring12/02/slides/ULKV.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerabilities",
        "overview"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Slides providing an overview of Linux kernel vulnerabilities.",
      "summary_zh": "提供Linux内核漏洞概述的幻灯片。",
      "source_markdown": "[2012: \"Understanding Linux Kernel Vulnerabilities\" by Richard Carback](https://www.csee.umbc.edu/courses/undergraduate/421/Spring12/02/slides/ULKV.pdf) [slides]",
      "search_text": "understanding linux kernel vulnerabilities understanding linux kernel vulnerabilities richard carback   techniques exploitation technique: exploitation primary slides https://www.csee.umbc.edu/courses/undergraduate/421/spring12/02/slides/ulkv.pdf vulnerabilities overview  exploitation slides providing an overview of linux kernel vulnerabilities. 提供linux内核漏洞概述的幻灯片。 # understanding linux kernel vulnerabilities record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: understanding linux kernel vulnerabilities resource_label: primary resource_type: slides resource_url: https://www.csee.umbc.edu/courses/undergraduate/421/spring12/02/slides/ulkv.pdf parent_primary_url: https://www.csee.umbc.edu/courses/undergraduate/421/spring12/02/slides/ulkv.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2012: \"understanding linux kernel vulnerabilities\" by richard carback](https://www.csee.umbc.edu/courses/undergraduate/421/spring12/02/slides/ulkv.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: productio no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "304a88bbbdda6845",
      "item_id": "f1dbd5b7fe6b2a2a",
      "slug": "2012-techniques-exploitation-a-heap-of-trouble-breaking-the-linux-kernel-slob-allocator-primary-1e38e0b1",
      "year": 2012,
      "title": "A Heap of Trouble: Breaking the Linux Kernel SLOB Allocator",
      "item_title": "A Heap of Trouble: Breaking the Linux Kernel SLOB Allocator",
      "authors": [
        "Dan Rosenberg"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.vsecurity.com//download/papers/slob-exploitation.pdf",
      "primary_url": "https://www.vsecurity.com//download/papers/slob-exploitation.pdf",
      "parent_primary_url": "https://www.vsecurity.com//download/papers/slob-exploitation.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2012-techniques-exploitation-a-heap-of-trouble-breaking-the-linux-kernel-slob-allocator-primary-1e38e0b1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Heap of Trouble: Breaking the Linux Kernel SLOB Allocator record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: A Heap of Trouble: Breaking the Linux Kernel SLOB Allocator resource_label: primary resource_type: paper resource_url: https://www.vsecurity.com//download/papers/slob-exploitation.pdf parent_primary_url: https://www.vsecurity.com//download/papers/slob-exploitation.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2012: \"A Heap of Trouble: Breaking the Linux Kernel SLOB Allocator\" by Dan Rosenberg](https://www.vsecurity.com//download/papers/slob-exploitation.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Product",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.vsecurity.com//download/papers/slob-exploitation.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.vsecurity.com//download/papers/slob-exploitation.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "SLOB",
        "allocator"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "A paper discussing the exploitation of the Linux kernel SLOB allocator.",
      "summary_zh": "讨论Linux内核SLOB分配器利用的论文。",
      "source_markdown": "[2012: \"A Heap of Trouble: Breaking the Linux Kernel SLOB Allocator\" by Dan Rosenberg](https://www.vsecurity.com//download/papers/slob-exploitation.pdf) [paper]",
      "search_text": "a heap of trouble: breaking the linux kernel slob allocator a heap of trouble: breaking the linux kernel slob allocator dan rosenberg   techniques exploitation technique: exploitation primary paper https://www.vsecurity.com//download/papers/slob-exploitation.pdf exploitation slob allocator  exploitation a paper discussing the exploitation of the linux kernel slob allocator. 讨论linux内核slob分配器利用的论文。 # a heap of trouble: breaking the linux kernel slob allocator record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: a heap of trouble: breaking the linux kernel slob allocator resource_label: primary resource_type: paper resource_url: https://www.vsecurity.com//download/papers/slob-exploitation.pdf parent_primary_url: https://www.vsecurity.com//download/papers/slob-exploitation.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2012: \"a heap of trouble: breaking the linux kernel slob allocator\" by dan rosenberg](https://www.vsecurity.com//download/papers/slob-exploitation.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: product no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "da68a4bc55a25120",
      "item_id": "35018edd80bafe79",
      "slug": "2012-techniques-exploitation-attacking-hardened-linux-systems-with-kernel-jit-spraying-primary-6b26ff8f",
      "year": 2012,
      "title": "Attacking hardened Linux systems with kernel JIT spraying",
      "item_title": "Attacking hardened Linux systems with kernel JIT spraying",
      "authors": [
        "Keegan McAllister"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html",
      "primary_url": "https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html",
      "parent_primary_url": "https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2012-techniques-exploitation-attacking-hardened-linux-systems-with-kernel-jit-spraying-primary-6b26ff8f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Attacking hardened Linux systems with kernel JIT spraying record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Attacking hardened Linux systems with kernel JIT spraying resource_label: primary resource_type: article resource_url: https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html parent_primary_url: https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2012: \"Attacking hardened Linux systems with kernel JIT spraying\" by Keegan McAllister](https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html) [article] [[code 1](https://github.com/kmcallister/alameda)] [[code 2](https://github.com/01org/jit-sp",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html"
        },
        {
          "label": "code 1",
          "type": "code",
          "url": "https://github.com/kmcallister/alameda"
        },
        {
          "label": "code 2",
          "type": "code",
          "url": "https://github.com/01org/jit-spray-poc-for-ksp"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code 1",
            "type": "code",
            "url": "https://github.com/kmcallister/alameda"
          },
          {
            "label": "code 2",
            "type": "code",
            "url": "https://github.com/01org/jit-spray-poc-for-ksp"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/kmcallister/alameda",
        "https://github.com/01org/jit-spray-poc-for-ksp"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "JIT spraying"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "An article on attacking hardened Linux systems using kernel JIT spraying techniques.",
      "summary_zh": "关于使用内核JIT喷射技术攻击强化Linux系统的文章。",
      "source_markdown": "[2012: \"Attacking hardened Linux systems with kernel JIT spraying\" by Keegan McAllister](https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html) [article] [[code 1](https://github.com/kmcallister/alameda)] [[code 2](https://github.com/01org/jit-spray-poc-for-ksp)]",
      "search_text": "attacking hardened linux systems with kernel jit spraying attacking hardened linux systems with kernel jit spraying keegan mcallister   techniques exploitation technique: exploitation primary article https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html exploitation jit spraying  exploitation an article on attacking hardened linux systems using kernel jit spraying techniques. 关于使用内核jit喷射技术攻击强化linux系统的文章。 # attacking hardened linux systems with kernel jit spraying record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: attacking hardened linux systems with kernel jit spraying resource_label: primary resource_type: article resource_url: https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html parent_primary_url: https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2012: \"attacking hardened linux systems with kernel jit spraying\" by keegan mcallister](https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html) [article] [[code 1](https://github.com/kmcallister/alameda)] [[code 2](https://github.com/01org/jit-sp no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "8ba5c50e23ea5eaa",
      "item_id": "35018edd80bafe79",
      "slug": "2012-techniques-exploitation-attacking-hardened-linux-systems-with-kernel-jit-spraying-code-1-7501e4db",
      "year": 2012,
      "title": "Attacking hardened Linux systems with kernel JIT spraying · code 1",
      "item_title": "Attacking hardened Linux systems with kernel JIT spraying",
      "authors": [
        "Keegan McAllister"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "code 1",
      "resource_type": "code",
      "resource_url": "https://github.com/kmcallister/alameda",
      "primary_url": "https://github.com/kmcallister/alameda",
      "parent_primary_url": "https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2012-techniques-exploitation-attacking-hardened-linux-systems-with-kernel-jit-spraying-code-1-7501e4db.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Attacking hardened Linux systems with kernel JIT spraying · code 1 record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Attacking hardened Linux systems with kernel JIT spraying resource_label: code 1 resource_type: code resource_url: https://github.com/kmcallister/alameda parent_primary_url: https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2012: \"Attacking hardened Linux systems with kernel JIT spraying\" by Keegan McAllister](https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html) [article] [[code 1](https://github.com/kmcallister/alameda)] [[code 2](https://github.com/01org/jit-spray-poc-for-ksp)] cves: none android_impact_status",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html"
        },
        {
          "label": "code 1",
          "type": "code",
          "url": "https://github.com/kmcallister/alameda"
        },
        {
          "label": "code 2",
          "type": "code",
          "url": "https://github.com/01org/jit-spray-poc-for-ksp"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code 1",
            "type": "code",
            "url": "https://github.com/kmcallister/alameda"
          },
          {
            "label": "code 2",
            "type": "code",
            "url": "https://github.com/01org/jit-spray-poc-for-ksp"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/kmcallister/alameda",
        "https://github.com/01org/jit-spray-poc-for-ksp"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "JIT spraying",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Code resource related to JIT spraying attacks on Linux systems.",
      "summary_zh": "与Linux系统上的JIT喷射攻击相关的代码资源。",
      "source_markdown": "[2012: \"Attacking hardened Linux systems with kernel JIT spraying\" by Keegan McAllister](https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html) [article] [[code 1](https://github.com/kmcallister/alameda)] [[code 2](https://github.com/01org/jit-spray-poc-for-ksp)]",
      "search_text": "attacking hardened linux systems with kernel jit spraying · code 1 attacking hardened linux systems with kernel jit spraying keegan mcallister   techniques exploitation technique: exploitation code 1 code https://github.com/kmcallister/alameda exploitation jit spraying code  exploitation code resource related to jit spraying attacks on linux systems. 与linux系统上的jit喷射攻击相关的代码资源。 # attacking hardened linux systems with kernel jit spraying · code 1 record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: attacking hardened linux systems with kernel jit spraying resource_label: code 1 resource_type: code resource_url: https://github.com/kmcallister/alameda parent_primary_url: https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2012: \"attacking hardened linux systems with kernel jit spraying\" by keegan mcallister](https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html) [article] [[code 1](https://github.com/kmcallister/alameda)] [[code 2](https://github.com/01org/jit-spray-poc-for-ksp)] cves: none android_impact_status no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "7923fda2274466aa",
      "item_id": "35018edd80bafe79",
      "slug": "2012-techniques-exploitation-attacking-hardened-linux-systems-with-kernel-jit-spraying-code-2-67758e60",
      "year": 2012,
      "title": "Attacking hardened Linux systems with kernel JIT spraying · code 2",
      "item_title": "Attacking hardened Linux systems with kernel JIT spraying",
      "authors": [
        "Keegan McAllister"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "code 2",
      "resource_type": "code",
      "resource_url": "https://github.com/01org/jit-spray-poc-for-ksp",
      "primary_url": "https://github.com/01org/jit-spray-poc-for-ksp",
      "parent_primary_url": "https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2012-techniques-exploitation-attacking-hardened-linux-systems-with-kernel-jit-spraying-code-2-67758e60.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Attacking hardened Linux systems with kernel JIT spraying · code 2 record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Attacking hardened Linux systems with kernel JIT spraying resource_label: code 2 resource_type: code resource_url: https://github.com/01org/jit-spray-poc-for-ksp parent_primary_url: https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2012: \"Attacking hardened Linux systems with kernel JIT spraying\" by Keegan McAllister](https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html) [article] [[code 1](https://github.com/kmcallister/alameda)] [[code 2](https://github.com/01org/jit-spray-poc-for-ksp)] cves: none android_impac",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html"
        },
        {
          "label": "code 1",
          "type": "code",
          "url": "https://github.com/kmcallister/alameda"
        },
        {
          "label": "code 2",
          "type": "code",
          "url": "https://github.com/01org/jit-spray-poc-for-ksp"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code 1",
            "type": "code",
            "url": "https://github.com/kmcallister/alameda"
          },
          {
            "label": "code 2",
            "type": "code",
            "url": "https://github.com/01org/jit-spray-poc-for-ksp"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/kmcallister/alameda",
        "https://github.com/01org/jit-spray-poc-for-ksp"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "JIT spraying",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Another code resource for JIT spraying attacks on Linux systems.",
      "summary_zh": "另一个与Linux系统上的JIT喷射攻击相关的代码资源。",
      "source_markdown": "[2012: \"Attacking hardened Linux systems with kernel JIT spraying\" by Keegan McAllister](https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html) [article] [[code 1](https://github.com/kmcallister/alameda)] [[code 2](https://github.com/01org/jit-spray-poc-for-ksp)]",
      "search_text": "attacking hardened linux systems with kernel jit spraying · code 2 attacking hardened linux systems with kernel jit spraying keegan mcallister   techniques exploitation technique: exploitation code 2 code https://github.com/01org/jit-spray-poc-for-ksp exploitation jit spraying code  exploitation another code resource for jit spraying attacks on linux systems. 另一个与linux系统上的jit喷射攻击相关的代码资源。 # attacking hardened linux systems with kernel jit spraying · code 2 record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: attacking hardened linux systems with kernel jit spraying resource_label: code 2 resource_type: code resource_url: https://github.com/01org/jit-spray-poc-for-ksp parent_primary_url: https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2012: \"attacking hardened linux systems with kernel jit spraying\" by keegan mcallister](https://mainisusuallyafunction.blogspot.ru/2012/11/attacking-hardened-linux-systems-with.html) [article] [[code 1](https://github.com/kmcallister/alameda)] [[code 2](https://github.com/01org/jit-spray-poc-for-ksp)] cves: none android_impac no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "b9fca8c097f00534",
      "item_id": "53d0a6c266810634",
      "slug": "2012-techniques-exploitation-the-linux-kernel-memory-allocators-from-an-exploitation-perspective-primary-894b8",
      "year": 2012,
      "title": "The Linux kernel memory allocators from an exploitation perspective",
      "item_title": "The Linux kernel memory allocators from an exploitation perspective",
      "authors": [
        "Patroklos Argyroudis"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://argp.github.io/2012/01/03/linux-kernel-heap-exploitation/",
      "primary_url": "https://argp.github.io/2012/01/03/linux-kernel-heap-exploitation/",
      "parent_primary_url": "https://argp.github.io/2012/01/03/linux-kernel-heap-exploitation/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2012-techniques-exploitation-the-linux-kernel-memory-allocators-from-an-exploitation-perspective-primary-894b8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Linux kernel memory allocators from an exploitation perspective record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: The Linux kernel memory allocators from an exploitation perspective resource_label: primary resource_type: article resource_url: https://argp.github.io/2012/01/03/linux-kernel-heap-exploitation/ parent_primary_url: https://argp.github.io/2012/01/03/linux-kernel-heap-exploitation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2012: \"The Linux kernel memory allocators from an exploitation perspective\" by Patroklos Argyroudis](https://argp.github.io/2012/01/03/linux-kernel-heap-exploitation/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://argp.github.io/2012/01/03/linux-kernel-heap-exploitation/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://argp.github.io/2012/01/03/linux-kernel-heap-exploitation/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://argp.github.io/2012/01/03/linux-kernel-heap-exploitation/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "memory allocators"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "An article discussing Linux kernel memory allocators from an exploitation perspective.",
      "summary_zh": "讨论从利用角度看Linux内核内存分配器的文章。",
      "source_markdown": "[2012: \"The Linux kernel memory allocators from an exploitation perspective\" by Patroklos Argyroudis](https://argp.github.io/2012/01/03/linux-kernel-heap-exploitation/) [article]",
      "search_text": "the linux kernel memory allocators from an exploitation perspective the linux kernel memory allocators from an exploitation perspective patroklos argyroudis   techniques exploitation technique: exploitation primary article https://argp.github.io/2012/01/03/linux-kernel-heap-exploitation/ exploitation memory allocators  exploitation an article discussing linux kernel memory allocators from an exploitation perspective. 讨论从利用角度看linux内核内存分配器的文章。 # the linux kernel memory allocators from an exploitation perspective record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: the linux kernel memory allocators from an exploitation perspective resource_label: primary resource_type: article resource_url: https://argp.github.io/2012/01/03/linux-kernel-heap-exploitation/ parent_primary_url: https://argp.github.io/2012/01/03/linux-kernel-heap-exploitation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2012: \"the linux kernel memory allocators from an exploitation perspective\" by patroklos argyroudis](https://argp.github.io/2012/01/03/linux-kernel-heap-exploitation/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "45fdb7ba22c1a680",
      "item_id": "b160e3f83e087bd8",
      "slug": "2012-techniques-exploitation-the-stack-is-back-primary-ff56e95e",
      "year": 2012,
      "title": "The Stack is Back",
      "item_title": "The Stack is Back",
      "authors": [
        "Jon Oberheide"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://jon.oberheide.org/files/infiltrate12-thestackisback.pdf",
      "primary_url": "https://jon.oberheide.org/files/infiltrate12-thestackisback.pdf",
      "parent_primary_url": "https://jon.oberheide.org/files/infiltrate12-thestackisback.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2012-techniques-exploitation-the-stack-is-back-primary-ff56e95e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Stack is Back record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: The Stack is Back resource_label: primary resource_type: slides resource_url: https://jon.oberheide.org/files/infiltrate12-thestackisback.pdf parent_primary_url: https://jon.oberheide.org/files/infiltrate12-thestackisback.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2012: \"The Stack is Back\" by Jon Oberheide](https://jon.oberheide.org/files/infiltrate12-thestackisback.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: non",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://jon.oberheide.org/files/infiltrate12-thestackisback.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://jon.oberheide.org/files/infiltrate12-thestackisback.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "stack"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Slides discussing the resurgence of stack-based exploitation techniques.",
      "summary_zh": "讨论基于栈的利用技术复兴的幻灯片。",
      "source_markdown": "[2012: \"The Stack is Back\" by Jon Oberheide](https://jon.oberheide.org/files/infiltrate12-thestackisback.pdf) [slides]",
      "search_text": "the stack is back the stack is back jon oberheide   techniques exploitation technique: exploitation primary slides https://jon.oberheide.org/files/infiltrate12-thestackisback.pdf exploitation stack  exploitation slides discussing the resurgence of stack-based exploitation techniques. 讨论基于栈的利用技术复兴的幻灯片。 # the stack is back record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: the stack is back resource_label: primary resource_type: slides resource_url: https://jon.oberheide.org/files/infiltrate12-thestackisback.pdf parent_primary_url: https://jon.oberheide.org/files/infiltrate12-thestackisback.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2012: \"the stack is back\" by jon oberheide](https://jon.oberheide.org/files/infiltrate12-thestackisback.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: non no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9a5ba94f271f7dc1",
      "item_id": "3961031381285fd1",
      "slug": "2012-techniques-exploitation-stackjacking-primary-fc972e84",
      "year": 2012,
      "title": "Stackjacking",
      "item_title": "Stackjacking",
      "authors": [
        "Jon Oberheide",
        "Dan Rosenberg"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.slideshare.net/scovetta/stackjacking",
      "primary_url": "https://www.slideshare.net/scovetta/stackjacking",
      "parent_primary_url": "https://www.slideshare.net/scovetta/stackjacking",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2012-techniques-exploitation-stackjacking-primary-fc972e84.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Stackjacking record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Stackjacking resource_label: primary resource_type: slides resource_url: https://www.slideshare.net/scovetta/stackjacking parent_primary_url: https://www.slideshare.net/scovetta/stackjacking source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2012: \"Stackjacking\" by Jon Oberheide and Dan Rosenberg](https://www.slideshare.net/scovetta/stackjacking) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [slides] primary: https",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.slideshare.net/scovetta/stackjacking"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.slideshare.net/scovetta/stackjacking"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "stackjacking",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Stackjacking is a technique for exploiting vulnerabilities in stack memory management.",
      "summary_zh": "Stackjacking是一种利用堆栈内存管理漏洞的技术。",
      "source_markdown": "[2012: \"Stackjacking\" by Jon Oberheide and Dan Rosenberg](https://www.slideshare.net/scovetta/stackjacking) [slides]",
      "search_text": "stackjacking stackjacking jon oberheide dan rosenberg   techniques exploitation technique: exploitation primary slides https://www.slideshare.net/scovetta/stackjacking stackjacking exploitation  exploitation stackjacking is a technique for exploiting vulnerabilities in stack memory management. stackjacking是一种利用堆栈内存管理漏洞的技术。 # stackjacking record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: stackjacking resource_label: primary resource_type: slides resource_url: https://www.slideshare.net/scovetta/stackjacking parent_primary_url: https://www.slideshare.net/scovetta/stackjacking source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2012: \"stackjacking\" by jon oberheide and dan rosenberg](https://www.slideshare.net/scovetta/stackjacking) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [slides] primary: https no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "98dd7191780d27b1",
      "item_id": "294622dd86e72f82",
      "slug": "2011-techniques-exploitation-stackjacking-your-way-to-grsec-pax-bypass-primary-90cc0203",
      "year": 2011,
      "title": "Stackjacking Your Way to grsec/PaX Bypass",
      "item_title": "Stackjacking Your Way to grsec/PaX Bypass",
      "authors": [
        "Jon Oberheide"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://jon.oberheide.org/blog/2011/04/20/stackjacking-your-way-to-grsec-pax-bypass/",
      "primary_url": "https://jon.oberheide.org/blog/2011/04/20/stackjacking-your-way-to-grsec-pax-bypass/",
      "parent_primary_url": "https://jon.oberheide.org/blog/2011/04/20/stackjacking-your-way-to-grsec-pax-bypass/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2011-techniques-exploitation-stackjacking-your-way-to-grsec-pax-bypass-primary-90cc0203.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Stackjacking Your Way to grsec/PaX Bypass record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Stackjacking Your Way to grsec/PaX Bypass resource_label: primary resource_type: article resource_url: https://jon.oberheide.org/blog/2011/04/20/stackjacking-your-way-to-grsec-pax-bypass/ parent_primary_url: https://jon.oberheide.org/blog/2011/04/20/stackjacking-your-way-to-grsec-pax-bypass/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2011: \"Stackjacking Your Way to grsec/PaX Bypass\" by Jon Oberheide](https://jon.oberheide.org/blog/2011/04/20/stackjacking-your-way-to-grsec-pax-bypass/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reaso",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://jon.oberheide.org/blog/2011/04/20/stackjacking-your-way-to-grsec-pax-bypass/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://jon.oberheide.org/blog/2011/04/20/stackjacking-your-way-to-grsec-pax-bypass/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "stackjacking",
        "bypass"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This resource discusses stackjacking as a method to bypass grsec/PaX protections.",
      "summary_zh": "该资源讨论了stackjacking作为绕过grsec/PaX保护的方法。",
      "source_markdown": "[2011: \"Stackjacking Your Way to grsec/PaX Bypass\" by Jon Oberheide](https://jon.oberheide.org/blog/2011/04/20/stackjacking-your-way-to-grsec-pax-bypass/) [article]",
      "search_text": "stackjacking your way to grsec/pax bypass stackjacking your way to grsec/pax bypass jon oberheide   techniques exploitation technique: exploitation primary article https://jon.oberheide.org/blog/2011/04/20/stackjacking-your-way-to-grsec-pax-bypass/ stackjacking bypass  exploitation this resource discusses stackjacking as a method to bypass grsec/pax protections. 该资源讨论了stackjacking作为绕过grsec/pax保护的方法。 # stackjacking your way to grsec/pax bypass record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: stackjacking your way to grsec/pax bypass resource_label: primary resource_type: article resource_url: https://jon.oberheide.org/blog/2011/04/20/stackjacking-your-way-to-grsec-pax-bypass/ parent_primary_url: https://jon.oberheide.org/blog/2011/04/20/stackjacking-your-way-to-grsec-pax-bypass/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2011: \"stackjacking your way to grsec/pax bypass\" by jon oberheide](https://jon.oberheide.org/blog/2011/04/20/stackjacking-your-way-to-grsec-pax-bypass/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reaso no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2219d80fb7c12841",
      "item_id": "af83dabc83afa2ea",
      "slug": "2010-techniques-exploitation-much-ado-about-null-exploiting-a-kernel-null-dereference-primary-981c8642",
      "year": 2010,
      "title": "Much ado about NULL: Exploiting a kernel NULL dereference",
      "item_title": "Much ado about NULL: Exploiting a kernel NULL dereference",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://web.archive.org/web/20111104035831/http://blogs.oracle.com/ksplice/entry/much_ado_about_null_exploiting1",
      "primary_url": "https://web.archive.org/web/20111104035831/http://blogs.oracle.com/ksplice/entry/much_ado_about_null_exploiting1",
      "parent_primary_url": "https://web.archive.org/web/20111104035831/http://blogs.oracle.com/ksplice/entry/much_ado_about_null_exploiting1",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2010-techniques-exploitation-much-ado-about-null-exploiting-a-kernel-null-dereference-primary-981c8642.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Much ado about NULL: Exploiting a kernel NULL dereference record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Much ado about NULL: Exploiting a kernel NULL dereference resource_label: primary resource_type: article resource_url: https://web.archive.org/web/20111104035831/http://blogs.oracle.com/ksplice/entry/much_ado_about_null_exploiting1 parent_primary_url: https://web.archive.org/web/20111104035831/http://blogs.oracle.com/ksplice/entry/much_ado_about_null_exploiting1 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2010: \"Much ado about NULL: Exploiting a kernel NULL dereference\"](https://web.archive.org/web/20111104035831/http://blogs.oracle.com/ksplice/entry/much_ado_about_null_exploiting1) [article] cves: none android_impact_status: no android_impact_reas",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://web.archive.org/web/20111104035831/http://blogs.oracle.com/ksplice/entry/much_ado_about_null_exploiting1"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://web.archive.org/web/20111104035831/http://blogs.oracle.com/ksplice/entry/much_ado_about_null_exploiting1"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "null_dereference",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The article explains how to exploit kernel NULL dereferences effectively.",
      "summary_zh": "本文解释了如何有效利用内核NULL解引用。",
      "source_markdown": "[2010: \"Much ado about NULL: Exploiting a kernel NULL dereference\"](https://web.archive.org/web/20111104035831/http://blogs.oracle.com/ksplice/entry/much_ado_about_null_exploiting1) [article]",
      "search_text": "much ado about null: exploiting a kernel null dereference much ado about null: exploiting a kernel null dereference    techniques exploitation technique: exploitation primary article https://web.archive.org/web/20111104035831/http://blogs.oracle.com/ksplice/entry/much_ado_about_null_exploiting1 null_dereference exploitation  exploitation the article explains how to exploit kernel null dereferences effectively. 本文解释了如何有效利用内核null解引用。 # much ado about null: exploiting a kernel null dereference record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: much ado about null: exploiting a kernel null dereference resource_label: primary resource_type: article resource_url: https://web.archive.org/web/20111104035831/http://blogs.oracle.com/ksplice/entry/much_ado_about_null_exploiting1 parent_primary_url: https://web.archive.org/web/20111104035831/http://blogs.oracle.com/ksplice/entry/much_ado_about_null_exploiting1 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2010: \"much ado about null: exploiting a kernel null dereference\"](https://web.archive.org/web/20111104035831/http://blogs.oracle.com/ksplice/entry/much_ado_about_null_exploiting1) [article] cves: none android_impact_status: no android_impact_reas no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "78cf1513024a0bd7",
      "item_id": "e0fb2a56d8282635",
      "slug": "2010-techniques-exploitation-exploiting-stack-overflows-in-the-linux-kernel-primary-478f440b",
      "year": 2010,
      "title": "Exploiting Stack Overflows in the Linux Kernel",
      "item_title": "Exploiting Stack Overflows in the Linux Kernel",
      "authors": [
        "Jon Oberheide"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://jon.oberheide.org/blog/2010/11/29/exploiting-stack-overflows-in-the-linux-kernel/",
      "primary_url": "https://jon.oberheide.org/blog/2010/11/29/exploiting-stack-overflows-in-the-linux-kernel/",
      "parent_primary_url": "https://jon.oberheide.org/blog/2010/11/29/exploiting-stack-overflows-in-the-linux-kernel/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2010-techniques-exploitation-exploiting-stack-overflows-in-the-linux-kernel-primary-478f440b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting Stack Overflows in the Linux Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Exploiting Stack Overflows in the Linux Kernel resource_label: primary resource_type: article resource_url: https://jon.oberheide.org/blog/2010/11/29/exploiting-stack-overflows-in-the-linux-kernel/ parent_primary_url: https://jon.oberheide.org/blog/2010/11/29/exploiting-stack-overflows-in-the-linux-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2010: \"Exploiting Stack Overflows in the Linux Kernel\" by Jon Oberheide](https://jon.oberheide.org/blog/2010/11/29/exploiting-stack-overflows-in-the-linux-kernel/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impa",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://jon.oberheide.org/blog/2010/11/29/exploiting-stack-overflows-in-the-linux-kernel/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://jon.oberheide.org/blog/2010/11/29/exploiting-stack-overflows-in-the-linux-kernel/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "stack_overflow",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This article covers techniques for exploiting stack overflows in the Linux kernel.",
      "summary_zh": "本文涵盖了在Linux内核中利用堆栈溢出的技术。",
      "source_markdown": "[2010: \"Exploiting Stack Overflows in the Linux Kernel\" by Jon Oberheide](https://jon.oberheide.org/blog/2010/11/29/exploiting-stack-overflows-in-the-linux-kernel/) [article]",
      "search_text": "exploiting stack overflows in the linux kernel exploiting stack overflows in the linux kernel jon oberheide   techniques exploitation technique: exploitation primary article https://jon.oberheide.org/blog/2010/11/29/exploiting-stack-overflows-in-the-linux-kernel/ stack_overflow exploitation  exploitation this article covers techniques for exploiting stack overflows in the linux kernel. 本文涵盖了在linux内核中利用堆栈溢出的技术。 # exploiting stack overflows in the linux kernel record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: exploiting stack overflows in the linux kernel resource_label: primary resource_type: article resource_url: https://jon.oberheide.org/blog/2010/11/29/exploiting-stack-overflows-in-the-linux-kernel/ parent_primary_url: https://jon.oberheide.org/blog/2010/11/29/exploiting-stack-overflows-in-the-linux-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2010: \"exploiting stack overflows in the linux kernel\" by jon oberheide](https://jon.oberheide.org/blog/2010/11/29/exploiting-stack-overflows-in-the-linux-kernel/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impa no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "d70ae253f965cde6",
      "item_id": "fff1ef9888af1d2c",
      "slug": "2010-techniques-exploitation-linux-kernel-exploitation-earning-its-pwnie-a-vuln-at-a-time-primary-146a559e",
      "year": 2010,
      "title": "Linux Kernel Exploitation: Earning Its Pwnie a Vuln at a Time",
      "item_title": "Linux Kernel Exploitation: Earning Its Pwnie a Vuln at a Time",
      "authors": [
        "Jon Oberheide at SOURCE Boston"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://jon.oberheide.org/files/source10-linuxkernel-jonoberheide.pdf",
      "primary_url": "https://jon.oberheide.org/files/source10-linuxkernel-jonoberheide.pdf",
      "parent_primary_url": "https://jon.oberheide.org/files/source10-linuxkernel-jonoberheide.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2010-techniques-exploitation-linux-kernel-exploitation-earning-its-pwnie-a-vuln-at-a-time-primary-146a559e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Exploitation: Earning Its Pwnie a Vuln at a Time record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux Kernel Exploitation: Earning Its Pwnie a Vuln at a Time resource_label: primary resource_type: slides resource_url: https://jon.oberheide.org/files/source10-linuxkernel-jonoberheide.pdf parent_primary_url: https://jon.oberheide.org/files/source10-linuxkernel-jonoberheide.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2010: \"Linux Kernel Exploitation: Earning Its Pwnie a Vuln at a Time\" by Jon Oberheide at SOURCE Boston](https://jon.oberheide.org/files/source10-linuxkernel-jonoberheide.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impa",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://jon.oberheide.org/files/source10-linuxkernel-jonoberheide.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://jon.oberheide.org/files/source10-linuxkernel-jonoberheide.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "overview"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The slides provide insights into Linux kernel exploitation techniques over time.",
      "summary_zh": "这些幻灯片提供了关于Linux内核利用技术的见解。",
      "source_markdown": "[2010: \"Linux Kernel Exploitation: Earning Its Pwnie a Vuln at a Time\" by Jon Oberheide at SOURCE Boston](https://jon.oberheide.org/files/source10-linuxkernel-jonoberheide.pdf) [slides]",
      "search_text": "linux kernel exploitation: earning its pwnie a vuln at a time linux kernel exploitation: earning its pwnie a vuln at a time jon oberheide at source boston   techniques exploitation technique: exploitation primary slides https://jon.oberheide.org/files/source10-linuxkernel-jonoberheide.pdf exploitation overview  exploitation the slides provide insights into linux kernel exploitation techniques over time. 这些幻灯片提供了关于linux内核利用技术的见解。 # linux kernel exploitation: earning its pwnie a vuln at a time record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux kernel exploitation: earning its pwnie a vuln at a time resource_label: primary resource_type: slides resource_url: https://jon.oberheide.org/files/source10-linuxkernel-jonoberheide.pdf parent_primary_url: https://jon.oberheide.org/files/source10-linuxkernel-jonoberheide.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2010: \"linux kernel exploitation: earning its pwnie a vuln at a time\" by jon oberheide at source boston](https://jon.oberheide.org/files/source10-linuxkernel-jonoberheide.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impa no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b5611fd0e2ccd46e",
      "item_id": "e388697be4bf7fb5",
      "slug": "2009-techniques-exploitation-there-s-a-party-at-ring0-and-you-re-invited-primary-42fd616d",
      "year": 2009,
      "title": "There's a party at ring0, and you're invited",
      "item_title": "There's a party at ring0, and you're invited",
      "authors": [
        "Tavis Ormandy",
        "Julien Tinnes at CanSecWest"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.cr0.org/paper/to-jt-party-at-ring0.pdf",
      "primary_url": "https://www.cr0.org/paper/to-jt-party-at-ring0.pdf",
      "parent_primary_url": "https://www.cr0.org/paper/to-jt-party-at-ring0.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2009-techniques-exploitation-there-s-a-party-at-ring0-and-you-re-invited-primary-42fd616d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# There's a party at ring0, and you're invited record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: There's a party at ring0, and you're invited resource_label: primary resource_type: slides resource_url: https://www.cr0.org/paper/to-jt-party-at-ring0.pdf parent_primary_url: https://www.cr0.org/paper/to-jt-party-at-ring0.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2009: \"There's a party at ring0, and you're invited\" by Tavis Ormandy and Julien Tinnes at CanSecWest](https://www.cr0.org/paper/to-jt-party-at-ring0.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Li",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.cr0.org/paper/to-jt-party-at-ring0.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.cr0.org/paper/to-jt-party-at-ring0.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "overview"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This presentation discusses kernel exploitation techniques at a high level.",
      "summary_zh": "本演示文稿讨论了内核利用技术的高级概述。",
      "source_markdown": "[2009: \"There's a party at ring0, and you're invited\" by Tavis Ormandy and Julien Tinnes at CanSecWest](https://www.cr0.org/paper/to-jt-party-at-ring0.pdf) [slides]",
      "search_text": "there's a party at ring0, and you're invited there's a party at ring0, and you're invited tavis ormandy julien tinnes at cansecwest   techniques exploitation technique: exploitation primary slides https://www.cr0.org/paper/to-jt-party-at-ring0.pdf exploitation overview  exploitation this presentation discusses kernel exploitation techniques at a high level. 本演示文稿讨论了内核利用技术的高级概述。 # there's a party at ring0, and you're invited record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: there's a party at ring0, and you're invited resource_label: primary resource_type: slides resource_url: https://www.cr0.org/paper/to-jt-party-at-ring0.pdf parent_primary_url: https://www.cr0.org/paper/to-jt-party-at-ring0.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2009: \"there's a party at ring0, and you're invited\" by tavis ormandy and julien tinnes at cansecwest](https://www.cr0.org/paper/to-jt-party-at-ring0.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than li no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "20b379969d58853a",
      "item_id": "5e13f9a5edea24d0",
      "slug": "2007-techniques-exploitation-kernel-mode-exploits-primer-primary-ee83b9f6",
      "year": 2007,
      "title": "Kernel-mode exploits primer",
      "item_title": "Kernel-mode exploits primer",
      "authors": [
        "Sylvester Keil",
        "Clemens Kolbitsch"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "http://old.iseclab.org/projects/vifuzz/docs/exploit.pdf",
      "primary_url": "http://old.iseclab.org/projects/vifuzz/docs/exploit.pdf",
      "parent_primary_url": "http://old.iseclab.org/projects/vifuzz/docs/exploit.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2007-techniques-exploitation-kernel-mode-exploits-primer-primary-ee83b9f6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel-mode exploits primer record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Kernel-mode exploits primer resource_label: primary resource_type: paper resource_url: http://old.iseclab.org/projects/vifuzz/docs/exploit.pdf parent_primary_url: http://old.iseclab.org/projects/vifuzz/docs/exploit.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2007: \"Kernel-mode exploits primer\" by Sylvester Keil and Clemens Kolbitsch](http://old.iseclab.org/projects/vifuzz/docs/exploit.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_l",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "http://old.iseclab.org/projects/vifuzz/docs/exploit.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "http://old.iseclab.org/projects/vifuzz/docs/exploit.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "http://old.iseclab.org/projects/vifuzz/docs/exploit.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_mode",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The primer introduces kernel-mode exploits and their implications.",
      "summary_zh": "该入门介绍了内核模式利用及其影响。",
      "source_markdown": "[2007: \"Kernel-mode exploits primer\" by Sylvester Keil and Clemens Kolbitsch](http://old.iseclab.org/projects/vifuzz/docs/exploit.pdf) [paper]",
      "search_text": "kernel-mode exploits primer kernel-mode exploits primer sylvester keil clemens kolbitsch   techniques exploitation technique: exploitation primary paper http://old.iseclab.org/projects/vifuzz/docs/exploit.pdf kernel_mode exploitation  exploitation the primer introduces kernel-mode exploits and their implications. 该入门介绍了内核模式利用及其影响。 # kernel-mode exploits primer record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: kernel-mode exploits primer resource_label: primary resource_type: paper resource_url: http://old.iseclab.org/projects/vifuzz/docs/exploit.pdf parent_primary_url: http://old.iseclab.org/projects/vifuzz/docs/exploit.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2007: \"kernel-mode exploits primer\" by sylvester keil and clemens kolbitsch](http://old.iseclab.org/projects/vifuzz/docs/exploit.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_l no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "d42f830bd088d01a",
      "item_id": "fc1b8678e8088e3b",
      "slug": "2007-techniques-exploitation-attacking-the-core-kernel-exploiting-notes-primary-02354536",
      "year": 2007,
      "title": "Attacking the Core : Kernel Exploiting Notes",
      "item_title": "Attacking the Core : Kernel Exploiting Notes",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://phrack.org/archives/issues/64/6.txt",
      "primary_url": "http://phrack.org/archives/issues/64/6.txt",
      "parent_primary_url": "http://phrack.org/archives/issues/64/6.txt",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2007-techniques-exploitation-attacking-the-core-kernel-exploiting-notes-primary-02354536.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Attacking the Core : Kernel Exploiting Notes record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Attacking the Core : Kernel Exploiting Notes resource_label: primary resource_type: article resource_url: http://phrack.org/archives/issues/64/6.txt parent_primary_url: http://phrack.org/archives/issues/64/6.txt source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2007: \"Attacking the Core : Kernel Exploiting Notes\"](http://phrack.org/archives/issues/64/6.txt) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://phrack.org/archives/issues/64/6.txt"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://phrack.org/archives/issues/64/6.txt"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "notes"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This article provides notes on kernel exploitation techniques and strategies.",
      "summary_zh": "本文提供了关于内核利用技术和策略的笔记。",
      "source_markdown": "[2007: \"Attacking the Core : Kernel Exploiting Notes\"](http://phrack.org/archives/issues/64/6.txt) [article]",
      "search_text": "attacking the core : kernel exploiting notes attacking the core : kernel exploiting notes    techniques exploitation technique: exploitation primary article http://phrack.org/archives/issues/64/6.txt exploitation notes  exploitation this article provides notes on kernel exploitation techniques and strategies. 本文提供了关于内核利用技术和策略的笔记。 # attacking the core : kernel exploiting notes record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: attacking the core : kernel exploiting notes resource_label: primary resource_type: article resource_url: http://phrack.org/archives/issues/64/6.txt parent_primary_url: http://phrack.org/archives/issues/64/6.txt source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2007: \"attacking the core : kernel exploiting notes\"](http://phrack.org/archives/issues/64/6.txt) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "65ead2b24eeccd33",
      "item_id": "f0ac18ac484cbb7d",
      "slug": "2007-techniques-exploitation-the-story-of-exploiting-kmalloc-overflows-primary-8d11d508",
      "year": 2007,
      "title": "The story of exploiting kmalloc() overflows",
      "item_title": "The story of exploiting kmalloc() overflows",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://www.ouah.org/kmallocstory.html",
      "primary_url": "http://www.ouah.org/kmallocstory.html",
      "parent_primary_url": "http://www.ouah.org/kmallocstory.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2007-techniques-exploitation-the-story-of-exploiting-kmalloc-overflows-primary-8d11d508.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The story of exploiting kmalloc() overflows record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: The story of exploiting kmalloc() overflows resource_label: primary resource_type: article resource_url: http://www.ouah.org/kmallocstory.html parent_primary_url: http://www.ouah.org/kmallocstory.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2007: \"The story of exploiting kmalloc() overflows\"](http://www.ouah.org/kmallocstory.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://www.ouah.org/kmallocstory.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://www.ouah.org/kmallocstory.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kmalloc",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The article narrates the story of exploiting kmalloc() overflows in the kernel.",
      "summary_zh": "本文叙述了在内核中利用kmalloc()溢出的故事。",
      "source_markdown": "[2007: \"The story of exploiting kmalloc() overflows\"](http://www.ouah.org/kmallocstory.html) [article]",
      "search_text": "the story of exploiting kmalloc() overflows the story of exploiting kmalloc() overflows    techniques exploitation technique: exploitation primary article http://www.ouah.org/kmallocstory.html kmalloc exploitation  exploitation the article narrates the story of exploiting kmalloc() overflows in the kernel. 本文叙述了在内核中利用kmalloc()溢出的故事。 # the story of exploiting kmalloc() overflows record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: the story of exploiting kmalloc() overflows resource_label: primary resource_type: article resource_url: http://www.ouah.org/kmallocstory.html parent_primary_url: http://www.ouah.org/kmallocstory.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2007: \"the story of exploiting kmalloc() overflows\"](http://www.ouah.org/kmallocstory.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "373c3d817f2cc4ef",
      "item_id": "c5ef3d02a916e034",
      "slug": "2007-techniques-exploitation-linux-2-6-kernel-exploits-primary-6095c616",
      "year": 2007,
      "title": "Linux 2.6 Kernel Exploits",
      "item_title": "Linux 2.6 Kernel Exploits",
      "authors": [
        "Stephane Duverger"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://airbus-seclab.github.io/kernsploit/kernel_exploit_syscan07.pdf",
      "primary_url": "https://airbus-seclab.github.io/kernsploit/kernel_exploit_syscan07.pdf",
      "parent_primary_url": "https://airbus-seclab.github.io/kernsploit/kernel_exploit_syscan07.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2007-techniques-exploitation-linux-2-6-kernel-exploits-primary-6095c616.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux 2.6 Kernel Exploits record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Linux 2.6 Kernel Exploits resource_label: primary resource_type: slides resource_url: https://airbus-seclab.github.io/kernsploit/kernel_exploit_syscan07.pdf parent_primary_url: https://airbus-seclab.github.io/kernsploit/kernel_exploit_syscan07.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2007: \"Linux 2.6 Kernel Exploits\" by Stephane Duverger](https://airbus-seclab.github.io/kernsploit/kernel_exploit_syscan07.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_p",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://airbus-seclab.github.io/kernsploit/kernel_exploit_syscan07.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://airbus-seclab.github.io/kernsploit/kernel_exploit_syscan07.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://airbus-seclab.github.io/kernsploit/kernel_exploit_syscan07.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "linux_2.6",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The slides detail various exploits targeting the Linux 2.6 kernel.",
      "summary_zh": "这些幻灯片详细介绍了针对Linux 2.6内核的各种利用。",
      "source_markdown": "[2007: \"Linux 2.6 Kernel Exploits\" by Stephane Duverger](https://airbus-seclab.github.io/kernsploit/kernel_exploit_syscan07.pdf) [slides]",
      "search_text": "linux 2.6 kernel exploits linux 2.6 kernel exploits stephane duverger   techniques exploitation technique: exploitation primary slides https://airbus-seclab.github.io/kernsploit/kernel_exploit_syscan07.pdf linux_2.6 exploitation  exploitation the slides detail various exploits targeting the linux 2.6 kernel. 这些幻灯片详细介绍了针对linux 2.6内核的各种利用。 # linux 2.6 kernel exploits record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: linux 2.6 kernel exploits resource_label: primary resource_type: slides resource_url: https://airbus-seclab.github.io/kernsploit/kernel_exploit_syscan07.pdf parent_primary_url: https://airbus-seclab.github.io/kernsploit/kernel_exploit_syscan07.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2007: \"linux 2.6 kernel exploits\" by stephane duverger](https://airbus-seclab.github.io/kernsploit/kernel_exploit_syscan07.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_p no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "8adca9681d47ca8f",
      "item_id": "952eb9dcb88737f6",
      "slug": "2005-techniques-exploitation-large-memory-management-vulnerabilities-primary-24e5f617",
      "year": 2005,
      "title": "Large memory management vulnerabilities",
      "item_title": "Large memory management vulnerabilities",
      "authors": [
        "Gael Delalleau at CanSecWest"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://web.archive.org/web/20191112113912/https://cdn.atraining.ru/docs/memory_vulns_delalleau.pdf",
      "primary_url": "https://web.archive.org/web/20191112113912/https://cdn.atraining.ru/docs/memory_vulns_delalleau.pdf",
      "parent_primary_url": "https://web.archive.org/web/20191112113912/https://cdn.atraining.ru/docs/memory_vulns_delalleau.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2005-techniques-exploitation-large-memory-management-vulnerabilities-primary-24e5f617.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Large memory management vulnerabilities record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: Large memory management vulnerabilities resource_label: primary resource_type: slides resource_url: https://web.archive.org/web/20191112113912/https://cdn.atraining.ru/docs/memory_vulns_delalleau.pdf parent_primary_url: https://web.archive.org/web/20191112113912/https://cdn.atraining.ru/docs/memory_vulns_delalleau.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2005: \"Large memory management vulnerabilities\" by Gael Delalleau at CanSecWest](https://web.archive.org/web/20191112113912/https://cdn.atraining.ru/docs/memory_vulns_delalleau.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released And",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://web.archive.org/web/20191112113912/https://cdn.atraining.ru/docs/memory_vulns_delalleau.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://web.archive.org/web/20191112113912/https://cdn.atraining.ru/docs/memory_vulns_delalleau.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory_management",
        "vulnerabilities"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This presentation discusses vulnerabilities in large memory management systems.",
      "summary_zh": "本演示讨论了大型内存管理系统中的漏洞。",
      "source_markdown": "[2005: \"Large memory management vulnerabilities\" by Gael Delalleau at CanSecWest](https://web.archive.org/web/20191112113912/https://cdn.atraining.ru/docs/memory_vulns_delalleau.pdf) [slides]",
      "search_text": "large memory management vulnerabilities large memory management vulnerabilities gael delalleau at cansecwest   techniques exploitation technique: exploitation primary slides https://web.archive.org/web/20191112113912/https://cdn.atraining.ru/docs/memory_vulns_delalleau.pdf memory_management vulnerabilities  exploitation this presentation discusses vulnerabilities in large memory management systems. 本演示讨论了大型内存管理系统中的漏洞。 # large memory management vulnerabilities record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: large memory management vulnerabilities resource_label: primary resource_type: slides resource_url: https://web.archive.org/web/20191112113912/https://cdn.atraining.ru/docs/memory_vulns_delalleau.pdf parent_primary_url: https://web.archive.org/web/20191112113912/https://cdn.atraining.ru/docs/memory_vulns_delalleau.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2005: \"large memory management vulnerabilities\" by gael delalleau at cansecwest](https://web.archive.org/web/20191112113912/https://cdn.atraining.ru/docs/memory_vulns_delalleau.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released and no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4fe6c6db3ceaf2ab",
      "item_id": "137031674e8c9467",
      "slug": "2005-techniques-exploitation-the-story-of-exploiting-kmalloc-overflows-primary-c2963350",
      "year": 2005,
      "title": "The story of exploiting kmalloc() overflows",
      "item_title": "The story of exploiting kmalloc() overflows",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Exploitation",
      "section_path": "Techniques / Exploitation",
      "category": "Technique: Exploitation",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://argp.github.io/public/kmalloc_exploitation.pdf",
      "primary_url": "https://argp.github.io/public/kmalloc_exploitation.pdf",
      "parent_primary_url": "https://argp.github.io/public/kmalloc_exploitation.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploitation",
      "raw_path": "/raw/2005-techniques-exploitation-the-story-of-exploiting-kmalloc-overflows-primary-c2963350.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The story of exploiting kmalloc() overflows record_kind: linux-kernel-resource-url section: Techniques subsection: Exploitation category: Technique: Exploitation item_title: The story of exploiting kmalloc() overflows resource_label: primary resource_type: article resource_url: https://argp.github.io/public/kmalloc_exploitation.pdf parent_primary_url: https://argp.github.io/public/kmalloc_exploitation.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2005: \"The story of exploiting kmalloc() overflows\"](https://argp.github.io/public/kmalloc_exploitation.pdf) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://argp.github.io/public/kmalloc_exploitation.pdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://argp.github.io/public/kmalloc_exploitation.pdf"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://argp.github.io/public/kmalloc_exploitation.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kmalloc",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The article explores the exploitation of kmalloc() overflows in detail.",
      "summary_zh": "本文详细探讨了kmalloc()溢出的利用。",
      "source_markdown": "[2005: \"The story of exploiting kmalloc() overflows\"](https://argp.github.io/public/kmalloc_exploitation.pdf) [article]",
      "search_text": "the story of exploiting kmalloc() overflows the story of exploiting kmalloc() overflows    techniques exploitation technique: exploitation primary article https://argp.github.io/public/kmalloc_exploitation.pdf kmalloc exploitation  exploitation the article explores the exploitation of kmalloc() overflows in detail. 本文详细探讨了kmalloc()溢出的利用。 # the story of exploiting kmalloc() overflows record_kind: linux-kernel-resource-url section: techniques subsection: exploitation category: technique: exploitation item_title: the story of exploiting kmalloc() overflows resource_label: primary resource_type: article resource_url: https://argp.github.io/public/kmalloc_exploitation.pdf parent_primary_url: https://argp.github.io/public/kmalloc_exploitation.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploitation source_item: [2005: \"the story of exploiting kmalloc() overflows\"](https://argp.github.io/public/kmalloc_exploitation.pdf) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "09054db8a5ea2c69",
      "item_id": "d325b992f4a41a40",
      "slug": "2026-techniques-protection-bypasses-revisiting-two-shot-kernel-shellcode-execution-from-control-flow-hijacking",
      "year": 2026,
      "title": "Revisiting Two-Shot Kernel Shellcode Execution From Control Flow Hijacking",
      "item_title": "Revisiting Two-Shot Kernel Shellcode Execution From Control Flow Hijacking",
      "authors": [
        "Jennifer Miller"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.zolutal.io/two-shot-kernel-shellcode/",
      "primary_url": "https://blog.zolutal.io/two-shot-kernel-shellcode/",
      "parent_primary_url": "https://blog.zolutal.io/two-shot-kernel-shellcode/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2026-techniques-protection-bypasses-revisiting-two-shot-kernel-shellcode-execution-from-control-flow-hijacking.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Revisiting Two-Shot Kernel Shellcode Execution From Control Flow Hijacking record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Revisiting Two-Shot Kernel Shellcode Execution From Control Flow Hijacking resource_label: primary resource_type: article resource_url: https://blog.zolutal.io/two-shot-kernel-shellcode/ parent_primary_url: https://blog.zolutal.io/two-shot-kernel-shellcode/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2026: \"Revisiting Two-Shot Kernel Shellcode Execution From Control Flow Hijacking\" by Jennifer Miller](https://blog.zolutal.io/two-shot-kernel-shellcode/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status:",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.zolutal.io/two-shot-kernel-shellcode/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.zolutal.io/two-shot-kernel-shellcode/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "control_flow",
        "bypass"
      ],
      "affected_area": "",
      "exploit_stage": "protection_bypass",
      "summary_en": "This article revisits kernel shellcode execution techniques from control flow hijacking.",
      "summary_zh": "本文重新审视了来自控制流劫持的内核shellcode执行技术。",
      "source_markdown": "[2026: \"Revisiting Two-Shot Kernel Shellcode Execution From Control Flow Hijacking\" by Jennifer Miller](https://blog.zolutal.io/two-shot-kernel-shellcode/) [article]",
      "search_text": "revisiting two-shot kernel shellcode execution from control flow hijacking revisiting two-shot kernel shellcode execution from control flow hijacking jennifer miller   techniques protection bypasses technique: protection bypasses primary article https://blog.zolutal.io/two-shot-kernel-shellcode/ control_flow bypass  protection_bypass this article revisits kernel shellcode execution techniques from control flow hijacking. 本文重新审视了来自控制流劫持的内核shellcode执行技术。 # revisiting two-shot kernel shellcode execution from control flow hijacking record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: revisiting two-shot kernel shellcode execution from control flow hijacking resource_label: primary resource_type: article resource_url: https://blog.zolutal.io/two-shot-kernel-shellcode/ parent_primary_url: https://blog.zolutal.io/two-shot-kernel-shellcode/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2026: \"revisiting two-shot kernel shellcode execution from control flow hijacking\" by jennifer miller](https://blog.zolutal.io/two-shot-kernel-shellcode/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "66997c2c1ef039fc",
      "item_id": "b04705b3856d1761",
      "slug": "2025-techniques-protection-bypasses-defeating-kaslr-primary-996c1cf1",
      "year": 2025,
      "title": "Defeating KASLR",
      "item_title": "Defeating KASLR",
      "authors": [
        "Doing Nothing at All\" by Seth Jenkins"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2025/11/defeating-kaslr-by-doing-nothing-at-all.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2025/11/defeating-kaslr-by-doing-nothing-at-all.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2025/11/defeating-kaslr-by-doing-nothing-at-all.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2025-techniques-protection-bypasses-defeating-kaslr-primary-996c1cf1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Defeating KASLR record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Defeating KASLR resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2025/11/defeating-kaslr-by-doing-nothing-at-all.html parent_primary_url: https://googleprojectzero.blogspot.com/2025/11/defeating-kaslr-by-doing-nothing-at-all.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2025: \"Defeating KASLR by Doing Nothing at All\" by Seth Jenkins](https://googleprojectzero.blogspot.com/2025/11/defeating-kaslr-by-doing-nothing-at-all.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2025/11/defeating-kaslr-by-doing-nothing-at-all.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2025/11/defeating-kaslr-by-doing-nothing-at-all.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KASLR",
        "bypass"
      ],
      "affected_area": "",
      "exploit_stage": "protection_bypass",
      "summary_en": "The article discusses methods to defeat KASLR protections in kernels.",
      "summary_zh": "本文讨论了在内核中击败KASLR保护的方法。",
      "source_markdown": "[2025: \"Defeating KASLR by Doing Nothing at All\" by Seth Jenkins](https://googleprojectzero.blogspot.com/2025/11/defeating-kaslr-by-doing-nothing-at-all.html) [article]",
      "search_text": "defeating kaslr defeating kaslr doing nothing at all\" by seth jenkins   techniques protection bypasses technique: protection bypasses primary article https://googleprojectzero.blogspot.com/2025/11/defeating-kaslr-by-doing-nothing-at-all.html kaslr bypass  protection_bypass the article discusses methods to defeat kaslr protections in kernels. 本文讨论了在内核中击败kaslr保护的方法。 # defeating kaslr record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: defeating kaslr resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2025/11/defeating-kaslr-by-doing-nothing-at-all.html parent_primary_url: https://googleprojectzero.blogspot.com/2025/11/defeating-kaslr-by-doing-nothing-at-all.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2025: \"defeating kaslr by doing nothing at all\" by seth jenkins](https://googleprojectzero.blogspot.com/2025/11/defeating-kaslr-by-doing-nothing-at-all.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1188a1c0c807f86a",
      "item_id": "489e8e44871e588e",
      "slug": "2025-techniques-protection-bypasses-the-journey-of-bypassing-ubuntu-s-unprivileged-namespace-restriction-prima",
      "year": 2025,
      "title": "The Journey of Bypassing Ubuntu’s Unprivileged Namespace Restriction",
      "item_title": "The Journey of Bypassing Ubuntu’s Unprivileged Namespace Restriction",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/06/26/the-journey-of-bypassing-ubuntus-unprivileged-namespace-restriction.html",
      "primary_url": "https://u1f383.github.io/linux/2025/06/26/the-journey-of-bypassing-ubuntus-unprivileged-namespace-restriction.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/06/26/the-journey-of-bypassing-ubuntus-unprivileged-namespace-restriction.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2025-techniques-protection-bypasses-the-journey-of-bypassing-ubuntu-s-unprivileged-namespace-restriction-prima.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Journey of Bypassing Ubuntu’s Unprivileged Namespace Restriction record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: The Journey of Bypassing Ubuntu’s Unprivileged Namespace Restriction resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/06/26/the-journey-of-bypassing-ubuntus-unprivileged-namespace-restriction.html parent_primary_url: https://u1f383.github.io/linux/2025/06/26/the-journey-of-bypassing-ubuntus-unprivileged-namespace-restriction.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2025: \"The Journey of Bypassing Ubuntu’s Unprivileged Namespace Restriction\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/06/26/the-journey-of-bypassing-ubuntus-unprivileged-namespace-restric",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/06/26/the-journey-of-bypassing-ubuntus-unprivileged-namespace-restriction.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/06/26/the-journey-of-bypassing-ubuntus-unprivileged-namespace-restriction.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/06/26/the-journey-of-bypassing-ubuntus-unprivileged-namespace-restriction.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "namespace",
        "bypass"
      ],
      "affected_area": "",
      "exploit_stage": "protection_bypass",
      "summary_en": "This resource details the journey of bypassing Ubuntu’s unprivileged namespace restrictions.",
      "summary_zh": "该资源详细介绍了绕过Ubuntu非特权命名空间限制的过程。",
      "source_markdown": "[2025: \"The Journey of Bypassing Ubuntu’s Unprivileged Namespace Restriction\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/06/26/the-journey-of-bypassing-ubuntus-unprivileged-namespace-restriction.html) [article]",
      "search_text": "the journey of bypassing ubuntu’s unprivileged namespace restriction the journey of bypassing ubuntu’s unprivileged namespace restriction pumpkin chang   techniques protection bypasses technique: protection bypasses primary article https://u1f383.github.io/linux/2025/06/26/the-journey-of-bypassing-ubuntus-unprivileged-namespace-restriction.html namespace bypass  protection_bypass this resource details the journey of bypassing ubuntu’s unprivileged namespace restrictions. 该资源详细介绍了绕过ubuntu非特权命名空间限制的过程。 # the journey of bypassing ubuntu’s unprivileged namespace restriction record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: the journey of bypassing ubuntu’s unprivileged namespace restriction resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/06/26/the-journey-of-bypassing-ubuntus-unprivileged-namespace-restriction.html parent_primary_url: https://u1f383.github.io/linux/2025/06/26/the-journey-of-bypassing-ubuntus-unprivileged-namespace-restriction.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2025: \"the journey of bypassing ubuntu’s unprivileged namespace restriction\" by pumpkin chang](https://u1f383.github.io/linux/2025/06/26/the-journey-of-bypassing-ubuntus-unprivileged-namespace-restric no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "7bbf3cc62d478258",
      "item_id": "62bdf6026b9bd4f6",
      "slug": "2025-techniques-protection-bypasses-exploring-kernel-address-leakage-via-warn-primary-0ad91b62",
      "year": 2025,
      "title": "Exploring Kernel Address Leakage via WARN()",
      "item_title": "Exploring Kernel Address Leakage via WARN()",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/06/14/exploring-kernel-address-leakage-via-WARN.html",
      "primary_url": "https://u1f383.github.io/linux/2025/06/14/exploring-kernel-address-leakage-via-WARN.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/06/14/exploring-kernel-address-leakage-via-WARN.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2025-techniques-protection-bypasses-exploring-kernel-address-leakage-via-warn-primary-0ad91b62.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploring Kernel Address Leakage via WARN() record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Exploring Kernel Address Leakage via WARN() resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/06/14/exploring-kernel-address-leakage-via-WARN.html parent_primary_url: https://u1f383.github.io/linux/2025/06/14/exploring-kernel-address-leakage-via-WARN.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2025: \"Exploring Kernel Address Leakage via WARN()\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/06/14/exploring-kernel-address-leakage-via-WARN.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices.",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/06/14/exploring-kernel-address-leakage-via-WARN.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/06/14/exploring-kernel-address-leakage-via-WARN.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/06/14/exploring-kernel-address-leakage-via-WARN.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "address_leak",
        "bypass"
      ],
      "affected_area": "",
      "exploit_stage": "protection_bypass",
      "summary_en": "The article explores kernel address leakage vulnerabilities via WARN().",
      "summary_zh": "本文探讨了通过WARN()的内核地址泄漏漏洞。",
      "source_markdown": "[2025: \"Exploring Kernel Address Leakage via WARN()\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/06/14/exploring-kernel-address-leakage-via-WARN.html) [article]",
      "search_text": "exploring kernel address leakage via warn() exploring kernel address leakage via warn() pumpkin chang   techniques protection bypasses technique: protection bypasses primary article https://u1f383.github.io/linux/2025/06/14/exploring-kernel-address-leakage-via-warn.html address_leak bypass  protection_bypass the article explores kernel address leakage vulnerabilities via warn(). 本文探讨了通过warn()的内核地址泄漏漏洞。 # exploring kernel address leakage via warn() record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: exploring kernel address leakage via warn() resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/06/14/exploring-kernel-address-leakage-via-warn.html parent_primary_url: https://u1f383.github.io/linux/2025/06/14/exploring-kernel-address-leakage-via-warn.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2025: \"exploring kernel address leakage via warn()\" by pumpkin chang](https://u1f383.github.io/linux/2025/06/14/exploring-kernel-address-leakage-via-warn.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "855c77db48a2ffe8",
      "item_id": "2623414da2095d78",
      "slug": "2025-techniques-protection-bypasses-three-bypasses-of-ubuntu-s-unprivileged-user-namespace-restrictions-primar",
      "year": 2025,
      "title": "Three bypasses of Ubuntu's unprivileged user namespace restrictions",
      "item_title": "Three bypasses of Ubuntu's unprivileged user namespace restrictions",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.qualys.com/2025/three-bypasses-of-Ubuntu-unprivileged-user-namespace-restrictions.txt",
      "primary_url": "https://www.qualys.com/2025/three-bypasses-of-Ubuntu-unprivileged-user-namespace-restrictions.txt",
      "parent_primary_url": "https://www.qualys.com/2025/three-bypasses-of-Ubuntu-unprivileged-user-namespace-restrictions.txt",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2025-techniques-protection-bypasses-three-bypasses-of-ubuntu-s-unprivileged-user-namespace-restrictions-primar.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Three bypasses of Ubuntu's unprivileged user namespace restrictions record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Three bypasses of Ubuntu's unprivileged user namespace restrictions resource_label: primary resource_type: article resource_url: https://www.qualys.com/2025/three-bypasses-of-Ubuntu-unprivileged-user-namespace-restrictions.txt parent_primary_url: https://www.qualys.com/2025/three-bypasses-of-Ubuntu-unprivileged-user-namespace-restrictions.txt source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2025: \"Three bypasses of Ubuntu's unprivileged user namespace restrictions\"](https://www.qualys.com/2025/three-bypasses-of-Ubuntu-unprivileged-user-namespace-restrictions.txt) [article] cves: none android_impact_status: no android_impac",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.qualys.com/2025/three-bypasses-of-Ubuntu-unprivileged-user-namespace-restrictions.txt"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.qualys.com/2025/three-bypasses-of-Ubuntu-unprivileged-user-namespace-restrictions.txt"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "namespace",
        "bypass"
      ],
      "affected_area": "",
      "exploit_stage": "protection_bypass",
      "summary_en": "This article outlines three methods to bypass Ubuntu's unprivileged user namespace restrictions.",
      "summary_zh": "本文概述了三种绕过Ubuntu非特权用户命名空间限制的方法。",
      "source_markdown": "[2025: \"Three bypasses of Ubuntu's unprivileged user namespace restrictions\"](https://www.qualys.com/2025/three-bypasses-of-Ubuntu-unprivileged-user-namespace-restrictions.txt) [article]",
      "search_text": "three bypasses of ubuntu's unprivileged user namespace restrictions three bypasses of ubuntu's unprivileged user namespace restrictions    techniques protection bypasses technique: protection bypasses primary article https://www.qualys.com/2025/three-bypasses-of-ubuntu-unprivileged-user-namespace-restrictions.txt namespace bypass  protection_bypass this article outlines three methods to bypass ubuntu's unprivileged user namespace restrictions. 本文概述了三种绕过ubuntu非特权用户命名空间限制的方法。 # three bypasses of ubuntu's unprivileged user namespace restrictions record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: three bypasses of ubuntu's unprivileged user namespace restrictions resource_label: primary resource_type: article resource_url: https://www.qualys.com/2025/three-bypasses-of-ubuntu-unprivileged-user-namespace-restrictions.txt parent_primary_url: https://www.qualys.com/2025/three-bypasses-of-ubuntu-unprivileged-user-namespace-restrictions.txt source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2025: \"three bypasses of ubuntu's unprivileged user namespace restrictions\"](https://www.qualys.com/2025/three-bypasses-of-ubuntu-unprivileged-user-namespace-restrictions.txt) [article] cves: none android_impact_status: no android_impac no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3858cc6c72dade14",
      "item_id": "2917c5e7d0ddbbaf",
      "slug": "2025-techniques-protection-bypasses-a-hole-in-fineibt-protection-primary-bd96db46",
      "year": 2025,
      "title": "A hole in FineIBT protection",
      "item_title": "A hole in FineIBT protection",
      "authors": [
        "Jonathan Corbet"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://lwn.net/Articles/1011680/",
      "primary_url": "https://lwn.net/Articles/1011680/",
      "parent_primary_url": "https://lwn.net/Articles/1011680/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2025-techniques-protection-bypasses-a-hole-in-fineibt-protection-primary-bd96db46.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A hole in FineIBT protection record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: A hole in FineIBT protection resource_label: primary resource_type: article resource_url: https://lwn.net/Articles/1011680/ parent_primary_url: https://lwn.net/Articles/1011680/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2025: \"A hole in FineIBT protection\" by Jonathan Corbet](https://lwn.net/Articles/1011680/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] pri",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://lwn.net/Articles/1011680/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://lwn.net/Articles/1011680/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "FineIBT",
        "bypass"
      ],
      "affected_area": "",
      "exploit_stage": "protection_bypass",
      "summary_en": "The article discusses a vulnerability in FineIBT protection mechanisms.",
      "summary_zh": "本文讨论了FineIBT保护机制中的一个漏洞。",
      "source_markdown": "[2025: \"A hole in FineIBT protection\" by Jonathan Corbet](https://lwn.net/Articles/1011680/) [article]",
      "search_text": "a hole in fineibt protection a hole in fineibt protection jonathan corbet   techniques protection bypasses technique: protection bypasses primary article https://lwn.net/articles/1011680/ fineibt bypass  protection_bypass the article discusses a vulnerability in fineibt protection mechanisms. 本文讨论了fineibt保护机制中的一个漏洞。 # a hole in fineibt protection record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: a hole in fineibt protection resource_label: primary resource_type: article resource_url: https://lwn.net/articles/1011680/ parent_primary_url: https://lwn.net/articles/1011680/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2025: \"a hole in fineibt protection\" by jonathan corbet](https://lwn.net/articles/1011680/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] pri no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "8f51b4105d42d41c",
      "item_id": "42211bc1c6b33cbc",
      "slug": "2024-techniques-protection-bypasses-selinux-bypasses-primary-6c3bafe1",
      "year": 2024,
      "title": "SELinux bypasses",
      "item_title": "SELinux bypasses",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://klecko.github.io/posts/selinux-bypasses/",
      "primary_url": "https://klecko.github.io/posts/selinux-bypasses/",
      "parent_primary_url": "https://klecko.github.io/posts/selinux-bypasses/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2024-techniques-protection-bypasses-selinux-bypasses-primary-6c3bafe1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SELinux bypasses record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: SELinux bypasses resource_label: primary resource_type: article resource_url: https://klecko.github.io/posts/selinux-bypasses/ parent_primary_url: https://klecko.github.io/posts/selinux-bypasses/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2024: \"SELinux bypasses\"](https://klecko.github.io/posts/selinux-bypasses/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://klecko.github.io/posts/selinux-bypasse",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://klecko.github.io/posts/selinux-bypasses/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://klecko.github.io/posts/selinux-bypasses/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://klecko.github.io/posts/selinux-bypasses/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "SELinux",
        "bypass"
      ],
      "affected_area": "",
      "exploit_stage": "protection_bypass",
      "summary_en": "This article presents various bypass techniques for SELinux protections.",
      "summary_zh": "本文介绍了多种绕过SELinux保护的技术。",
      "source_markdown": "[2024: \"SELinux bypasses\"](https://klecko.github.io/posts/selinux-bypasses/) [article]",
      "search_text": "selinux bypasses selinux bypasses    techniques protection bypasses technique: protection bypasses primary article https://klecko.github.io/posts/selinux-bypasses/ selinux bypass  protection_bypass this article presents various bypass techniques for selinux protections. 本文介绍了多种绕过selinux保护的技术。 # selinux bypasses record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: selinux bypasses resource_label: primary resource_type: article resource_url: https://klecko.github.io/posts/selinux-bypasses/ parent_primary_url: https://klecko.github.io/posts/selinux-bypasses/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2024: \"selinux bypasses\"](https://klecko.github.io/posts/selinux-bypasses/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://klecko.github.io/posts/selinux-bypasse no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "dcf396fba5438b08",
      "item_id": "0722ce59f7b30cbd",
      "slug": "2024-techniques-protection-bypasses-page-oriented-programming-subverting-control-flow-integrity-of-commodity-o",
      "year": 2024,
      "title": "Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages",
      "item_title": "Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages",
      "authors": [
        "Seunghun Han et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2024-techniques-protection-bypasses-page-oriented-programming-subverting-control-flow-integrity-of-commodity-o.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2024: \"Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages\" by Seunghun Han et al.](https://www.us",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-han-seunghun.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=wSMByLg-ibs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-han-seunghun.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=wSMByLg-ibs"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "control_flow",
        "bypass"
      ],
      "affected_area": "",
      "exploit_stage": "protection_bypass",
      "summary_en": "The paper discusses subverting control-flow integrity in commodity OS kernels.",
      "summary_zh": "该论文讨论了在商品操作系统内核中颠覆控制流完整性的方法。",
      "source_markdown": "[2024: \"Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages\" by Seunghun Han et al.](https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-han-seunghun.pdf)] [[video](https://www.youtube.com/watch?v=wSMByLg-ibs)]",
      "search_text": "page-oriented programming: subverting control-flow integrity of commodity operating system kernels with non-writable code pages page-oriented programming: subverting control-flow integrity of commodity operating system kernels with non-writable code pages seunghun han et al.   techniques protection bypasses technique: protection bypasses primary paper https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf control_flow bypass  protection_bypass the paper discusses subverting control-flow integrity in commodity os kernels. 该论文讨论了在商品操作系统内核中颠覆控制流完整性的方法。 # page-oriented programming: subverting control-flow integrity of commodity operating system kernels with non-writable code pages record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: page-oriented programming: subverting control-flow integrity of commodity operating system kernels with non-writable code pages resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2024: \"page-oriented programming: subverting control-flow integrity of commodity operating system kernels with non-writable code pages\" by seunghun han et al.](https://www.us no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b78210e6a3f30c1a",
      "item_id": "0722ce59f7b30cbd",
      "slug": "2024-techniques-protection-bypasses-page-oriented-programming-subverting-control-flow-integrity-of-commodity-o-2",
      "year": 2024,
      "title": "Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages · slides",
      "item_title": "Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages",
      "authors": [
        "Seunghun Han et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity24_slides-han-seunghun.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity24_slides-han-seunghun.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2024-techniques-protection-bypasses-page-oriented-programming-subverting-control-flow-integrity-of-commodity-o-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages · slides record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/usenixsecurity24_slides-han-seunghun.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2024: \"Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages\" by Seunghun Han et al.",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-han-seunghun.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=wSMByLg-ibs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-han-seunghun.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=wSMByLg-ibs"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "control-flow",
        "integrity",
        "bypass"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This presentation discusses methods to bypass control-flow integrity in operating system kernels using non-writable code pages.",
      "summary_zh": "本演示讨论了如何使用不可写代码页面绕过操作系统内核中的控制流完整性。",
      "source_markdown": "[2024: \"Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages\" by Seunghun Han et al.](https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-han-seunghun.pdf)] [[video](https://www.youtube.com/watch?v=wSMByLg-ibs)]",
      "search_text": "page-oriented programming: subverting control-flow integrity of commodity operating system kernels with non-writable code pages · slides page-oriented programming: subverting control-flow integrity of commodity operating system kernels with non-writable code pages seunghun han et al.   techniques protection bypasses technique: protection bypasses slides slides https://www.usenix.org/system/files/usenixsecurity24_slides-han-seunghun.pdf control-flow integrity bypass  defensive research this presentation discusses methods to bypass control-flow integrity in operating system kernels using non-writable code pages. 本演示讨论了如何使用不可写代码页面绕过操作系统内核中的控制流完整性。 # page-oriented programming: subverting control-flow integrity of commodity operating system kernels with non-writable code pages · slides record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: page-oriented programming: subverting control-flow integrity of commodity operating system kernels with non-writable code pages resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/usenixsecurity24_slides-han-seunghun.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2024: \"page-oriented programming: subverting control-flow integrity of commodity operating system kernels with non-writable code pages\" by seunghun han et al. no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "61a4320e87d1a7e3",
      "item_id": "0722ce59f7b30cbd",
      "slug": "2024-techniques-protection-bypasses-page-oriented-programming-subverting-control-flow-integrity-of-commodity-o-3",
      "year": 2024,
      "title": "Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages · video",
      "item_title": "Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages",
      "authors": [
        "Seunghun Han et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=wSMByLg-ibs",
      "primary_url": "https://www.youtube.com/watch?v=wSMByLg-ibs",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2024-techniques-protection-bypasses-page-oriented-programming-subverting-control-flow-integrity-of-commodity-o-3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages · video record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=wSMByLg-ibs parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2024: \"Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages\" by Seunghun Han et al.](https://www.usenix.org/system/file",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-han-seunghun.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=wSMByLg-ibs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-han-seunghun.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=wSMByLg-ibs"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "control-flow",
        "integrity",
        "bypass"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This video elaborates on techniques to undermine control-flow integrity in commodity operating system kernels.",
      "summary_zh": "本视频详细阐述了破坏商品操作系统内核控制流完整性的技术。",
      "source_markdown": "[2024: \"Page-Oriented Programming: Subverting Control-Flow Integrity of Commodity Operating System Kernels with Non-Writable Code Pages\" by Seunghun Han et al.](https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-han-seunghun.pdf)] [[video](https://www.youtube.com/watch?v=wSMByLg-ibs)]",
      "search_text": "page-oriented programming: subverting control-flow integrity of commodity operating system kernels with non-writable code pages · video page-oriented programming: subverting control-flow integrity of commodity operating system kernels with non-writable code pages seunghun han et al.   techniques protection bypasses technique: protection bypasses video video https://www.youtube.com/watch?v=wsmbylg-ibs control-flow integrity bypass  defensive research this video elaborates on techniques to undermine control-flow integrity in commodity operating system kernels. 本视频详细阐述了破坏商品操作系统内核控制流完整性的技术。 # page-oriented programming: subverting control-flow integrity of commodity operating system kernels with non-writable code pages · video record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: page-oriented programming: subverting control-flow integrity of commodity operating system kernels with non-writable code pages resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=wsmbylg-ibs parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-han-seunghun.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2024: \"page-oriented programming: subverting control-flow integrity of commodity operating system kernels with non-writable code pages\" by seunghun han et al.](https://www.usenix.org/system/file no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "34ab45a818778e98",
      "item_id": "f7e2cc0521eb9de3",
      "slug": "2024-techniques-protection-bypasses-defects-in-depth-analyzing-the-integration-of-effective-defenses-against-o",
      "year": 2024,
      "title": "Defects-in-Depth: Analyzing the Integration of Effective Defenses against One-Day Exploits in Android Kernels",
      "item_title": "Defects-in-Depth: Analyzing the Integration of Effective Defenses against One-Day Exploits in Android Kernels",
      "authors": [
        "Lukas Maar et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2024-techniques-protection-bypasses-defects-in-depth-analyzing-the-integration-of-effective-defenses-against-o.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Defects-in-Depth: Analyzing the Integration of Effective Defenses against One-Day Exploits in Android Kernels record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Defects-in-Depth: Analyzing the Integration of Effective Defenses against One-Day Exploits in Android Kernels resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2024: \"Defects-in-Depth: Analyzing the Integration of Effective Defenses against One-Day Exploits in Android Kernels\" by Lukas Maar et. al](https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf)",
      "link_types": [
        "paper",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-maar-defects.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-maar-defects.pdf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://www.usenix.org/system/files/usenixsecurity24-appendix-maar-defects.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "defense",
        "android",
        "exploits"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper analyzes effective defenses against one-day exploits in Android kernels.",
      "summary_zh": "本文分析了针对Android内核的一日漏洞的有效防御措施。",
      "source_markdown": "[2024: \"Defects-in-Depth: Analyzing the Integration of Effective Defenses against One-Day Exploits in Android Kernels\" by Lukas Maar et. al](https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf) [paper] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-maar-defects.pdf)]",
      "search_text": "defects-in-depth: analyzing the integration of effective defenses against one-day exploits in android kernels defects-in-depth: analyzing the integration of effective defenses against one-day exploits in android kernels lukas maar et. al   techniques protection bypasses technique: protection bypasses primary paper https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf defense android exploits  defensive research this paper analyzes effective defenses against one-day exploits in android kernels. 本文分析了针对android内核的一日漏洞的有效防御措施。 # defects-in-depth: analyzing the integration of effective defenses against one-day exploits in android kernels record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: defects-in-depth: analyzing the integration of effective defenses against one-day exploits in android kernels resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2024: \"defects-in-depth: analyzing the integration of effective defenses against one-day exploits in android kernels\" by lukas maar et. al](https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf) unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "4856ba3d4e549929",
      "item_id": "f7e2cc0521eb9de3",
      "slug": "2024-techniques-protection-bypasses-defects-in-depth-analyzing-the-integration-of-effective-defenses-against-o-2",
      "year": 2024,
      "title": "Defects-in-Depth: Analyzing the Integration of Effective Defenses against One-Day Exploits in Android Kernels · artifacts",
      "item_title": "Defects-in-Depth: Analyzing the Integration of Effective Defenses against One-Day Exploits in Android Kernels",
      "authors": [
        "Lukas Maar et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "artifacts",
      "resource_type": "artifact",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-maar-defects.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-maar-defects.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2024-techniques-protection-bypasses-defects-in-depth-analyzing-the-integration-of-effective-defenses-against-o-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Defects-in-Depth: Analyzing the Integration of Effective Defenses against One-Day Exploits in Android Kernels · artifacts record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Defects-in-Depth: Analyzing the Integration of Effective Defenses against One-Day Exploits in Android Kernels resource_label: artifacts resource_type: artifact resource_url: https://www.usenix.org/system/files/usenixsecurity24-appendix-maar-defects.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2024: \"Defects-in-Depth: Analyzing the Integration of Effective Defenses against One-Day Exploits in Android Kernels\" by Lukas Maar et. al](https://www.usenix.org/system/files/usenixse",
      "link_types": [
        "paper",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-maar-defects.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-maar-defects.pdf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://www.usenix.org/system/files/usenixsecurity24-appendix-maar-defects.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "defense",
        "android",
        "exploits"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This artifact accompanies a paper on defenses against one-day exploits in Android kernels.",
      "summary_zh": "该文档是关于Android内核一日漏洞防御的论文的附录。",
      "source_markdown": "[2024: \"Defects-in-Depth: Analyzing the Integration of Effective Defenses against One-Day Exploits in Android Kernels\" by Lukas Maar et. al](https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf) [paper] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-maar-defects.pdf)]",
      "search_text": "defects-in-depth: analyzing the integration of effective defenses against one-day exploits in android kernels · artifacts defects-in-depth: analyzing the integration of effective defenses against one-day exploits in android kernels lukas maar et. al   techniques protection bypasses technique: protection bypasses artifacts artifact https://www.usenix.org/system/files/usenixsecurity24-appendix-maar-defects.pdf defense android exploits  defensive research this artifact accompanies a paper on defenses against one-day exploits in android kernels. 该文档是关于android内核一日漏洞防御的论文的附录。 # defects-in-depth: analyzing the integration of effective defenses against one-day exploits in android kernels · artifacts record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: defects-in-depth: analyzing the integration of effective defenses against one-day exploits in android kernels resource_label: artifacts resource_type: artifact resource_url: https://www.usenix.org/system/files/usenixsecurity24-appendix-maar-defects.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-maar-defects.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2024: \"defects-in-depth: analyzing the integration of effective defenses against one-day exploits in android kernels\" by lukas maar et. al](https://www.usenix.org/system/files/usenixse unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "074a80ec18aacbd6",
      "item_id": "02a0dc3e33d6887c",
      "slug": "2024-techniques-protection-bypasses-leaking-host-kaslr-from-guest-vms-using-tagged-tlb-primary-1be8ec36",
      "year": 2024,
      "title": "Leaking Host KASLR from Guest VMs Using Tagged TLB",
      "item_title": "Leaking Host KASLR from Guest VMs Using Tagged TLB",
      "authors": [
        "Reno Robert"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://pagedout.institute/download/PagedOut_004_beta1.pdf#page=58",
      "primary_url": "https://pagedout.institute/download/PagedOut_004_beta1.pdf#page=58",
      "parent_primary_url": "https://pagedout.institute/download/PagedOut_004_beta1.pdf#page=58",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2024-techniques-protection-bypasses-leaking-host-kaslr-from-guest-vms-using-tagged-tlb-primary-1be8ec36.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Leaking Host KASLR from Guest VMs Using Tagged TLB record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Leaking Host KASLR from Guest VMs Using Tagged TLB resource_label: primary resource_type: article resource_url: https://pagedout.institute/download/PagedOut_004_beta1.pdf#page=58 parent_primary_url: https://pagedout.institute/download/PagedOut_004_beta1.pdf#page=58 source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2024: \"Leaking Host KASLR from Guest VMs Using Tagged TLB\" by Reno Robert](https://pagedout.institute/download/PagedOut_004_beta1.pdf#page=58) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Produ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://pagedout.institute/download/PagedOut_004_beta1.pdf#page=58"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://pagedout.institute/download/PagedOut_004_beta1.pdf#page=58"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KASLR",
        "leak",
        "virtualization"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article discusses a method for leaking host KASLR from guest VMs using tagged TLB.",
      "summary_zh": "本文讨论了一种使用标记的TLB从来宾虚拟机泄露主机KASLR的方法。",
      "source_markdown": "[2024: \"Leaking Host KASLR from Guest VMs Using Tagged TLB\" by Reno Robert](https://pagedout.institute/download/PagedOut_004_beta1.pdf#page=58) [article]",
      "search_text": "leaking host kaslr from guest vms using tagged tlb leaking host kaslr from guest vms using tagged tlb reno robert   techniques protection bypasses technique: protection bypasses primary article https://pagedout.institute/download/pagedout_004_beta1.pdf#page=58 kaslr leak virtualization  defensive research this article discusses a method for leaking host kaslr from guest vms using tagged tlb. 本文讨论了一种使用标记的tlb从来宾虚拟机泄露主机kaslr的方法。 # leaking host kaslr from guest vms using tagged tlb record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: leaking host kaslr from guest vms using tagged tlb resource_label: primary resource_type: article resource_url: https://pagedout.institute/download/pagedout_004_beta1.pdf#page=58 parent_primary_url: https://pagedout.institute/download/pagedout_004_beta1.pdf#page=58 source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2024: \"leaking host kaslr from guest vms using tagged tlb\" by reno robert](https://pagedout.institute/download/pagedout_004_beta1.pdf#page=58) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: produ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6a4818236aa26279",
      "item_id": "dc82a1ba34a90534",
      "slug": "2024-techniques-protection-bypasses-tiktag-breaking-arm-s-memory-tagging-extension-with-speculative-execution-",
      "year": 2024,
      "title": "TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution",
      "item_title": "TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution",
      "authors": [
        "Juhee Kim et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/2406.08719",
      "primary_url": "https://arxiv.org/pdf/2406.08719",
      "parent_primary_url": "https://arxiv.org/pdf/2406.08719",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2024-techniques-protection-bypasses-tiktag-breaking-arm-s-memory-tagging-extension-with-speculative-execution-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2406.08719 parent_primary_url: https://arxiv.org/pdf/2406.08719 source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2024: \"TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution\" by Juhee Kim et al.](https://arxiv.org/pdf/2406.08719) [paper] [[code](https://github.com/compsec-snu/tiktag)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_i",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/2406.08719"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/compsec-snu/tiktag"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/2406.08719"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/compsec-snu/tiktag"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/compsec-snu/tiktag"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "ARM",
        "memory-tagging",
        "speculative-execution"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper presents a method to break ARM's memory tagging extension using speculative execution.",
      "summary_zh": "本文提出了一种利用推测执行破坏ARM内存标记扩展的方法。",
      "source_markdown": "[2024: \"TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution\" by Juhee Kim et al.](https://arxiv.org/pdf/2406.08719) [paper] [[code](https://github.com/compsec-snu/tiktag)]",
      "search_text": "tiktag: breaking arm's memory tagging extension with speculative execution tiktag: breaking arm's memory tagging extension with speculative execution juhee kim et al.   techniques protection bypasses technique: protection bypasses primary paper https://arxiv.org/pdf/2406.08719 arm memory-tagging speculative-execution  defensive research this paper presents a method to break arm's memory tagging extension using speculative execution. 本文提出了一种利用推测执行破坏arm内存标记扩展的方法。 # tiktag: breaking arm's memory tagging extension with speculative execution record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: tiktag: breaking arm's memory tagging extension with speculative execution resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2406.08719 parent_primary_url: https://arxiv.org/pdf/2406.08719 source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2024: \"tiktag: breaking arm's memory tagging extension with speculative execution\" by juhee kim et al.](https://arxiv.org/pdf/2406.08719) [paper] [[code](https://github.com/compsec-snu/tiktag)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_i no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "95712643b7bd1ec6",
      "item_id": "dc82a1ba34a90534",
      "slug": "2024-techniques-protection-bypasses-tiktag-breaking-arm-s-memory-tagging-extension-with-speculative-execution--2",
      "year": 2024,
      "title": "TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution · code",
      "item_title": "TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution",
      "authors": [
        "Juhee Kim et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/compsec-snu/tiktag",
      "primary_url": "https://github.com/compsec-snu/tiktag",
      "parent_primary_url": "https://arxiv.org/pdf/2406.08719",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2024-techniques-protection-bypasses-tiktag-breaking-arm-s-memory-tagging-extension-with-speculative-execution--2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution · code record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution resource_label: code resource_type: code resource_url: https://github.com/compsec-snu/tiktag parent_primary_url: https://arxiv.org/pdf/2406.08719 source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2024: \"TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution\" by Juhee Kim et al.](https://arxiv.org/pdf/2406.08719) [paper] [[code](https://github.com/compsec-snu/tiktag)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: ",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/2406.08719"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/compsec-snu/tiktag"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/2406.08719"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/compsec-snu/tiktag"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/compsec-snu/tiktag"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Protection Bypasses",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Protection Bypasses",
      "summary_en": "2024 Linux kernel Technique: Protection Bypasses resource \"TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution · code\"; URL type: code.",
      "summary_zh": "2024 年 Linux 内核Technique: Protection Bypasses资料：「TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution · code」；URL 类型：code。",
      "source_markdown": "[2024: \"TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution\" by Juhee Kim et al.](https://arxiv.org/pdf/2406.08719) [paper] [[code](https://github.com/compsec-snu/tiktag)]",
      "search_text": "tiktag: breaking arm's memory tagging extension with speculative execution · code tiktag: breaking arm's memory tagging extension with speculative execution juhee kim et al.   techniques protection bypasses technique: protection bypasses code code https://github.com/compsec-snu/tiktag techniques protection bypasses code  technique: protection bypasses 2024 linux kernel technique: protection bypasses resource \"tiktag: breaking arm's memory tagging extension with speculative execution · code\"; url type: code. 2024 年 linux 内核technique: protection bypasses资料：「tiktag: breaking arm's memory tagging extension with speculative execution · code」；url 类型：code。 # tiktag: breaking arm's memory tagging extension with speculative execution · code record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: tiktag: breaking arm's memory tagging extension with speculative execution resource_label: code resource_type: code resource_url: https://github.com/compsec-snu/tiktag parent_primary_url: https://arxiv.org/pdf/2406.08719 source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2024: \"tiktag: breaking arm's memory tagging extension with speculative execution\" by juhee kim et al.](https://arxiv.org/pdf/2406.08719) [paper] [[code](https://github.com/compsec-snu/tiktag)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "5b873cf0617c3a74",
      "item_id": "6e59c9601306fe4c",
      "slug": "2023-techniques-protection-bypasses-a-closer-look-at-freelist-hardening-primary-17c48fa8",
      "year": 2023,
      "title": "A Closer Look At Freelist Hardening",
      "item_title": "A Closer Look At Freelist Hardening",
      "authors": [
        "Matt Yurkewych"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://drive.google.com/file/d/1FnydWAv86tHMB0iuCHSLqXLWpgCZ02c4/view",
      "primary_url": "https://drive.google.com/file/d/1FnydWAv86tHMB0iuCHSLqXLWpgCZ02c4/view",
      "parent_primary_url": "https://drive.google.com/file/d/1FnydWAv86tHMB0iuCHSLqXLWpgCZ02c4/view",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2023-techniques-protection-bypasses-a-closer-look-at-freelist-hardening-primary-17c48fa8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Closer Look At Freelist Hardening record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: A Closer Look At Freelist Hardening resource_label: primary resource_type: article resource_url: https://drive.google.com/file/d/1FnydWAv86tHMB0iuCHSLqXLWpgCZ02c4/view parent_primary_url: https://drive.google.com/file/d/1FnydWAv86tHMB0iuCHSLqXLWpgCZ02c4/view source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"A Closer Look At Freelist Hardening\" by Matt Yurkewych](https://drive.google.com/file/d/1FnydWAv86tHMB0iuCHSLqXLWpgCZ02c4/view) [article] [[slides](https://drive.google.com/file/d/122upcJEto-N8XdjnFOxab_8J2PDALLO0/view)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android de",
      "link_types": [
        "article",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://drive.google.com/file/d/1FnydWAv86tHMB0iuCHSLqXLWpgCZ02c4/view"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://drive.google.com/file/d/122upcJEto-N8XdjnFOxab_8J2PDALLO0/view"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://drive.google.com/file/d/1FnydWAv86tHMB0iuCHSLqXLWpgCZ02c4/view"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://drive.google.com/file/d/122upcJEto-N8XdjnFOxab_8J2PDALLO0/view"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "freelist",
        "hardening",
        "defense"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article provides insights into freelist hardening techniques.",
      "summary_zh": "本文提供了关于freelist加固技术的见解。",
      "source_markdown": "[2023: \"A Closer Look At Freelist Hardening\" by Matt Yurkewych](https://drive.google.com/file/d/1FnydWAv86tHMB0iuCHSLqXLWpgCZ02c4/view) [article] [[slides](https://drive.google.com/file/d/122upcJEto-N8XdjnFOxab_8J2PDALLO0/view)]",
      "search_text": "a closer look at freelist hardening a closer look at freelist hardening matt yurkewych   techniques protection bypasses technique: protection bypasses primary article https://drive.google.com/file/d/1fnydwav86thmb0iuchslqxlwpgcz02c4/view freelist hardening defense  defensive research this article provides insights into freelist hardening techniques. 本文提供了关于freelist加固技术的见解。 # a closer look at freelist hardening record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: a closer look at freelist hardening resource_label: primary resource_type: article resource_url: https://drive.google.com/file/d/1fnydwav86thmb0iuchslqxlwpgcz02c4/view parent_primary_url: https://drive.google.com/file/d/1fnydwav86thmb0iuchslqxlwpgcz02c4/view source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"a closer look at freelist hardening\" by matt yurkewych](https://drive.google.com/file/d/1fnydwav86thmb0iuchslqxlwpgcz02c4/view) [article] [[slides](https://drive.google.com/file/d/122upcjeto-n8xdjnfoxab_8j2pdallo0/view)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android de no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5ad3edfd23fe6e80",
      "item_id": "6e59c9601306fe4c",
      "slug": "2023-techniques-protection-bypasses-a-closer-look-at-freelist-hardening-slides-0e068701",
      "year": 2023,
      "title": "A Closer Look At Freelist Hardening · slides",
      "item_title": "A Closer Look At Freelist Hardening",
      "authors": [
        "Matt Yurkewych"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://drive.google.com/file/d/122upcJEto-N8XdjnFOxab_8J2PDALLO0/view",
      "primary_url": "https://drive.google.com/file/d/122upcJEto-N8XdjnFOxab_8J2PDALLO0/view",
      "parent_primary_url": "https://drive.google.com/file/d/1FnydWAv86tHMB0iuCHSLqXLWpgCZ02c4/view",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2023-techniques-protection-bypasses-a-closer-look-at-freelist-hardening-slides-0e068701.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Closer Look At Freelist Hardening · slides record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: A Closer Look At Freelist Hardening resource_label: slides resource_type: slides resource_url: https://drive.google.com/file/d/122upcJEto-N8XdjnFOxab_8J2PDALLO0/view parent_primary_url: https://drive.google.com/file/d/1FnydWAv86tHMB0iuCHSLqXLWpgCZ02c4/view source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"A Closer Look At Freelist Hardening\" by Matt Yurkewych](https://drive.google.com/file/d/1FnydWAv86tHMB0iuCHSLqXLWpgCZ02c4/view) [article] [[slides](https://drive.google.com/file/d/122upcJEto-N8XdjnFOxab_8J2PDALLO0/view)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released And",
      "link_types": [
        "article",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://drive.google.com/file/d/1FnydWAv86tHMB0iuCHSLqXLWpgCZ02c4/view"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://drive.google.com/file/d/122upcJEto-N8XdjnFOxab_8J2PDALLO0/view"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://drive.google.com/file/d/1FnydWAv86tHMB0iuCHSLqXLWpgCZ02c4/view"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://drive.google.com/file/d/122upcJEto-N8XdjnFOxab_8J2PDALLO0/view"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Techniques",
        "Protection Bypasses",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "Technique: Protection Bypasses",
      "summary_en": "2023 Linux kernel Technique: Protection Bypasses resource \"A Closer Look At Freelist Hardening · slides\"; URL type: slides.",
      "summary_zh": "2023 年 Linux 内核Technique: Protection Bypasses资料：「A Closer Look At Freelist Hardening · slides」；URL 类型：slides。",
      "source_markdown": "[2023: \"A Closer Look At Freelist Hardening\" by Matt Yurkewych](https://drive.google.com/file/d/1FnydWAv86tHMB0iuCHSLqXLWpgCZ02c4/view) [article] [[slides](https://drive.google.com/file/d/122upcJEto-N8XdjnFOxab_8J2PDALLO0/view)]",
      "search_text": "a closer look at freelist hardening · slides a closer look at freelist hardening matt yurkewych   techniques protection bypasses technique: protection bypasses slides slides https://drive.google.com/file/d/122upcjeto-n8xdjnfoxab_8j2pdallo0/view techniques protection bypasses slides  technique: protection bypasses 2023 linux kernel technique: protection bypasses resource \"a closer look at freelist hardening · slides\"; url type: slides. 2023 年 linux 内核technique: protection bypasses资料：「a closer look at freelist hardening · slides」；url 类型：slides。 # a closer look at freelist hardening · slides record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: a closer look at freelist hardening resource_label: slides resource_type: slides resource_url: https://drive.google.com/file/d/122upcjeto-n8xdjnfoxab_8j2pdallo0/view parent_primary_url: https://drive.google.com/file/d/1fnydwav86thmb0iuchslqxlwpgcz02c4/view source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"a closer look at freelist hardening\" by matt yurkewych](https://drive.google.com/file/d/1fnydwav86thmb0iuchslqxlwpgcz02c4/view) [article] [[slides](https://drive.google.com/file/d/122upcjeto-n8xdjnfoxab_8j2pdallo0/view)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released and no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "49175a468e363238",
      "item_id": "1b5076d0ea5408fd",
      "slug": "2023-techniques-protection-bypasses-leaky-address-masking-exploiting-unmasked-spectre-gadgets-with-noncanonica",
      "year": 2023,
      "title": "Leaky Address Masking: Exploiting Unmasked Spectre Gadgets with Noncanonical Address Translation",
      "item_title": "Leaky Address Masking: Exploiting Unmasked Spectre Gadgets with Noncanonical Address Translation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://download.vusec.net/papers/slam_sp24.pdf",
      "primary_url": "https://download.vusec.net/papers/slam_sp24.pdf",
      "parent_primary_url": "https://download.vusec.net/papers/slam_sp24.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2023-techniques-protection-bypasses-leaky-address-masking-exploiting-unmasked-spectre-gadgets-with-noncanonica.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Leaky Address Masking: Exploiting Unmasked Spectre Gadgets with Noncanonical Address Translation record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Leaky Address Masking: Exploiting Unmasked Spectre Gadgets with Noncanonical Address Translation resource_label: primary resource_type: paper resource_url: https://download.vusec.net/papers/slam_sp24.pdf parent_primary_url: https://download.vusec.net/papers/slam_sp24.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"Leaky Address Masking: Exploiting Unmasked Spectre Gadgets with Noncanonical Address Translation\"](https://download.vusec.net/papers/slam_sp24.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released A",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://download.vusec.net/papers/slam_sp24.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://download.vusec.net/papers/slam_sp24.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Spectre",
        "exploitation",
        "address-translation"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper explores exploiting unmasked Spectre gadgets with noncanonical address translation.",
      "summary_zh": "本文探讨了如何利用非规范地址转换来利用未掩蔽的Spectre小工具。",
      "source_markdown": "[2023: \"Leaky Address Masking: Exploiting Unmasked Spectre Gadgets with Noncanonical Address Translation\"](https://download.vusec.net/papers/slam_sp24.pdf) [paper]",
      "search_text": "leaky address masking: exploiting unmasked spectre gadgets with noncanonical address translation leaky address masking: exploiting unmasked spectre gadgets with noncanonical address translation    techniques protection bypasses technique: protection bypasses primary paper https://download.vusec.net/papers/slam_sp24.pdf spectre exploitation address-translation  defensive research this paper explores exploiting unmasked spectre gadgets with noncanonical address translation. 本文探讨了如何利用非规范地址转换来利用未掩蔽的spectre小工具。 # leaky address masking: exploiting unmasked spectre gadgets with noncanonical address translation record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: leaky address masking: exploiting unmasked spectre gadgets with noncanonical address translation resource_label: primary resource_type: paper resource_url: https://download.vusec.net/papers/slam_sp24.pdf parent_primary_url: https://download.vusec.net/papers/slam_sp24.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"leaky address masking: exploiting unmasked spectre gadgets with noncanonical address translation\"](https://download.vusec.net/papers/slam_sp24.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released a no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e689032d0997f64b",
      "item_id": "e078425ba7b243ae",
      "slug": "2023-techniques-protection-bypasses-mte-as-implemented-part-3-the-kernel-primary-2b691e22",
      "year": 2023,
      "title": "MTE As Implemented, Part 3: The Kernel",
      "item_title": "MTE As Implemented, Part 3: The Kernel",
      "authors": [
        "Mark Brand"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2023/08/mte-as-implemented-part-3-kernel.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2023/08/mte-as-implemented-part-3-kernel.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2023/08/mte-as-implemented-part-3-kernel.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2023-techniques-protection-bypasses-mte-as-implemented-part-3-the-kernel-primary-2b691e22.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# MTE As Implemented, Part 3: The Kernel record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: MTE As Implemented, Part 3: The Kernel resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2023/08/mte-as-implemented-part-3-kernel.html parent_primary_url: https://googleprojectzero.blogspot.com/2023/08/mte-as-implemented-part-3-kernel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"MTE As Implemented, Part 3: The Kernel\" by Mark Brand](https://googleprojectzero.blogspot.com/2023/08/mte-as-implemented-part-3-kernel.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_imp",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2023/08/mte-as-implemented-part-3-kernel.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2023/08/mte-as-implemented-part-3-kernel.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory-tagging",
        "kernel",
        "implementation"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article discusses the implementation of Memory Tagging Extension in the kernel.",
      "summary_zh": "本文讨论了内核中内存标记扩展的实现。",
      "source_markdown": "[2023: \"MTE As Implemented, Part 3: The Kernel\" by Mark Brand](https://googleprojectzero.blogspot.com/2023/08/mte-as-implemented-part-3-kernel.html) [article]",
      "search_text": "mte as implemented, part 3: the kernel mte as implemented, part 3: the kernel mark brand   techniques protection bypasses technique: protection bypasses primary article https://googleprojectzero.blogspot.com/2023/08/mte-as-implemented-part-3-kernel.html memory-tagging kernel implementation  defensive research this article discusses the implementation of memory tagging extension in the kernel. 本文讨论了内核中内存标记扩展的实现。 # mte as implemented, part 3: the kernel record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: mte as implemented, part 3: the kernel resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2023/08/mte-as-implemented-part-3-kernel.html parent_primary_url: https://googleprojectzero.blogspot.com/2023/08/mte-as-implemented-part-3-kernel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"mte as implemented, part 3: the kernel\" by mark brand](https://googleprojectzero.blogspot.com/2023/08/mte-as-implemented-part-3-kernel.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_imp no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "90f5e931a1aa4c2d",
      "item_id": "7f943f6e3070dca9",
      "slug": "2023-techniques-protection-bypasses-breaking-hardware-assisted-kernel-control-flow-integrity-with-page-oriente",
      "year": 2023,
      "title": "Breaking Hardware-Assisted Kernel Control-Flow Integrity with Page-Oriented Programming",
      "item_title": "Breaking Hardware-Assisted Kernel Control-Flow Integrity with Page-Oriented Programming",
      "authors": [
        "Seunghun Han"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-Han-Lost-Control-Breaking-Hardware-Assisted-Kernel.pdf",
      "primary_url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-Han-Lost-Control-Breaking-Hardware-Assisted-Kernel.pdf",
      "parent_primary_url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-Han-Lost-Control-Breaking-Hardware-Assisted-Kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2023-techniques-protection-bypasses-breaking-hardware-assisted-kernel-control-flow-integrity-with-page-oriente.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Breaking Hardware-Assisted Kernel Control-Flow Integrity with Page-Oriented Programming record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Breaking Hardware-Assisted Kernel Control-Flow Integrity with Page-Oriented Programming resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/BH-US-23/Presentations/US-23-Han-Lost-Control-Breaking-Hardware-Assisted-Kernel.pdf parent_primary_url: https://i.blackhat.com/BH-US-23/Presentations/US-23-Han-Lost-Control-Breaking-Hardware-Assisted-Kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"Breaking Hardware-Assisted Kernel Control-Flow Integrity with Page-Oriented Programming\" by Seunghun Han](https://i.blackhat.com/BH-US-23/Presentations/US-23-Han-Lost-Contr",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-Han-Lost-Control-Breaking-Hardware-Assisted-Kernel.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-Han-Lost-Control-Breaking-Hardware-Assisted-Kernel.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "control-flow",
        "integrity",
        "bypass"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This presentation addresses breaking hardware-assisted kernel control-flow integrity using page-oriented programming.",
      "summary_zh": "本演示讨论了如何使用页面导向编程破坏硬件辅助的内核控制流完整性。",
      "source_markdown": "[2023: \"Breaking Hardware-Assisted Kernel Control-Flow Integrity with Page-Oriented Programming\" by Seunghun Han](https://i.blackhat.com/BH-US-23/Presentations/US-23-Han-Lost-Control-Breaking-Hardware-Assisted-Kernel.pdf) [slides]",
      "search_text": "breaking hardware-assisted kernel control-flow integrity with page-oriented programming breaking hardware-assisted kernel control-flow integrity with page-oriented programming seunghun han   techniques protection bypasses technique: protection bypasses primary slides https://i.blackhat.com/bh-us-23/presentations/us-23-han-lost-control-breaking-hardware-assisted-kernel.pdf control-flow integrity bypass  defensive research this presentation addresses breaking hardware-assisted kernel control-flow integrity using page-oriented programming. 本演示讨论了如何使用页面导向编程破坏硬件辅助的内核控制流完整性。 # breaking hardware-assisted kernel control-flow integrity with page-oriented programming record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: breaking hardware-assisted kernel control-flow integrity with page-oriented programming resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/bh-us-23/presentations/us-23-han-lost-control-breaking-hardware-assisted-kernel.pdf parent_primary_url: https://i.blackhat.com/bh-us-23/presentations/us-23-han-lost-control-breaking-hardware-assisted-kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"breaking hardware-assisted kernel control-flow integrity with page-oriented programming\" by seunghun han](https://i.blackhat.com/bh-us-23/presentations/us-23-han-lost-contr no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f953b95bed52b56a",
      "item_id": "ce182f978159951f",
      "slug": "2023-techniques-protection-bypasses-epf-evil-packet-filter-primary-6503078a",
      "year": 2023,
      "title": "EPF: Evil Packet Filter",
      "item_title": "EPF: Evil Packet Filter",
      "authors": [
        "Di Jin",
        "Vaggelis Atlidakis",
        "and Vasileios P. Kemerlis"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://cs.brown.edu/~vpk/papers/epf.atc23.pdf",
      "primary_url": "https://cs.brown.edu/~vpk/papers/epf.atc23.pdf",
      "parent_primary_url": "https://cs.brown.edu/~vpk/papers/epf.atc23.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2023-techniques-protection-bypasses-epf-evil-packet-filter-primary-6503078a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# EPF: Evil Packet Filter record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: EPF: Evil Packet Filter resource_label: primary resource_type: paper resource_url: https://cs.brown.edu/~vpk/papers/epf.atc23.pdf parent_primary_url: https://cs.brown.edu/~vpk/papers/epf.atc23.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"EPF: Evil Packet Filter\" by Di Jin, Vaggelis Atlidakis, and Vasileios P. Kemerlis](https://cs.brown.edu/~vpk/papers/epf.atc23.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://cs.brown.edu/~vpk/papers/epf.atc23.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://cs.brown.edu/~vpk/papers/epf.atc23.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "network",
        "security",
        "filter"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper introduces the concept of an Evil Packet Filter for network security.",
      "summary_zh": "本文介绍了网络安全中的恶意数据包过滤器的概念。",
      "source_markdown": "[2023: \"EPF: Evil Packet Filter\" by Di Jin, Vaggelis Atlidakis, and Vasileios P. Kemerlis](https://cs.brown.edu/~vpk/papers/epf.atc23.pdf) [paper]",
      "search_text": "epf: evil packet filter epf: evil packet filter di jin vaggelis atlidakis and vasileios p. kemerlis   techniques protection bypasses technique: protection bypasses primary paper https://cs.brown.edu/~vpk/papers/epf.atc23.pdf network security filter  defensive research this paper introduces the concept of an evil packet filter for network security. 本文介绍了网络安全中的恶意数据包过滤器的概念。 # epf: evil packet filter record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: epf: evil packet filter resource_label: primary resource_type: paper resource_url: https://cs.brown.edu/~vpk/papers/epf.atc23.pdf parent_primary_url: https://cs.brown.edu/~vpk/papers/epf.atc23.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"epf: evil packet filter\" by di jin, vaggelis atlidakis, and vasileios p. kemerlis](https://cs.brown.edu/~vpk/papers/epf.atc23.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "14f7200b6e5b9839",
      "item_id": "d7e56e0f63fba8f6",
      "slug": "2023-techniques-protection-bypasses-bypassing-selinux-with-init-module-primary-5f7fe4fd",
      "year": 2023,
      "title": "Bypassing SELinux with init_module",
      "item_title": "Bypassing SELinux with init_module",
      "authors": [
        "Sean Pesce"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://seanpesce.blogspot.com/2023/05/bypassing-selinux-with-initmodule.html",
      "primary_url": "https://seanpesce.blogspot.com/2023/05/bypassing-selinux-with-initmodule.html",
      "parent_primary_url": "https://seanpesce.blogspot.com/2023/05/bypassing-selinux-with-initmodule.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2023-techniques-protection-bypasses-bypassing-selinux-with-init-module-primary-5f7fe4fd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Bypassing SELinux with init_module record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Bypassing SELinux with init_module resource_label: primary resource_type: article resource_url: https://seanpesce.blogspot.com/2023/05/bypassing-selinux-with-initmodule.html parent_primary_url: https://seanpesce.blogspot.com/2023/05/bypassing-selinux-with-initmodule.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"Bypassing SELinux with init_module\" by Sean Pesce](https://seanpesce.blogspot.com/2023/05/bypassing-selinux-with-initmodule.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS device",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://seanpesce.blogspot.com/2023/05/bypassing-selinux-with-initmodule.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://seanpesce.blogspot.com/2023/05/bypassing-selinux-with-initmodule.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "SELinux",
        "bypass",
        "security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article describes a method for bypassing SELinux using init_module.",
      "summary_zh": "本文描述了一种使用init_module绕过SELinux的方法。",
      "source_markdown": "[2023: \"Bypassing SELinux with init_module\" by Sean Pesce](https://seanpesce.blogspot.com/2023/05/bypassing-selinux-with-initmodule.html) [article]",
      "search_text": "bypassing selinux with init_module bypassing selinux with init_module sean pesce   techniques protection bypasses technique: protection bypasses primary article https://seanpesce.blogspot.com/2023/05/bypassing-selinux-with-initmodule.html selinux bypass security  defensive research this article describes a method for bypassing selinux using init_module. 本文描述了一种使用init_module绕过selinux的方法。 # bypassing selinux with init_module record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: bypassing selinux with init_module resource_label: primary resource_type: article resource_url: https://seanpesce.blogspot.com/2023/05/bypassing-selinux-with-initmodule.html parent_primary_url: https://seanpesce.blogspot.com/2023/05/bypassing-selinux-with-initmodule.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"bypassing selinux with init_module\" by sean pesce](https://seanpesce.blogspot.com/2023/05/bypassing-selinux-with-initmodule.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios device no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ca6ca67cee8b584f",
      "item_id": "83ac67066aef47c1",
      "slug": "2023-techniques-protection-bypasses-finding-gadgets-for-cpu-side-channels-with-static-analysis-tools-primary-f",
      "year": 2023,
      "title": "Finding Gadgets for CPU Side-Channels with Static Analysis Tools",
      "item_title": "Finding Gadgets for CPU Side-Channels with Static Analysis Tools",
      "authors": [
        "Jordy Zomer",
        "Alexandra Sandulescu"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/google/security-research/tree/master/pocs/cpus/spectre-gadgets",
      "primary_url": "https://github.com/google/security-research/tree/master/pocs/cpus/spectre-gadgets",
      "parent_primary_url": "https://github.com/google/security-research/tree/master/pocs/cpus/spectre-gadgets",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2023-techniques-protection-bypasses-finding-gadgets-for-cpu-side-channels-with-static-analysis-tools-primary-f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Finding Gadgets for CPU Side-Channels with Static Analysis Tools record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Finding Gadgets for CPU Side-Channels with Static Analysis Tools resource_label: primary resource_type: article resource_url: https://github.com/google/security-research/tree/master/pocs/cpus/spectre-gadgets parent_primary_url: https://github.com/google/security-research/tree/master/pocs/cpus/spectre-gadgets source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"Finding Gadgets for CPU Side-Channels with Static Analysis Tools\" by Jordy Zomer and Alexandra Sandulescu](https://github.com/google/security-research/tree/master/pocs/cpus/spectre-gadgets) [article] cves: none android_impact_status: no android_impact_reason: Not eno",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/google/security-research/tree/master/pocs/cpus/spectre-gadgets"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/google/security-research/tree/master/pocs/cpus/spectre-gadgets"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/security-research/tree/master/pocs/cpus/spectre-gadgets"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "static-analysis",
        "side-channel",
        "gadgets"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article discusses finding gadgets for CPU side-channels using static analysis tools.",
      "summary_zh": "本文讨论了如何使用静态分析工具查找CPU侧信道的小工具。",
      "source_markdown": "[2023: \"Finding Gadgets for CPU Side-Channels with Static Analysis Tools\" by Jordy Zomer and Alexandra Sandulescu](https://github.com/google/security-research/tree/master/pocs/cpus/spectre-gadgets) [article]",
      "search_text": "finding gadgets for cpu side-channels with static analysis tools finding gadgets for cpu side-channels with static analysis tools jordy zomer alexandra sandulescu   techniques protection bypasses technique: protection bypasses primary article https://github.com/google/security-research/tree/master/pocs/cpus/spectre-gadgets static-analysis side-channel gadgets  defensive research this article discusses finding gadgets for cpu side-channels using static analysis tools. 本文讨论了如何使用静态分析工具查找cpu侧信道的小工具。 # finding gadgets for cpu side-channels with static analysis tools record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: finding gadgets for cpu side-channels with static analysis tools resource_label: primary resource_type: article resource_url: https://github.com/google/security-research/tree/master/pocs/cpus/spectre-gadgets parent_primary_url: https://github.com/google/security-research/tree/master/pocs/cpus/spectre-gadgets source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"finding gadgets for cpu side-channels with static analysis tools\" by jordy zomer and alexandra sandulescu](https://github.com/google/security-research/tree/master/pocs/cpus/spectre-gadgets) [article] cves: none android_impact_status: no android_impact_reason: not eno no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ef0ad815702baaa1",
      "item_id": "b78680fbf1821674",
      "slug": "2023-techniques-protection-bypasses-linux-kernel-spectre-v1-gadgets-primary-bd6b6994",
      "year": 2023,
      "title": "Linux Kernel: Spectre-v1 gadgets",
      "item_title": "Linux Kernel: Spectre-v1 gadgets",
      "authors": [
        "Jordy Zomer",
        "Alexandra Sandulescu"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/google/security-research/security/advisories/GHSA-m7j5-797w-vmrh",
      "primary_url": "https://github.com/google/security-research/security/advisories/GHSA-m7j5-797w-vmrh",
      "parent_primary_url": "https://github.com/google/security-research/security/advisories/GHSA-m7j5-797w-vmrh",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2023-techniques-protection-bypasses-linux-kernel-spectre-v1-gadgets-primary-bd6b6994.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel: Spectre-v1 gadgets record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Linux Kernel: Spectre-v1 gadgets resource_label: primary resource_type: article resource_url: https://github.com/google/security-research/security/advisories/GHSA-m7j5-797w-vmrh parent_primary_url: https://github.com/google/security-research/security/advisories/GHSA-m7j5-797w-vmrh source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"Linux Kernel: Spectre-v1 gadgets\" by Jordy Zomer and Alexandra Sandulescu](https://github.com/google/security-research/security/advisories/GHSA-m7j5-797w-vmrh) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no io",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-m7j5-797w-vmrh"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-m7j5-797w-vmrh"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/security-research/security/advisories/GHSA-m7j5-797w-vmrh"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Spectre",
        "gadgets",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article provides insights into Spectre-v1 gadgets within the Linux kernel.",
      "summary_zh": "本文提供了关于Linux内核中Spectre-v1小工具的见解。",
      "source_markdown": "[2023: \"Linux Kernel: Spectre-v1 gadgets\" by Jordy Zomer and Alexandra Sandulescu](https://github.com/google/security-research/security/advisories/GHSA-m7j5-797w-vmrh) [article]",
      "search_text": "linux kernel: spectre-v1 gadgets linux kernel: spectre-v1 gadgets jordy zomer alexandra sandulescu   techniques protection bypasses technique: protection bypasses primary article https://github.com/google/security-research/security/advisories/ghsa-m7j5-797w-vmrh spectre gadgets kernel  defensive research this article provides insights into spectre-v1 gadgets within the linux kernel. 本文提供了关于linux内核中spectre-v1小工具的见解。 # linux kernel: spectre-v1 gadgets record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: linux kernel: spectre-v1 gadgets resource_label: primary resource_type: article resource_url: https://github.com/google/security-research/security/advisories/ghsa-m7j5-797w-vmrh parent_primary_url: https://github.com/google/security-research/security/advisories/ghsa-m7j5-797w-vmrh source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"linux kernel: spectre-v1 gadgets\" by jordy zomer and alexandra sandulescu](https://github.com/google/security-research/security/advisories/ghsa-m7j5-797w-vmrh) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no io no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "8f9d0abf23a19e84",
      "item_id": "0f463611e15df521",
      "slug": "2023-techniques-protection-bypasses-linux-kernel-spectre-v2-smt-mitigations-problem-primary-467c9b2b",
      "year": 2023,
      "title": "Linux Kernel: Spectre v2 SMT mitigations problem",
      "item_title": "Linux Kernel: Spectre v2 SMT mitigations problem",
      "authors": [
        "Eduardo Vela"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/google/security-research/security/advisories/GHSA-mj4w-6495-6crx",
      "primary_url": "https://github.com/google/security-research/security/advisories/GHSA-mj4w-6495-6crx",
      "parent_primary_url": "https://github.com/google/security-research/security/advisories/GHSA-mj4w-6495-6crx",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2023-techniques-protection-bypasses-linux-kernel-spectre-v2-smt-mitigations-problem-primary-467c9b2b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel: Spectre v2 SMT mitigations problem record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Linux Kernel: Spectre v2 SMT mitigations problem resource_label: primary resource_type: article resource_url: https://github.com/google/security-research/security/advisories/GHSA-mj4w-6495-6crx parent_primary_url: https://github.com/google/security-research/security/advisories/GHSA-mj4w-6495-6crx source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"Linux Kernel: Spectre v2 SMT mitigations problem\" by Eduardo Vela](https://github.com/google/security-research/security/advisories/GHSA-mj4w-6495-6crx) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-mj4w-6495-6crx"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-mj4w-6495-6crx"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/security-research/security/advisories/GHSA-mj4w-6495-6crx"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Spectre",
        "mitigation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article addresses issues with Spectre v2 SMT mitigations in the Linux kernel.",
      "summary_zh": "本文讨论了Linux内核中Spectre v2 SMT缓解措施的问题。",
      "source_markdown": "[2023: \"Linux Kernel: Spectre v2 SMT mitigations problem\" by Eduardo Vela](https://github.com/google/security-research/security/advisories/GHSA-mj4w-6495-6crx) [article]",
      "search_text": "linux kernel: spectre v2 smt mitigations problem linux kernel: spectre v2 smt mitigations problem eduardo vela   techniques protection bypasses technique: protection bypasses primary article https://github.com/google/security-research/security/advisories/ghsa-mj4w-6495-6crx spectre mitigation kernel  defensive research this article addresses issues with spectre v2 smt mitigations in the linux kernel. 本文讨论了linux内核中spectre v2 smt缓解措施的问题。 # linux kernel: spectre v2 smt mitigations problem record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: linux kernel: spectre v2 smt mitigations problem resource_label: primary resource_type: article resource_url: https://github.com/google/security-research/security/advisories/ghsa-mj4w-6495-6crx parent_primary_url: https://github.com/google/security-research/security/advisories/ghsa-mj4w-6495-6crx source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2023: \"linux kernel: spectre v2 smt mitigations problem\" by eduardo vela](https://github.com/google/security-research/security/advisories/ghsa-mj4w-6495-6crx) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices.  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "5b19ed88c225c318",
      "item_id": "2e73199db8ec64c7",
      "slug": "2022-techniques-protection-bypasses-a-dirty-little-history-bypassing-spectre-hardware-defenses-to-leak-kernel-",
      "year": 2022,
      "title": "A Dirty Little History: Bypassing Spectre Hardware Defenses to Leak Kernel Data",
      "item_title": "A Dirty Little History: Bypassing Spectre Hardware Defenses to Leak Kernel Data",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/USA-22/Thursday/US-22-Frigo-A-Dirty-Little-History.pdf",
      "primary_url": "https://i.blackhat.com/USA-22/Thursday/US-22-Frigo-A-Dirty-Little-History.pdf",
      "parent_primary_url": "https://i.blackhat.com/USA-22/Thursday/US-22-Frigo-A-Dirty-Little-History.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2022-techniques-protection-bypasses-a-dirty-little-history-bypassing-spectre-hardware-defenses-to-leak-kernel-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Dirty Little History: Bypassing Spectre Hardware Defenses to Leak Kernel Data record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: A Dirty Little History: Bypassing Spectre Hardware Defenses to Leak Kernel Data resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/USA-22/Thursday/US-22-Frigo-A-Dirty-Little-History.pdf parent_primary_url: https://i.blackhat.com/USA-22/Thursday/US-22-Frigo-A-Dirty-Little-History.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2022: \"A Dirty Little History: Bypassing Spectre Hardware Defenses to Leak Kernel Data\"](https://i.blackhat.com/USA-22/Thursday/US-22-Frigo-A-Dirty-Little-History.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evide",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/USA-22/Thursday/US-22-Frigo-A-Dirty-Little-History.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/USA-22/Thursday/US-22-Frigo-A-Dirty-Little-History.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Spectre",
        "bypass",
        "defense"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This presentation reviews methods for bypassing Spectre hardware defenses to leak kernel data.",
      "summary_zh": "本演示回顾了绕过Spectre硬件防御以泄露内核数据的方法。",
      "source_markdown": "[2022: \"A Dirty Little History: Bypassing Spectre Hardware Defenses to Leak Kernel Data\"](https://i.blackhat.com/USA-22/Thursday/US-22-Frigo-A-Dirty-Little-History.pdf) [slides]",
      "search_text": "a dirty little history: bypassing spectre hardware defenses to leak kernel data a dirty little history: bypassing spectre hardware defenses to leak kernel data    techniques protection bypasses technique: protection bypasses primary slides https://i.blackhat.com/usa-22/thursday/us-22-frigo-a-dirty-little-history.pdf spectre bypass defense  defensive research this presentation reviews methods for bypassing spectre hardware defenses to leak kernel data. 本演示回顾了绕过spectre硬件防御以泄露内核数据的方法。 # a dirty little history: bypassing spectre hardware defenses to leak kernel data record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: a dirty little history: bypassing spectre hardware defenses to leak kernel data resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/usa-22/thursday/us-22-frigo-a-dirty-little-history.pdf parent_primary_url: https://i.blackhat.com/usa-22/thursday/us-22-frigo-a-dirty-little-history.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2022: \"a dirty little history: bypassing spectre hardware defenses to leak kernel data\"](https://i.blackhat.com/usa-22/thursday/us-22-frigo-a-dirty-little-history.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evide no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "710270c28c725559",
      "item_id": "e4e5ffc573e6d7b0",
      "slug": "2022-techniques-protection-bypasses-tetragone-a-lesson-in-security-fundamentals-primary-919814bf",
      "year": 2022,
      "title": "Tetragone: A Lesson in Security Fundamentals",
      "item_title": "Tetragone: A Lesson in Security Fundamentals",
      "authors": [
        "Pawel Wieczorkiewicz",
        "Brad Spengler"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://grsecurity.net/tetragone_a_lesson_in_security_fundamentals",
      "primary_url": "https://grsecurity.net/tetragone_a_lesson_in_security_fundamentals",
      "parent_primary_url": "https://grsecurity.net/tetragone_a_lesson_in_security_fundamentals",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2022-techniques-protection-bypasses-tetragone-a-lesson-in-security-fundamentals-primary-919814bf.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Tetragone: A Lesson in Security Fundamentals record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Tetragone: A Lesson in Security Fundamentals resource_label: primary resource_type: article resource_url: https://grsecurity.net/tetragone_a_lesson_in_security_fundamentals parent_primary_url: https://grsecurity.net/tetragone_a_lesson_in_security_fundamentals source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2022: \"Tetragone: A Lesson in Security Fundamentals\" by Pawel Wieczorkiewicz and Brad Spengler](https://grsecurity.net/tetragone_a_lesson_in_security_fundamentals) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reas",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://grsecurity.net/tetragone_a_lesson_in_security_fundamentals"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://grsecurity.net/tetragone_a_lesson_in_security_fundamentals"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security",
        "fundamentals",
        "lessons"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article discusses fundamental security lessons from Tetragone.",
      "summary_zh": "本文讨论了Tetragone的基本安全教训。",
      "source_markdown": "[2022: \"Tetragone: A Lesson in Security Fundamentals\" by Pawel Wieczorkiewicz and Brad Spengler](https://grsecurity.net/tetragone_a_lesson_in_security_fundamentals) [article]",
      "search_text": "tetragone: a lesson in security fundamentals tetragone: a lesson in security fundamentals pawel wieczorkiewicz brad spengler   techniques protection bypasses technique: protection bypasses primary article https://grsecurity.net/tetragone_a_lesson_in_security_fundamentals security fundamentals lessons  defensive research this article discusses fundamental security lessons from tetragone. 本文讨论了tetragone的基本安全教训。 # tetragone: a lesson in security fundamentals record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: tetragone: a lesson in security fundamentals resource_label: primary resource_type: article resource_url: https://grsecurity.net/tetragone_a_lesson_in_security_fundamentals parent_primary_url: https://grsecurity.net/tetragone_a_lesson_in_security_fundamentals source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2022: \"tetragone: a lesson in security fundamentals\" by pawel wieczorkiewicz and brad spengler](https://grsecurity.net/tetragone_a_lesson_in_security_fundamentals) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reas no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c97029f11cb8ac25",
      "item_id": "1d965498e290f90d",
      "slug": "2021-techniques-protection-bypasses-characterizing-exploiting-and-detecting-dma-code-injection-vulnerabilities",
      "year": 2021,
      "title": "Characterizing, Exploiting, and Detecting DMA Code Injection Vulnerabilities in the Presence of an IOMMU",
      "item_title": "Characterizing, Exploiting, and Detecting DMA Code Injection Vulnerabilities in the Presence of an IOMMU",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.cs.tau.ac.il/~mad/publications/eurosys2021-dma.pdf",
      "primary_url": "https://www.cs.tau.ac.il/~mad/publications/eurosys2021-dma.pdf",
      "parent_primary_url": "https://www.cs.tau.ac.il/~mad/publications/eurosys2021-dma.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2021-techniques-protection-bypasses-characterizing-exploiting-and-detecting-dma-code-injection-vulnerabilities.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Characterizing, Exploiting, and Detecting DMA Code Injection Vulnerabilities in the Presence of an IOMMU record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Characterizing, Exploiting, and Detecting DMA Code Injection Vulnerabilities in the Presence of an IOMMU resource_label: primary resource_type: paper resource_url: https://www.cs.tau.ac.il/~mad/publications/eurosys2021-dma.pdf parent_primary_url: https://www.cs.tau.ac.il/~mad/publications/eurosys2021-dma.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2021: \"Characterizing, Exploiting, and Detecting DMA Code Injection Vulnerabilities in the Presence of an IOMMU\"](https://www.cs.tau.ac.il/~mad/publications/eurosys2021-dma.pdf) [paper] cves: none android_impact_status: no android_imp",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.cs.tau.ac.il/~mad/publications/eurosys2021-dma.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.cs.tau.ac.il/~mad/publications/eurosys2021-dma.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "DMA",
        "vulnerabilities",
        "IOMMU"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper characterizes and detects DMA code injection vulnerabilities in the presence of an IOMMU.",
      "summary_zh": "本文描述了在IOMMU存在的情况下对DMA代码注入漏洞的特征和检测。",
      "source_markdown": "[2021: \"Characterizing, Exploiting, and Detecting DMA Code Injection Vulnerabilities in the Presence of an IOMMU\"](https://www.cs.tau.ac.il/~mad/publications/eurosys2021-dma.pdf) [paper]",
      "search_text": "characterizing, exploiting, and detecting dma code injection vulnerabilities in the presence of an iommu characterizing, exploiting, and detecting dma code injection vulnerabilities in the presence of an iommu    techniques protection bypasses technique: protection bypasses primary paper https://www.cs.tau.ac.il/~mad/publications/eurosys2021-dma.pdf dma vulnerabilities iommu  defensive research this paper characterizes and detects dma code injection vulnerabilities in the presence of an iommu. 本文描述了在iommu存在的情况下对dma代码注入漏洞的特征和检测。 # characterizing, exploiting, and detecting dma code injection vulnerabilities in the presence of an iommu record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: characterizing, exploiting, and detecting dma code injection vulnerabilities in the presence of an iommu resource_label: primary resource_type: paper resource_url: https://www.cs.tau.ac.il/~mad/publications/eurosys2021-dma.pdf parent_primary_url: https://www.cs.tau.ac.il/~mad/publications/eurosys2021-dma.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2021: \"characterizing, exploiting, and detecting dma code injection vulnerabilities in the presence of an iommu\"](https://www.cs.tau.ac.il/~mad/publications/eurosys2021-dma.pdf) [paper] cves: none android_impact_status: no android_imp no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "05ad7a846a4c6626",
      "item_id": "cf7750f6e8eb89e3",
      "slug": "2021-techniques-protection-bypasses-a-general-approach-to-bypassing-many-kernel-protections-and-its-mitigation",
      "year": 2021,
      "title": "A General Approach to Bypassing Many Kernel Protections and its Mitigation",
      "item_title": "A General Approach to Bypassing Many Kernel Protections and its Mitigation",
      "authors": [
        "Yueqi Chen"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/asia-21/Friday-Handouts/as-21-Chen-A-General-Approach-To-Bypassing-Many-Kernel-Protections-And-Its-Mitigation.pdf",
      "primary_url": "https://i.blackhat.com/asia-21/Friday-Handouts/as-21-Chen-A-General-Approach-To-Bypassing-Many-Kernel-Protections-And-Its-Mitigation.pdf",
      "parent_primary_url": "https://i.blackhat.com/asia-21/Friday-Handouts/as-21-Chen-A-General-Approach-To-Bypassing-Many-Kernel-Protections-And-Its-Mitigation.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2021-techniques-protection-bypasses-a-general-approach-to-bypassing-many-kernel-protections-and-its-mitigation.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A General Approach to Bypassing Many Kernel Protections and its Mitigation record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: A General Approach to Bypassing Many Kernel Protections and its Mitigation resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/asia-21/Friday-Handouts/as-21-Chen-A-General-Approach-To-Bypassing-Many-Kernel-Protections-And-Its-Mitigation.pdf parent_primary_url: https://i.blackhat.com/asia-21/Friday-Handouts/as-21-Chen-A-General-Approach-To-Bypassing-Many-Kernel-Protections-And-Its-Mitigation.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2021: \"A General Approach to Bypassing Many Kernel Protections and its Mitigation\" by Yueqi Chen](https://i.blackhat.com/asia-21/Friday-Handouts/",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/asia-21/Friday-Handouts/as-21-Chen-A-General-Approach-To-Bypassing-Many-Kernel-Protections-And-Its-Mitigation.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=EIwEF3tCtg4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/asia-21/Friday-Handouts/as-21-Chen-A-General-Approach-To-Bypassing-Many-Kernel-Protections-And-Its-Mitigation.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=EIwEF3tCtg4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bypass",
        "kernel",
        "mitigation"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This presentation discusses methods to bypass various kernel protections and suggests mitigations.",
      "summary_zh": "本演示讨论了绕过各种内核保护的方法并提出了缓解措施。",
      "source_markdown": "[2021: \"A General Approach to Bypassing Many Kernel Protections and its Mitigation\" by Yueqi Chen](https://i.blackhat.com/asia-21/Friday-Handouts/as-21-Chen-A-General-Approach-To-Bypassing-Many-Kernel-Protections-And-Its-Mitigation.pdf) [slides] [[video](https://www.youtube.com/watch?v=EIwEF3tCtg4)]",
      "search_text": "a general approach to bypassing many kernel protections and its mitigation a general approach to bypassing many kernel protections and its mitigation yueqi chen   techniques protection bypasses technique: protection bypasses primary slides https://i.blackhat.com/asia-21/friday-handouts/as-21-chen-a-general-approach-to-bypassing-many-kernel-protections-and-its-mitigation.pdf bypass kernel mitigation  defensive research this presentation discusses methods to bypass various kernel protections and suggests mitigations. 本演示讨论了绕过各种内核保护的方法并提出了缓解措施。 # a general approach to bypassing many kernel protections and its mitigation record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: a general approach to bypassing many kernel protections and its mitigation resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/asia-21/friday-handouts/as-21-chen-a-general-approach-to-bypassing-many-kernel-protections-and-its-mitigation.pdf parent_primary_url: https://i.blackhat.com/asia-21/friday-handouts/as-21-chen-a-general-approach-to-bypassing-many-kernel-protections-and-its-mitigation.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2021: \"a general approach to bypassing many kernel protections and its mitigation\" by yueqi chen](https://i.blackhat.com/asia-21/friday-handouts/ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a502a34490f9dab8",
      "item_id": "cf7750f6e8eb89e3",
      "slug": "2021-techniques-protection-bypasses-a-general-approach-to-bypassing-many-kernel-protections-and-its-mitigation-2",
      "year": 2021,
      "title": "A General Approach to Bypassing Many Kernel Protections and its Mitigation · video",
      "item_title": "A General Approach to Bypassing Many Kernel Protections and its Mitigation",
      "authors": [
        "Yueqi Chen"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=EIwEF3tCtg4",
      "primary_url": "https://www.youtube.com/watch?v=EIwEF3tCtg4",
      "parent_primary_url": "https://i.blackhat.com/asia-21/Friday-Handouts/as-21-Chen-A-General-Approach-To-Bypassing-Many-Kernel-Protections-And-Its-Mitigation.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2021-techniques-protection-bypasses-a-general-approach-to-bypassing-many-kernel-protections-and-its-mitigation-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A General Approach to Bypassing Many Kernel Protections and its Mitigation · video record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: A General Approach to Bypassing Many Kernel Protections and its Mitigation resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=EIwEF3tCtg4 parent_primary_url: https://i.blackhat.com/asia-21/Friday-Handouts/as-21-Chen-A-General-Approach-To-Bypassing-Many-Kernel-Protections-And-Its-Mitigation.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2021: \"A General Approach to Bypassing Many Kernel Protections and its Mitigation\" by Yueqi Chen](https://i.blackhat.com/asia-21/Friday-Handouts/as-21-Chen-A-General-Approach-To-Bypassing-Many-Kernel-Protections-And-Its-Mitigation.pd",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/asia-21/Friday-Handouts/as-21-Chen-A-General-Approach-To-Bypassing-Many-Kernel-Protections-And-Its-Mitigation.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=EIwEF3tCtg4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/asia-21/Friday-Handouts/as-21-Chen-A-General-Approach-To-Bypassing-Many-Kernel-Protections-And-Its-Mitigation.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=EIwEF3tCtg4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bypass",
        "kernel",
        "mitigation"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "A video presentation on bypassing kernel protections and potential mitigations.",
      "summary_zh": "关于绕过内核保护和潜在缓解措施的视频演示。",
      "source_markdown": "[2021: \"A General Approach to Bypassing Many Kernel Protections and its Mitigation\" by Yueqi Chen](https://i.blackhat.com/asia-21/Friday-Handouts/as-21-Chen-A-General-Approach-To-Bypassing-Many-Kernel-Protections-And-Its-Mitigation.pdf) [slides] [[video](https://www.youtube.com/watch?v=EIwEF3tCtg4)]",
      "search_text": "a general approach to bypassing many kernel protections and its mitigation · video a general approach to bypassing many kernel protections and its mitigation yueqi chen   techniques protection bypasses technique: protection bypasses video video https://www.youtube.com/watch?v=eiwef3tctg4 bypass kernel mitigation  defensive research a video presentation on bypassing kernel protections and potential mitigations. 关于绕过内核保护和潜在缓解措施的视频演示。 # a general approach to bypassing many kernel protections and its mitigation · video record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: a general approach to bypassing many kernel protections and its mitigation resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=eiwef3tctg4 parent_primary_url: https://i.blackhat.com/asia-21/friday-handouts/as-21-chen-a-general-approach-to-bypassing-many-kernel-protections-and-its-mitigation.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2021: \"a general approach to bypassing many kernel protections and its mitigation\" by yueqi chen](https://i.blackhat.com/asia-21/friday-handouts/as-21-chen-a-general-approach-to-bypassing-many-kernel-protections-and-its-mitigation.pd no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "730a87c6188f69a7",
      "item_id": "863f56778c673a80",
      "slug": "2021-techniques-protection-bypasses-attacking-samsung-rkp-primary-d4afd2aa",
      "year": 2021,
      "title": "Attacking Samsung RKP",
      "item_title": "Attacking Samsung RKP",
      "authors": [
        "Alexandre Adamski"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.impalabs.com/2111_attacking-samsung-rkp.html",
      "primary_url": "https://blog.impalabs.com/2111_attacking-samsung-rkp.html",
      "parent_primary_url": "https://blog.impalabs.com/2111_attacking-samsung-rkp.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2021-techniques-protection-bypasses-attacking-samsung-rkp-primary-d4afd2aa.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Attacking Samsung RKP record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Attacking Samsung RKP resource_label: primary resource_type: article resource_url: https://blog.impalabs.com/2111_attacking-samsung-rkp.html parent_primary_url: https://blog.impalabs.com/2111_attacking-samsung-rkp.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2021: \"Attacking Samsung RKP\" by Alexandre Adamski](https://blog.impalabs.com/2111_attacking-samsung-rkp.html) [article] cves: none android_impact_status: unknown android_impact_reason: mentions an Android OEM/device family; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.impalabs.com/2111_attacking-samsung-rkp.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.impalabs.com/2111_attacking-samsung-rkp.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions an Android OEM/device family; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "attack",
        "Samsung",
        "RKP"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "An article detailing attacks on Samsung's Real-Time Kernel Protection (RKP).",
      "summary_zh": "一篇详细介绍对三星实时内核保护（RKP）攻击的文章。",
      "source_markdown": "[2021: \"Attacking Samsung RKP\" by Alexandre Adamski](https://blog.impalabs.com/2111_attacking-samsung-rkp.html) [article]",
      "search_text": "attacking samsung rkp attacking samsung rkp alexandre adamski   techniques protection bypasses technique: protection bypasses primary article https://blog.impalabs.com/2111_attacking-samsung-rkp.html attack samsung rkp  defensive research an article detailing attacks on samsung's real-time kernel protection (rkp). 一篇详细介绍对三星实时内核保护（rkp）攻击的文章。 # attacking samsung rkp record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: attacking samsung rkp resource_label: primary resource_type: article resource_url: https://blog.impalabs.com/2111_attacking-samsung-rkp.html parent_primary_url: https://blog.impalabs.com/2111_attacking-samsung-rkp.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2021: \"attacking samsung rkp\" by alexandre adamski](https://blog.impalabs.com/2111_attacking-samsung-rkp.html) [article] cves: none android_impact_status: unknown android_impact_reason: mentions an android oem/device family; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather  unknown mentions an android oem/device family; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "3f808a0b0559536f",
      "item_id": "6c4ad32aef594205",
      "slug": "2020-techniques-protection-bypasses-things-not-to-do-when-using-an-iommu-primary-1060cb3c",
      "year": 2020,
      "title": "Things not to do when using an IOMMU",
      "item_title": "Things not to do when using an IOMMU",
      "authors": [
        "Ilja van Sprundel",
        "Joseph Tartaro"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=p1HUpSkHcZ0",
      "primary_url": "https://www.youtube.com/watch?v=p1HUpSkHcZ0",
      "parent_primary_url": "https://www.youtube.com/watch?v=p1HUpSkHcZ0",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2020-techniques-protection-bypasses-things-not-to-do-when-using-an-iommu-primary-1060cb3c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Things not to do when using an IOMMU record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Things not to do when using an IOMMU resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=p1HUpSkHcZ0 parent_primary_url: https://www.youtube.com/watch?v=p1HUpSkHcZ0 source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2020: \"Things not to do when using an IOMMU\" by Ilja van Sprundel and Joseph Tartaro](https://www.youtube.com/watch?v=p1HUpSkHcZ0) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=p1HUpSkHcZ0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=p1HUpSkHcZ0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "IOMMU",
        "mistakes",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "A video discussing common mistakes when using IOMMU for kernel protection.",
      "summary_zh": "讨论在使用IOMMU进行内核保护时常见错误的视频。",
      "source_markdown": "[2020: \"Things not to do when using an IOMMU\" by Ilja van Sprundel and Joseph Tartaro](https://www.youtube.com/watch?v=p1HUpSkHcZ0) [video]",
      "search_text": "things not to do when using an iommu things not to do when using an iommu ilja van sprundel joseph tartaro   techniques protection bypasses technique: protection bypasses primary video https://www.youtube.com/watch?v=p1hupskhcz0 iommu mistakes kernel  defensive research a video discussing common mistakes when using iommu for kernel protection. 讨论在使用iommu进行内核保护时常见错误的视频。 # things not to do when using an iommu record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: things not to do when using an iommu resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=p1hupskhcz0 parent_primary_url: https://www.youtube.com/watch?v=p1hupskhcz0 source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2020: \"things not to do when using an iommu\" by ilja van sprundel and joseph tartaro](https://www.youtube.com/watch?v=p1hupskhcz0) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7fa0ee77484833cf",
      "item_id": "c655969479fe0a56",
      "slug": "2020-techniques-protection-bypasses-selinux-rkp-misconfiguration-on-samsung-s20-devices-primary-82593a3e",
      "year": 2020,
      "title": "SELinux RKP misconfiguration on Samsung S20 devices",
      "item_title": "SELinux RKP misconfiguration on Samsung S20 devices",
      "authors": [
        "Vitaly Nikolenko"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://duasynt.com/blog/samsung-s20-rkp-selinux-disable",
      "primary_url": "https://duasynt.com/blog/samsung-s20-rkp-selinux-disable",
      "parent_primary_url": "https://duasynt.com/blog/samsung-s20-rkp-selinux-disable",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2020-techniques-protection-bypasses-selinux-rkp-misconfiguration-on-samsung-s20-devices-primary-82593a3e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SELinux RKP misconfiguration on Samsung S20 devices record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: SELinux RKP misconfiguration on Samsung S20 devices resource_label: primary resource_type: article resource_url: https://duasynt.com/blog/samsung-s20-rkp-selinux-disable parent_primary_url: https://duasynt.com/blog/samsung-s20-rkp-selinux-disable source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2020: \"SELinux RKP misconfiguration on Samsung S20 devices\" by Vitaly Nikolenko](https://duasynt.com/blog/samsung-s20-rkp-selinux-disable) [article] cves: none android_impact_status: unknown android_impact_reason: mentions an Android OEM/device family; Android-related resource, but production-device vulnerability impact is not established. ios_impa",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://duasynt.com/blog/samsung-s20-rkp-selinux-disable"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://duasynt.com/blog/samsung-s20-rkp-selinux-disable"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions an Android OEM/device family; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "SELinux",
        "RKP",
        "misconfiguration"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "An article on SELinux RKP misconfiguration issues on Samsung S20 devices.",
      "summary_zh": "关于三星S20设备上SELinux RKP配置错误问题的文章。",
      "source_markdown": "[2020: \"SELinux RKP misconfiguration on Samsung S20 devices\" by Vitaly Nikolenko](https://duasynt.com/blog/samsung-s20-rkp-selinux-disable) [article]",
      "search_text": "selinux rkp misconfiguration on samsung s20 devices selinux rkp misconfiguration on samsung s20 devices vitaly nikolenko   techniques protection bypasses technique: protection bypasses primary article https://duasynt.com/blog/samsung-s20-rkp-selinux-disable selinux rkp misconfiguration  defensive research an article on selinux rkp misconfiguration issues on samsung s20 devices. 关于三星s20设备上selinux rkp配置错误问题的文章。 # selinux rkp misconfiguration on samsung s20 devices record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: selinux rkp misconfiguration on samsung s20 devices resource_label: primary resource_type: article resource_url: https://duasynt.com/blog/samsung-s20-rkp-selinux-disable parent_primary_url: https://duasynt.com/blog/samsung-s20-rkp-selinux-disable source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2020: \"selinux rkp misconfiguration on samsung s20 devices\" by vitaly nikolenko](https://duasynt.com/blog/samsung-s20-rkp-selinux-disable) [article] cves: none android_impact_status: unknown android_impact_reason: mentions an android oem/device family; android-related resource, but production-device vulnerability impact is not established. ios_impa unknown mentions an android oem/device family; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "7c47ebbb1021ebce",
      "item_id": "4e6686540c489ace",
      "slug": "2020-techniques-protection-bypasses-tagbleed-breaking-kaslr-on-the-isolated-kernel-address-space-using-tagged-",
      "year": 2020,
      "title": "TagBleed: Breaking KASLR on the Isolated Kernel Address Space using Tagged TLBs",
      "item_title": "TagBleed: Breaking KASLR on the Isolated Kernel Address Space using Tagged TLBs",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://download.vusec.net/papers/tagbleed_eurosp20.pdf",
      "primary_url": "https://download.vusec.net/papers/tagbleed_eurosp20.pdf",
      "parent_primary_url": "https://download.vusec.net/papers/tagbleed_eurosp20.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2020-techniques-protection-bypasses-tagbleed-breaking-kaslr-on-the-isolated-kernel-address-space-using-tagged-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TagBleed: Breaking KASLR on the Isolated Kernel Address Space using Tagged TLBs record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: TagBleed: Breaking KASLR on the Isolated Kernel Address Space using Tagged TLBs resource_label: primary resource_type: paper resource_url: https://download.vusec.net/papers/tagbleed_eurosp20.pdf parent_primary_url: https://download.vusec.net/papers/tagbleed_eurosp20.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2020: \"TagBleed: Breaking KASLR on the Isolated Kernel Address Space using Tagged TLBs\"](https://download.vusec.net/papers/tagbleed_eurosp20.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://download.vusec.net/papers/tagbleed_eurosp20.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://download.vusec.net/papers/tagbleed_eurosp20.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KASLR",
        "TLB",
        "bypass"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Research on breaking KASLR using Tagged TLBs in isolated kernel address space.",
      "summary_zh": "研究如何使用标记的TLB在隔离的内核地址空间中打破KASLR。",
      "source_markdown": "[2020: \"TagBleed: Breaking KASLR on the Isolated Kernel Address Space using Tagged TLBs\"](https://download.vusec.net/papers/tagbleed_eurosp20.pdf) [paper]",
      "search_text": "tagbleed: breaking kaslr on the isolated kernel address space using tagged tlbs tagbleed: breaking kaslr on the isolated kernel address space using tagged tlbs    techniques protection bypasses technique: protection bypasses primary paper https://download.vusec.net/papers/tagbleed_eurosp20.pdf kaslr tlb bypass  defensive research research on breaking kaslr using tagged tlbs in isolated kernel address space. 研究如何使用标记的tlb在隔离的内核地址空间中打破kaslr。 # tagbleed: breaking kaslr on the isolated kernel address space using tagged tlbs record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: tagbleed: breaking kaslr on the isolated kernel address space using tagged tlbs resource_label: primary resource_type: paper resource_url: https://download.vusec.net/papers/tagbleed_eurosp20.pdf parent_primary_url: https://download.vusec.net/papers/tagbleed_eurosp20.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2020: \"tagbleed: breaking kaslr on the isolated kernel address space using tagged tlbs\"](https://download.vusec.net/papers/tagbleed_eurosp20.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b5d0622ceb9c3044",
      "item_id": "d8a9eda02724b2e0",
      "slug": "2020-techniques-protection-bypasses-weaknesses-in-linux-kernel-heap-hardening-primary-0874cc80",
      "year": 2020,
      "title": "Weaknesses in Linux Kernel Heap Hardening",
      "item_title": "Weaknesses in Linux Kernel Heap Hardening",
      "authors": [
        "Silvio Cesare"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.infosectcbr.com.au/2020/03/weaknesses-in-linux-kernel-heap.html",
      "primary_url": "https://blog.infosectcbr.com.au/2020/03/weaknesses-in-linux-kernel-heap.html",
      "parent_primary_url": "https://blog.infosectcbr.com.au/2020/03/weaknesses-in-linux-kernel-heap.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2020-techniques-protection-bypasses-weaknesses-in-linux-kernel-heap-hardening-primary-0874cc80.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Weaknesses in Linux Kernel Heap Hardening record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Weaknesses in Linux Kernel Heap Hardening resource_label: primary resource_type: article resource_url: https://blog.infosectcbr.com.au/2020/03/weaknesses-in-linux-kernel-heap.html parent_primary_url: https://blog.infosectcbr.com.au/2020/03/weaknesses-in-linux-kernel-heap.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2020: \"Weaknesses in Linux Kernel Heap Hardening\" by Silvio Cesare](https://blog.infosectcbr.com.au/2020/03/weaknesses-in-linux-kernel-heap.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.infosectcbr.com.au/2020/03/weaknesses-in-linux-kernel-heap.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.infosectcbr.com.au/2020/03/weaknesses-in-linux-kernel-heap.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "heap",
        "hardening",
        "weakness"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "An article analyzing weaknesses in Linux kernel heap hardening techniques.",
      "summary_zh": "分析Linux内核堆硬化技术弱点的文章。",
      "source_markdown": "[2020: \"Weaknesses in Linux Kernel Heap Hardening\" by Silvio Cesare](https://blog.infosectcbr.com.au/2020/03/weaknesses-in-linux-kernel-heap.html) [article]",
      "search_text": "weaknesses in linux kernel heap hardening weaknesses in linux kernel heap hardening silvio cesare   techniques protection bypasses technique: protection bypasses primary article https://blog.infosectcbr.com.au/2020/03/weaknesses-in-linux-kernel-heap.html heap hardening weakness  defensive research an article analyzing weaknesses in linux kernel heap hardening techniques. 分析linux内核堆硬化技术弱点的文章。 # weaknesses in linux kernel heap hardening record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: weaknesses in linux kernel heap hardening resource_label: primary resource_type: article resource_url: https://blog.infosectcbr.com.au/2020/03/weaknesses-in-linux-kernel-heap.html parent_primary_url: https://blog.infosectcbr.com.au/2020/03/weaknesses-in-linux-kernel-heap.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2020: \"weaknesses in linux kernel heap hardening\" by silvio cesare](https://blog.infosectcbr.com.au/2020/03/weaknesses-in-linux-kernel-heap.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "821da5f3bf0343c1",
      "item_id": "48fe0cc3ca895e67",
      "slug": "2020-techniques-protection-bypasses-an-analysis-of-linux-kernel-heap-hardening-primary-ccf662ea",
      "year": 2020,
      "title": "An Analysis of Linux Kernel Heap Hardening",
      "item_title": "An Analysis of Linux Kernel Heap Hardening",
      "authors": [
        "Silvio Cesare"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.infosectcbr.com.au/2020/04/an-analysis-of-linux-kernel-heap.html",
      "primary_url": "https://blog.infosectcbr.com.au/2020/04/an-analysis-of-linux-kernel-heap.html",
      "parent_primary_url": "https://blog.infosectcbr.com.au/2020/04/an-analysis-of-linux-kernel-heap.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2020-techniques-protection-bypasses-an-analysis-of-linux-kernel-heap-hardening-primary-ccf662ea.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An Analysis of Linux Kernel Heap Hardening record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: An Analysis of Linux Kernel Heap Hardening resource_label: primary resource_type: article resource_url: https://blog.infosectcbr.com.au/2020/04/an-analysis-of-linux-kernel-heap.html parent_primary_url: https://blog.infosectcbr.com.au/2020/04/an-analysis-of-linux-kernel-heap.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2020: \"An Analysis of Linux Kernel Heap Hardening\" by Silvio Cesare](https://blog.infosectcbr.com.au/2020/04/an-analysis-of-linux-kernel-heap.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_re",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.infosectcbr.com.au/2020/04/an-analysis-of-linux-kernel-heap.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.infosectcbr.com.au/2020/04/an-analysis-of-linux-kernel-heap.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "heap",
        "hardening",
        "analysis"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "An analysis of Linux kernel heap hardening measures and their effectiveness.",
      "summary_zh": "对Linux内核堆硬化措施及其有效性的分析。",
      "source_markdown": "[2020: \"An Analysis of Linux Kernel Heap Hardening\" by Silvio Cesare](https://blog.infosectcbr.com.au/2020/04/an-analysis-of-linux-kernel-heap.html) [article]",
      "search_text": "an analysis of linux kernel heap hardening an analysis of linux kernel heap hardening silvio cesare   techniques protection bypasses technique: protection bypasses primary article https://blog.infosectcbr.com.au/2020/04/an-analysis-of-linux-kernel-heap.html heap hardening analysis  defensive research an analysis of linux kernel heap hardening measures and their effectiveness. 对linux内核堆硬化措施及其有效性的分析。 # an analysis of linux kernel heap hardening record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: an analysis of linux kernel heap hardening resource_label: primary resource_type: article resource_url: https://blog.infosectcbr.com.au/2020/04/an-analysis-of-linux-kernel-heap.html parent_primary_url: https://blog.infosectcbr.com.au/2020/04/an-analysis-of-linux-kernel-heap.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2020: \"an analysis of linux kernel heap hardening\" by silvio cesare](https://blog.infosectcbr.com.au/2020/04/an-analysis-of-linux-kernel-heap.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_re no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "8913defb43370972",
      "item_id": "08fb5919fbb2884b",
      "slug": "2020-techniques-protection-bypasses-pan-another-day-another-broken-mitigation-primary-daf67005",
      "year": 2020,
      "title": "PAN: Another day, another broken mitigation",
      "item_title": "PAN: Another day, another broken mitigation",
      "authors": [
        "Siguza"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://siguza.github.io/PAN/",
      "primary_url": "https://siguza.github.io/PAN/",
      "parent_primary_url": "https://siguza.github.io/PAN/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2020-techniques-protection-bypasses-pan-another-day-another-broken-mitigation-primary-daf67005.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PAN: Another day, another broken mitigation record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: PAN: Another day, another broken mitigation resource_label: primary resource_type: article resource_url: https://siguza.github.io/PAN/ parent_primary_url: https://siguza.github.io/PAN/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2020: \"PAN: Another day, another broken mitigation\" by Siguza](https://siguza.github.io/PAN/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://sigu",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://siguza.github.io/PAN/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://siguza.github.io/PAN/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://siguza.github.io/PAN/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "PAN",
        "mitigation",
        "flaws"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "An article discussing the flaws in the PAN mitigation strategy.",
      "summary_zh": "讨论PAN缓解策略缺陷的文章。",
      "source_markdown": "[2020: \"PAN: Another day, another broken mitigation\" by Siguza](https://siguza.github.io/PAN/) [article]",
      "search_text": "pan: another day, another broken mitigation pan: another day, another broken mitigation siguza   techniques protection bypasses technique: protection bypasses primary article https://siguza.github.io/pan/ pan mitigation flaws  defensive research an article discussing the flaws in the pan mitigation strategy. 讨论pan缓解策略缺陷的文章。 # pan: another day, another broken mitigation record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: pan: another day, another broken mitigation resource_label: primary resource_type: article resource_url: https://siguza.github.io/pan/ parent_primary_url: https://siguza.github.io/pan/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2020: \"pan: another day, another broken mitigation\" by siguza](https://siguza.github.io/pan/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://sigu no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "05f65f90180e0f01",
      "item_id": "2d0ec4e32b80faa9",
      "slug": "2019-techniques-protection-bypasses-knox-kernel-mitigation-bypasses-primary-cdb74194",
      "year": 2019,
      "title": "KNOX Kernel Mitigation Bypasses",
      "item_title": "KNOX Kernel Mitigation Bypasses",
      "authors": [
        "Dong-Hoon You at PoC"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "http://powerofcommunity.net/poc2019/x82.pdf",
      "primary_url": "http://powerofcommunity.net/poc2019/x82.pdf",
      "parent_primary_url": "http://powerofcommunity.net/poc2019/x82.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2019-techniques-protection-bypasses-knox-kernel-mitigation-bypasses-primary-cdb74194.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KNOX Kernel Mitigation Bypasses record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: KNOX Kernel Mitigation Bypasses resource_label: primary resource_type: slides resource_url: http://powerofcommunity.net/poc2019/x82.pdf parent_primary_url: http://powerofcommunity.net/poc2019/x82.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2019: \"KNOX Kernel Mitigation Bypasses\" by Dong-Hoon You at PoC](http://powerofcommunity.net/poc2019/x82.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: true has_exploit_link: false code_",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "http://powerofcommunity.net/poc2019/x82.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "http://powerofcommunity.net/poc2019/x82.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KNOX",
        "bypass",
        "mitigation"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Slides on bypassing KNOX kernel mitigations presented at a conference.",
      "summary_zh": "在会议上展示的关于绕过KNOX内核缓解措施的幻灯片。",
      "source_markdown": "[2019: \"KNOX Kernel Mitigation Bypasses\" by Dong-Hoon You at PoC](http://powerofcommunity.net/poc2019/x82.pdf) [slides]",
      "search_text": "knox kernel mitigation bypasses knox kernel mitigation bypasses dong-hoon you at poc   techniques protection bypasses technique: protection bypasses primary slides http://powerofcommunity.net/poc2019/x82.pdf knox bypass mitigation  defensive research slides on bypassing knox kernel mitigations presented at a conference. 在会议上展示的关于绕过knox内核缓解措施的幻灯片。 # knox kernel mitigation bypasses record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: knox kernel mitigation bypasses resource_label: primary resource_type: slides resource_url: http://powerofcommunity.net/poc2019/x82.pdf parent_primary_url: http://powerofcommunity.net/poc2019/x82.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2019: \"knox kernel mitigation bypasses\" by dong-hoon you at poc](http://powerofcommunity.net/poc2019/x82.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: true has_exploit_link: false code_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "8fe726a2284e0769",
      "item_id": "ff348a0c6ce7308f",
      "slug": "2017-techniques-protection-bypasses-lifting-the-hyper-visor-bypassing-samsung-s-real-time-kernel-protection-pr",
      "year": 2017,
      "title": "Lifting the (Hyper) Visor: Bypassing Samsung’s Real-Time Kernel Protection",
      "item_title": "Lifting the (Hyper) Visor: Bypassing Samsung’s Real-Time Kernel Protection",
      "authors": [
        "Gal Beniamini"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2017/02/lifting-hyper-visor-bypassing-samsungs.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2017/02/lifting-hyper-visor-bypassing-samsungs.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2017/02/lifting-hyper-visor-bypassing-samsungs.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2017-techniques-protection-bypasses-lifting-the-hyper-visor-bypassing-samsung-s-real-time-kernel-protection-pr.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Lifting the (Hyper) Visor: Bypassing Samsung’s Real-Time Kernel Protection record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Lifting the (Hyper) Visor: Bypassing Samsung’s Real-Time Kernel Protection resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2017/02/lifting-hyper-visor-bypassing-samsungs.html parent_primary_url: https://googleprojectzero.blogspot.com/2017/02/lifting-hyper-visor-bypassing-samsungs.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2017: \"Lifting the (Hyper) Visor: Bypassing Samsung’s Real-Time Kernel Protection\" by Gal Beniamini](https://googleprojectzero.blogspot.com/2017/02/lifting-hyper-visor-bypassing-samsungs.html) [article] cves: none android_impact_status:",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2017/02/lifting-hyper-visor-bypassing-samsungs.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2017/02/lifting-hyper-visor-bypassing-samsungs.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions an Android OEM/device family; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Samsung",
        "RKP",
        "bypass"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "An article on bypassing Samsung's Real-Time Kernel Protection mechanisms.",
      "summary_zh": "关于绕过三星实时内核保护机制的文章。",
      "source_markdown": "[2017: \"Lifting the (Hyper) Visor: Bypassing Samsung’s Real-Time Kernel Protection\" by Gal Beniamini](https://googleprojectzero.blogspot.com/2017/02/lifting-hyper-visor-bypassing-samsungs.html) [article]",
      "search_text": "lifting the (hyper) visor: bypassing samsung’s real-time kernel protection lifting the (hyper) visor: bypassing samsung’s real-time kernel protection gal beniamini   techniques protection bypasses technique: protection bypasses primary article https://googleprojectzero.blogspot.com/2017/02/lifting-hyper-visor-bypassing-samsungs.html samsung rkp bypass  defensive research an article on bypassing samsung's real-time kernel protection mechanisms. 关于绕过三星实时内核保护机制的文章。 # lifting the (hyper) visor: bypassing samsung’s real-time kernel protection record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: lifting the (hyper) visor: bypassing samsung’s real-time kernel protection resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2017/02/lifting-hyper-visor-bypassing-samsungs.html parent_primary_url: https://googleprojectzero.blogspot.com/2017/02/lifting-hyper-visor-bypassing-samsungs.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2017: \"lifting the (hyper) visor: bypassing samsung’s real-time kernel protection\" by gal beniamini](https://googleprojectzero.blogspot.com/2017/02/lifting-hyper-visor-bypassing-samsungs.html) [article] cves: none android_impact_status: unknown mentions an android oem/device family; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "7ce4da7af21c7cdc",
      "item_id": "f4d4d0cb805f7bdf",
      "slug": "2016-techniques-protection-bypasses-linux-kernel-x86-64-bypass-smep-kaslr-kptr-restric-primary-72bcc4fb",
      "year": 2016,
      "title": "Linux Kernel x86-64 bypass SMEP - KASLR - kptr_restric",
      "item_title": "Linux Kernel x86-64 bypass SMEP - KASLR - kptr_restric",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://web.archive.org/web/20171029060939/http://www.blackbunny.io/linux-kernel-x86-64-bypass-smep-kaslr-kptr_restric/",
      "primary_url": "https://web.archive.org/web/20171029060939/http://www.blackbunny.io/linux-kernel-x86-64-bypass-smep-kaslr-kptr_restric/",
      "parent_primary_url": "https://web.archive.org/web/20171029060939/http://www.blackbunny.io/linux-kernel-x86-64-bypass-smep-kaslr-kptr_restric/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2016-techniques-protection-bypasses-linux-kernel-x86-64-bypass-smep-kaslr-kptr-restric-primary-72bcc4fb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel x86-64 bypass SMEP - KASLR - kptr_restric record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Linux Kernel x86-64 bypass SMEP - KASLR - kptr_restric resource_label: primary resource_type: article resource_url: https://web.archive.org/web/20171029060939/http://www.blackbunny.io/linux-kernel-x86-64-bypass-smep-kaslr-kptr_restric/ parent_primary_url: https://web.archive.org/web/20171029060939/http://www.blackbunny.io/linux-kernel-x86-64-bypass-smep-kaslr-kptr_restric/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2016: \"Linux Kernel x86-64 bypass SMEP - KASLR - kptr_restric\"](https://web.archive.org/web/20171029060939/http://www.blackbunny.io/linux-kernel-x86-64-bypass-smep-kaslr-kptr_restric/) [article] cves: none android_impa",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://web.archive.org/web/20171029060939/http://www.blackbunny.io/linux-kernel-x86-64-bypass-smep-kaslr-kptr_restric/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://web.archive.org/web/20171029060939/http://www.blackbunny.io/linux-kernel-x86-64-bypass-smep-kaslr-kptr_restric/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "SMEP",
        "KASLR",
        "bypass"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "An article detailing methods to bypass SMEP, KASLR, and kptr_restrict in the Linux kernel.",
      "summary_zh": "详细介绍在Linux内核中绕过SMEP、KASLR和kptr_restrict的方法的文章。",
      "source_markdown": "[2016: \"Linux Kernel x86-64 bypass SMEP - KASLR - kptr_restric\"](https://web.archive.org/web/20171029060939/http://www.blackbunny.io/linux-kernel-x86-64-bypass-smep-kaslr-kptr_restric/) [article]",
      "search_text": "linux kernel x86-64 bypass smep - kaslr - kptr_restric linux kernel x86-64 bypass smep - kaslr - kptr_restric    techniques protection bypasses technique: protection bypasses primary article https://web.archive.org/web/20171029060939/http://www.blackbunny.io/linux-kernel-x86-64-bypass-smep-kaslr-kptr_restric/ smep kaslr bypass  defensive research an article detailing methods to bypass smep, kaslr, and kptr_restrict in the linux kernel. 详细介绍在linux内核中绕过smep、kaslr和kptr_restrict的方法的文章。 # linux kernel x86-64 bypass smep - kaslr - kptr_restric record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: linux kernel x86-64 bypass smep - kaslr - kptr_restric resource_label: primary resource_type: article resource_url: https://web.archive.org/web/20171029060939/http://www.blackbunny.io/linux-kernel-x86-64-bypass-smep-kaslr-kptr_restric/ parent_primary_url: https://web.archive.org/web/20171029060939/http://www.blackbunny.io/linux-kernel-x86-64-bypass-smep-kaslr-kptr_restric/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2016: \"linux kernel x86-64 bypass smep - kaslr - kptr_restric\"](https://web.archive.org/web/20171029060939/http://www.blackbunny.io/linux-kernel-x86-64-bypass-smep-kaslr-kptr_restric/) [article] cves: none android_impa no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7b993255f9ffd926",
      "item_id": "f90181fed230d647",
      "slug": "2016-techniques-protection-bypasses-practical-smep-bypass-techniques-on-linux-primary-684097d6",
      "year": 2016,
      "title": "Practical SMEP bypass techniques on Linux",
      "item_title": "Practical SMEP bypass techniques on Linux",
      "authors": [
        "Vitaly Nikolenko at KIWICON"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://cyseclabs.com/slides/smep_bypass.pdf",
      "primary_url": "https://cyseclabs.com/slides/smep_bypass.pdf",
      "parent_primary_url": "https://cyseclabs.com/slides/smep_bypass.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2016-techniques-protection-bypasses-practical-smep-bypass-techniques-on-linux-primary-684097d6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Practical SMEP bypass techniques on Linux record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Practical SMEP bypass techniques on Linux resource_label: primary resource_type: slides resource_url: https://cyseclabs.com/slides/smep_bypass.pdf parent_primary_url: https://cyseclabs.com/slides/smep_bypass.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2016: \"Practical SMEP bypass techniques on Linux\" by Vitaly Nikolenko at KIWICON](https://cyseclabs.com/slides/smep_bypass.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://cyseclabs.com/slides/smep_bypass.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://cyseclabs.com/slides/smep_bypass.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "SMEP",
        "bypass",
        "techniques"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Slides presenting practical SMEP bypass techniques in Linux.",
      "summary_zh": "展示Linux中实用SMEP绕过技术的幻灯片。",
      "source_markdown": "[2016: \"Practical SMEP bypass techniques on Linux\" by Vitaly Nikolenko at KIWICON](https://cyseclabs.com/slides/smep_bypass.pdf) [slides]",
      "search_text": "practical smep bypass techniques on linux practical smep bypass techniques on linux vitaly nikolenko at kiwicon   techniques protection bypasses technique: protection bypasses primary slides https://cyseclabs.com/slides/smep_bypass.pdf smep bypass techniques  defensive research slides presenting practical smep bypass techniques in linux. 展示linux中实用smep绕过技术的幻灯片。 # practical smep bypass techniques on linux record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: practical smep bypass techniques on linux resource_label: primary resource_type: slides resource_url: https://cyseclabs.com/slides/smep_bypass.pdf parent_primary_url: https://cyseclabs.com/slides/smep_bypass.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2016: \"practical smep bypass techniques on linux\" by vitaly nikolenko at kiwicon](https://cyseclabs.com/slides/smep_bypass.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5365f610e1cc9f4e",
      "item_id": "cbb74200fb446fd4",
      "slug": "2016-techniques-protection-bypasses-micro-architecture-attacks-on-kaslr-primary-0bcf6cbc",
      "year": 2016,
      "title": "Micro architecture attacks on KASLR",
      "item_title": "Micro architecture attacks on KASLR",
      "authors": [
        "Anders Fogh"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://cyber.wtf/2016/10/25/micro-architecture-attacks-on-kasrl/",
      "primary_url": "https://cyber.wtf/2016/10/25/micro-architecture-attacks-on-kasrl/",
      "parent_primary_url": "https://cyber.wtf/2016/10/25/micro-architecture-attacks-on-kasrl/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2016-techniques-protection-bypasses-micro-architecture-attacks-on-kaslr-primary-0bcf6cbc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Micro architecture attacks on KASLR record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Micro architecture attacks on KASLR resource_label: primary resource_type: article resource_url: https://cyber.wtf/2016/10/25/micro-architecture-attacks-on-kasrl/ parent_primary_url: https://cyber.wtf/2016/10/25/micro-architecture-attacks-on-kasrl/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2016: \"Micro architecture attacks on KASLR\" by Anders Fogh\"](https://cyber.wtf/2016/10/25/micro-architecture-attacks-on-kasrl/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://cyber.wtf/2016/10/25/micro-architecture-attacks-on-kasrl/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://cyber.wtf/2016/10/25/micro-architecture-attacks-on-kasrl/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KASLR",
        "microarchitecture",
        "attack"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "An article discussing micro architecture attacks on KASLR.",
      "summary_zh": "讨论针对KASLR的微架构攻击的文章。",
      "source_markdown": "[2016: \"Micro architecture attacks on KASLR\" by Anders Fogh\"](https://cyber.wtf/2016/10/25/micro-architecture-attacks-on-kasrl/) [article]",
      "search_text": "micro architecture attacks on kaslr micro architecture attacks on kaslr anders fogh   techniques protection bypasses technique: protection bypasses primary article https://cyber.wtf/2016/10/25/micro-architecture-attacks-on-kasrl/ kaslr microarchitecture attack  defensive research an article discussing micro architecture attacks on kaslr. 讨论针对kaslr的微架构攻击的文章。 # micro architecture attacks on kaslr record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: micro architecture attacks on kaslr resource_label: primary resource_type: article resource_url: https://cyber.wtf/2016/10/25/micro-architecture-attacks-on-kasrl/ parent_primary_url: https://cyber.wtf/2016/10/25/micro-architecture-attacks-on-kasrl/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2016: \"micro architecture attacks on kaslr\" by anders fogh\"](https://cyber.wtf/2016/10/25/micro-architecture-attacks-on-kasrl/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c05e776566668333",
      "item_id": "b30e2b49b0d22178",
      "slug": "2016-techniques-protection-bypasses-jump-over-aslr-attacking-branch-predictors-to-bypass-aslr-primary-967b6da2",
      "year": 2016,
      "title": "Jump Over ASLR: Attacking Branch Predictors to Bypass ASLR",
      "item_title": "Jump Over ASLR: Attacking Branch Predictors to Bypass ASLR",
      "authors": [
        "Dmitry Evtyushkin",
        "Dmitry Ponomarev",
        "Nael Abu-Ghazaleh"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "http://www.cs.ucr.edu/~nael/pubs/micro16.pdf",
      "primary_url": "http://www.cs.ucr.edu/~nael/pubs/micro16.pdf",
      "parent_primary_url": "http://www.cs.ucr.edu/~nael/pubs/micro16.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2016-techniques-protection-bypasses-jump-over-aslr-attacking-branch-predictors-to-bypass-aslr-primary-967b6da2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Jump Over ASLR: Attacking Branch Predictors to Bypass ASLR record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Jump Over ASLR: Attacking Branch Predictors to Bypass ASLR resource_label: primary resource_type: slides resource_url: http://www.cs.ucr.edu/~nael/pubs/micro16.pdf parent_primary_url: http://www.cs.ucr.edu/~nael/pubs/micro16.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2016: \"Jump Over ASLR: Attacking Branch Predictors to Bypass ASLR\" by Dmitry Evtyushkin, Dmitry Ponomarev and Nael Abu-Ghazaleh](http://www.cs.ucr.edu/~nael/pubs/micro16.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Pro",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "http://www.cs.ucr.edu/~nael/pubs/micro16.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "http://www.cs.ucr.edu/~nael/pubs/micro16.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "ASLR",
        "bypass",
        "branch predictor"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Slides on attacking branch predictors to bypass ASLR.",
      "summary_zh": "关于攻击分支预测器以绕过ASLR的幻灯片。",
      "source_markdown": "[2016: \"Jump Over ASLR: Attacking Branch Predictors to Bypass ASLR\" by Dmitry Evtyushkin, Dmitry Ponomarev and Nael Abu-Ghazaleh](http://www.cs.ucr.edu/~nael/pubs/micro16.pdf) [slides]",
      "search_text": "jump over aslr: attacking branch predictors to bypass aslr jump over aslr: attacking branch predictors to bypass aslr dmitry evtyushkin dmitry ponomarev nael abu-ghazaleh   techniques protection bypasses technique: protection bypasses primary slides http://www.cs.ucr.edu/~nael/pubs/micro16.pdf aslr bypass branch predictor  defensive research slides on attacking branch predictors to bypass aslr. 关于攻击分支预测器以绕过aslr的幻灯片。 # jump over aslr: attacking branch predictors to bypass aslr record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: jump over aslr: attacking branch predictors to bypass aslr resource_label: primary resource_type: slides resource_url: http://www.cs.ucr.edu/~nael/pubs/micro16.pdf parent_primary_url: http://www.cs.ucr.edu/~nael/pubs/micro16.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2016: \"jump over aslr: attacking branch predictors to bypass aslr\" by dmitry evtyushkin, dmitry ponomarev and nael abu-ghazaleh](http://www.cs.ucr.edu/~nael/pubs/micro16.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: pro no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "0b3f1758d302d5a0",
      "item_id": "5d2562adeb657ef5",
      "slug": "2016-techniques-protection-bypasses-prefetch-side-channel-attacks-bypassing-smap-and-kernel-aslr-primary-78bb4",
      "year": 2016,
      "title": "Prefetch Side-Channel Attacks: Bypassing SMAP and Kernel ASLR",
      "item_title": "Prefetch Side-Channel Attacks: Bypassing SMAP and Kernel ASLR",
      "authors": [
        "Daniel Gruss",
        "Clementine Maurice",
        "Anders Fogh",
        "Moritz Lipp",
        "Stefan Mangard at CCS"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=TJTQbs3oJx8",
      "primary_url": "https://www.youtube.com/watch?v=TJTQbs3oJx8",
      "parent_primary_url": "https://www.youtube.com/watch?v=TJTQbs3oJx8",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2016-techniques-protection-bypasses-prefetch-side-channel-attacks-bypassing-smap-and-kernel-aslr-primary-78bb4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Prefetch Side-Channel Attacks: Bypassing SMAP and Kernel ASLR record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Prefetch Side-Channel Attacks: Bypassing SMAP and Kernel ASLR resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=TJTQbs3oJx8 parent_primary_url: https://www.youtube.com/watch?v=TJTQbs3oJx8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2016: \"Prefetch Side-Channel Attacks: Bypassing SMAP and Kernel ASLR\" by Daniel Gruss, Clementine Maurice, Anders Fogh, Moritz Lipp and Stefan Mangard at CCS](https://www.youtube.com/watch?v=TJTQbs3oJx8) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_st",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=TJTQbs3oJx8"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=TJTQbs3oJx8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "SMAP",
        "ASLR",
        "side-channel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "A video on prefetch side-channel attacks against SMAP and kernel ASLR.",
      "summary_zh": "关于针对SMAP和内核ASLR的预取侧信道攻击的视频。",
      "source_markdown": "[2016: \"Prefetch Side-Channel Attacks: Bypassing SMAP and Kernel ASLR\" by Daniel Gruss, Clementine Maurice, Anders Fogh, Moritz Lipp and Stefan Mangard at CCS](https://www.youtube.com/watch?v=TJTQbs3oJx8) [video]",
      "search_text": "prefetch side-channel attacks: bypassing smap and kernel aslr prefetch side-channel attacks: bypassing smap and kernel aslr daniel gruss clementine maurice anders fogh moritz lipp stefan mangard at ccs   techniques protection bypasses technique: protection bypasses primary video https://www.youtube.com/watch?v=tjtqbs3ojx8 smap aslr side-channel  defensive research a video on prefetch side-channel attacks against smap and kernel aslr. 关于针对smap和内核aslr的预取侧信道攻击的视频。 # prefetch side-channel attacks: bypassing smap and kernel aslr record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: prefetch side-channel attacks: bypassing smap and kernel aslr resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=tjtqbs3ojx8 parent_primary_url: https://www.youtube.com/watch?v=tjtqbs3ojx8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2016: \"prefetch side-channel attacks: bypassing smap and kernel aslr\" by daniel gruss, clementine maurice, anders fogh, moritz lipp and stefan mangard at ccs](https://www.youtube.com/watch?v=tjtqbs3ojx8) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_st no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f2a91118a96be70c",
      "item_id": "7f0df269ec8e3950",
      "slug": "2016-techniques-protection-bypasses-using-undocumented-cpu-behavior-to-see-into-kernel-mode-and-break-kaslr-in",
      "year": 2016,
      "title": "Using Undocumented CPU Behavior to See Into Kernel Mode and Break KASLR in the Process\" at Black Hat",
      "item_title": "Using Undocumented CPU Behavior to See Into Kernel Mode and Break KASLR in the Process\" at Black Hat",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=T3kmq2NLpH4",
      "primary_url": "https://www.youtube.com/watch?v=T3kmq2NLpH4",
      "parent_primary_url": "https://www.youtube.com/watch?v=T3kmq2NLpH4",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2016-techniques-protection-bypasses-using-undocumented-cpu-behavior-to-see-into-kernel-mode-and-break-kaslr-in.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Using Undocumented CPU Behavior to See Into Kernel Mode and Break KASLR in the Process\" at Black Hat record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Using Undocumented CPU Behavior to See Into Kernel Mode and Break KASLR in the Process\" at Black Hat resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=T3kmq2NLpH4 parent_primary_url: https://www.youtube.com/watch?v=T3kmq2NLpH4 source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2016: \"Using Undocumented CPU Behavior to See Into Kernel Mode and Break KASLR in the Process\" at Black Hat](https://www.youtube.com/watch?v=T3kmq2NLpH4) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released An",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=T3kmq2NLpH4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=T3kmq2NLpH4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KASLR",
        "CPU",
        "undocumented"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "A video presentation on using undocumented CPU behavior to break KASLR.",
      "summary_zh": "关于利用未记录的CPU行为打破KASLR的视频演示。",
      "source_markdown": "[2016: \"Using Undocumented CPU Behavior to See Into Kernel Mode and Break KASLR in the Process\" at Black Hat](https://www.youtube.com/watch?v=T3kmq2NLpH4) [video]",
      "search_text": "using undocumented cpu behavior to see into kernel mode and break kaslr in the process\" at black hat using undocumented cpu behavior to see into kernel mode and break kaslr in the process\" at black hat    techniques protection bypasses technique: protection bypasses primary video https://www.youtube.com/watch?v=t3kmq2nlph4 kaslr cpu undocumented  defensive research a video presentation on using undocumented cpu behavior to break kaslr. 关于利用未记录的cpu行为打破kaslr的视频演示。 # using undocumented cpu behavior to see into kernel mode and break kaslr in the process\" at black hat record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: using undocumented cpu behavior to see into kernel mode and break kaslr in the process\" at black hat resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=t3kmq2nlph4 parent_primary_url: https://www.youtube.com/watch?v=t3kmq2nlph4 source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2016: \"using undocumented cpu behavior to see into kernel mode and break kaslr in the process\" at black hat](https://www.youtube.com/watch?v=t3kmq2nlph4) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released an no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3c3493ed38eff497",
      "item_id": "e52fe28479f19050",
      "slug": "2016-techniques-protection-bypasses-breaking-kaslr-with-intel-tsx-yeongjin-jang-sangho-lee-and-taesoo-kim-at-b",
      "year": 2016,
      "title": "Breaking KASLR with Intel TSX\" Yeongjin Jang, Sangho Lee and Taesoo Kim at Black Hat",
      "item_title": "Breaking KASLR with Intel TSX\" Yeongjin Jang, Sangho Lee and Taesoo Kim at Black Hat",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.blackhat.com/docs/us-16/materials/us-16-Jang-Breaking-Kernel-Address-Space-Layout-Randomization-KASLR-With-Intel-TSX.pdf",
      "primary_url": "https://www.blackhat.com/docs/us-16/materials/us-16-Jang-Breaking-Kernel-Address-Space-Layout-Randomization-KASLR-With-Intel-TSX.pdf",
      "parent_primary_url": "https://www.blackhat.com/docs/us-16/materials/us-16-Jang-Breaking-Kernel-Address-Space-Layout-Randomization-KASLR-With-Intel-TSX.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2016-techniques-protection-bypasses-breaking-kaslr-with-intel-tsx-yeongjin-jang-sangho-lee-and-taesoo-kim-at-b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Breaking KASLR with Intel TSX\" Yeongjin Jang, Sangho Lee and Taesoo Kim at Black Hat record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Breaking KASLR with Intel TSX\" Yeongjin Jang, Sangho Lee and Taesoo Kim at Black Hat resource_label: primary resource_type: slides resource_url: https://www.blackhat.com/docs/us-16/materials/us-16-Jang-Breaking-Kernel-Address-Space-Layout-Randomization-KASLR-With-Intel-TSX.pdf parent_primary_url: https://www.blackhat.com/docs/us-16/materials/us-16-Jang-Breaking-Kernel-Address-Space-Layout-Randomization-KASLR-With-Intel-TSX.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2016: \"Breaking KASLR with Intel TSX\" Yeongjin Jang, Sangho Lee and Taesoo Kim at Black Hat](https://www.blackhat.com/docs/us-16/mate",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.blackhat.com/docs/us-16/materials/us-16-Jang-Breaking-Kernel-Address-Space-Layout-Randomization-KASLR-With-Intel-TSX.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=rtuXG28g0CU"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.blackhat.com/docs/us-16/materials/us-16-Jang-Breaking-Kernel-Address-Space-Layout-Randomization-KASLR-With-Intel-TSX.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=rtuXG28g0CU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KASLR",
        "Intel TSX",
        "bypass"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Slides on breaking KASLR using Intel TSX presented at Black Hat.",
      "summary_zh": "在Black Hat上展示的关于使用Intel TSX打破KASLR的幻灯片。",
      "source_markdown": "[2016: \"Breaking KASLR with Intel TSX\" Yeongjin Jang, Sangho Lee and Taesoo Kim at Black Hat](https://www.blackhat.com/docs/us-16/materials/us-16-Jang-Breaking-Kernel-Address-Space-Layout-Randomization-KASLR-With-Intel-TSX.pdf) [slides] [[video](https://www.youtube.com/watch?v=rtuXG28g0CU)]",
      "search_text": "breaking kaslr with intel tsx\" yeongjin jang, sangho lee and taesoo kim at black hat breaking kaslr with intel tsx\" yeongjin jang, sangho lee and taesoo kim at black hat    techniques protection bypasses technique: protection bypasses primary slides https://www.blackhat.com/docs/us-16/materials/us-16-jang-breaking-kernel-address-space-layout-randomization-kaslr-with-intel-tsx.pdf kaslr intel tsx bypass  defensive research slides on breaking kaslr using intel tsx presented at black hat. 在black hat上展示的关于使用intel tsx打破kaslr的幻灯片。 # breaking kaslr with intel tsx\" yeongjin jang, sangho lee and taesoo kim at black hat record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: breaking kaslr with intel tsx\" yeongjin jang, sangho lee and taesoo kim at black hat resource_label: primary resource_type: slides resource_url: https://www.blackhat.com/docs/us-16/materials/us-16-jang-breaking-kernel-address-space-layout-randomization-kaslr-with-intel-tsx.pdf parent_primary_url: https://www.blackhat.com/docs/us-16/materials/us-16-jang-breaking-kernel-address-space-layout-randomization-kaslr-with-intel-tsx.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2016: \"breaking kaslr with intel tsx\" yeongjin jang, sangho lee and taesoo kim at black hat](https://www.blackhat.com/docs/us-16/mate no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "0936a20762d9df36",
      "item_id": "e52fe28479f19050",
      "slug": "2016-techniques-protection-bypasses-breaking-kaslr-with-intel-tsx-yeongjin-jang-sangho-lee-and-taesoo-kim-at-b-2",
      "year": 2016,
      "title": "Breaking KASLR with Intel TSX\" Yeongjin Jang, Sangho Lee and Taesoo Kim at Black Hat · video",
      "item_title": "Breaking KASLR with Intel TSX\" Yeongjin Jang, Sangho Lee and Taesoo Kim at Black Hat",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=rtuXG28g0CU",
      "primary_url": "https://www.youtube.com/watch?v=rtuXG28g0CU",
      "parent_primary_url": "https://www.blackhat.com/docs/us-16/materials/us-16-Jang-Breaking-Kernel-Address-Space-Layout-Randomization-KASLR-With-Intel-TSX.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2016-techniques-protection-bypasses-breaking-kaslr-with-intel-tsx-yeongjin-jang-sangho-lee-and-taesoo-kim-at-b-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Breaking KASLR with Intel TSX\" Yeongjin Jang, Sangho Lee and Taesoo Kim at Black Hat · video record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Breaking KASLR with Intel TSX\" Yeongjin Jang, Sangho Lee and Taesoo Kim at Black Hat resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=rtuXG28g0CU parent_primary_url: https://www.blackhat.com/docs/us-16/materials/us-16-Jang-Breaking-Kernel-Address-Space-Layout-Randomization-KASLR-With-Intel-TSX.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2016: \"Breaking KASLR with Intel TSX\" Yeongjin Jang, Sangho Lee and Taesoo Kim at Black Hat](https://www.blackhat.com/docs/us-16/materials/us-16-Jang-Breaking-Kernel-Address-Space-Layout-Randomization-KASLR-With-Intel",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.blackhat.com/docs/us-16/materials/us-16-Jang-Breaking-Kernel-Address-Space-Layout-Randomization-KASLR-With-Intel-TSX.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=rtuXG28g0CU"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.blackhat.com/docs/us-16/materials/us-16-Jang-Breaking-Kernel-Address-Space-Layout-Randomization-KASLR-With-Intel-TSX.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=rtuXG28g0CU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KASLR",
        "Intel TSX",
        "bypass"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "A video on breaking KASLR with Intel TSX presented at Black Hat.",
      "summary_zh": "在Black Hat上展示的关于使用Intel TSX打破KASLR的视频。",
      "source_markdown": "[2016: \"Breaking KASLR with Intel TSX\" Yeongjin Jang, Sangho Lee and Taesoo Kim at Black Hat](https://www.blackhat.com/docs/us-16/materials/us-16-Jang-Breaking-Kernel-Address-Space-Layout-Randomization-KASLR-With-Intel-TSX.pdf) [slides] [[video](https://www.youtube.com/watch?v=rtuXG28g0CU)]",
      "search_text": "breaking kaslr with intel tsx\" yeongjin jang, sangho lee and taesoo kim at black hat · video breaking kaslr with intel tsx\" yeongjin jang, sangho lee and taesoo kim at black hat    techniques protection bypasses technique: protection bypasses video video https://www.youtube.com/watch?v=rtuxg28g0cu kaslr intel tsx bypass  defensive research a video on breaking kaslr with intel tsx presented at black hat. 在black hat上展示的关于使用intel tsx打破kaslr的视频。 # breaking kaslr with intel tsx\" yeongjin jang, sangho lee and taesoo kim at black hat · video record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: breaking kaslr with intel tsx\" yeongjin jang, sangho lee and taesoo kim at black hat resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=rtuxg28g0cu parent_primary_url: https://www.blackhat.com/docs/us-16/materials/us-16-jang-breaking-kernel-address-space-layout-randomization-kaslr-with-intel-tsx.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2016: \"breaking kaslr with intel tsx\" yeongjin jang, sangho lee and taesoo kim at black hat](https://www.blackhat.com/docs/us-16/materials/us-16-jang-breaking-kernel-address-space-layout-randomization-kaslr-with-intel no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b19b92e5c2518709",
      "item_id": "6e17c140f1f54927",
      "slug": "2016-techniques-protection-bypasses-breaking-kaslr-with-micro-architecture-primary-e8bde135",
      "year": 2016,
      "title": "Breaking KASLR with micro architecture",
      "item_title": "Breaking KASLR with micro architecture",
      "authors": [
        "Anders Fogh"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://dreamsofastone.blogspot.ru/2016/02/breaking-kasrl-with-micro-architecture.html",
      "primary_url": "https://dreamsofastone.blogspot.ru/2016/02/breaking-kasrl-with-micro-architecture.html",
      "parent_primary_url": "https://dreamsofastone.blogspot.ru/2016/02/breaking-kasrl-with-micro-architecture.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2016-techniques-protection-bypasses-breaking-kaslr-with-micro-architecture-primary-e8bde135.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Breaking KASLR with micro architecture record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Breaking KASLR with micro architecture resource_label: primary resource_type: article resource_url: https://dreamsofastone.blogspot.ru/2016/02/breaking-kasrl-with-micro-architecture.html parent_primary_url: https://dreamsofastone.blogspot.ru/2016/02/breaking-kasrl-with-micro-architecture.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2016: \"Breaking KASLR with micro architecture\" by Anders Fogh](https://dreamsofastone.blogspot.ru/2016/02/breaking-kasrl-with-micro-architecture.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://dreamsofastone.blogspot.ru/2016/02/breaking-kasrl-with-micro-architecture.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://dreamsofastone.blogspot.ru/2016/02/breaking-kasrl-with-micro-architecture.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KASLR",
        "microarchitecture",
        "break"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "An article discussing methods to break KASLR using micro architecture techniques.",
      "summary_zh": "讨论使用微架构技术打破KASLR的方法的文章。",
      "source_markdown": "[2016: \"Breaking KASLR with micro architecture\" by Anders Fogh](https://dreamsofastone.blogspot.ru/2016/02/breaking-kasrl-with-micro-architecture.html) [article]",
      "search_text": "breaking kaslr with micro architecture breaking kaslr with micro architecture anders fogh   techniques protection bypasses technique: protection bypasses primary article https://dreamsofastone.blogspot.ru/2016/02/breaking-kasrl-with-micro-architecture.html kaslr microarchitecture break  defensive research an article discussing methods to break kaslr using micro architecture techniques. 讨论使用微架构技术打破kaslr的方法的文章。 # breaking kaslr with micro architecture record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: breaking kaslr with micro architecture resource_label: primary resource_type: article resource_url: https://dreamsofastone.blogspot.ru/2016/02/breaking-kasrl-with-micro-architecture.html parent_primary_url: https://dreamsofastone.blogspot.ru/2016/02/breaking-kasrl-with-micro-architecture.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2016: \"breaking kaslr with micro architecture\" by anders fogh](https://dreamsofastone.blogspot.ru/2016/02/breaking-kasrl-with-micro-architecture.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "246381f08f0a8561",
      "item_id": "f46ebb75043580f7",
      "slug": "2015-techniques-protection-bypasses-effectively-bypassing-kptr-restrict-on-android-primary-5f08c9f1",
      "year": 2015,
      "title": "Effectively bypassing kptr_restrict on Android",
      "item_title": "Effectively bypassing kptr_restrict on Android",
      "authors": [
        "Gal Beniamini"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://bits-please.blogspot.de/2015/08/effectively-bypassing-kptrrestrict-on.html",
      "primary_url": "https://bits-please.blogspot.de/2015/08/effectively-bypassing-kptrrestrict-on.html",
      "parent_primary_url": "https://bits-please.blogspot.de/2015/08/effectively-bypassing-kptrrestrict-on.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2015-techniques-protection-bypasses-effectively-bypassing-kptr-restrict-on-android-primary-5f08c9f1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Effectively bypassing kptr_restrict on Android record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Effectively bypassing kptr_restrict on Android resource_label: primary resource_type: article resource_url: https://bits-please.blogspot.de/2015/08/effectively-bypassing-kptrrestrict-on.html parent_primary_url: https://bits-please.blogspot.de/2015/08/effectively-bypassing-kptrrestrict-on.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2015: \"Effectively bypassing kptr_restrict on Android\" by Gal Beniamini](https://bits-please.blogspot.de/2015/08/effectively-bypassing-kptrrestrict-on.html) [article] cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-related resource, but production-device vulnerabil",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://bits-please.blogspot.de/2015/08/effectively-bypassing-kptrrestrict-on.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://bits-please.blogspot.de/2015/08/effectively-bypassing-kptrrestrict-on.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bypass",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article discusses methods to bypass kptr_restrict on Android.",
      "summary_zh": "本文讨论了在Android上绕过kptr_restrict的方法。",
      "source_markdown": "[2015: \"Effectively bypassing kptr_restrict on Android\" by Gal Beniamini](https://bits-please.blogspot.de/2015/08/effectively-bypassing-kptrrestrict-on.html) [article]",
      "search_text": "effectively bypassing kptr_restrict on android effectively bypassing kptr_restrict on android gal beniamini   techniques protection bypasses technique: protection bypasses primary article https://bits-please.blogspot.de/2015/08/effectively-bypassing-kptrrestrict-on.html bypass android  defensive research this article discusses methods to bypass kptr_restrict on android. 本文讨论了在android上绕过kptr_restrict的方法。 # effectively bypassing kptr_restrict on android record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: effectively bypassing kptr_restrict on android resource_label: primary resource_type: article resource_url: https://bits-please.blogspot.de/2015/08/effectively-bypassing-kptrrestrict-on.html parent_primary_url: https://bits-please.blogspot.de/2015/08/effectively-bypassing-kptrrestrict-on.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2015: \"effectively bypassing kptr_restrict on android\" by gal beniamini](https://bits-please.blogspot.de/2015/08/effectively-bypassing-kptrrestrict-on.html) [article] cves: none android_impact_status: unknown android_impact_reason: mentions android; android-related resource, but production-device vulnerabil unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "cfa64d3c1bd5113d",
      "item_id": "07fa2ebbfa7c57db",
      "slug": "2014-techniques-protection-bypasses-ret2dir-deconstructing-kernel-isolation-primary-f335913a",
      "year": 2014,
      "title": "ret2dir: Deconstructing Kernel Isolation",
      "item_title": "ret2dir: Deconstructing Kernel Isolation",
      "authors": [
        "Vasileios P. Kemerlis",
        "Michalis Polychronakis",
        "Angelos D. Keromytis at Black Hat Europe"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.blackhat.com/docs/eu-14/materials/eu-14-Kemerlis-Ret2dir-Deconstructing-Kernel-Isolation-wp.pdf",
      "primary_url": "https://www.blackhat.com/docs/eu-14/materials/eu-14-Kemerlis-Ret2dir-Deconstructing-Kernel-Isolation-wp.pdf",
      "parent_primary_url": "https://www.blackhat.com/docs/eu-14/materials/eu-14-Kemerlis-Ret2dir-Deconstructing-Kernel-Isolation-wp.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2014-techniques-protection-bypasses-ret2dir-deconstructing-kernel-isolation-primary-f335913a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ret2dir: Deconstructing Kernel Isolation record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: ret2dir: Deconstructing Kernel Isolation resource_label: primary resource_type: paper resource_url: https://www.blackhat.com/docs/eu-14/materials/eu-14-Kemerlis-Ret2dir-Deconstructing-Kernel-Isolation-wp.pdf parent_primary_url: https://www.blackhat.com/docs/eu-14/materials/eu-14-Kemerlis-Ret2dir-Deconstructing-Kernel-Isolation-wp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2014: \"ret2dir: Deconstructing Kernel Isolation\" by Vasileios P. Kemerlis, Michalis Polychronakis and Angelos D. Keromytis at Black Hat Europe](https://www.blackhat.com/docs/eu-14/materials/eu-14-Kemerlis-Ret2dir-Deconstructing-Kernel-Isolation-wp.pdf) [paper] [[video](ht",
      "link_types": [
        "paper",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.blackhat.com/docs/eu-14/materials/eu-14-Kemerlis-Ret2dir-Deconstructing-Kernel-Isolation-wp.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=kot-EQ9zf9k"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.blackhat.com/docs/eu-14/materials/eu-14-Kemerlis-Ret2dir-Deconstructing-Kernel-Isolation-wp.pdf"
          }
        ],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=kot-EQ9zf9k"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bypass",
        "kernel isolation"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper analyzes kernel isolation techniques and their vulnerabilities.",
      "summary_zh": "本文分析了内核隔离技术及其漏洞。",
      "source_markdown": "[2014: \"ret2dir: Deconstructing Kernel Isolation\" by Vasileios P. Kemerlis, Michalis Polychronakis and Angelos D. Keromytis at Black Hat Europe](https://www.blackhat.com/docs/eu-14/materials/eu-14-Kemerlis-Ret2dir-Deconstructing-Kernel-Isolation-wp.pdf) [paper] [[video](https://www.youtube.com/watch?v=kot-EQ9zf9k)]",
      "search_text": "ret2dir: deconstructing kernel isolation ret2dir: deconstructing kernel isolation vasileios p. kemerlis michalis polychronakis angelos d. keromytis at black hat europe   techniques protection bypasses technique: protection bypasses primary paper https://www.blackhat.com/docs/eu-14/materials/eu-14-kemerlis-ret2dir-deconstructing-kernel-isolation-wp.pdf bypass kernel isolation  defensive research this paper analyzes kernel isolation techniques and their vulnerabilities. 本文分析了内核隔离技术及其漏洞。 # ret2dir: deconstructing kernel isolation record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: ret2dir: deconstructing kernel isolation resource_label: primary resource_type: paper resource_url: https://www.blackhat.com/docs/eu-14/materials/eu-14-kemerlis-ret2dir-deconstructing-kernel-isolation-wp.pdf parent_primary_url: https://www.blackhat.com/docs/eu-14/materials/eu-14-kemerlis-ret2dir-deconstructing-kernel-isolation-wp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2014: \"ret2dir: deconstructing kernel isolation\" by vasileios p. kemerlis, michalis polychronakis and angelos d. keromytis at black hat europe](https://www.blackhat.com/docs/eu-14/materials/eu-14-kemerlis-ret2dir-deconstructing-kernel-isolation-wp.pdf) [paper] [[video](ht no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bf7d6889a58e3412",
      "item_id": "07fa2ebbfa7c57db",
      "slug": "2014-techniques-protection-bypasses-ret2dir-deconstructing-kernel-isolation-video-5bdcae9d",
      "year": 2014,
      "title": "ret2dir: Deconstructing Kernel Isolation · video",
      "item_title": "ret2dir: Deconstructing Kernel Isolation",
      "authors": [
        "Vasileios P. Kemerlis",
        "Michalis Polychronakis",
        "Angelos D. Keromytis at Black Hat Europe"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=kot-EQ9zf9k",
      "primary_url": "https://www.youtube.com/watch?v=kot-EQ9zf9k",
      "parent_primary_url": "https://www.blackhat.com/docs/eu-14/materials/eu-14-Kemerlis-Ret2dir-Deconstructing-Kernel-Isolation-wp.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2014-techniques-protection-bypasses-ret2dir-deconstructing-kernel-isolation-video-5bdcae9d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ret2dir: Deconstructing Kernel Isolation · video record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: ret2dir: Deconstructing Kernel Isolation resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=kot-EQ9zf9k parent_primary_url: https://www.blackhat.com/docs/eu-14/materials/eu-14-Kemerlis-Ret2dir-Deconstructing-Kernel-Isolation-wp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2014: \"ret2dir: Deconstructing Kernel Isolation\" by Vasileios P. Kemerlis, Michalis Polychronakis and Angelos D. Keromytis at Black Hat Europe](https://www.blackhat.com/docs/eu-14/materials/eu-14-Kemerlis-Ret2dir-Deconstructing-Kernel-Isolation-wp.pdf) [paper] [[video](https://www.youtube.com/watch?v=kot-EQ9zf9k)] cves: none and",
      "link_types": [
        "paper",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.blackhat.com/docs/eu-14/materials/eu-14-Kemerlis-Ret2dir-Deconstructing-Kernel-Isolation-wp.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=kot-EQ9zf9k"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.blackhat.com/docs/eu-14/materials/eu-14-Kemerlis-Ret2dir-Deconstructing-Kernel-Isolation-wp.pdf"
          }
        ],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=kot-EQ9zf9k"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bypass",
        "kernel isolation"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "A video presentation on kernel isolation vulnerabilities and their implications.",
      "summary_zh": "关于内核隔离漏洞及其影响的视频演示。",
      "source_markdown": "[2014: \"ret2dir: Deconstructing Kernel Isolation\" by Vasileios P. Kemerlis, Michalis Polychronakis and Angelos D. Keromytis at Black Hat Europe](https://www.blackhat.com/docs/eu-14/materials/eu-14-Kemerlis-Ret2dir-Deconstructing-Kernel-Isolation-wp.pdf) [paper] [[video](https://www.youtube.com/watch?v=kot-EQ9zf9k)]",
      "search_text": "ret2dir: deconstructing kernel isolation · video ret2dir: deconstructing kernel isolation vasileios p. kemerlis michalis polychronakis angelos d. keromytis at black hat europe   techniques protection bypasses technique: protection bypasses video video https://www.youtube.com/watch?v=kot-eq9zf9k bypass kernel isolation  defensive research a video presentation on kernel isolation vulnerabilities and their implications. 关于内核隔离漏洞及其影响的视频演示。 # ret2dir: deconstructing kernel isolation · video record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: ret2dir: deconstructing kernel isolation resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=kot-eq9zf9k parent_primary_url: https://www.blackhat.com/docs/eu-14/materials/eu-14-kemerlis-ret2dir-deconstructing-kernel-isolation-wp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2014: \"ret2dir: deconstructing kernel isolation\" by vasileios p. kemerlis, michalis polychronakis and angelos d. keromytis at black hat europe](https://www.blackhat.com/docs/eu-14/materials/eu-14-kemerlis-ret2dir-deconstructing-kernel-isolation-wp.pdf) [paper] [[video](https://www.youtube.com/watch?v=kot-eq9zf9k)] cves: none and no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "cced34951e2348ef",
      "item_id": "c5b2812484b4fa18",
      "slug": "2013-techniques-protection-bypasses-a-linux-memory-trick-primary-076012f1",
      "year": 2013,
      "title": "A Linux Memory Trick",
      "item_title": "A Linux Memory Trick",
      "authors": [
        "Dan Rosenberg"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://vulnfactory.org/blog/2013/02/06/a-linux-memory-trick/",
      "primary_url": "http://vulnfactory.org/blog/2013/02/06/a-linux-memory-trick/",
      "parent_primary_url": "http://vulnfactory.org/blog/2013/02/06/a-linux-memory-trick/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2013-techniques-protection-bypasses-a-linux-memory-trick-primary-076012f1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Linux Memory Trick record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: A Linux Memory Trick resource_label: primary resource_type: article resource_url: http://vulnfactory.org/blog/2013/02/06/a-linux-memory-trick/ parent_primary_url: http://vulnfactory.org/blog/2013/02/06/a-linux-memory-trick/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2013: \"A Linux Memory Trick\" by Dan Rosenberg](http://vulnfactory.org/blog/2013/02/06/a-linux-memory-trick/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_lin",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://vulnfactory.org/blog/2013/02/06/a-linux-memory-trick/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://vulnfactory.org/blog/2013/02/06/a-linux-memory-trick/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bypass",
        "memory"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "An article detailing a memory trick in Linux that can be exploited.",
      "summary_zh": "一篇详细介绍Linux中可被利用的内存技巧的文章。",
      "source_markdown": "[2013: \"A Linux Memory Trick\" by Dan Rosenberg](http://vulnfactory.org/blog/2013/02/06/a-linux-memory-trick/) [article]",
      "search_text": "a linux memory trick a linux memory trick dan rosenberg   techniques protection bypasses technique: protection bypasses primary article http://vulnfactory.org/blog/2013/02/06/a-linux-memory-trick/ bypass memory  defensive research an article detailing a memory trick in linux that can be exploited. 一篇详细介绍linux中可被利用的内存技巧的文章。 # a linux memory trick record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: a linux memory trick resource_label: primary resource_type: article resource_url: http://vulnfactory.org/blog/2013/02/06/a-linux-memory-trick/ parent_primary_url: http://vulnfactory.org/blog/2013/02/06/a-linux-memory-trick/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2013: \"a linux memory trick\" by dan rosenberg](http://vulnfactory.org/blog/2013/02/06/a-linux-memory-trick/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_lin no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "cddd35dddc2f937a",
      "item_id": "889b63c0a9236c8b",
      "slug": "2011-techniques-protection-bypasses-smep-what-is-it-and-how-to-beat-it-on-linux-primary-499639d3",
      "year": 2011,
      "title": "SMEP: What is It, and How to Beat It on Linux",
      "item_title": "SMEP: What is It, and How to Beat It on Linux",
      "authors": [
        "Dan Rosenberg"
      ],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://vulnfactory.org/blog/2011/06/05/smep-what-is-it-and-how-to-beat-it-on-linux/",
      "primary_url": "http://vulnfactory.org/blog/2011/06/05/smep-what-is-it-and-how-to-beat-it-on-linux/",
      "parent_primary_url": "http://vulnfactory.org/blog/2011/06/05/smep-what-is-it-and-how-to-beat-it-on-linux/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2011-techniques-protection-bypasses-smep-what-is-it-and-how-to-beat-it-on-linux-primary-499639d3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SMEP: What is It, and How to Beat It on Linux record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: SMEP: What is It, and How to Beat It on Linux resource_label: primary resource_type: article resource_url: http://vulnfactory.org/blog/2011/06/05/smep-what-is-it-and-how-to-beat-it-on-linux/ parent_primary_url: http://vulnfactory.org/blog/2011/06/05/smep-what-is-it-and-how-to-beat-it-on-linux/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2011: \"SMEP: What is It, and How to Beat It on Linux\" by Dan Rosenberg](http://vulnfactory.org/blog/2011/06/05/smep-what-is-it-and-how-to-beat-it-on-linux/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impa",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://vulnfactory.org/blog/2011/06/05/smep-what-is-it-and-how-to-beat-it-on-linux/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://vulnfactory.org/blog/2011/06/05/smep-what-is-it-and-how-to-beat-it-on-linux/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bypass",
        "SMEP"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article explains SMEP and how it can be circumvented on Linux.",
      "summary_zh": "本文解释了SMEP及其在Linux上如何被规避。",
      "source_markdown": "[2011: \"SMEP: What is It, and How to Beat It on Linux\" by Dan Rosenberg](http://vulnfactory.org/blog/2011/06/05/smep-what-is-it-and-how-to-beat-it-on-linux/) [article]",
      "search_text": "smep: what is it, and how to beat it on linux smep: what is it, and how to beat it on linux dan rosenberg   techniques protection bypasses technique: protection bypasses primary article http://vulnfactory.org/blog/2011/06/05/smep-what-is-it-and-how-to-beat-it-on-linux/ bypass smep  defensive research this article explains smep and how it can be circumvented on linux. 本文解释了smep及其在linux上如何被规避。 # smep: what is it, and how to beat it on linux record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: smep: what is it, and how to beat it on linux resource_label: primary resource_type: article resource_url: http://vulnfactory.org/blog/2011/06/05/smep-what-is-it-and-how-to-beat-it-on-linux/ parent_primary_url: http://vulnfactory.org/blog/2011/06/05/smep-what-is-it-and-how-to-beat-it-on-linux/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2011: \"smep: what is it, and how to beat it on linux\" by dan rosenberg](http://vulnfactory.org/blog/2011/06/05/smep-what-is-it-and-how-to-beat-it-on-linux/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impa no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ae716d9f6203c3fe",
      "item_id": "104784a45d76a1c2",
      "slug": "2009-techniques-protection-bypasses-bypassing-linux-null-pointer-dereference-exploit-prevention-mmap-min-addr-",
      "year": 2009,
      "title": "Bypassing Linux' NULL pointer dereference exploit prevention (mmap_min_addr)",
      "item_title": "Bypassing Linux' NULL pointer dereference exploit prevention (mmap_min_addr)",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Techniques",
      "subsection": "Protection Bypasses",
      "section_path": "Techniques / Protection Bypasses",
      "category": "Technique: Protection Bypasses",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://blog.cr0.org/2009/06/bypassing-linux-null-pointer.html",
      "primary_url": "http://blog.cr0.org/2009/06/bypassing-linux-null-pointer.html",
      "parent_primary_url": "http://blog.cr0.org/2009/06/bypassing-linux-null-pointer.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#protection-bypasses",
      "raw_path": "/raw/2009-techniques-protection-bypasses-bypassing-linux-null-pointer-dereference-exploit-prevention-mmap-min-addr-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Bypassing Linux' NULL pointer dereference exploit prevention (mmap_min_addr) record_kind: linux-kernel-resource-url section: Techniques subsection: Protection Bypasses category: Technique: Protection Bypasses item_title: Bypassing Linux' NULL pointer dereference exploit prevention (mmap_min_addr) resource_label: primary resource_type: article resource_url: http://blog.cr0.org/2009/06/bypassing-linux-null-pointer.html parent_primary_url: http://blog.cr0.org/2009/06/bypassing-linux-null-pointer.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2009: \"Bypassing Linux' NULL pointer dereference exploit prevention (mmap_min_addr)\"](http://blog.cr0.org/2009/06/bypassing-linux-null-pointer.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://blog.cr0.org/2009/06/bypassing-linux-null-pointer.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://blog.cr0.org/2009/06/bypassing-linux-null-pointer.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bypass",
        "NULL pointer"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Discusses methods to bypass NULL pointer dereference prevention in Linux.",
      "summary_zh": "讨论了绕过Linux中NULL指针解引用预防的方法。",
      "source_markdown": "[2009: \"Bypassing Linux' NULL pointer dereference exploit prevention (mmap_min_addr)\"](http://blog.cr0.org/2009/06/bypassing-linux-null-pointer.html) [article]",
      "search_text": "bypassing linux' null pointer dereference exploit prevention (mmap_min_addr) bypassing linux' null pointer dereference exploit prevention (mmap_min_addr)    techniques protection bypasses technique: protection bypasses primary article http://blog.cr0.org/2009/06/bypassing-linux-null-pointer.html bypass null pointer  defensive research discusses methods to bypass null pointer dereference prevention in linux. 讨论了绕过linux中null指针解引用预防的方法。 # bypassing linux' null pointer dereference exploit prevention (mmap_min_addr) record_kind: linux-kernel-resource-url section: techniques subsection: protection bypasses category: technique: protection bypasses item_title: bypassing linux' null pointer dereference exploit prevention (mmap_min_addr) resource_label: primary resource_type: article resource_url: http://blog.cr0.org/2009/06/bypassing-linux-null-pointer.html parent_primary_url: http://blog.cr0.org/2009/06/bypassing-linux-null-pointer.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#protection-bypasses source_item: [2009: \"bypassing linux' null pointer dereference exploit prevention (mmap_min_addr)\"](http://blog.cr0.org/2009/06/bypassing-linux-null-pointer.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bfcbb9a7b41c2efc",
      "item_id": "e9347a4f9cb50479",
      "slug": "undated-vulnerabilities-project-zero-bug-reports-primary-9b1c6037",
      "year": null,
      "title": "Project Zero bug reports",
      "item_title": "Project Zero bug reports",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "",
      "section_path": "Vulnerabilities",
      "category": "Vulnerabilities",
      "vulnerability_class": "Vulnerabilities",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://project-zero.issues.chromium.org/issues?q=componentid:1638259%20linux%20kernel",
      "primary_url": "https://project-zero.issues.chromium.org/issues?q=componentid:1638259%20linux%20kernel",
      "parent_primary_url": "https://project-zero.issues.chromium.org/issues?q=componentid:1638259%20linux%20kernel",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#vulnerabilities",
      "raw_path": "/raw/undated-vulnerabilities-project-zero-bug-reports-primary-9b1c6037.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Project Zero bug reports record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: none category: Vulnerabilities item_title: Project Zero bug reports resource_label: primary resource_type: article resource_url: https://project-zero.issues.chromium.org/issues?q=componentid:1638259%20linux%20kernel parent_primary_url: https://project-zero.issues.chromium.org/issues?q=componentid:1638259%20linux%20kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#vulnerabilities source_item: [Project Zero bug reports](https://project-zero.issues.chromium.org/issues?q=componentid:1638259%20linux%20kernel) cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's X",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://project-zero.issues.chromium.org/issues?q=componentid:1638259%20linux%20kernel"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://project-zero.issues.chromium.org/issues?q=componentid:1638259%20linux%20kernel"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "report",
        "Project Zero"
      ],
      "affected_area": "",
      "exploit_stage": "reporting",
      "summary_en": "Project Zero provides detailed bug reports on Linux kernel vulnerabilities.",
      "summary_zh": "Project Zero提供有关Linux内核漏洞的详细错误报告。",
      "source_markdown": "[Project Zero bug reports](https://project-zero.issues.chromium.org/issues?q=componentid:1638259%20linux%20kernel)",
      "search_text": "project zero bug reports project zero bug reports    vulnerabilities  vulnerabilities primary article https://project-zero.issues.chromium.org/issues?q=componentid:1638259%20linux%20kernel vulnerability report project zero  reporting project zero provides detailed bug reports on linux kernel vulnerabilities. project zero提供有关linux内核漏洞的详细错误报告。 # project zero bug reports record_kind: linux-kernel-resource-url section: vulnerabilities subsection: none category: vulnerabilities item_title: project zero bug reports resource_label: primary resource_type: article resource_url: https://project-zero.issues.chromium.org/issues?q=componentid:1638259%20linux%20kernel parent_primary_url: https://project-zero.issues.chromium.org/issues?q=componentid:1638259%20linux%20kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#vulnerabilities source_item: [project zero bug reports](https://project-zero.issues.chromium.org/issues?q=componentid:1638259%20linux%20kernel) cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's x unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6ab014ee7a4dc832",
      "item_id": "750245f99d5c454b",
      "slug": "undated-vulnerabilities-google-kernelctf-writeups-and-exploits-primary-5e02cc5c",
      "year": null,
      "title": "Google kernelCTF writeups and exploits",
      "item_title": "Google kernelCTF writeups and exploits",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "",
      "section_path": "Vulnerabilities",
      "category": "Vulnerabilities",
      "vulnerability_class": "Vulnerabilities",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/google/security-research/tree/master/pocs/linux/kernelctf",
      "primary_url": "https://github.com/google/security-research/tree/master/pocs/linux/kernelctf",
      "parent_primary_url": "https://github.com/google/security-research/tree/master/pocs/linux/kernelctf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#vulnerabilities",
      "raw_path": "/raw/undated-vulnerabilities-google-kernelctf-writeups-and-exploits-primary-5e02cc5c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Google kernelCTF writeups and exploits record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: none category: Vulnerabilities item_title: Google kernelCTF writeups and exploits resource_label: primary resource_type: article resource_url: https://github.com/google/security-research/tree/master/pocs/linux/kernelctf parent_primary_url: https://github.com/google/security-research/tree/master/pocs/linux/kernelctf source_section_url: https://github.com/xairy/linux-kernel-exploitation#vulnerabilities source_item: [Google kernelCTF writeups and exploits](https://github.com/google/security-research/tree/master/pocs/linux/kernelctf) cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices u",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/google/security-research/tree/master/pocs/linux/kernelctf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/google/security-research/tree/master/pocs/linux/kernelctf"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/security-research/tree/master/pocs/linux/kernelctf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "writeup",
        "kernelCTF"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "Google's kernelCTF writeups include various kernel exploits and analysis.",
      "summary_zh": "谷歌的kernelCTF写作包括各种内核漏洞和分析。",
      "source_markdown": "[Google kernelCTF writeups and exploits](https://github.com/google/security-research/tree/master/pocs/linux/kernelctf)",
      "search_text": "google kernelctf writeups and exploits google kernelctf writeups and exploits    vulnerabilities  vulnerabilities primary article https://github.com/google/security-research/tree/master/pocs/linux/kernelctf exploit writeup kernelctf  exploitation google's kernelctf writeups include various kernel exploits and analysis. 谷歌的kernelctf写作包括各种内核漏洞和分析。 # google kernelctf writeups and exploits record_kind: linux-kernel-resource-url section: vulnerabilities subsection: none category: vulnerabilities item_title: google kernelctf writeups and exploits resource_label: primary resource_type: article resource_url: https://github.com/google/security-research/tree/master/pocs/linux/kernelctf parent_primary_url: https://github.com/google/security-research/tree/master/pocs/linux/kernelctf source_section_url: https://github.com/xairy/linux-kernel-exploitation#vulnerabilities source_item: [google kernelctf writeups and exploits](https://github.com/google/security-research/tree/master/pocs/linux/kernelctf) cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices u unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "fcf27c06bcf8d5f3",
      "item_id": "136411e5ecbb2c44",
      "slug": "undated-vulnerabilities-assorted-advisories-primary-90f7fd49",
      "year": null,
      "title": "Assorted advisories",
      "item_title": "Assorted advisories",
      "authors": [
        "Gyorgy Miru",
        "kutyacica"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "",
      "section_path": "Vulnerabilities",
      "category": "Vulnerabilities",
      "vulnerability_class": "Vulnerabilities",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://labs.taszk.io/blog/",
      "primary_url": "https://labs.taszk.io/blog/",
      "parent_primary_url": "https://labs.taszk.io/blog/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#vulnerabilities",
      "raw_path": "/raw/undated-vulnerabilities-assorted-advisories-primary-90f7fd49.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Assorted advisories record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: none category: Vulnerabilities item_title: Assorted advisories resource_label: primary resource_type: article resource_url: https://labs.taszk.io/blog/ parent_primary_url: https://labs.taszk.io/blog/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#vulnerabilities source_item: [Assorted advisories by Gyorgy Miru and kutyacica](https://labs.taszk.io/blog/) cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://labs.taszk.io/blog/",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://labs.taszk.io/blog/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://labs.taszk.io/blog/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "advisory",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "reporting",
      "summary_en": "Assorted advisories provide insights into various vulnerabilities in the Linux kernel.",
      "summary_zh": "各种顾问提供有关Linux内核中各种漏洞的见解。",
      "source_markdown": "[Assorted advisories by Gyorgy Miru and kutyacica](https://labs.taszk.io/blog/)",
      "search_text": "assorted advisories assorted advisories gyorgy miru kutyacica   vulnerabilities  vulnerabilities primary article https://labs.taszk.io/blog/ advisory vulnerability  reporting assorted advisories provide insights into various vulnerabilities in the linux kernel. 各种顾问提供有关linux内核中各种漏洞的见解。 # assorted advisories record_kind: linux-kernel-resource-url section: vulnerabilities subsection: none category: vulnerabilities item_title: assorted advisories resource_label: primary resource_type: article resource_url: https://labs.taszk.io/blog/ parent_primary_url: https://labs.taszk.io/blog/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#vulnerabilities source_item: [assorted advisories by gyorgy miru and kutyacica](https://labs.taszk.io/blog/) cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://labs.taszk.io/blog/ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "192a6b751377cdd3",
      "item_id": "109e99a4f1d2587a",
      "slug": "2026-vulnerabilities-info-leaks-from-kernelsnitch-to-practical-msg-msg-pipe-buffer-heap-kaslr-leaks-primary-78",
      "year": 2026,
      "title": "From KernelSnitch to Practical msg_msg/pipe_buffer Heap KASLR Leaks",
      "item_title": "From KernelSnitch to Practical msg_msg/pipe_buffer Heap KASLR Leaks",
      "authors": [
        "Lukas Maar"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html",
      "primary_url": "https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html",
      "parent_primary_url": "https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2026-vulnerabilities-info-leaks-from-kernelsnitch-to-practical-msg-msg-pipe-buffer-heap-kaslr-leaks-primary-78.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# From KernelSnitch to Practical msg_msg/pipe_buffer Heap KASLR Leaks record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: From KernelSnitch to Practical msg_msg/pipe_buffer Heap KASLR Leaks resource_label: primary resource_type: article resource_url: https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html parent_primary_url: https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2026: \"From KernelSnitch to Practical msg_msg/pipe_buffer Heap KASLR Leaks\" by Lukas Maar](https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html) [article] [[code](https://github.com/lukasmaar/kernelsnitch)] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production im",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/lukasmaar/kernelsnitch"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/lukasmaar/kernelsnitch"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html",
        "https://github.com/lukasmaar/kernelsnitch"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "info-leak",
        "KASLR"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This article presents practical methods for leaking heap KASLR information.",
      "summary_zh": "本文介绍了泄露堆KASLR信息的实用方法。",
      "source_markdown": "[2026: \"From KernelSnitch to Practical msg_msg/pipe_buffer Heap KASLR Leaks\" by Lukas Maar](https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html) [article] [[code](https://github.com/lukasmaar/kernelsnitch)]",
      "search_text": "from kernelsnitch to practical msg_msg/pipe_buffer heap kaslr leaks from kernelsnitch to practical msg_msg/pipe_buffer heap kaslr leaks lukas maar   vulnerabilities info-leaks info-leaks primary article https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html info-leak kaslr  vulnerability research this article presents practical methods for leaking heap kaslr information. 本文介绍了泄露堆kaslr信息的实用方法。 # from kernelsnitch to practical msg_msg/pipe_buffer heap kaslr leaks record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: from kernelsnitch to practical msg_msg/pipe_buffer heap kaslr leaks resource_label: primary resource_type: article resource_url: https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html parent_primary_url: https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2026: \"from kernelsnitch to practical msg_msg/pipe_buffer heap kaslr leaks\" by lukas maar](https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html) [article] [[code](https://github.com/lukasmaar/kernelsnitch)] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production im unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "437208263aeaae26",
      "item_id": "109e99a4f1d2587a",
      "slug": "2026-vulnerabilities-info-leaks-from-kernelsnitch-to-practical-msg-msg-pipe-buffer-heap-kaslr-leaks-code-71728",
      "year": 2026,
      "title": "From KernelSnitch to Practical msg_msg/pipe_buffer Heap KASLR Leaks · code",
      "item_title": "From KernelSnitch to Practical msg_msg/pipe_buffer Heap KASLR Leaks",
      "authors": [
        "Lukas Maar"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/lukasmaar/kernelsnitch",
      "primary_url": "https://github.com/lukasmaar/kernelsnitch",
      "parent_primary_url": "https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2026-vulnerabilities-info-leaks-from-kernelsnitch-to-practical-msg-msg-pipe-buffer-heap-kaslr-leaks-code-71728.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# From KernelSnitch to Practical msg_msg/pipe_buffer Heap KASLR Leaks · code record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: From KernelSnitch to Practical msg_msg/pipe_buffer Heap KASLR Leaks resource_label: code resource_type: code resource_url: https://github.com/lukasmaar/kernelsnitch parent_primary_url: https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2026: \"From KernelSnitch to Practical msg_msg/pipe_buffer Heap KASLR Leaks\" by Lukas Maar](https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html) [article] [[code](https://github.com/lukasmaar/kernelsnitch)] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/lukasmaar/kernelsnitch"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/lukasmaar/kernelsnitch"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html",
        "https://github.com/lukasmaar/kernelsnitch"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "Info-leaks",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "Info-leaks",
      "summary_en": "2026 Linux kernel Info-leaks resource \"From KernelSnitch to Practical msg_msg/pipe_buffer Heap KASLR Leaks · code\"; URL type: code.",
      "summary_zh": "2026 年 Linux 内核Info-leaks资料：「From KernelSnitch to Practical msg_msg/pipe_buffer Heap KASLR Leaks · code」；URL 类型：code。",
      "source_markdown": "[2026: \"From KernelSnitch to Practical msg_msg/pipe_buffer Heap KASLR Leaks\" by Lukas Maar](https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html) [article] [[code](https://github.com/lukasmaar/kernelsnitch)]",
      "search_text": "from kernelsnitch to practical msg_msg/pipe_buffer heap kaslr leaks · code from kernelsnitch to practical msg_msg/pipe_buffer heap kaslr leaks lukas maar   vulnerabilities info-leaks info-leaks code code https://github.com/lukasmaar/kernelsnitch vulnerabilities info-leaks code  info-leaks 2026 linux kernel info-leaks resource \"from kernelsnitch to practical msg_msg/pipe_buffer heap kaslr leaks · code\"; url type: code. 2026 年 linux 内核info-leaks资料：「from kernelsnitch to practical msg_msg/pipe_buffer heap kaslr leaks · code」；url 类型：code。 # from kernelsnitch to practical msg_msg/pipe_buffer heap kaslr leaks · code record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: from kernelsnitch to practical msg_msg/pipe_buffer heap kaslr leaks resource_label: code resource_type: code resource_url: https://github.com/lukasmaar/kernelsnitch parent_primary_url: https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2026: \"from kernelsnitch to practical msg_msg/pipe_buffer heap kaslr leaks\" by lukas maar](https://lukasmaar.github.io/posts/heap-kaslr-leak/index.html) [article] [[code](https://github.com/lukasmaar/kernelsnitch)] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel- unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6ec4580757a4d22f",
      "item_id": "5f855ce5ab84addc",
      "slug": "2025-vulnerabilities-info-leaks-vulnerabilities-in-the-proc-component-of-the-can-bcm-protocol-in-the-linux-ker",
      "year": 2025,
      "title": "Vulnerabilities in the /proc Component of the CAN BCM Protocol in the Linux kernel",
      "item_title": "Vulnerabilities in the /proc Component of the CAN BCM Protocol in the Linux kernel",
      "authors": [
        "Anderson Nascimento"
      ],
      "cves": [
        "CVE-2023-52922",
        "CVE-2025-38003",
        "CVE-2025-38004"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://allelesecurity.com/wp-content/uploads/2025/12/Presentation_307.pdf",
      "primary_url": "https://allelesecurity.com/wp-content/uploads/2025/12/Presentation_307.pdf",
      "parent_primary_url": "https://allelesecurity.com/wp-content/uploads/2025/12/Presentation_307.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2025-vulnerabilities-info-leaks-vulnerabilities-in-the-proc-component-of-the-can-bcm-protocol-in-the-linux-ker.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Vulnerabilities in the /proc Component of the CAN BCM Protocol in the Linux kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: Vulnerabilities in the /proc Component of the CAN BCM Protocol in the Linux kernel resource_label: primary resource_type: slides resource_url: https://allelesecurity.com/wp-content/uploads/2025/12/Presentation_307.pdf parent_primary_url: https://allelesecurity.com/wp-content/uploads/2025/12/Presentation_307.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2025: \"Vulnerabilities in the /proc Component of the CAN BCM Protocol in the Linux kernel\" by Anderson Nascimento](https://allelesecurity.com/wp-content/uploads/2025/12/Presentation_307.pdf) [slides] [CVE-2023-52922] [CVE-2025-38003] [CVE-2025-38004] cves: CVE-2023-52922, CVE-2025-3800",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://allelesecurity.com/wp-content/uploads/2025/12/Presentation_307.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://allelesecurity.com/wp-content/uploads/2025/12/Presentation_307.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "info-leak",
        "CAN BCM"
      ],
      "affected_area": "/proc",
      "exploit_stage": "vulnerability research",
      "summary_en": "Presents vulnerabilities in the /proc component of the CAN BCM protocol.",
      "summary_zh": "介绍了CAN BCM协议中/proc组件的漏洞。",
      "source_markdown": "[2025: \"Vulnerabilities in the /proc Component of the CAN BCM Protocol in the Linux kernel\" by Anderson Nascimento](https://allelesecurity.com/wp-content/uploads/2025/12/Presentation_307.pdf) [slides] [CVE-2023-52922] [CVE-2025-38003] [CVE-2025-38004]",
      "search_text": "vulnerabilities in the /proc component of the can bcm protocol in the linux kernel vulnerabilities in the /proc component of the can bcm protocol in the linux kernel anderson nascimento cve-2023-52922 cve-2025-38003 cve-2025-38004  vulnerabilities info-leaks info-leaks primary slides https://allelesecurity.com/wp-content/uploads/2025/12/presentation_307.pdf info-leak can bcm /proc vulnerability research presents vulnerabilities in the /proc component of the can bcm protocol. 介绍了can bcm协议中/proc组件的漏洞。 # vulnerabilities in the /proc component of the can bcm protocol in the linux kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: vulnerabilities in the /proc component of the can bcm protocol in the linux kernel resource_label: primary resource_type: slides resource_url: https://allelesecurity.com/wp-content/uploads/2025/12/presentation_307.pdf parent_primary_url: https://allelesecurity.com/wp-content/uploads/2025/12/presentation_307.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2025: \"vulnerabilities in the /proc component of the can bcm protocol in the linux kernel\" by anderson nascimento](https://allelesecurity.com/wp-content/uploads/2025/12/presentation_307.pdf) [slides] [cve-2023-52922] [cve-2025-38003] [cve-2025-38004] cves: cve-2023-52922, cve-2025-3800 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "647608d860b0298e",
      "item_id": "ad1afa7f90cc892f",
      "slug": "2025-vulnerabilities-info-leaks-use-after-free-in-can-bcm-subsystem-leading-to-information-disclosure-cve-2023",
      "year": 2025,
      "title": "Use-after-free in CAN BCM subsystem leading to information disclosure (CVE-2023-52922)",
      "item_title": "Use-after-free in CAN BCM subsystem leading to information disclosure (CVE-2023-52922)",
      "authors": [],
      "cves": [
        "CVE-2023-52922"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://allelesecurity.com/use-after-free-vulnerability-in-can-bcm-subsystem-leading-to-information-disclosure-cve-2023-52922/",
      "primary_url": "https://allelesecurity.com/use-after-free-vulnerability-in-can-bcm-subsystem-leading-to-information-disclosure-cve-2023-52922/",
      "parent_primary_url": "https://allelesecurity.com/use-after-free-vulnerability-in-can-bcm-subsystem-leading-to-information-disclosure-cve-2023-52922/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2025-vulnerabilities-info-leaks-use-after-free-in-can-bcm-subsystem-leading-to-information-disclosure-cve-2023.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Use-after-free in CAN BCM subsystem leading to information disclosure (CVE-2023-52922) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: Use-after-free in CAN BCM subsystem leading to information disclosure (CVE-2023-52922) resource_label: primary resource_type: article resource_url: https://allelesecurity.com/use-after-free-vulnerability-in-can-bcm-subsystem-leading-to-information-disclosure-cve-2023-52922/ parent_primary_url: https://allelesecurity.com/use-after-free-vulnerability-in-can-bcm-subsystem-leading-to-information-disclosure-cve-2023-52922/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2025: \"Use-after-free in CAN BCM subsystem leading to information disclosure (CVE-2023-52922)\"](https://allelesecurity.com/use-after-free-vulnerability-in-can-bcm-subsystem-",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://allelesecurity.com/use-after-free-vulnerability-in-can-bcm-subsystem-leading-to-information-disclosure-cve-2023-52922/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://allelesecurity.com/use-after-free-vulnerability-in-can-bcm-subsystem-leading-to-information-disclosure-cve-2023-52922/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "info-leak",
        "use-after-free"
      ],
      "affected_area": "CAN BCM",
      "exploit_stage": "vulnerability research",
      "summary_en": "Details a use-after-free vulnerability in the CAN BCM subsystem.",
      "summary_zh": "详细介绍了CAN BCM子系统中的使用后释放漏洞。",
      "source_markdown": "[2025: \"Use-after-free in CAN BCM subsystem leading to information disclosure (CVE-2023-52922)\"](https://allelesecurity.com/use-after-free-vulnerability-in-can-bcm-subsystem-leading-to-information-disclosure-cve-2023-52922/) [article] [CVE-2023-52922]",
      "search_text": "use-after-free in can bcm subsystem leading to information disclosure (cve-2023-52922) use-after-free in can bcm subsystem leading to information disclosure (cve-2023-52922)  cve-2023-52922  vulnerabilities info-leaks info-leaks primary article https://allelesecurity.com/use-after-free-vulnerability-in-can-bcm-subsystem-leading-to-information-disclosure-cve-2023-52922/ info-leak use-after-free can bcm vulnerability research details a use-after-free vulnerability in the can bcm subsystem. 详细介绍了can bcm子系统中的使用后释放漏洞。 # use-after-free in can bcm subsystem leading to information disclosure (cve-2023-52922) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: use-after-free in can bcm subsystem leading to information disclosure (cve-2023-52922) resource_label: primary resource_type: article resource_url: https://allelesecurity.com/use-after-free-vulnerability-in-can-bcm-subsystem-leading-to-information-disclosure-cve-2023-52922/ parent_primary_url: https://allelesecurity.com/use-after-free-vulnerability-in-can-bcm-subsystem-leading-to-information-disclosure-cve-2023-52922/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2025: \"use-after-free in can bcm subsystem leading to information disclosure (cve-2023-52922)\"](https://allelesecurity.com/use-after-free-vulnerability-in-can-bcm-subsystem- unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4388ef86cd5bdbd2",
      "item_id": "237502fe4b634331",
      "slug": "2025-vulnerabilities-info-leaks-kernelsnitch-side-channel-attacks-on-kernel-data-structures-primary-07f98e10",
      "year": 2025,
      "title": "KernelSnitch: Side-Channel Attacks on Kernel Data Structures",
      "item_title": "KernelSnitch: Side-Channel Attacks on Kernel Data Structures",
      "authors": [
        "Lukas Maar et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf",
      "primary_url": "https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf",
      "parent_primary_url": "https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2025-vulnerabilities-info-leaks-kernelsnitch-side-channel-attacks-on-kernel-data-structures-primary-07f98e10.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KernelSnitch: Side-Channel Attacks on Kernel Data Structures record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: KernelSnitch: Side-Channel Attacks on Kernel Data Structures resource_label: primary resource_type: paper resource_url: https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf parent_primary_url: https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2025: \"KernelSnitch: Side-Channel Attacks on Kernel Data Structures\" by Lukas Maar et al.](https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf) [paper] [[slides](https://i.blackhat.com/Asia-25/Asia-25-Maar-KernelSnitch.pdf)] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impac",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://i.blackhat.com/Asia-25/Asia-25-Maar-KernelSnitch.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://i.blackhat.com/Asia-25/Asia-25-Maar-KernelSnitch.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "info-leak",
        "side-channel"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "Explores side-channel attacks on kernel data structures.",
      "summary_zh": "探讨了对内核数据结构的侧信道攻击。",
      "source_markdown": "[2025: \"KernelSnitch: Side-Channel Attacks on Kernel Data Structures\" by Lukas Maar et al.](https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf) [paper] [[slides](https://i.blackhat.com/Asia-25/Asia-25-Maar-KernelSnitch.pdf)]",
      "search_text": "kernelsnitch: side-channel attacks on kernel data structures kernelsnitch: side-channel attacks on kernel data structures lukas maar et al.   vulnerabilities info-leaks info-leaks primary paper https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf info-leak side-channel  vulnerability research explores side-channel attacks on kernel data structures. 探讨了对内核数据结构的侧信道攻击。 # kernelsnitch: side-channel attacks on kernel data structures record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: kernelsnitch: side-channel attacks on kernel data structures resource_label: primary resource_type: paper resource_url: https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf parent_primary_url: https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2025: \"kernelsnitch: side-channel attacks on kernel data structures\" by lukas maar et al.](https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf) [paper] [[slides](https://i.blackhat.com/asia-25/asia-25-maar-kernelsnitch.pdf)] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impac unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ea0d98ab8d85dd83",
      "item_id": "237502fe4b634331",
      "slug": "2025-vulnerabilities-info-leaks-kernelsnitch-side-channel-attacks-on-kernel-data-structures-slides-84aee193",
      "year": 2025,
      "title": "KernelSnitch: Side-Channel Attacks on Kernel Data Structures · slides",
      "item_title": "KernelSnitch: Side-Channel Attacks on Kernel Data Structures",
      "authors": [
        "Lukas Maar et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/Asia-25/Asia-25-Maar-KernelSnitch.pdf",
      "primary_url": "https://i.blackhat.com/Asia-25/Asia-25-Maar-KernelSnitch.pdf",
      "parent_primary_url": "https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2025-vulnerabilities-info-leaks-kernelsnitch-side-channel-attacks-on-kernel-data-structures-slides-84aee193.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KernelSnitch: Side-Channel Attacks on Kernel Data Structures · slides record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: KernelSnitch: Side-Channel Attacks on Kernel Data Structures resource_label: slides resource_type: slides resource_url: https://i.blackhat.com/Asia-25/Asia-25-Maar-KernelSnitch.pdf parent_primary_url: https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2025: \"KernelSnitch: Side-Channel Attacks on Kernel Data Structures\" by Lukas Maar et al.](https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf) [paper] [[slides](https://i.blackhat.com/Asia-25/Asia-25-Maar-KernelSnitch.pdf)] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android produ",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://i.blackhat.com/Asia-25/Asia-25-Maar-KernelSnitch.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://i.blackhat.com/Asia-25/Asia-25-Maar-KernelSnitch.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "Info-leaks",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "Info-leaks",
      "summary_en": "2025 Linux kernel Info-leaks resource \"KernelSnitch: Side-Channel Attacks on Kernel Data Structures · slides\"; URL type: slides.",
      "summary_zh": "2025 年 Linux 内核Info-leaks资料：「KernelSnitch: Side-Channel Attacks on Kernel Data Structures · slides」；URL 类型：slides。",
      "source_markdown": "[2025: \"KernelSnitch: Side-Channel Attacks on Kernel Data Structures\" by Lukas Maar et al.](https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf) [paper] [[slides](https://i.blackhat.com/Asia-25/Asia-25-Maar-KernelSnitch.pdf)]",
      "search_text": "kernelsnitch: side-channel attacks on kernel data structures · slides kernelsnitch: side-channel attacks on kernel data structures lukas maar et al.   vulnerabilities info-leaks info-leaks slides slides https://i.blackhat.com/asia-25/asia-25-maar-kernelsnitch.pdf vulnerabilities info-leaks slides  info-leaks 2025 linux kernel info-leaks resource \"kernelsnitch: side-channel attacks on kernel data structures · slides\"; url type: slides. 2025 年 linux 内核info-leaks资料：「kernelsnitch: side-channel attacks on kernel data structures · slides」；url 类型：slides。 # kernelsnitch: side-channel attacks on kernel data structures · slides record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: kernelsnitch: side-channel attacks on kernel data structures resource_label: slides resource_type: slides resource_url: https://i.blackhat.com/asia-25/asia-25-maar-kernelsnitch.pdf parent_primary_url: https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2025: \"kernelsnitch: side-channel attacks on kernel data structures\" by lukas maar et al.](https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf) [paper] [[slides](https://i.blackhat.com/asia-25/asia-25-maar-kernelsnitch.pdf)] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android produ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "baa911cb482aa2a1",
      "item_id": "49d00387513164bb",
      "slug": "2024-vulnerabilities-info-leaks-linux-vdso-vvar-primary-3f62ff93",
      "year": 2024,
      "title": "Linux vDSO & VVAR",
      "item_title": "Linux vDSO & VVAR",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2023-23586"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2024/12/11/linux-vdso-and-vvar.html",
      "primary_url": "https://u1f383.github.io/linux/2024/12/11/linux-vdso-and-vvar.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2024/12/11/linux-vdso-and-vvar.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2024-vulnerabilities-info-leaks-linux-vdso-vvar-primary-3f62ff93.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux vDSO & VVAR record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: Linux vDSO & VVAR resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/12/11/linux-vdso-and-vvar.html parent_primary_url: https://u1f383.github.io/linux/2024/12/11/linux-vdso-and-vvar.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2024: \"Linux vDSO & VVAR\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/12/11/linux-vdso-and-vvar.html) [article] [CVE-2023-23586] cves: CVE-2023-23586 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than L",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/12/11/linux-vdso-and-vvar.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/12/11/linux-vdso-and-vvar.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2024/12/11/linux-vdso-and-vvar.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "info-leak",
        "vDSO"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "Analyzes vulnerabilities related to Linux vDSO and VVAR.",
      "summary_zh": "分析与Linux vDSO和VVAR相关的漏洞。",
      "source_markdown": "[2024: \"Linux vDSO & VVAR\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/12/11/linux-vdso-and-vvar.html) [article] [CVE-2023-23586]",
      "search_text": "linux vdso & vvar linux vdso & vvar pumpkin chang cve-2023-23586  vulnerabilities info-leaks info-leaks primary article https://u1f383.github.io/linux/2024/12/11/linux-vdso-and-vvar.html info-leak vdso  vulnerability research analyzes vulnerabilities related to linux vdso and vvar. 分析与linux vdso和vvar相关的漏洞。 # linux vdso & vvar record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: linux vdso & vvar resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/12/11/linux-vdso-and-vvar.html parent_primary_url: https://u1f383.github.io/linux/2024/12/11/linux-vdso-and-vvar.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2024: \"linux vdso & vvar\" by pumpkin chang](https://u1f383.github.io/linux/2024/12/11/linux-vdso-and-vvar.html) [article] [cve-2023-23586] cves: cve-2023-23586 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than l unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ec71f7b3d1d0c293",
      "item_id": "f42a62164388f5a0",
      "slug": "2024-vulnerabilities-info-leaks-cpu-speculation-vulnerabilities-and-mitigations-in-the-linux-kernel-primary-8d",
      "year": 2024,
      "title": "CPU Speculation Vulnerabilities And Mitigations in the Linux Kernel",
      "item_title": "CPU Speculation Vulnerabilities And Mitigations in the Linux Kernel",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [],
      "tags": [
        "Spectre V1",
        "Spectre V2"
      ],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2024/08/09/cpu-speculation-vulnerabilities-and-mitigations-in-the-linux-kernel.html",
      "primary_url": "https://u1f383.github.io/linux/2024/08/09/cpu-speculation-vulnerabilities-and-mitigations-in-the-linux-kernel.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2024/08/09/cpu-speculation-vulnerabilities-and-mitigations-in-the-linux-kernel.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2024-vulnerabilities-info-leaks-cpu-speculation-vulnerabilities-and-mitigations-in-the-linux-kernel-primary-8d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CPU Speculation Vulnerabilities And Mitigations in the Linux Kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: CPU Speculation Vulnerabilities And Mitigations in the Linux Kernel resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/08/09/cpu-speculation-vulnerabilities-and-mitigations-in-the-linux-kernel.html parent_primary_url: https://u1f383.github.io/linux/2024/08/09/cpu-speculation-vulnerabilities-and-mitigations-in-the-linux-kernel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2024: \"CPU Speculation Vulnerabilities And Mitigations in the Linux Kernel\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/08/09/cpu-speculation-vulnerabilities-and-mitigations-in-the-linux-kernel.html) [article] [Spectre V1] [S",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/08/09/cpu-speculation-vulnerabilities-and-mitigations-in-the-linux-kernel.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/08/09/cpu-speculation-vulnerabilities-and-mitigations-in-the-linux-kernel.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2024/08/09/cpu-speculation-vulnerabilities-and-mitigations-in-the-linux-kernel.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "info-leak",
        "speculation"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "Discusses CPU speculation vulnerabilities and their mitigations in Linux.",
      "summary_zh": "讨论了Linux中的CPU推测漏洞及其缓解措施。",
      "source_markdown": "[2024: \"CPU Speculation Vulnerabilities And Mitigations in the Linux Kernel\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/08/09/cpu-speculation-vulnerabilities-and-mitigations-in-the-linux-kernel.html) [article] [Spectre V1] [Spectre V2]",
      "search_text": "cpu speculation vulnerabilities and mitigations in the linux kernel cpu speculation vulnerabilities and mitigations in the linux kernel pumpkin chang  spectre v1 spectre v2 vulnerabilities info-leaks info-leaks primary article https://u1f383.github.io/linux/2024/08/09/cpu-speculation-vulnerabilities-and-mitigations-in-the-linux-kernel.html info-leak speculation  vulnerability research discusses cpu speculation vulnerabilities and their mitigations in linux. 讨论了linux中的cpu推测漏洞及其缓解措施。 # cpu speculation vulnerabilities and mitigations in the linux kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: cpu speculation vulnerabilities and mitigations in the linux kernel resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/08/09/cpu-speculation-vulnerabilities-and-mitigations-in-the-linux-kernel.html parent_primary_url: https://u1f383.github.io/linux/2024/08/09/cpu-speculation-vulnerabilities-and-mitigations-in-the-linux-kernel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2024: \"cpu speculation vulnerabilities and mitigations in the linux kernel\" by pumpkin chang](https://u1f383.github.io/linux/2024/08/09/cpu-speculation-vulnerabilities-and-mitigations-in-the-linux-kernel.html) [article] [spectre v1] [s unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "9f5c435ebe886266",
      "item_id": "ce5c35eda9fa04f6",
      "slug": "2024-vulnerabilities-info-leaks-linux-kernel-meltdown-mitigation-analysis-primary-96554dcf",
      "year": 2024,
      "title": "Linux Kernel Meltdown Mitigation Analysis",
      "item_title": "Linux Kernel Meltdown Mitigation Analysis",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [],
      "tags": [
        "Meltdown"
      ],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2024/08/01/linux-kernel-meltdown-mitigation-analysis.html",
      "primary_url": "https://u1f383.github.io/linux/2024/08/01/linux-kernel-meltdown-mitigation-analysis.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2024/08/01/linux-kernel-meltdown-mitigation-analysis.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2024-vulnerabilities-info-leaks-linux-kernel-meltdown-mitigation-analysis-primary-96554dcf.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Meltdown Mitigation Analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: Linux Kernel Meltdown Mitigation Analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/08/01/linux-kernel-meltdown-mitigation-analysis.html parent_primary_url: https://u1f383.github.io/linux/2024/08/01/linux-kernel-meltdown-mitigation-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2024: \"Linux Kernel Meltdown Mitigation Analysis\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/08/01/linux-kernel-meltdown-mitigation-analysis.html) [article] [Meltdown] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and ve",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/08/01/linux-kernel-meltdown-mitigation-analysis.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/08/01/linux-kernel-meltdown-mitigation-analysis.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2024/08/01/linux-kernel-meltdown-mitigation-analysis.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "info-leak",
        "Meltdown"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "Analyzes mitigations for the Meltdown vulnerability in the Linux kernel.",
      "summary_zh": "分析了Linux内核中Meltdown漏洞的缓解措施。",
      "source_markdown": "[2024: \"Linux Kernel Meltdown Mitigation Analysis\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/08/01/linux-kernel-meltdown-mitigation-analysis.html) [article] [Meltdown]",
      "search_text": "linux kernel meltdown mitigation analysis linux kernel meltdown mitigation analysis pumpkin chang  meltdown vulnerabilities info-leaks info-leaks primary article https://u1f383.github.io/linux/2024/08/01/linux-kernel-meltdown-mitigation-analysis.html info-leak meltdown  vulnerability research analyzes mitigations for the meltdown vulnerability in the linux kernel. 分析了linux内核中meltdown漏洞的缓解措施。 # linux kernel meltdown mitigation analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: linux kernel meltdown mitigation analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/08/01/linux-kernel-meltdown-mitigation-analysis.html parent_primary_url: https://u1f383.github.io/linux/2024/08/01/linux-kernel-meltdown-mitigation-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2024: \"linux kernel meltdown mitigation analysis\" by pumpkin chang](https://u1f383.github.io/linux/2024/08/01/linux-kernel-meltdown-mitigation-analysis.html) [article] [meltdown] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and ve unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "51d9b66f05df1a90",
      "item_id": "c08f8873be72bd8d",
      "slug": "2024-vulnerabilities-info-leaks-out-of-the-kernel-into-the-tokens-primary-fb81a6f8",
      "year": 2024,
      "title": "Out of the kernel, into the tokens",
      "item_title": "Out of the kernel, into the tokens",
      "authors": [
        "Max Ammann",
        "Emilio Lopez"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.trailofbits.com/2024/03/08/out-of-the-kernel-into-the-tokens/",
      "primary_url": "https://blog.trailofbits.com/2024/03/08/out-of-the-kernel-into-the-tokens/",
      "parent_primary_url": "https://blog.trailofbits.com/2024/03/08/out-of-the-kernel-into-the-tokens/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2024-vulnerabilities-info-leaks-out-of-the-kernel-into-the-tokens-primary-fb81a6f8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Out of the kernel, into the tokens record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: Out of the kernel, into the tokens resource_label: primary resource_type: article resource_url: https://blog.trailofbits.com/2024/03/08/out-of-the-kernel-into-the-tokens/ parent_primary_url: https://blog.trailofbits.com/2024/03/08/out-of-the-kernel-into-the-tokens/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2024: \"Out of the kernel, into the tokens\" by Max Ammann and Emilio Lopez](https://blog.trailofbits.com/2024/03/08/out-of-the-kernel-into-the-tokens/) [article] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reaso",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.trailofbits.com/2024/03/08/out-of-the-kernel-into-the-tokens/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.trailofbits.com/2024/03/08/out-of-the-kernel-into-the-tokens/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "Info-leaks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Info-leaks",
      "summary_en": "2024 Linux kernel Info-leaks resource \"Out of the kernel, into the tokens\"; URL type: article.",
      "summary_zh": "2024 年 Linux 内核Info-leaks资料：「Out of the kernel, into the tokens」；URL 类型：article。",
      "source_markdown": "[2024: \"Out of the kernel, into the tokens\" by Max Ammann and Emilio Lopez](https://blog.trailofbits.com/2024/03/08/out-of-the-kernel-into-the-tokens/) [article]",
      "search_text": "out of the kernel, into the tokens out of the kernel, into the tokens max ammann emilio lopez   vulnerabilities info-leaks info-leaks primary article https://blog.trailofbits.com/2024/03/08/out-of-the-kernel-into-the-tokens/ vulnerabilities info-leaks article  info-leaks 2024 linux kernel info-leaks resource \"out of the kernel, into the tokens\"; url type: article. 2024 年 linux 内核info-leaks资料：「out of the kernel, into the tokens」；url 类型：article。 # out of the kernel, into the tokens record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: out of the kernel, into the tokens resource_label: primary resource_type: article resource_url: https://blog.trailofbits.com/2024/03/08/out-of-the-kernel-into-the-tokens/ parent_primary_url: https://blog.trailofbits.com/2024/03/08/out-of-the-kernel-into-the-tokens/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2024: \"out of the kernel, into the tokens\" by max ammann and emilio lopez](https://blog.trailofbits.com/2024/03/08/out-of-the-kernel-into-the-tokens/) [article] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reaso unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5aa910d5774164e2",
      "item_id": "fb111752b4192ce7",
      "slug": "2023-vulnerabilities-info-leaks-the-code-that-wasn-t-there-reading-memory-on-an-android-device-primary-a366b8c",
      "year": 2023,
      "title": "The code that wasn’t there: Reading memory on an Android device",
      "item_title": "The code that wasn’t there: Reading memory on an Android device",
      "authors": [
        "accident\" by Man Yue Mo"
      ],
      "cves": [
        "CVE-2022-25664"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.blog/2023-02-23-the-code-that-wasnt-there-reading-memory-on-an-android-device-by-accident/",
      "primary_url": "https://github.blog/2023-02-23-the-code-that-wasnt-there-reading-memory-on-an-android-device-by-accident/",
      "parent_primary_url": "https://github.blog/2023-02-23-the-code-that-wasnt-there-reading-memory-on-an-android-device-by-accident/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2023-vulnerabilities-info-leaks-the-code-that-wasn-t-there-reading-memory-on-an-android-device-primary-a366b8c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The code that wasn’t there: Reading memory on an Android device record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: The code that wasn’t there: Reading memory on an Android device resource_label: primary resource_type: article resource_url: https://github.blog/2023-02-23-the-code-that-wasnt-there-reading-memory-on-an-android-device-by-accident/ parent_primary_url: https://github.blog/2023-02-23-the-code-that-wasnt-there-reading-memory-on-an-android-device-by-accident/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2023: \"The code that wasn’t there: Reading memory on an Android device by accident\" by Man Yue Mo](https://github.blog/2023-02-23-the-code-that-wasnt-there-reading-memory-on-an-android-device-by-accident/) [article] [CVE-2022-25664] cves: CVE-2022-25664 android",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.blog/2023-02-23-the-code-that-wasnt-there-reading-memory-on-an-android-device-by-accident/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.blog/2023-02-23-the-code-that-wasnt-there-reading-memory-on-an-android-device-by-accident/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.blog/2023-02-23-the-code-that-wasnt-there-reading-memory-on-an-android-device-by-accident/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "info-leak",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "Describes an incident of unintended memory reading on an Android device.",
      "summary_zh": "描述了在Android设备上意外读取内存的事件。",
      "source_markdown": "[2023: \"The code that wasn’t there: Reading memory on an Android device by accident\" by Man Yue Mo](https://github.blog/2023-02-23-the-code-that-wasnt-there-reading-memory-on-an-android-device-by-accident/) [article] [CVE-2022-25664]",
      "search_text": "the code that wasn’t there: reading memory on an android device the code that wasn’t there: reading memory on an android device accident\" by man yue mo cve-2022-25664  vulnerabilities info-leaks info-leaks primary article https://github.blog/2023-02-23-the-code-that-wasnt-there-reading-memory-on-an-android-device-by-accident/ info-leak android  vulnerability research describes an incident of unintended memory reading on an android device. 描述了在android设备上意外读取内存的事件。 # the code that wasn’t there: reading memory on an android device record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: the code that wasn’t there: reading memory on an android device resource_label: primary resource_type: article resource_url: https://github.blog/2023-02-23-the-code-that-wasnt-there-reading-memory-on-an-android-device-by-accident/ parent_primary_url: https://github.blog/2023-02-23-the-code-that-wasnt-there-reading-memory-on-an-android-device-by-accident/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2023: \"the code that wasn’t there: reading memory on an android device by accident\" by man yue mo](https://github.blog/2023-02-23-the-code-that-wasnt-there-reading-memory-on-an-android-device-by-accident/) [article] [cve-2022-25664] cves: cve-2022-25664 android yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "3f1ed96d2fbc6fd9",
      "item_id": "57681e95419c40bd",
      "slug": "2023-vulnerabilities-info-leaks-entrybleed-a-universal-kaslr-bypass-against-kpti-on-linux-primary-0edcbda0",
      "year": 2023,
      "title": "EntryBleed: A Universal KASLR Bypass against KPTI on Linux",
      "item_title": "EntryBleed: A Universal KASLR Bypass against KPTI on Linux",
      "authors": [],
      "cves": [
        "CVE-2022-4543"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://dl.acm.org/doi/pdf/10.1145/3623652.3623669",
      "primary_url": "https://dl.acm.org/doi/pdf/10.1145/3623652.3623669",
      "parent_primary_url": "https://dl.acm.org/doi/pdf/10.1145/3623652.3623669",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2023-vulnerabilities-info-leaks-entrybleed-a-universal-kaslr-bypass-against-kpti-on-linux-primary-0edcbda0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# EntryBleed: A Universal KASLR Bypass against KPTI on Linux record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: EntryBleed: A Universal KASLR Bypass against KPTI on Linux resource_label: primary resource_type: paper resource_url: https://dl.acm.org/doi/pdf/10.1145/3623652.3623669 parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3623652.3623669 source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2023: \"EntryBleed: A Universal KASLR Bypass against KPTI on Linux\"](https://dl.acm.org/doi/pdf/10.1145/3623652.3623669) [paper] [CVE-2022-4543] cves: CVE-2022-4543 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Product",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://dl.acm.org/doi/pdf/10.1145/3623652.3623669"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://dl.acm.org/doi/pdf/10.1145/3623652.3623669"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "info-leak",
        "KASLR"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "Presents a universal KASLR bypass technique against KPTI on Linux.",
      "summary_zh": "提出了一种针对Linux上KPTI的通用KASLR绕过技术。",
      "source_markdown": "[2023: \"EntryBleed: A Universal KASLR Bypass against KPTI on Linux\"](https://dl.acm.org/doi/pdf/10.1145/3623652.3623669) [paper] [CVE-2022-4543]",
      "search_text": "entrybleed: a universal kaslr bypass against kpti on linux entrybleed: a universal kaslr bypass against kpti on linux  cve-2022-4543  vulnerabilities info-leaks info-leaks primary paper https://dl.acm.org/doi/pdf/10.1145/3623652.3623669 info-leak kaslr  vulnerability research presents a universal kaslr bypass technique against kpti on linux. 提出了一种针对linux上kpti的通用kaslr绕过技术。 # entrybleed: a universal kaslr bypass against kpti on linux record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: entrybleed: a universal kaslr bypass against kpti on linux resource_label: primary resource_type: paper resource_url: https://dl.acm.org/doi/pdf/10.1145/3623652.3623669 parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3623652.3623669 source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2023: \"entrybleed: a universal kaslr bypass against kpti on linux\"](https://dl.acm.org/doi/pdf/10.1145/3623652.3623669) [paper] [cve-2022-4543] cves: cve-2022-4543 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: product unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5cd1018c5d55d4cb",
      "item_id": "ff338acf43541734",
      "slug": "2022-vulnerabilities-info-leaks-entrybleed-breaking-kaslr-under-kpti-with-prefetch-cve-2022-4543-primary-58bcd",
      "year": 2022,
      "title": "EntryBleed: Breaking KASLR under KPTI with Prefetch (CVE-2022-4543)",
      "item_title": "EntryBleed: Breaking KASLR under KPTI with Prefetch (CVE-2022-4543)",
      "authors": [],
      "cves": [
        "CVE-2022-4543"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.willsroot.io/2022/12/entrybleed.html",
      "primary_url": "https://www.willsroot.io/2022/12/entrybleed.html",
      "parent_primary_url": "https://www.willsroot.io/2022/12/entrybleed.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2022-vulnerabilities-info-leaks-entrybleed-breaking-kaslr-under-kpti-with-prefetch-cve-2022-4543-primary-58bcd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# EntryBleed: Breaking KASLR under KPTI with Prefetch (CVE-2022-4543) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: EntryBleed: Breaking KASLR under KPTI with Prefetch (CVE-2022-4543) resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2022/12/entrybleed.html parent_primary_url: https://www.willsroot.io/2022/12/entrybleed.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2022: \"EntryBleed: Breaking KASLR under KPTI with Prefetch (CVE-2022-4543)\"](https://www.willsroot.io/2022/12/entrybleed.html) [article] [CVE-2022-4543] cves: CVE-2022-4543 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no i",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.willsroot.io/2022/12/entrybleed.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.willsroot.io/2022/12/entrybleed.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "info-leak",
        "KASLR"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "Discusses breaking KASLR under KPTI using prefetch techniques.",
      "summary_zh": "讨论了使用预取技术打破KPTI下的KASLR。",
      "source_markdown": "[2022: \"EntryBleed: Breaking KASLR under KPTI with Prefetch (CVE-2022-4543)\"](https://www.willsroot.io/2022/12/entrybleed.html) [article] [CVE-2022-4543]",
      "search_text": "entrybleed: breaking kaslr under kpti with prefetch (cve-2022-4543) entrybleed: breaking kaslr under kpti with prefetch (cve-2022-4543)  cve-2022-4543  vulnerabilities info-leaks info-leaks primary article https://www.willsroot.io/2022/12/entrybleed.html info-leak kaslr  vulnerability research discusses breaking kaslr under kpti using prefetch techniques. 讨论了使用预取技术打破kpti下的kaslr。 # entrybleed: breaking kaslr under kpti with prefetch (cve-2022-4543) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: entrybleed: breaking kaslr under kpti with prefetch (cve-2022-4543) resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2022/12/entrybleed.html parent_primary_url: https://www.willsroot.io/2022/12/entrybleed.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2022: \"entrybleed: breaking kaslr under kpti with prefetch (cve-2022-4543)\"](https://www.willsroot.io/2022/12/entrybleed.html) [article] [cve-2022-4543] cves: cve-2022-4543 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no i unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a65dbe55c43bbae4",
      "item_id": "82df40727f3a1066",
      "slug": "2022-vulnerabilities-info-leaks-yet-another-bug-into-netfilter-primary-b07a609f",
      "year": 2022,
      "title": "Yet another bug into Netfilter",
      "item_title": "Yet another bug into Netfilter",
      "authors": [
        "Arthur Mongodin"
      ],
      "cves": [
        "CVE-2022-1972"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.randorisec.fr/yet-another-bug-netfilter/",
      "primary_url": "https://www.randorisec.fr/yet-another-bug-netfilter/",
      "parent_primary_url": "https://www.randorisec.fr/yet-another-bug-netfilter/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2022-vulnerabilities-info-leaks-yet-another-bug-into-netfilter-primary-b07a609f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Yet another bug into Netfilter record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: Yet another bug into Netfilter resource_label: primary resource_type: article resource_url: https://www.randorisec.fr/yet-another-bug-netfilter/ parent_primary_url: https://www.randorisec.fr/yet-another-bug-netfilter/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2022: \"Yet another bug into Netfilter\" by Arthur Mongodin](https://www.randorisec.fr/yet-another-bug-netfilter/) [article] [CVE-2022-1972] cves: CVE-2022-1972 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linu",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.randorisec.fr/yet-another-bug-netfilter/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.randorisec.fr/yet-another-bug-netfilter/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "info-leak",
        "Netfilter"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "Reports a bug in the Netfilter subsystem of the Linux kernel.",
      "summary_zh": "报告了Linux内核中Netfilter子系统的一个漏洞。",
      "source_markdown": "[2022: \"Yet another bug into Netfilter\" by Arthur Mongodin](https://www.randorisec.fr/yet-another-bug-netfilter/) [article] [CVE-2022-1972]",
      "search_text": "yet another bug into netfilter yet another bug into netfilter arthur mongodin cve-2022-1972  vulnerabilities info-leaks info-leaks primary article https://www.randorisec.fr/yet-another-bug-netfilter/ info-leak netfilter  vulnerability research reports a bug in the netfilter subsystem of the linux kernel. 报告了linux内核中netfilter子系统的一个漏洞。 # yet another bug into netfilter record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: yet another bug into netfilter resource_label: primary resource_type: article resource_url: https://www.randorisec.fr/yet-another-bug-netfilter/ parent_primary_url: https://www.randorisec.fr/yet-another-bug-netfilter/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2022: \"yet another bug into netfilter\" by arthur mongodin](https://www.randorisec.fr/yet-another-bug-netfilter/) [article] [cve-2022-1972] cves: cve-2022-1972 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linu unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6d9520e0bc3b1cea",
      "item_id": "c41d321111fcb851",
      "slug": "2022-vulnerabilities-info-leaks-the-amd-branch-mis-predictor-just-set-it-and-forget-it-primary-512e1392",
      "year": 2022,
      "title": "The AMD Branch (Mis)predictor: Just Set it and Forget it!",
      "item_title": "The AMD Branch (Mis)predictor: Just Set it and Forget it!",
      "authors": [
        "Pawel Wieczorkiewicz"
      ],
      "cves": [],
      "tags": [
        "Spectre"
      ],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://grsecurity.net/amd_branch_mispredictor_just_set_it_and_forget_it",
      "primary_url": "https://grsecurity.net/amd_branch_mispredictor_just_set_it_and_forget_it",
      "parent_primary_url": "https://grsecurity.net/amd_branch_mispredictor_just_set_it_and_forget_it",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2022-vulnerabilities-info-leaks-the-amd-branch-mis-predictor-just-set-it-and-forget-it-primary-512e1392.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The AMD Branch (Mis)predictor: Just Set it and Forget it! record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: The AMD Branch (Mis)predictor: Just Set it and Forget it! resource_label: primary resource_type: article resource_url: https://grsecurity.net/amd_branch_mispredictor_just_set_it_and_forget_it parent_primary_url: https://grsecurity.net/amd_branch_mispredictor_just_set_it_and_forget_it source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2022: \"The AMD Branch (Mis)predictor: Just Set it and Forget it!\" by Pawel Wieczorkiewicz](https://grsecurity.net/amd_branch_mispredictor_just_set_it_and_forget_it) [article] [Spectre] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://grsecurity.net/amd_branch_mispredictor_just_set_it_and_forget_it"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://grsecurity.net/amd_branch_mispredictor_just_set_it_and_forget_it"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Spectre"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses the AMD Branch predictor vulnerability related to Spectre.",
      "summary_zh": "本文讨论了与Spectre相关的AMD分支预测器漏洞。",
      "source_markdown": "[2022: \"The AMD Branch (Mis)predictor: Just Set it and Forget it!\" by Pawel Wieczorkiewicz](https://grsecurity.net/amd_branch_mispredictor_just_set_it_and_forget_it) [article] [Spectre]",
      "search_text": "the amd branch (mis)predictor: just set it and forget it! the amd branch (mis)predictor: just set it and forget it! pawel wieczorkiewicz  spectre vulnerabilities info-leaks info-leaks primary article https://grsecurity.net/amd_branch_mispredictor_just_set_it_and_forget_it spectre  vulnerability this article discusses the amd branch predictor vulnerability related to spectre. 本文讨论了与spectre相关的amd分支预测器漏洞。 # the amd branch (mis)predictor: just set it and forget it! record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: the amd branch (mis)predictor: just set it and forget it! resource_label: primary resource_type: article resource_url: https://grsecurity.net/amd_branch_mispredictor_just_set_it_and_forget_it parent_primary_url: https://grsecurity.net/amd_branch_mispredictor_just_set_it_and_forget_it source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2022: \"the amd branch (mis)predictor: just set it and forget it!\" by pawel wieczorkiewicz](https://grsecurity.net/amd_branch_mispredictor_just_set_it_and_forget_it) [article] [spectre] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f4820ba2494c76ad",
      "item_id": "44ed48deb4c5d3c7",
      "slug": "2022-vulnerabilities-info-leaks-the-amd-branch-mis-predictor-part-2-where-no-cpu-has-gone-before-cve-2021-2634",
      "year": 2022,
      "title": "The AMD Branch (Mis)predictor Part 2: Where No CPU has Gone Before (CVE-2021-26341)",
      "item_title": "The AMD Branch (Mis)predictor Part 2: Where No CPU has Gone Before (CVE-2021-26341)",
      "authors": [
        "Pawel Wieczorkiewicz"
      ],
      "cves": [
        "CVE-2021-26341"
      ],
      "tags": [
        "Spectre"
      ],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://grsecurity.net/amd_branch_mispredictor_part_2_where_no_cpu_has_gone_before",
      "primary_url": "https://grsecurity.net/amd_branch_mispredictor_part_2_where_no_cpu_has_gone_before",
      "parent_primary_url": "https://grsecurity.net/amd_branch_mispredictor_part_2_where_no_cpu_has_gone_before",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2022-vulnerabilities-info-leaks-the-amd-branch-mis-predictor-part-2-where-no-cpu-has-gone-before-cve-2021-2634.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The AMD Branch (Mis)predictor Part 2: Where No CPU has Gone Before (CVE-2021-26341) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: The AMD Branch (Mis)predictor Part 2: Where No CPU has Gone Before (CVE-2021-26341) resource_label: primary resource_type: article resource_url: https://grsecurity.net/amd_branch_mispredictor_part_2_where_no_cpu_has_gone_before parent_primary_url: https://grsecurity.net/amd_branch_mispredictor_part_2_where_no_cpu_has_gone_before source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2022: \"The AMD Branch (Mis)predictor Part 2: Where No CPU has Gone Before (CVE-2021-26341)\" by Pawel Wieczorkiewicz](https://grsecurity.net/amd_branch_mispredictor_part_2_where_no_cpu_has_gone_before) [article] [Spectre] cves: CVE-2021-26341 android_impact_status: un",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://grsecurity.net/amd_branch_mispredictor_part_2_where_no_cpu_has_gone_before"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://grsecurity.net/amd_branch_mispredictor_part_2_where_no_cpu_has_gone_before"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Spectre"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The article analyzes the AMD Branch predictor vulnerability (CVE-2021-26341) and its implications.",
      "summary_zh": "本文分析了AMD分支预测器漏洞（CVE-2021-26341）及其影响。",
      "source_markdown": "[2022: \"The AMD Branch (Mis)predictor Part 2: Where No CPU has Gone Before (CVE-2021-26341)\" by Pawel Wieczorkiewicz](https://grsecurity.net/amd_branch_mispredictor_part_2_where_no_cpu_has_gone_before) [article] [Spectre]",
      "search_text": "the amd branch (mis)predictor part 2: where no cpu has gone before (cve-2021-26341) the amd branch (mis)predictor part 2: where no cpu has gone before (cve-2021-26341) pawel wieczorkiewicz cve-2021-26341 spectre vulnerabilities info-leaks info-leaks primary article https://grsecurity.net/amd_branch_mispredictor_part_2_where_no_cpu_has_gone_before spectre  vulnerability the article analyzes the amd branch predictor vulnerability (cve-2021-26341) and its implications. 本文分析了amd分支预测器漏洞（cve-2021-26341）及其影响。 # the amd branch (mis)predictor part 2: where no cpu has gone before (cve-2021-26341) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: the amd branch (mis)predictor part 2: where no cpu has gone before (cve-2021-26341) resource_label: primary resource_type: article resource_url: https://grsecurity.net/amd_branch_mispredictor_part_2_where_no_cpu_has_gone_before parent_primary_url: https://grsecurity.net/amd_branch_mispredictor_part_2_where_no_cpu_has_gone_before source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2022: \"the amd branch (mis)predictor part 2: where no cpu has gone before (cve-2021-26341)\" by pawel wieczorkiewicz](https://grsecurity.net/amd_branch_mispredictor_part_2_where_no_cpu_has_gone_before) [article] [spectre] cves: cve-2021-26341 android_impact_status: un unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e2181c4d43c20501",
      "item_id": "67d6fca4ac6ed664",
      "slug": "2021-vulnerabilities-info-leaks-samsung-s10-s9-kernel-4-14-android-10-kernel-function-address-text-and-heap-ad",
      "year": 2021,
      "title": "Samsung S10+/S9 kernel 4.14 (Android 10) Kernel Function Address (.text) and Heap Address Information Leak",
      "item_title": "Samsung S10+/S9 kernel 4.14 (Android 10) Kernel Function Address (.text) and Heap Address Information Leak",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ssd-disclosure.com/ssd-advisory-samsung-s10-s9-kernel-4-14-android-10-kernel-function-address-text-and-heap-address-information-leak/",
      "primary_url": "https://ssd-disclosure.com/ssd-advisory-samsung-s10-s9-kernel-4-14-android-10-kernel-function-address-text-and-heap-address-information-leak/",
      "parent_primary_url": "https://ssd-disclosure.com/ssd-advisory-samsung-s10-s9-kernel-4-14-android-10-kernel-function-address-text-and-heap-address-information-leak/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2021-vulnerabilities-info-leaks-samsung-s10-s9-kernel-4-14-android-10-kernel-function-address-text-and-heap-ad.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Samsung S10+/S9 kernel 4.14 (Android 10) Kernel Function Address (.text) and Heap Address Information Leak record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: Samsung S10+/S9 kernel 4.14 (Android 10) Kernel Function Address (.text) and Heap Address Information Leak resource_label: primary resource_type: article resource_url: https://ssd-disclosure.com/ssd-advisory-samsung-s10-s9-kernel-4-14-android-10-kernel-function-address-text-and-heap-address-information-leak/ parent_primary_url: https://ssd-disclosure.com/ssd-advisory-samsung-s10-s9-kernel-4-14-android-10-kernel-function-address-text-and-heap-address-information-leak/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2021: \"Samsung S10+/S9 kernel 4.14 (Android 10) Kernel Function Address (.text) and Heap Address Inform",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ssd-disclosure.com/ssd-advisory-samsung-s10-s9-kernel-4-14-android-10-kernel-function-address-text-and-heap-address-information-leak/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ssd-disclosure.com/ssd-advisory-samsung-s10-s9-kernel-4-14-android-10-kernel-function-address-text-and-heap-address-information-leak/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article highlights an information leak in Samsung S10+/S9 kernel related to function and heap addresses.",
      "summary_zh": "本文强调了Samsung S10+/S9内核中与函数和堆地址相关的信息泄露。",
      "source_markdown": "[2021: \"Samsung S10+/S9 kernel 4.14 (Android 10) Kernel Function Address (.text) and Heap Address Information Leak\"](https://ssd-disclosure.com/ssd-advisory-samsung-s10-s9-kernel-4-14-android-10-kernel-function-address-text-and-heap-address-information-leak/) [article] [CVE-TBD]",
      "search_text": "samsung s10+/s9 kernel 4.14 (android 10) kernel function address (.text) and heap address information leak samsung s10+/s9 kernel 4.14 (android 10) kernel function address (.text) and heap address information leak    vulnerabilities info-leaks info-leaks primary article https://ssd-disclosure.com/ssd-advisory-samsung-s10-s9-kernel-4-14-android-10-kernel-function-address-text-and-heap-address-information-leak/   vulnerability this article highlights an information leak in samsung s10+/s9 kernel related to function and heap addresses. 本文强调了samsung s10+/s9内核中与函数和堆地址相关的信息泄露。 # samsung s10+/s9 kernel 4.14 (android 10) kernel function address (.text) and heap address information leak record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: samsung s10+/s9 kernel 4.14 (android 10) kernel function address (.text) and heap address information leak resource_label: primary resource_type: article resource_url: https://ssd-disclosure.com/ssd-advisory-samsung-s10-s9-kernel-4-14-android-10-kernel-function-address-text-and-heap-address-information-leak/ parent_primary_url: https://ssd-disclosure.com/ssd-advisory-samsung-s10-s9-kernel-4-14-android-10-kernel-function-address-text-and-heap-address-information-leak/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2021: \"samsung s10+/s9 kernel 4.14 (android 10) kernel function address (.text) and heap address inform yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "9cdd4dffac2afd6a",
      "item_id": "c18d3b8ddeb5e040",
      "slug": "2021-vulnerabilities-info-leaks-linux-kernel-proc-pid-syscall-information-disclosure-vulnerability-primary-d3a",
      "year": 2021,
      "title": "Linux Kernel /proc/pid/syscall information disclosure vulnerability",
      "item_title": "Linux Kernel /proc/pid/syscall information disclosure vulnerability",
      "authors": [],
      "cves": [
        "CVE-2020-28588"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-1211",
      "primary_url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-1211",
      "parent_primary_url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-1211",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2021-vulnerabilities-info-leaks-linux-kernel-proc-pid-syscall-information-disclosure-vulnerability-primary-d3a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel /proc/pid/syscall information disclosure vulnerability record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: Linux Kernel /proc/pid/syscall information disclosure vulnerability resource_label: primary resource_type: article resource_url: https://talosintelligence.com/vulnerability_reports/TALOS-2020-1211 parent_primary_url: https://talosintelligence.com/vulnerability_reports/TALOS-2020-1211 source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2021: \"Linux Kernel /proc/pid/syscall information disclosure vulnerability\"](https://talosintelligence.com/vulnerability_reports/TALOS-2020-1211) [article] [CVE-2020-28588] cves: CVE-2020-28588 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-1211"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2020-1211"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The article discusses a syscall information disclosure vulnerability in the Linux kernel (CVE-2020-28588).",
      "summary_zh": "本文讨论了Linux内核中的系统调用信息泄露漏洞（CVE-2020-28588）。",
      "source_markdown": "[2021: \"Linux Kernel /proc/pid/syscall information disclosure vulnerability\"](https://talosintelligence.com/vulnerability_reports/TALOS-2020-1211) [article] [CVE-2020-28588]",
      "search_text": "linux kernel /proc/pid/syscall information disclosure vulnerability linux kernel /proc/pid/syscall information disclosure vulnerability  cve-2020-28588  vulnerabilities info-leaks info-leaks primary article https://talosintelligence.com/vulnerability_reports/talos-2020-1211   vulnerability the article discusses a syscall information disclosure vulnerability in the linux kernel (cve-2020-28588). 本文讨论了linux内核中的系统调用信息泄露漏洞（cve-2020-28588）。 # linux kernel /proc/pid/syscall information disclosure vulnerability record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: linux kernel /proc/pid/syscall information disclosure vulnerability resource_label: primary resource_type: article resource_url: https://talosintelligence.com/vulnerability_reports/talos-2020-1211 parent_primary_url: https://talosintelligence.com/vulnerability_reports/talos-2020-1211 source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2021: \"linux kernel /proc/pid/syscall information disclosure vulnerability\"](https://talosintelligence.com/vulnerability_reports/talos-2020-1211) [article] [cve-2020-28588] cves: cve-2020-28588 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel- unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5423f86ff5f4a48d",
      "item_id": "9baca44d9cac78af",
      "slug": "2021-vulnerabilities-info-leaks-spectre-exploits-in-the-wild-primary-513fc61a",
      "year": 2021,
      "title": "Spectre exploits in the \"wild",
      "item_title": "Spectre exploits in the \"wild",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://dustri.org/b/spectre-exploits-in-the-wild.html",
      "primary_url": "https://dustri.org/b/spectre-exploits-in-the-wild.html",
      "parent_primary_url": "https://dustri.org/b/spectre-exploits-in-the-wild.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2021-vulnerabilities-info-leaks-spectre-exploits-in-the-wild-primary-513fc61a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Spectre exploits in the \"wild record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: Spectre exploits in the \"wild resource_label: primary resource_type: article resource_url: https://dustri.org/b/spectre-exploits-in-the-wild.html parent_primary_url: https://dustri.org/b/spectre-exploits-in-the-wild.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2021: \"Spectre exploits in the \"wild\"\"](https://dustri.org/b/spectre-exploits-in-the-wild.html) [article] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: true has_exp",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://dustri.org/b/spectre-exploits-in-the-wild.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://dustri.org/b/spectre-exploits-in-the-wild.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article explores the presence of Spectre exploits in the wild.",
      "summary_zh": "本文探讨了野外存在的Spectre利用。",
      "source_markdown": "[2021: \"Spectre exploits in the \"wild\"\"](https://dustri.org/b/spectre-exploits-in-the-wild.html) [article]",
      "search_text": "spectre exploits in the \"wild spectre exploits in the \"wild    vulnerabilities info-leaks info-leaks primary article https://dustri.org/b/spectre-exploits-in-the-wild.html   vulnerability this article explores the presence of spectre exploits in the wild. 本文探讨了野外存在的spectre利用。 # spectre exploits in the \"wild record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: spectre exploits in the \"wild resource_label: primary resource_type: article resource_url: https://dustri.org/b/spectre-exploits-in-the-wild.html parent_primary_url: https://dustri.org/b/spectre-exploits-in-the-wild.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2021: \"spectre exploits in the \"wild\"\"](https://dustri.org/b/spectre-exploits-in-the-wild.html) [article] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: true has_exp unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "97755715bd12a1f1",
      "item_id": "983697af9b9f7c6b",
      "slug": "2021-vulnerabilities-info-leaks-vdso-as-a-potential-kaslr-oracle-primary-4153bea5",
      "year": 2021,
      "title": "VDSO As A Potential KASLR Oracle",
      "item_title": "VDSO As A Potential KASLR Oracle",
      "authors": [
        "Philip Pettersson",
        "Alex Radocea"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.longterm.io/vdso_sidechannel.html",
      "primary_url": "https://www.longterm.io/vdso_sidechannel.html",
      "parent_primary_url": "https://www.longterm.io/vdso_sidechannel.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2021-vulnerabilities-info-leaks-vdso-as-a-potential-kaslr-oracle-primary-4153bea5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# VDSO As A Potential KASLR Oracle record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: VDSO As A Potential KASLR Oracle resource_label: primary resource_type: article resource_url: https://www.longterm.io/vdso_sidechannel.html parent_primary_url: https://www.longterm.io/vdso_sidechannel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2021: \"VDSO As A Potential KASLR Oracle\" by Philip Pettersson and Alex Radocea](https://www.longterm.io/vdso_sidechannel.html) [article] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false ha",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.longterm.io/vdso_sidechannel.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.longterm.io/vdso_sidechannel.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The article examines VDSO as a potential KASLR oracle in the context of information leaks.",
      "summary_zh": "本文考察了VDSO作为信息泄露背景下潜在的KASLR神谕。",
      "source_markdown": "[2021: \"VDSO As A Potential KASLR Oracle\" by Philip Pettersson and Alex Radocea](https://www.longterm.io/vdso_sidechannel.html) [article]",
      "search_text": "vdso as a potential kaslr oracle vdso as a potential kaslr oracle philip pettersson alex radocea   vulnerabilities info-leaks info-leaks primary article https://www.longterm.io/vdso_sidechannel.html   vulnerability the article examines vdso as a potential kaslr oracle in the context of information leaks. 本文考察了vdso作为信息泄露背景下潜在的kaslr神谕。 # vdso as a potential kaslr oracle record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: vdso as a potential kaslr oracle resource_label: primary resource_type: article resource_url: https://www.longterm.io/vdso_sidechannel.html parent_primary_url: https://www.longterm.io/vdso_sidechannel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2021: \"vdso as a potential kaslr oracle\" by philip pettersson and alex radocea](https://www.longterm.io/vdso_sidechannel.html) [article] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false ha unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1cbf1ed89ded0bc9",
      "item_id": "caec17f68872d97e",
      "slug": "2020-vulnerabilities-info-leaks-platypus-software-based-power-side-channel-attacks-on-x86-primary-355ae4b7",
      "year": 2020,
      "title": "PLATYPUS: Software-based Power Side-Channel Attacks on x86",
      "item_title": "PLATYPUS: Software-based Power Side-Channel Attacks on x86",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://platypusattack.com/platypus.pdf",
      "primary_url": "https://platypusattack.com/platypus.pdf",
      "parent_primary_url": "https://platypusattack.com/platypus.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2020-vulnerabilities-info-leaks-platypus-software-based-power-side-channel-attacks-on-x86-primary-355ae4b7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PLATYPUS: Software-based Power Side-Channel Attacks on x86 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: PLATYPUS: Software-based Power Side-Channel Attacks on x86 resource_label: primary resource_type: paper resource_url: https://platypusattack.com/platypus.pdf parent_primary_url: https://platypusattack.com/platypus.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2020: \"PLATYPUS: Software-based Power Side-Channel Attacks on x86\"](https://platypusattack.com/platypus.pdf) [paper] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. ",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://platypusattack.com/platypus.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://platypusattack.com/platypus.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "PLATYPUS presents software-based power side-channel attacks on x86 architecture.",
      "summary_zh": "PLATYPUS展示了针对x86架构的软件基于功耗的侧信道攻击。",
      "source_markdown": "[2020: \"PLATYPUS: Software-based Power Side-Channel Attacks on x86\"](https://platypusattack.com/platypus.pdf) [paper]",
      "search_text": "platypus: software-based power side-channel attacks on x86 platypus: software-based power side-channel attacks on x86    vulnerabilities info-leaks info-leaks primary paper https://platypusattack.com/platypus.pdf   vulnerability platypus presents software-based power side-channel attacks on x86 architecture. platypus展示了针对x86架构的软件基于功耗的侧信道攻击。 # platypus: software-based power side-channel attacks on x86 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: platypus: software-based power side-channel attacks on x86 resource_label: primary resource_type: paper resource_url: https://platypusattack.com/platypus.pdf parent_primary_url: https://platypusattack.com/platypus.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2020: \"platypus: software-based power side-channel attacks on x86\"](https://platypusattack.com/platypus.pdf) [paper] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux.  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bc04009fee098bd9",
      "item_id": "5d76fc5abbaf66cf",
      "slug": "2019-vulnerabilities-info-leaks-cve-2018-3639-cve-2019-7308-analysis-of-spectre-attacking-linux-kernel-ebpf-pr",
      "year": 2019,
      "title": "CVE-2018-3639 / CVE-2019-7308 - Analysis of Spectre Attacking Linux Kernel ebpf",
      "item_title": "CVE-2018-3639 / CVE-2019-7308 - Analysis of Spectre Attacking Linux Kernel ebpf",
      "authors": [],
      "cves": [
        "CVE-2018-3639",
        "CVE-2019-7308"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://xz.aliyun.com/t/4230",
      "primary_url": "https://xz.aliyun.com/t/4230",
      "parent_primary_url": "https://xz.aliyun.com/t/4230",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2019-vulnerabilities-info-leaks-cve-2018-3639-cve-2019-7308-analysis-of-spectre-attacking-linux-kernel-ebpf-pr.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2018-3639 / CVE-2019-7308 - Analysis of Spectre Attacking Linux Kernel ebpf record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: CVE-2018-3639 / CVE-2019-7308 - Analysis of Spectre Attacking Linux Kernel ebpf resource_label: primary resource_type: article resource_url: https://xz.aliyun.com/t/4230 parent_primary_url: https://xz.aliyun.com/t/4230 source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2019: \"CVE-2018-3639 / CVE-2019-7308 - Analysis of Spectre Attacking Linux Kernel ebpf\"](https://xz.aliyun.com/t/4230) [article] [CVE-2018-3639, CVE-2019-7308] cves: CVE-2018-3639, CVE-2019-7308 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://xz.aliyun.com/t/4230"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://xz.aliyun.com/t/4230"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article analyzes Spectre attacks on the Linux kernel's eBPF (CVE-2018-3639, CVE-2019-7308).",
      "summary_zh": "本文分析了针对Linux内核eBPF的Spectre攻击（CVE-2018-3639，CVE-2019-7308）。",
      "source_markdown": "[2019: \"CVE-2018-3639 / CVE-2019-7308 - Analysis of Spectre Attacking Linux Kernel ebpf\"](https://xz.aliyun.com/t/4230) [article] [CVE-2018-3639, CVE-2019-7308]",
      "search_text": "cve-2018-3639 / cve-2019-7308 - analysis of spectre attacking linux kernel ebpf cve-2018-3639 / cve-2019-7308 - analysis of spectre attacking linux kernel ebpf  cve-2018-3639 cve-2019-7308  vulnerabilities info-leaks info-leaks primary article https://xz.aliyun.com/t/4230   vulnerability this article analyzes spectre attacks on the linux kernel's ebpf (cve-2018-3639, cve-2019-7308). 本文分析了针对linux内核ebpf的spectre攻击（cve-2018-3639，cve-2019-7308）。 # cve-2018-3639 / cve-2019-7308 - analysis of spectre attacking linux kernel ebpf record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: cve-2018-3639 / cve-2019-7308 - analysis of spectre attacking linux kernel ebpf resource_label: primary resource_type: article resource_url: https://xz.aliyun.com/t/4230 parent_primary_url: https://xz.aliyun.com/t/4230 source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2019: \"cve-2018-3639 / cve-2019-7308 - analysis of spectre attacking linux kernel ebpf\"](https://xz.aliyun.com/t/4230) [article] [cve-2018-3639, cve-2019-7308] cves: cve-2018-3639, cve-2019-7308 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "32f727a9a9545e2e",
      "item_id": "b01917c869226bee",
      "slug": "2019-vulnerabilities-info-leaks-from-ip-id-to-device-id-and-kaslr-bypass-extended-version-primary-57117796",
      "year": 2019,
      "title": "From IP ID to Device ID and KASLR Bypass (Extended Version)",
      "item_title": "From IP ID to Device ID and KASLR Bypass (Extended Version)",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/1906.10478.pdf",
      "primary_url": "https://arxiv.org/pdf/1906.10478.pdf",
      "parent_primary_url": "https://arxiv.org/pdf/1906.10478.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2019-vulnerabilities-info-leaks-from-ip-id-to-device-id-and-kaslr-bypass-extended-version-primary-57117796.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# From IP ID to Device ID and KASLR Bypass (Extended Version) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: From IP ID to Device ID and KASLR Bypass (Extended Version) resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/1906.10478.pdf parent_primary_url: https://arxiv.org/pdf/1906.10478.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2019: \"From IP ID to Device ID and KASLR Bypass (Extended Version)\"](https://arxiv.org/pdf/1906.10478.pdf) [paper] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_co",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/1906.10478.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/1906.10478.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The paper discusses methods for bypassing KASLR using IP ID and Device ID.",
      "summary_zh": "本文讨论了使用IP ID和设备ID绕过KASLR的方法。",
      "source_markdown": "[2019: \"From IP ID to Device ID and KASLR Bypass (Extended Version)\"](https://arxiv.org/pdf/1906.10478.pdf) [paper]",
      "search_text": "from ip id to device id and kaslr bypass (extended version) from ip id to device id and kaslr bypass (extended version)    vulnerabilities info-leaks info-leaks primary paper https://arxiv.org/pdf/1906.10478.pdf   vulnerability the paper discusses methods for bypassing kaslr using ip id and device id. 本文讨论了使用ip id和设备id绕过kaslr的方法。 # from ip id to device id and kaslr bypass (extended version) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: from ip id to device id and kaslr bypass (extended version) resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/1906.10478.pdf parent_primary_url: https://arxiv.org/pdf/1906.10478.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2019: \"from ip id to device id and kaslr bypass (extended version)\"](https://arxiv.org/pdf/1906.10478.pdf) [paper] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_co unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7bcbc186b94e8884",
      "item_id": "20a20f5ef4a0291d",
      "slug": "2018-vulnerabilities-info-leaks-kernel-memory-disclosure-canvas-part-1-spectre-tips-tricks-primary-bb79fa27",
      "year": 2018,
      "title": "Kernel Memory disclosure & CANVAS Part 1 - Spectre: tips & tricks",
      "item_title": "Kernel Memory disclosure & CANVAS Part 1 - Spectre: tips & tricks",
      "authors": [],
      "cves": [],
      "tags": [
        "Spectre"
      ],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.immunityinc.com/downloads/Kernel-Memory-Disclosure-and-Canvas_Part_1.pdf",
      "primary_url": "https://www.immunityinc.com/downloads/Kernel-Memory-Disclosure-and-Canvas_Part_1.pdf",
      "parent_primary_url": "https://www.immunityinc.com/downloads/Kernel-Memory-Disclosure-and-Canvas_Part_1.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2018-vulnerabilities-info-leaks-kernel-memory-disclosure-canvas-part-1-spectre-tips-tricks-primary-bb79fa27.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Memory disclosure & CANVAS Part 1 - Spectre: tips & tricks record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: Kernel Memory disclosure & CANVAS Part 1 - Spectre: tips & tricks resource_label: primary resource_type: article resource_url: https://www.immunityinc.com/downloads/Kernel-Memory-Disclosure-and-Canvas_Part_1.pdf parent_primary_url: https://www.immunityinc.com/downloads/Kernel-Memory-Disclosure-and-Canvas_Part_1.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2018: \"Kernel Memory disclosure & CANVAS Part 1 - Spectre: tips & tricks\"](https://www.immunityinc.com/downloads/Kernel-Memory-Disclosure-and-Canvas_Part_1.pdf) [article] [Spectre] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android pro",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.immunityinc.com/downloads/Kernel-Memory-Disclosure-and-Canvas_Part_1.pdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.immunityinc.com/downloads/Kernel-Memory-Disclosure-and-Canvas_Part_1.pdf"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Spectre"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article provides tips and tricks for exploiting Spectre-related kernel memory disclosures.",
      "summary_zh": "本文提供了利用与Spectre相关的内核内存泄露的技巧和窍门。",
      "source_markdown": "[2018: \"Kernel Memory disclosure & CANVAS Part 1 - Spectre: tips & tricks\"](https://www.immunityinc.com/downloads/Kernel-Memory-Disclosure-and-Canvas_Part_1.pdf) [article] [Spectre]",
      "search_text": "kernel memory disclosure & canvas part 1 - spectre: tips & tricks kernel memory disclosure & canvas part 1 - spectre: tips & tricks   spectre vulnerabilities info-leaks info-leaks primary article https://www.immunityinc.com/downloads/kernel-memory-disclosure-and-canvas_part_1.pdf spectre  vulnerability this article provides tips and tricks for exploiting spectre-related kernel memory disclosures. 本文提供了利用与spectre相关的内核内存泄露的技巧和窍门。 # kernel memory disclosure & canvas part 1 - spectre: tips & tricks record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: kernel memory disclosure & canvas part 1 - spectre: tips & tricks resource_label: primary resource_type: article resource_url: https://www.immunityinc.com/downloads/kernel-memory-disclosure-and-canvas_part_1.pdf parent_primary_url: https://www.immunityinc.com/downloads/kernel-memory-disclosure-and-canvas_part_1.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2018: \"kernel memory disclosure & canvas part 1 - spectre: tips & tricks\"](https://www.immunityinc.com/downloads/kernel-memory-disclosure-and-canvas_part_1.pdf) [article] [spectre] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android pro unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1d6cfcdc09d7be55",
      "item_id": "fbb87d3917ee37a8",
      "slug": "2018-vulnerabilities-info-leaks-kernel-memory-disclosure-canvas-part-2-cve-2017-18344-analysis-exploitation-no",
      "year": 2018,
      "title": "Kernel Memory disclosure & CANVAS Part 2 - CVE-2017-18344 analysis & exploitation notes",
      "item_title": "Kernel Memory disclosure & CANVAS Part 2 - CVE-2017-18344 analysis & exploitation notes",
      "authors": [],
      "cves": [
        "CVE-2017-18344"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.immunityinc.com/downloads/Kernel-Memory-Disclosure-and-Canvas_Part_2.pdf",
      "primary_url": "https://www.immunityinc.com/downloads/Kernel-Memory-Disclosure-and-Canvas_Part_2.pdf",
      "parent_primary_url": "https://www.immunityinc.com/downloads/Kernel-Memory-Disclosure-and-Canvas_Part_2.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2018-vulnerabilities-info-leaks-kernel-memory-disclosure-canvas-part-2-cve-2017-18344-analysis-exploitation-no.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Memory disclosure & CANVAS Part 2 - CVE-2017-18344 analysis & exploitation notes record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: Kernel Memory disclosure & CANVAS Part 2 - CVE-2017-18344 analysis & exploitation notes resource_label: primary resource_type: article resource_url: https://www.immunityinc.com/downloads/Kernel-Memory-Disclosure-and-Canvas_Part_2.pdf parent_primary_url: https://www.immunityinc.com/downloads/Kernel-Memory-Disclosure-and-Canvas_Part_2.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2018: \"Kernel Memory disclosure & CANVAS Part 2 - CVE-2017-18344 analysis & exploitation notes\"](https://www.immunityinc.com/downloads/Kernel-Memory-Disclosure-and-Canvas_Part_2.pdf) [article] [CVE-2017-18344] cves: CVE-2017-18344 android_impact_status: u",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.immunityinc.com/downloads/Kernel-Memory-Disclosure-and-Canvas_Part_2.pdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.immunityinc.com/downloads/Kernel-Memory-Disclosure-and-Canvas_Part_2.pdf"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The article details the analysis and exploitation notes for CVE-2017-18344.",
      "summary_zh": "本文详细介绍了CVE-2017-18344的分析和利用笔记。",
      "source_markdown": "[2018: \"Kernel Memory disclosure & CANVAS Part 2 - CVE-2017-18344 analysis & exploitation notes\"](https://www.immunityinc.com/downloads/Kernel-Memory-Disclosure-and-Canvas_Part_2.pdf) [article] [CVE-2017-18344]",
      "search_text": "kernel memory disclosure & canvas part 2 - cve-2017-18344 analysis & exploitation notes kernel memory disclosure & canvas part 2 - cve-2017-18344 analysis & exploitation notes  cve-2017-18344  vulnerabilities info-leaks info-leaks primary article https://www.immunityinc.com/downloads/kernel-memory-disclosure-and-canvas_part_2.pdf   vulnerability the article details the analysis and exploitation notes for cve-2017-18344. 本文详细介绍了cve-2017-18344的分析和利用笔记。 # kernel memory disclosure & canvas part 2 - cve-2017-18344 analysis & exploitation notes record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: kernel memory disclosure & canvas part 2 - cve-2017-18344 analysis & exploitation notes resource_label: primary resource_type: article resource_url: https://www.immunityinc.com/downloads/kernel-memory-disclosure-and-canvas_part_2.pdf parent_primary_url: https://www.immunityinc.com/downloads/kernel-memory-disclosure-and-canvas_part_2.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2018: \"kernel memory disclosure & canvas part 2 - cve-2017-18344 analysis & exploitation notes\"](https://www.immunityinc.com/downloads/kernel-memory-disclosure-and-canvas_part_2.pdf) [article] [cve-2017-18344] cves: cve-2017-18344 android_impact_status: u unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6fe746ed1a11ecde",
      "item_id": "1f08e1faf014c32c",
      "slug": "2018-vulnerabilities-info-leaks-cve-2017-18344-exploiting-an-arbitrary-read-vulnerability-in-the-linux-kernel-",
      "year": 2018,
      "title": "CVE-2017-18344: Exploiting an arbitrary-read vulnerability in the Linux kernel timer subsystem",
      "item_title": "CVE-2017-18344: Exploiting an arbitrary-read vulnerability in the Linux kernel timer subsystem",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [
        "CVE-2017-18344"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://xairy.io/articles/cve-2017-18344",
      "primary_url": "https://xairy.io/articles/cve-2017-18344",
      "parent_primary_url": "https://xairy.io/articles/cve-2017-18344",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2018-vulnerabilities-info-leaks-cve-2017-18344-exploiting-an-arbitrary-read-vulnerability-in-the-linux-kernel-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2017-18344: Exploiting an arbitrary-read vulnerability in the Linux kernel timer subsystem record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: CVE-2017-18344: Exploiting an arbitrary-read vulnerability in the Linux kernel timer subsystem resource_label: primary resource_type: article resource_url: https://xairy.io/articles/cve-2017-18344 parent_primary_url: https://xairy.io/articles/cve-2017-18344 source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2018: \"CVE-2017-18344: Exploiting an arbitrary-read vulnerability in the Linux kernel timer subsystem\" by Andrey Konovalov](https://xairy.io/articles/cve-2017-18344) [article] [CVE-2017-18344] cves: CVE-2017-18344 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://xairy.io/articles/cve-2017-18344"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://xairy.io/articles/cve-2017-18344"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses exploiting an arbitrary-read vulnerability in the Linux kernel timer subsystem (CVE-2017-18344).",
      "summary_zh": "本文讨论了利用Linux内核定时器子系统中的任意读取漏洞（CVE-2017-18344）。",
      "source_markdown": "[2018: \"CVE-2017-18344: Exploiting an arbitrary-read vulnerability in the Linux kernel timer subsystem\" by Andrey Konovalov](https://xairy.io/articles/cve-2017-18344) [article] [CVE-2017-18344]",
      "search_text": "cve-2017-18344: exploiting an arbitrary-read vulnerability in the linux kernel timer subsystem cve-2017-18344: exploiting an arbitrary-read vulnerability in the linux kernel timer subsystem andrey konovalov cve-2017-18344  vulnerabilities info-leaks info-leaks primary article https://xairy.io/articles/cve-2017-18344   vulnerability this article discusses exploiting an arbitrary-read vulnerability in the linux kernel timer subsystem (cve-2017-18344). 本文讨论了利用linux内核定时器子系统中的任意读取漏洞（cve-2017-18344）。 # cve-2017-18344: exploiting an arbitrary-read vulnerability in the linux kernel timer subsystem record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: cve-2017-18344: exploiting an arbitrary-read vulnerability in the linux kernel timer subsystem resource_label: primary resource_type: article resource_url: https://xairy.io/articles/cve-2017-18344 parent_primary_url: https://xairy.io/articles/cve-2017-18344 source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2018: \"cve-2017-18344: exploiting an arbitrary-read vulnerability in the linux kernel timer subsystem\" by andrey konovalov](https://xairy.io/articles/cve-2017-18344) [article] [cve-2017-18344] cves: cve-2017-18344 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "61773d25093ed8cb",
      "item_id": "26b0aa90b5cd196d",
      "slug": "2017-vulnerabilities-info-leaks-linux-kernel-2-6-0-to-4-12-rc4-infoleak-due-to-a-data-race-in-alsa-timer-prima",
      "year": 2017,
      "title": "Linux kernel 2.6.0 to 4.12-rc4 infoleak due to a data race in ALSA timer",
      "item_title": "Linux kernel 2.6.0 to 4.12-rc4 infoleak due to a data race in ALSA timer",
      "authors": [
        "Alexander Potapenko"
      ],
      "cves": [
        "CVE-2017-1000380"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "announcement",
      "resource_url": "http://seclists.org/oss-sec/2017/q2/455",
      "primary_url": "http://seclists.org/oss-sec/2017/q2/455",
      "parent_primary_url": "http://seclists.org/oss-sec/2017/q2/455",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2017-vulnerabilities-info-leaks-linux-kernel-2-6-0-to-4-12-rc4-infoleak-due-to-a-data-race-in-alsa-timer-prima.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux kernel 2.6.0 to 4.12-rc4 infoleak due to a data race in ALSA timer record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: Linux kernel 2.6.0 to 4.12-rc4 infoleak due to a data race in ALSA timer resource_label: primary resource_type: announcement resource_url: http://seclists.org/oss-sec/2017/q2/455 parent_primary_url: http://seclists.org/oss-sec/2017/q2/455 source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2017: \"Linux kernel 2.6.0 to 4.12-rc4 infoleak due to a data race in ALSA timer\" by Alexander Potapenko](http://seclists.org/oss-sec/2017/q2/455) [announcement] [CVE-2017-1000380] cves: CVE-2017-1000380 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport revi",
      "link_types": [
        "announcement"
      ],
      "links": [
        {
          "label": "primary",
          "type": "announcement",
          "url": "http://seclists.org/oss-sec/2017/q2/455"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "announcement",
            "url": "http://seclists.org/oss-sec/2017/q2/455"
          }
        ]
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The announcement covers an infoleak vulnerability in ALSA timer affecting Linux kernel versions 2.6.0 to 4.12-rc4 (CVE-2017-1000380).",
      "summary_zh": "该公告涵盖了影响Linux内核版本2.6.0到4.12-rc4的ALSA定时器中的信息泄露漏洞（CVE-2017-1000380）。",
      "source_markdown": "[2017: \"Linux kernel 2.6.0 to 4.12-rc4 infoleak due to a data race in ALSA timer\" by Alexander Potapenko](http://seclists.org/oss-sec/2017/q2/455) [announcement] [CVE-2017-1000380]",
      "search_text": "linux kernel 2.6.0 to 4.12-rc4 infoleak due to a data race in alsa timer linux kernel 2.6.0 to 4.12-rc4 infoleak due to a data race in alsa timer alexander potapenko cve-2017-1000380  vulnerabilities info-leaks info-leaks primary announcement http://seclists.org/oss-sec/2017/q2/455   vulnerability the announcement covers an infoleak vulnerability in alsa timer affecting linux kernel versions 2.6.0 to 4.12-rc4 (cve-2017-1000380). 该公告涵盖了影响linux内核版本2.6.0到4.12-rc4的alsa定时器中的信息泄露漏洞（cve-2017-1000380）。 # linux kernel 2.6.0 to 4.12-rc4 infoleak due to a data race in alsa timer record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: linux kernel 2.6.0 to 4.12-rc4 infoleak due to a data race in alsa timer resource_label: primary resource_type: announcement resource_url: http://seclists.org/oss-sec/2017/q2/455 parent_primary_url: http://seclists.org/oss-sec/2017/q2/455 source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2017: \"linux kernel 2.6.0 to 4.12-rc4 infoleak due to a data race in alsa timer\" by alexander potapenko](http://seclists.org/oss-sec/2017/q2/455) [announcement] [cve-2017-1000380] cves: cve-2017-1000380 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport revi unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "587d61537557811c",
      "item_id": "4b552ff0abe7e99b",
      "slug": "2017-vulnerabilities-info-leaks-the-infoleak-that-mostly-wasn-t-primary-9d8c9e8b",
      "year": 2017,
      "title": "The Infoleak that (Mostly) Wasn't",
      "item_title": "The Infoleak that (Mostly) Wasn't",
      "authors": [
        "Brad Spengler"
      ],
      "cves": [
        "CVE-2017-7616"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://grsecurity.net/the_infoleak_that_mostly_wasnt.php",
      "primary_url": "https://grsecurity.net/the_infoleak_that_mostly_wasnt.php",
      "parent_primary_url": "https://grsecurity.net/the_infoleak_that_mostly_wasnt.php",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2017-vulnerabilities-info-leaks-the-infoleak-that-mostly-wasn-t-primary-9d8c9e8b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Infoleak that (Mostly) Wasn't record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: The Infoleak that (Mostly) Wasn't resource_label: primary resource_type: article resource_url: https://grsecurity.net/the_infoleak_that_mostly_wasnt.php parent_primary_url: https://grsecurity.net/the_infoleak_that_mostly_wasnt.php source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2017: \"The Infoleak that (Mostly) Wasn't\" by Brad Spengler](https://grsecurity.net/the_infoleak_that_mostly_wasnt.php) [article] [CVE-2017-7616] cves: CVE-2017-7616 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU k",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://grsecurity.net/the_infoleak_that_mostly_wasnt.php"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://grsecurity.net/the_infoleak_that_mostly_wasnt.php"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses an infoleak vulnerability that was mostly mitigated (CVE-2017-7616).",
      "summary_zh": "本文讨论了一个大部分被缓解的信息泄露漏洞（CVE-2017-7616）。",
      "source_markdown": "[2017: \"The Infoleak that (Mostly) Wasn't\" by Brad Spengler](https://grsecurity.net/the_infoleak_that_mostly_wasnt.php) [article] [CVE-2017-7616]",
      "search_text": "the infoleak that (mostly) wasn't the infoleak that (mostly) wasn't brad spengler cve-2017-7616  vulnerabilities info-leaks info-leaks primary article https://grsecurity.net/the_infoleak_that_mostly_wasnt.php   vulnerability this article discusses an infoleak vulnerability that was mostly mitigated (cve-2017-7616). 本文讨论了一个大部分被缓解的信息泄露漏洞（cve-2017-7616）。 # the infoleak that (mostly) wasn't record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: the infoleak that (mostly) wasn't resource_label: primary resource_type: article resource_url: https://grsecurity.net/the_infoleak_that_mostly_wasnt.php parent_primary_url: https://grsecurity.net/the_infoleak_that_mostly_wasnt.php source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2017: \"the infoleak that (mostly) wasn't\" by brad spengler](https://grsecurity.net/the_infoleak_that_mostly_wasnt.php) [article] [cve-2017-7616] cves: cve-2017-7616 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu k unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2addfe1a69e24d10",
      "item_id": "dfd50b435679f0e4",
      "slug": "2016-vulnerabilities-info-leaks-exploiting-a-linux-kernel-infoleak-to-bypass-linux-kaslr-primary-e877b2fd",
      "year": 2016,
      "title": "Exploiting a Linux Kernel Infoleak to bypass Linux kASLR",
      "item_title": "Exploiting a Linux Kernel Infoleak to bypass Linux kASLR",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://marcograss.github.io/security/linux/2016/01/24/exploiting-infoleak-linux-kaslr-bypass.html",
      "primary_url": "https://marcograss.github.io/security/linux/2016/01/24/exploiting-infoleak-linux-kaslr-bypass.html",
      "parent_primary_url": "https://marcograss.github.io/security/linux/2016/01/24/exploiting-infoleak-linux-kaslr-bypass.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2016-vulnerabilities-info-leaks-exploiting-a-linux-kernel-infoleak-to-bypass-linux-kaslr-primary-e877b2fd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting a Linux Kernel Infoleak to bypass Linux kASLR record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: Exploiting a Linux Kernel Infoleak to bypass Linux kASLR resource_label: primary resource_type: article resource_url: https://marcograss.github.io/security/linux/2016/01/24/exploiting-infoleak-linux-kaslr-bypass.html parent_primary_url: https://marcograss.github.io/security/linux/2016/01/24/exploiting-infoleak-linux-kaslr-bypass.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2016: \"Exploiting a Linux Kernel Infoleak to bypass Linux kASLR\"](https://marcograss.github.io/security/linux/2016/01/24/exploiting-infoleak-linux-kaslr-bypass.html) [article] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Androi",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://marcograss.github.io/security/linux/2016/01/24/exploiting-infoleak-linux-kaslr-bypass.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://marcograss.github.io/security/linux/2016/01/24/exploiting-infoleak-linux-kaslr-bypass.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://marcograss.github.io/security/linux/2016/01/24/exploiting-infoleak-linux-kaslr-bypass.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The article describes exploiting a Linux kernel infoleak to bypass Linux kASLR.",
      "summary_zh": "本文描述了利用Linux内核信息泄露绕过Linux kASLR。",
      "source_markdown": "[2016: \"Exploiting a Linux Kernel Infoleak to bypass Linux kASLR\"](https://marcograss.github.io/security/linux/2016/01/24/exploiting-infoleak-linux-kaslr-bypass.html) [article]",
      "search_text": "exploiting a linux kernel infoleak to bypass linux kaslr exploiting a linux kernel infoleak to bypass linux kaslr    vulnerabilities info-leaks info-leaks primary article https://marcograss.github.io/security/linux/2016/01/24/exploiting-infoleak-linux-kaslr-bypass.html   vulnerability the article describes exploiting a linux kernel infoleak to bypass linux kaslr. 本文描述了利用linux内核信息泄露绕过linux kaslr。 # exploiting a linux kernel infoleak to bypass linux kaslr record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: exploiting a linux kernel infoleak to bypass linux kaslr resource_label: primary resource_type: article resource_url: https://marcograss.github.io/security/linux/2016/01/24/exploiting-infoleak-linux-kaslr-bypass.html parent_primary_url: https://marcograss.github.io/security/linux/2016/01/24/exploiting-infoleak-linux-kaslr-bypass.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2016: \"exploiting a linux kernel infoleak to bypass linux kaslr\"](https://marcograss.github.io/security/linux/2016/01/24/exploiting-infoleak-linux-kaslr-bypass.html) [article] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; androi unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "e0b4b70a9c5f9cee",
      "item_id": "3af868713c6db41c",
      "slug": "2010-vulnerabilities-info-leaks-linux-kernel-pktcdvd-memory-disclosure-primary-ea148dd2",
      "year": 2010,
      "title": "Linux Kernel pktcdvd Memory Disclosure",
      "item_title": "Linux Kernel pktcdvd Memory Disclosure",
      "authors": [
        "Jon Oberheide"
      ],
      "cves": [
        "CVE-2010-3437"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://jon.oberheide.org/blog/2010/10/23/linux-kernel-pktcdvd-memory-disclosure/",
      "primary_url": "https://jon.oberheide.org/blog/2010/10/23/linux-kernel-pktcdvd-memory-disclosure/",
      "parent_primary_url": "https://jon.oberheide.org/blog/2010/10/23/linux-kernel-pktcdvd-memory-disclosure/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2010-vulnerabilities-info-leaks-linux-kernel-pktcdvd-memory-disclosure-primary-ea148dd2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel pktcdvd Memory Disclosure record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: Linux Kernel pktcdvd Memory Disclosure resource_label: primary resource_type: article resource_url: https://jon.oberheide.org/blog/2010/10/23/linux-kernel-pktcdvd-memory-disclosure/ parent_primary_url: https://jon.oberheide.org/blog/2010/10/23/linux-kernel-pktcdvd-memory-disclosure/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2010: \"Linux Kernel pktcdvd Memory Disclosure\" by Jon Oberheide](https://jon.oberheide.org/blog/2010/10/23/linux-kernel-pktcdvd-memory-disclosure/) [article] [CVE-2010-3437] cves: CVE-2010-3437 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport re",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://jon.oberheide.org/blog/2010/10/23/linux-kernel-pktcdvd-memory-disclosure/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://jon.oberheide.org/blog/2010/10/23/linux-kernel-pktcdvd-memory-disclosure/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses a memory disclosure vulnerability in the Linux kernel's pktcdvd (CVE-2010-3437).",
      "summary_zh": "本文讨论了Linux内核pktcdvd中的内存泄露漏洞（CVE-2010-3437）。",
      "source_markdown": "[2010: \"Linux Kernel pktcdvd Memory Disclosure\" by Jon Oberheide](https://jon.oberheide.org/blog/2010/10/23/linux-kernel-pktcdvd-memory-disclosure/) [article] [CVE-2010-3437]",
      "search_text": "linux kernel pktcdvd memory disclosure linux kernel pktcdvd memory disclosure jon oberheide cve-2010-3437  vulnerabilities info-leaks info-leaks primary article https://jon.oberheide.org/blog/2010/10/23/linux-kernel-pktcdvd-memory-disclosure/   vulnerability this article discusses a memory disclosure vulnerability in the linux kernel's pktcdvd (cve-2010-3437). 本文讨论了linux内核pktcdvd中的内存泄露漏洞（cve-2010-3437）。 # linux kernel pktcdvd memory disclosure record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: linux kernel pktcdvd memory disclosure resource_label: primary resource_type: article resource_url: https://jon.oberheide.org/blog/2010/10/23/linux-kernel-pktcdvd-memory-disclosure/ parent_primary_url: https://jon.oberheide.org/blog/2010/10/23/linux-kernel-pktcdvd-memory-disclosure/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2010: \"linux kernel pktcdvd memory disclosure\" by jon oberheide](https://jon.oberheide.org/blog/2010/10/23/linux-kernel-pktcdvd-memory-disclosure/) [article] [cve-2010-3437] cves: cve-2010-3437 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport re unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9a8099a41ac1b1c8",
      "item_id": "c56b8f222961a51a",
      "slug": "2009-vulnerabilities-info-leaks-linux-kernel-x86-64-register-leak-primary-aa2cf4bd",
      "year": 2009,
      "title": "Linux Kernel x86-64 Register Leak",
      "item_title": "Linux Kernel x86-64 Register Leak",
      "authors": [
        "Jon Oberheide"
      ],
      "cves": [
        "CVE-2009-2910"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://jon.oberheide.org/blog/2009/10/04/linux-kernel-x86-64-register-leak/",
      "primary_url": "https://jon.oberheide.org/blog/2009/10/04/linux-kernel-x86-64-register-leak/",
      "parent_primary_url": "https://jon.oberheide.org/blog/2009/10/04/linux-kernel-x86-64-register-leak/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2009-vulnerabilities-info-leaks-linux-kernel-x86-64-register-leak-primary-aa2cf4bd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel x86-64 Register Leak record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: Linux Kernel x86-64 Register Leak resource_label: primary resource_type: article resource_url: https://jon.oberheide.org/blog/2009/10/04/linux-kernel-x86-64-register-leak/ parent_primary_url: https://jon.oberheide.org/blog/2009/10/04/linux-kernel-x86-64-register-leak/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2009: \"Linux Kernel x86-64 Register Leak\" by Jon Oberheide](https://jon.oberheide.org/blog/2009/10/04/linux-kernel-x86-64-register-leak/) [article] [CVE-2009-2910] cves: CVE-2009-2910 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no io",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://jon.oberheide.org/blog/2009/10/04/linux-kernel-x86-64-register-leak/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://jon.oberheide.org/blog/2009/10/04/linux-kernel-x86-64-register-leak/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The article covers a register leak vulnerability in the Linux kernel x86-64 architecture (CVE-2009-2910).",
      "summary_zh": "本文涵盖了Linux内核x86-64架构中的寄存器泄露漏洞（CVE-2009-2910）。",
      "source_markdown": "[2009: \"Linux Kernel x86-64 Register Leak\" by Jon Oberheide](https://jon.oberheide.org/blog/2009/10/04/linux-kernel-x86-64-register-leak/) [article] [CVE-2009-2910]",
      "search_text": "linux kernel x86-64 register leak linux kernel x86-64 register leak jon oberheide cve-2009-2910  vulnerabilities info-leaks info-leaks primary article https://jon.oberheide.org/blog/2009/10/04/linux-kernel-x86-64-register-leak/   vulnerability the article covers a register leak vulnerability in the linux kernel x86-64 architecture (cve-2009-2910). 本文涵盖了linux内核x86-64架构中的寄存器泄露漏洞（cve-2009-2910）。 # linux kernel x86-64 register leak record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: linux kernel x86-64 register leak resource_label: primary resource_type: article resource_url: https://jon.oberheide.org/blog/2009/10/04/linux-kernel-x86-64-register-leak/ parent_primary_url: https://jon.oberheide.org/blog/2009/10/04/linux-kernel-x86-64-register-leak/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2009: \"linux kernel x86-64 register leak\" by jon oberheide](https://jon.oberheide.org/blog/2009/10/04/linux-kernel-x86-64-register-leak/) [article] [cve-2009-2910] cves: cve-2009-2910 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no io unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7b66ce2db10c819e",
      "item_id": "148bc0c0d91f53c7",
      "slug": "2009-vulnerabilities-info-leaks-linux-kernel-getname-stack-memory-disclosures-primary-8b3be6a0",
      "year": 2009,
      "title": "Linux Kernel getname() Stack Memory Disclosures",
      "item_title": "Linux Kernel getname() Stack Memory Disclosures",
      "authors": [
        "Jon Oberheide"
      ],
      "cves": [
        "CVE-2009-3001"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Info-leaks",
      "section_path": "Vulnerabilities / Info-leaks",
      "category": "Info-leaks",
      "vulnerability_class": "Info-leaks",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://jon.oberheide.org/blog/2009/08/29/linux-kernel-getname-stack-memory-disclosures/",
      "primary_url": "https://jon.oberheide.org/blog/2009/08/29/linux-kernel-getname-stack-memory-disclosures/",
      "parent_primary_url": "https://jon.oberheide.org/blog/2009/08/29/linux-kernel-getname-stack-memory-disclosures/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#info-leaks",
      "raw_path": "/raw/2009-vulnerabilities-info-leaks-linux-kernel-getname-stack-memory-disclosures-primary-8b3be6a0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel getname() Stack Memory Disclosures record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Info-leaks category: Info-leaks item_title: Linux Kernel getname() Stack Memory Disclosures resource_label: primary resource_type: article resource_url: https://jon.oberheide.org/blog/2009/08/29/linux-kernel-getname-stack-memory-disclosures/ parent_primary_url: https://jon.oberheide.org/blog/2009/08/29/linux-kernel-getname-stack-memory-disclosures/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2009: \"Linux Kernel getname() Stack Memory Disclosures\" by Jon Oberheide](https://jon.oberheide.org/blog/2009/08/29/linux-kernel-getname-stack-memory-disclosures/) [article] [CVE-2009-3001] cves: CVE-2009-3001 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production im",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://jon.oberheide.org/blog/2009/08/29/linux-kernel-getname-stack-memory-disclosures/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://jon.oberheide.org/blog/2009/08/29/linux-kernel-getname-stack-memory-disclosures/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses stack memory disclosures related to the Linux kernel's getname() function (CVE-2009-3001).",
      "summary_zh": "本文讨论了与Linux内核getname()函数相关的堆栈内存泄露（CVE-2009-3001）。",
      "source_markdown": "[2009: \"Linux Kernel getname() Stack Memory Disclosures\" by Jon Oberheide](https://jon.oberheide.org/blog/2009/08/29/linux-kernel-getname-stack-memory-disclosures/) [article] [CVE-2009-3001]",
      "search_text": "linux kernel getname() stack memory disclosures linux kernel getname() stack memory disclosures jon oberheide cve-2009-3001  vulnerabilities info-leaks info-leaks primary article https://jon.oberheide.org/blog/2009/08/29/linux-kernel-getname-stack-memory-disclosures/   vulnerability this article discusses stack memory disclosures related to the linux kernel's getname() function (cve-2009-3001). 本文讨论了与linux内核getname()函数相关的堆栈内存泄露（cve-2009-3001）。 # linux kernel getname() stack memory disclosures record_kind: linux-kernel-resource-url section: vulnerabilities subsection: info-leaks category: info-leaks item_title: linux kernel getname() stack memory disclosures resource_label: primary resource_type: article resource_url: https://jon.oberheide.org/blog/2009/08/29/linux-kernel-getname-stack-memory-disclosures/ parent_primary_url: https://jon.oberheide.org/blog/2009/08/29/linux-kernel-getname-stack-memory-disclosures/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#info-leaks source_item: [2009: \"linux kernel getname() stack memory disclosures\" by jon oberheide](https://jon.oberheide.org/blog/2009/08/29/linux-kernel-getname-stack-memory-disclosures/) [article] [cve-2009-3001] cves: cve-2009-3001 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production im unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "455024025582fba6",
      "item_id": "a40c241149a7c6c1",
      "slug": "2026-vulnerabilities-lpe-copy-fail-primary-c7b0053b",
      "year": 2026,
      "title": "Copy Fail",
      "item_title": "Copy Fail",
      "authors": [],
      "cves": [
        "CVE-2026-31431"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "summary",
      "resource_url": "https://copy.fail/",
      "primary_url": "https://copy.fail/",
      "parent_primary_url": "https://copy.fail/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-copy-fail-primary-c7b0053b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Copy Fail record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Copy Fail resource_label: primary resource_type: summary resource_url: https://copy.fail/ parent_primary_url: https://copy.fail/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Copy Fail\"](https://copy.fail/) [summary] [[article](https://xint.io/blog/copy-fail-linux-distributions)] [[exploit](https://github.com/theori-io/copy-fail-CVE-2026-31431)] [CVE-2026-31431] cves: CVE-2026-31431 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https:",
      "link_types": [
        "summary",
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "summary",
          "url": "https://copy.fail/"
        },
        {
          "label": "article",
          "type": "article",
          "url": "https://xint.io/blog/copy-fail-linux-distributions"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/theori-io/copy-fail-CVE-2026-31431"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "article",
            "type": "article",
            "url": "https://xint.io/blog/copy-fail-linux-distributions"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/theori-io/copy-fail-CVE-2026-31431"
          }
        ],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "summary",
            "url": "https://copy.fail/"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/theori-io/copy-fail-CVE-2026-31431"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The summary discusses the Copy Fail vulnerability (CVE-2026-31431) affecting Linux distributions.",
      "summary_zh": "该摘要讨论了影响Linux发行版的Copy Fail漏洞（CVE-2026-31431）。",
      "source_markdown": "[2026: \"Copy Fail\"](https://copy.fail/) [summary] [[article](https://xint.io/blog/copy-fail-linux-distributions)] [[exploit](https://github.com/theori-io/copy-fail-CVE-2026-31431)] [CVE-2026-31431]",
      "search_text": "copy fail copy fail  cve-2026-31431  vulnerabilities lpe lpe primary summary https://copy.fail/   vulnerability the summary discusses the copy fail vulnerability (cve-2026-31431) affecting linux distributions. 该摘要讨论了影响linux发行版的copy fail漏洞（cve-2026-31431）。 # copy fail record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: copy fail resource_label: primary resource_type: summary resource_url: https://copy.fail/ parent_primary_url: https://copy.fail/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"copy fail\"](https://copy.fail/) [summary] [[article](https://xint.io/blog/copy-fail-linux-distributions)] [[exploit](https://github.com/theori-io/copy-fail-cve-2026-31431)] [cve-2026-31431] cves: cve-2026-31431 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https: unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "468db97614d93d3a",
      "item_id": "a40c241149a7c6c1",
      "slug": "2026-vulnerabilities-lpe-copy-fail-article-daedc65c",
      "year": 2026,
      "title": "Copy Fail · article",
      "item_title": "Copy Fail",
      "authors": [],
      "cves": [
        "CVE-2026-31431"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "article",
      "resource_type": "article",
      "resource_url": "https://xint.io/blog/copy-fail-linux-distributions",
      "primary_url": "https://xint.io/blog/copy-fail-linux-distributions",
      "parent_primary_url": "https://copy.fail/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-copy-fail-article-daedc65c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Copy Fail · article record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Copy Fail resource_label: article resource_type: article resource_url: https://xint.io/blog/copy-fail-linux-distributions parent_primary_url: https://copy.fail/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Copy Fail\"](https://copy.fail/) [summary] [[article](https://xint.io/blog/copy-fail-linux-distributions)] [[exploit](https://github.com/theori-io/copy-fail-CVE-2026-31431)] [CVE-2026-31431] cves: CVE-2026-31431 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: tru",
      "link_types": [
        "summary",
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "summary",
          "url": "https://copy.fail/"
        },
        {
          "label": "article",
          "type": "article",
          "url": "https://xint.io/blog/copy-fail-linux-distributions"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/theori-io/copy-fail-CVE-2026-31431"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "article",
            "type": "article",
            "url": "https://xint.io/blog/copy-fail-linux-distributions"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/theori-io/copy-fail-CVE-2026-31431"
          }
        ],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "summary",
            "url": "https://copy.fail/"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/theori-io/copy-fail-CVE-2026-31431"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article provides an overview of the Copy Fail vulnerability (CVE-2026-31431) and its implications.",
      "summary_zh": "本文概述了Copy Fail漏洞（CVE-2026-31431）及其影响。",
      "source_markdown": "[2026: \"Copy Fail\"](https://copy.fail/) [summary] [[article](https://xint.io/blog/copy-fail-linux-distributions)] [[exploit](https://github.com/theori-io/copy-fail-CVE-2026-31431)] [CVE-2026-31431]",
      "search_text": "copy fail · article copy fail  cve-2026-31431  vulnerabilities lpe lpe article article https://xint.io/blog/copy-fail-linux-distributions   vulnerability this article provides an overview of the copy fail vulnerability (cve-2026-31431) and its implications. 本文概述了copy fail漏洞（cve-2026-31431）及其影响。 # copy fail · article record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: copy fail resource_label: article resource_type: article resource_url: https://xint.io/blog/copy-fail-linux-distributions parent_primary_url: https://copy.fail/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"copy fail\"](https://copy.fail/) [summary] [[article](https://xint.io/blog/copy-fail-linux-distributions)] [[exploit](https://github.com/theori-io/copy-fail-cve-2026-31431)] [cve-2026-31431] cves: cve-2026-31431 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: tru unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "2f4d190a29b8e319",
      "item_id": "a40c241149a7c6c1",
      "slug": "2026-vulnerabilities-lpe-copy-fail-exploit-9c342c7f",
      "year": 2026,
      "title": "Copy Fail · exploit",
      "item_title": "Copy Fail",
      "authors": [],
      "cves": [
        "CVE-2026-31431"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/theori-io/copy-fail-CVE-2026-31431",
      "primary_url": "https://github.com/theori-io/copy-fail-CVE-2026-31431",
      "parent_primary_url": "https://copy.fail/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-copy-fail-exploit-9c342c7f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Copy Fail · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Copy Fail resource_label: exploit resource_type: exploit resource_url: https://github.com/theori-io/copy-fail-CVE-2026-31431 parent_primary_url: https://copy.fail/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Copy Fail\"](https://copy.fail/) [summary] [[article](https://xint.io/blog/copy-fail-linux-distributions)] [[exploit](https://github.com/theori-io/copy-fail-CVE-2026-31431)] [CVE-2026-31431] cves: CVE-2026-31431 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: ",
      "link_types": [
        "summary",
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "summary",
          "url": "https://copy.fail/"
        },
        {
          "label": "article",
          "type": "article",
          "url": "https://xint.io/blog/copy-fail-linux-distributions"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/theori-io/copy-fail-CVE-2026-31431"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "article",
            "type": "article",
            "url": "https://xint.io/blog/copy-fail-linux-distributions"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/theori-io/copy-fail-CVE-2026-31431"
          }
        ],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "summary",
            "url": "https://copy.fail/"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/theori-io/copy-fail-CVE-2026-31431"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2026-31431"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Copy Fail is a Linux kernel vulnerability allowing local privilege escalation.",
      "summary_zh": "Copy Fail 是一个允许本地权限提升的 Linux 内核漏洞。",
      "source_markdown": "[2026: \"Copy Fail\"](https://copy.fail/) [summary] [[article](https://xint.io/blog/copy-fail-linux-distributions)] [[exploit](https://github.com/theori-io/copy-fail-CVE-2026-31431)] [CVE-2026-31431]",
      "search_text": "copy fail · exploit copy fail  cve-2026-31431  vulnerabilities lpe lpe exploit exploit https://github.com/theori-io/copy-fail-cve-2026-31431 lpe cve-2026-31431  vulnerability copy fail is a linux kernel vulnerability allowing local privilege escalation. copy fail 是一个允许本地权限提升的 linux 内核漏洞。 # copy fail · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: copy fail resource_label: exploit resource_type: exploit resource_url: https://github.com/theori-io/copy-fail-cve-2026-31431 parent_primary_url: https://copy.fail/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"copy fail\"](https://copy.fail/) [summary] [[article](https://xint.io/blog/copy-fail-linux-distributions)] [[exploit](https://github.com/theori-io/copy-fail-cve-2026-31431)] [cve-2026-31431] cves: cve-2026-31431 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc:  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "281f70f07c201d97",
      "item_id": "e2fa6def5df2e119",
      "slug": "2026-vulnerabilities-lpe-cve-2026-31431-copy-fail-primary-56a76d98",
      "year": 2026,
      "title": "CVE-2026-31431: Copy Fail",
      "item_title": "CVE-2026-31431: Copy Fail",
      "authors": [
        "Jorge Buzeti"
      ],
      "cves": [
        "CVE-2026-31431"
      ],
      "tags": [
        "Copy Fail"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://retr0.zip/blog/cve-2026-31431-copy-fail.html",
      "primary_url": "https://retr0.zip/blog/cve-2026-31431-copy-fail.html",
      "parent_primary_url": "https://retr0.zip/blog/cve-2026-31431-copy-fail.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-cve-2026-31431-copy-fail-primary-56a76d98.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2026-31431: Copy Fail record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2026-31431: Copy Fail resource_label: primary resource_type: article resource_url: https://retr0.zip/blog/cve-2026-31431-copy-fail.html parent_primary_url: https://retr0.zip/blog/cve-2026-31431-copy-fail.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"CVE-2026-31431: Copy Fail\" by Jorge Buzeti](https://retr0.zip/blog/cve-2026-31431-copy-fail.html) [article] [CVE-2026-31431] [Copy Fail] cves: CVE-2026-31431 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_po",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://retr0.zip/blog/cve-2026-31431-copy-fail.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://retr0.zip/blog/cve-2026-31431-copy-fail.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2026-31431"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2026-31431 details the Copy Fail vulnerability in the Linux kernel.",
      "summary_zh": "CVE-2026-31431 详细描述了 Linux 内核中的 Copy Fail 漏洞。",
      "source_markdown": "[2026: \"CVE-2026-31431: Copy Fail\" by Jorge Buzeti](https://retr0.zip/blog/cve-2026-31431-copy-fail.html) [article] [CVE-2026-31431] [Copy Fail]",
      "search_text": "cve-2026-31431: copy fail cve-2026-31431: copy fail jorge buzeti cve-2026-31431 copy fail vulnerabilities lpe lpe primary article https://retr0.zip/blog/cve-2026-31431-copy-fail.html lpe cve-2026-31431  vulnerability cve-2026-31431 details the copy fail vulnerability in the linux kernel. cve-2026-31431 详细描述了 linux 内核中的 copy fail 漏洞。 # cve-2026-31431: copy fail record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2026-31431: copy fail resource_label: primary resource_type: article resource_url: https://retr0.zip/blog/cve-2026-31431-copy-fail.html parent_primary_url: https://retr0.zip/blog/cve-2026-31431-copy-fail.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"cve-2026-31431: copy fail\" by jorge buzeti](https://retr0.zip/blog/cve-2026-31431-copy-fail.html) [article] [cve-2026-31431] [copy fail] cves: cve-2026-31431 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_po unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "60a11c27e3cb6125",
      "item_id": "5d7a74dbc8ab17a6",
      "slug": "2026-vulnerabilities-lpe-copy-fail-a-4-byte-page-cache-write-lpe-primary-3fd89047",
      "year": 2026,
      "title": "Copy Fail: A 4-Byte Page-Cache Write LPE",
      "item_title": "Copy Fail: A 4-Byte Page-Cache Write LPE",
      "authors": [
        "Axura"
      ],
      "cves": [
        "CVE-2026-31431"
      ],
      "tags": [
        "Copy Fail"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://4xura.com/binex/kernel/copy-fail/",
      "primary_url": "https://4xura.com/binex/kernel/copy-fail/",
      "parent_primary_url": "https://4xura.com/binex/kernel/copy-fail/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-copy-fail-a-4-byte-page-cache-write-lpe-primary-3fd89047.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Copy Fail: A 4-Byte Page-Cache Write LPE record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Copy Fail: A 4-Byte Page-Cache Write LPE resource_label: primary resource_type: article resource_url: https://4xura.com/binex/kernel/copy-fail/ parent_primary_url: https://4xura.com/binex/kernel/copy-fail/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Copy Fail: A 4-Byte Page-Cache Write LPE\" by Axura](https://4xura.com/binex/kernel/copy-fail/) [article] [[exploit](https://github.com/4xura/CVE-2026-31431-Copy-Fail)] [CVE-2026-31431] [Copy Fail] cves: CVE-2026-31431 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devi",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://4xura.com/binex/kernel/copy-fail/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/4xura/CVE-2026-31431-Copy-Fail"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://4xura.com/binex/kernel/copy-fail/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/4xura/CVE-2026-31431-Copy-Fail"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/4xura/CVE-2026-31431-Copy-Fail"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2026-31431"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses the Copy Fail vulnerability and its implications.",
      "summary_zh": "本文讨论了 Copy Fail 漏洞及其影响。",
      "source_markdown": "[2026: \"Copy Fail: A 4-Byte Page-Cache Write LPE\" by Axura](https://4xura.com/binex/kernel/copy-fail/) [article] [[exploit](https://github.com/4xura/CVE-2026-31431-Copy-Fail)] [CVE-2026-31431] [Copy Fail]",
      "search_text": "copy fail: a 4-byte page-cache write lpe copy fail: a 4-byte page-cache write lpe axura cve-2026-31431 copy fail vulnerabilities lpe lpe primary article https://4xura.com/binex/kernel/copy-fail/ lpe cve-2026-31431  vulnerability this article discusses the copy fail vulnerability and its implications. 本文讨论了 copy fail 漏洞及其影响。 # copy fail: a 4-byte page-cache write lpe record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: copy fail: a 4-byte page-cache write lpe resource_label: primary resource_type: article resource_url: https://4xura.com/binex/kernel/copy-fail/ parent_primary_url: https://4xura.com/binex/kernel/copy-fail/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"copy fail: a 4-byte page-cache write lpe\" by axura](https://4xura.com/binex/kernel/copy-fail/) [article] [[exploit](https://github.com/4xura/cve-2026-31431-copy-fail)] [cve-2026-31431] [copy fail] cves: cve-2026-31431 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devi unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "7df231f5414baf28",
      "item_id": "5d7a74dbc8ab17a6",
      "slug": "2026-vulnerabilities-lpe-copy-fail-a-4-byte-page-cache-write-lpe-exploit-16e0f099",
      "year": 2026,
      "title": "Copy Fail: A 4-Byte Page-Cache Write LPE · exploit",
      "item_title": "Copy Fail: A 4-Byte Page-Cache Write LPE",
      "authors": [
        "Axura"
      ],
      "cves": [
        "CVE-2026-31431"
      ],
      "tags": [
        "Copy Fail"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/4xura/CVE-2026-31431-Copy-Fail",
      "primary_url": "https://github.com/4xura/CVE-2026-31431-Copy-Fail",
      "parent_primary_url": "https://4xura.com/binex/kernel/copy-fail/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-copy-fail-a-4-byte-page-cache-write-lpe-exploit-16e0f099.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Copy Fail: A 4-Byte Page-Cache Write LPE · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Copy Fail: A 4-Byte Page-Cache Write LPE resource_label: exploit resource_type: exploit resource_url: https://github.com/4xura/CVE-2026-31431-Copy-Fail parent_primary_url: https://4xura.com/binex/kernel/copy-fail/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Copy Fail: A 4-Byte Page-Cache Write LPE\" by Axura](https://4xura.com/binex/kernel/copy-fail/) [article] [[exploit](https://github.com/4xura/CVE-2026-31431-Copy-Fail)] [CVE-2026-31431] [Copy Fail] cves: CVE-2026-31431 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: P",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://4xura.com/binex/kernel/copy-fail/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/4xura/CVE-2026-31431-Copy-Fail"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://4xura.com/binex/kernel/copy-fail/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/4xura/CVE-2026-31431-Copy-Fail"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/4xura/CVE-2026-31431-Copy-Fail"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2026-31431"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "An exploit for the Copy Fail vulnerability is available for demonstration.",
      "summary_zh": "Copy Fail 漏洞的利用代码可供演示。",
      "source_markdown": "[2026: \"Copy Fail: A 4-Byte Page-Cache Write LPE\" by Axura](https://4xura.com/binex/kernel/copy-fail/) [article] [[exploit](https://github.com/4xura/CVE-2026-31431-Copy-Fail)] [CVE-2026-31431] [Copy Fail]",
      "search_text": "copy fail: a 4-byte page-cache write lpe · exploit copy fail: a 4-byte page-cache write lpe axura cve-2026-31431 copy fail vulnerabilities lpe lpe exploit exploit https://github.com/4xura/cve-2026-31431-copy-fail lpe cve-2026-31431  exploit an exploit for the copy fail vulnerability is available for demonstration. copy fail 漏洞的利用代码可供演示。 # copy fail: a 4-byte page-cache write lpe · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: copy fail: a 4-byte page-cache write lpe resource_label: exploit resource_type: exploit resource_url: https://github.com/4xura/cve-2026-31431-copy-fail parent_primary_url: https://4xura.com/binex/kernel/copy-fail/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"copy fail: a 4-byte page-cache write lpe\" by axura](https://4xura.com/binex/kernel/copy-fail/) [article] [[exploit](https://github.com/4xura/cve-2026-31431-copy-fail)] [cve-2026-31431] [copy fail] cves: cve-2026-31431 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: p unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "4f1c96b59c039f9a",
      "item_id": "1e04d46cdf369c35",
      "slug": "2026-vulnerabilities-lpe-af-alg-page-cache-cross-container-pivot-part-i-primary-30cd803e",
      "year": 2026,
      "title": "AF_ALG page-cache cross-container pivot: Part I",
      "item_title": "AF_ALG page-cache cross-container pivot: Part I",
      "authors": [
        "Massimiliano Oldani"
      ],
      "cves": [
        "CVE-2026-31431"
      ],
      "tags": [
        "Copy Fail"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/",
      "primary_url": "https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/",
      "parent_primary_url": "https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-af-alg-page-cache-cross-container-pivot-part-i-primary-30cd803e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# AF_ALG page-cache cross-container pivot: Part I record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: AF_ALG page-cache cross-container pivot: Part I resource_label: primary resource_type: article resource_url: https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/ parent_primary_url: https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"AF_ALG page-cache cross-container pivot: Part I\" by Massimiliano Oldani](https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/) [article] [[exploit](https://github.com/sgkdev/page_inject/)] [CVE-2026-31431] [Copy Fail] cves: CVE-2026-31431 android_impact_status",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/sgkdev/page_inject/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/sgkdev/page_inject/"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/sgkdev/page_inject/"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2026-31431"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "AF_ALG page-cache cross-container pivot explores a variant of the Copy Fail vulnerability.",
      "summary_zh": "AF_ALG page-cache 跨容器转移探讨了 Copy Fail 漏洞的一个变种。",
      "source_markdown": "[2026: \"AF_ALG page-cache cross-container pivot: Part I\" by Massimiliano Oldani](https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/) [article] [[exploit](https://github.com/sgkdev/page_inject/)] [CVE-2026-31431] [Copy Fail]",
      "search_text": "af_alg page-cache cross-container pivot: part i af_alg page-cache cross-container pivot: part i massimiliano oldani cve-2026-31431 copy fail vulnerabilities lpe lpe primary article https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/ lpe cve-2026-31431  vulnerability af_alg page-cache cross-container pivot explores a variant of the copy fail vulnerability. af_alg page-cache 跨容器转移探讨了 copy fail 漏洞的一个变种。 # af_alg page-cache cross-container pivot: part i record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: af_alg page-cache cross-container pivot: part i resource_label: primary resource_type: article resource_url: https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/ parent_primary_url: https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"af_alg page-cache cross-container pivot: part i\" by massimiliano oldani](https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/) [article] [[exploit](https://github.com/sgkdev/page_inject/)] [cve-2026-31431] [copy fail] cves: cve-2026-31431 android_impact_status unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "778a282bcf611362",
      "item_id": "1e04d46cdf369c35",
      "slug": "2026-vulnerabilities-lpe-af-alg-page-cache-cross-container-pivot-part-i-exploit-23593e06",
      "year": 2026,
      "title": "AF_ALG page-cache cross-container pivot: Part I · exploit",
      "item_title": "AF_ALG page-cache cross-container pivot: Part I",
      "authors": [
        "Massimiliano Oldani"
      ],
      "cves": [
        "CVE-2026-31431"
      ],
      "tags": [
        "Copy Fail"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/sgkdev/page_inject/",
      "primary_url": "https://github.com/sgkdev/page_inject/",
      "parent_primary_url": "https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-af-alg-page-cache-cross-container-pivot-part-i-exploit-23593e06.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# AF_ALG page-cache cross-container pivot: Part I · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: AF_ALG page-cache cross-container pivot: Part I resource_label: exploit resource_type: exploit resource_url: https://github.com/sgkdev/page_inject/ parent_primary_url: https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"AF_ALG page-cache cross-container pivot: Part I\" by Massimiliano Oldani](https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/) [article] [[exploit](https://github.com/sgkdev/page_inject/)] [CVE-2026-31431] [Copy Fail] cves: CVE-2026-31431 android_impact_status: unknown android_impact_reason: Linux kernel vulnerabi",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/sgkdev/page_inject/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/sgkdev/page_inject/"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/sgkdev/page_inject/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2026-31431"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "An exploit for the AF_ALG page-cache cross-container pivot is available.",
      "summary_zh": "AF_ALG 页面缓存跨容器转移的利用代码可用。",
      "source_markdown": "[2026: \"AF_ALG page-cache cross-container pivot: Part I\" by Massimiliano Oldani](https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/) [article] [[exploit](https://github.com/sgkdev/page_inject/)] [CVE-2026-31431] [Copy Fail]",
      "search_text": "af_alg page-cache cross-container pivot: part i · exploit af_alg page-cache cross-container pivot: part i massimiliano oldani cve-2026-31431 copy fail vulnerabilities lpe lpe exploit exploit https://github.com/sgkdev/page_inject/ lpe cve-2026-31431  exploit an exploit for the af_alg page-cache cross-container pivot is available. af_alg 页面缓存跨容器转移的利用代码可用。 # af_alg page-cache cross-container pivot: part i · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: af_alg page-cache cross-container pivot: part i resource_label: exploit resource_type: exploit resource_url: https://github.com/sgkdev/page_inject/ parent_primary_url: https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"af_alg page-cache cross-container pivot: part i\" by massimiliano oldani](https://www.linkedin.com/pulse/afalg-page-cache-cross-container-pivot-part-i-massimiliano-oldani-jgfyf/) [article] [[exploit](https://github.com/sgkdev/page_inject/)] [cve-2026-31431] [copy fail] cves: cve-2026-31431 android_impact_status: unknown android_impact_reason: linux kernel vulnerabi unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "4c998382618b90bf",
      "item_id": "1c32a4d49eb7ec5b",
      "slug": "2026-vulnerabilities-lpe-copy-fail-from-pod-to-host-primary-b39473f4",
      "year": 2026,
      "title": "Copy Fail: From Pod to Host.",
      "item_title": "Copy Fail: From Pod to Host.",
      "authors": [
        "Juno Im"
      ],
      "cves": [
        "CVE-2026-31431"
      ],
      "tags": [
        "Copy Fail"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://xint.io/blog/copy-fail-pod-to-host",
      "primary_url": "https://xint.io/blog/copy-fail-pod-to-host",
      "parent_primary_url": "https://xint.io/blog/copy-fail-pod-to-host",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-copy-fail-from-pod-to-host-primary-b39473f4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Copy Fail: From Pod to Host. record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Copy Fail: From Pod to Host. resource_label: primary resource_type: article resource_url: https://xint.io/blog/copy-fail-pod-to-host parent_primary_url: https://xint.io/blog/copy-fail-pod-to-host source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Copy Fail: From Pod to Host.\" by Juno Im](https://xint.io/blog/copy-fail-pod-to-host) [article] [[exploit](https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC)] [CVE-2026-31431] [Copy Fail] cves: CVE-2026-31431 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use App",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://xint.io/blog/copy-fail-pod-to-host"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://xint.io/blog/copy-fail-pod-to-host"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2026-31431"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Copy Fail: From Pod to Host discusses privilege escalation techniques in Kubernetes.",
      "summary_zh": "Copy Fail: 从 Pod 到 Host 讨论了 Kubernetes 中的权限提升技术。",
      "source_markdown": "[2026: \"Copy Fail: From Pod to Host.\" by Juno Im](https://xint.io/blog/copy-fail-pod-to-host) [article] [[exploit](https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC)] [CVE-2026-31431] [Copy Fail]",
      "search_text": "copy fail: from pod to host. copy fail: from pod to host. juno im cve-2026-31431 copy fail vulnerabilities lpe lpe primary article https://xint.io/blog/copy-fail-pod-to-host lpe cve-2026-31431  vulnerability copy fail: from pod to host discusses privilege escalation techniques in kubernetes. copy fail: 从 pod 到 host 讨论了 kubernetes 中的权限提升技术。 # copy fail: from pod to host. record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: copy fail: from pod to host. resource_label: primary resource_type: article resource_url: https://xint.io/blog/copy-fail-pod-to-host parent_primary_url: https://xint.io/blog/copy-fail-pod-to-host source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"copy fail: from pod to host.\" by juno im](https://xint.io/blog/copy-fail-pod-to-host) [article] [[exploit](https://github.com/percivalll/copy-fail-cve-2026-31431-kubernetes-poc)] [cve-2026-31431] [copy fail] cves: cve-2026-31431 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use app unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "0580adbed9d74b2b",
      "item_id": "1c32a4d49eb7ec5b",
      "slug": "2026-vulnerabilities-lpe-copy-fail-from-pod-to-host-exploit-16ac8b1f",
      "year": 2026,
      "title": "Copy Fail: From Pod to Host. · exploit",
      "item_title": "Copy Fail: From Pod to Host.",
      "authors": [
        "Juno Im"
      ],
      "cves": [
        "CVE-2026-31431"
      ],
      "tags": [
        "Copy Fail"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC",
      "primary_url": "https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC",
      "parent_primary_url": "https://xint.io/blog/copy-fail-pod-to-host",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-copy-fail-from-pod-to-host-exploit-16ac8b1f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Copy Fail: From Pod to Host. · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Copy Fail: From Pod to Host. resource_label: exploit resource_type: exploit resource_url: https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC parent_primary_url: https://xint.io/blog/copy-fail-pod-to-host source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Copy Fail: From Pod to Host.\" by Juno Im](https://xint.io/blog/copy-fail-pod-to-host) [article] [[exploit](https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC)] [CVE-2026-31431] [Copy Fail] cves: CVE-2026-31431 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_r",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://xint.io/blog/copy-fail-pod-to-host"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://xint.io/blog/copy-fail-pod-to-host"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2026-31431"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "An exploit for the Copy Fail: From Pod to Host vulnerability is available.",
      "summary_zh": "Copy Fail: 从 Pod 到 Host 漏洞的利用代码可用。",
      "source_markdown": "[2026: \"Copy Fail: From Pod to Host.\" by Juno Im](https://xint.io/blog/copy-fail-pod-to-host) [article] [[exploit](https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC)] [CVE-2026-31431] [Copy Fail]",
      "search_text": "copy fail: from pod to host. · exploit copy fail: from pod to host. juno im cve-2026-31431 copy fail vulnerabilities lpe lpe exploit exploit https://github.com/percivalll/copy-fail-cve-2026-31431-kubernetes-poc lpe cve-2026-31431  exploit an exploit for the copy fail: from pod to host vulnerability is available. copy fail: 从 pod 到 host 漏洞的利用代码可用。 # copy fail: from pod to host. · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: copy fail: from pod to host. resource_label: exploit resource_type: exploit resource_url: https://github.com/percivalll/copy-fail-cve-2026-31431-kubernetes-poc parent_primary_url: https://xint.io/blog/copy-fail-pod-to-host source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"copy fail: from pod to host.\" by juno im](https://xint.io/blog/copy-fail-pod-to-host) [article] [[exploit](https://github.com/percivalll/copy-fail-cve-2026-31431-kubernetes-poc)] [cve-2026-31431] [copy fail] cves: cve-2026-31431 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_r unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "4ee7e831b48ab69c",
      "item_id": "a2f08dbcf22ae73e",
      "slug": "2026-vulnerabilities-lpe-dirty-frag-primary-396fb7de",
      "year": 2026,
      "title": "Dirty Frag",
      "item_title": "Dirty Frag",
      "authors": [
        "Hyunwoo Kim"
      ],
      "cves": [
        "CVE-2026-43284",
        "CVE-2026-43500"
      ],
      "tags": [
        "Dirty Frag"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md",
      "primary_url": "https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md",
      "parent_primary_url": "https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-dirty-frag-primary-396fb7de.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Dirty Frag record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Dirty Frag resource_label: primary resource_type: article resource_url: https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md parent_primary_url: https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Dirty Frag\" by Hyunwoo Kim](https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md) [article] [[exploit](https://github.com/V4bel/dirtyfrag)] [CVE-2026-43284] [CVE-2026-43500] [Dirty Frag] cves: CVE-2026-43284, CVE-2026-43500 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production i",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/V4bel/dirtyfrag"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/V4bel/dirtyfrag"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md",
        "https://github.com/V4bel/dirtyfrag"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2026-43284",
        "CVE-2026-43500"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Dirty Frag is a Linux kernel vulnerability affecting privilege escalation.",
      "summary_zh": "Dirty Frag 是一个影响权限提升的 Linux 内核漏洞。",
      "source_markdown": "[2026: \"Dirty Frag\" by Hyunwoo Kim](https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md) [article] [[exploit](https://github.com/V4bel/dirtyfrag)] [CVE-2026-43284] [CVE-2026-43500] [Dirty Frag]",
      "search_text": "dirty frag dirty frag hyunwoo kim cve-2026-43284 cve-2026-43500 dirty frag vulnerabilities lpe lpe primary article https://github.com/v4bel/dirtyfrag/blob/master/assets/write-up.md lpe cve-2026-43284 cve-2026-43500  vulnerability dirty frag is a linux kernel vulnerability affecting privilege escalation. dirty frag 是一个影响权限提升的 linux 内核漏洞。 # dirty frag record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: dirty frag resource_label: primary resource_type: article resource_url: https://github.com/v4bel/dirtyfrag/blob/master/assets/write-up.md parent_primary_url: https://github.com/v4bel/dirtyfrag/blob/master/assets/write-up.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"dirty frag\" by hyunwoo kim](https://github.com/v4bel/dirtyfrag/blob/master/assets/write-up.md) [article] [[exploit](https://github.com/v4bel/dirtyfrag)] [cve-2026-43284] [cve-2026-43500] [dirty frag] cves: cve-2026-43284, cve-2026-43500 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production i unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "01fa15bfb63706f8",
      "item_id": "a2f08dbcf22ae73e",
      "slug": "2026-vulnerabilities-lpe-dirty-frag-exploit-30741dd1",
      "year": 2026,
      "title": "Dirty Frag · exploit",
      "item_title": "Dirty Frag",
      "authors": [
        "Hyunwoo Kim"
      ],
      "cves": [
        "CVE-2026-43284",
        "CVE-2026-43500"
      ],
      "tags": [
        "Dirty Frag"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/V4bel/dirtyfrag",
      "primary_url": "https://github.com/V4bel/dirtyfrag",
      "parent_primary_url": "https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-dirty-frag-exploit-30741dd1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Dirty Frag · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Dirty Frag resource_label: exploit resource_type: exploit resource_url: https://github.com/V4bel/dirtyfrag parent_primary_url: https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Dirty Frag\" by Hyunwoo Kim](https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md) [article] [[exploit](https://github.com/V4bel/dirtyfrag)] [CVE-2026-43284] [CVE-2026-43500] [Dirty Frag] cves: CVE-2026-43284, CVE-2026-43500 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple'",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/V4bel/dirtyfrag"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/V4bel/dirtyfrag"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md",
        "https://github.com/V4bel/dirtyfrag"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2026-43284",
        "CVE-2026-43500"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "An exploit for the Dirty Frag vulnerability is available for demonstration.",
      "summary_zh": "Dirty Frag 漏洞的利用代码可供演示。",
      "source_markdown": "[2026: \"Dirty Frag\" by Hyunwoo Kim](https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md) [article] [[exploit](https://github.com/V4bel/dirtyfrag)] [CVE-2026-43284] [CVE-2026-43500] [Dirty Frag]",
      "search_text": "dirty frag · exploit dirty frag hyunwoo kim cve-2026-43284 cve-2026-43500 dirty frag vulnerabilities lpe lpe exploit exploit https://github.com/v4bel/dirtyfrag lpe cve-2026-43284 cve-2026-43500  exploit an exploit for the dirty frag vulnerability is available for demonstration. dirty frag 漏洞的利用代码可供演示。 # dirty frag · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: dirty frag resource_label: exploit resource_type: exploit resource_url: https://github.com/v4bel/dirtyfrag parent_primary_url: https://github.com/v4bel/dirtyfrag/blob/master/assets/write-up.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"dirty frag\" by hyunwoo kim](https://github.com/v4bel/dirtyfrag/blob/master/assets/write-up.md) [article] [[exploit](https://github.com/v4bel/dirtyfrag)] [cve-2026-43284] [cve-2026-43500] [dirty frag] cves: cve-2026-43284, cve-2026-43500 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple' unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "4c9be9ce2369acae",
      "item_id": "4422c40198beaa72",
      "slug": "2026-vulnerabilities-lpe-copy-fail-2-electric-boogaloo-primary-ae8cc805",
      "year": 2026,
      "title": "copy fail 2: electric boogaloo",
      "item_title": "copy fail 2: electric boogaloo",
      "authors": [
        "SiCk"
      ],
      "cves": [
        "CVE-2026-43284"
      ],
      "tags": [
        "Dirty Frag"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://afflicted.sh/blog/posts/copy-fail-2.html",
      "primary_url": "https://afflicted.sh/blog/posts/copy-fail-2.html",
      "parent_primary_url": "https://afflicted.sh/blog/posts/copy-fail-2.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-copy-fail-2-electric-boogaloo-primary-ae8cc805.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# copy fail 2: electric boogaloo record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: copy fail 2: electric boogaloo resource_label: primary resource_type: article resource_url: https://afflicted.sh/blog/posts/copy-fail-2.html parent_primary_url: https://afflicted.sh/blog/posts/copy-fail-2.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"copy fail 2: electric boogaloo\" by SiCk](https://afflicted.sh/blog/posts/copy-fail-2.html) [article] [[exploit](https://github.com/0xdeadbeefnetwork/Copy_Fail2-Electric_Boogaloo)] [CVE-2026-43284] [Dirty Frag] cves: CVE-2026-43284 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production i",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://afflicted.sh/blog/posts/copy-fail-2.html"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/0xdeadbeefnetwork/Copy_Fail2-Electric_Boogaloo"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://afflicted.sh/blog/posts/copy-fail-2.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/0xdeadbeefnetwork/Copy_Fail2-Electric_Boogaloo"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/0xdeadbeefnetwork/Copy_Fail2-Electric_Boogaloo"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2026-43284"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Copy fail 2: electric boogaloo is a follow-up article on the Dirty Frag vulnerability.",
      "summary_zh": "Copy fail 2: electric boogaloo 是关于 Dirty Frag 漏洞的后续文章。",
      "source_markdown": "[2026: \"copy fail 2: electric boogaloo\" by SiCk](https://afflicted.sh/blog/posts/copy-fail-2.html) [article] [[exploit](https://github.com/0xdeadbeefnetwork/Copy_Fail2-Electric_Boogaloo)] [CVE-2026-43284] [Dirty Frag]",
      "search_text": "copy fail 2: electric boogaloo copy fail 2: electric boogaloo sick cve-2026-43284 dirty frag vulnerabilities lpe lpe primary article https://afflicted.sh/blog/posts/copy-fail-2.html lpe cve-2026-43284  vulnerability copy fail 2: electric boogaloo is a follow-up article on the dirty frag vulnerability. copy fail 2: electric boogaloo 是关于 dirty frag 漏洞的后续文章。 # copy fail 2: electric boogaloo record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: copy fail 2: electric boogaloo resource_label: primary resource_type: article resource_url: https://afflicted.sh/blog/posts/copy-fail-2.html parent_primary_url: https://afflicted.sh/blog/posts/copy-fail-2.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"copy fail 2: electric boogaloo\" by sick](https://afflicted.sh/blog/posts/copy-fail-2.html) [article] [[exploit](https://github.com/0xdeadbeefnetwork/copy_fail2-electric_boogaloo)] [cve-2026-43284] [dirty frag] cves: cve-2026-43284 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production i unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "54d48a03cff97c6d",
      "item_id": "4422c40198beaa72",
      "slug": "2026-vulnerabilities-lpe-copy-fail-2-electric-boogaloo-exploit-b5963664",
      "year": 2026,
      "title": "copy fail 2: electric boogaloo · exploit",
      "item_title": "copy fail 2: electric boogaloo",
      "authors": [
        "SiCk"
      ],
      "cves": [
        "CVE-2026-43284"
      ],
      "tags": [
        "Dirty Frag"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/0xdeadbeefnetwork/Copy_Fail2-Electric_Boogaloo",
      "primary_url": "https://github.com/0xdeadbeefnetwork/Copy_Fail2-Electric_Boogaloo",
      "parent_primary_url": "https://afflicted.sh/blog/posts/copy-fail-2.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-copy-fail-2-electric-boogaloo-exploit-b5963664.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# copy fail 2: electric boogaloo · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: copy fail 2: electric boogaloo resource_label: exploit resource_type: exploit resource_url: https://github.com/0xdeadbeefnetwork/Copy_Fail2-Electric_Boogaloo parent_primary_url: https://afflicted.sh/blog/posts/copy-fail-2.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"copy fail 2: electric boogaloo\" by SiCk](https://afflicted.sh/blog/posts/copy-fail-2.html) [article] [[exploit](https://github.com/0xdeadbeefnetwork/Copy_Fail2-Electric_Boogaloo)] [CVE-2026-43284] [Dirty Frag] cves: CVE-2026-43284 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://afflicted.sh/blog/posts/copy-fail-2.html"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/0xdeadbeefnetwork/Copy_Fail2-Electric_Boogaloo"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://afflicted.sh/blog/posts/copy-fail-2.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/0xdeadbeefnetwork/Copy_Fail2-Electric_Boogaloo"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/0xdeadbeefnetwork/Copy_Fail2-Electric_Boogaloo"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2026-43284"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "An exploit for the copy fail 2: electric boogaloo vulnerability is available.",
      "summary_zh": "copy fail 2: electric boogaloo 漏洞的利用代码可用。",
      "source_markdown": "[2026: \"copy fail 2: electric boogaloo\" by SiCk](https://afflicted.sh/blog/posts/copy-fail-2.html) [article] [[exploit](https://github.com/0xdeadbeefnetwork/Copy_Fail2-Electric_Boogaloo)] [CVE-2026-43284] [Dirty Frag]",
      "search_text": "copy fail 2: electric boogaloo · exploit copy fail 2: electric boogaloo sick cve-2026-43284 dirty frag vulnerabilities lpe lpe exploit exploit https://github.com/0xdeadbeefnetwork/copy_fail2-electric_boogaloo lpe cve-2026-43284  exploit an exploit for the copy fail 2: electric boogaloo vulnerability is available. copy fail 2: electric boogaloo 漏洞的利用代码可用。 # copy fail 2: electric boogaloo · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: copy fail 2: electric boogaloo resource_label: exploit resource_type: exploit resource_url: https://github.com/0xdeadbeefnetwork/copy_fail2-electric_boogaloo parent_primary_url: https://afflicted.sh/blog/posts/copy-fail-2.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"copy fail 2: electric boogaloo\" by sick](https://afflicted.sh/blog/posts/copy-fail-2.html) [article] [[exploit](https://github.com/0xdeadbeefnetwork/copy_fail2-electric_boogaloo)] [cve-2026-43284] [dirty frag] cves: cve-2026-43284 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "a635ce9ab7b80305",
      "item_id": "69e7947bd8dfb242",
      "slug": "2026-vulnerabilities-lpe-discovery-and-disclosure-of-an-rxgk-variant-in-the-linux-kernel-privilege-escalation-",
      "year": 2026,
      "title": "Discovery and Disclosure of an RxGK Variant in the Linux Kernel Privilege Escalation Vulnerability Family \"Dirty Frag",
      "item_title": "Discovery and Disclosure of an RxGK Variant in the Linux Kernel Privilege Escalation Vulnerability Family \"Dirty Frag",
      "authors": [],
      "cves": [
        "CVE-2026-43500"
      ],
      "tags": [
        "Dirty Frag"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ikotaslabs.com/news/2026-05-11?lang=en",
      "primary_url": "https://ikotaslabs.com/news/2026-05-11?lang=en",
      "parent_primary_url": "https://ikotaslabs.com/news/2026-05-11?lang=en",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-discovery-and-disclosure-of-an-rxgk-variant-in-the-linux-kernel-privilege-escalation-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Discovery and Disclosure of an RxGK Variant in the Linux Kernel Privilege Escalation Vulnerability Family \"Dirty Frag record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Discovery and Disclosure of an RxGK Variant in the Linux Kernel Privilege Escalation Vulnerability Family \"Dirty Frag resource_label: primary resource_type: article resource_url: https://ikotaslabs.com/news/2026-05-11?lang=en parent_primary_url: https://ikotaslabs.com/news/2026-05-11?lang=en source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Discovery and Disclosure of an RxGK Variant in the Linux Kernel Privilege Escalation Vulnerability Family \\\"Dirty Frag\\\"\"](https://ikotaslabs.com/news/2026-05-11?lang=en) [article] [CVE-2026-43500] [Dirty Frag] cves: CVE-2026-43500 android_impact_status: unknown android_impact_reason:",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ikotaslabs.com/news/2026-05-11?lang=en"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ikotaslabs.com/news/2026-05-11?lang=en"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2026-43500"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Discovery and Disclosure of an RxGK Variant in the Dirty Frag vulnerability family.",
      "summary_zh": "发现并披露了 Dirty Frag 漏洞家族中的 RxGK 变种。",
      "source_markdown": "[2026: \"Discovery and Disclosure of an RxGK Variant in the Linux Kernel Privilege Escalation Vulnerability Family \\\"Dirty Frag\\\"\"](https://ikotaslabs.com/news/2026-05-11?lang=en) [article] [CVE-2026-43500] [Dirty Frag]",
      "search_text": "discovery and disclosure of an rxgk variant in the linux kernel privilege escalation vulnerability family \"dirty frag discovery and disclosure of an rxgk variant in the linux kernel privilege escalation vulnerability family \"dirty frag  cve-2026-43500 dirty frag vulnerabilities lpe lpe primary article https://ikotaslabs.com/news/2026-05-11?lang=en lpe cve-2026-43500  vulnerability discovery and disclosure of an rxgk variant in the dirty frag vulnerability family. 发现并披露了 dirty frag 漏洞家族中的 rxgk 变种。 # discovery and disclosure of an rxgk variant in the linux kernel privilege escalation vulnerability family \"dirty frag record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: discovery and disclosure of an rxgk variant in the linux kernel privilege escalation vulnerability family \"dirty frag resource_label: primary resource_type: article resource_url: https://ikotaslabs.com/news/2026-05-11?lang=en parent_primary_url: https://ikotaslabs.com/news/2026-05-11?lang=en source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"discovery and disclosure of an rxgk variant in the linux kernel privilege escalation vulnerability family \\\"dirty frag\\\"\"](https://ikotaslabs.com/news/2026-05-11?lang=en) [article] [cve-2026-43500] [dirty frag] cves: cve-2026-43500 android_impact_status: unknown android_impact_reason: unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "01b5504ee41afa28",
      "item_id": "ee4bf0c92071d49d",
      "slug": "2026-vulnerabilities-lpe-load-bearing-assumptions-the-rxrpc-case-cve-2026-43500-and-the-constraint-that-was-ne",
      "year": 2026,
      "title": "Load-Bearing Assumptions: the rxrpc case (CVE-2026-43500) and the constraint that was never there",
      "item_title": "Load-Bearing Assumptions: the rxrpc case (CVE-2026-43500) and the constraint that was never there",
      "authors": [
        "Massimiliano Oldani"
      ],
      "cves": [
        "CVE-2026-43500"
      ],
      "tags": [
        "Dirty Frag"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/",
      "primary_url": "https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/",
      "parent_primary_url": "https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-load-bearing-assumptions-the-rxrpc-case-cve-2026-43500-and-the-constraint-that-was-ne.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Load-Bearing Assumptions: the rxrpc case (CVE-2026-43500) and the constraint that was never there record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Load-Bearing Assumptions: the rxrpc case (CVE-2026-43500) and the constraint that was never there resource_label: primary resource_type: article resource_url: https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/ parent_primary_url: https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Load-Bearing Assumptions: the rxrpc case (CVE-2026-43500) and the constraint that was never there\" by Massimiliano Oldani](https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-olda",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/sgkdev/rxrpc_privesc"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/sgkdev/rxrpc_privesc"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/sgkdev/rxrpc_privesc"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2026-43500"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Load-Bearing Assumptions discusses the rxrpc case related to the Dirty Frag vulnerability.",
      "summary_zh": "Load-Bearing Assumptions 讨论了与 Dirty Frag 漏洞相关的 rxrpc 案例。",
      "source_markdown": "[2026: \"Load-Bearing Assumptions: the rxrpc case (CVE-2026-43500) and the constraint that was never there\" by Massimiliano Oldani](https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/) [article] [[exploit](https://github.com/sgkdev/rxrpc_privesc)] [CVE-2026-43500] [Dirty Frag]",
      "search_text": "load-bearing assumptions: the rxrpc case (cve-2026-43500) and the constraint that was never there load-bearing assumptions: the rxrpc case (cve-2026-43500) and the constraint that was never there massimiliano oldani cve-2026-43500 dirty frag vulnerabilities lpe lpe primary article https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/ lpe cve-2026-43500  vulnerability load-bearing assumptions discusses the rxrpc case related to the dirty frag vulnerability. load-bearing assumptions 讨论了与 dirty frag 漏洞相关的 rxrpc 案例。 # load-bearing assumptions: the rxrpc case (cve-2026-43500) and the constraint that was never there record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: load-bearing assumptions: the rxrpc case (cve-2026-43500) and the constraint that was never there resource_label: primary resource_type: article resource_url: https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/ parent_primary_url: https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"load-bearing assumptions: the rxrpc case (cve-2026-43500) and the constraint that was never there\" by massimiliano oldani](https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-olda unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "46bc09b4a3a8c058",
      "item_id": "ee4bf0c92071d49d",
      "slug": "2026-vulnerabilities-lpe-load-bearing-assumptions-the-rxrpc-case-cve-2026-43500-and-the-constraint-that-was-ne-2",
      "year": 2026,
      "title": "Load-Bearing Assumptions: the rxrpc case (CVE-2026-43500) and the constraint that was never there · exploit",
      "item_title": "Load-Bearing Assumptions: the rxrpc case (CVE-2026-43500) and the constraint that was never there",
      "authors": [
        "Massimiliano Oldani"
      ],
      "cves": [
        "CVE-2026-43500"
      ],
      "tags": [
        "Dirty Frag"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/sgkdev/rxrpc_privesc",
      "primary_url": "https://github.com/sgkdev/rxrpc_privesc",
      "parent_primary_url": "https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-load-bearing-assumptions-the-rxrpc-case-cve-2026-43500-and-the-constraint-that-was-ne-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Load-Bearing Assumptions: the rxrpc case (CVE-2026-43500) and the constraint that was never there · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Load-Bearing Assumptions: the rxrpc case (CVE-2026-43500) and the constraint that was never there resource_label: exploit resource_type: exploit resource_url: https://github.com/sgkdev/rxrpc_privesc parent_primary_url: https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Load-Bearing Assumptions: the rxrpc case (CVE-2026-43500) and the constraint that was never there\" by Massimiliano Oldani](https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/) [article] [[exploit](https://github.com/s",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/sgkdev/rxrpc_privesc"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/sgkdev/rxrpc_privesc"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/sgkdev/rxrpc_privesc"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2026-43500"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "An exploit for the Load-Bearing Assumptions vulnerability is available.",
      "summary_zh": "Load-Bearing Assumptions 漏洞的利用代码可用。",
      "source_markdown": "[2026: \"Load-Bearing Assumptions: the rxrpc case (CVE-2026-43500) and the constraint that was never there\" by Massimiliano Oldani](https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/) [article] [[exploit](https://github.com/sgkdev/rxrpc_privesc)] [CVE-2026-43500] [Dirty Frag]",
      "search_text": "load-bearing assumptions: the rxrpc case (cve-2026-43500) and the constraint that was never there · exploit load-bearing assumptions: the rxrpc case (cve-2026-43500) and the constraint that was never there massimiliano oldani cve-2026-43500 dirty frag vulnerabilities lpe lpe exploit exploit https://github.com/sgkdev/rxrpc_privesc lpe cve-2026-43500  exploit an exploit for the load-bearing assumptions vulnerability is available. load-bearing assumptions 漏洞的利用代码可用。 # load-bearing assumptions: the rxrpc case (cve-2026-43500) and the constraint that was never there · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: load-bearing assumptions: the rxrpc case (cve-2026-43500) and the constraint that was never there resource_label: exploit resource_type: exploit resource_url: https://github.com/sgkdev/rxrpc_privesc parent_primary_url: https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"load-bearing assumptions: the rxrpc case (cve-2026-43500) and the constraint that was never there\" by massimiliano oldani](https://www.linkedin.com/pulse/load-bearing-assumptions-rxrpc-case-cve-2026-43500-never-oldani-uzyae/) [article] [[exploit](https://github.com/s unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "d540a9c1378241e3",
      "item_id": "03cf420e60c444e4",
      "slug": "2026-vulnerabilities-lpe-fragnesia-primary-ece4279c",
      "year": 2026,
      "title": "Fragnesia",
      "item_title": "Fragnesia",
      "authors": [
        "William Bowling"
      ],
      "cves": [
        "CVE-2026-46300"
      ],
      "tags": [
        "Fragnesia"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/v12-security/pocs/tree/main/fragnesia",
      "primary_url": "https://github.com/v12-security/pocs/tree/main/fragnesia",
      "parent_primary_url": "https://github.com/v12-security/pocs/tree/main/fragnesia",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-fragnesia-primary-ece4279c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fragnesia record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Fragnesia resource_label: primary resource_type: article resource_url: https://github.com/v12-security/pocs/tree/main/fragnesia parent_primary_url: https://github.com/v12-security/pocs/tree/main/fragnesia source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Fragnesia\" by William Bowling](https://github.com/v12-security/pocs/tree/main/fragnesia) [article] [[variant](https://github.com/v12-security/pocs/tree/main/fragnesia-5db89c99566fc)] [CVE-2026-46300] [Fragnesia] cves: CVE-2026-46300 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's X",
      "link_types": [
        "article",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/v12-security/pocs/tree/main/fragnesia"
        },
        {
          "label": "variant",
          "type": "artifact",
          "url": "https://github.com/v12-security/pocs/tree/main/fragnesia-5db89c99566fc"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/v12-security/pocs/tree/main/fragnesia"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "variant",
            "type": "artifact",
            "url": "https://github.com/v12-security/pocs/tree/main/fragnesia-5db89c99566fc"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/v12-security/pocs/tree/main/fragnesia",
        "https://github.com/v12-security/pocs/tree/main/fragnesia-5db89c99566fc"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2026-46300"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Fragnesia is a Linux kernel vulnerability affecting local privilege escalation.",
      "summary_zh": "Fragnesia 是一个影响本地权限提升的 Linux 内核漏洞。",
      "source_markdown": "[2026: \"Fragnesia\" by William Bowling](https://github.com/v12-security/pocs/tree/main/fragnesia) [article] [[variant](https://github.com/v12-security/pocs/tree/main/fragnesia-5db89c99566fc)] [CVE-2026-46300] [Fragnesia]",
      "search_text": "fragnesia fragnesia william bowling cve-2026-46300 fragnesia vulnerabilities lpe lpe primary article https://github.com/v12-security/pocs/tree/main/fragnesia lpe cve-2026-46300  vulnerability fragnesia is a linux kernel vulnerability affecting local privilege escalation. fragnesia 是一个影响本地权限提升的 linux 内核漏洞。 # fragnesia record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: fragnesia resource_label: primary resource_type: article resource_url: https://github.com/v12-security/pocs/tree/main/fragnesia parent_primary_url: https://github.com/v12-security/pocs/tree/main/fragnesia source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"fragnesia\" by william bowling](https://github.com/v12-security/pocs/tree/main/fragnesia) [article] [[variant](https://github.com/v12-security/pocs/tree/main/fragnesia-5db89c99566fc)] [cve-2026-46300] [fragnesia] cves: cve-2026-46300 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's x unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "774b7beeae2ef151",
      "item_id": "03cf420e60c444e4",
      "slug": "2026-vulnerabilities-lpe-fragnesia-variant-9363901a",
      "year": 2026,
      "title": "Fragnesia · variant",
      "item_title": "Fragnesia",
      "authors": [
        "William Bowling"
      ],
      "cves": [
        "CVE-2026-46300"
      ],
      "tags": [
        "Fragnesia"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "variant",
      "resource_type": "artifact",
      "resource_url": "https://github.com/v12-security/pocs/tree/main/fragnesia-5db89c99566fc",
      "primary_url": "https://github.com/v12-security/pocs/tree/main/fragnesia-5db89c99566fc",
      "parent_primary_url": "https://github.com/v12-security/pocs/tree/main/fragnesia",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-fragnesia-variant-9363901a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fragnesia · variant record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Fragnesia resource_label: variant resource_type: artifact resource_url: https://github.com/v12-security/pocs/tree/main/fragnesia-5db89c99566fc parent_primary_url: https://github.com/v12-security/pocs/tree/main/fragnesia source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Fragnesia\" by William Bowling](https://github.com/v12-security/pocs/tree/main/fragnesia) [article] [[variant](https://github.com/v12-security/pocs/tree/main/fragnesia-5db89c99566fc)] [CVE-2026-46300] [Fragnesia] cves: CVE-2026-46300 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production ",
      "link_types": [
        "article",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/v12-security/pocs/tree/main/fragnesia"
        },
        {
          "label": "variant",
          "type": "artifact",
          "url": "https://github.com/v12-security/pocs/tree/main/fragnesia-5db89c99566fc"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/v12-security/pocs/tree/main/fragnesia"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "variant",
            "type": "artifact",
            "url": "https://github.com/v12-security/pocs/tree/main/fragnesia-5db89c99566fc"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/v12-security/pocs/tree/main/fragnesia",
        "https://github.com/v12-security/pocs/tree/main/fragnesia-5db89c99566fc"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2026-46300"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "A variant of Fragnesia is available for demonstration.",
      "summary_zh": "Fragnesia 的一个变种可供演示。",
      "source_markdown": "[2026: \"Fragnesia\" by William Bowling](https://github.com/v12-security/pocs/tree/main/fragnesia) [article] [[variant](https://github.com/v12-security/pocs/tree/main/fragnesia-5db89c99566fc)] [CVE-2026-46300] [Fragnesia]",
      "search_text": "fragnesia · variant fragnesia william bowling cve-2026-46300 fragnesia vulnerabilities lpe lpe variant artifact https://github.com/v12-security/pocs/tree/main/fragnesia-5db89c99566fc lpe cve-2026-46300  vulnerability a variant of fragnesia is available for demonstration. fragnesia 的一个变种可供演示。 # fragnesia · variant record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: fragnesia resource_label: variant resource_type: artifact resource_url: https://github.com/v12-security/pocs/tree/main/fragnesia-5db89c99566fc parent_primary_url: https://github.com/v12-security/pocs/tree/main/fragnesia source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"fragnesia\" by william bowling](https://github.com/v12-security/pocs/tree/main/fragnesia) [article] [[variant](https://github.com/v12-security/pocs/tree/main/fragnesia-5db89c99566fc)] [cve-2026-46300] [fragnesia] cves: cve-2026-46300 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "8b1235c824efcf8f",
      "item_id": "4440b8c09a959fa7",
      "slug": "2026-vulnerabilities-lpe-dirtycbc-when-linux-kernel-decrypt-before-mac-turns-authenticated-encryption-into-a-p",
      "year": 2026,
      "title": "DirtyCBC: When Linux Kernel Decrypt-Before-MAC Turns Authenticated Encryption Into a Page-Cache Write",
      "item_title": "DirtyCBC: When Linux Kernel Decrypt-Before-MAC Turns Authenticated Encryption Into a Page-Cache Write",
      "authors": [
        "Kamil Leoniak"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [
        "Dirty CBC",
        "Dirty Decrypt"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://delphoslabs.com/blog/36142374-e1fe-80a9-9456-d3c64df81bd5/%20linux-rxgk-decrypt-mac",
      "primary_url": "https://delphoslabs.com/blog/36142374-e1fe-80a9-9456-d3c64df81bd5/%20linux-rxgk-decrypt-mac",
      "parent_primary_url": "https://delphoslabs.com/blog/36142374-e1fe-80a9-9456-d3c64df81bd5/%20linux-rxgk-decrypt-mac",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-dirtycbc-when-linux-kernel-decrypt-before-mac-turns-authenticated-encryption-into-a-p.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DirtyCBC: When Linux Kernel Decrypt-Before-MAC Turns Authenticated Encryption Into a Page-Cache Write record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: DirtyCBC: When Linux Kernel Decrypt-Before-MAC Turns Authenticated Encryption Into a Page-Cache Write resource_label: primary resource_type: article resource_url: https://delphoslabs.com/blog/36142374-e1fe-80a9-9456-d3c64df81bd5/%20linux-rxgk-decrypt-mac parent_primary_url: https://delphoslabs.com/blog/36142374-e1fe-80a9-9456-d3c64df81bd5/%20linux-rxgk-decrypt-mac source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"DirtyCBC: When Linux Kernel Decrypt-Before-MAC Turns Authenticated Encryption Into a Page-Cache Write\" by Kamil Leoniak](https://delphoslabs.com/blog/36142374-e1fe-80a9-9456-d3c64df81bd5/%20linux-rxgk-decrypt-mac) [article] [CV",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://delphoslabs.com/blog/36142374-e1fe-80a9-9456-d3c64df81bd5/%20linux-rxgk-decrypt-mac"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://delphoslabs.com/blog/36142374-e1fe-80a9-9456-d3c64df81bd5/%20linux-rxgk-decrypt-mac"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-UNKNOWN"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "DirtyCBC discusses a vulnerability related to authenticated encryption in the Linux kernel.",
      "summary_zh": "DirtyCBC 讨论了与 Linux 内核中认证加密相关的漏洞。",
      "source_markdown": "[2026: \"DirtyCBC: When Linux Kernel Decrypt-Before-MAC Turns Authenticated Encryption Into a Page-Cache Write\" by Kamil Leoniak](https://delphoslabs.com/blog/36142374-e1fe-80a9-9456-d3c64df81bd5/%20linux-rxgk-decrypt-mac) [article] [CVE-UNKNOWN] [Dirty CBC] [Dirty Decrypt]",
      "search_text": "dirtycbc: when linux kernel decrypt-before-mac turns authenticated encryption into a page-cache write dirtycbc: when linux kernel decrypt-before-mac turns authenticated encryption into a page-cache write kamil leoniak cve-unknown dirty cbc dirty decrypt vulnerabilities lpe lpe primary article https://delphoslabs.com/blog/36142374-e1fe-80a9-9456-d3c64df81bd5/%20linux-rxgk-decrypt-mac lpe cve-unknown  vulnerability dirtycbc discusses a vulnerability related to authenticated encryption in the linux kernel. dirtycbc 讨论了与 linux 内核中认证加密相关的漏洞。 # dirtycbc: when linux kernel decrypt-before-mac turns authenticated encryption into a page-cache write record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: dirtycbc: when linux kernel decrypt-before-mac turns authenticated encryption into a page-cache write resource_label: primary resource_type: article resource_url: https://delphoslabs.com/blog/36142374-e1fe-80a9-9456-d3c64df81bd5/%20linux-rxgk-decrypt-mac parent_primary_url: https://delphoslabs.com/blog/36142374-e1fe-80a9-9456-d3c64df81bd5/%20linux-rxgk-decrypt-mac source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"dirtycbc: when linux kernel decrypt-before-mac turns authenticated encryption into a page-cache write\" by kamil leoniak](https://delphoslabs.com/blog/36142374-e1fe-80a9-9456-d3c64df81bd5/%20linux-rxgk-decrypt-mac) [article] [cv unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3b49df79ba2b9ac3",
      "item_id": "806d1772950ae47d",
      "slug": "2026-vulnerabilities-lpe-pintheft-primary-310b7de1",
      "year": 2026,
      "title": "PinTheft",
      "item_title": "PinTheft",
      "authors": [
        "Aaron Esau"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/v12-security/pocs/tree/main/pintheft",
      "primary_url": "https://github.com/v12-security/pocs/tree/main/pintheft",
      "parent_primary_url": "https://github.com/v12-security/pocs/tree/main/pintheft",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-pintheft-primary-310b7de1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PinTheft record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: PinTheft resource_label: primary resource_type: article resource_url: https://github.com/v12-security/pocs/tree/main/pintheft parent_primary_url: https://github.com/v12-security/pocs/tree/main/pintheft source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"PinTheft\" by Aaron Esau](https://github.com/v12-security/pocs/tree/main/pintheft) [article] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/v12-security/pocs/tree/main/pintheft"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/v12-security/pocs/tree/main/pintheft"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/v12-security/pocs/tree/main/pintheft"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-UNKNOWN"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "PinTheft is a Linux kernel vulnerability affecting privilege escalation.",
      "summary_zh": "PinTheft 是一个影响权限提升的 Linux 内核漏洞。",
      "source_markdown": "[2026: \"PinTheft\" by Aaron Esau](https://github.com/v12-security/pocs/tree/main/pintheft) [article] [CVE-UNKNOWN]",
      "search_text": "pintheft pintheft aaron esau cve-unknown  vulnerabilities lpe lpe primary article https://github.com/v12-security/pocs/tree/main/pintheft lpe cve-unknown  vulnerability pintheft is a linux kernel vulnerability affecting privilege escalation. pintheft 是一个影响权限提升的 linux 内核漏洞。 # pintheft record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: pintheft resource_label: primary resource_type: article resource_url: https://github.com/v12-security/pocs/tree/main/pintheft parent_primary_url: https://github.com/v12-security/pocs/tree/main/pintheft source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"pintheft\" by aaron esau](https://github.com/v12-security/pocs/tree/main/pintheft) [article] [cve-unknown] cves: cve-unknown android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "44174eee0fa17c3b",
      "item_id": "bc77f54370eba677",
      "slug": "2026-vulnerabilities-lpe-from-zero-to-root-attacking-qualcomm-dsp-driver-primary-1ac67675",
      "year": 2026,
      "title": "From Zero To Root: Attacking Qualcomm DSP Driver",
      "item_title": "From Zero To Root: Attacking Qualcomm DSP Driver",
      "authors": [
        "Xiling Gong"
      ],
      "cves": [
        "CVE-2025-47394"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=TogmH2HEIKM",
      "primary_url": "https://www.youtube.com/watch?v=TogmH2HEIKM",
      "parent_primary_url": "https://www.youtube.com/watch?v=TogmH2HEIKM",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-from-zero-to-root-attacking-qualcomm-dsp-driver-primary-1ac67675.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# From Zero To Root: Attacking Qualcomm DSP Driver record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: From Zero To Root: Attacking Qualcomm DSP Driver resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=TogmH2HEIKM parent_primary_url: https://www.youtube.com/watch?v=TogmH2HEIKM source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"From Zero To Root: Attacking Qualcomm DSP Driver\" by Xiling Gong](https://www.youtube.com/watch?v=TogmH2HEIKM) [video] [CVE-2025-47394] cves: CVE-2025-47394 android_impact_status: possible android_impact_reason: mentions Qualcomm/Adreno Android SoC components ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls:",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=TogmH2HEIKM"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=TogmH2HEIKM"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions Qualcomm/Adreno Android SoC components",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2025-47394"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "From Zero To Root discusses attacking the Qualcomm DSP Driver for privilege escalation.",
      "summary_zh": "从零到根讨论了攻击 Qualcomm DSP 驱动程序以实现权限提升。",
      "source_markdown": "[2026: \"From Zero To Root: Attacking Qualcomm DSP Driver\" by Xiling Gong](https://www.youtube.com/watch?v=TogmH2HEIKM) [video] [CVE-2025-47394]",
      "search_text": "from zero to root: attacking qualcomm dsp driver from zero to root: attacking qualcomm dsp driver xiling gong cve-2025-47394  vulnerabilities lpe lpe primary video https://www.youtube.com/watch?v=togmh2heikm lpe cve-2025-47394  vulnerability from zero to root discusses attacking the qualcomm dsp driver for privilege escalation. 从零到根讨论了攻击 qualcomm dsp 驱动程序以实现权限提升。 # from zero to root: attacking qualcomm dsp driver record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: from zero to root: attacking qualcomm dsp driver resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=togmh2heikm parent_primary_url: https://www.youtube.com/watch?v=togmh2heikm source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"from zero to root: attacking qualcomm dsp driver\" by xiling gong](https://www.youtube.com/watch?v=togmh2heikm) [video] [cve-2025-47394] cves: cve-2025-47394 android_impact_status: possible android_impact_reason: mentions qualcomm/adreno android soc components ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: possible mentions qualcomm/adreno android soc components no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "0bfcabcebb52d539",
      "item_id": "1758f75c5002a807",
      "slug": "2026-vulnerabilities-lpe-tile-based-deferred-rooting-when-your-gpu-starts-rendering-to-kernel-code-space-prima",
      "year": 2026,
      "title": "Tile-Based Deferred Rooting: When Your GPU Starts Rendering To Kernel Code Space!",
      "item_title": "Tile-Based Deferred Rooting: When Your GPU Starts Rendering To Kernel Code Space!",
      "authors": [
        "Xingyu Jin",
        "Martijn Bogaard"
      ],
      "cves": [
        "CVE-2025-25180"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=KGbGU_MK9hY",
      "primary_url": "https://www.youtube.com/watch?v=KGbGU_MK9hY",
      "parent_primary_url": "https://www.youtube.com/watch?v=KGbGU_MK9hY",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-tile-based-deferred-rooting-when-your-gpu-starts-rendering-to-kernel-code-space-prima.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Tile-Based Deferred Rooting: When Your GPU Starts Rendering To Kernel Code Space! record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Tile-Based Deferred Rooting: When Your GPU Starts Rendering To Kernel Code Space! resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=KGbGU_MK9hY parent_primary_url: https://www.youtube.com/watch?v=KGbGU_MK9hY source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Tile-Based Deferred Rooting: When Your GPU Starts Rendering To Kernel Code Space!\" by Xingyu Jin and Martijn Bogaard](https://www.youtube.com/watch?v=KGbGU_MK9hY) [video] [CVE-2025-25180] cves: CVE-2025-25180 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-ba",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=KGbGU_MK9hY"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=KGbGU_MK9hY"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "GPU",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This video discusses a GPU vulnerability that allows rendering to kernel code space, leading to potential privilege escalation.",
      "summary_zh": "该视频讨论了一个GPU漏洞，允许渲染到内核代码空间，从而导致潜在的权限提升。",
      "source_markdown": "[2026: \"Tile-Based Deferred Rooting: When Your GPU Starts Rendering To Kernel Code Space!\" by Xingyu Jin and Martijn Bogaard](https://www.youtube.com/watch?v=KGbGU_MK9hY) [video] [CVE-2025-25180]",
      "search_text": "tile-based deferred rooting: when your gpu starts rendering to kernel code space! tile-based deferred rooting: when your gpu starts rendering to kernel code space! xingyu jin martijn bogaard cve-2025-25180  vulnerabilities lpe lpe primary video https://www.youtube.com/watch?v=kgbgu_mk9hy lpe gpu vulnerability  vulnerability this video discusses a gpu vulnerability that allows rendering to kernel code space, leading to potential privilege escalation. 该视频讨论了一个gpu漏洞，允许渲染到内核代码空间，从而导致潜在的权限提升。 # tile-based deferred rooting: when your gpu starts rendering to kernel code space! record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: tile-based deferred rooting: when your gpu starts rendering to kernel code space! resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=kgbgu_mk9hy parent_primary_url: https://www.youtube.com/watch?v=kgbgu_mk9hy source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"tile-based deferred rooting: when your gpu starts rendering to kernel code space!\" by xingyu jin and martijn bogaard](https://www.youtube.com/watch?v=kgbgu_mk9hy) [video] [cve-2025-25180] cves: cve-2025-25180 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-ba unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "129b18ccb233254a",
      "item_id": "0a7bd7e9e4b99168",
      "slug": "2026-vulnerabilities-lpe-privilege-escalation-via-a-page-use-after-free-in-qualcomm-s-ai-accelerator-linux-ker",
      "year": 2026,
      "title": "Privilege Escalation via a Page Use-After-Free in Qualcomm's AI Accelerator Linux Kernel Driver",
      "item_title": "Privilege Escalation via a Page Use-After-Free in Qualcomm's AI Accelerator Linux Kernel Driver",
      "authors": [
        "Lukas Maar"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://lukasmaar.github.io/posts/qaic-page-uaf/index.html",
      "primary_url": "https://lukasmaar.github.io/posts/qaic-page-uaf/index.html",
      "parent_primary_url": "https://lukasmaar.github.io/posts/qaic-page-uaf/index.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-privilege-escalation-via-a-page-use-after-free-in-qualcomm-s-ai-accelerator-linux-ker.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Privilege Escalation via a Page Use-After-Free in Qualcomm's AI Accelerator Linux Kernel Driver record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Privilege Escalation via a Page Use-After-Free in Qualcomm's AI Accelerator Linux Kernel Driver resource_label: primary resource_type: article resource_url: https://lukasmaar.github.io/posts/qaic-page-uaf/index.html parent_primary_url: https://lukasmaar.github.io/posts/qaic-page-uaf/index.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Privilege Escalation via a Page Use-After-Free in Qualcomm's AI Accelerator Linux Kernel Driver\" by Lukas Maar](https://lukasmaar.github.io/posts/qaic-page-uaf/index.html) [article] [[code](https://github.com/lukasmaar/qaic-page-uaf)] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: possible androi",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://lukasmaar.github.io/posts/qaic-page-uaf/index.html"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/lukasmaar/qaic-page-uaf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://lukasmaar.github.io/posts/qaic-page-uaf/index.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/lukasmaar/qaic-page-uaf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://lukasmaar.github.io/posts/qaic-page-uaf/index.html",
        "https://github.com/lukasmaar/qaic-page-uaf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions Qualcomm/Adreno Android SoC components",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "use-after-free",
        "Qualcomm"
      ],
      "affected_area": "AI Accelerator Driver",
      "exploit_stage": "vulnerability",
      "summary_en": "An article detailing a privilege escalation vulnerability via a use-after-free in Qualcomm's AI Accelerator driver.",
      "summary_zh": "一篇文章详细介绍了通过Qualcomm AI加速器驱动中的使用后释放漏洞进行权限提升的漏洞。",
      "source_markdown": "[2026: \"Privilege Escalation via a Page Use-After-Free in Qualcomm's AI Accelerator Linux Kernel Driver\" by Lukas Maar](https://lukasmaar.github.io/posts/qaic-page-uaf/index.html) [article] [[code](https://github.com/lukasmaar/qaic-page-uaf)] [CVE-UNKNOWN]",
      "search_text": "privilege escalation via a page use-after-free in qualcomm's ai accelerator linux kernel driver privilege escalation via a page use-after-free in qualcomm's ai accelerator linux kernel driver lukas maar cve-unknown  vulnerabilities lpe lpe primary article https://lukasmaar.github.io/posts/qaic-page-uaf/index.html lpe use-after-free qualcomm ai accelerator driver vulnerability an article detailing a privilege escalation vulnerability via a use-after-free in qualcomm's ai accelerator driver. 一篇文章详细介绍了通过qualcomm ai加速器驱动中的使用后释放漏洞进行权限提升的漏洞。 # privilege escalation via a page use-after-free in qualcomm's ai accelerator linux kernel driver record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: privilege escalation via a page use-after-free in qualcomm's ai accelerator linux kernel driver resource_label: primary resource_type: article resource_url: https://lukasmaar.github.io/posts/qaic-page-uaf/index.html parent_primary_url: https://lukasmaar.github.io/posts/qaic-page-uaf/index.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"privilege escalation via a page use-after-free in qualcomm's ai accelerator linux kernel driver\" by lukas maar](https://lukasmaar.github.io/posts/qaic-page-uaf/index.html) [article] [[code](https://github.com/lukasmaar/qaic-page-uaf)] [cve-unknown] cves: cve-unknown android_impact_status: possible androi possible mentions qualcomm/adreno android soc components no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "01812169121e1436",
      "item_id": "0a7bd7e9e4b99168",
      "slug": "2026-vulnerabilities-lpe-privilege-escalation-via-a-page-use-after-free-in-qualcomm-s-ai-accelerator-linux-ker-2",
      "year": 2026,
      "title": "Privilege Escalation via a Page Use-After-Free in Qualcomm's AI Accelerator Linux Kernel Driver · code",
      "item_title": "Privilege Escalation via a Page Use-After-Free in Qualcomm's AI Accelerator Linux Kernel Driver",
      "authors": [
        "Lukas Maar"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/lukasmaar/qaic-page-uaf",
      "primary_url": "https://github.com/lukasmaar/qaic-page-uaf",
      "parent_primary_url": "https://lukasmaar.github.io/posts/qaic-page-uaf/index.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-privilege-escalation-via-a-page-use-after-free-in-qualcomm-s-ai-accelerator-linux-ker-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Privilege Escalation via a Page Use-After-Free in Qualcomm's AI Accelerator Linux Kernel Driver · code record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Privilege Escalation via a Page Use-After-Free in Qualcomm's AI Accelerator Linux Kernel Driver resource_label: code resource_type: code resource_url: https://github.com/lukasmaar/qaic-page-uaf parent_primary_url: https://lukasmaar.github.io/posts/qaic-page-uaf/index.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Privilege Escalation via a Page Use-After-Free in Qualcomm's AI Accelerator Linux Kernel Driver\" by Lukas Maar](https://lukasmaar.github.io/posts/qaic-page-uaf/index.html) [article] [[code](https://github.com/lukasmaar/qaic-page-uaf)] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: possible android_impact_reason",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://lukasmaar.github.io/posts/qaic-page-uaf/index.html"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/lukasmaar/qaic-page-uaf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://lukasmaar.github.io/posts/qaic-page-uaf/index.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/lukasmaar/qaic-page-uaf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://lukasmaar.github.io/posts/qaic-page-uaf/index.html",
        "https://github.com/lukasmaar/qaic-page-uaf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions Qualcomm/Adreno Android SoC components",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "use-after-free",
        "Qualcomm"
      ],
      "affected_area": "AI Accelerator Driver",
      "exploit_stage": "code",
      "summary_en": "This resource provides code related to a privilege escalation vulnerability in Qualcomm's AI Accelerator driver.",
      "summary_zh": "该资源提供了与Qualcomm AI加速器驱动中的权限提升漏洞相关的代码。",
      "source_markdown": "[2026: \"Privilege Escalation via a Page Use-After-Free in Qualcomm's AI Accelerator Linux Kernel Driver\" by Lukas Maar](https://lukasmaar.github.io/posts/qaic-page-uaf/index.html) [article] [[code](https://github.com/lukasmaar/qaic-page-uaf)] [CVE-UNKNOWN]",
      "search_text": "privilege escalation via a page use-after-free in qualcomm's ai accelerator linux kernel driver · code privilege escalation via a page use-after-free in qualcomm's ai accelerator linux kernel driver lukas maar cve-unknown  vulnerabilities lpe lpe code code https://github.com/lukasmaar/qaic-page-uaf lpe use-after-free qualcomm ai accelerator driver code this resource provides code related to a privilege escalation vulnerability in qualcomm's ai accelerator driver. 该资源提供了与qualcomm ai加速器驱动中的权限提升漏洞相关的代码。 # privilege escalation via a page use-after-free in qualcomm's ai accelerator linux kernel driver · code record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: privilege escalation via a page use-after-free in qualcomm's ai accelerator linux kernel driver resource_label: code resource_type: code resource_url: https://github.com/lukasmaar/qaic-page-uaf parent_primary_url: https://lukasmaar.github.io/posts/qaic-page-uaf/index.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"privilege escalation via a page use-after-free in qualcomm's ai accelerator linux kernel driver\" by lukas maar](https://lukasmaar.github.io/posts/qaic-page-uaf/index.html) [article] [[code](https://github.com/lukasmaar/qaic-page-uaf)] [cve-unknown] cves: cve-unknown android_impact_status: possible android_impact_reason possible mentions qualcomm/adreno android soc components no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "259ac6a439359d48",
      "item_id": "0ba444448464a334",
      "slug": "2026-vulnerabilities-lpe-damned-oob-primary-3911cdaa",
      "year": 2026,
      "title": "Damned OOB",
      "item_title": "Damned OOB",
      "authors": [
        "Mohamed Salem Eddah"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ze3tar.github.io/post-zcrx.html",
      "primary_url": "https://ze3tar.github.io/post-zcrx.html",
      "parent_primary_url": "https://ze3tar.github.io/post-zcrx.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-damned-oob-primary-3911cdaa.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Damned OOB record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Damned OOB resource_label: primary resource_type: article resource_url: https://ze3tar.github.io/post-zcrx.html parent_primary_url: https://ze3tar.github.io/post-zcrx.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Damned OOB\" by Mohamed Salem Eddah](https://ze3tar.github.io/post-zcrx.html) [article] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://ze3tar.github.io/post-zcrx.html context_link",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ze3tar.github.io/post-zcrx.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ze3tar.github.io/post-zcrx.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://ze3tar.github.io/post-zcrx.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "out-of-bounds"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article discussing an out-of-bounds vulnerability that could lead to privilege escalation.",
      "summary_zh": "一篇文章讨论了可能导致权限提升的越界漏洞。",
      "source_markdown": "[2026: \"Damned OOB\" by Mohamed Salem Eddah](https://ze3tar.github.io/post-zcrx.html) [article] [CVE-UNKNOWN]",
      "search_text": "damned oob damned oob mohamed salem eddah cve-unknown  vulnerabilities lpe lpe primary article https://ze3tar.github.io/post-zcrx.html lpe out-of-bounds  vulnerability an article discussing an out-of-bounds vulnerability that could lead to privilege escalation. 一篇文章讨论了可能导致权限提升的越界漏洞。 # damned oob record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: damned oob resource_label: primary resource_type: article resource_url: https://ze3tar.github.io/post-zcrx.html parent_primary_url: https://ze3tar.github.io/post-zcrx.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"damned oob\" by mohamed salem eddah](https://ze3tar.github.io/post-zcrx.html) [article] [cve-unknown] cves: cve-unknown android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://ze3tar.github.io/post-zcrx.html context_link unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "26702a9887a2ae1e",
      "item_id": "af5a548bc62d4158",
      "slug": "2026-vulnerabilities-lpe-logic-bug-in-the-linux-kernel-s-ptrace-may-access-function-primary-57e4d2de",
      "year": 2026,
      "title": "Logic bug in the Linux kernel's __ptrace_may_access() function",
      "item_title": "Logic bug in the Linux kernel's __ptrace_may_access() function",
      "authors": [
        "Qualys Research Team"
      ],
      "cves": [
        "CVE-2026-46333"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://cdn2.qualys.com/advisory/2026/05/20/cve-2026-46333-ptrace.txt",
      "primary_url": "https://cdn2.qualys.com/advisory/2026/05/20/cve-2026-46333-ptrace.txt",
      "parent_primary_url": "https://cdn2.qualys.com/advisory/2026/05/20/cve-2026-46333-ptrace.txt",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-logic-bug-in-the-linux-kernel-s-ptrace-may-access-function-primary-57e4d2de.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Logic bug in the Linux kernel's __ptrace_may_access() function record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Logic bug in the Linux kernel's __ptrace_may_access() function resource_label: primary resource_type: article resource_url: https://cdn2.qualys.com/advisory/2026/05/20/cve-2026-46333-ptrace.txt parent_primary_url: https://cdn2.qualys.com/advisory/2026/05/20/cve-2026-46333-ptrace.txt source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Logic bug in the Linux kernel's __ptrace_may_access() function\" by Qualys Research Team](https://cdn2.qualys.com/advisory/2026/05/20/cve-2026-46333-ptrace.txt) [article] [CVE-2026-46333] cves: CVE-2026-46333 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-versio",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://cdn2.qualys.com/advisory/2026/05/20/cve-2026-46333-ptrace.txt"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://cdn2.qualys.com/advisory/2026/05/20/cve-2026-46333-ptrace.txt"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "logic bug"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article highlights a logic bug in the Linux kernel's ptrace function that may allow privilege escalation.",
      "summary_zh": "这篇文章强调了Linux内核ptrace函数中的逻辑错误，可能允许权限提升。",
      "source_markdown": "[2026: \"Logic bug in the Linux kernel's __ptrace_may_access() function\" by Qualys Research Team](https://cdn2.qualys.com/advisory/2026/05/20/cve-2026-46333-ptrace.txt) [article] [CVE-2026-46333]",
      "search_text": "logic bug in the linux kernel's __ptrace_may_access() function logic bug in the linux kernel's __ptrace_may_access() function qualys research team cve-2026-46333  vulnerabilities lpe lpe primary article https://cdn2.qualys.com/advisory/2026/05/20/cve-2026-46333-ptrace.txt lpe logic bug  vulnerability this article highlights a logic bug in the linux kernel's ptrace function that may allow privilege escalation. 这篇文章强调了linux内核ptrace函数中的逻辑错误，可能允许权限提升。 # logic bug in the linux kernel's __ptrace_may_access() function record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: logic bug in the linux kernel's __ptrace_may_access() function resource_label: primary resource_type: article resource_url: https://cdn2.qualys.com/advisory/2026/05/20/cve-2026-46333-ptrace.txt parent_primary_url: https://cdn2.qualys.com/advisory/2026/05/20/cve-2026-46333-ptrace.txt source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"logic bug in the linux kernel's __ptrace_may_access() function\" by qualys research team](https://cdn2.qualys.com/advisory/2026/05/20/cve-2026-46333-ptrace.txt) [article] [cve-2026-46333] cves: cve-2026-46333 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-versio unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e836174583838ce9",
      "item_id": "bbf4388162abfab2",
      "slug": "2026-vulnerabilities-lpe-cve-2026-31419-use-after-free-in-the-linux-bonding-driver-primary-8651c399",
      "year": 2026,
      "title": "CVE-2026-31419: Use-After-Free in the Linux Bonding Driver",
      "item_title": "CVE-2026-31419: Use-After-Free in the Linux Bonding Driver",
      "authors": [
        "Moe Acherir"
      ],
      "cves": [
        "CVE-2026-31419"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://mohandacherir.github.io/Qdiv7/posts/cve-2026-31419/",
      "primary_url": "https://mohandacherir.github.io/Qdiv7/posts/cve-2026-31419/",
      "parent_primary_url": "https://mohandacherir.github.io/Qdiv7/posts/cve-2026-31419/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-cve-2026-31419-use-after-free-in-the-linux-bonding-driver-primary-8651c399.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2026-31419: Use-After-Free in the Linux Bonding Driver record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2026-31419: Use-After-Free in the Linux Bonding Driver resource_label: primary resource_type: article resource_url: https://mohandacherir.github.io/Qdiv7/posts/cve-2026-31419/ parent_primary_url: https://mohandacherir.github.io/Qdiv7/posts/cve-2026-31419/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"CVE-2026-31419: Use-After-Free in the Linux Bonding Driver\" by Moe Acherir](https://mohandacherir.github.io/Qdiv7/posts/cve-2026-31419/) [article] [CVE-2026-31419] cves: CVE-2026-31419 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://mohandacherir.github.io/Qdiv7/posts/cve-2026-31419/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://mohandacherir.github.io/Qdiv7/posts/cve-2026-31419/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://mohandacherir.github.io/Qdiv7/posts/cve-2026-31419/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "use-after-free",
        "bonding driver"
      ],
      "affected_area": "Bonding Driver",
      "exploit_stage": "vulnerability",
      "summary_en": "An article that discusses a use-after-free vulnerability in the Linux bonding driver leading to privilege escalation.",
      "summary_zh": "一篇文章讨论了Linux绑定驱动中的使用后释放漏洞，导致权限提升。",
      "source_markdown": "[2026: \"CVE-2026-31419: Use-After-Free in the Linux Bonding Driver\" by Moe Acherir](https://mohandacherir.github.io/Qdiv7/posts/cve-2026-31419/) [article] [CVE-2026-31419]",
      "search_text": "cve-2026-31419: use-after-free in the linux bonding driver cve-2026-31419: use-after-free in the linux bonding driver moe acherir cve-2026-31419  vulnerabilities lpe lpe primary article https://mohandacherir.github.io/qdiv7/posts/cve-2026-31419/ lpe use-after-free bonding driver bonding driver vulnerability an article that discusses a use-after-free vulnerability in the linux bonding driver leading to privilege escalation. 一篇文章讨论了linux绑定驱动中的使用后释放漏洞，导致权限提升。 # cve-2026-31419: use-after-free in the linux bonding driver record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2026-31419: use-after-free in the linux bonding driver resource_label: primary resource_type: article resource_url: https://mohandacherir.github.io/qdiv7/posts/cve-2026-31419/ parent_primary_url: https://mohandacherir.github.io/qdiv7/posts/cve-2026-31419/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"cve-2026-31419: use-after-free in the linux bonding driver\" by moe acherir](https://mohandacherir.github.io/qdiv7/posts/cve-2026-31419/) [article] [cve-2026-31419] cves: cve-2026-31419 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "42d23d6e1ec409ec",
      "item_id": "61f8f5545d2850fa",
      "slug": "2026-vulnerabilities-lpe-cve-2024-0582-or-easy-kernel-exploitation-primary-6a04f411",
      "year": 2026,
      "title": "CVE-2024-0582, or Easy Kernel Exploitation",
      "item_title": "CVE-2024-0582, or Easy Kernel Exploitation",
      "authors": [
        "Moe Acherir"
      ],
      "cves": [
        "CVE-2024-0582"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://mohandacherir.github.io/Qdiv7/posts/n-day-exploit-cve-2024/",
      "primary_url": "https://mohandacherir.github.io/Qdiv7/posts/n-day-exploit-cve-2024/",
      "parent_primary_url": "https://mohandacherir.github.io/Qdiv7/posts/n-day-exploit-cve-2024/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-cve-2024-0582-or-easy-kernel-exploitation-primary-6a04f411.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2024-0582, or Easy Kernel Exploitation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2024-0582, or Easy Kernel Exploitation resource_label: primary resource_type: article resource_url: https://mohandacherir.github.io/Qdiv7/posts/n-day-exploit-cve-2024/ parent_primary_url: https://mohandacherir.github.io/Qdiv7/posts/n-day-exploit-cve-2024/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"CVE-2024-0582, or Easy Kernel Exploitation\" by Moe Acherir](https://mohandacherir.github.io/Qdiv7/posts/n-day-exploit-cve-2024/) [article] [CVE-2024-0582] cves: CVE-2024-0582 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Produc",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://mohandacherir.github.io/Qdiv7/posts/n-day-exploit-cve-2024/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://mohandacherir.github.io/Qdiv7/posts/n-day-exploit-cve-2024/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://mohandacherir.github.io/Qdiv7/posts/n-day-exploit-cve-2024/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "kernel exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article covers an easy kernel exploitation vulnerability identified as CVE-2024-0582.",
      "summary_zh": "这篇文章涵盖了被识别为CVE-2024-0582的简单内核利用漏洞。",
      "source_markdown": "[2026: \"CVE-2024-0582, or Easy Kernel Exploitation\" by Moe Acherir](https://mohandacherir.github.io/Qdiv7/posts/n-day-exploit-cve-2024/) [article] [CVE-2024-0582]",
      "search_text": "cve-2024-0582, or easy kernel exploitation cve-2024-0582, or easy kernel exploitation moe acherir cve-2024-0582  vulnerabilities lpe lpe primary article https://mohandacherir.github.io/qdiv7/posts/n-day-exploit-cve-2024/ lpe kernel exploitation  vulnerability this article covers an easy kernel exploitation vulnerability identified as cve-2024-0582. 这篇文章涵盖了被识别为cve-2024-0582的简单内核利用漏洞。 # cve-2024-0582, or easy kernel exploitation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2024-0582, or easy kernel exploitation resource_label: primary resource_type: article resource_url: https://mohandacherir.github.io/qdiv7/posts/n-day-exploit-cve-2024/ parent_primary_url: https://mohandacherir.github.io/qdiv7/posts/n-day-exploit-cve-2024/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"cve-2024-0582, or easy kernel exploitation\" by moe acherir](https://mohandacherir.github.io/qdiv7/posts/n-day-exploit-cve-2024/) [article] [cve-2024-0582] cves: cve-2024-0582 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: produc unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "30e40aa55b16ae7b",
      "item_id": "dd79263d4ca02746",
      "slug": "2026-vulnerabilities-lpe-a-0-click-exploit-chain-for-the-pixel-10-primary-381a95d5",
      "year": 2026,
      "title": "A 0-Click Exploit Chain For The Pixel 10",
      "item_title": "A 0-Click Exploit Chain For The Pixel 10",
      "authors": [
        "Natalie Silvanovich",
        "Seth Jenkins"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=jpB_b6KGCoA",
      "primary_url": "https://www.youtube.com/watch?v=jpB_b6KGCoA",
      "parent_primary_url": "https://www.youtube.com/watch?v=jpB_b6KGCoA",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-a-0-click-exploit-chain-for-the-pixel-10-primary-381a95d5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A 0-Click Exploit Chain For The Pixel 10 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: A 0-Click Exploit Chain For The Pixel 10 resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=jpB_b6KGCoA parent_primary_url: https://www.youtube.com/watch?v=jpB_b6KGCoA source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"A 0-Click Exploit Chain For The Pixel 10\" by Natalie Silvanovich and Seth Jenkins](https://www.youtube.com/watch?v=jpB_b6KGCoA) [video] [[article](https://projectzero.google/2026/05/pixel-10-exploit.html)] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: yes android_impact_reason: mentions Pixel devices ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true h",
      "link_types": [
        "video",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=jpB_b6KGCoA"
        },
        {
          "label": "article",
          "type": "article",
          "url": "https://projectzero.google/2026/05/pixel-10-exploit.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "article",
            "type": "article",
            "url": "https://projectzero.google/2026/05/pixel-10-exploit.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=jpB_b6KGCoA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://projectzero.google/2026/05/pixel-10-exploit.html"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Pixel devices",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "0-click",
        "Pixel 10"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "A video presenting a 0-click exploit chain for the Pixel 10 that could lead to privilege escalation.",
      "summary_zh": "一段视频展示了一个针对Pixel 10的0点击利用链，可能导致权限提升。",
      "source_markdown": "[2026: \"A 0-Click Exploit Chain For The Pixel 10\" by Natalie Silvanovich and Seth Jenkins](https://www.youtube.com/watch?v=jpB_b6KGCoA) [video] [[article](https://projectzero.google/2026/05/pixel-10-exploit.html)] [CVE-UNKNOWN]",
      "search_text": "a 0-click exploit chain for the pixel 10 a 0-click exploit chain for the pixel 10 natalie silvanovich seth jenkins cve-unknown  vulnerabilities lpe lpe primary video https://www.youtube.com/watch?v=jpb_b6kgcoa lpe 0-click pixel 10  vulnerability a video presenting a 0-click exploit chain for the pixel 10 that could lead to privilege escalation. 一段视频展示了一个针对pixel 10的0点击利用链，可能导致权限提升。 # a 0-click exploit chain for the pixel 10 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: a 0-click exploit chain for the pixel 10 resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=jpb_b6kgcoa parent_primary_url: https://www.youtube.com/watch?v=jpb_b6kgcoa source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"a 0-click exploit chain for the pixel 10\" by natalie silvanovich and seth jenkins](https://www.youtube.com/watch?v=jpb_b6kgcoa) [video] [[article](https://projectzero.google/2026/05/pixel-10-exploit.html)] [cve-unknown] cves: cve-unknown android_impact_status: yes android_impact_reason: mentions pixel devices ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true h yes mentions pixel devices no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "4ea05cffa6a38a57",
      "item_id": "dd79263d4ca02746",
      "slug": "2026-vulnerabilities-lpe-a-0-click-exploit-chain-for-the-pixel-10-article-1635f685",
      "year": 2026,
      "title": "A 0-Click Exploit Chain For The Pixel 10 · article",
      "item_title": "A 0-Click Exploit Chain For The Pixel 10",
      "authors": [
        "Natalie Silvanovich",
        "Seth Jenkins"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "article",
      "resource_type": "article",
      "resource_url": "https://projectzero.google/2026/05/pixel-10-exploit.html",
      "primary_url": "https://projectzero.google/2026/05/pixel-10-exploit.html",
      "parent_primary_url": "https://www.youtube.com/watch?v=jpB_b6KGCoA",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-a-0-click-exploit-chain-for-the-pixel-10-article-1635f685.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A 0-Click Exploit Chain For The Pixel 10 · article record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: A 0-Click Exploit Chain For The Pixel 10 resource_label: article resource_type: article resource_url: https://projectzero.google/2026/05/pixel-10-exploit.html parent_primary_url: https://www.youtube.com/watch?v=jpB_b6KGCoA source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"A 0-Click Exploit Chain For The Pixel 10\" by Natalie Silvanovich and Seth Jenkins](https://www.youtube.com/watch?v=jpB_b6KGCoA) [video] [[article](https://projectzero.google/2026/05/pixel-10-exploit.html)] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: yes android_impact_reason: mentions Pixel devices ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_c",
      "link_types": [
        "video",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=jpB_b6KGCoA"
        },
        {
          "label": "article",
          "type": "article",
          "url": "https://projectzero.google/2026/05/pixel-10-exploit.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "article",
            "type": "article",
            "url": "https://projectzero.google/2026/05/pixel-10-exploit.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=jpB_b6KGCoA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://projectzero.google/2026/05/pixel-10-exploit.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Pixel devices",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "0-click",
        "Pixel 10"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article detailing a 0-click exploit chain for the Pixel 10, highlighting its implications for privilege escalation.",
      "summary_zh": "一篇文章详细介绍了针对Pixel 10的0点击利用链，强调其对权限提升的影响。",
      "source_markdown": "[2026: \"A 0-Click Exploit Chain For The Pixel 10\" by Natalie Silvanovich and Seth Jenkins](https://www.youtube.com/watch?v=jpB_b6KGCoA) [video] [[article](https://projectzero.google/2026/05/pixel-10-exploit.html)] [CVE-UNKNOWN]",
      "search_text": "a 0-click exploit chain for the pixel 10 · article a 0-click exploit chain for the pixel 10 natalie silvanovich seth jenkins cve-unknown  vulnerabilities lpe lpe article article https://projectzero.google/2026/05/pixel-10-exploit.html lpe 0-click pixel 10  vulnerability an article detailing a 0-click exploit chain for the pixel 10, highlighting its implications for privilege escalation. 一篇文章详细介绍了针对pixel 10的0点击利用链，强调其对权限提升的影响。 # a 0-click exploit chain for the pixel 10 · article record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: a 0-click exploit chain for the pixel 10 resource_label: article resource_type: article resource_url: https://projectzero.google/2026/05/pixel-10-exploit.html parent_primary_url: https://www.youtube.com/watch?v=jpb_b6kgcoa source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"a 0-click exploit chain for the pixel 10\" by natalie silvanovich and seth jenkins](https://www.youtube.com/watch?v=jpb_b6kgcoa) [video] [[article](https://projectzero.google/2026/05/pixel-10-exploit.html)] [cve-unknown] cves: cve-unknown android_impact_status: yes android_impact_reason: mentions pixel devices ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_c yes mentions pixel devices no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "95150b6d876d3107",
      "item_id": "77324e6897b19129",
      "slug": "2026-vulnerabilities-lpe-this-android-kernel-exploit-is-way-too-simple-primary-ad3c53c4",
      "year": 2026,
      "title": "This Android kernel exploit is way too simple",
      "item_title": "This Android kernel exploit is way too simple",
      "authors": [
        "Billy Ellis"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=121YAFU_sGg",
      "primary_url": "https://www.youtube.com/watch?v=121YAFU_sGg",
      "parent_primary_url": "https://www.youtube.com/watch?v=121YAFU_sGg",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-this-android-kernel-exploit-is-way-too-simple-primary-ad3c53c4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# This Android kernel exploit is way too simple record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: This Android kernel exploit is way too simple resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=121YAFU_sGg parent_primary_url: https://www.youtube.com/watch?v=121YAFU_sGg source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"This Android kernel exploit is way too simple\" by Billy Ellis](https://www.youtube.com/watch?v=121YAFU_sGg) [video] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [video] primary: https://www",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=121YAFU_sGg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=121YAFU_sGg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android kernel"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This video discusses a simple Android kernel exploit that could lead to privilege escalation.",
      "summary_zh": "该视频讨论了一个简单的Android内核漏洞，可能导致权限提升。",
      "source_markdown": "[2026: \"This Android kernel exploit is way too simple\" by Billy Ellis](https://www.youtube.com/watch?v=121YAFU_sGg) [video] [CVE-UNKNOWN]",
      "search_text": "this android kernel exploit is way too simple this android kernel exploit is way too simple billy ellis cve-unknown  vulnerabilities lpe lpe primary video https://www.youtube.com/watch?v=121yafu_sgg lpe android kernel  vulnerability this video discusses a simple android kernel exploit that could lead to privilege escalation. 该视频讨论了一个简单的android内核漏洞，可能导致权限提升。 # this android kernel exploit is way too simple record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: this android kernel exploit is way too simple resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=121yafu_sgg parent_primary_url: https://www.youtube.com/watch?v=121yafu_sgg source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"this android kernel exploit is way too simple\" by billy ellis](https://www.youtube.com/watch?v=121yafu_sgg) [video] [cve-unknown] cves: cve-unknown android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [video] primary: https://www yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "ef4dbf090382794c",
      "item_id": "b50a6bfa4618d701",
      "slug": "2026-vulnerabilities-lpe-exploring-android-root-via-cve-2025-21479-primary-b9b57b89",
      "year": 2026,
      "title": "Exploring Android ROOT via CVE-2025-21479",
      "item_title": "Exploring Android ROOT via CVE-2025-21479",
      "authors": [],
      "cves": [
        "CVE-2025-21479"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://medium.com/@numencyberlabs/exploring-android-root-via-cve-2025-21479-eca9fb7ca6e9",
      "primary_url": "https://medium.com/@numencyberlabs/exploring-android-root-via-cve-2025-21479-eca9fb7ca6e9",
      "parent_primary_url": "https://medium.com/@numencyberlabs/exploring-android-root-via-cve-2025-21479-eca9fb7ca6e9",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-exploring-android-root-via-cve-2025-21479-primary-b9b57b89.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploring Android ROOT via CVE-2025-21479 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploring Android ROOT via CVE-2025-21479 resource_label: primary resource_type: article resource_url: https://medium.com/@numencyberlabs/exploring-android-root-via-cve-2025-21479-eca9fb7ca6e9 parent_primary_url: https://medium.com/@numencyberlabs/exploring-android-root-via-cve-2025-21479-eca9fb7ca6e9 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Exploring Android ROOT via CVE-2025-21479\"](https://medium.com/@numencyberlabs/exploring-android-root-via-cve-2025-21479-eca9fb7ca6e9) [article] [CVE-2025-21479] cves: CVE-2025-21479 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Li",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://medium.com/@numencyberlabs/exploring-android-root-via-cve-2025-21479-eca9fb7ca6e9"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://medium.com/@numencyberlabs/exploring-android-root-via-cve-2025-21479-eca9fb7ca6e9"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article exploring a privilege escalation vulnerability in Android identified as CVE-2025-21479.",
      "summary_zh": "一篇文章探讨了被识别为CVE-2025-21479的Android权限提升漏洞。",
      "source_markdown": "[2026: \"Exploring Android ROOT via CVE-2025-21479\"](https://medium.com/@numencyberlabs/exploring-android-root-via-cve-2025-21479-eca9fb7ca6e9) [article] [CVE-2025-21479]",
      "search_text": "exploring android root via cve-2025-21479 exploring android root via cve-2025-21479  cve-2025-21479  vulnerabilities lpe lpe primary article https://medium.com/@numencyberlabs/exploring-android-root-via-cve-2025-21479-eca9fb7ca6e9 lpe android  vulnerability an article exploring a privilege escalation vulnerability in android identified as cve-2025-21479. 一篇文章探讨了被识别为cve-2025-21479的android权限提升漏洞。 # exploring android root via cve-2025-21479 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploring android root via cve-2025-21479 resource_label: primary resource_type: article resource_url: https://medium.com/@numencyberlabs/exploring-android-root-via-cve-2025-21479-eca9fb7ca6e9 parent_primary_url: https://medium.com/@numencyberlabs/exploring-android-root-via-cve-2025-21479-eca9fb7ca6e9 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"exploring android root via cve-2025-21479\"](https://medium.com/@numencyberlabs/exploring-android-root-via-cve-2025-21479-eca9fb7ca6e9) [article] [cve-2025-21479] cves: cve-2025-21479 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than li yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "0bbbd46cdad23560",
      "item_id": "a831d0eadaac40e9",
      "slug": "2026-vulnerabilities-lpe-codex-hacked-a-samsung-tv-primary-e2b49439",
      "year": 2026,
      "title": "Codex Hacked a Samsung TV",
      "item_title": "Codex Hacked a Samsung TV",
      "authors": [],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.calif.io/p/codex-hacked-a-samsung-tv",
      "primary_url": "https://blog.calif.io/p/codex-hacked-a-samsung-tv",
      "parent_primary_url": "https://blog.calif.io/p/codex-hacked-a-samsung-tv",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-codex-hacked-a-samsung-tv-primary-e2b49439.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Codex Hacked a Samsung TV record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Codex Hacked a Samsung TV resource_label: primary resource_type: article resource_url: https://blog.calif.io/p/codex-hacked-a-samsung-tv parent_primary_url: https://blog.calif.io/p/codex-hacked-a-samsung-tv source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Codex Hacked a Samsung TV\"](https://blog.calif.io/p/codex-hacked-a-samsung-tv) [article] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: yes android_impact_reason: mentions an Android OEM/device family ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://blog.calif.io/p/codex-hacked-a-sa",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.calif.io/p/codex-hacked-a-samsung-tv"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.calif.io/p/codex-hacked-a-samsung-tv"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions an Android OEM/device family",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Samsung TV"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses a privilege escalation vulnerability related to hacking a Samsung TV.",
      "summary_zh": "这篇文章讨论了与黑客攻击三星电视相关的权限提升漏洞。",
      "source_markdown": "[2026: \"Codex Hacked a Samsung TV\"](https://blog.calif.io/p/codex-hacked-a-samsung-tv) [article] [CVE-UNKNOWN]",
      "search_text": "codex hacked a samsung tv codex hacked a samsung tv  cve-unknown  vulnerabilities lpe lpe primary article https://blog.calif.io/p/codex-hacked-a-samsung-tv lpe samsung tv  vulnerability this article discusses a privilege escalation vulnerability related to hacking a samsung tv. 这篇文章讨论了与黑客攻击三星电视相关的权限提升漏洞。 # codex hacked a samsung tv record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: codex hacked a samsung tv resource_label: primary resource_type: article resource_url: https://blog.calif.io/p/codex-hacked-a-samsung-tv parent_primary_url: https://blog.calif.io/p/codex-hacked-a-samsung-tv source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"codex hacked a samsung tv\"](https://blog.calif.io/p/codex-hacked-a-samsung-tv) [article] [cve-unknown] cves: cve-unknown android_impact_status: yes android_impact_reason: mentions an android oem/device family ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://blog.calif.io/p/codex-hacked-a-sa yes mentions an android oem/device family no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "87cfa0fd0ec16fdf",
      "item_id": "144272f69218e89b",
      "slug": "2026-vulnerabilities-lpe-from-a-netfilter-bug-to-kernelctf-exploiting-cve-2026-23274-in-the-linux-kernel-and-w",
      "year": 2026,
      "title": "From a Netfilter Bug to kernelCTF: Exploiting CVE-2026-23274 in the Linux Kernel and winning a $10500 Bounty",
      "item_title": "From a Netfilter Bug to kernelCTF: Exploiting CVE-2026-23274 in the Linux Kernel and winning a $10500 Bounty",
      "authors": [],
      "cves": [
        "CVE-2026-23274"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://nebusec.io/blog/cve-2026-23274-cos/",
      "primary_url": "https://nebusec.io/blog/cve-2026-23274-cos/",
      "parent_primary_url": "https://nebusec.io/blog/cve-2026-23274-cos/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-from-a-netfilter-bug-to-kernelctf-exploiting-cve-2026-23274-in-the-linux-kernel-and-w.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# From a Netfilter Bug to kernelCTF: Exploiting CVE-2026-23274 in the Linux Kernel and winning a $10500 Bounty record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: From a Netfilter Bug to kernelCTF: Exploiting CVE-2026-23274 in the Linux Kernel and winning a $10500 Bounty resource_label: primary resource_type: article resource_url: https://nebusec.io/blog/cve-2026-23274-cos/ parent_primary_url: https://nebusec.io/blog/cve-2026-23274-cos/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"From a Netfilter Bug to kernelCTF: Exploiting CVE-2026-23274 in the Linux Kernel and winning a $10500 Bounty\"](https://nebusec.io/blog/cve-2026-23274-cos/) [article] [CVE-2026-23274] cves: CVE-2026-23274 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android p",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://nebusec.io/blog/cve-2026-23274-cos/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://nebusec.io/blog/cve-2026-23274-cos/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Netfilter"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article detailing the exploitation of a Netfilter bug in the Linux kernel leading to a bounty reward.",
      "summary_zh": "一篇文章详细介绍了Linux内核中Netfilter漏洞的利用，导致获得奖金。",
      "source_markdown": "[2026: \"From a Netfilter Bug to kernelCTF: Exploiting CVE-2026-23274 in the Linux Kernel and winning a $10500 Bounty\"](https://nebusec.io/blog/cve-2026-23274-cos/) [article] [CVE-2026-23274]",
      "search_text": "from a netfilter bug to kernelctf: exploiting cve-2026-23274 in the linux kernel and winning a $10500 bounty from a netfilter bug to kernelctf: exploiting cve-2026-23274 in the linux kernel and winning a $10500 bounty  cve-2026-23274  vulnerabilities lpe lpe primary article https://nebusec.io/blog/cve-2026-23274-cos/ lpe netfilter  vulnerability an article detailing the exploitation of a netfilter bug in the linux kernel leading to a bounty reward. 一篇文章详细介绍了linux内核中netfilter漏洞的利用，导致获得奖金。 # from a netfilter bug to kernelctf: exploiting cve-2026-23274 in the linux kernel and winning a $10500 bounty record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: from a netfilter bug to kernelctf: exploiting cve-2026-23274 in the linux kernel and winning a $10500 bounty resource_label: primary resource_type: article resource_url: https://nebusec.io/blog/cve-2026-23274-cos/ parent_primary_url: https://nebusec.io/blog/cve-2026-23274-cos/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"from a netfilter bug to kernelctf: exploiting cve-2026-23274 in the linux kernel and winning a $10500 bounty\"](https://nebusec.io/blog/cve-2026-23274-cos/) [article] [cve-2026-23274] cves: cve-2026-23274 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android p unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "13a6eb746614fe35",
      "item_id": "bc7bf6976aea428e",
      "slug": "2026-vulnerabilities-lpe-reproducing-cve-2026-23111-how-one-character-can-change-everything-primary-a71c1728",
      "year": 2026,
      "title": "Reproducing CVE-2026-23111: How one character can change everything",
      "item_title": "Reproducing CVE-2026-23111: How one character can change everything",
      "authors": [],
      "cves": [
        "CVE-2026-23111"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://fuzzinglabs.com/repro-cve-2026-23111/",
      "primary_url": "https://fuzzinglabs.com/repro-cve-2026-23111/",
      "parent_primary_url": "https://fuzzinglabs.com/repro-cve-2026-23111/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-reproducing-cve-2026-23111-how-one-character-can-change-everything-primary-a71c1728.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Reproducing CVE-2026-23111: How one character can change everything record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Reproducing CVE-2026-23111: How one character can change everything resource_label: primary resource_type: article resource_url: https://fuzzinglabs.com/repro-cve-2026-23111/ parent_primary_url: https://fuzzinglabs.com/repro-cve-2026-23111/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Reproducing CVE-2026-23111: How one character can change everything\"](https://fuzzinglabs.com/repro-cve-2026-23111/) [article] [CVE-2026-23111] cves: CVE-2026-23111 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://fuzzinglabs.com/repro-cve-2026-23111/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://fuzzinglabs.com/repro-cve-2026-23111/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "reproduction"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article reproduces a vulnerability identified as CVE-2026-23111, showcasing its impact.",
      "summary_zh": "这篇文章重现了被识别为CVE-2026-23111的漏洞，展示了其影响。",
      "source_markdown": "[2026: \"Reproducing CVE-2026-23111: How one character can change everything\"](https://fuzzinglabs.com/repro-cve-2026-23111/) [article] [CVE-2026-23111]",
      "search_text": "reproducing cve-2026-23111: how one character can change everything reproducing cve-2026-23111: how one character can change everything  cve-2026-23111  vulnerabilities lpe lpe primary article https://fuzzinglabs.com/repro-cve-2026-23111/ lpe reproduction  vulnerability this article reproduces a vulnerability identified as cve-2026-23111, showcasing its impact. 这篇文章重现了被识别为cve-2026-23111的漏洞，展示了其影响。 # reproducing cve-2026-23111: how one character can change everything record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: reproducing cve-2026-23111: how one character can change everything resource_label: primary resource_type: article resource_url: https://fuzzinglabs.com/repro-cve-2026-23111/ parent_primary_url: https://fuzzinglabs.com/repro-cve-2026-23111/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"reproducing cve-2026-23111: how one character can change everything\"](https://fuzzinglabs.com/repro-cve-2026-23111/) [article] [cve-2026-23111] cves: cve-2026-23111 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ca205e67ac33aa35",
      "item_id": "b6db7b87c60242c8",
      "slug": "2026-vulnerabilities-lpe-assessing-claude-mythos-preview-s-cybersecurity-capabilities-primary-b4a7c378",
      "year": 2026,
      "title": "Assessing Claude Mythos Preview's cybersecurity capabilities",
      "item_title": "Assessing Claude Mythos Preview's cybersecurity capabilities",
      "authors": [],
      "cves": [
        "CVE-2024-47711"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://red.anthropic.com/2026/mythos-preview/",
      "primary_url": "https://red.anthropic.com/2026/mythos-preview/",
      "parent_primary_url": "https://red.anthropic.com/2026/mythos-preview/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-assessing-claude-mythos-preview-s-cybersecurity-capabilities-primary-b4a7c378.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Assessing Claude Mythos Preview's cybersecurity capabilities record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Assessing Claude Mythos Preview's cybersecurity capabilities resource_label: primary resource_type: article resource_url: https://red.anthropic.com/2026/mythos-preview/ parent_primary_url: https://red.anthropic.com/2026/mythos-preview/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Assessing Claude Mythos Preview's cybersecurity capabilities\"](https://red.anthropic.com/2026/mythos-preview/) [article] [CVE-2024-47711] cves: CVE-2024-47711 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use A",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://red.anthropic.com/2026/mythos-preview/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://red.anthropic.com/2026/mythos-preview/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "cybersecurity"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article assessing the cybersecurity capabilities of Claude Mythos Preview, highlighting potential vulnerabilities.",
      "summary_zh": "一篇文章评估Claude Mythos Preview的网络安全能力，强调潜在漏洞。",
      "source_markdown": "[2026: \"Assessing Claude Mythos Preview's cybersecurity capabilities\"](https://red.anthropic.com/2026/mythos-preview/) [article] [CVE-2024-47711]",
      "search_text": "assessing claude mythos preview's cybersecurity capabilities assessing claude mythos preview's cybersecurity capabilities  cve-2024-47711  vulnerabilities lpe lpe primary article https://red.anthropic.com/2026/mythos-preview/ lpe cybersecurity  vulnerability an article assessing the cybersecurity capabilities of claude mythos preview, highlighting potential vulnerabilities. 一篇文章评估claude mythos preview的网络安全能力，强调潜在漏洞。 # assessing claude mythos preview's cybersecurity capabilities record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: assessing claude mythos preview's cybersecurity capabilities resource_label: primary resource_type: article resource_url: https://red.anthropic.com/2026/mythos-preview/ parent_primary_url: https://red.anthropic.com/2026/mythos-preview/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"assessing claude mythos preview's cybersecurity capabilities\"](https://red.anthropic.com/2026/mythos-preview/) [article] [cve-2024-47711] cves: cve-2024-47711 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use a unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3c361023d023f4fe",
      "item_id": "9e879dc5dd11446f",
      "slug": "2026-vulnerabilities-lpe-kernel-alchemy-pt-1-developing-exploit-primitives-with-cve-2025-20741-primary-6488f2f",
      "year": 2026,
      "title": "kernel alchemy pt. 1: developing exploit primitives with CVE-2025-20741",
      "item_title": "kernel alchemy pt. 1: developing exploit primitives with CVE-2025-20741",
      "authors": [
        "hypr"
      ],
      "cves": [
        "CVE-2025-20741"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.coffinsec.com/0day/2026/04/02/kernel-alchemy-pt1.html",
      "primary_url": "https://blog.coffinsec.com/0day/2026/04/02/kernel-alchemy-pt1.html",
      "parent_primary_url": "https://blog.coffinsec.com/0day/2026/04/02/kernel-alchemy-pt1.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-kernel-alchemy-pt-1-developing-exploit-primitives-with-cve-2025-20741-primary-6488f2f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# kernel alchemy pt. 1: developing exploit primitives with CVE-2025-20741 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: kernel alchemy pt. 1: developing exploit primitives with CVE-2025-20741 resource_label: primary resource_type: article resource_url: https://blog.coffinsec.com/0day/2026/04/02/kernel-alchemy-pt1.html parent_primary_url: https://blog.coffinsec.com/0day/2026/04/02/kernel-alchemy-pt1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"kernel alchemy pt. 1: developing exploit primitives with CVE-2025-20741\" by hypr](https://blog.coffinsec.com/0day/2026/04/02/kernel-alchemy-pt1.html) [article] [CVE-2025-20741] cves: CVE-2025-20741 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-vers",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.coffinsec.com/0day/2026/04/02/kernel-alchemy-pt1.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.coffinsec.com/0day/2026/04/02/kernel-alchemy-pt1.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "exploit development"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses developing exploit primitives related to CVE-2025-20741 in the Linux kernel.",
      "summary_zh": "这篇文章讨论了与Linux内核中CVE-2025-20741相关的利用原语的开发。",
      "source_markdown": "[2026: \"kernel alchemy pt. 1: developing exploit primitives with CVE-2025-20741\" by hypr](https://blog.coffinsec.com/0day/2026/04/02/kernel-alchemy-pt1.html) [article] [CVE-2025-20741]",
      "search_text": "kernel alchemy pt. 1: developing exploit primitives with cve-2025-20741 kernel alchemy pt. 1: developing exploit primitives with cve-2025-20741 hypr cve-2025-20741  vulnerabilities lpe lpe primary article https://blog.coffinsec.com/0day/2026/04/02/kernel-alchemy-pt1.html lpe exploit development  vulnerability this article discusses developing exploit primitives related to cve-2025-20741 in the linux kernel. 这篇文章讨论了与linux内核中cve-2025-20741相关的利用原语的开发。 # kernel alchemy pt. 1: developing exploit primitives with cve-2025-20741 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: kernel alchemy pt. 1: developing exploit primitives with cve-2025-20741 resource_label: primary resource_type: article resource_url: https://blog.coffinsec.com/0day/2026/04/02/kernel-alchemy-pt1.html parent_primary_url: https://blog.coffinsec.com/0day/2026/04/02/kernel-alchemy-pt1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"kernel alchemy pt. 1: developing exploit primitives with cve-2025-20741\" by hypr](https://blog.coffinsec.com/0day/2026/04/02/kernel-alchemy-pt1.html) [article] [cve-2025-20741] cves: cve-2025-20741 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-vers unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4962692e28aca10e",
      "item_id": "3293eb4912808c5d",
      "slug": "2026-vulnerabilities-lpe-out-of-cancel-a-vulnerability-class-rooted-in-workqueue-cancellation-apis-primary-f5b",
      "year": 2026,
      "title": "Out-of-Cancel: A Vulnerability Class Rooted in Workqueue Cancellation APIs",
      "item_title": "Out-of-Cancel: A Vulnerability Class Rooted in Workqueue Cancellation APIs",
      "authors": [],
      "cves": [
        "CVE-2026-23239"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://v4bel.github.io/linux/2026/03/23/ooc.html",
      "primary_url": "https://v4bel.github.io/linux/2026/03/23/ooc.html",
      "parent_primary_url": "https://v4bel.github.io/linux/2026/03/23/ooc.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-out-of-cancel-a-vulnerability-class-rooted-in-workqueue-cancellation-apis-primary-f5b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Out-of-Cancel: A Vulnerability Class Rooted in Workqueue Cancellation APIs record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Out-of-Cancel: A Vulnerability Class Rooted in Workqueue Cancellation APIs resource_label: primary resource_type: article resource_url: https://v4bel.github.io/linux/2026/03/23/ooc.html parent_primary_url: https://v4bel.github.io/linux/2026/03/23/ooc.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Out-of-Cancel: A Vulnerability Class Rooted in Workqueue Cancellation APIs\"](https://v4bel.github.io/linux/2026/03/23/ooc.html) [article] [CVE-2026-23239] cves: CVE-2026-23239 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status:",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://v4bel.github.io/linux/2026/03/23/ooc.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://v4bel.github.io/linux/2026/03/23/ooc.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://v4bel.github.io/linux/2026/03/23/ooc.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "workqueue"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article discussing a vulnerability class rooted in workqueue cancellation APIs that may lead to privilege escalation.",
      "summary_zh": "一篇文章讨论了根植于工作队列取消API的漏洞类别，可能导致权限提升。",
      "source_markdown": "[2026: \"Out-of-Cancel: A Vulnerability Class Rooted in Workqueue Cancellation APIs\"](https://v4bel.github.io/linux/2026/03/23/ooc.html) [article] [CVE-2026-23239]",
      "search_text": "out-of-cancel: a vulnerability class rooted in workqueue cancellation apis out-of-cancel: a vulnerability class rooted in workqueue cancellation apis  cve-2026-23239  vulnerabilities lpe lpe primary article https://v4bel.github.io/linux/2026/03/23/ooc.html lpe workqueue  vulnerability an article discussing a vulnerability class rooted in workqueue cancellation apis that may lead to privilege escalation. 一篇文章讨论了根植于工作队列取消api的漏洞类别，可能导致权限提升。 # out-of-cancel: a vulnerability class rooted in workqueue cancellation apis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: out-of-cancel: a vulnerability class rooted in workqueue cancellation apis resource_label: primary resource_type: article resource_url: https://v4bel.github.io/linux/2026/03/23/ooc.html parent_primary_url: https://v4bel.github.io/linux/2026/03/23/ooc.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"out-of-cancel: a vulnerability class rooted in workqueue cancellation apis\"](https://v4bel.github.io/linux/2026/03/23/ooc.html) [article] [cve-2026-23239] cves: cve-2026-23239 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b67e29aaa4c24a35",
      "item_id": "bcd90185fbb63f83",
      "slug": "2026-vulnerabilities-lpe-linux-kernel-cve-2022-3910-h0mbre-kctf-bug-lpe-primary-43df0faa",
      "year": 2026,
      "title": "Linux Kernel CVE-2022-3910 (h0mbre kCTF bug) LPE",
      "item_title": "Linux Kernel CVE-2022-3910 (h0mbre kCTF bug) LPE",
      "authors": [],
      "cves": [
        "CVE-2022-3910"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.slop4u.ai/Linux-Kernel-CVE-2022-3910-LPE/",
      "primary_url": "https://www.slop4u.ai/Linux-Kernel-CVE-2022-3910-LPE/",
      "parent_primary_url": "https://www.slop4u.ai/Linux-Kernel-CVE-2022-3910-LPE/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-linux-kernel-cve-2022-3910-h0mbre-kctf-bug-lpe-primary-43df0faa.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel CVE-2022-3910 (h0mbre kCTF bug) LPE record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux Kernel CVE-2022-3910 (h0mbre kCTF bug) LPE resource_label: primary resource_type: article resource_url: https://www.slop4u.ai/Linux-Kernel-CVE-2022-3910-LPE/ parent_primary_url: https://www.slop4u.ai/Linux-Kernel-CVE-2022-3910-LPE/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Linux Kernel CVE-2022-3910 (h0mbre kCTF bug) LPE\"](https://www.slop4u.ai/Linux-Kernel-CVE-2022-3910-LPE/) [article] [CVE-2022-3910] cves: CVE-2022-3910 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.slop4u.ai/Linux-Kernel-CVE-2022-3910-LPE/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.slop4u.ai/Linux-Kernel-CVE-2022-3910-LPE/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-3910"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses a privilege escalation vulnerability identified as CVE-2022-3910 in the Linux kernel.",
      "summary_zh": "这篇文章讨论了Linux内核中被识别为CVE-2022-3910的权限提升漏洞。",
      "source_markdown": "[2026: \"Linux Kernel CVE-2022-3910 (h0mbre kCTF bug) LPE\"](https://www.slop4u.ai/Linux-Kernel-CVE-2022-3910-LPE/) [article] [CVE-2022-3910]",
      "search_text": "linux kernel cve-2022-3910 (h0mbre kctf bug) lpe linux kernel cve-2022-3910 (h0mbre kctf bug) lpe  cve-2022-3910  vulnerabilities lpe lpe primary article https://www.slop4u.ai/linux-kernel-cve-2022-3910-lpe/ lpe cve-2022-3910  vulnerability this article discusses a privilege escalation vulnerability identified as cve-2022-3910 in the linux kernel. 这篇文章讨论了linux内核中被识别为cve-2022-3910的权限提升漏洞。 # linux kernel cve-2022-3910 (h0mbre kctf bug) lpe record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel cve-2022-3910 (h0mbre kctf bug) lpe resource_label: primary resource_type: article resource_url: https://www.slop4u.ai/linux-kernel-cve-2022-3910-lpe/ parent_primary_url: https://www.slop4u.ai/linux-kernel-cve-2022-3910-lpe/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"linux kernel cve-2022-3910 (h0mbre kctf bug) lpe\"](https://www.slop4u.ai/linux-kernel-cve-2022-3910-lpe/) [article] [cve-2022-3910] cves: cve-2022-3910 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ca95777b4ca9d8af",
      "item_id": "7ccb3e81debab701",
      "slug": "2026-vulnerabilities-lpe-crackarmor-multiple-vulnerabilities-in-apparmor-primary-33eb5bbf",
      "year": 2026,
      "title": "CrackArmor: Multiple vulnerabilities in AppArmor",
      "item_title": "CrackArmor: Multiple vulnerabilities in AppArmor",
      "authors": [
        "Qualys Research Team"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://cdn2.qualys.com/advisory/2026/03/10/crack-armor.txt",
      "primary_url": "https://cdn2.qualys.com/advisory/2026/03/10/crack-armor.txt",
      "parent_primary_url": "https://cdn2.qualys.com/advisory/2026/03/10/crack-armor.txt",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-crackarmor-multiple-vulnerabilities-in-apparmor-primary-33eb5bbf.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CrackArmor: Multiple vulnerabilities in AppArmor record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CrackArmor: Multiple vulnerabilities in AppArmor resource_label: primary resource_type: article resource_url: https://cdn2.qualys.com/advisory/2026/03/10/crack-armor.txt parent_primary_url: https://cdn2.qualys.com/advisory/2026/03/10/crack-armor.txt source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"CrackArmor: Multiple vulnerabilities in AppArmor\" by Qualys Research Team](https://cdn2.qualys.com/advisory/2026/03/10/crack-armor.txt) [article] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Product",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://cdn2.qualys.com/advisory/2026/03/10/crack-armor.txt"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://cdn2.qualys.com/advisory/2026/03/10/crack-armor.txt"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "AppArmor"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article detailing multiple vulnerabilities in AppArmor, which could lead to privilege escalation.",
      "summary_zh": "一篇文章详细介绍了AppArmor中的多个漏洞，可能导致权限提升。",
      "source_markdown": "[2026: \"CrackArmor: Multiple vulnerabilities in AppArmor\" by Qualys Research Team](https://cdn2.qualys.com/advisory/2026/03/10/crack-armor.txt) [article] [CVE-UNKNOWN]",
      "search_text": "crackarmor: multiple vulnerabilities in apparmor crackarmor: multiple vulnerabilities in apparmor qualys research team cve-unknown  vulnerabilities lpe lpe primary article https://cdn2.qualys.com/advisory/2026/03/10/crack-armor.txt lpe apparmor  vulnerability an article detailing multiple vulnerabilities in apparmor, which could lead to privilege escalation. 一篇文章详细介绍了apparmor中的多个漏洞，可能导致权限提升。 # crackarmor: multiple vulnerabilities in apparmor record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: crackarmor: multiple vulnerabilities in apparmor resource_label: primary resource_type: article resource_url: https://cdn2.qualys.com/advisory/2026/03/10/crack-armor.txt parent_primary_url: https://cdn2.qualys.com/advisory/2026/03/10/crack-armor.txt source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"crackarmor: multiple vulnerabilities in apparmor\" by qualys research team](https://cdn2.qualys.com/advisory/2026/03/10/crack-armor.txt) [article] [cve-unknown] cves: cve-unknown android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: product unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d7aaad7df14acf52",
      "item_id": "bfd2d62df4c6d763",
      "slug": "2026-vulnerabilities-lpe-pagejack-in-action-cve-2022-0995-exploit-primary-219b43b4",
      "year": 2026,
      "title": "PageJack in Action: CVE-2022-0995 exploit",
      "item_title": "PageJack in Action: CVE-2022-0995 exploit",
      "authors": [
        "Jean Vincent"
      ],
      "cves": [
        "CVE-2022-0995"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.quarkslab.com/pagejack-in-action-cve-2022-0995-exploit.html",
      "primary_url": "https://blog.quarkslab.com/pagejack-in-action-cve-2022-0995-exploit.html",
      "parent_primary_url": "https://blog.quarkslab.com/pagejack-in-action-cve-2022-0995-exploit.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-pagejack-in-action-cve-2022-0995-exploit-primary-219b43b4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PageJack in Action: CVE-2022-0995 exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: PageJack in Action: CVE-2022-0995 exploit resource_label: primary resource_type: article resource_url: https://blog.quarkslab.com/pagejack-in-action-cve-2022-0995-exploit.html parent_primary_url: https://blog.quarkslab.com/pagejack-in-action-cve-2022-0995-exploit.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"PageJack in Action: CVE-2022-0995 exploit\" by Jean Vincent](https://blog.quarkslab.com/pagejack-in-action-cve-2022-0995-exploit.html) [article] [CVE-2022-0995] cves: CVE-2022-0995 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_r",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.quarkslab.com/pagejack-in-action-cve-2022-0995-exploit.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.quarkslab.com/pagejack-in-action-cve-2022-0995-exploit.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://blog.quarkslab.com/pagejack-in-action-cve-2022-0995-exploit.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-0995"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses the exploit of CVE-2022-0995, showcasing its implications for privilege escalation.",
      "summary_zh": "这篇文章讨论了CVE-2022-0995的利用，展示了其对权限提升的影响。",
      "source_markdown": "[2026: \"PageJack in Action: CVE-2022-0995 exploit\" by Jean Vincent](https://blog.quarkslab.com/pagejack-in-action-cve-2022-0995-exploit.html) [article] [CVE-2022-0995]",
      "search_text": "pagejack in action: cve-2022-0995 exploit pagejack in action: cve-2022-0995 exploit jean vincent cve-2022-0995  vulnerabilities lpe lpe primary article https://blog.quarkslab.com/pagejack-in-action-cve-2022-0995-exploit.html lpe cve-2022-0995  vulnerability this article discusses the exploit of cve-2022-0995, showcasing its implications for privilege escalation. 这篇文章讨论了cve-2022-0995的利用，展示了其对权限提升的影响。 # pagejack in action: cve-2022-0995 exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: pagejack in action: cve-2022-0995 exploit resource_label: primary resource_type: article resource_url: https://blog.quarkslab.com/pagejack-in-action-cve-2022-0995-exploit.html parent_primary_url: https://blog.quarkslab.com/pagejack-in-action-cve-2022-0995-exploit.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"pagejack in action: cve-2022-0995 exploit\" by jean vincent](https://blog.quarkslab.com/pagejack-in-action-cve-2022-0995-exploit.html) [article] [cve-2022-0995] cves: cve-2022-0995 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_r unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "e09b1a766530b3e0",
      "item_id": "2753be49a7ee29b4",
      "slug": "2026-vulnerabilities-lpe-a-race-within-a-race-exploiting-cve-2025-38617-in-linux-packet-sockets-primary-603886",
      "year": 2026,
      "title": "A Race Within A Race: Exploiting CVE-2025-38617 in Linux Packet Sockets",
      "item_title": "A Race Within A Race: Exploiting CVE-2025-38617 in Linux Packet Sockets",
      "authors": [],
      "cves": [
        "CVE-2025-38617"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.calif.io/p/a-race-within-a-race-exploiting-cve",
      "primary_url": "https://blog.calif.io/p/a-race-within-a-race-exploiting-cve",
      "parent_primary_url": "https://blog.calif.io/p/a-race-within-a-race-exploiting-cve",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-a-race-within-a-race-exploiting-cve-2025-38617-in-linux-packet-sockets-primary-603886.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Race Within A Race: Exploiting CVE-2025-38617 in Linux Packet Sockets record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: A Race Within A Race: Exploiting CVE-2025-38617 in Linux Packet Sockets resource_label: primary resource_type: article resource_url: https://blog.calif.io/p/a-race-within-a-race-exploiting-cve parent_primary_url: https://blog.calif.io/p/a-race-within-a-race-exploiting-cve source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"A Race Within A Race: Exploiting CVE-2025-38617 in Linux Packet Sockets\"](https://blog.calif.io/p/a-race-within-a-race-exploiting-cve) [article] [CVE-2025-38617] cves: CVE-2025-38617 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport revie",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.calif.io/p/a-race-within-a-race-exploiting-cve"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.calif.io/p/a-race-within-a-race-exploiting-cve"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2025-38617"
      ],
      "affected_area": "Packet Sockets",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2025-38617 in Linux Packet Sockets demonstrates a race condition vulnerability leading to local privilege escalation.",
      "summary_zh": "CVE-2025-38617在Linux数据包套接字中展示了导致本地特权提升的竞争条件漏洞。",
      "source_markdown": "[2026: \"A Race Within A Race: Exploiting CVE-2025-38617 in Linux Packet Sockets\"](https://blog.calif.io/p/a-race-within-a-race-exploiting-cve) [article] [CVE-2025-38617]",
      "search_text": "a race within a race: exploiting cve-2025-38617 in linux packet sockets a race within a race: exploiting cve-2025-38617 in linux packet sockets  cve-2025-38617  vulnerabilities lpe lpe primary article https://blog.calif.io/p/a-race-within-a-race-exploiting-cve lpe cve-2025-38617 packet sockets vulnerability cve-2025-38617 in linux packet sockets demonstrates a race condition vulnerability leading to local privilege escalation. cve-2025-38617在linux数据包套接字中展示了导致本地特权提升的竞争条件漏洞。 # a race within a race: exploiting cve-2025-38617 in linux packet sockets record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: a race within a race: exploiting cve-2025-38617 in linux packet sockets resource_label: primary resource_type: article resource_url: https://blog.calif.io/p/a-race-within-a-race-exploiting-cve parent_primary_url: https://blog.calif.io/p/a-race-within-a-race-exploiting-cve source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"a race within a race: exploiting cve-2025-38617 in linux packet sockets\"](https://blog.calif.io/p/a-race-within-a-race-exploiting-cve) [article] [cve-2025-38617] cves: cve-2025-38617 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport revie unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "b2e37c58b51e9f1f",
      "item_id": "d56f35dd7fcbcb2e",
      "slug": "2026-vulnerabilities-lpe-linux-kernel-net-sched-cake-qdisc-use-after-free-lpe-primary-3cc653a6",
      "year": 2026,
      "title": "Linux Kernel net/sched CAKE Qdisc Use-After-Free LPE",
      "item_title": "Linux Kernel net/sched CAKE Qdisc Use-After-Free LPE",
      "authors": [
        "Noamr"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ssd-disclosure.com/linux-kernel-net-sched-cake-qdisc-use-after-free-lpe/",
      "primary_url": "https://ssd-disclosure.com/linux-kernel-net-sched-cake-qdisc-use-after-free-lpe/",
      "parent_primary_url": "https://ssd-disclosure.com/linux-kernel-net-sched-cake-qdisc-use-after-free-lpe/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-linux-kernel-net-sched-cake-qdisc-use-after-free-lpe-primary-3cc653a6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel net/sched CAKE Qdisc Use-After-Free LPE record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux Kernel net/sched CAKE Qdisc Use-After-Free LPE resource_label: primary resource_type: article resource_url: https://ssd-disclosure.com/linux-kernel-net-sched-cake-qdisc-use-after-free-lpe/ parent_primary_url: https://ssd-disclosure.com/linux-kernel-net-sched-cake-qdisc-use-after-free-lpe/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Linux Kernel net/sched CAKE Qdisc Use-After-Free LPE\" by Noamr](https://ssd-disclosure.com/linux-kernel-net-sched-cake-qdisc-use-after-free-lpe/) [article] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backp",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ssd-disclosure.com/linux-kernel-net-sched-cake-qdisc-use-after-free-lpe/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ssd-disclosure.com/linux-kernel-net-sched-cake-qdisc-use-after-free-lpe/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "net/sched",
      "exploit_stage": "vulnerability",
      "summary_en": "The Linux Kernel net/sched CAKE Qdisc vulnerability presents a use-after-free issue resulting in local privilege escalation.",
      "summary_zh": "Linux内核net/sched CAKE Qdisc漏洞呈现出一个使用后释放问题，导致本地特权提升。",
      "source_markdown": "[2026: \"Linux Kernel net/sched CAKE Qdisc Use-After-Free LPE\" by Noamr](https://ssd-disclosure.com/linux-kernel-net-sched-cake-qdisc-use-after-free-lpe/) [article] [CVE-UNKNOWN]",
      "search_text": "linux kernel net/sched cake qdisc use-after-free lpe linux kernel net/sched cake qdisc use-after-free lpe noamr cve-unknown  vulnerabilities lpe lpe primary article https://ssd-disclosure.com/linux-kernel-net-sched-cake-qdisc-use-after-free-lpe/ lpe net/sched vulnerability the linux kernel net/sched cake qdisc vulnerability presents a use-after-free issue resulting in local privilege escalation. linux内核net/sched cake qdisc漏洞呈现出一个使用后释放问题，导致本地特权提升。 # linux kernel net/sched cake qdisc use-after-free lpe record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel net/sched cake qdisc use-after-free lpe resource_label: primary resource_type: article resource_url: https://ssd-disclosure.com/linux-kernel-net-sched-cake-qdisc-use-after-free-lpe/ parent_primary_url: https://ssd-disclosure.com/linux-kernel-net-sched-cake-qdisc-use-after-free-lpe/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"linux kernel net/sched cake qdisc use-after-free lpe\" by noamr](https://ssd-disclosure.com/linux-kernel-net-sched-cake-qdisc-use-after-free-lpe/) [article] [cve-unknown] cves: cve-unknown android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backp unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d36682a9d968e55b",
      "item_id": "5f1050553bb95fcd",
      "slug": "2026-vulnerabilities-lpe-cryptodev-linux-page-level-uaf-exploitation-primary-4decbe64",
      "year": 2026,
      "title": "[Cryptodev-linux] Page-level UAF exploitation",
      "item_title": "[Cryptodev-linux] Page-level UAF exploitation",
      "authors": [
        "nasm"
      ],
      "cves": [],
      "tags": [
        "NO-CVE"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://nasm.re/posts/cryptodev-linux-vuln/",
      "primary_url": "https://nasm.re/posts/cryptodev-linux-vuln/",
      "parent_primary_url": "https://nasm.re/posts/cryptodev-linux-vuln/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-cryptodev-linux-page-level-uaf-exploitation-primary-4decbe64.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# [Cryptodev-linux] Page-level UAF exploitation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: [Cryptodev-linux] Page-level UAF exploitation resource_label: primary resource_type: article resource_url: https://nasm.re/posts/cryptodev-linux-vuln/ parent_primary_url: https://nasm.re/posts/cryptodev-linux-vuln/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"[Cryptodev-linux] Page-level UAF exploitation\" by nasm](https://nasm.re/posts/cryptodev-linux-vuln/) [article] [NO-CVE] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: fa",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://nasm.re/posts/cryptodev-linux-vuln/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://nasm.re/posts/cryptodev-linux-vuln/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "NO-CVE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The Cryptodev-linux article discusses page-level use-after-free exploitation techniques without a specific CVE.",
      "summary_zh": "Cryptodev-linux文章讨论了页面级使用后释放的利用技术，没有特定的CVE。",
      "source_markdown": "[2026: \"[Cryptodev-linux] Page-level UAF exploitation\" by nasm](https://nasm.re/posts/cryptodev-linux-vuln/) [article] [NO-CVE]",
      "search_text": "[cryptodev-linux] page-level uaf exploitation [cryptodev-linux] page-level uaf exploitation nasm  no-cve vulnerabilities lpe lpe primary article https://nasm.re/posts/cryptodev-linux-vuln/ lpe no-cve  vulnerability the cryptodev-linux article discusses page-level use-after-free exploitation techniques without a specific cve. cryptodev-linux文章讨论了页面级使用后释放的利用技术，没有特定的cve。 # [cryptodev-linux] page-level uaf exploitation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: [cryptodev-linux] page-level uaf exploitation resource_label: primary resource_type: article resource_url: https://nasm.re/posts/cryptodev-linux-vuln/ parent_primary_url: https://nasm.re/posts/cryptodev-linux-vuln/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"[cryptodev-linux] page-level uaf exploitation\" by nasm](https://nasm.re/posts/cryptodev-linux-vuln/) [article] [no-cve] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: fa unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1742a68d7fee98f4",
      "item_id": "a0b8015507a737e9",
      "slug": "2026-vulnerabilities-lpe-a-0-click-exploit-chain-for-the-pixel-9-part-2-cracking-the-sandbox-with-a-big-wave-p",
      "year": 2026,
      "title": "A 0-click exploit chain for the Pixel 9 Part 2: Cracking the Sandbox with a Big Wave",
      "item_title": "A 0-click exploit chain for the Pixel 9 Part 2: Cracking the Sandbox with a Big Wave",
      "authors": [
        "Seth Jenkins"
      ],
      "cves": [
        "CVE-2025-36934"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://projectzero.google/2026/01/pixel-0-click-part-2.html",
      "primary_url": "https://projectzero.google/2026/01/pixel-0-click-part-2.html",
      "parent_primary_url": "https://projectzero.google/2026/01/pixel-0-click-part-2.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-a-0-click-exploit-chain-for-the-pixel-9-part-2-cracking-the-sandbox-with-a-big-wave-p.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A 0-click exploit chain for the Pixel 9 Part 2: Cracking the Sandbox with a Big Wave record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: A 0-click exploit chain for the Pixel 9 Part 2: Cracking the Sandbox with a Big Wave resource_label: primary resource_type: article resource_url: https://projectzero.google/2026/01/pixel-0-click-part-2.html parent_primary_url: https://projectzero.google/2026/01/pixel-0-click-part-2.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"A 0-click exploit chain for the Pixel 9 Part 2: Cracking the Sandbox with a Big Wave\" by Seth Jenkins](https://projectzero.google/2026/01/pixel-0-click-part-2.html) [article] [CVE-2025-36934] cves: CVE-2025-36934 android_impact_status: yes android_impact_reason: mentions Pixel devices ios_impact_status: no ios_impact_reas",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://projectzero.google/2026/01/pixel-0-click-part-2.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://projectzero.google/2026/01/pixel-0-click-part-2.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Pixel devices",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2025-36934"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2025-36934 outlines a 0-click exploit chain targeting the Pixel 9's sandbox environment.",
      "summary_zh": "CVE-2025-36934概述了针对Pixel 9沙箱环境的0点击利用链。",
      "source_markdown": "[2026: \"A 0-click exploit chain for the Pixel 9 Part 2: Cracking the Sandbox with a Big Wave\" by Seth Jenkins](https://projectzero.google/2026/01/pixel-0-click-part-2.html) [article] [CVE-2025-36934]",
      "search_text": "a 0-click exploit chain for the pixel 9 part 2: cracking the sandbox with a big wave a 0-click exploit chain for the pixel 9 part 2: cracking the sandbox with a big wave seth jenkins cve-2025-36934  vulnerabilities lpe lpe primary article https://projectzero.google/2026/01/pixel-0-click-part-2.html lpe cve-2025-36934  vulnerability cve-2025-36934 outlines a 0-click exploit chain targeting the pixel 9's sandbox environment. cve-2025-36934概述了针对pixel 9沙箱环境的0点击利用链。 # a 0-click exploit chain for the pixel 9 part 2: cracking the sandbox with a big wave record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: a 0-click exploit chain for the pixel 9 part 2: cracking the sandbox with a big wave resource_label: primary resource_type: article resource_url: https://projectzero.google/2026/01/pixel-0-click-part-2.html parent_primary_url: https://projectzero.google/2026/01/pixel-0-click-part-2.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"a 0-click exploit chain for the pixel 9 part 2: cracking the sandbox with a big wave\" by seth jenkins](https://projectzero.google/2026/01/pixel-0-click-part-2.html) [article] [cve-2025-36934] cves: cve-2025-36934 android_impact_status: yes android_impact_reason: mentions pixel devices ios_impact_status: no ios_impact_reas yes mentions pixel devices no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "8ff7a12cd7b2bc38",
      "item_id": "f81011471cbd6b2c",
      "slug": "2026-vulnerabilities-lpe-translator-mali-utgard-hacking-primary-8928bfde",
      "year": 2026,
      "title": "Translator/Mali Utgard Hacking",
      "item_title": "Translator/Mali Utgard Hacking",
      "authors": [],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://luke-m.xyz/translator",
      "primary_url": "https://luke-m.xyz/translator",
      "parent_primary_url": "https://luke-m.xyz/translator",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-translator-mali-utgard-hacking-primary-8928bfde.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Translator/Mali Utgard Hacking record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Translator/Mali Utgard Hacking resource_label: primary resource_type: article resource_url: https://luke-m.xyz/translator parent_primary_url: https://luke-m.xyz/translator source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Translator/Mali Utgard Hacking\"](https://luke-m.xyz/translator) [articles] [[exploits](https://github.com/lr-m/RIPMaliUtgard)] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: possible android_impact_reason: mentions mobile SoC/GPU components used by Android devices ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/lr-m/RIPMaliUtgard context_links",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://luke-m.xyz/translator"
        },
        {
          "label": "exploits",
          "type": "exploit",
          "url": "https://github.com/lr-m/RIPMaliUtgard"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://luke-m.xyz/translator"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploits",
            "type": "exploit",
            "url": "https://github.com/lr-m/RIPMaliUtgard"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/lr-m/RIPMaliUtgard"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions mobile SoC/GPU components used by Android devices",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-UNKNOWN"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The Translator/Mali Utgard Hacking article discusses vulnerabilities leading to local privilege escalation with potential exploits.",
      "summary_zh": "Translator/Mali Utgard Hacking文章讨论了导致本地特权提升的漏洞及潜在利用。",
      "source_markdown": "[2026: \"Translator/Mali Utgard Hacking\"](https://luke-m.xyz/translator) [articles] [[exploits](https://github.com/lr-m/RIPMaliUtgard)] [CVE-UNKNOWN]",
      "search_text": "translator/mali utgard hacking translator/mali utgard hacking  cve-unknown  vulnerabilities lpe lpe primary article https://luke-m.xyz/translator lpe cve-unknown  vulnerability the translator/mali utgard hacking article discusses vulnerabilities leading to local privilege escalation with potential exploits. translator/mali utgard hacking文章讨论了导致本地特权提升的漏洞及潜在利用。 # translator/mali utgard hacking record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: translator/mali utgard hacking resource_label: primary resource_type: article resource_url: https://luke-m.xyz/translator parent_primary_url: https://luke-m.xyz/translator source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"translator/mali utgard hacking\"](https://luke-m.xyz/translator) [articles] [[exploits](https://github.com/lr-m/ripmaliutgard)] [cve-unknown] cves: cve-unknown android_impact_status: possible android_impact_reason: mentions mobile soc/gpu components used by android devices ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/lr-m/ripmaliutgard context_links possible mentions mobile soc/gpu components used by android devices no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "8136d8ae4ee0702c",
      "item_id": "f81011471cbd6b2c",
      "slug": "2026-vulnerabilities-lpe-translator-mali-utgard-hacking-exploits-c53facbc",
      "year": 2026,
      "title": "Translator/Mali Utgard Hacking · exploits",
      "item_title": "Translator/Mali Utgard Hacking",
      "authors": [],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploits",
      "resource_type": "exploit",
      "resource_url": "https://github.com/lr-m/RIPMaliUtgard",
      "primary_url": "https://github.com/lr-m/RIPMaliUtgard",
      "parent_primary_url": "https://luke-m.xyz/translator",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2026-vulnerabilities-lpe-translator-mali-utgard-hacking-exploits-c53facbc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Translator/Mali Utgard Hacking · exploits record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Translator/Mali Utgard Hacking resource_label: exploits resource_type: exploit resource_url: https://github.com/lr-m/RIPMaliUtgard parent_primary_url: https://luke-m.xyz/translator source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"Translator/Mali Utgard Hacking\"](https://luke-m.xyz/translator) [articles] [[exploits](https://github.com/lr-m/RIPMaliUtgard)] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: possible android_impact_reason: mentions mobile SoC/GPU components used by Android devices ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/lr-m/RIPMali",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://luke-m.xyz/translator"
        },
        {
          "label": "exploits",
          "type": "exploit",
          "url": "https://github.com/lr-m/RIPMaliUtgard"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://luke-m.xyz/translator"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploits",
            "type": "exploit",
            "url": "https://github.com/lr-m/RIPMaliUtgard"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/lr-m/RIPMaliUtgard"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions mobile SoC/GPU components used by Android devices",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2026 Linux kernel LPE resource \"Translator/Mali Utgard Hacking · exploits\" (CVE-UNKNOWN); URL type: exploit. Android impact: possible.",
      "summary_zh": "2026 年 Linux 内核LPE资料：「Translator/Mali Utgard Hacking · exploits」（CVE-UNKNOWN）；URL 类型：exploit。 Android 影响：possible。",
      "source_markdown": "[2026: \"Translator/Mali Utgard Hacking\"](https://luke-m.xyz/translator) [articles] [[exploits](https://github.com/lr-m/RIPMaliUtgard)] [CVE-UNKNOWN]",
      "search_text": "translator/mali utgard hacking · exploits translator/mali utgard hacking  cve-unknown  vulnerabilities lpe lpe exploits exploit https://github.com/lr-m/ripmaliutgard vulnerabilities lpe exploit  lpe 2026 linux kernel lpe resource \"translator/mali utgard hacking · exploits\" (cve-unknown); url type: exploit. android impact: possible. 2026 年 linux 内核lpe资料：「translator/mali utgard hacking · exploits」（cve-unknown）；url 类型：exploit。 android 影响：possible。 # translator/mali utgard hacking · exploits record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: translator/mali utgard hacking resource_label: exploits resource_type: exploit resource_url: https://github.com/lr-m/ripmaliutgard parent_primary_url: https://luke-m.xyz/translator source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2026: \"translator/mali utgard hacking\"](https://luke-m.xyz/translator) [articles] [[exploits](https://github.com/lr-m/ripmaliutgard)] [cve-unknown] cves: cve-unknown android_impact_status: possible android_impact_reason: mentions mobile soc/gpu components used by android devices ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/lr-m/ripmali possible mentions mobile soc/gpu components used by android devices no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "7a7418fde847f2e6",
      "item_id": "431efb63641ce456",
      "slug": "2025-vulnerabilities-lpe-walkthrough-of-an-n-day-android-gpu-driver-vulnerability-primary-e5212d3c",
      "year": 2025,
      "title": "Walkthrough of an N-day Android GPU driver vulnerability",
      "item_title": "Walkthrough of an N-day Android GPU driver vulnerability",
      "authors": [
        "Angus"
      ],
      "cves": [
        "CVE-2022-22706"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=G71dB0C4-dY",
      "primary_url": "https://www.youtube.com/watch?v=G71dB0C4-dY",
      "parent_primary_url": "https://www.youtube.com/watch?v=G71dB0C4-dY",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-walkthrough-of-an-n-day-android-gpu-driver-vulnerability-primary-e5212d3c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Walkthrough of an N-day Android GPU driver vulnerability record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Walkthrough of an N-day Android GPU driver vulnerability resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=G71dB0C4-dY parent_primary_url: https://www.youtube.com/watch?v=G71dB0C4-dY source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Walkthrough of an N-day Android GPU driver vulnerability\" by Angus](https://www.youtube.com/watch?v=G71dB0C4-dY) [video] [CVE-2022-22706] cves: CVE-2022-22706 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_link",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=G71dB0C4-dY"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=G71dB0C4-dY"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-22706"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "A video walkthrough details an N-day vulnerability in an Android GPU driver leading to local privilege escalation.",
      "summary_zh": "视频演示详细介绍了Android GPU驱动程序中的N天漏洞，导致本地特权提升。",
      "source_markdown": "[2025: \"Walkthrough of an N-day Android GPU driver vulnerability\" by Angus](https://www.youtube.com/watch?v=G71dB0C4-dY) [video] [CVE-2022-22706]",
      "search_text": "walkthrough of an n-day android gpu driver vulnerability walkthrough of an n-day android gpu driver vulnerability angus cve-2022-22706  vulnerabilities lpe lpe primary video https://www.youtube.com/watch?v=g71db0c4-dy lpe cve-2022-22706  vulnerability a video walkthrough details an n-day vulnerability in an android gpu driver leading to local privilege escalation. 视频演示详细介绍了android gpu驱动程序中的n天漏洞，导致本地特权提升。 # walkthrough of an n-day android gpu driver vulnerability record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: walkthrough of an n-day android gpu driver vulnerability resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=g71db0c4-dy parent_primary_url: https://www.youtube.com/watch?v=g71db0c4-dy source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"walkthrough of an n-day android gpu driver vulnerability\" by angus](https://www.youtube.com/watch?v=g71db0c4-dy) [video] [cve-2022-22706] cves: cve-2022-22706 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_link yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "7aec699ffed2e684",
      "item_id": "147849e84b216235",
      "slug": "2025-vulnerabilities-lpe-a-tale-of-challenging-mte-rooting-google-pixel-with-kernel-mte-enabled-in-one-shot-pr",
      "year": 2025,
      "title": "A tale of challenging MTE: Rooting Google Pixel with kernel MTE enabled in one shot",
      "item_title": "A tale of challenging MTE: Rooting Google Pixel with kernel MTE enabled in one shot",
      "authors": [
        "Yong Wang"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://github.com/ThomasKing2014/slides/blob/master/2025/poc2025.pdf",
      "primary_url": "https://github.com/ThomasKing2014/slides/blob/master/2025/poc2025.pdf",
      "parent_primary_url": "https://github.com/ThomasKing2014/slides/blob/master/2025/poc2025.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-a-tale-of-challenging-mte-rooting-google-pixel-with-kernel-mte-enabled-in-one-shot-pr.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A tale of challenging MTE: Rooting Google Pixel with kernel MTE enabled in one shot record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: A tale of challenging MTE: Rooting Google Pixel with kernel MTE enabled in one shot resource_label: primary resource_type: slides resource_url: https://github.com/ThomasKing2014/slides/blob/master/2025/poc2025.pdf parent_primary_url: https://github.com/ThomasKing2014/slides/blob/master/2025/poc2025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"A tale of challenging MTE: Rooting Google Pixel with kernel MTE enabled in one shot\" by Yong Wang](https://github.com/ThomasKing2014/slides/blob/master/2025/poc2025.pdf) [slides] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: yes android_impact_reason: mentions Pixel devices ios_impact_status: no io",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/ThomasKing2014/slides/blob/master/2025/poc2025.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/ThomasKing2014/slides/blob/master/2025/poc2025.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ThomasKing2014/slides/blob/master/2025/poc2025.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Pixel devices",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-UNKNOWN"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The presentation discusses rooting the Google Pixel with kernel MTE enabled, showcasing a local privilege escalation technique.",
      "summary_zh": "该演示讨论了在启用内核MTE的情况下对Google Pixel进行root的本地特权提升技术。",
      "source_markdown": "[2025: \"A tale of challenging MTE: Rooting Google Pixel with kernel MTE enabled in one shot\" by Yong Wang](https://github.com/ThomasKing2014/slides/blob/master/2025/poc2025.pdf) [slides] [CVE-UNKNOWN]",
      "search_text": "a tale of challenging mte: rooting google pixel with kernel mte enabled in one shot a tale of challenging mte: rooting google pixel with kernel mte enabled in one shot yong wang cve-unknown  vulnerabilities lpe lpe primary slides https://github.com/thomasking2014/slides/blob/master/2025/poc2025.pdf lpe cve-unknown  vulnerability the presentation discusses rooting the google pixel with kernel mte enabled, showcasing a local privilege escalation technique. 该演示讨论了在启用内核mte的情况下对google pixel进行root的本地特权提升技术。 # a tale of challenging mte: rooting google pixel with kernel mte enabled in one shot record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: a tale of challenging mte: rooting google pixel with kernel mte enabled in one shot resource_label: primary resource_type: slides resource_url: https://github.com/thomasking2014/slides/blob/master/2025/poc2025.pdf parent_primary_url: https://github.com/thomasking2014/slides/blob/master/2025/poc2025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"a tale of challenging mte: rooting google pixel with kernel mte enabled in one shot\" by yong wang](https://github.com/thomasking2014/slides/blob/master/2025/poc2025.pdf) [slides] [cve-unknown] cves: cve-unknown android_impact_status: yes android_impact_reason: mentions pixel devices ios_impact_status: no io yes mentions pixel devices no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "f482a5225f1cff0b",
      "item_id": "93890b5e2f580f59",
      "slug": "2025-vulnerabilities-lpe-cve-2025-38352-part-1-in-the-wild-android-kernel-vulnerability-analysis-poc-primary-3",
      "year": 2025,
      "title": "CVE-2025-38352 (Part 1) - In-the-wild Android Kernel Vulnerability Analysis + PoC",
      "item_title": "CVE-2025-38352 (Part 1) - In-the-wild Android Kernel Vulnerability Analysis + PoC",
      "authors": [
        "Faith"
      ],
      "cves": [
        "CVE-2025-38352"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://faith2dxy.xyz/2025-12-22/cve_2025_38352_analysis/",
      "primary_url": "https://faith2dxy.xyz/2025-12-22/cve_2025_38352_analysis/",
      "parent_primary_url": "https://faith2dxy.xyz/2025-12-22/cve_2025_38352_analysis/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-cve-2025-38352-part-1-in-the-wild-android-kernel-vulnerability-analysis-poc-primary-3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2025-38352 (Part 1) - In-the-wild Android Kernel Vulnerability Analysis + PoC record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2025-38352 (Part 1) - In-the-wild Android Kernel Vulnerability Analysis + PoC resource_label: primary resource_type: article resource_url: https://faith2dxy.xyz/2025-12-22/cve_2025_38352_analysis/ parent_primary_url: https://faith2dxy.xyz/2025-12-22/cve_2025_38352_analysis/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"CVE-2025-38352 (Part 1) - In-the-wild Android Kernel Vulnerability Analysis + PoC\" by Faith](https://faith2dxy.xyz/2025-12-22/cve_2025_38352_analysis/) [article] [CVE-2025-38352] cves: CVE-2025-38352 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://faith2dxy.xyz/2025-12-22/cve_2025_38352_analysis/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://faith2dxy.xyz/2025-12-22/cve_2025_38352_analysis/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2025-38352"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2025-38352 analysis reveals in-the-wild vulnerabilities in the Android kernel leading to local privilege escalation.",
      "summary_zh": "CVE-2025-38352分析揭示了Android内核中的实际漏洞，导致本地特权提升。",
      "source_markdown": "[2025: \"CVE-2025-38352 (Part 1) - In-the-wild Android Kernel Vulnerability Analysis + PoC\" by Faith](https://faith2dxy.xyz/2025-12-22/cve_2025_38352_analysis/) [article] [CVE-2025-38352]",
      "search_text": "cve-2025-38352 (part 1) - in-the-wild android kernel vulnerability analysis + poc cve-2025-38352 (part 1) - in-the-wild android kernel vulnerability analysis + poc faith cve-2025-38352  vulnerabilities lpe lpe primary article https://faith2dxy.xyz/2025-12-22/cve_2025_38352_analysis/ lpe cve-2025-38352  vulnerability cve-2025-38352 analysis reveals in-the-wild vulnerabilities in the android kernel leading to local privilege escalation. cve-2025-38352分析揭示了android内核中的实际漏洞，导致本地特权提升。 # cve-2025-38352 (part 1) - in-the-wild android kernel vulnerability analysis + poc record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2025-38352 (part 1) - in-the-wild android kernel vulnerability analysis + poc resource_label: primary resource_type: article resource_url: https://faith2dxy.xyz/2025-12-22/cve_2025_38352_analysis/ parent_primary_url: https://faith2dxy.xyz/2025-12-22/cve_2025_38352_analysis/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"cve-2025-38352 (part 1) - in-the-wild android kernel vulnerability analysis + poc\" by faith](https://faith2dxy.xyz/2025-12-22/cve_2025_38352_analysis/) [article] [cve-2025-38352] cves: cve-2025-38352 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use  yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   has-poc poc proof-of-concept"
    },
    {
      "id": "9e3531695166c290",
      "item_id": "c35f9da7c990ed8c",
      "slug": "2025-vulnerabilities-lpe-cve-2025-38352-part-2-extending-the-race-window-without-a-kernel-patch-primary-3bed9c",
      "year": 2025,
      "title": "CVE-2025-38352 (Part 2) - Extending The Race Window Without a Kernel Patch",
      "item_title": "CVE-2025-38352 (Part 2) - Extending The Race Window Without a Kernel Patch",
      "authors": [
        "Faith"
      ],
      "cves": [
        "CVE-2025-38352"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://faith2dxy.xyz/2025-12-24/cve_2025_38352_analysis_part_2/",
      "primary_url": "https://faith2dxy.xyz/2025-12-24/cve_2025_38352_analysis_part_2/",
      "parent_primary_url": "https://faith2dxy.xyz/2025-12-24/cve_2025_38352_analysis_part_2/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-cve-2025-38352-part-2-extending-the-race-window-without-a-kernel-patch-primary-3bed9c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2025-38352 (Part 2) - Extending The Race Window Without a Kernel Patch record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2025-38352 (Part 2) - Extending The Race Window Without a Kernel Patch resource_label: primary resource_type: article resource_url: https://faith2dxy.xyz/2025-12-24/cve_2025_38352_analysis_part_2/ parent_primary_url: https://faith2dxy.xyz/2025-12-24/cve_2025_38352_analysis_part_2/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"CVE-2025-38352 (Part 2) - Extending The Race Window Without a Kernel Patch\" by Faith](https://faith2dxy.xyz/2025-12-24/cve_2025_38352_analysis_part_2/) [article] [CVE-2025-38352] cves: CVE-2025-38352 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://faith2dxy.xyz/2025-12-24/cve_2025_38352_analysis_part_2/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://faith2dxy.xyz/2025-12-24/cve_2025_38352_analysis_part_2/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2025-38352"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Part 2 of CVE-2025-38352 extends the race window for local privilege escalation without kernel patches.",
      "summary_zh": "CVE-2025-38352的第2部分在没有内核补丁的情况下扩展了本地特权提升的竞争窗口。",
      "source_markdown": "[2025: \"CVE-2025-38352 (Part 2) - Extending The Race Window Without a Kernel Patch\" by Faith](https://faith2dxy.xyz/2025-12-24/cve_2025_38352_analysis_part_2/) [article] [CVE-2025-38352]",
      "search_text": "cve-2025-38352 (part 2) - extending the race window without a kernel patch cve-2025-38352 (part 2) - extending the race window without a kernel patch faith cve-2025-38352  vulnerabilities lpe lpe primary article https://faith2dxy.xyz/2025-12-24/cve_2025_38352_analysis_part_2/ lpe cve-2025-38352  vulnerability part 2 of cve-2025-38352 extends the race window for local privilege escalation without kernel patches. cve-2025-38352的第2部分在没有内核补丁的情况下扩展了本地特权提升的竞争窗口。 # cve-2025-38352 (part 2) - extending the race window without a kernel patch record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2025-38352 (part 2) - extending the race window without a kernel patch resource_label: primary resource_type: article resource_url: https://faith2dxy.xyz/2025-12-24/cve_2025_38352_analysis_part_2/ parent_primary_url: https://faith2dxy.xyz/2025-12-24/cve_2025_38352_analysis_part_2/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"cve-2025-38352 (part 2) - extending the race window without a kernel patch\" by faith](https://faith2dxy.xyz/2025-12-24/cve_2025_38352_analysis_part_2/) [article] [cve-2025-38352] cves: cve-2025-38352 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel- unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "8694665b4bbcb98f",
      "item_id": "2e3b7849bf47c927",
      "slug": "2025-vulnerabilities-lpe-cve-2025-38352-part-3-uncovering-chronomaly-primary-56930ee8",
      "year": 2025,
      "title": "CVE-2025-38352 (Part 3) - Uncovering Chronomaly",
      "item_title": "CVE-2025-38352 (Part 3) - Uncovering Chronomaly",
      "authors": [
        "Faith"
      ],
      "cves": [
        "CVE-2025-38352"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/",
      "primary_url": "https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/",
      "parent_primary_url": "https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-cve-2025-38352-part-3-uncovering-chronomaly-primary-56930ee8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2025-38352 (Part 3) - Uncovering Chronomaly record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2025-38352 (Part 3) - Uncovering Chronomaly resource_label: primary resource_type: article resource_url: https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/ parent_primary_url: https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"CVE-2025-38352 (Part 3) - Uncovering Chronomaly\" by Faith](https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/) [article] [exploit](https://github.com/farazsth98/chronomaly) [CVE-2025-38352] cves: CVE-2025-38352 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport r",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/farazsth98/chronomaly"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/farazsth98/chronomaly"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/farazsth98/chronomaly"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2025-38352"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Part 3 of CVE-2025-38352 uncovers additional techniques for exploiting the vulnerability in the Android kernel.",
      "summary_zh": "CVE-2025-38352的第3部分揭示了在Android内核中利用该漏洞的额外技术。",
      "source_markdown": "[2025: \"CVE-2025-38352 (Part 3) - Uncovering Chronomaly\" by Faith](https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/) [article] [exploit](https://github.com/farazsth98/chronomaly) [CVE-2025-38352]",
      "search_text": "cve-2025-38352 (part 3) - uncovering chronomaly cve-2025-38352 (part 3) - uncovering chronomaly faith cve-2025-38352  vulnerabilities lpe lpe primary article https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/ lpe cve-2025-38352  vulnerability part 3 of cve-2025-38352 uncovers additional techniques for exploiting the vulnerability in the android kernel. cve-2025-38352的第3部分揭示了在android内核中利用该漏洞的额外技术。 # cve-2025-38352 (part 3) - uncovering chronomaly record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2025-38352 (part 3) - uncovering chronomaly resource_label: primary resource_type: article resource_url: https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/ parent_primary_url: https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"cve-2025-38352 (part 3) - uncovering chronomaly\" by faith](https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/) [article] [exploit](https://github.com/farazsth98/chronomaly) [cve-2025-38352] cves: cve-2025-38352 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport r unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "a9b92bb983146650",
      "item_id": "2e3b7849bf47c927",
      "slug": "2025-vulnerabilities-lpe-cve-2025-38352-part-3-uncovering-chronomaly-exploit-e83d12db",
      "year": 2025,
      "title": "CVE-2025-38352 (Part 3) - Uncovering Chronomaly · exploit",
      "item_title": "CVE-2025-38352 (Part 3) - Uncovering Chronomaly",
      "authors": [
        "Faith"
      ],
      "cves": [
        "CVE-2025-38352"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/farazsth98/chronomaly",
      "primary_url": "https://github.com/farazsth98/chronomaly",
      "parent_primary_url": "https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-cve-2025-38352-part-3-uncovering-chronomaly-exploit-e83d12db.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2025-38352 (Part 3) - Uncovering Chronomaly · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2025-38352 (Part 3) - Uncovering Chronomaly resource_label: exploit resource_type: exploit resource_url: https://github.com/farazsth98/chronomaly parent_primary_url: https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"CVE-2025-38352 (Part 3) - Uncovering Chronomaly\" by Faith](https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/) [article] [exploit](https://github.com/farazsth98/chronomaly) [CVE-2025-38352] cves: CVE-2025-38352 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_imp",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/farazsth98/chronomaly"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/farazsth98/chronomaly"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/farazsth98/chronomaly"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2025-38352"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "CVE-2025-38352 reveals a vulnerability in the Linux kernel that can be exploited for local privilege escalation.",
      "summary_zh": "CVE-2025-38352揭示了Linux内核中的一个漏洞，可被利用进行本地权限提升。",
      "source_markdown": "[2025: \"CVE-2025-38352 (Part 3) - Uncovering Chronomaly\" by Faith](https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/) [article] [exploit](https://github.com/farazsth98/chronomaly) [CVE-2025-38352]",
      "search_text": "cve-2025-38352 (part 3) - uncovering chronomaly · exploit cve-2025-38352 (part 3) - uncovering chronomaly faith cve-2025-38352  vulnerabilities lpe lpe exploit exploit https://github.com/farazsth98/chronomaly lpe cve-2025-38352  exploit cve-2025-38352 reveals a vulnerability in the linux kernel that can be exploited for local privilege escalation. cve-2025-38352揭示了linux内核中的一个漏洞，可被利用进行本地权限提升。 # cve-2025-38352 (part 3) - uncovering chronomaly · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2025-38352 (part 3) - uncovering chronomaly resource_label: exploit resource_type: exploit resource_url: https://github.com/farazsth98/chronomaly parent_primary_url: https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"cve-2025-38352 (part 3) - uncovering chronomaly\" by faith](https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/) [article] [exploit](https://github.com/farazsth98/chronomaly) [cve-2025-38352] cves: cve-2025-38352 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_imp unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "89072ac4b0cd622b",
      "item_id": "23995725a3b8186e",
      "slug": "2025-vulnerabilities-lpe-dangling-pointers-fragile-memory-from-an-undisclosed-vulnerability-to-pixel-9-pro-pri",
      "year": 2025,
      "title": "Dangling pointers, fragile memory—from an undisclosed vulnerability to Pixel 9 Pro privilege escalation",
      "item_title": "Dangling pointers, fragile memory—from an undisclosed vulnerability to Pixel 9 Pro privilege escalation",
      "authors": [],
      "cves": [
        "CVE-2025-6349",
        "CVE-2025-8045"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://dawnslab.jd.com/Pixel_9_Pro_EoP/",
      "primary_url": "https://dawnslab.jd.com/Pixel_9_Pro_EoP/",
      "parent_primary_url": "https://dawnslab.jd.com/Pixel_9_Pro_EoP/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-dangling-pointers-fragile-memory-from-an-undisclosed-vulnerability-to-pixel-9-pro-pri.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Dangling pointers, fragile memory—from an undisclosed vulnerability to Pixel 9 Pro privilege escalation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Dangling pointers, fragile memory—from an undisclosed vulnerability to Pixel 9 Pro privilege escalation resource_label: primary resource_type: article resource_url: https://dawnslab.jd.com/Pixel_9_Pro_EoP/ parent_primary_url: https://dawnslab.jd.com/Pixel_9_Pro_EoP/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Dangling pointers, fragile memory—from an undisclosed vulnerability to Pixel 9 Pro privilege escalation\"](https://dawnslab.jd.com/Pixel_9_Pro_EoP/) [article] [CVE-2025-6349] [CVE-2025-8045] cves: CVE-2025-6349, CVE-2025-8045 android_impact_status: yes android_impact_reason: mentions Pixel devices ios_impact_status: no ios_i",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://dawnslab.jd.com/Pixel_9_Pro_EoP/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://dawnslab.jd.com/Pixel_9_Pro_EoP/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Pixel devices",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2025-6349",
        "CVE-2025-8045"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The article discusses dangling pointers and memory issues leading to privilege escalation on the Pixel 9 Pro.",
      "summary_zh": "该文章讨论了导致Pixel 9 Pro特权提升的悬空指针和内存问题。",
      "source_markdown": "[2025: \"Dangling pointers, fragile memory—from an undisclosed vulnerability to Pixel 9 Pro privilege escalation\"](https://dawnslab.jd.com/Pixel_9_Pro_EoP/) [article] [CVE-2025-6349] [CVE-2025-8045]",
      "search_text": "dangling pointers, fragile memory—from an undisclosed vulnerability to pixel 9 pro privilege escalation dangling pointers, fragile memory—from an undisclosed vulnerability to pixel 9 pro privilege escalation  cve-2025-6349 cve-2025-8045  vulnerabilities lpe lpe primary article https://dawnslab.jd.com/pixel_9_pro_eop/ lpe cve-2025-6349 cve-2025-8045  vulnerability the article discusses dangling pointers and memory issues leading to privilege escalation on the pixel 9 pro. 该文章讨论了导致pixel 9 pro特权提升的悬空指针和内存问题。 # dangling pointers, fragile memory—from an undisclosed vulnerability to pixel 9 pro privilege escalation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: dangling pointers, fragile memory—from an undisclosed vulnerability to pixel 9 pro privilege escalation resource_label: primary resource_type: article resource_url: https://dawnslab.jd.com/pixel_9_pro_eop/ parent_primary_url: https://dawnslab.jd.com/pixel_9_pro_eop/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"dangling pointers, fragile memory—from an undisclosed vulnerability to pixel 9 pro privilege escalation\"](https://dawnslab.jd.com/pixel_9_pro_eop/) [article] [cve-2025-6349] [cve-2025-8045] cves: cve-2025-6349, cve-2025-8045 android_impact_status: yes android_impact_reason: mentions pixel devices ios_impact_status: no ios_i yes mentions pixel devices no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "a4cb6d04e980bbd8",
      "item_id": "3789ecba9ecdd6b5",
      "slug": "2025-vulnerabilities-lpe-dirty-ptrace-exploiting-undocumented-behaviors-in-kernel-mmap-handlers-primary-d057fa",
      "year": 2025,
      "title": "Dirty Ptrace: Exploiting Undocumented Behaviors in Kernel mmap Handlers",
      "item_title": "Dirty Ptrace: Exploiting Undocumented Behaviors in Kernel mmap Handlers",
      "authors": [
        "Xingyu Jin",
        "Martijn Bogaard"
      ],
      "cves": [
        "CVE-2024-44068",
        "CVE-2025-8109",
        "CVE-2024-49739"
      ],
      "tags": [
        "CVE‑2025‑23244"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://powerofcommunity.net/2025/slide/x-84592.pdf",
      "primary_url": "https://powerofcommunity.net/2025/slide/x-84592.pdf",
      "parent_primary_url": "https://powerofcommunity.net/2025/slide/x-84592.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-dirty-ptrace-exploiting-undocumented-behaviors-in-kernel-mmap-handlers-primary-d057fa.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Dirty Ptrace: Exploiting Undocumented Behaviors in Kernel mmap Handlers record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Dirty Ptrace: Exploiting Undocumented Behaviors in Kernel mmap Handlers resource_label: primary resource_type: slides resource_url: https://powerofcommunity.net/2025/slide/x-84592.pdf parent_primary_url: https://powerofcommunity.net/2025/slide/x-84592.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Dirty Ptrace: Exploiting Undocumented Behaviors in Kernel mmap Handlers\" by Xingyu Jin and Martijn Bogaard](https://powerofcommunity.net/2025/slide/x-84592.pdf) [slides] [[video](https://www.youtube.com/watch?v=yAUJFrPjfCI)] [CVE-2024-44068] [CVE‑2025‑23244] [CVE-2025-8109] [CVE-2024-49739] cves: CVE-2024-44068, CVE-2025-8109, CVE-2024-49739 android_impact_status: u",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://powerofcommunity.net/2025/slide/x-84592.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=yAUJFrPjfCI"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://powerofcommunity.net/2025/slide/x-84592.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=yAUJFrPjfCI"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2024-44068",
        "CVE-2025-8109",
        "CVE-2024-49739"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Dirty Ptrace explores undocumented behaviors in kernel mmap handlers leading to local privilege escalation.",
      "summary_zh": "Dirty Ptrace探讨了内核mmap处理程序中的未记录行为，导致本地特权提升。",
      "source_markdown": "[2025: \"Dirty Ptrace: Exploiting Undocumented Behaviors in Kernel mmap Handlers\" by Xingyu Jin and Martijn Bogaard](https://powerofcommunity.net/2025/slide/x-84592.pdf) [slides] [[video](https://www.youtube.com/watch?v=yAUJFrPjfCI)] [CVE-2024-44068] [CVE‑2025‑23244] [CVE-2025-8109] [CVE-2024-49739]",
      "search_text": "dirty ptrace: exploiting undocumented behaviors in kernel mmap handlers dirty ptrace: exploiting undocumented behaviors in kernel mmap handlers xingyu jin martijn bogaard cve-2024-44068 cve-2025-8109 cve-2024-49739 cve‑2025‑23244 vulnerabilities lpe lpe primary slides https://powerofcommunity.net/2025/slide/x-84592.pdf lpe cve-2024-44068 cve-2025-8109 cve-2024-49739  vulnerability dirty ptrace explores undocumented behaviors in kernel mmap handlers leading to local privilege escalation. dirty ptrace探讨了内核mmap处理程序中的未记录行为，导致本地特权提升。 # dirty ptrace: exploiting undocumented behaviors in kernel mmap handlers record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: dirty ptrace: exploiting undocumented behaviors in kernel mmap handlers resource_label: primary resource_type: slides resource_url: https://powerofcommunity.net/2025/slide/x-84592.pdf parent_primary_url: https://powerofcommunity.net/2025/slide/x-84592.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"dirty ptrace: exploiting undocumented behaviors in kernel mmap handlers\" by xingyu jin and martijn bogaard](https://powerofcommunity.net/2025/slide/x-84592.pdf) [slides] [[video](https://www.youtube.com/watch?v=yaujfrpjfci)] [cve-2024-44068] [cve‑2025‑23244] [cve-2025-8109] [cve-2024-49739] cves: cve-2024-44068, cve-2025-8109, cve-2024-49739 android_impact_status: u unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bea42eaa29a77fb0",
      "item_id": "3789ecba9ecdd6b5",
      "slug": "2025-vulnerabilities-lpe-dirty-ptrace-exploiting-undocumented-behaviors-in-kernel-mmap-handlers-video-61b937db",
      "year": 2025,
      "title": "Dirty Ptrace: Exploiting Undocumented Behaviors in Kernel mmap Handlers · video",
      "item_title": "Dirty Ptrace: Exploiting Undocumented Behaviors in Kernel mmap Handlers",
      "authors": [
        "Xingyu Jin",
        "Martijn Bogaard"
      ],
      "cves": [
        "CVE-2024-44068",
        "CVE-2025-8109",
        "CVE-2024-49739"
      ],
      "tags": [
        "CVE‑2025‑23244"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=yAUJFrPjfCI",
      "primary_url": "https://www.youtube.com/watch?v=yAUJFrPjfCI",
      "parent_primary_url": "https://powerofcommunity.net/2025/slide/x-84592.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-dirty-ptrace-exploiting-undocumented-behaviors-in-kernel-mmap-handlers-video-61b937db.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Dirty Ptrace: Exploiting Undocumented Behaviors in Kernel mmap Handlers · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Dirty Ptrace: Exploiting Undocumented Behaviors in Kernel mmap Handlers resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=yAUJFrPjfCI parent_primary_url: https://powerofcommunity.net/2025/slide/x-84592.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Dirty Ptrace: Exploiting Undocumented Behaviors in Kernel mmap Handlers\" by Xingyu Jin and Martijn Bogaard](https://powerofcommunity.net/2025/slide/x-84592.pdf) [slides] [[video](https://www.youtube.com/watch?v=yAUJFrPjfCI)] [CVE-2024-44068] [CVE‑2025‑23244] [CVE-2025-8109] [CVE-2024-49739] cves: CVE-2024-44068, CVE-2025-8109, CVE-2024-49739 android_impact_status: unkn",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://powerofcommunity.net/2025/slide/x-84592.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=yAUJFrPjfCI"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://powerofcommunity.net/2025/slide/x-84592.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=yAUJFrPjfCI"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2024-44068",
        "CVE-2025-8109",
        "CVE-2024-49739"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The video presentation on Dirty Ptrace highlights exploitation techniques related to kernel mmap handlers.",
      "summary_zh": "关于Dirty Ptrace的视频演示强调了与内核mmap处理程序相关的利用技术。",
      "source_markdown": "[2025: \"Dirty Ptrace: Exploiting Undocumented Behaviors in Kernel mmap Handlers\" by Xingyu Jin and Martijn Bogaard](https://powerofcommunity.net/2025/slide/x-84592.pdf) [slides] [[video](https://www.youtube.com/watch?v=yAUJFrPjfCI)] [CVE-2024-44068] [CVE‑2025‑23244] [CVE-2025-8109] [CVE-2024-49739]",
      "search_text": "dirty ptrace: exploiting undocumented behaviors in kernel mmap handlers · video dirty ptrace: exploiting undocumented behaviors in kernel mmap handlers xingyu jin martijn bogaard cve-2024-44068 cve-2025-8109 cve-2024-49739 cve‑2025‑23244 vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=yaujfrpjfci lpe cve-2024-44068 cve-2025-8109 cve-2024-49739  vulnerability the video presentation on dirty ptrace highlights exploitation techniques related to kernel mmap handlers. 关于dirty ptrace的视频演示强调了与内核mmap处理程序相关的利用技术。 # dirty ptrace: exploiting undocumented behaviors in kernel mmap handlers · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: dirty ptrace: exploiting undocumented behaviors in kernel mmap handlers resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=yaujfrpjfci parent_primary_url: https://powerofcommunity.net/2025/slide/x-84592.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"dirty ptrace: exploiting undocumented behaviors in kernel mmap handlers\" by xingyu jin and martijn bogaard](https://powerofcommunity.net/2025/slide/x-84592.pdf) [slides] [[video](https://www.youtube.com/watch?v=yaujfrpjfci)] [cve-2024-44068] [cve‑2025‑23244] [cve-2025-8109] [cve-2024-49739] cves: cve-2024-44068, cve-2025-8109, cve-2024-49739 android_impact_status: unkn unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9946ce821246126a",
      "item_id": "8cb3202f36b2333f",
      "slug": "2025-vulnerabilities-lpe-d-j-vu-in-linux-io-uring-breaking-memory-sharing-again-after-generations-of-fixes-pri",
      "year": 2025,
      "title": "Déjà Vu in Linux io_uring: Breaking Memory Sharing Again After Generations of Fixes",
      "item_title": "Déjà Vu in Linux io_uring: Breaking Memory Sharing Again After Generations of Fixes",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2025-21836"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://u1f383.github.io/slides/talks/2025_Hexacon-Deja_Vu_in_Linux_io_uring_Breaking_Memory_Sharing_Again_After_Generations_of_Fixes.pdf",
      "primary_url": "https://u1f383.github.io/slides/talks/2025_Hexacon-Deja_Vu_in_Linux_io_uring_Breaking_Memory_Sharing_Again_After_Generations_of_Fixes.pdf",
      "parent_primary_url": "https://u1f383.github.io/slides/talks/2025_Hexacon-Deja_Vu_in_Linux_io_uring_Breaking_Memory_Sharing_Again_After_Generations_of_Fixes.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-d-j-vu-in-linux-io-uring-breaking-memory-sharing-again-after-generations-of-fixes-pri.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Déjà Vu in Linux io_uring: Breaking Memory Sharing Again After Generations of Fixes record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Déjà Vu in Linux io_uring: Breaking Memory Sharing Again After Generations of Fixes resource_label: primary resource_type: slides resource_url: https://u1f383.github.io/slides/talks/2025_Hexacon-Deja_Vu_in_Linux_io_uring_Breaking_Memory_Sharing_Again_After_Generations_of_Fixes.pdf parent_primary_url: https://u1f383.github.io/slides/talks/2025_Hexacon-Deja_Vu_in_Linux_io_uring_Breaking_Memory_Sharing_Again_After_Generations_of_Fixes.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Déjà Vu in Linux io_uring: Breaking Memory Sharing Again After Generations of Fixes\" by Pumpkin Chang](https://u1f383.github.io/slides/talks/2025_Hexacon-Deja_Vu_in_Linux_i",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://u1f383.github.io/slides/talks/2025_Hexacon-Deja_Vu_in_Linux_io_uring_Breaking_Memory_Sharing_Again_After_Generations_of_Fixes.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Ry4eOgLCo90"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://u1f383.github.io/slides/talks/2025_Hexacon-Deja_Vu_in_Linux_io_uring_Breaking_Memory_Sharing_Again_After_Generations_of_Fixes.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Ry4eOgLCo90"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/slides/talks/2025_Hexacon-Deja_Vu_in_Linux_io_uring_Breaking_Memory_Sharing_Again_After_Generations_of_Fixes.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2025-21836"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Déjà Vu in Linux io_uring discusses breaking memory sharing vulnerabilities leading to local privilege escalation.",
      "summary_zh": "Linux io_uring中的Déjà Vu讨论了导致本地特权提升的内存共享漏洞。",
      "source_markdown": "[2025: \"Déjà Vu in Linux io_uring: Breaking Memory Sharing Again After Generations of Fixes\" by Pumpkin Chang](https://u1f383.github.io/slides/talks/2025_Hexacon-Deja_Vu_in_Linux_io_uring_Breaking_Memory_Sharing_Again_After_Generations_of_Fixes.pdf) [slides] [[video](https://www.youtube.com/watch?v=Ry4eOgLCo90)] [CVE-2025-21836]",
      "search_text": "déjà vu in linux io_uring: breaking memory sharing again after generations of fixes déjà vu in linux io_uring: breaking memory sharing again after generations of fixes pumpkin chang cve-2025-21836  vulnerabilities lpe lpe primary slides https://u1f383.github.io/slides/talks/2025_hexacon-deja_vu_in_linux_io_uring_breaking_memory_sharing_again_after_generations_of_fixes.pdf lpe cve-2025-21836  vulnerability déjà vu in linux io_uring discusses breaking memory sharing vulnerabilities leading to local privilege escalation. linux io_uring中的déjà vu讨论了导致本地特权提升的内存共享漏洞。 # déjà vu in linux io_uring: breaking memory sharing again after generations of fixes record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: déjà vu in linux io_uring: breaking memory sharing again after generations of fixes resource_label: primary resource_type: slides resource_url: https://u1f383.github.io/slides/talks/2025_hexacon-deja_vu_in_linux_io_uring_breaking_memory_sharing_again_after_generations_of_fixes.pdf parent_primary_url: https://u1f383.github.io/slides/talks/2025_hexacon-deja_vu_in_linux_io_uring_breaking_memory_sharing_again_after_generations_of_fixes.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"déjà vu in linux io_uring: breaking memory sharing again after generations of fixes\" by pumpkin chang](https://u1f383.github.io/slides/talks/2025_hexacon-deja_vu_in_linux_i unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "07b9368cc79c5a12",
      "item_id": "8cb3202f36b2333f",
      "slug": "2025-vulnerabilities-lpe-d-j-vu-in-linux-io-uring-breaking-memory-sharing-again-after-generations-of-fixes-vid",
      "year": 2025,
      "title": "Déjà Vu in Linux io_uring: Breaking Memory Sharing Again After Generations of Fixes · video",
      "item_title": "Déjà Vu in Linux io_uring: Breaking Memory Sharing Again After Generations of Fixes",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2025-21836"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=Ry4eOgLCo90",
      "primary_url": "https://www.youtube.com/watch?v=Ry4eOgLCo90",
      "parent_primary_url": "https://u1f383.github.io/slides/talks/2025_Hexacon-Deja_Vu_in_Linux_io_uring_Breaking_Memory_Sharing_Again_After_Generations_of_Fixes.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-d-j-vu-in-linux-io-uring-breaking-memory-sharing-again-after-generations-of-fixes-vid.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Déjà Vu in Linux io_uring: Breaking Memory Sharing Again After Generations of Fixes · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Déjà Vu in Linux io_uring: Breaking Memory Sharing Again After Generations of Fixes resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=Ry4eOgLCo90 parent_primary_url: https://u1f383.github.io/slides/talks/2025_Hexacon-Deja_Vu_in_Linux_io_uring_Breaking_Memory_Sharing_Again_After_Generations_of_Fixes.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Déjà Vu in Linux io_uring: Breaking Memory Sharing Again After Generations of Fixes\" by Pumpkin Chang](https://u1f383.github.io/slides/talks/2025_Hexacon-Deja_Vu_in_Linux_io_uring_Breaking_Memory_Sharing_Again_After_Generations_of_Fixes.pdf) [slides] [[video](h",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://u1f383.github.io/slides/talks/2025_Hexacon-Deja_Vu_in_Linux_io_uring_Breaking_Memory_Sharing_Again_After_Generations_of_Fixes.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Ry4eOgLCo90"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://u1f383.github.io/slides/talks/2025_Hexacon-Deja_Vu_in_Linux_io_uring_Breaking_Memory_Sharing_Again_After_Generations_of_Fixes.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Ry4eOgLCo90"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/slides/talks/2025_Hexacon-Deja_Vu_in_Linux_io_uring_Breaking_Memory_Sharing_Again_After_Generations_of_Fixes.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2025-21836"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The video on Déjà Vu in Linux io_uring presents insights into memory sharing vulnerabilities and their exploitation.",
      "summary_zh": "关于Linux io_uring中的Déjà Vu的视频提供了对内存共享漏洞及其利用的见解。",
      "source_markdown": "[2025: \"Déjà Vu in Linux io_uring: Breaking Memory Sharing Again After Generations of Fixes\" by Pumpkin Chang](https://u1f383.github.io/slides/talks/2025_Hexacon-Deja_Vu_in_Linux_io_uring_Breaking_Memory_Sharing_Again_After_Generations_of_Fixes.pdf) [slides] [[video](https://www.youtube.com/watch?v=Ry4eOgLCo90)] [CVE-2025-21836]",
      "search_text": "déjà vu in linux io_uring: breaking memory sharing again after generations of fixes · video déjà vu in linux io_uring: breaking memory sharing again after generations of fixes pumpkin chang cve-2025-21836  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=ry4eoglco90 lpe cve-2025-21836  vulnerability the video on déjà vu in linux io_uring presents insights into memory sharing vulnerabilities and their exploitation. 关于linux io_uring中的déjà vu的视频提供了对内存共享漏洞及其利用的见解。 # déjà vu in linux io_uring: breaking memory sharing again after generations of fixes · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: déjà vu in linux io_uring: breaking memory sharing again after generations of fixes resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=ry4eoglco90 parent_primary_url: https://u1f383.github.io/slides/talks/2025_hexacon-deja_vu_in_linux_io_uring_breaking_memory_sharing_again_after_generations_of_fixes.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"déjà vu in linux io_uring: breaking memory sharing again after generations of fixes\" by pumpkin chang](https://u1f383.github.io/slides/talks/2025_hexacon-deja_vu_in_linux_io_uring_breaking_memory_sharing_again_after_generations_of_fixes.pdf) [slides] [[video](h unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "8a24ec83640e0b9d",
      "item_id": "23794bf17273a5f2",
      "slug": "2025-vulnerabilities-lpe-cuda-de-gr-ce-primary-dba6ec0e",
      "year": 2025,
      "title": "CUDA de Grâce",
      "item_title": "CUDA de Grâce",
      "authors": [
        "Valentina Palmiotti",
        "Samuel Lovejoy"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://docs.google.com/presentation/d/1FgfURpMyHhnflGWtxeq8ClPPaB5ZDCzT/edit?usp=sharing",
      "primary_url": "https://docs.google.com/presentation/d/1FgfURpMyHhnflGWtxeq8ClPPaB5ZDCzT/edit?usp=sharing",
      "parent_primary_url": "https://docs.google.com/presentation/d/1FgfURpMyHhnflGWtxeq8ClPPaB5ZDCzT/edit?usp=sharing",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-cuda-de-gr-ce-primary-dba6ec0e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CUDA de Grâce record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CUDA de Grâce resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/1FgfURpMyHhnflGWtxeq8ClPPaB5ZDCzT/edit?usp=sharing parent_primary_url: https://docs.google.com/presentation/d/1FgfURpMyHhnflGWtxeq8ClPPaB5ZDCzT/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"CUDA de Grâce\" by Valentina Palmiotti and Samuel Lovejoy](https://docs.google.com/presentation/d/1FgfURpMyHhnflGWtxeq8ClPPaB5ZDCzT/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=Lvz2_ZHj3lo)] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/1FgfURpMyHhnflGWtxeq8ClPPaB5ZDCzT/edit?usp=sharing"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Lvz2_ZHj3lo"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/1FgfURpMyHhnflGWtxeq8ClPPaB5ZDCzT/edit?usp=sharing"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Lvz2_ZHj3lo"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-UNKNOWN"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CUDA de Grâce presents vulnerabilities in CUDA leading to potential local privilege escalation techniques.",
      "summary_zh": "CUDA de Grâce展示了CUDA中的漏洞，可能导致本地特权提升技术。",
      "source_markdown": "[2025: \"CUDA de Grâce\" by Valentina Palmiotti and Samuel Lovejoy](https://docs.google.com/presentation/d/1FgfURpMyHhnflGWtxeq8ClPPaB5ZDCzT/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=Lvz2_ZHj3lo)] [CVE-UNKNOWN]",
      "search_text": "cuda de grâce cuda de grâce valentina palmiotti samuel lovejoy cve-unknown  vulnerabilities lpe lpe primary slides https://docs.google.com/presentation/d/1fgfurpmyhhnflgwtxeq8clppab5zdczt/edit?usp=sharing lpe cve-unknown  vulnerability cuda de grâce presents vulnerabilities in cuda leading to potential local privilege escalation techniques. cuda de grâce展示了cuda中的漏洞，可能导致本地特权提升技术。 # cuda de grâce record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cuda de grâce resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/1fgfurpmyhhnflgwtxeq8clppab5zdczt/edit?usp=sharing parent_primary_url: https://docs.google.com/presentation/d/1fgfurpmyhhnflgwtxeq8clppab5zdczt/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"cuda de grâce\" by valentina palmiotti and samuel lovejoy](https://docs.google.com/presentation/d/1fgfurpmyhhnflgwtxeq8clppab5zdczt/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=lvz2_zhj3lo)] [cve-unknown] cves: cve-unknown android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2705d5159f38e328",
      "item_id": "23794bf17273a5f2",
      "slug": "2025-vulnerabilities-lpe-cuda-de-gr-ce-video-a540371b",
      "year": 2025,
      "title": "CUDA de Grâce · video",
      "item_title": "CUDA de Grâce",
      "authors": [
        "Valentina Palmiotti",
        "Samuel Lovejoy"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=Lvz2_ZHj3lo",
      "primary_url": "https://www.youtube.com/watch?v=Lvz2_ZHj3lo",
      "parent_primary_url": "https://docs.google.com/presentation/d/1FgfURpMyHhnflGWtxeq8ClPPaB5ZDCzT/edit?usp=sharing",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-cuda-de-gr-ce-video-a540371b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CUDA de Grâce · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CUDA de Grâce resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=Lvz2_ZHj3lo parent_primary_url: https://docs.google.com/presentation/d/1FgfURpMyHhnflGWtxeq8ClPPaB5ZDCzT/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"CUDA de Grâce\" by Valentina Palmiotti and Samuel Lovejoy](https://docs.google.com/presentation/d/1FgfURpMyHhnflGWtxeq8ClPPaB5ZDCzT/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=Lvz2_ZHj3lo)] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/1FgfURpMyHhnflGWtxeq8ClPPaB5ZDCzT/edit?usp=sharing"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Lvz2_ZHj3lo"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/1FgfURpMyHhnflGWtxeq8ClPPaB5ZDCzT/edit?usp=sharing"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Lvz2_ZHj3lo"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-UNKNOWN"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The video on CUDA de Grâce discusses potential exploitation techniques related to CUDA vulnerabilities.",
      "summary_zh": "关于CUDA de Grâce的视频讨论了与CUDA漏洞相关的潜在利用技术。",
      "source_markdown": "[2025: \"CUDA de Grâce\" by Valentina Palmiotti and Samuel Lovejoy](https://docs.google.com/presentation/d/1FgfURpMyHhnflGWtxeq8ClPPaB5ZDCzT/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=Lvz2_ZHj3lo)] [CVE-UNKNOWN]",
      "search_text": "cuda de grâce · video cuda de grâce valentina palmiotti samuel lovejoy cve-unknown  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=lvz2_zhj3lo lpe cve-unknown  vulnerability the video on cuda de grâce discusses potential exploitation techniques related to cuda vulnerabilities. 关于cuda de grâce的视频讨论了与cuda漏洞相关的潜在利用技术。 # cuda de grâce · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cuda de grâce resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=lvz2_zhj3lo parent_primary_url: https://docs.google.com/presentation/d/1fgfurpmyhhnflgwtxeq8clppab5zdczt/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"cuda de grâce\" by valentina palmiotti and samuel lovejoy](https://docs.google.com/presentation/d/1fgfurpmyhhnflgwtxeq8clppab5zdczt/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=lvz2_zhj3lo)] [cve-unknown] cves: cve-unknown android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6ad5616023e7fc2d",
      "item_id": "05b0d3364fafe541",
      "slug": "2025-vulnerabilities-lpe-an-rbtree-family-drama-exploiting-a-linux-kernel-0-day-through-red-black-tree-transfo",
      "year": 2025,
      "title": "An RbTree Family Drama: Exploiting a Linux Kernel 0-day Through Red-Black Tree Transformations",
      "item_title": "An RbTree Family Drama: Exploiting a Linux Kernel 0-day Through Red-Black Tree Transformations",
      "authors": [
        "Savino Dicanosa",
        "William Liu"
      ],
      "cves": [
        "CVE-2025-38001"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf",
      "primary_url": "https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf",
      "parent_primary_url": "https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-an-rbtree-family-drama-exploiting-a-linux-kernel-0-day-through-red-black-tree-transfo.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An RbTree Family Drama: Exploiting a Linux Kernel 0-day Through Red-Black Tree Transformations record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: An RbTree Family Drama: Exploiting a Linux Kernel 0-day Through Red-Black Tree Transformations resource_label: primary resource_type: slides resource_url: https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf parent_primary_url: https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"An RbTree Family Drama: Exploiting a Linux Kernel 0-day Through Red-Black Tree Transformations\" by Savino Dicanosa and William Liu](https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf) [slides] [[video](ht",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=C-52Gwmce3w"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=C-52Gwmce3w"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2025-38001"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The RbTree Family Drama presentation explores a 0-day vulnerability in the Linux kernel through red-black tree transformations.",
      "summary_zh": "RbTree Family Drama演示通过红黑树转换探讨了Linux内核中的0天漏洞。",
      "source_markdown": "[2025: \"An RbTree Family Drama: Exploiting a Linux Kernel 0-day Through Red-Black Tree Transformations\" by Savino Dicanosa and William Liu](https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf) [slides] [[video](https://www.youtube.com/watch?v=C-52Gwmce3w)] [CVE-2025-38001]",
      "search_text": "an rbtree family drama: exploiting a linux kernel 0-day through red-black tree transformations an rbtree family drama: exploiting a linux kernel 0-day through red-black tree transformations savino dicanosa william liu cve-2025-38001  vulnerabilities lpe lpe primary slides https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf lpe cve-2025-38001  vulnerability the rbtree family drama presentation explores a 0-day vulnerability in the linux kernel through red-black tree transformations. rbtree family drama演示通过红黑树转换探讨了linux内核中的0天漏洞。 # an rbtree family drama: exploiting a linux kernel 0-day through red-black tree transformations record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: an rbtree family drama: exploiting a linux kernel 0-day through red-black tree transformations resource_label: primary resource_type: slides resource_url: https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf parent_primary_url: https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"an rbtree family drama: exploiting a linux kernel 0-day through red-black tree transformations\" by savino dicanosa and william liu](https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf) [slides] [[video](ht unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5c9b3e5bb0b7e0ba",
      "item_id": "05b0d3364fafe541",
      "slug": "2025-vulnerabilities-lpe-an-rbtree-family-drama-exploiting-a-linux-kernel-0-day-through-red-black-tree-transfo-2",
      "year": 2025,
      "title": "An RbTree Family Drama: Exploiting a Linux Kernel 0-day Through Red-Black Tree Transformations · video",
      "item_title": "An RbTree Family Drama: Exploiting a Linux Kernel 0-day Through Red-Black Tree Transformations",
      "authors": [
        "Savino Dicanosa",
        "William Liu"
      ],
      "cves": [
        "CVE-2025-38001"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=C-52Gwmce3w",
      "primary_url": "https://www.youtube.com/watch?v=C-52Gwmce3w",
      "parent_primary_url": "https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-an-rbtree-family-drama-exploiting-a-linux-kernel-0-day-through-red-black-tree-transfo-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An RbTree Family Drama: Exploiting a Linux Kernel 0-day Through Red-Black Tree Transformations · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: An RbTree Family Drama: Exploiting a Linux Kernel 0-day Through Red-Black Tree Transformations resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=C-52Gwmce3w parent_primary_url: https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"An RbTree Family Drama: Exploiting a Linux Kernel 0-day Through Red-Black Tree Transformations\" by Savino Dicanosa and William Liu](https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf) [slides] [[video](https://www.youtube.com/watch?v=C-52Gwmce3w)",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=C-52Gwmce3w"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=C-52Gwmce3w"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2025-38001"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The video on RbTree Family Drama provides insights into exploiting a Linux kernel 0-day vulnerability.",
      "summary_zh": "关于RbTree Family Drama的视频提供了对利用Linux内核0天漏洞的见解。",
      "source_markdown": "[2025: \"An RbTree Family Drama: Exploiting a Linux Kernel 0-day Through Red-Black Tree Transformations\" by Savino Dicanosa and William Liu](https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf) [slides] [[video](https://www.youtube.com/watch?v=C-52Gwmce3w)] [CVE-2025-38001]",
      "search_text": "an rbtree family drama: exploiting a linux kernel 0-day through red-black tree transformations · video an rbtree family drama: exploiting a linux kernel 0-day through red-black tree transformations savino dicanosa william liu cve-2025-38001  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=c-52gwmce3w lpe cve-2025-38001  vulnerability the video on rbtree family drama provides insights into exploiting a linux kernel 0-day vulnerability. 关于rbtree family drama的视频提供了对利用linux内核0天漏洞的见解。 # an rbtree family drama: exploiting a linux kernel 0-day through red-black tree transformations · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: an rbtree family drama: exploiting a linux kernel 0-day through red-black tree transformations resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=c-52gwmce3w parent_primary_url: https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"an rbtree family drama: exploiting a linux kernel 0-day through red-black tree transformations\" by savino dicanosa and william liu](https://storage.googleapis.com/static.cor.team/assets/rbtree_family_drama_hexacon_2025.pdf) [slides] [[video](https://www.youtube.com/watch?v=c-52gwmce3w) unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f6c96f9d4c901a10",
      "item_id": "66fa655ce4eb5f22",
      "slug": "2025-vulnerabilities-lpe-race-condition-symphony-from-tiny-idea-to-pwnie-primary-f8ee1665",
      "year": 2025,
      "title": "Race Condition Symphony: From Tiny Idea to Pwnie",
      "item_title": "Race Condition Symphony: From Tiny Idea to Pwnie",
      "authors": [
        "Hyunwoo Kim",
        "Wongi Lee"
      ],
      "cves": [
        "CVE-2024-50264"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://powerofcommunity.net/2025/slide/h-3938a.pdf",
      "primary_url": "https://powerofcommunity.net/2025/slide/h-3938a.pdf",
      "parent_primary_url": "https://powerofcommunity.net/2025/slide/h-3938a.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-race-condition-symphony-from-tiny-idea-to-pwnie-primary-f8ee1665.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Race Condition Symphony: From Tiny Idea to Pwnie record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Race Condition Symphony: From Tiny Idea to Pwnie resource_label: primary resource_type: slides resource_url: https://powerofcommunity.net/2025/slide/h-3938a.pdf parent_primary_url: https://powerofcommunity.net/2025/slide/h-3938a.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Race Condition Symphony: From Tiny Idea to Pwnie\" by Hyunwoo Kim and Wongi Lee](https://powerofcommunity.net/2025/slide/h-3938a.pdf) [slides] [CVE-2024-50264] cves: CVE-2024-50264 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://powerofcommunity.net/2025/slide/h-3938a.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://powerofcommunity.net/2025/slide/h-3938a.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "race_condition"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This presentation discusses a race condition vulnerability leading to local privilege escalation in the Linux kernel.",
      "summary_zh": "本演示讨论了导致Linux内核本地特权升级的竞争条件漏洞。",
      "source_markdown": "[2025: \"Race Condition Symphony: From Tiny Idea to Pwnie\" by Hyunwoo Kim and Wongi Lee](https://powerofcommunity.net/2025/slide/h-3938a.pdf) [slides] [CVE-2024-50264]",
      "search_text": "race condition symphony: from tiny idea to pwnie race condition symphony: from tiny idea to pwnie hyunwoo kim wongi lee cve-2024-50264  vulnerabilities lpe lpe primary slides https://powerofcommunity.net/2025/slide/h-3938a.pdf lpe race_condition  vulnerability this presentation discusses a race condition vulnerability leading to local privilege escalation in the linux kernel. 本演示讨论了导致linux内核本地特权升级的竞争条件漏洞。 # race condition symphony: from tiny idea to pwnie record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: race condition symphony: from tiny idea to pwnie resource_label: primary resource_type: slides resource_url: https://powerofcommunity.net/2025/slide/h-3938a.pdf parent_primary_url: https://powerofcommunity.net/2025/slide/h-3938a.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"race condition symphony: from tiny idea to pwnie\" by hyunwoo kim and wongi lee](https://powerofcommunity.net/2025/slide/h-3938a.pdf) [slides] [cve-2024-50264] cves: cve-2024-50264 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "85938e1297fa582d",
      "item_id": "ef24547c37378b48",
      "slug": "2025-vulnerabilities-lpe-exploiting-cve-2025-21479-on-a-samsung-s23-primary-88c8fb34",
      "year": 2025,
      "title": "Exploiting CVE-2025-21479 on a Samsung S23",
      "item_title": "Exploiting CVE-2025-21479 on a Samsung S23",
      "authors": [
        "XploitBengineer"
      ],
      "cves": [
        "CVE-2025-21479"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://xploitbengineer.github.io/CVE-2025-21479",
      "primary_url": "https://xploitbengineer.github.io/CVE-2025-21479",
      "parent_primary_url": "https://xploitbengineer.github.io/CVE-2025-21479",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-exploiting-cve-2025-21479-on-a-samsung-s23-primary-88c8fb34.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting CVE-2025-21479 on a Samsung S23 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting CVE-2025-21479 on a Samsung S23 resource_label: primary resource_type: article resource_url: https://xploitbengineer.github.io/CVE-2025-21479 parent_primary_url: https://xploitbengineer.github.io/CVE-2025-21479 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Exploiting CVE-2025-21479 on a Samsung S23\" by XploitBengineer](https://xploitbengineer.github.io/CVE-2025-21479) [article] [CVE-2025-21479] cves: CVE-2025-21479 android_impact_status: yes android_impact_reason: mentions an Android OEM/device family ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://xp",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://xploitbengineer.github.io/CVE-2025-21479"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://xploitbengineer.github.io/CVE-2025-21479"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://xploitbengineer.github.io/CVE-2025-21479"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions an Android OEM/device family",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article detailing the exploitation of a local privilege escalation vulnerability in the Samsung S23.",
      "summary_zh": "一篇详细介绍在Samsung S23中利用本地特权升级漏洞的文章。",
      "source_markdown": "[2025: \"Exploiting CVE-2025-21479 on a Samsung S23\" by XploitBengineer](https://xploitbengineer.github.io/CVE-2025-21479) [article] [CVE-2025-21479]",
      "search_text": "exploiting cve-2025-21479 on a samsung s23 exploiting cve-2025-21479 on a samsung s23 xploitbengineer cve-2025-21479  vulnerabilities lpe lpe primary article https://xploitbengineer.github.io/cve-2025-21479 lpe android  vulnerability an article detailing the exploitation of a local privilege escalation vulnerability in the samsung s23. 一篇详细介绍在samsung s23中利用本地特权升级漏洞的文章。 # exploiting cve-2025-21479 on a samsung s23 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting cve-2025-21479 on a samsung s23 resource_label: primary resource_type: article resource_url: https://xploitbengineer.github.io/cve-2025-21479 parent_primary_url: https://xploitbengineer.github.io/cve-2025-21479 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"exploiting cve-2025-21479 on a samsung s23\" by xploitbengineer](https://xploitbengineer.github.io/cve-2025-21479) [article] [cve-2025-21479] cves: cve-2025-21479 android_impact_status: yes android_impact_reason: mentions an android oem/device family ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://xp yes mentions an android oem/device family no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "1cafcebde4613f12",
      "item_id": "b23860726859fe4c",
      "slug": "2025-vulnerabilities-lpe-lpe-via-refcount-imbalance-in-the-af-unix-of-ubuntu-s-kernel-primary-dd5499d5",
      "year": 2025,
      "title": "LPE via refcount imbalance in the af_unix of Ubuntu's Kernel",
      "item_title": "LPE via refcount imbalance in the af_unix of Ubuntu's Kernel",
      "authors": [
        "kylebot"
      ],
      "cves": [
        "CVE-2025-13350"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ssd-disclosure.com/lpe-via-refcount-imbalance-in-the-af_unix-of-ubuntus-kernel/",
      "primary_url": "https://ssd-disclosure.com/lpe-via-refcount-imbalance-in-the-af_unix-of-ubuntus-kernel/",
      "parent_primary_url": "https://ssd-disclosure.com/lpe-via-refcount-imbalance-in-the-af_unix-of-ubuntus-kernel/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-lpe-via-refcount-imbalance-in-the-af-unix-of-ubuntu-s-kernel-primary-dd5499d5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# LPE via refcount imbalance in the af_unix of Ubuntu's Kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: LPE via refcount imbalance in the af_unix of Ubuntu's Kernel resource_label: primary resource_type: article resource_url: https://ssd-disclosure.com/lpe-via-refcount-imbalance-in-the-af_unix-of-ubuntus-kernel/ parent_primary_url: https://ssd-disclosure.com/lpe-via-refcount-imbalance-in-the-af_unix-of-ubuntus-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"LPE via refcount imbalance in the af_unix of Ubuntu's Kernel\" by kylebot](https://ssd-disclosure.com/lpe-via-refcount-imbalance-in-the-af_unix-of-ubuntus-kernel/) [article] [CVE-2025-13350] cves: CVE-2025-13350 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android pr",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ssd-disclosure.com/lpe-via-refcount-imbalance-in-the-af_unix-of-ubuntus-kernel/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ssd-disclosure.com/lpe-via-refcount-imbalance-in-the-af_unix-of-ubuntus-kernel/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article explores a local privilege escalation vulnerability due to a reference count imbalance in Ubuntu's kernel.",
      "summary_zh": "本文探讨了由于Ubuntu内核中的引用计数不平衡导致的本地特权升级漏洞。",
      "source_markdown": "[2025: \"LPE via refcount imbalance in the af_unix of Ubuntu's Kernel\" by kylebot](https://ssd-disclosure.com/lpe-via-refcount-imbalance-in-the-af_unix-of-ubuntus-kernel/) [article] [CVE-2025-13350]",
      "search_text": "lpe via refcount imbalance in the af_unix of ubuntu's kernel lpe via refcount imbalance in the af_unix of ubuntu's kernel kylebot cve-2025-13350  vulnerabilities lpe lpe primary article https://ssd-disclosure.com/lpe-via-refcount-imbalance-in-the-af_unix-of-ubuntus-kernel/ lpe  vulnerability this article explores a local privilege escalation vulnerability due to a reference count imbalance in ubuntu's kernel. 本文探讨了由于ubuntu内核中的引用计数不平衡导致的本地特权升级漏洞。 # lpe via refcount imbalance in the af_unix of ubuntu's kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: lpe via refcount imbalance in the af_unix of ubuntu's kernel resource_label: primary resource_type: article resource_url: https://ssd-disclosure.com/lpe-via-refcount-imbalance-in-the-af_unix-of-ubuntus-kernel/ parent_primary_url: https://ssd-disclosure.com/lpe-via-refcount-imbalance-in-the-af_unix-of-ubuntus-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"lpe via refcount imbalance in the af_unix of ubuntu's kernel\" by kylebot](https://ssd-disclosure.com/lpe-via-refcount-imbalance-in-the-af_unix-of-ubuntus-kernel/) [article] [cve-2025-13350] cves: cve-2025-13350 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android pr unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1df4f12a0220cee1",
      "item_id": "b99d8da141a943d7",
      "slug": "2025-vulnerabilities-lpe-cracking-the-pixel-8-exploiting-the-undocumented-dsp-to-bypass-mte-primary-2f72e275",
      "year": 2025,
      "title": "Cracking the Pixel 8: Exploiting the Undocumented DSP to Bypass MTE",
      "item_title": "Cracking the Pixel 8: Exploiting the Undocumented DSP to Bypass MTE",
      "authors": [
        "Pan Zhenpeng & Jheng Bing Jhong"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf",
      "primary_url": "https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf",
      "parent_primary_url": "https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-cracking-the-pixel-8-exploiting-the-undocumented-dsp-to-bypass-mte-primary-2f72e275.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Cracking the Pixel 8: Exploiting the Undocumented DSP to Bypass MTE record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Cracking the Pixel 8: Exploiting the Undocumented DSP to Bypass MTE resource_label: primary resource_type: slides resource_url: https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf parent_primary_url: https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Cracking the Pixel 8: Exploiting the Undocumented DSP to Bypass MTE\" by Pan Zhenpeng & Jheng Bing Jhong](https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf) [slides] [[video](https://www.youtube.com/watch?v=_iSwTuBIZQ8)] cves: none android_impact_status: yes android_impact_reason: mentions Pixel devices ios_impact",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=_iSwTuBIZQ8"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=_iSwTuBIZQ8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Pixel devices",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The presentation covers exploiting undocumented DSP vulnerabilities in the Pixel 8 to bypass memory protections.",
      "summary_zh": "该演示涵盖了利用Pixel 8中未记录的DSP漏洞绕过内存保护。",
      "source_markdown": "[2025: \"Cracking the Pixel 8: Exploiting the Undocumented DSP to Bypass MTE\" by Pan Zhenpeng & Jheng Bing Jhong](https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf) [slides] [[video](https://www.youtube.com/watch?v=_iSwTuBIZQ8)]",
      "search_text": "cracking the pixel 8: exploiting the undocumented dsp to bypass mte cracking the pixel 8: exploiting the undocumented dsp to bypass mte pan zhenpeng & jheng bing jhong   vulnerabilities lpe lpe primary slides https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf lpe android  vulnerability the presentation covers exploiting undocumented dsp vulnerabilities in the pixel 8 to bypass memory protections. 该演示涵盖了利用pixel 8中未记录的dsp漏洞绕过内存保护。 # cracking the pixel 8: exploiting the undocumented dsp to bypass mte record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cracking the pixel 8: exploiting the undocumented dsp to bypass mte resource_label: primary resource_type: slides resource_url: https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf parent_primary_url: https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"cracking the pixel 8: exploiting the undocumented dsp to bypass mte\" by pan zhenpeng & jheng bing jhong](https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf) [slides] [[video](https://www.youtube.com/watch?v=_iswtubizq8)] cves: none android_impact_status: yes android_impact_reason: mentions pixel devices ios_impact yes mentions pixel devices no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "8924584e43cfdafa",
      "item_id": "b99d8da141a943d7",
      "slug": "2025-vulnerabilities-lpe-cracking-the-pixel-8-exploiting-the-undocumented-dsp-to-bypass-mte-video-299f9c4a",
      "year": 2025,
      "title": "Cracking the Pixel 8: Exploiting the Undocumented DSP to Bypass MTE · video",
      "item_title": "Cracking the Pixel 8: Exploiting the Undocumented DSP to Bypass MTE",
      "authors": [
        "Pan Zhenpeng & Jheng Bing Jhong"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=_iSwTuBIZQ8",
      "primary_url": "https://www.youtube.com/watch?v=_iSwTuBIZQ8",
      "parent_primary_url": "https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-cracking-the-pixel-8-exploiting-the-undocumented-dsp-to-bypass-mte-video-299f9c4a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Cracking the Pixel 8: Exploiting the Undocumented DSP to Bypass MTE · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Cracking the Pixel 8: Exploiting the Undocumented DSP to Bypass MTE resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=_iSwTuBIZQ8 parent_primary_url: https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Cracking the Pixel 8: Exploiting the Undocumented DSP to Bypass MTE\" by Pan Zhenpeng & Jheng Bing Jhong](https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf) [slides] [[video](https://www.youtube.com/watch?v=_iSwTuBIZQ8)] cves: none android_impact_status: yes android_impact_reason: mentions Pixel devices ios_impact_status: no ios_impact_",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=_iSwTuBIZQ8"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=_iSwTuBIZQ8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Pixel devices",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"Cracking the Pixel 8: Exploiting the Undocumented DSP to Bypass MTE · video\"; URL type: video. Android impact: yes.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「Cracking the Pixel 8: Exploiting the Undocumented DSP to Bypass MTE · video」；URL 类型：video。 Android 影响：yes。",
      "source_markdown": "[2025: \"Cracking the Pixel 8: Exploiting the Undocumented DSP to Bypass MTE\" by Pan Zhenpeng & Jheng Bing Jhong](https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf) [slides] [[video](https://www.youtube.com/watch?v=_iSwTuBIZQ8)]",
      "search_text": "cracking the pixel 8: exploiting the undocumented dsp to bypass mte · video cracking the pixel 8: exploiting the undocumented dsp to bypass mte pan zhenpeng & jheng bing jhong   vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=_iswtubizq8 vulnerabilities lpe video  lpe 2025 linux kernel lpe resource \"cracking the pixel 8: exploiting the undocumented dsp to bypass mte · video\"; url type: video. android impact: yes. 2025 年 linux 内核lpe资料：「cracking the pixel 8: exploiting the undocumented dsp to bypass mte · video」；url 类型：video。 android 影响：yes。 # cracking the pixel 8: exploiting the undocumented dsp to bypass mte · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cracking the pixel 8: exploiting the undocumented dsp to bypass mte resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=_iswtubizq8 parent_primary_url: https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"cracking the pixel 8: exploiting the undocumented dsp to bypass mte\" by pan zhenpeng & jheng bing jhong](https://hitcon.org/2025/slides/b7635c13-282e-4673-8297-43ed3550b3d3.pdf) [slides] [[video](https://www.youtube.com/watch?v=_iswtubizq8)] cves: none android_impact_status: yes android_impact_reason: mentions pixel devices ios_impact_status: no ios_impact_ yes mentions pixel devices no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "6176e1176de8eac6",
      "item_id": "ab5ae84e5ec34d7d",
      "slug": "2025-vulnerabilities-lpe-dirtypipe-cve-2022-0847-primary-63b34527",
      "year": 2025,
      "title": "DirtyPipe-CVE-2022-0847",
      "item_title": "DirtyPipe-CVE-2022-0847",
      "authors": [
        "Abdul Qadir"
      ],
      "cves": [
        "CVE-2022-0847"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://0xnull007.github.io/posts/dirtypipe-cve-2022-0847",
      "primary_url": "https://0xnull007.github.io/posts/dirtypipe-cve-2022-0847",
      "parent_primary_url": "https://0xnull007.github.io/posts/dirtypipe-cve-2022-0847",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-dirtypipe-cve-2022-0847-primary-63b34527.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DirtyPipe-CVE-2022-0847 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: DirtyPipe-CVE-2022-0847 resource_label: primary resource_type: article resource_url: https://0xnull007.github.io/posts/dirtypipe-cve-2022-0847 parent_primary_url: https://0xnull007.github.io/posts/dirtypipe-cve-2022-0847 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"DirtyPipe-CVE-2022-0847\" by Abdul Qadir](https://0xnull007.github.io/posts/dirtypipe-cve-2022-0847) [article] [CVE-2022-0847] cves: CVE-2022-0847 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: fals",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://0xnull007.github.io/posts/dirtypipe-cve-2022-0847"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://0xnull007.github.io/posts/dirtypipe-cve-2022-0847"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://0xnull007.github.io/posts/dirtypipe-cve-2022-0847"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article on the DirtyPipe vulnerability, which allows local privilege escalation in Linux.",
      "summary_zh": "关于DirtyPipe漏洞的文章，该漏洞允许在Linux中进行本地特权升级。",
      "source_markdown": "[2025: \"DirtyPipe-CVE-2022-0847\" by Abdul Qadir](https://0xnull007.github.io/posts/dirtypipe-cve-2022-0847) [article] [CVE-2022-0847]",
      "search_text": "dirtypipe-cve-2022-0847 dirtypipe-cve-2022-0847 abdul qadir cve-2022-0847  vulnerabilities lpe lpe primary article https://0xnull007.github.io/posts/dirtypipe-cve-2022-0847 lpe  vulnerability an article on the dirtypipe vulnerability, which allows local privilege escalation in linux. 关于dirtypipe漏洞的文章，该漏洞允许在linux中进行本地特权升级。 # dirtypipe-cve-2022-0847 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: dirtypipe-cve-2022-0847 resource_label: primary resource_type: article resource_url: https://0xnull007.github.io/posts/dirtypipe-cve-2022-0847 parent_primary_url: https://0xnull007.github.io/posts/dirtypipe-cve-2022-0847 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"dirtypipe-cve-2022-0847\" by abdul qadir](https://0xnull007.github.io/posts/dirtypipe-cve-2022-0847) [article] [cve-2022-0847] cves: cve-2022-0847 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: fals unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "4f3df9460abf39fd",
      "item_id": "16024e97adc4fb39",
      "slug": "2025-vulnerabilities-lpe-oops-it-s-a-kernel-stack-use-after-free-exploiting-nvidia-s-gpu-linux-drivers-primary",
      "year": 2025,
      "title": "Oops! It's a kernel stack use-after-free: Exploiting NVIDIA's GPU Linux drivers",
      "item_title": "Oops! It's a kernel stack use-after-free: Exploiting NVIDIA's GPU Linux drivers",
      "authors": [
        "Robin Bastide"
      ],
      "cves": [
        "CVE-2025-23280",
        "CVE-2025-23330"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.quarkslab.com/nvidia_gpu_kernel_vmalloc_exploit.html",
      "primary_url": "https://blog.quarkslab.com/nvidia_gpu_kernel_vmalloc_exploit.html",
      "parent_primary_url": "https://blog.quarkslab.com/nvidia_gpu_kernel_vmalloc_exploit.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-oops-it-s-a-kernel-stack-use-after-free-exploiting-nvidia-s-gpu-linux-drivers-primary.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Oops! It's a kernel stack use-after-free: Exploiting NVIDIA's GPU Linux drivers record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Oops! It's a kernel stack use-after-free: Exploiting NVIDIA's GPU Linux drivers resource_label: primary resource_type: article resource_url: https://blog.quarkslab.com/nvidia_gpu_kernel_vmalloc_exploit.html parent_primary_url: https://blog.quarkslab.com/nvidia_gpu_kernel_vmalloc_exploit.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Oops! It's a kernel stack use-after-free: Exploiting NVIDIA's GPU Linux drivers\" by Robin Bastide](https://blog.quarkslab.com/nvidia_gpu_kernel_vmalloc_exploit.html) [article] [CVE-2025-23280] [CVE-2025-23330] cves: CVE-2025-23280, CVE-2025-23330 android_impact_status: unknown android_impact_reason: Linux kernel vulnerabi",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.quarkslab.com/nvidia_gpu_kernel_vmalloc_exploit.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.quarkslab.com/nvidia_gpu_kernel_vmalloc_exploit.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "use_after_free"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses a use-after-free vulnerability in NVIDIA's GPU Linux drivers leading to local privilege escalation.",
      "summary_zh": "本文讨论了NVIDIA GPU Linux驱动程序中的使用后释放漏洞，导致本地特权升级。",
      "source_markdown": "[2025: \"Oops! It's a kernel stack use-after-free: Exploiting NVIDIA's GPU Linux drivers\" by Robin Bastide](https://blog.quarkslab.com/nvidia_gpu_kernel_vmalloc_exploit.html) [article] [CVE-2025-23280] [CVE-2025-23330]",
      "search_text": "oops! it's a kernel stack use-after-free: exploiting nvidia's gpu linux drivers oops! it's a kernel stack use-after-free: exploiting nvidia's gpu linux drivers robin bastide cve-2025-23280 cve-2025-23330  vulnerabilities lpe lpe primary article https://blog.quarkslab.com/nvidia_gpu_kernel_vmalloc_exploit.html lpe use_after_free  vulnerability this article discusses a use-after-free vulnerability in nvidia's gpu linux drivers leading to local privilege escalation. 本文讨论了nvidia gpu linux驱动程序中的使用后释放漏洞，导致本地特权升级。 # oops! it's a kernel stack use-after-free: exploiting nvidia's gpu linux drivers record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: oops! it's a kernel stack use-after-free: exploiting nvidia's gpu linux drivers resource_label: primary resource_type: article resource_url: https://blog.quarkslab.com/nvidia_gpu_kernel_vmalloc_exploit.html parent_primary_url: https://blog.quarkslab.com/nvidia_gpu_kernel_vmalloc_exploit.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"oops! it's a kernel stack use-after-free: exploiting nvidia's gpu linux drivers\" by robin bastide](https://blog.quarkslab.com/nvidia_gpu_kernel_vmalloc_exploit.html) [article] [cve-2025-23280] [cve-2025-23330] cves: cve-2025-23280, cve-2025-23330 android_impact_status: unknown android_impact_reason: linux kernel vulnerabi unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "dfefc1565e254e4a",
      "item_id": "bc84d38c5dca8a7d",
      "slug": "2025-vulnerabilities-lpe-ksmbd-exploiting-cve-2025-37947-primary-d5beb9ae",
      "year": 2025,
      "title": "ksmbd - Exploiting CVE-2025-37947",
      "item_title": "ksmbd - Exploiting CVE-2025-37947",
      "authors": [
        "Norbert Szetei"
      ],
      "cves": [
        "CVE-2025-37947"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.doyensec.com/2025/10/08/ksmbd-3.html",
      "primary_url": "https://blog.doyensec.com/2025/10/08/ksmbd-3.html",
      "parent_primary_url": "https://blog.doyensec.com/2025/10/08/ksmbd-3.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-ksmbd-exploiting-cve-2025-37947-primary-d5beb9ae.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ksmbd - Exploiting CVE-2025-37947 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: ksmbd - Exploiting CVE-2025-37947 resource_label: primary resource_type: article resource_url: https://blog.doyensec.com/2025/10/08/ksmbd-3.html parent_primary_url: https://blog.doyensec.com/2025/10/08/ksmbd-3.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"ksmbd - Exploiting CVE-2025-37947\" by Norbert Szetei](https://blog.doyensec.com/2025/10/08/ksmbd-3.html) [article] [CVE-2025-37947] [[exploit](https://github.com/doyensec/KSMBD-CVE-2025-37947)] cves: CVE-2025-37947 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devic",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.doyensec.com/2025/10/08/ksmbd-3.html"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/doyensec/KSMBD-CVE-2025-37947"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.doyensec.com/2025/10/08/ksmbd-3.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/doyensec/KSMBD-CVE-2025-37947"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/doyensec/KSMBD-CVE-2025-37947"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article detailing the exploitation of a local privilege escalation vulnerability in ksmbd.",
      "summary_zh": "一篇详细介绍在ksmbd中利用本地特权升级漏洞的文章。",
      "source_markdown": "[2025: \"ksmbd - Exploiting CVE-2025-37947\" by Norbert Szetei](https://blog.doyensec.com/2025/10/08/ksmbd-3.html) [article] [CVE-2025-37947] [[exploit](https://github.com/doyensec/KSMBD-CVE-2025-37947)]",
      "search_text": "ksmbd - exploiting cve-2025-37947 ksmbd - exploiting cve-2025-37947 norbert szetei cve-2025-37947  vulnerabilities lpe lpe primary article https://blog.doyensec.com/2025/10/08/ksmbd-3.html lpe  vulnerability an article detailing the exploitation of a local privilege escalation vulnerability in ksmbd. 一篇详细介绍在ksmbd中利用本地特权升级漏洞的文章。 # ksmbd - exploiting cve-2025-37947 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: ksmbd - exploiting cve-2025-37947 resource_label: primary resource_type: article resource_url: https://blog.doyensec.com/2025/10/08/ksmbd-3.html parent_primary_url: https://blog.doyensec.com/2025/10/08/ksmbd-3.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"ksmbd - exploiting cve-2025-37947\" by norbert szetei](https://blog.doyensec.com/2025/10/08/ksmbd-3.html) [article] [cve-2025-37947] [[exploit](https://github.com/doyensec/ksmbd-cve-2025-37947)] cves: cve-2025-37947 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devic unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "8f37f441a4dbec76",
      "item_id": "bc84d38c5dca8a7d",
      "slug": "2025-vulnerabilities-lpe-ksmbd-exploiting-cve-2025-37947-exploit-9c739ddb",
      "year": 2025,
      "title": "ksmbd - Exploiting CVE-2025-37947 · exploit",
      "item_title": "ksmbd - Exploiting CVE-2025-37947",
      "authors": [
        "Norbert Szetei"
      ],
      "cves": [
        "CVE-2025-37947"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/doyensec/KSMBD-CVE-2025-37947",
      "primary_url": "https://github.com/doyensec/KSMBD-CVE-2025-37947",
      "parent_primary_url": "https://blog.doyensec.com/2025/10/08/ksmbd-3.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-ksmbd-exploiting-cve-2025-37947-exploit-9c739ddb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ksmbd - Exploiting CVE-2025-37947 · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: ksmbd - Exploiting CVE-2025-37947 resource_label: exploit resource_type: exploit resource_url: https://github.com/doyensec/KSMBD-CVE-2025-37947 parent_primary_url: https://blog.doyensec.com/2025/10/08/ksmbd-3.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"ksmbd - Exploiting CVE-2025-37947\" by Norbert Szetei](https://blog.doyensec.com/2025/10/08/ksmbd-3.html) [article] [CVE-2025-37947] [[exploit](https://github.com/doyensec/KSMBD-CVE-2025-37947)] cves: CVE-2025-37947 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production ",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.doyensec.com/2025/10/08/ksmbd-3.html"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/doyensec/KSMBD-CVE-2025-37947"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.doyensec.com/2025/10/08/ksmbd-3.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/doyensec/KSMBD-CVE-2025-37947"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/doyensec/KSMBD-CVE-2025-37947"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article discussing a missing range check vulnerability in netfilter's ipset leading to local privilege escalation.",
      "summary_zh": "一篇讨论netfilter的ipset中缺失范围检查漏洞导致本地特权升级的文章。",
      "source_markdown": "[2025: \"ksmbd - Exploiting CVE-2025-37947\" by Norbert Szetei](https://blog.doyensec.com/2025/10/08/ksmbd-3.html) [article] [CVE-2025-37947] [[exploit](https://github.com/doyensec/KSMBD-CVE-2025-37947)]",
      "search_text": "ksmbd - exploiting cve-2025-37947 · exploit ksmbd - exploiting cve-2025-37947 norbert szetei cve-2025-37947  vulnerabilities lpe lpe exploit exploit https://github.com/doyensec/ksmbd-cve-2025-37947 lpe  vulnerability an article discussing a missing range check vulnerability in netfilter's ipset leading to local privilege escalation. 一篇讨论netfilter的ipset中缺失范围检查漏洞导致本地特权升级的文章。 # ksmbd - exploiting cve-2025-37947 · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: ksmbd - exploiting cve-2025-37947 resource_label: exploit resource_type: exploit resource_url: https://github.com/doyensec/ksmbd-cve-2025-37947 parent_primary_url: https://blog.doyensec.com/2025/10/08/ksmbd-3.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"ksmbd - exploiting cve-2025-37947\" by norbert szetei](https://blog.doyensec.com/2025/10/08/ksmbd-3.html) [article] [cve-2025-37947] [[exploit](https://github.com/doyensec/ksmbd-cve-2025-37947)] cves: cve-2025-37947 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "f7c3d03dd0359a62",
      "item_id": "ff2104701ade996a",
      "slug": "2025-vulnerabilities-lpe-analysing-a-1-day-vulnerability-in-the-linux-kernel-s-tls-subsystem-primary-e561d2ee",
      "year": 2025,
      "title": "Analysing a 1-day Vulnerability in the Linux Kernel's TLS Subsystem",
      "item_title": "Analysing a 1-day Vulnerability in the Linux Kernel's TLS Subsystem",
      "authors": [
        "Faith"
      ],
      "cves": [
        "CVE-2025-39946"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://faith2dxy.xyz/2025-10-02/kCTF-TLS-nday-analysis/",
      "primary_url": "https://faith2dxy.xyz/2025-10-02/kCTF-TLS-nday-analysis/",
      "parent_primary_url": "https://faith2dxy.xyz/2025-10-02/kCTF-TLS-nday-analysis/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-analysing-a-1-day-vulnerability-in-the-linux-kernel-s-tls-subsystem-primary-e561d2ee.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Analysing a 1-day Vulnerability in the Linux Kernel's TLS Subsystem record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Analysing a 1-day Vulnerability in the Linux Kernel's TLS Subsystem resource_label: primary resource_type: article resource_url: https://faith2dxy.xyz/2025-10-02/kCTF-TLS-nday-analysis/ parent_primary_url: https://faith2dxy.xyz/2025-10-02/kCTF-TLS-nday-analysis/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Analysing a 1-day Vulnerability in the Linux Kernel's TLS Subsystem\" by Faith](https://faith2dxy.xyz/2025-10-02/kCTF-TLS-nday-analysis/) [article] [CVE-2025-39946] [[exploit](https://github.com/farazsth98/exploit-CVE-2025-39946)] cves: CVE-2025-39946 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://faith2dxy.xyz/2025-10-02/kCTF-TLS-nday-analysis/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/farazsth98/exploit-CVE-2025-39946"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://faith2dxy.xyz/2025-10-02/kCTF-TLS-nday-analysis/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/farazsth98/exploit-CVE-2025-39946"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/farazsth98/exploit-CVE-2025-39946"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article analyzes a one-day vulnerability in the Linux kernel's TLS subsystem that allows local privilege escalation.",
      "summary_zh": "本文分析了Linux内核TLS子系统中的一个日漏洞，允许本地特权升级。",
      "source_markdown": "[2025: \"Analysing a 1-day Vulnerability in the Linux Kernel's TLS Subsystem\" by Faith](https://faith2dxy.xyz/2025-10-02/kCTF-TLS-nday-analysis/) [article] [CVE-2025-39946] [[exploit](https://github.com/farazsth98/exploit-CVE-2025-39946)]",
      "search_text": "analysing a 1-day vulnerability in the linux kernel's tls subsystem analysing a 1-day vulnerability in the linux kernel's tls subsystem faith cve-2025-39946  vulnerabilities lpe lpe primary article https://faith2dxy.xyz/2025-10-02/kctf-tls-nday-analysis/ lpe  vulnerability this article analyzes a one-day vulnerability in the linux kernel's tls subsystem that allows local privilege escalation. 本文分析了linux内核tls子系统中的一个日漏洞，允许本地特权升级。 # analysing a 1-day vulnerability in the linux kernel's tls subsystem record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: analysing a 1-day vulnerability in the linux kernel's tls subsystem resource_label: primary resource_type: article resource_url: https://faith2dxy.xyz/2025-10-02/kctf-tls-nday-analysis/ parent_primary_url: https://faith2dxy.xyz/2025-10-02/kctf-tls-nday-analysis/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"analysing a 1-day vulnerability in the linux kernel's tls subsystem\" by faith](https://faith2dxy.xyz/2025-10-02/kctf-tls-nday-analysis/) [article] [cve-2025-39946] [[exploit](https://github.com/farazsth98/exploit-cve-2025-39946)] cves: cve-2025-39946 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "7ad4b2bde5af0e81",
      "item_id": "ff2104701ade996a",
      "slug": "2025-vulnerabilities-lpe-analysing-a-1-day-vulnerability-in-the-linux-kernel-s-tls-subsystem-exploit-a7f7e3f2",
      "year": 2025,
      "title": "Analysing a 1-day Vulnerability in the Linux Kernel's TLS Subsystem · exploit",
      "item_title": "Analysing a 1-day Vulnerability in the Linux Kernel's TLS Subsystem",
      "authors": [
        "Faith"
      ],
      "cves": [
        "CVE-2025-39946"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/farazsth98/exploit-CVE-2025-39946",
      "primary_url": "https://github.com/farazsth98/exploit-CVE-2025-39946",
      "parent_primary_url": "https://faith2dxy.xyz/2025-10-02/kCTF-TLS-nday-analysis/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-analysing-a-1-day-vulnerability-in-the-linux-kernel-s-tls-subsystem-exploit-a7f7e3f2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Analysing a 1-day Vulnerability in the Linux Kernel's TLS Subsystem · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Analysing a 1-day Vulnerability in the Linux Kernel's TLS Subsystem resource_label: exploit resource_type: exploit resource_url: https://github.com/farazsth98/exploit-CVE-2025-39946 parent_primary_url: https://faith2dxy.xyz/2025-10-02/kCTF-TLS-nday-analysis/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Analysing a 1-day Vulnerability in the Linux Kernel's TLS Subsystem\" by Faith](https://faith2dxy.xyz/2025-10-02/kCTF-TLS-nday-analysis/) [article] [CVE-2025-39946] [[exploit](https://github.com/farazsth98/exploit-CVE-2025-39946)] cves: CVE-2025-39946 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android prod",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://faith2dxy.xyz/2025-10-02/kCTF-TLS-nday-analysis/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/farazsth98/exploit-CVE-2025-39946"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://faith2dxy.xyz/2025-10-02/kCTF-TLS-nday-analysis/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/farazsth98/exploit-CVE-2025-39946"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/farazsth98/exploit-CVE-2025-39946"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "exploit",
        "CVE-2025-39946"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"Analysing a 1-day Vulnerability in the Linux Kernel's TLS Subsystem · exploit\" (CVE-2025-39946); URL type: exploit.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「Analysing a 1-day Vulnerability in the Linux Kernel's TLS Subsystem · exploit」（CVE-2025-39946）；URL 类型：exploit。",
      "source_markdown": "[2025: \"Analysing a 1-day Vulnerability in the Linux Kernel's TLS Subsystem\" by Faith](https://faith2dxy.xyz/2025-10-02/kCTF-TLS-nday-analysis/) [article] [CVE-2025-39946] [[exploit](https://github.com/farazsth98/exploit-CVE-2025-39946)]",
      "search_text": "analysing a 1-day vulnerability in the linux kernel's tls subsystem · exploit analysing a 1-day vulnerability in the linux kernel's tls subsystem faith cve-2025-39946  vulnerabilities lpe lpe exploit exploit https://github.com/farazsth98/exploit-cve-2025-39946 vulnerabilities lpe exploit cve-2025-39946  lpe 2025 linux kernel lpe resource \"analysing a 1-day vulnerability in the linux kernel's tls subsystem · exploit\" (cve-2025-39946); url type: exploit. 2025 年 linux 内核lpe资料：「analysing a 1-day vulnerability in the linux kernel's tls subsystem · exploit」（cve-2025-39946）；url 类型：exploit。 # analysing a 1-day vulnerability in the linux kernel's tls subsystem · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: analysing a 1-day vulnerability in the linux kernel's tls subsystem resource_label: exploit resource_type: exploit resource_url: https://github.com/farazsth98/exploit-cve-2025-39946 parent_primary_url: https://faith2dxy.xyz/2025-10-02/kctf-tls-nday-analysis/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"analysing a 1-day vulnerability in the linux kernel's tls subsystem\" by faith](https://faith2dxy.xyz/2025-10-02/kctf-tls-nday-analysis/) [article] [cve-2025-39946] [[exploit](https://github.com/farazsth98/exploit-cve-2025-39946)] cves: cve-2025-39946 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android prod unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "446088bb51e0c257",
      "item_id": "aa4a4e9def1f8a27",
      "slug": "2025-vulnerabilities-lpe-analyze-linux-kernel-1-day-0aeb54ac-primary-bd8650bd",
      "year": 2025,
      "title": "Analyze Linux Kernel 1-day 0aeb54ac",
      "item_title": "Analyze Linux Kernel 1-day 0aeb54ac",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2025-39946"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/10/03/analyze-linux-kernel-1-day-0aeb54ac.html",
      "primary_url": "https://u1f383.github.io/linux/2025/10/03/analyze-linux-kernel-1-day-0aeb54ac.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/10/03/analyze-linux-kernel-1-day-0aeb54ac.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-analyze-linux-kernel-1-day-0aeb54ac-primary-bd8650bd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Analyze Linux Kernel 1-day 0aeb54ac record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Analyze Linux Kernel 1-day 0aeb54ac resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/10/03/analyze-linux-kernel-1-day-0aeb54ac.html parent_primary_url: https://u1f383.github.io/linux/2025/10/03/analyze-linux-kernel-1-day-0aeb54ac.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Analyze Linux Kernel 1-day 0aeb54ac\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/10/03/analyze-linux-kernel-1-day-0aeb54ac.html) [article] [CVE-2025-39946] cves: CVE-2025-39946 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/10/03/analyze-linux-kernel-1-day-0aeb54ac.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/10/03/analyze-linux-kernel-1-day-0aeb54ac.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/10/03/analyze-linux-kernel-1-day-0aeb54ac.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2025-39946"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"Analyze Linux Kernel 1-day 0aeb54ac\" (CVE-2025-39946); URL type: article.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「Analyze Linux Kernel 1-day 0aeb54ac」（CVE-2025-39946）；URL 类型：article。",
      "source_markdown": "[2025: \"Analyze Linux Kernel 1-day 0aeb54ac\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/10/03/analyze-linux-kernel-1-day-0aeb54ac.html) [article] [CVE-2025-39946]",
      "search_text": "analyze linux kernel 1-day 0aeb54ac analyze linux kernel 1-day 0aeb54ac pumpkin chang cve-2025-39946  vulnerabilities lpe lpe primary article https://u1f383.github.io/linux/2025/10/03/analyze-linux-kernel-1-day-0aeb54ac.html vulnerabilities lpe article cve-2025-39946  lpe 2025 linux kernel lpe resource \"analyze linux kernel 1-day 0aeb54ac\" (cve-2025-39946); url type: article. 2025 年 linux 内核lpe资料：「analyze linux kernel 1-day 0aeb54ac」（cve-2025-39946）；url 类型：article。 # analyze linux kernel 1-day 0aeb54ac record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: analyze linux kernel 1-day 0aeb54ac resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/10/03/analyze-linux-kernel-1-day-0aeb54ac.html parent_primary_url: https://u1f383.github.io/linux/2025/10/03/analyze-linux-kernel-1-day-0aeb54ac.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"analyze linux kernel 1-day 0aeb54ac\" by pumpkin chang](https://u1f383.github.io/linux/2025/10/03/analyze-linux-kernel-1-day-0aeb54ac.html) [article] [cve-2025-39946] cves: cve-2025-39946 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status:  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "e46112bcc9fb4ad8",
      "item_id": "0932996c56db5a63",
      "slug": "2025-vulnerabilities-lpe-kernel-hack-drill-and-a-new-approach-to-exploiting-cve-2024-50264-in-the-linux-kernel",
      "year": 2025,
      "title": "Kernel-hack-drill and a new approach to exploiting CVE-2024-50264 in the Linux kernel",
      "item_title": "Kernel-hack-drill and a new approach to exploiting CVE-2024-50264 in the Linux kernel",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [
        "CVE-2024-50264"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://a13xp0p0v.github.io/2025/09/02/kernel-hack-drill-and-CVE-2024-50264.html",
      "primary_url": "https://a13xp0p0v.github.io/2025/09/02/kernel-hack-drill-and-CVE-2024-50264.html",
      "parent_primary_url": "https://a13xp0p0v.github.io/2025/09/02/kernel-hack-drill-and-CVE-2024-50264.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-kernel-hack-drill-and-a-new-approach-to-exploiting-cve-2024-50264-in-the-linux-kernel.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel-hack-drill and a new approach to exploiting CVE-2024-50264 in the Linux kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Kernel-hack-drill and a new approach to exploiting CVE-2024-50264 in the Linux kernel resource_label: primary resource_type: article resource_url: https://a13xp0p0v.github.io/2025/09/02/kernel-hack-drill-and-CVE-2024-50264.html parent_primary_url: https://a13xp0p0v.github.io/2025/09/02/kernel-hack-drill-and-CVE-2024-50264.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Kernel-hack-drill and a new approach to exploiting CVE-2024-50264 in the Linux kernel\" by Alexander Popov](https://a13xp0p0v.github.io/2025/09/02/kernel-hack-drill-and-CVE-2024-50264.html) [article] [CVE-2024-50264] cves: CVE-2024-50264 android_impact_status: unknown android_impac",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://a13xp0p0v.github.io/2025/09/02/kernel-hack-drill-and-CVE-2024-50264.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://a13xp0p0v.github.io/2025/09/02/kernel-hack-drill-and-CVE-2024-50264.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://a13xp0p0v.github.io/2025/09/02/kernel-hack-drill-and-CVE-2024-50264.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2024-50264"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"Kernel-hack-drill and a new approach to exploiting CVE-2024-50264 in the Linux kernel\" (CVE-2024-50264); URL type: article.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「Kernel-hack-drill and a new approach to exploiting CVE-2024-50264 in the Linux kernel」（CVE-2024-50264）；URL 类型：article。",
      "source_markdown": "[2025: \"Kernel-hack-drill and a new approach to exploiting CVE-2024-50264 in the Linux kernel\" by Alexander Popov](https://a13xp0p0v.github.io/2025/09/02/kernel-hack-drill-and-CVE-2024-50264.html) [article] [CVE-2024-50264]",
      "search_text": "kernel-hack-drill and a new approach to exploiting cve-2024-50264 in the linux kernel kernel-hack-drill and a new approach to exploiting cve-2024-50264 in the linux kernel alexander popov cve-2024-50264  vulnerabilities lpe lpe primary article https://a13xp0p0v.github.io/2025/09/02/kernel-hack-drill-and-cve-2024-50264.html vulnerabilities lpe article cve-2024-50264  lpe 2025 linux kernel lpe resource \"kernel-hack-drill and a new approach to exploiting cve-2024-50264 in the linux kernel\" (cve-2024-50264); url type: article. 2025 年 linux 内核lpe资料：「kernel-hack-drill and a new approach to exploiting cve-2024-50264 in the linux kernel」（cve-2024-50264）；url 类型：article。 # kernel-hack-drill and a new approach to exploiting cve-2024-50264 in the linux kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: kernel-hack-drill and a new approach to exploiting cve-2024-50264 in the linux kernel resource_label: primary resource_type: article resource_url: https://a13xp0p0v.github.io/2025/09/02/kernel-hack-drill-and-cve-2024-50264.html parent_primary_url: https://a13xp0p0v.github.io/2025/09/02/kernel-hack-drill-and-cve-2024-50264.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"kernel-hack-drill and a new approach to exploiting cve-2024-50264 in the linux kernel\" by alexander popov](https://a13xp0p0v.github.io/2025/09/02/kernel-hack-drill-and-cve-2024-50264.html) [article] [cve-2024-50264] cves: cve-2024-50264 android_impact_status: unknown android_impac unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ecd0f8b3bcbefb93",
      "item_id": "ef40a628763837a7",
      "slug": "2025-vulnerabilities-lpe-a-walk-through-android-physical-memory-cve-2025-21479-privilege-escalation-primary-91",
      "year": 2025,
      "title": "A Walk Through Android Physical Memory: CVE-2025-21479 Privilege Escalation",
      "item_title": "A Walk Through Android Physical Memory: CVE-2025-21479 Privilege Escalation",
      "authors": [],
      "cves": [
        "CVE-2025-21479"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/",
      "primary_url": "https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/",
      "parent_primary_url": "https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-a-walk-through-android-physical-memory-cve-2025-21479-privilege-escalation-primary-91.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Walk Through Android Physical Memory: CVE-2025-21479 Privilege Escalation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: A Walk Through Android Physical Memory: CVE-2025-21479 Privilege Escalation resource_label: primary resource_type: article resource_url: https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/ parent_primary_url: https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"A Walk Through Android Physical Memory: CVE-2025-21479 Privilege Escalation\"](https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/) [article] [[comment](https://notnow.dev/notice/AxeTvYDZPDEvRjmLpY)] [CVE-2025-21479] cves: CVE-2025-21479 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_r",
      "link_types": [
        "article",
        "discussion"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/"
        },
        {
          "label": "comment",
          "type": "discussion",
          "url": "https://notnow.dev/notice/AxeTvYDZPDEvRjmLpY"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "comment",
            "type": "discussion",
            "url": "https://notnow.dev/notice/AxeTvYDZPDEvRjmLpY"
          }
        ]
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2025-21479"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"A Walk Through Android Physical Memory: CVE-2025-21479 Privilege Escalation\" (CVE-2025-21479); URL type: article. Android impact: yes.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「A Walk Through Android Physical Memory: CVE-2025-21479 Privilege Escalation」（CVE-2025-21479）；URL 类型：article。 Android 影响：yes。",
      "source_markdown": "[2025: \"A Walk Through Android Physical Memory: CVE-2025-21479 Privilege Escalation\"](https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/) [article] [[comment](https://notnow.dev/notice/AxeTvYDZPDEvRjmLpY)] [CVE-2025-21479]",
      "search_text": "a walk through android physical memory: cve-2025-21479 privilege escalation a walk through android physical memory: cve-2025-21479 privilege escalation  cve-2025-21479  vulnerabilities lpe lpe primary article https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/ vulnerabilities lpe article cve-2025-21479  lpe 2025 linux kernel lpe resource \"a walk through android physical memory: cve-2025-21479 privilege escalation\" (cve-2025-21479); url type: article. android impact: yes. 2025 年 linux 内核lpe资料：「a walk through android physical memory: cve-2025-21479 privilege escalation」（cve-2025-21479）；url 类型：article。 android 影响：yes。 # a walk through android physical memory: cve-2025-21479 privilege escalation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: a walk through android physical memory: cve-2025-21479 privilege escalation resource_label: primary resource_type: article resource_url: https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/ parent_primary_url: https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"a walk through android physical memory: cve-2025-21479 privilege escalation\"](https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/) [article] [[comment](https://notnow.dev/notice/axetvydzpdevrjmlpy)] [cve-2025-21479] cves: cve-2025-21479 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_r yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "3ce2d5df28061d3f",
      "item_id": "ef40a628763837a7",
      "slug": "2025-vulnerabilities-lpe-a-walk-through-android-physical-memory-cve-2025-21479-privilege-escalation-comment-90",
      "year": 2025,
      "title": "A Walk Through Android Physical Memory: CVE-2025-21479 Privilege Escalation · comment",
      "item_title": "A Walk Through Android Physical Memory: CVE-2025-21479 Privilege Escalation",
      "authors": [],
      "cves": [
        "CVE-2025-21479"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "comment",
      "resource_type": "discussion",
      "resource_url": "https://notnow.dev/notice/AxeTvYDZPDEvRjmLpY",
      "primary_url": "https://notnow.dev/notice/AxeTvYDZPDEvRjmLpY",
      "parent_primary_url": "https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-a-walk-through-android-physical-memory-cve-2025-21479-privilege-escalation-comment-90.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Walk Through Android Physical Memory: CVE-2025-21479 Privilege Escalation · comment record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: A Walk Through Android Physical Memory: CVE-2025-21479 Privilege Escalation resource_label: comment resource_type: discussion resource_url: https://notnow.dev/notice/AxeTvYDZPDEvRjmLpY parent_primary_url: https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"A Walk Through Android Physical Memory: CVE-2025-21479 Privilege Escalation\"](https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/) [article] [[comment](https://notnow.dev/notice/AxeTvYDZPDEvRjmLpY)] [CVE-2025-21479] cves: CVE-2025-21479 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_re",
      "link_types": [
        "article",
        "discussion"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/"
        },
        {
          "label": "comment",
          "type": "discussion",
          "url": "https://notnow.dev/notice/AxeTvYDZPDEvRjmLpY"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "comment",
            "type": "discussion",
            "url": "https://notnow.dev/notice/AxeTvYDZPDEvRjmLpY"
          }
        ]
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "discussion",
        "CVE-2025-21479"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"A Walk Through Android Physical Memory: CVE-2025-21479 Privilege Escalation · comment\" (CVE-2025-21479); URL type: discussion. Android impact: yes.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「A Walk Through Android Physical Memory: CVE-2025-21479 Privilege Escalation · comment」（CVE-2025-21479）；URL 类型：discussion。 Android 影响：yes。",
      "source_markdown": "[2025: \"A Walk Through Android Physical Memory: CVE-2025-21479 Privilege Escalation\"](https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/) [article] [[comment](https://notnow.dev/notice/AxeTvYDZPDEvRjmLpY)] [CVE-2025-21479]",
      "search_text": "a walk through android physical memory: cve-2025-21479 privilege escalation · comment a walk through android physical memory: cve-2025-21479 privilege escalation  cve-2025-21479  vulnerabilities lpe lpe comment discussion https://notnow.dev/notice/axetvydzpdevrjmlpy vulnerabilities lpe discussion cve-2025-21479  lpe 2025 linux kernel lpe resource \"a walk through android physical memory: cve-2025-21479 privilege escalation · comment\" (cve-2025-21479); url type: discussion. android impact: yes. 2025 年 linux 内核lpe资料：「a walk through android physical memory: cve-2025-21479 privilege escalation · comment」（cve-2025-21479）；url 类型：discussion。 android 影响：yes。 # a walk through android physical memory: cve-2025-21479 privilege escalation · comment record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: a walk through android physical memory: cve-2025-21479 privilege escalation resource_label: comment resource_type: discussion resource_url: https://notnow.dev/notice/axetvydzpdevrjmlpy parent_primary_url: https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"a walk through android physical memory: cve-2025-21479 privilege escalation\"](https://dawnslab.jd.com/android_gpu_attack_cve_2025_21479/) [article] [[comment](https://notnow.dev/notice/axetvydzpdevrjmlpy)] [cve-2025-21479] cves: cve-2025-21479 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_re yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "8f7e9e3ac2f07059",
      "item_id": "b0a0f51f7278e9be",
      "slug": "2025-vulnerabilities-lpe-netfilter-ipset-missing-range-check-lpe-primary-aa4a1532",
      "year": 2025,
      "title": "netfilter: ipset: Missing Range Check LPE",
      "item_title": "netfilter: ipset: Missing Range Check LPE",
      "authors": [],
      "cves": [
        "CVE-2024-53141"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ssd-disclosure.com/linux-kernel-netfilter-ipset-missing-range-check-lpe/",
      "primary_url": "https://ssd-disclosure.com/linux-kernel-netfilter-ipset-missing-range-check-lpe/",
      "parent_primary_url": "https://ssd-disclosure.com/linux-kernel-netfilter-ipset-missing-range-check-lpe/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-netfilter-ipset-missing-range-check-lpe-primary-aa4a1532.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# netfilter: ipset: Missing Range Check LPE record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: netfilter: ipset: Missing Range Check LPE resource_label: primary resource_type: article resource_url: https://ssd-disclosure.com/linux-kernel-netfilter-ipset-missing-range-check-lpe/ parent_primary_url: https://ssd-disclosure.com/linux-kernel-netfilter-ipset-missing-range-check-lpe/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"netfilter: ipset: Missing Range Check LPE\"](https://ssd-disclosure.com/linux-kernel-netfilter-ipset-missing-range-check-lpe/) [article] [CVE-2024-53141] cves: CVE-2024-53141 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no io",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ssd-disclosure.com/linux-kernel-netfilter-ipset-missing-range-check-lpe/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ssd-disclosure.com/linux-kernel-netfilter-ipset-missing-range-check-lpe/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2024-53141"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"netfilter: ipset: Missing Range Check LPE\" (CVE-2024-53141); URL type: article.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「netfilter: ipset: Missing Range Check LPE」（CVE-2024-53141）；URL 类型：article。",
      "source_markdown": "[2025: \"netfilter: ipset: Missing Range Check LPE\"](https://ssd-disclosure.com/linux-kernel-netfilter-ipset-missing-range-check-lpe/) [article] [CVE-2024-53141]",
      "search_text": "netfilter: ipset: missing range check lpe netfilter: ipset: missing range check lpe  cve-2024-53141  vulnerabilities lpe lpe primary article https://ssd-disclosure.com/linux-kernel-netfilter-ipset-missing-range-check-lpe/ vulnerabilities lpe article cve-2024-53141  lpe 2025 linux kernel lpe resource \"netfilter: ipset: missing range check lpe\" (cve-2024-53141); url type: article. 2025 年 linux 内核lpe资料：「netfilter: ipset: missing range check lpe」（cve-2024-53141）；url 类型：article。 # netfilter: ipset: missing range check lpe record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: netfilter: ipset: missing range check lpe resource_label: primary resource_type: article resource_url: https://ssd-disclosure.com/linux-kernel-netfilter-ipset-missing-range-check-lpe/ parent_primary_url: https://ssd-disclosure.com/linux-kernel-netfilter-ipset-missing-range-check-lpe/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"netfilter: ipset: missing range check lpe\"](https://ssd-disclosure.com/linux-kernel-netfilter-ipset-missing-range-check-lpe/) [article] [cve-2024-53141] cves: cve-2024-53141 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no io unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ecb8bfea986ffff4",
      "item_id": "c71595dbef1107bb",
      "slug": "2025-vulnerabilities-lpe-from-chrome-renderer-code-exec-to-kernel-with-msg-oob-primary-c78a0b24",
      "year": 2025,
      "title": "From Chrome renderer code exec to kernel with MSG_OOB",
      "item_title": "From Chrome renderer code exec to kernel with MSG_OOB",
      "authors": [
        "Jann Horn"
      ],
      "cves": [
        "CVE-2025-38236"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2025/08/from-chrome-renderer-code-exec-to-kernel.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2025/08/from-chrome-renderer-code-exec-to-kernel.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2025/08/from-chrome-renderer-code-exec-to-kernel.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-from-chrome-renderer-code-exec-to-kernel-with-msg-oob-primary-c78a0b24.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# From Chrome renderer code exec to kernel with MSG_OOB record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: From Chrome renderer code exec to kernel with MSG_OOB resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2025/08/from-chrome-renderer-code-exec-to-kernel.html parent_primary_url: https://googleprojectzero.blogspot.com/2025/08/from-chrome-renderer-code-exec-to-kernel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"From Chrome renderer code exec to kernel with MSG_OOB\" by Jann Horn](https://googleprojectzero.blogspot.com/2025/08/from-chrome-renderer-code-exec-to-kernel.html) [article] [CVE-2025-38236] cves: CVE-2025-38236 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android produc",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2025/08/from-chrome-renderer-code-exec-to-kernel.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2025/08/from-chrome-renderer-code-exec-to-kernel.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://googleprojectzero.blogspot.com/2025/08/from-chrome-renderer-code-exec-to-kernel.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article describes the exploitation of a vulnerability that transitions from Chrome renderer code execution to kernel access.",
      "summary_zh": "本文描述了从Chrome渲染器代码执行到内核访问的漏洞利用。",
      "source_markdown": "[2025: \"From Chrome renderer code exec to kernel with MSG_OOB\" by Jann Horn](https://googleprojectzero.blogspot.com/2025/08/from-chrome-renderer-code-exec-to-kernel.html) [article] [CVE-2025-38236]",
      "search_text": "from chrome renderer code exec to kernel with msg_oob from chrome renderer code exec to kernel with msg_oob jann horn cve-2025-38236  vulnerabilities lpe lpe primary article https://googleprojectzero.blogspot.com/2025/08/from-chrome-renderer-code-exec-to-kernel.html lpe  vulnerability this article describes the exploitation of a vulnerability that transitions from chrome renderer code execution to kernel access. 本文描述了从chrome渲染器代码执行到内核访问的漏洞利用。 # from chrome renderer code exec to kernel with msg_oob record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: from chrome renderer code exec to kernel with msg_oob resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2025/08/from-chrome-renderer-code-exec-to-kernel.html parent_primary_url: https://googleprojectzero.blogspot.com/2025/08/from-chrome-renderer-code-exec-to-kernel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"from chrome renderer code exec to kernel with msg_oob\" by jann horn](https://googleprojectzero.blogspot.com/2025/08/from-chrome-renderer-code-exec-to-kernel.html) [article] [cve-2025-38236] cves: cve-2025-38236 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android produc unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "92625396e1042ace",
      "item_id": "b576a269b547b45d",
      "slug": "2025-vulnerabilities-lpe-cve-2025-38001-exploiting-all-google-kernelctf-instances-and-debian-12-with-a-0-day-f",
      "year": 2025,
      "title": "[CVE-2025-38001] Exploiting All Google kernelCTF Instances And Debian 12 With A 0-Day For $82k: An RBTree Family Drama (Part One: LTS & COS)",
      "item_title": "[CVE-2025-38001] Exploiting All Google kernelCTF Instances And Debian 12 With A 0-Day For $82k: An RBTree Family Drama (Part One: LTS & COS)",
      "authors": [
        "D3vil"
      ],
      "cves": [
        "CVE-2025-38001"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://syst3mfailure.io/rbtree-family-drama/",
      "primary_url": "https://syst3mfailure.io/rbtree-family-drama/",
      "parent_primary_url": "https://syst3mfailure.io/rbtree-family-drama/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-cve-2025-38001-exploiting-all-google-kernelctf-instances-and-debian-12-with-a-0-day-f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# [CVE-2025-38001] Exploiting All Google kernelCTF Instances And Debian 12 With A 0-Day For $82k: An RBTree Family Drama (Part One: LTS & COS) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: [CVE-2025-38001] Exploiting All Google kernelCTF Instances And Debian 12 With A 0-Day For $82k: An RBTree Family Drama (Part One: LTS & COS) resource_label: primary resource_type: article resource_url: https://syst3mfailure.io/rbtree-family-drama/ parent_primary_url: https://syst3mfailure.io/rbtree-family-drama/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"[CVE-2025-38001] Exploiting All Google kernelCTF Instances And Debian 12 With A 0-Day For $82k: An RBTree Family Drama (Part One: LTS & COS)\" by D3vil](https://syst3mfailure.io/rbtree-family-drama/) [article] [CVE-2025-38001] cves: CVE-2025-",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://syst3mfailure.io/rbtree-family-drama/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://syst3mfailure.io/rbtree-family-drama/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article detailing the exploitation of a local privilege escalation vulnerability in Google kernelCTF instances.",
      "summary_zh": "一篇详细介绍在Google kernelCTF实例中利用本地特权升级漏洞的文章。",
      "source_markdown": "[2025: \"[CVE-2025-38001] Exploiting All Google kernelCTF Instances And Debian 12 With A 0-Day For $82k: An RBTree Family Drama (Part One: LTS & COS)\" by D3vil](https://syst3mfailure.io/rbtree-family-drama/) [article] [CVE-2025-38001]",
      "search_text": "[cve-2025-38001] exploiting all google kernelctf instances and debian 12 with a 0-day for $82k: an rbtree family drama (part one: lts & cos) [cve-2025-38001] exploiting all google kernelctf instances and debian 12 with a 0-day for $82k: an rbtree family drama (part one: lts & cos) d3vil cve-2025-38001  vulnerabilities lpe lpe primary article https://syst3mfailure.io/rbtree-family-drama/ lpe  vulnerability an article detailing the exploitation of a local privilege escalation vulnerability in google kernelctf instances. 一篇详细介绍在google kernelctf实例中利用本地特权升级漏洞的文章。 # [cve-2025-38001] exploiting all google kernelctf instances and debian 12 with a 0-day for $82k: an rbtree family drama (part one: lts & cos) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: [cve-2025-38001] exploiting all google kernelctf instances and debian 12 with a 0-day for $82k: an rbtree family drama (part one: lts & cos) resource_label: primary resource_type: article resource_url: https://syst3mfailure.io/rbtree-family-drama/ parent_primary_url: https://syst3mfailure.io/rbtree-family-drama/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"[cve-2025-38001] exploiting all google kernelctf instances and debian 12 with a 0-day for $82k: an rbtree family drama (part one: lts & cos)\" by d3vil](https://syst3mfailure.io/rbtree-family-drama/) [article] [cve-2025-38001] cves: cve-2025- unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "0e4cb782c0c7ced8",
      "item_id": "866aed6ac05b55ac",
      "slug": "2025-vulnerabilities-lpe-linux-kernel-pipapo-set-double-free-lpe-primary-40ee1f84",
      "year": 2025,
      "title": "Linux Kernel Pipapo Set Double Free LPE",
      "item_title": "Linux Kernel Pipapo Set Double Free LPE",
      "authors": [
        "Slavin",
        "Le Premier Homme"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-pipapo-set-double-free-lpe/",
      "primary_url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-pipapo-set-double-free-lpe/",
      "parent_primary_url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-pipapo-set-double-free-lpe/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-linux-kernel-pipapo-set-double-free-lpe-primary-40ee1f84.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Pipapo Set Double Free LPE record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux Kernel Pipapo Set Double Free LPE resource_label: primary resource_type: article resource_url: https://ssd-disclosure.com/ssd-advisory-linux-kernel-pipapo-set-double-free-lpe/ parent_primary_url: https://ssd-disclosure.com/ssd-advisory-linux-kernel-pipapo-set-double-free-lpe/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Linux Kernel Pipapo Set Double Free LPE\" by Slavin and Le Premier Homme](https://ssd-disclosure.com/ssd-advisory-linux-kernel-pipapo-set-double-free-lpe/) [article] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_i",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-pipapo-set-double-free-lpe/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-pipapo-set-double-free-lpe/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses a double free vulnerability in the Linux kernel leading to local privilege escalation.",
      "summary_zh": "本文讨论了Linux内核中的双重释放漏洞，导致本地特权升级。",
      "source_markdown": "[2025: \"Linux Kernel Pipapo Set Double Free LPE\" by Slavin and Le Premier Homme](https://ssd-disclosure.com/ssd-advisory-linux-kernel-pipapo-set-double-free-lpe/) [article] [CVE-UNKNOWN]",
      "search_text": "linux kernel pipapo set double free lpe linux kernel pipapo set double free lpe slavin le premier homme cve-unknown  vulnerabilities lpe lpe primary article https://ssd-disclosure.com/ssd-advisory-linux-kernel-pipapo-set-double-free-lpe/ lpe  vulnerability this article discusses a double free vulnerability in the linux kernel leading to local privilege escalation. 本文讨论了linux内核中的双重释放漏洞，导致本地特权升级。 # linux kernel pipapo set double free lpe record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel pipapo set double free lpe resource_label: primary resource_type: article resource_url: https://ssd-disclosure.com/ssd-advisory-linux-kernel-pipapo-set-double-free-lpe/ parent_primary_url: https://ssd-disclosure.com/ssd-advisory-linux-kernel-pipapo-set-double-free-lpe/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"linux kernel pipapo set double free lpe\" by slavin and le premier homme](https://ssd-disclosure.com/ssd-advisory-linux-kernel-pipapo-set-double-free-lpe/) [article] [cve-unknown] cves: cve-unknown android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_i unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2d9ac3033d0edd6a",
      "item_id": "20c1b376ec989d44",
      "slug": "2025-vulnerabilities-lpe-the-tragedy-of-netfilter-tunnel-cve-2025-22056-primary-b1f3a703",
      "year": 2025,
      "title": "The tragedy of Netfilter Tunnel: CVE-2025-22056",
      "item_title": "The tragedy of Netfilter Tunnel: CVE-2025-22056",
      "authors": [],
      "cves": [
        "CVE-2025-22056"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://dawnslab.jd.com/CVE-2025-22056/",
      "primary_url": "https://dawnslab.jd.com/CVE-2025-22056/",
      "parent_primary_url": "https://dawnslab.jd.com/CVE-2025-22056/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-the-tragedy-of-netfilter-tunnel-cve-2025-22056-primary-b1f3a703.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The tragedy of Netfilter Tunnel: CVE-2025-22056 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The tragedy of Netfilter Tunnel: CVE-2025-22056 resource_label: primary resource_type: article resource_url: https://dawnslab.jd.com/CVE-2025-22056/ parent_primary_url: https://dawnslab.jd.com/CVE-2025-22056/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"The tragedy of Netfilter Tunnel: CVE-2025-22056\"](https://dawnslab.jd.com/CVE-2025-22056/) [article] [CVE-2025-22056] cves: CVE-2025-22056 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://dawnslab.jd.com/CVE-2025-22056/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://dawnslab.jd.com/CVE-2025-22056/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article discussing a local privilege escalation vulnerability in the Netfilter Tunnel.",
      "summary_zh": "一篇讨论Netfilter Tunnel中的本地特权升级漏洞的文章。",
      "source_markdown": "[2025: \"The tragedy of Netfilter Tunnel: CVE-2025-22056\"](https://dawnslab.jd.com/CVE-2025-22056/) [article] [CVE-2025-22056]",
      "search_text": "the tragedy of netfilter tunnel: cve-2025-22056 the tragedy of netfilter tunnel: cve-2025-22056  cve-2025-22056  vulnerabilities lpe lpe primary article https://dawnslab.jd.com/cve-2025-22056/ lpe  vulnerability an article discussing a local privilege escalation vulnerability in the netfilter tunnel. 一篇讨论netfilter tunnel中的本地特权升级漏洞的文章。 # the tragedy of netfilter tunnel: cve-2025-22056 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the tragedy of netfilter tunnel: cve-2025-22056 resource_label: primary resource_type: article resource_url: https://dawnslab.jd.com/cve-2025-22056/ parent_primary_url: https://dawnslab.jd.com/cve-2025-22056/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"the tragedy of netfilter tunnel: cve-2025-22056\"](https://dawnslab.jd.com/cve-2025-22056/) [article] [cve-2025-22056] cves: cve-2025-22056 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "02a7564b2b0bf305",
      "item_id": "96927e08f93d75e6",
      "slug": "2025-vulnerabilities-lpe-solo-a-pixel-6-pro-story-when-one-bug-is-all-you-need-primary-a0052dd5",
      "year": 2025,
      "title": "Solo: A Pixel 6 Pro Story (When one bug is all you need)",
      "item_title": "Solo: A Pixel 6 Pro Story (When one bug is all you need)",
      "authors": [
        "Lin Ze Wei"
      ],
      "cves": [
        "CVE-2023-48409",
        "CVE-2023-26083"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://starlabs.sg/blog/2025/06-solo-a-pixel-6-pro-story-when-one-bug-is-all-you-need/",
      "primary_url": "https://starlabs.sg/blog/2025/06-solo-a-pixel-6-pro-story-when-one-bug-is-all-you-need/",
      "parent_primary_url": "https://starlabs.sg/blog/2025/06-solo-a-pixel-6-pro-story-when-one-bug-is-all-you-need/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-solo-a-pixel-6-pro-story-when-one-bug-is-all-you-need-primary-a0052dd5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Solo: A Pixel 6 Pro Story (When one bug is all you need) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Solo: A Pixel 6 Pro Story (When one bug is all you need) resource_label: primary resource_type: article resource_url: https://starlabs.sg/blog/2025/06-solo-a-pixel-6-pro-story-when-one-bug-is-all-you-need/ parent_primary_url: https://starlabs.sg/blog/2025/06-solo-a-pixel-6-pro-story-when-one-bug-is-all-you-need/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Solo: A Pixel 6 Pro Story (When one bug is all you need)\" by Lin Ze Wei](https://starlabs.sg/blog/2025/06-solo-a-pixel-6-pro-story-when-one-bug-is-all-you-need/) [article] [CVE-2023-48409] [CVE-2023-26083] cves: CVE-2023-48409, CVE-2023-26083 android_impact_status: yes android_impact_reason: mentions Pixel devices ios_impac",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://starlabs.sg/blog/2025/06-solo-a-pixel-6-pro-story-when-one-bug-is-all-you-need/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://starlabs.sg/blog/2025/06-solo-a-pixel-6-pro-story-when-one-bug-is-all-you-need/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Pixel devices",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2023-48409",
        "CVE-2023-26083"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"Solo: A Pixel 6 Pro Story (When one bug is all you need)\" (CVE-2023-48409, CVE-2023-26083); URL type: article. Android impact: yes.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「Solo: A Pixel 6 Pro Story (When one bug is all you need)」（CVE-2023-48409、CVE-2023-26083）；URL 类型：article。 Android 影响：yes。",
      "source_markdown": "[2025: \"Solo: A Pixel 6 Pro Story (When one bug is all you need)\" by Lin Ze Wei](https://starlabs.sg/blog/2025/06-solo-a-pixel-6-pro-story-when-one-bug-is-all-you-need/) [article] [CVE-2023-48409] [CVE-2023-26083]",
      "search_text": "solo: a pixel 6 pro story (when one bug is all you need) solo: a pixel 6 pro story (when one bug is all you need) lin ze wei cve-2023-48409 cve-2023-26083  vulnerabilities lpe lpe primary article https://starlabs.sg/blog/2025/06-solo-a-pixel-6-pro-story-when-one-bug-is-all-you-need/ vulnerabilities lpe article cve-2023-48409 cve-2023-26083  lpe 2025 linux kernel lpe resource \"solo: a pixel 6 pro story (when one bug is all you need)\" (cve-2023-48409, cve-2023-26083); url type: article. android impact: yes. 2025 年 linux 内核lpe资料：「solo: a pixel 6 pro story (when one bug is all you need)」（cve-2023-48409、cve-2023-26083）；url 类型：article。 android 影响：yes。 # solo: a pixel 6 pro story (when one bug is all you need) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: solo: a pixel 6 pro story (when one bug is all you need) resource_label: primary resource_type: article resource_url: https://starlabs.sg/blog/2025/06-solo-a-pixel-6-pro-story-when-one-bug-is-all-you-need/ parent_primary_url: https://starlabs.sg/blog/2025/06-solo-a-pixel-6-pro-story-when-one-bug-is-all-you-need/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"solo: a pixel 6 pro story (when one bug is all you need)\" by lin ze wei](https://starlabs.sg/blog/2025/06-solo-a-pixel-6-pro-story-when-one-bug-is-all-you-need/) [article] [cve-2023-48409] [cve-2023-26083] cves: cve-2023-48409, cve-2023-26083 android_impact_status: yes android_impact_reason: mentions pixel devices ios_impac yes mentions pixel devices no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "405a95375224b3cb",
      "item_id": "723e06e2f92de9fb",
      "slug": "2025-vulnerabilities-lpe-bypassing-mte-with-cve-2025-0072-primary-603b242e",
      "year": 2025,
      "title": "Bypassing MTE with CVE-2025-0072",
      "item_title": "Bypassing MTE with CVE-2025-0072",
      "authors": [
        "Man Yue Mo"
      ],
      "cves": [
        "CVE-2025-0072"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.blog/security/vulnerability-research/bypassing-mte-with-cve-2025-0072/",
      "primary_url": "https://github.blog/security/vulnerability-research/bypassing-mte-with-cve-2025-0072/",
      "parent_primary_url": "https://github.blog/security/vulnerability-research/bypassing-mte-with-cve-2025-0072/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-bypassing-mte-with-cve-2025-0072-primary-603b242e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Bypassing MTE with CVE-2025-0072 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Bypassing MTE with CVE-2025-0072 resource_label: primary resource_type: article resource_url: https://github.blog/security/vulnerability-research/bypassing-mte-with-cve-2025-0072/ parent_primary_url: https://github.blog/security/vulnerability-research/bypassing-mte-with-cve-2025-0072/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Bypassing MTE with CVE-2025-0072\" by Man Yue Mo](https://github.blog/security/vulnerability-research/bypassing-mte-with-cve-2025-0072/) [article] [CVE-2025-0072] cves: CVE-2025-0072 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no io",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.blog/security/vulnerability-research/bypassing-mte-with-cve-2025-0072/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.blog/security/vulnerability-research/bypassing-mte-with-cve-2025-0072/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.blog/security/vulnerability-research/bypassing-mte-with-cve-2025-0072/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2025-0072"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"Bypassing MTE with CVE-2025-0072\" (CVE-2025-0072); URL type: article.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「Bypassing MTE with CVE-2025-0072」（CVE-2025-0072）；URL 类型：article。",
      "source_markdown": "[2025: \"Bypassing MTE with CVE-2025-0072\" by Man Yue Mo](https://github.blog/security/vulnerability-research/bypassing-mte-with-cve-2025-0072/) [article] [CVE-2025-0072]",
      "search_text": "bypassing mte with cve-2025-0072 bypassing mte with cve-2025-0072 man yue mo cve-2025-0072  vulnerabilities lpe lpe primary article https://github.blog/security/vulnerability-research/bypassing-mte-with-cve-2025-0072/ vulnerabilities lpe article cve-2025-0072  lpe 2025 linux kernel lpe resource \"bypassing mte with cve-2025-0072\" (cve-2025-0072); url type: article. 2025 年 linux 内核lpe资料：「bypassing mte with cve-2025-0072」（cve-2025-0072）；url 类型：article。 # bypassing mte with cve-2025-0072 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: bypassing mte with cve-2025-0072 resource_label: primary resource_type: article resource_url: https://github.blog/security/vulnerability-research/bypassing-mte-with-cve-2025-0072/ parent_primary_url: https://github.blog/security/vulnerability-research/bypassing-mte-with-cve-2025-0072/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"bypassing mte with cve-2025-0072\" by man yue mo](https://github.blog/security/vulnerability-research/bypassing-mte-with-cve-2025-0072/) [article] [cve-2025-0072] cves: cve-2025-0072 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no io unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "300bb1548a10546e",
      "item_id": "30ce50bda1587a8d",
      "slug": "2025-vulnerabilities-lpe-skin-in-the-game-survival-of-gpu-iommu-irregular-damage-primary-da1ab36a",
      "year": 2025,
      "title": "Skin in the Game: Survival of GPU IOMMU Irregular Damage",
      "item_title": "Skin in the Game: Survival of GPU IOMMU Irregular Damage",
      "authors": [
        "Fish",
        "Ling Hanqin"
      ],
      "cves": [
        "CVE-2022-38181",
        "CVE-2023-6241",
        "CVE-2023-33107",
        "CVE-2024-23372",
        "CVE-2024-31333"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=e4t_xYPOq9w",
      "primary_url": "https://www.youtube.com/watch?v=e4t_xYPOq9w",
      "parent_primary_url": "https://www.youtube.com/watch?v=e4t_xYPOq9w",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-skin-in-the-game-survival-of-gpu-iommu-irregular-damage-primary-da1ab36a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Skin in the Game: Survival of GPU IOMMU Irregular Damage record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Skin in the Game: Survival of GPU IOMMU Irregular Damage resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=e4t_xYPOq9w parent_primary_url: https://www.youtube.com/watch?v=e4t_xYPOq9w source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Skin in the Game: Survival of GPU IOMMU Irregular Damage\" by Fish and Ling Hanqin](https://www.youtube.com/watch?v=e4t_xYPOq9w) [video] [CVE-2022-38181] [CVE-2023-6241] [CVE-2023-33107] [CVE-2024-23372] [CVE-2024-31333] cves: CVE-2022-38181, CVE-2023-6241, CVE-2023-33107, CVE-2024-23372, CVE-2024-31333 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android product",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=e4t_xYPOq9w"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=e4t_xYPOq9w"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "video",
        "CVE-2022-38181",
        "CVE-2023-6241",
        "CVE-2023-33107"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"Skin in the Game: Survival of GPU IOMMU Irregular Damage\" (CVE-2022-38181, CVE-2023-6241, CVE-2023-33107, CVE-2024-23372, CVE-2024-31333); URL type: video.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「Skin in the Game: Survival of GPU IOMMU Irregular Damage」（CVE-2022-38181、CVE-2023-6241、CVE-2023-33107、CVE-2024-23372、CVE-2024-31333）；URL 类型：video。",
      "source_markdown": "[2025: \"Skin in the Game: Survival of GPU IOMMU Irregular Damage\" by Fish and Ling Hanqin](https://www.youtube.com/watch?v=e4t_xYPOq9w) [video] [CVE-2022-38181] [CVE-2023-6241] [CVE-2023-33107] [CVE-2024-23372] [CVE-2024-31333]",
      "search_text": "skin in the game: survival of gpu iommu irregular damage skin in the game: survival of gpu iommu irregular damage fish ling hanqin cve-2022-38181 cve-2023-6241 cve-2023-33107 cve-2024-23372 cve-2024-31333  vulnerabilities lpe lpe primary video https://www.youtube.com/watch?v=e4t_xypoq9w vulnerabilities lpe video cve-2022-38181 cve-2023-6241 cve-2023-33107  lpe 2025 linux kernel lpe resource \"skin in the game: survival of gpu iommu irregular damage\" (cve-2022-38181, cve-2023-6241, cve-2023-33107, cve-2024-23372, cve-2024-31333); url type: video. 2025 年 linux 内核lpe资料：「skin in the game: survival of gpu iommu irregular damage」（cve-2022-38181、cve-2023-6241、cve-2023-33107、cve-2024-23372、cve-2024-31333）；url 类型：video。 # skin in the game: survival of gpu iommu irregular damage record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: skin in the game: survival of gpu iommu irregular damage resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=e4t_xypoq9w parent_primary_url: https://www.youtube.com/watch?v=e4t_xypoq9w source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"skin in the game: survival of gpu iommu irregular damage\" by fish and ling hanqin](https://www.youtube.com/watch?v=e4t_xypoq9w) [video] [cve-2022-38181] [cve-2023-6241] [cve-2023-33107] [cve-2024-23372] [cve-2024-31333] cves: cve-2022-38181, cve-2023-6241, cve-2023-33107, cve-2024-23372, cve-2024-31333 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android product unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1fc19d844ed3118c",
      "item_id": "45ca7f9ff1de735a",
      "slug": "2025-vulnerabilities-lpe-cve-2025-37752-two-bytes-of-madness-pwning-the-linux-kernel-with-a-0x0000-written-262",
      "year": 2025,
      "title": "[CVE-2025-37752] Two Bytes Of Madness: Pwning The Linux Kernel With A 0x0000 Written 262636 Bytes Out-Of-Bounds",
      "item_title": "[CVE-2025-37752] Two Bytes Of Madness: Pwning The Linux Kernel With A 0x0000 Written 262636 Bytes Out-Of-Bounds",
      "authors": [
        "D3vil"
      ],
      "cves": [
        "CVE-2025-37752"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://syst3mfailure.io/two-bytes-of-madness/",
      "primary_url": "https://syst3mfailure.io/two-bytes-of-madness/",
      "parent_primary_url": "https://syst3mfailure.io/two-bytes-of-madness/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-cve-2025-37752-two-bytes-of-madness-pwning-the-linux-kernel-with-a-0x0000-written-262.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# [CVE-2025-37752] Two Bytes Of Madness: Pwning The Linux Kernel With A 0x0000 Written 262636 Bytes Out-Of-Bounds record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: [CVE-2025-37752] Two Bytes Of Madness: Pwning The Linux Kernel With A 0x0000 Written 262636 Bytes Out-Of-Bounds resource_label: primary resource_type: article resource_url: https://syst3mfailure.io/two-bytes-of-madness/ parent_primary_url: https://syst3mfailure.io/two-bytes-of-madness/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"[CVE-2025-37752] Two Bytes Of Madness: Pwning The Linux Kernel With A 0x0000 Written 262636 Bytes Out-Of-Bounds\" by D3vil](https://syst3mfailure.io/two-bytes-of-madness/) [article] [CVE-2025-37752] cves: CVE-2025-37752 android_impact_status: unknown android_impact_reason: Linux kernel vulnerabili",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://syst3mfailure.io/two-bytes-of-madness/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://syst3mfailure.io/two-bytes-of-madness/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2025-37752"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"[CVE-2025-37752] Two Bytes Of Madness: Pwning The Linux Kernel With A 0x0000 Written 262636 Bytes Out-Of-Bounds\" (CVE-2025-37752); URL type: article.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「[CVE-2025-37752] Two Bytes Of Madness: Pwning The Linux Kernel With A 0x0000 Written 262636 Bytes Out-Of-Bounds」（CVE-2025-37752）；URL 类型：article。",
      "source_markdown": "[2025: \"[CVE-2025-37752] Two Bytes Of Madness: Pwning The Linux Kernel With A 0x0000 Written 262636 Bytes Out-Of-Bounds\" by D3vil](https://syst3mfailure.io/two-bytes-of-madness/) [article] [CVE-2025-37752]",
      "search_text": "[cve-2025-37752] two bytes of madness: pwning the linux kernel with a 0x0000 written 262636 bytes out-of-bounds [cve-2025-37752] two bytes of madness: pwning the linux kernel with a 0x0000 written 262636 bytes out-of-bounds d3vil cve-2025-37752  vulnerabilities lpe lpe primary article https://syst3mfailure.io/two-bytes-of-madness/ vulnerabilities lpe article cve-2025-37752  lpe 2025 linux kernel lpe resource \"[cve-2025-37752] two bytes of madness: pwning the linux kernel with a 0x0000 written 262636 bytes out-of-bounds\" (cve-2025-37752); url type: article. 2025 年 linux 内核lpe资料：「[cve-2025-37752] two bytes of madness: pwning the linux kernel with a 0x0000 written 262636 bytes out-of-bounds」（cve-2025-37752）；url 类型：article。 # [cve-2025-37752] two bytes of madness: pwning the linux kernel with a 0x0000 written 262636 bytes out-of-bounds record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: [cve-2025-37752] two bytes of madness: pwning the linux kernel with a 0x0000 written 262636 bytes out-of-bounds resource_label: primary resource_type: article resource_url: https://syst3mfailure.io/two-bytes-of-madness/ parent_primary_url: https://syst3mfailure.io/two-bytes-of-madness/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"[cve-2025-37752] two bytes of madness: pwning the linux kernel with a 0x0000 written 262636 bytes out-of-bounds\" by d3vil](https://syst3mfailure.io/two-bytes-of-madness/) [article] [cve-2025-37752] cves: cve-2025-37752 android_impact_status: unknown android_impact_reason: linux kernel vulnerabili unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "90aaa5c4226f7572",
      "item_id": "e296c5129b2dcaf7",
      "slug": "2025-vulnerabilities-lpe-linux-kernel-exploitation-cve-2025-21756-attack-of-the-vsock-primary-5900d044",
      "year": 2025,
      "title": "Linux Kernel Exploitation: CVE-2025-21756: Attack of the Vsock",
      "item_title": "Linux Kernel Exploitation: CVE-2025-21756: Attack of the Vsock",
      "authors": [
        "Michael Hoefler"
      ],
      "cves": [
        "CVE-2025-21756"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://hoefler.dev/articles/vsock.html",
      "primary_url": "https://hoefler.dev/articles/vsock.html",
      "parent_primary_url": "https://hoefler.dev/articles/vsock.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-linux-kernel-exploitation-cve-2025-21756-attack-of-the-vsock-primary-5900d044.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Exploitation: CVE-2025-21756: Attack of the Vsock record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux Kernel Exploitation: CVE-2025-21756: Attack of the Vsock resource_label: primary resource_type: article resource_url: https://hoefler.dev/articles/vsock.html parent_primary_url: https://hoefler.dev/articles/vsock.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Linux Kernel Exploitation: CVE-2025-21756: Attack of the Vsock\" by Michael Hoefler](https://hoefler.dev/articles/vsock.html) [article] [CVE-2025-21756] cves: CVE-2025-21756 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices u",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://hoefler.dev/articles/vsock.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://hoefler.dev/articles/vsock.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2025-21756"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"Linux Kernel Exploitation: CVE-2025-21756: Attack of the Vsock\" (CVE-2025-21756); URL type: article.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「Linux Kernel Exploitation: CVE-2025-21756: Attack of the Vsock」（CVE-2025-21756）；URL 类型：article。",
      "source_markdown": "[2025: \"Linux Kernel Exploitation: CVE-2025-21756: Attack of the Vsock\" by Michael Hoefler](https://hoefler.dev/articles/vsock.html) [article] [CVE-2025-21756]",
      "search_text": "linux kernel exploitation: cve-2025-21756: attack of the vsock linux kernel exploitation: cve-2025-21756: attack of the vsock michael hoefler cve-2025-21756  vulnerabilities lpe lpe primary article https://hoefler.dev/articles/vsock.html vulnerabilities lpe article cve-2025-21756  lpe 2025 linux kernel lpe resource \"linux kernel exploitation: cve-2025-21756: attack of the vsock\" (cve-2025-21756); url type: article. 2025 年 linux 内核lpe资料：「linux kernel exploitation: cve-2025-21756: attack of the vsock」（cve-2025-21756）；url 类型：article。 # linux kernel exploitation: cve-2025-21756: attack of the vsock record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel exploitation: cve-2025-21756: attack of the vsock resource_label: primary resource_type: article resource_url: https://hoefler.dev/articles/vsock.html parent_primary_url: https://hoefler.dev/articles/vsock.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"linux kernel exploitation: cve-2025-21756: attack of the vsock\" by michael hoefler](https://hoefler.dev/articles/vsock.html) [article] [cve-2025-21756] cves: cve-2025-21756 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices u unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "14c0f1260c763aa9",
      "item_id": "800d77ff206f13d0",
      "slug": "2025-vulnerabilities-lpe-cve-2025-21692-nday-writeup-primary-0ad97bd0",
      "year": 2025,
      "title": "CVE-2025-21692 nday writeup",
      "item_title": "CVE-2025-21692 nday writeup",
      "authors": [
        "volticks"
      ],
      "cves": [
        "CVE-2025-21692",
        "CVE-2025-21756"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://volticks.github.io/CVE-2025-21692-nday-writeup/",
      "primary_url": "https://volticks.github.io/CVE-2025-21692-nday-writeup/",
      "parent_primary_url": "https://volticks.github.io/CVE-2025-21692-nday-writeup/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-cve-2025-21692-nday-writeup-primary-0ad97bd0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2025-21692 nday writeup record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2025-21692 nday writeup resource_label: primary resource_type: article resource_url: https://volticks.github.io/CVE-2025-21692-nday-writeup/ parent_primary_url: https://volticks.github.io/CVE-2025-21692-nday-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"CVE-2025-21692 nday writeup\" by volticks](https://volticks.github.io/CVE-2025-21692-nday-writeup/) [article] [[exploit](https://github.com/volticks/CVE-2025-21692-poc)] [CVE-2025-21756] cves: CVE-2025-21692, CVE-2025-21756 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production i",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://volticks.github.io/CVE-2025-21692-nday-writeup/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/volticks/CVE-2025-21692-poc"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://volticks.github.io/CVE-2025-21692-nday-writeup/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/volticks/CVE-2025-21692-poc"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://volticks.github.io/CVE-2025-21692-nday-writeup/",
        "https://github.com/volticks/CVE-2025-21692-poc"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2025-21692",
        "CVE-2025-21756"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"CVE-2025-21692 nday writeup\" (CVE-2025-21692, CVE-2025-21756); URL type: article.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「CVE-2025-21692 nday writeup」（CVE-2025-21692、CVE-2025-21756）；URL 类型：article。",
      "source_markdown": "[2025: \"CVE-2025-21692 nday writeup\" by volticks](https://volticks.github.io/CVE-2025-21692-nday-writeup/) [article] [[exploit](https://github.com/volticks/CVE-2025-21692-poc)] [CVE-2025-21756]",
      "search_text": "cve-2025-21692 nday writeup cve-2025-21692 nday writeup volticks cve-2025-21692 cve-2025-21756  vulnerabilities lpe lpe primary article https://volticks.github.io/cve-2025-21692-nday-writeup/ vulnerabilities lpe article cve-2025-21692 cve-2025-21756  lpe 2025 linux kernel lpe resource \"cve-2025-21692 nday writeup\" (cve-2025-21692, cve-2025-21756); url type: article. 2025 年 linux 内核lpe资料：「cve-2025-21692 nday writeup」（cve-2025-21692、cve-2025-21756）；url 类型：article。 # cve-2025-21692 nday writeup record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2025-21692 nday writeup resource_label: primary resource_type: article resource_url: https://volticks.github.io/cve-2025-21692-nday-writeup/ parent_primary_url: https://volticks.github.io/cve-2025-21692-nday-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"cve-2025-21692 nday writeup\" by volticks](https://volticks.github.io/cve-2025-21692-nday-writeup/) [article] [[exploit](https://github.com/volticks/cve-2025-21692-poc)] [cve-2025-21756] cves: cve-2025-21692, cve-2025-21756 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production i unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "8514a49dcd779a63",
      "item_id": "800d77ff206f13d0",
      "slug": "2025-vulnerabilities-lpe-cve-2025-21692-nday-writeup-exploit-e127e319",
      "year": 2025,
      "title": "CVE-2025-21692 nday writeup · exploit",
      "item_title": "CVE-2025-21692 nday writeup",
      "authors": [
        "volticks"
      ],
      "cves": [
        "CVE-2025-21692",
        "CVE-2025-21756"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/volticks/CVE-2025-21692-poc",
      "primary_url": "https://github.com/volticks/CVE-2025-21692-poc",
      "parent_primary_url": "https://volticks.github.io/CVE-2025-21692-nday-writeup/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-cve-2025-21692-nday-writeup-exploit-e127e319.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2025-21692 nday writeup · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2025-21692 nday writeup resource_label: exploit resource_type: exploit resource_url: https://github.com/volticks/CVE-2025-21692-poc parent_primary_url: https://volticks.github.io/CVE-2025-21692-nday-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"CVE-2025-21692 nday writeup\" by volticks](https://volticks.github.io/CVE-2025-21692-nday-writeup/) [article] [[exploit](https://github.com/volticks/CVE-2025-21692-poc)] [CVE-2025-21756] cves: CVE-2025-21692, CVE-2025-21756 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production ",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://volticks.github.io/CVE-2025-21692-nday-writeup/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/volticks/CVE-2025-21692-poc"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://volticks.github.io/CVE-2025-21692-nday-writeup/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/volticks/CVE-2025-21692-poc"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://volticks.github.io/CVE-2025-21692-nday-writeup/",
        "https://github.com/volticks/CVE-2025-21692-poc"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "exploit",
        "CVE-2025-21692",
        "CVE-2025-21756"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"CVE-2025-21692 nday writeup · exploit\" (CVE-2025-21692, CVE-2025-21756); URL type: exploit.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「CVE-2025-21692 nday writeup · exploit」（CVE-2025-21692、CVE-2025-21756）；URL 类型：exploit。",
      "source_markdown": "[2025: \"CVE-2025-21692 nday writeup\" by volticks](https://volticks.github.io/CVE-2025-21692-nday-writeup/) [article] [[exploit](https://github.com/volticks/CVE-2025-21692-poc)] [CVE-2025-21756]",
      "search_text": "cve-2025-21692 nday writeup · exploit cve-2025-21692 nday writeup volticks cve-2025-21692 cve-2025-21756  vulnerabilities lpe lpe exploit exploit https://github.com/volticks/cve-2025-21692-poc vulnerabilities lpe exploit cve-2025-21692 cve-2025-21756  lpe 2025 linux kernel lpe resource \"cve-2025-21692 nday writeup · exploit\" (cve-2025-21692, cve-2025-21756); url type: exploit. 2025 年 linux 内核lpe资料：「cve-2025-21692 nday writeup · exploit」（cve-2025-21692、cve-2025-21756）；url 类型：exploit。 # cve-2025-21692 nday writeup · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2025-21692 nday writeup resource_label: exploit resource_type: exploit resource_url: https://github.com/volticks/cve-2025-21692-poc parent_primary_url: https://volticks.github.io/cve-2025-21692-nday-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"cve-2025-21692 nday writeup\" by volticks](https://volticks.github.io/cve-2025-21692-nday-writeup/) [article] [[exploit](https://github.com/volticks/cve-2025-21692-poc)] [cve-2025-21756] cves: cve-2025-21692, cve-2025-21756 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "c25155272f2059e1",
      "item_id": "12ab84e623381017",
      "slug": "2025-vulnerabilities-lpe-exploiting-cve-2024-0582-via-the-dirty-pagetable-method-primary-4b3442e8",
      "year": 2025,
      "title": "Exploiting CVE-2024-0582 via the Dirty Pagetable Method",
      "item_title": "Exploiting CVE-2024-0582 via the Dirty Pagetable Method",
      "authors": [
        "Kuzey Arda Bulut"
      ],
      "cves": [
        "CVE-2024-0582"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://kuzey.rs/posts/Dirty_Page_Table/",
      "primary_url": "https://kuzey.rs/posts/Dirty_Page_Table/",
      "parent_primary_url": "https://kuzey.rs/posts/Dirty_Page_Table/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-exploiting-cve-2024-0582-via-the-dirty-pagetable-method-primary-4b3442e8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting CVE-2024-0582 via the Dirty Pagetable Method record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting CVE-2024-0582 via the Dirty Pagetable Method resource_label: primary resource_type: article resource_url: https://kuzey.rs/posts/Dirty_Page_Table/ parent_primary_url: https://kuzey.rs/posts/Dirty_Page_Table/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Exploiting CVE-2024-0582 via the Dirty Pagetable Method\" by Kuzey Arda Bulut](https://kuzey.rs/posts/Dirty_Page_Table/) [article] [CVE-2024-0582] cves: CVE-2024-0582 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kern",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kuzey.rs/posts/Dirty_Page_Table/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kuzey.rs/posts/Dirty_Page_Table/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2024-0582"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"Exploiting CVE-2024-0582 via the Dirty Pagetable Method\" (CVE-2024-0582); URL type: article.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「Exploiting CVE-2024-0582 via the Dirty Pagetable Method」（CVE-2024-0582）；URL 类型：article。",
      "source_markdown": "[2025: \"Exploiting CVE-2024-0582 via the Dirty Pagetable Method\" by Kuzey Arda Bulut](https://kuzey.rs/posts/Dirty_Page_Table/) [article] [CVE-2024-0582]",
      "search_text": "exploiting cve-2024-0582 via the dirty pagetable method exploiting cve-2024-0582 via the dirty pagetable method kuzey arda bulut cve-2024-0582  vulnerabilities lpe lpe primary article https://kuzey.rs/posts/dirty_page_table/ vulnerabilities lpe article cve-2024-0582  lpe 2025 linux kernel lpe resource \"exploiting cve-2024-0582 via the dirty pagetable method\" (cve-2024-0582); url type: article. 2025 年 linux 内核lpe资料：「exploiting cve-2024-0582 via the dirty pagetable method」（cve-2024-0582）；url 类型：article。 # exploiting cve-2024-0582 via the dirty pagetable method record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting cve-2024-0582 via the dirty pagetable method resource_label: primary resource_type: article resource_url: https://kuzey.rs/posts/dirty_page_table/ parent_primary_url: https://kuzey.rs/posts/dirty_page_table/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"exploiting cve-2024-0582 via the dirty pagetable method\" by kuzey arda bulut](https://kuzey.rs/posts/dirty_page_table/) [article] [cve-2024-0582] cves: cve-2024-0582 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kern unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d1451d71c49a7569",
      "item_id": "cc25a4ac4483ab08",
      "slug": "2025-vulnerabilities-lpe-kernel-hack-drill-environment-for-developing-linux-kernel-exploits-primary-cb54f051",
      "year": 2025,
      "title": "Kernel-Hack-Drill: Environment For Developing Linux Kernel Exploits",
      "item_title": "Kernel-Hack-Drill: Environment For Developing Linux Kernel Exploits",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [
        "CVE-2024-50264"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://a13xp0p0v.github.io/img/Alexander_Popov-Kernel_Hack_Drill-Zer0Con.pdf",
      "primary_url": "https://a13xp0p0v.github.io/img/Alexander_Popov-Kernel_Hack_Drill-Zer0Con.pdf",
      "parent_primary_url": "https://a13xp0p0v.github.io/img/Alexander_Popov-Kernel_Hack_Drill-Zer0Con.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-kernel-hack-drill-environment-for-developing-linux-kernel-exploits-primary-cb54f051.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel-Hack-Drill: Environment For Developing Linux Kernel Exploits record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Kernel-Hack-Drill: Environment For Developing Linux Kernel Exploits resource_label: primary resource_type: slides resource_url: https://a13xp0p0v.github.io/img/Alexander_Popov-Kernel_Hack_Drill-Zer0Con.pdf parent_primary_url: https://a13xp0p0v.github.io/img/Alexander_Popov-Kernel_Hack_Drill-Zer0Con.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Kernel-Hack-Drill: Environment For Developing Linux Kernel Exploits\" by Alexander Popov](https://a13xp0p0v.github.io/img/Alexander_Popov-Kernel_Hack_Drill-Zer0Con.pdf) [slides] [CVE-2024-50264] cves: CVE-2024-50264 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android produ",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://a13xp0p0v.github.io/img/Alexander_Popov-Kernel_Hack_Drill-Zer0Con.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://a13xp0p0v.github.io/img/Alexander_Popov-Kernel_Hack_Drill-Zer0Con.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://a13xp0p0v.github.io/img/Alexander_Popov-Kernel_Hack_Drill-Zer0Con.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "slides",
        "CVE-2024-50264"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"Kernel-Hack-Drill: Environment For Developing Linux Kernel Exploits\" (CVE-2024-50264); URL type: slides.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「Kernel-Hack-Drill: Environment For Developing Linux Kernel Exploits」（CVE-2024-50264）；URL 类型：slides。",
      "source_markdown": "[2025: \"Kernel-Hack-Drill: Environment For Developing Linux Kernel Exploits\" by Alexander Popov](https://a13xp0p0v.github.io/img/Alexander_Popov-Kernel_Hack_Drill-Zer0Con.pdf) [slides] [CVE-2024-50264]",
      "search_text": "kernel-hack-drill: environment for developing linux kernel exploits kernel-hack-drill: environment for developing linux kernel exploits alexander popov cve-2024-50264  vulnerabilities lpe lpe primary slides https://a13xp0p0v.github.io/img/alexander_popov-kernel_hack_drill-zer0con.pdf vulnerabilities lpe slides cve-2024-50264  lpe 2025 linux kernel lpe resource \"kernel-hack-drill: environment for developing linux kernel exploits\" (cve-2024-50264); url type: slides. 2025 年 linux 内核lpe资料：「kernel-hack-drill: environment for developing linux kernel exploits」（cve-2024-50264）；url 类型：slides。 # kernel-hack-drill: environment for developing linux kernel exploits record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: kernel-hack-drill: environment for developing linux kernel exploits resource_label: primary resource_type: slides resource_url: https://a13xp0p0v.github.io/img/alexander_popov-kernel_hack_drill-zer0con.pdf parent_primary_url: https://a13xp0p0v.github.io/img/alexander_popov-kernel_hack_drill-zer0con.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"kernel-hack-drill: environment for developing linux kernel exploits\" by alexander popov](https://a13xp0p0v.github.io/img/alexander_popov-kernel_hack_drill-zer0con.pdf) [slides] [cve-2024-50264] cves: cve-2024-50264 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android produ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "69d29dd55911b056",
      "item_id": "418f409a6532464c",
      "slug": "2025-vulnerabilities-lpe-linux-kernel-hfsplus-slab-out-of-bounds-write-primary-de6469ae",
      "year": 2025,
      "title": "Linux kernel hfsplus slab-out-of-bounds Write",
      "item_title": "Linux kernel hfsplus slab-out-of-bounds Write",
      "authors": [
        "Attila Szasz"
      ],
      "cves": [
        "CVE-2025-0927"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/",
      "primary_url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/",
      "parent_primary_url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-linux-kernel-hfsplus-slab-out-of-bounds-write-primary-de6469ae.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux kernel hfsplus slab-out-of-bounds Write record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux kernel hfsplus slab-out-of-bounds Write resource_label: primary resource_type: article resource_url: https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/ parent_primary_url: https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Linux kernel hfsplus slab-out-of-bounds Write\" by Attila Szasz](https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/) [article] [slides](https://drive.google.com/file/d/1Z_0jgLpGmcC3VO-jGxR-vwAAc9F9Ovcu/view) [CVE-2025-0927] cves: CVE-2025-0927 android_impact_status: unknown android_impact_reason: Linux kernel vul",
      "link_types": [
        "article",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://drive.google.com/file/d/1Z_0jgLpGmcC3VO-jGxR-vwAAc9F9Ovcu/view"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://drive.google.com/file/d/1Z_0jgLpGmcC3VO-jGxR-vwAAc9F9Ovcu/view"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2025-0927"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"Linux kernel hfsplus slab-out-of-bounds Write\" (CVE-2025-0927); URL type: article.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「Linux kernel hfsplus slab-out-of-bounds Write」（CVE-2025-0927）；URL 类型：article。",
      "source_markdown": "[2025: \"Linux kernel hfsplus slab-out-of-bounds Write\" by Attila Szasz](https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/) [article] [slides](https://drive.google.com/file/d/1Z_0jgLpGmcC3VO-jGxR-vwAAc9F9Ovcu/view) [CVE-2025-0927]",
      "search_text": "linux kernel hfsplus slab-out-of-bounds write linux kernel hfsplus slab-out-of-bounds write attila szasz cve-2025-0927  vulnerabilities lpe lpe primary article https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/ vulnerabilities lpe article cve-2025-0927  lpe 2025 linux kernel lpe resource \"linux kernel hfsplus slab-out-of-bounds write\" (cve-2025-0927); url type: article. 2025 年 linux 内核lpe资料：「linux kernel hfsplus slab-out-of-bounds write」（cve-2025-0927）；url 类型：article。 # linux kernel hfsplus slab-out-of-bounds write record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel hfsplus slab-out-of-bounds write resource_label: primary resource_type: article resource_url: https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/ parent_primary_url: https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"linux kernel hfsplus slab-out-of-bounds write\" by attila szasz](https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/) [article] [slides](https://drive.google.com/file/d/1z_0jglpgmcc3vo-jgxr-vwaac9f9ovcu/view) [cve-2025-0927] cves: cve-2025-0927 android_impact_status: unknown android_impact_reason: linux kernel vul unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "02cca2afe303ba37",
      "item_id": "418f409a6532464c",
      "slug": "2025-vulnerabilities-lpe-linux-kernel-hfsplus-slab-out-of-bounds-write-slides-96907801",
      "year": 2025,
      "title": "Linux kernel hfsplus slab-out-of-bounds Write · slides",
      "item_title": "Linux kernel hfsplus slab-out-of-bounds Write",
      "authors": [
        "Attila Szasz"
      ],
      "cves": [
        "CVE-2025-0927"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://drive.google.com/file/d/1Z_0jgLpGmcC3VO-jGxR-vwAAc9F9Ovcu/view",
      "primary_url": "https://drive.google.com/file/d/1Z_0jgLpGmcC3VO-jGxR-vwAAc9F9Ovcu/view",
      "parent_primary_url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-linux-kernel-hfsplus-slab-out-of-bounds-write-slides-96907801.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux kernel hfsplus slab-out-of-bounds Write · slides record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux kernel hfsplus slab-out-of-bounds Write resource_label: slides resource_type: slides resource_url: https://drive.google.com/file/d/1Z_0jgLpGmcC3VO-jGxR-vwAAc9F9Ovcu/view parent_primary_url: https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Linux kernel hfsplus slab-out-of-bounds Write\" by Attila Szasz](https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/) [article] [slides](https://drive.google.com/file/d/1Z_0jgLpGmcC3VO-jGxR-vwAAc9F9Ovcu/view) [CVE-2025-0927] cves: CVE-2025-0927 android_impact_status: unknown android_impact_reason: Linux kernel vulnerabilit",
      "link_types": [
        "article",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://drive.google.com/file/d/1Z_0jgLpGmcC3VO-jGxR-vwAAc9F9Ovcu/view"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://drive.google.com/file/d/1Z_0jgLpGmcC3VO-jGxR-vwAAc9F9Ovcu/view"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2025-0927"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "The hfsplus slab-out-of-bounds write vulnerability in the Linux kernel can lead to local privilege escalation.",
      "summary_zh": "Linux内核中的hfsplus越界写漏洞可能导致本地权限提升。",
      "source_markdown": "[2025: \"Linux kernel hfsplus slab-out-of-bounds Write\" by Attila Szasz](https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/) [article] [slides](https://drive.google.com/file/d/1Z_0jgLpGmcC3VO-jGxR-vwAAc9F9Ovcu/view) [CVE-2025-0927]",
      "search_text": "linux kernel hfsplus slab-out-of-bounds write · slides linux kernel hfsplus slab-out-of-bounds write attila szasz cve-2025-0927  vulnerabilities lpe lpe slides slides https://drive.google.com/file/d/1z_0jglpgmcc3vo-jgxr-vwaac9f9ovcu/view lpe cve-2025-0927  exploit the hfsplus slab-out-of-bounds write vulnerability in the linux kernel can lead to local privilege escalation. linux内核中的hfsplus越界写漏洞可能导致本地权限提升。 # linux kernel hfsplus slab-out-of-bounds write · slides record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel hfsplus slab-out-of-bounds write resource_label: slides resource_type: slides resource_url: https://drive.google.com/file/d/1z_0jglpgmcc3vo-jgxr-vwaac9f9ovcu/view parent_primary_url: https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"linux kernel hfsplus slab-out-of-bounds write\" by attila szasz](https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/) [article] [slides](https://drive.google.com/file/d/1z_0jglpgmcc3vo-jgxr-vwaac9f9ovcu/view) [cve-2025-0927] cves: cve-2025-0927 android_impact_status: unknown android_impact_reason: linux kernel vulnerabilit unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e9596a978b0361a7",
      "item_id": "84db342b8f74c581",
      "slug": "2025-vulnerabilities-lpe-cve-2024-53141-an-oob-write-vulnerability-in-netfiler-ipset-primary-776d460b",
      "year": 2025,
      "title": "CVE-2024-53141: an OOB Write Vulnerability in Netfiler Ipset",
      "item_title": "CVE-2024-53141: an OOB Write Vulnerability in Netfiler Ipset",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2024-53141"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/01/07/cve-2024-53141-an-oob-write-vulnerability-in-netfilter-ipset.html",
      "primary_url": "https://u1f383.github.io/linux/2025/01/07/cve-2024-53141-an-oob-write-vulnerability-in-netfilter-ipset.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/01/07/cve-2024-53141-an-oob-write-vulnerability-in-netfilter-ipset.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-cve-2024-53141-an-oob-write-vulnerability-in-netfiler-ipset-primary-776d460b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2024-53141: an OOB Write Vulnerability in Netfiler Ipset record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2024-53141: an OOB Write Vulnerability in Netfiler Ipset resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/01/07/cve-2024-53141-an-oob-write-vulnerability-in-netfilter-ipset.html parent_primary_url: https://u1f383.github.io/linux/2025/01/07/cve-2024-53141-an-oob-write-vulnerability-in-netfilter-ipset.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"CVE-2024-53141: an OOB Write Vulnerability in Netfiler Ipset\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/01/07/cve-2024-53141-an-oob-write-vulnerability-in-netfilter-ipset.html) [article] [CVE-2024-53141] cves: CVE-2024-53141 android_impact_status: unknown android_i",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/01/07/cve-2024-53141-an-oob-write-vulnerability-in-netfilter-ipset.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/01/07/cve-2024-53141-an-oob-write-vulnerability-in-netfilter-ipset.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/01/07/cve-2024-53141-an-oob-write-vulnerability-in-netfilter-ipset.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2024-53141"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"CVE-2024-53141: an OOB Write Vulnerability in Netfiler Ipset\" (CVE-2024-53141); URL type: article.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「CVE-2024-53141: an OOB Write Vulnerability in Netfiler Ipset」（CVE-2024-53141）；URL 类型：article。",
      "source_markdown": "[2025: \"CVE-2024-53141: an OOB Write Vulnerability in Netfiler Ipset\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/01/07/cve-2024-53141-an-oob-write-vulnerability-in-netfilter-ipset.html) [article] [CVE-2024-53141]",
      "search_text": "cve-2024-53141: an oob write vulnerability in netfiler ipset cve-2024-53141: an oob write vulnerability in netfiler ipset pumpkin chang cve-2024-53141  vulnerabilities lpe lpe primary article https://u1f383.github.io/linux/2025/01/07/cve-2024-53141-an-oob-write-vulnerability-in-netfilter-ipset.html vulnerabilities lpe article cve-2024-53141  lpe 2025 linux kernel lpe resource \"cve-2024-53141: an oob write vulnerability in netfiler ipset\" (cve-2024-53141); url type: article. 2025 年 linux 内核lpe资料：「cve-2024-53141: an oob write vulnerability in netfiler ipset」（cve-2024-53141）；url 类型：article。 # cve-2024-53141: an oob write vulnerability in netfiler ipset record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2024-53141: an oob write vulnerability in netfiler ipset resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/01/07/cve-2024-53141-an-oob-write-vulnerability-in-netfilter-ipset.html parent_primary_url: https://u1f383.github.io/linux/2025/01/07/cve-2024-53141-an-oob-write-vulnerability-in-netfilter-ipset.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"cve-2024-53141: an oob write vulnerability in netfiler ipset\" by pumpkin chang](https://u1f383.github.io/linux/2025/01/07/cve-2024-53141-an-oob-write-vulnerability-in-netfilter-ipset.html) [article] [cve-2024-53141] cves: cve-2024-53141 android_impact_status: unknown android_i unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "0fd0933ae6453ac6",
      "item_id": "437fd16d35bdcea5",
      "slug": "2025-vulnerabilities-lpe-patch-gapping-the-google-container-optimized-os-for-0-primary-73d4e996",
      "year": 2025,
      "title": "Patch-Gapping the Google Container-Optimized OS for $0",
      "item_title": "Patch-Gapping the Google Container-Optimized OS for $0",
      "authors": [
        "h0mbre"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://h0mbre.github.io/Patch_Gapping_Google_COS/",
      "primary_url": "https://h0mbre.github.io/Patch_Gapping_Google_COS/",
      "parent_primary_url": "https://h0mbre.github.io/Patch_Gapping_Google_COS/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-patch-gapping-the-google-container-optimized-os-for-0-primary-73d4e996.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Patch-Gapping the Google Container-Optimized OS for $0 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Patch-Gapping the Google Container-Optimized OS for $0 resource_label: primary resource_type: article resource_url: https://h0mbre.github.io/Patch_Gapping_Google_COS/ parent_primary_url: https://h0mbre.github.io/Patch_Gapping_Google_COS/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Patch-Gapping the Google Container-Optimized OS for $0\" by h0mbre](https://h0mbre.github.io/Patch_Gapping_Google_COS/) [article] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use App",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://h0mbre.github.io/Patch_Gapping_Google_COS/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://h0mbre.github.io/Patch_Gapping_Google_COS/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://h0mbre.github.io/Patch_Gapping_Google_COS/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"Patch-Gapping the Google Container-Optimized OS for $0\" (CVE-UNKNOWN); URL type: article.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「Patch-Gapping the Google Container-Optimized OS for $0」（CVE-UNKNOWN）；URL 类型：article。",
      "source_markdown": "[2025: \"Patch-Gapping the Google Container-Optimized OS for $0\" by h0mbre](https://h0mbre.github.io/Patch_Gapping_Google_COS/) [article] [CVE-UNKNOWN]",
      "search_text": "patch-gapping the google container-optimized os for $0 patch-gapping the google container-optimized os for $0 h0mbre cve-unknown  vulnerabilities lpe lpe primary article https://h0mbre.github.io/patch_gapping_google_cos/ vulnerabilities lpe article  lpe 2025 linux kernel lpe resource \"patch-gapping the google container-optimized os for $0\" (cve-unknown); url type: article. 2025 年 linux 内核lpe资料：「patch-gapping the google container-optimized os for $0」（cve-unknown）；url 类型：article。 # patch-gapping the google container-optimized os for $0 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: patch-gapping the google container-optimized os for $0 resource_label: primary resource_type: article resource_url: https://h0mbre.github.io/patch_gapping_google_cos/ parent_primary_url: https://h0mbre.github.io/patch_gapping_google_cos/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"patch-gapping the google container-optimized os for $0\" by h0mbre](https://h0mbre.github.io/patch_gapping_google_cos/) [article] [cve-unknown] cves: cve-unknown android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use app unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ac1acc383a372230",
      "item_id": "8d4f27b8f2a1c824",
      "slug": "2025-vulnerabilities-lpe-mali-cious-intent-exploiting-gpu-vulnerabilities-cve-2022-22706-cve-2021-39793-primar",
      "year": 2025,
      "title": "Mali-cious Intent: Exploiting GPU Vulnerabilities (CVE-2022-22706 / CVE-2021-39793)",
      "item_title": "Mali-cious Intent: Exploiting GPU Vulnerabilities (CVE-2022-22706 / CVE-2021-39793)",
      "authors": [
        "Ng Zhi Yang"
      ],
      "cves": [
        "CVE-2022-22706",
        "CVE-2021-39793"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://starlabs.sg/blog/2025/12-mali-cious-intent-exploiting-gpu-vulnerabilities-cve-2022-22706/",
      "primary_url": "https://starlabs.sg/blog/2025/12-mali-cious-intent-exploiting-gpu-vulnerabilities-cve-2022-22706/",
      "parent_primary_url": "https://starlabs.sg/blog/2025/12-mali-cious-intent-exploiting-gpu-vulnerabilities-cve-2022-22706/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-mali-cious-intent-exploiting-gpu-vulnerabilities-cve-2022-22706-cve-2021-39793-primar.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mali-cious Intent: Exploiting GPU Vulnerabilities (CVE-2022-22706 / CVE-2021-39793) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Mali-cious Intent: Exploiting GPU Vulnerabilities (CVE-2022-22706 / CVE-2021-39793) resource_label: primary resource_type: article resource_url: https://starlabs.sg/blog/2025/12-mali-cious-intent-exploiting-gpu-vulnerabilities-cve-2022-22706/ parent_primary_url: https://starlabs.sg/blog/2025/12-mali-cious-intent-exploiting-gpu-vulnerabilities-cve-2022-22706/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Mali-cious Intent: Exploiting GPU Vulnerabilities (CVE-2022-22706 / CVE-2021-39793)\" by Ng Zhi Yang](https://starlabs.sg/blog/2025/12-mali-cious-intent-exploiting-gpu-vulnerabilities-cve-2022-22706/) [article] [CVE-2022-22706] [CVE-2021-39793] cves: C",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://starlabs.sg/blog/2025/12-mali-cious-intent-exploiting-gpu-vulnerabilities-cve-2022-22706/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://starlabs.sg/blog/2025/12-mali-cious-intent-exploiting-gpu-vulnerabilities-cve-2022-22706/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions mobile SoC/GPU components used by Android devices",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2022-22706",
        "CVE-2021-39793"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"Mali-cious Intent: Exploiting GPU Vulnerabilities (CVE-2022-22706 / CVE-2021-39793)\" (CVE-2022-22706, CVE-2021-39793); URL type: article. Android impact: possible.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「Mali-cious Intent: Exploiting GPU Vulnerabilities (CVE-2022-22706 / CVE-2021-39793)」（CVE-2022-22706、CVE-2021-39793）；URL 类型：article。 Android 影响：possible。",
      "source_markdown": "[2025: \"Mali-cious Intent: Exploiting GPU Vulnerabilities (CVE-2022-22706 / CVE-2021-39793)\" by Ng Zhi Yang](https://starlabs.sg/blog/2025/12-mali-cious-intent-exploiting-gpu-vulnerabilities-cve-2022-22706/) [article] [CVE-2022-22706] [CVE-2021-39793]",
      "search_text": "mali-cious intent: exploiting gpu vulnerabilities (cve-2022-22706 / cve-2021-39793) mali-cious intent: exploiting gpu vulnerabilities (cve-2022-22706 / cve-2021-39793) ng zhi yang cve-2022-22706 cve-2021-39793  vulnerabilities lpe lpe primary article https://starlabs.sg/blog/2025/12-mali-cious-intent-exploiting-gpu-vulnerabilities-cve-2022-22706/ vulnerabilities lpe article cve-2022-22706 cve-2021-39793  lpe 2025 linux kernel lpe resource \"mali-cious intent: exploiting gpu vulnerabilities (cve-2022-22706 / cve-2021-39793)\" (cve-2022-22706, cve-2021-39793); url type: article. android impact: possible. 2025 年 linux 内核lpe资料：「mali-cious intent: exploiting gpu vulnerabilities (cve-2022-22706 / cve-2021-39793)」（cve-2022-22706、cve-2021-39793）；url 类型：article。 android 影响：possible。 # mali-cious intent: exploiting gpu vulnerabilities (cve-2022-22706 / cve-2021-39793) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: mali-cious intent: exploiting gpu vulnerabilities (cve-2022-22706 / cve-2021-39793) resource_label: primary resource_type: article resource_url: https://starlabs.sg/blog/2025/12-mali-cious-intent-exploiting-gpu-vulnerabilities-cve-2022-22706/ parent_primary_url: https://starlabs.sg/blog/2025/12-mali-cious-intent-exploiting-gpu-vulnerabilities-cve-2022-22706/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"mali-cious intent: exploiting gpu vulnerabilities (cve-2022-22706 / cve-2021-39793)\" by ng zhi yang](https://starlabs.sg/blog/2025/12-mali-cious-intent-exploiting-gpu-vulnerabilities-cve-2022-22706/) [article] [cve-2022-22706] [cve-2021-39793] cves: c possible mentions mobile soc/gpu components used by android devices no production ios devices use apple's xnu kernel rather than linux. android-related android   has-poc poc proof-of-concept"
    },
    {
      "id": "4f666be88880664f",
      "item_id": "e4c5620907bf0289",
      "slug": "2025-vulnerabilities-lpe-introduction-to-android-gpu-vulnerability-attack-and-defense-primary-06037190",
      "year": 2025,
      "title": "Introduction to Android GPU Vulnerability Attack and Defense",
      "item_title": "Introduction to Android GPU Vulnerability Attack and Defense",
      "authors": [],
      "cves": [
        "CVE-2024-23380"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://dawnslab.jd.com/android_gpu_attack_defence_introduction/",
      "primary_url": "https://dawnslab.jd.com/android_gpu_attack_defence_introduction/",
      "parent_primary_url": "https://dawnslab.jd.com/android_gpu_attack_defence_introduction/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2025-vulnerabilities-lpe-introduction-to-android-gpu-vulnerability-attack-and-defense-primary-06037190.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Introduction to Android GPU Vulnerability Attack and Defense record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Introduction to Android GPU Vulnerability Attack and Defense resource_label: primary resource_type: article resource_url: https://dawnslab.jd.com/android_gpu_attack_defence_introduction/ parent_primary_url: https://dawnslab.jd.com/android_gpu_attack_defence_introduction/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"Introduction to Android GPU Vulnerability Attack and Defense\"](https://dawnslab.jd.com/android_gpu_attack_defence_introduction/) [article] [CVE-2024-23380] cves: CVE-2024-23380 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: fal",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://dawnslab.jd.com/android_gpu_attack_defence_introduction/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://dawnslab.jd.com/android_gpu_attack_defence_introduction/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2024-23380"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2025 Linux kernel LPE resource \"Introduction to Android GPU Vulnerability Attack and Defense\" (CVE-2024-23380); URL type: article. Android impact: yes.",
      "summary_zh": "2025 年 Linux 内核LPE资料：「Introduction to Android GPU Vulnerability Attack and Defense」（CVE-2024-23380）；URL 类型：article。 Android 影响：yes。",
      "source_markdown": "[2025: \"Introduction to Android GPU Vulnerability Attack and Defense\"](https://dawnslab.jd.com/android_gpu_attack_defence_introduction/) [article] [CVE-2024-23380]",
      "search_text": "introduction to android gpu vulnerability attack and defense introduction to android gpu vulnerability attack and defense  cve-2024-23380  vulnerabilities lpe lpe primary article https://dawnslab.jd.com/android_gpu_attack_defence_introduction/ vulnerabilities lpe article cve-2024-23380  lpe 2025 linux kernel lpe resource \"introduction to android gpu vulnerability attack and defense\" (cve-2024-23380); url type: article. android impact: yes. 2025 年 linux 内核lpe资料：「introduction to android gpu vulnerability attack and defense」（cve-2024-23380）；url 类型：article。 android 影响：yes。 # introduction to android gpu vulnerability attack and defense record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: introduction to android gpu vulnerability attack and defense resource_label: primary resource_type: article resource_url: https://dawnslab.jd.com/android_gpu_attack_defence_introduction/ parent_primary_url: https://dawnslab.jd.com/android_gpu_attack_defence_introduction/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2025: \"introduction to android gpu vulnerability attack and defense\"](https://dawnslab.jd.com/android_gpu_attack_defence_introduction/) [article] [cve-2024-23380] cves: cve-2024-23380 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: fal yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "2ba1b404e70a47a2",
      "item_id": "018b1830d74b2f9d",
      "slug": "2024-vulnerabilities-lpe-the-qualcomm-dsp-driver-unexpectedly-excavating-an-exploit-primary-af034bfc",
      "year": 2024,
      "title": "The Qualcomm DSP Driver - Unexpectedly Excavating an Exploit",
      "item_title": "The Qualcomm DSP Driver - Unexpectedly Excavating an Exploit",
      "authors": [
        "Seth Jenkins"
      ],
      "cves": [
        "CVE-2024-38402",
        "CVE-2024-21455",
        "CVE-2024-33060",
        "CVE-2024-49848",
        "CVE-2024-43047"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-the-qualcomm-dsp-driver-unexpectedly-excavating-an-exploit-primary-af034bfc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Qualcomm DSP Driver - Unexpectedly Excavating an Exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The Qualcomm DSP Driver - Unexpectedly Excavating an Exploit resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html parent_primary_url: https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"The Qualcomm DSP Driver - Unexpectedly Excavating an Exploit\" by Seth Jenkins](https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html) [article] [video](https://www.youtube.com/watch?v=lnK1iACJ3-c) [CVE-2024-38402] [CVE-2024-21455] [CVE",
      "link_types": [
        "article",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=lnK1iACJ3-c"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=lnK1iACJ3-c"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions Qualcomm/Adreno Android SoC components",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2024-38402",
        "CVE-2024-21455",
        "CVE-2024-33060"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2024 Linux kernel LPE resource \"The Qualcomm DSP Driver - Unexpectedly Excavating an Exploit\" (CVE-2024-38402, CVE-2024-21455, CVE-2024-33060, CVE-2024-49848, CVE-2024-43047); URL type: article. Android impact: possible.",
      "summary_zh": "2024 年 Linux 内核LPE资料：「The Qualcomm DSP Driver - Unexpectedly Excavating an Exploit」（CVE-2024-38402、CVE-2024-21455、CVE-2024-33060、CVE-2024-49848、CVE-2024-43047）；URL 类型：article。 Android 影响：possible。",
      "source_markdown": "[2024: \"The Qualcomm DSP Driver - Unexpectedly Excavating an Exploit\" by Seth Jenkins](https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html) [article] [video](https://www.youtube.com/watch?v=lnK1iACJ3-c) [CVE-2024-38402] [CVE-2024-21455] [CVE-2024-33060] [CVE-2024-49848] [CVE-2024-43047]",
      "search_text": "the qualcomm dsp driver - unexpectedly excavating an exploit the qualcomm dsp driver - unexpectedly excavating an exploit seth jenkins cve-2024-38402 cve-2024-21455 cve-2024-33060 cve-2024-49848 cve-2024-43047  vulnerabilities lpe lpe primary article https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html vulnerabilities lpe article cve-2024-38402 cve-2024-21455 cve-2024-33060  lpe 2024 linux kernel lpe resource \"the qualcomm dsp driver - unexpectedly excavating an exploit\" (cve-2024-38402, cve-2024-21455, cve-2024-33060, cve-2024-49848, cve-2024-43047); url type: article. android impact: possible. 2024 年 linux 内核lpe资料：「the qualcomm dsp driver - unexpectedly excavating an exploit」（cve-2024-38402、cve-2024-21455、cve-2024-33060、cve-2024-49848、cve-2024-43047）；url 类型：article。 android 影响：possible。 # the qualcomm dsp driver - unexpectedly excavating an exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the qualcomm dsp driver - unexpectedly excavating an exploit resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html parent_primary_url: https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"the qualcomm dsp driver - unexpectedly excavating an exploit\" by seth jenkins](https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html) [article] [video](https://www.youtube.com/watch?v=lnk1iacj3-c) [cve-2024-38402] [cve-2024-21455] [cve possible mentions qualcomm/adreno android soc components no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "13a5e679888e268c",
      "item_id": "018b1830d74b2f9d",
      "slug": "2024-vulnerabilities-lpe-the-qualcomm-dsp-driver-unexpectedly-excavating-an-exploit-video-c46f839a",
      "year": 2024,
      "title": "The Qualcomm DSP Driver - Unexpectedly Excavating an Exploit · video",
      "item_title": "The Qualcomm DSP Driver - Unexpectedly Excavating an Exploit",
      "authors": [
        "Seth Jenkins"
      ],
      "cves": [
        "CVE-2024-38402",
        "CVE-2024-21455",
        "CVE-2024-33060",
        "CVE-2024-49848",
        "CVE-2024-43047"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=lnK1iACJ3-c",
      "primary_url": "https://www.youtube.com/watch?v=lnK1iACJ3-c",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-the-qualcomm-dsp-driver-unexpectedly-excavating-an-exploit-video-c46f839a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Qualcomm DSP Driver - Unexpectedly Excavating an Exploit · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The Qualcomm DSP Driver - Unexpectedly Excavating an Exploit resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=lnK1iACJ3-c parent_primary_url: https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"The Qualcomm DSP Driver - Unexpectedly Excavating an Exploit\" by Seth Jenkins](https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html) [article] [video](https://www.youtube.com/watch?v=lnK1iACJ3-c) [CVE-2024-38402] [CVE-2024-21455] [CVE-2024-33060] [CVE-2024-49848] [CVE-2024-43047] cves: CVE",
      "link_types": [
        "article",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=lnK1iACJ3-c"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=lnK1iACJ3-c"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions Qualcomm/Adreno Android SoC components",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2024-38402"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "The Qualcomm DSP driver vulnerabilities can be exploited for local privilege escalation in the Linux kernel.",
      "summary_zh": "高通DSP驱动程序的漏洞可被利用进行Linux内核中的本地权限提升。",
      "source_markdown": "[2024: \"The Qualcomm DSP Driver - Unexpectedly Excavating an Exploit\" by Seth Jenkins](https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html) [article] [video](https://www.youtube.com/watch?v=lnK1iACJ3-c) [CVE-2024-38402] [CVE-2024-21455] [CVE-2024-33060] [CVE-2024-49848] [CVE-2024-43047]",
      "search_text": "the qualcomm dsp driver - unexpectedly excavating an exploit · video the qualcomm dsp driver - unexpectedly excavating an exploit seth jenkins cve-2024-38402 cve-2024-21455 cve-2024-33060 cve-2024-49848 cve-2024-43047  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=lnk1iacj3-c lpe cve-2024-38402  exploit the qualcomm dsp driver vulnerabilities can be exploited for local privilege escalation in the linux kernel. 高通dsp驱动程序的漏洞可被利用进行linux内核中的本地权限提升。 # the qualcomm dsp driver - unexpectedly excavating an exploit · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the qualcomm dsp driver - unexpectedly excavating an exploit resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=lnk1iacj3-c parent_primary_url: https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"the qualcomm dsp driver - unexpectedly excavating an exploit\" by seth jenkins](https://googleprojectzero.blogspot.com/2024/12/qualcomm-dsp-driver-unexpectedly-excavating-exploit.html) [article] [video](https://www.youtube.com/watch?v=lnk1iacj3-c) [cve-2024-38402] [cve-2024-21455] [cve-2024-33060] [cve-2024-49848] [cve-2024-43047] cves: cve possible mentions qualcomm/adreno android soc components no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "d0bd5fabb152f67d",
      "item_id": "ca9c08a5766bb211",
      "slug": "2024-vulnerabilities-lpe-otterroot-netfilter-universal-root-1-day-primary-ab6e98c3",
      "year": 2024,
      "title": "OtterRoot: Netfilter Universal Root 1-day",
      "item_title": "OtterRoot: Netfilter Universal Root 1-day",
      "authors": [
        "Pedro Pinto"
      ],
      "cves": [
        "CVE-2024-26809"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://osec.io/blog/2024-11-25-netfilter-universal-root-1-day",
      "primary_url": "https://osec.io/blog/2024-11-25-netfilter-universal-root-1-day",
      "parent_primary_url": "https://osec.io/blog/2024-11-25-netfilter-universal-root-1-day",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-otterroot-netfilter-universal-root-1-day-primary-ab6e98c3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# OtterRoot: Netfilter Universal Root 1-day record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: OtterRoot: Netfilter Universal Root 1-day resource_label: primary resource_type: article resource_url: https://osec.io/blog/2024-11-25-netfilter-universal-root-1-day parent_primary_url: https://osec.io/blog/2024-11-25-netfilter-universal-root-1-day source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"OtterRoot: Netfilter Universal Root 1-day\" by Pedro Pinto](https://osec.io/blog/2024-11-25-netfilter-universal-root-1-day) [article] [CVE-2024-26809] cves: CVE-2024-26809 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://osec.io/blog/2024-11-25-netfilter-universal-root-1-day"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://osec.io/blog/2024-11-25-netfilter-universal-root-1-day"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2024-26809"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2024 Linux kernel LPE resource \"OtterRoot: Netfilter Universal Root 1-day\" (CVE-2024-26809); URL type: article.",
      "summary_zh": "2024 年 Linux 内核LPE资料：「OtterRoot: Netfilter Universal Root 1-day」（CVE-2024-26809）；URL 类型：article。",
      "source_markdown": "[2024: \"OtterRoot: Netfilter Universal Root 1-day\" by Pedro Pinto](https://osec.io/blog/2024-11-25-netfilter-universal-root-1-day) [article] [CVE-2024-26809]",
      "search_text": "otterroot: netfilter universal root 1-day otterroot: netfilter universal root 1-day pedro pinto cve-2024-26809  vulnerabilities lpe lpe primary article https://osec.io/blog/2024-11-25-netfilter-universal-root-1-day vulnerabilities lpe article cve-2024-26809  lpe 2024 linux kernel lpe resource \"otterroot: netfilter universal root 1-day\" (cve-2024-26809); url type: article. 2024 年 linux 内核lpe资料：「otterroot: netfilter universal root 1-day」（cve-2024-26809）；url 类型：article。 # otterroot: netfilter universal root 1-day record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: otterroot: netfilter universal root 1-day resource_label: primary resource_type: article resource_url: https://osec.io/blog/2024-11-25-netfilter-universal-root-1-day parent_primary_url: https://osec.io/blog/2024-11-25-netfilter-universal-root-1-day source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"otterroot: netfilter universal root 1-day\" by pedro pinto](https://osec.io/blog/2024-11-25-netfilter-universal-root-1-day) [article] [cve-2024-26809] cves: cve-2024-26809 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1e08965a4be96784",
      "item_id": "7e0cc93d30294225",
      "slug": "2024-vulnerabilities-lpe-how-i-use-a-novel-approach-to-exploit-a-limited-oob-on-ubuntu-at-pwn2own-vancouver-20",
      "year": 2024,
      "title": "How I use a novel approach to exploit a limited OOB on Ubuntu at Pwn2Own Vancouver 2024",
      "item_title": "How I use a novel approach to exploit a limited OOB on Ubuntu at Pwn2Own Vancouver 2024",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://u1f383.github.io/slides/talks/2024_POC-How_I_use_a_novel_approach_to_exploit_a_limited_OOB_on_Ubuntu_at_Pwn2Own_Vancouver_2024.pdf",
      "primary_url": "https://u1f383.github.io/slides/talks/2024_POC-How_I_use_a_novel_approach_to_exploit_a_limited_OOB_on_Ubuntu_at_Pwn2Own_Vancouver_2024.pdf",
      "parent_primary_url": "https://u1f383.github.io/slides/talks/2024_POC-How_I_use_a_novel_approach_to_exploit_a_limited_OOB_on_Ubuntu_at_Pwn2Own_Vancouver_2024.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-how-i-use-a-novel-approach-to-exploit-a-limited-oob-on-ubuntu-at-pwn2own-vancouver-20.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# How I use a novel approach to exploit a limited OOB on Ubuntu at Pwn2Own Vancouver 2024 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: How I use a novel approach to exploit a limited OOB on Ubuntu at Pwn2Own Vancouver 2024 resource_label: primary resource_type: slides resource_url: https://u1f383.github.io/slides/talks/2024_POC-How_I_use_a_novel_approach_to_exploit_a_limited_OOB_on_Ubuntu_at_Pwn2Own_Vancouver_2024.pdf parent_primary_url: https://u1f383.github.io/slides/talks/2024_POC-How_I_use_a_novel_approach_to_exploit_a_limited_OOB_on_Ubuntu_at_Pwn2Own_Vancouver_2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"How I use a novel approach to exploit a limited OOB on Ubuntu at Pwn2Own Vancouver 2024\" by Pumpkin Chang](https://u1f383.github.io/slides/talks/2024_POC-How_I_us",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://u1f383.github.io/slides/talks/2024_POC-How_I_use_a_novel_approach_to_exploit_a_limited_OOB_on_Ubuntu_at_Pwn2Own_Vancouver_2024.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://u1f383.github.io/slides/talks/2024_POC-How_I_use_a_novel_approach_to_exploit_a_limited_OOB_on_Ubuntu_at_Pwn2Own_Vancouver_2024.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/slides/talks/2024_POC-How_I_use_a_novel_approach_to_exploit_a_limited_OOB_on_Ubuntu_at_Pwn2Own_Vancouver_2024.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2024 Linux kernel LPE resource \"How I use a novel approach to exploit a limited OOB on Ubuntu at Pwn2Own Vancouver 2024\" (CVE-UNKNOWN); URL type: slides.",
      "summary_zh": "2024 年 Linux 内核LPE资料：「How I use a novel approach to exploit a limited OOB on Ubuntu at Pwn2Own Vancouver 2024」（CVE-UNKNOWN）；URL 类型：slides。",
      "source_markdown": "[2024: \"How I use a novel approach to exploit a limited OOB on Ubuntu at Pwn2Own Vancouver 2024\" by Pumpkin Chang](https://u1f383.github.io/slides/talks/2024_POC-How_I_use_a_novel_approach_to_exploit_a_limited_OOB_on_Ubuntu_at_Pwn2Own_Vancouver_2024.pdf) [slides] [CVE-UNKNOWN]",
      "search_text": "how i use a novel approach to exploit a limited oob on ubuntu at pwn2own vancouver 2024 how i use a novel approach to exploit a limited oob on ubuntu at pwn2own vancouver 2024 pumpkin chang cve-unknown  vulnerabilities lpe lpe primary slides https://u1f383.github.io/slides/talks/2024_poc-how_i_use_a_novel_approach_to_exploit_a_limited_oob_on_ubuntu_at_pwn2own_vancouver_2024.pdf vulnerabilities lpe slides  lpe 2024 linux kernel lpe resource \"how i use a novel approach to exploit a limited oob on ubuntu at pwn2own vancouver 2024\" (cve-unknown); url type: slides. 2024 年 linux 内核lpe资料：「how i use a novel approach to exploit a limited oob on ubuntu at pwn2own vancouver 2024」（cve-unknown）；url 类型：slides。 # how i use a novel approach to exploit a limited oob on ubuntu at pwn2own vancouver 2024 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: how i use a novel approach to exploit a limited oob on ubuntu at pwn2own vancouver 2024 resource_label: primary resource_type: slides resource_url: https://u1f383.github.io/slides/talks/2024_poc-how_i_use_a_novel_approach_to_exploit_a_limited_oob_on_ubuntu_at_pwn2own_vancouver_2024.pdf parent_primary_url: https://u1f383.github.io/slides/talks/2024_poc-how_i_use_a_novel_approach_to_exploit_a_limited_oob_on_ubuntu_at_pwn2own_vancouver_2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"how i use a novel approach to exploit a limited oob on ubuntu at pwn2own vancouver 2024\" by pumpkin chang](https://u1f383.github.io/slides/talks/2024_poc-how_i_us unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "53646dc8d4e36acf",
      "item_id": "e1cfe8e8185c505b",
      "slug": "2024-vulnerabilities-lpe-gpuaf-two-ways-of-rooting-all-qualcomm-based-android-phones-primary-a6ad2ff2",
      "year": 2024,
      "title": "GPUAF - Two ways of Rooting All Qualcomm based Android phones",
      "item_title": "GPUAF - Two ways of Rooting All Qualcomm based Android phones",
      "authors": [
        "Pan Zhenpeng",
        "Jheng Bing Jhong"
      ],
      "cves": [
        "CVE-2024-23380",
        "CVE-2024-23373"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://powerofcommunity.net/poc2024/Pan%20Zhenpeng%20&%20Jheng%20Bing%20Jhong,%20GPUAF%20-%20Two%20ways%20of%20rooting%20All%20Qualcomm%20based%20Android%20phones.pdf",
      "primary_url": "https://powerofcommunity.net/poc2024/Pan%20Zhenpeng%20&%20Jheng%20Bing%20Jhong,%20GPUAF%20-%20Two%20ways%20of%20rooting%20All%20Qualcomm%20based%20Android%20phones.pdf",
      "parent_primary_url": "https://powerofcommunity.net/poc2024/Pan%20Zhenpeng%20&%20Jheng%20Bing%20Jhong,%20GPUAF%20-%20Two%20ways%20of%20rooting%20All%20Qualcomm%20based%20Android%20phones.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-gpuaf-two-ways-of-rooting-all-qualcomm-based-android-phones-primary-a6ad2ff2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# GPUAF - Two ways of Rooting All Qualcomm based Android phones record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: GPUAF - Two ways of Rooting All Qualcomm based Android phones resource_label: primary resource_type: slides resource_url: https://powerofcommunity.net/poc2024/Pan%20Zhenpeng%20&%20Jheng%20Bing%20Jhong,%20GPUAF%20-%20Two%20ways%20of%20rooting%20All%20Qualcomm%20based%20Android%20phones.pdf parent_primary_url: https://powerofcommunity.net/poc2024/Pan%20Zhenpeng%20&%20Jheng%20Bing%20Jhong,%20GPUAF%20-%20Two%20ways%20of%20rooting%20All%20Qualcomm%20based%20Android%20phones.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"GPUAF - Two ways of Rooting All Qualcomm based Android phones\" by Pan Zhenpeng and Jheng Bing Jhong](https://powerofcommunity.net/poc2024/Pan%20Zhenpeng%20&",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://powerofcommunity.net/poc2024/Pan%20Zhenpeng%20&%20Jheng%20Bing%20Jhong,%20GPUAF%20-%20Two%20ways%20of%20rooting%20All%20Qualcomm%20based%20Android%20phones.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://powerofcommunity.net/poc2024/Pan%20Zhenpeng%20&%20Jheng%20Bing%20Jhong,%20GPUAF%20-%20Two%20ways%20of%20rooting%20All%20Qualcomm%20based%20Android%20phones.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "slides",
        "CVE-2024-23380",
        "CVE-2024-23373"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2024 Linux kernel LPE resource \"GPUAF - Two ways of Rooting All Qualcomm based Android phones\" (CVE-2024-23380, CVE-2024-23373); URL type: slides. Android impact: yes.",
      "summary_zh": "2024 年 Linux 内核LPE资料：「GPUAF - Two ways of Rooting All Qualcomm based Android phones」（CVE-2024-23380、CVE-2024-23373）；URL 类型：slides。 Android 影响：yes。",
      "source_markdown": "[2024: \"GPUAF - Two ways of Rooting All Qualcomm based Android phones\" by Pan Zhenpeng and Jheng Bing Jhong](https://powerofcommunity.net/poc2024/Pan%20Zhenpeng%20&%20Jheng%20Bing%20Jhong,%20GPUAF%20-%20Two%20ways%20of%20rooting%20All%20Qualcomm%20based%20Android%20phones.pdf) [slides] [CVE-2024-23380] [CVE-2024-23373]",
      "search_text": "gpuaf - two ways of rooting all qualcomm based android phones gpuaf - two ways of rooting all qualcomm based android phones pan zhenpeng jheng bing jhong cve-2024-23380 cve-2024-23373  vulnerabilities lpe lpe primary slides https://powerofcommunity.net/poc2024/pan%20zhenpeng%20&%20jheng%20bing%20jhong,%20gpuaf%20-%20two%20ways%20of%20rooting%20all%20qualcomm%20based%20android%20phones.pdf vulnerabilities lpe slides cve-2024-23380 cve-2024-23373  lpe 2024 linux kernel lpe resource \"gpuaf - two ways of rooting all qualcomm based android phones\" (cve-2024-23380, cve-2024-23373); url type: slides. android impact: yes. 2024 年 linux 内核lpe资料：「gpuaf - two ways of rooting all qualcomm based android phones」（cve-2024-23380、cve-2024-23373）；url 类型：slides。 android 影响：yes。 # gpuaf - two ways of rooting all qualcomm based android phones record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: gpuaf - two ways of rooting all qualcomm based android phones resource_label: primary resource_type: slides resource_url: https://powerofcommunity.net/poc2024/pan%20zhenpeng%20&%20jheng%20bing%20jhong,%20gpuaf%20-%20two%20ways%20of%20rooting%20all%20qualcomm%20based%20android%20phones.pdf parent_primary_url: https://powerofcommunity.net/poc2024/pan%20zhenpeng%20&%20jheng%20bing%20jhong,%20gpuaf%20-%20two%20ways%20of%20rooting%20all%20qualcomm%20based%20android%20phones.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"gpuaf - two ways of rooting all qualcomm based android phones\" by pan zhenpeng and jheng bing jhong](https://powerofcommunity.net/poc2024/pan%20zhenpeng%20& yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "558d9ee6087ecf54",
      "item_id": "7fd45a04c86e5ea2",
      "slug": "2024-vulnerabilities-lpe-breaking-through-the-cage-get-android-universal-root-primary-c01916d0",
      "year": 2024,
      "title": "Breaking through the cage: Get Android universal root",
      "item_title": "Breaking through the cage: Get Android universal root",
      "authors": [
        "B-PUAF\" by Lu Yutao",
        "Ling Hanqin"
      ],
      "cves": [
        "CVE-2024-46740"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://powerofcommunity.net/assets/v0/poc2024/Hanqin%20Ling%20&%20Yutao%20Lu,%20Breaking%20through%20the%20cage%20-%20Get%20Android%20Universal%20Root%20by%20B-PUAF.pdf",
      "primary_url": "https://powerofcommunity.net/assets/v0/poc2024/Hanqin%20Ling%20&%20Yutao%20Lu,%20Breaking%20through%20the%20cage%20-%20Get%20Android%20Universal%20Root%20by%20B-PUAF.pdf",
      "parent_primary_url": "https://powerofcommunity.net/assets/v0/poc2024/Hanqin%20Ling%20&%20Yutao%20Lu,%20Breaking%20through%20the%20cage%20-%20Get%20Android%20Universal%20Root%20by%20B-PUAF.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-breaking-through-the-cage-get-android-universal-root-primary-c01916d0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Breaking through the cage: Get Android universal root record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Breaking through the cage: Get Android universal root resource_label: primary resource_type: slides resource_url: https://powerofcommunity.net/assets/v0/poc2024/Hanqin%20Ling%20&%20Yutao%20Lu,%20Breaking%20through%20the%20cage%20-%20Get%20Android%20Universal%20Root%20by%20B-PUAF.pdf parent_primary_url: https://powerofcommunity.net/assets/v0/poc2024/Hanqin%20Ling%20&%20Yutao%20Lu,%20Breaking%20through%20the%20cage%20-%20Get%20Android%20Universal%20Root%20by%20B-PUAF.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Breaking through the cage: Get Android universal root by B-PUAF\" by Lu Yutao and Ling Hanqin](https://powerofcommunity.net/assets/v0/poc2024/Hanqin%20Ling%20&%20Yutao%2",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://powerofcommunity.net/assets/v0/poc2024/Hanqin%20Ling%20&%20Yutao%20Lu,%20Breaking%20through%20the%20cage%20-%20Get%20Android%20Universal%20Root%20by%20B-PUAF.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://powerofcommunity.net/assets/v0/poc2024/Hanqin%20Ling%20&%20Yutao%20Lu,%20Breaking%20through%20the%20cage%20-%20Get%20Android%20Universal%20Root%20by%20B-PUAF.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "slides",
        "CVE-2024-46740"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2024 Linux kernel LPE resource \"Breaking through the cage: Get Android universal root\" (CVE-2024-46740); URL type: slides. Android impact: yes.",
      "summary_zh": "2024 年 Linux 内核LPE资料：「Breaking through the cage: Get Android universal root」（CVE-2024-46740）；URL 类型：slides。 Android 影响：yes。",
      "source_markdown": "[2024: \"Breaking through the cage: Get Android universal root by B-PUAF\" by Lu Yutao and Ling Hanqin](https://powerofcommunity.net/assets/v0/poc2024/Hanqin%20Ling%20&%20Yutao%20Lu,%20Breaking%20through%20the%20cage%20-%20Get%20Android%20Universal%20Root%20by%20B-PUAF.pdf) [slides] [CVE-2024-46740]",
      "search_text": "breaking through the cage: get android universal root breaking through the cage: get android universal root b-puaf\" by lu yutao ling hanqin cve-2024-46740  vulnerabilities lpe lpe primary slides https://powerofcommunity.net/assets/v0/poc2024/hanqin%20ling%20&%20yutao%20lu,%20breaking%20through%20the%20cage%20-%20get%20android%20universal%20root%20by%20b-puaf.pdf vulnerabilities lpe slides cve-2024-46740  lpe 2024 linux kernel lpe resource \"breaking through the cage: get android universal root\" (cve-2024-46740); url type: slides. android impact: yes. 2024 年 linux 内核lpe资料：「breaking through the cage: get android universal root」（cve-2024-46740）；url 类型：slides。 android 影响：yes。 # breaking through the cage: get android universal root record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: breaking through the cage: get android universal root resource_label: primary resource_type: slides resource_url: https://powerofcommunity.net/assets/v0/poc2024/hanqin%20ling%20&%20yutao%20lu,%20breaking%20through%20the%20cage%20-%20get%20android%20universal%20root%20by%20b-puaf.pdf parent_primary_url: https://powerofcommunity.net/assets/v0/poc2024/hanqin%20ling%20&%20yutao%20lu,%20breaking%20through%20the%20cage%20-%20get%20android%20universal%20root%20by%20b-puaf.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"breaking through the cage: get android universal root by b-puaf\" by lu yutao and ling hanqin](https://powerofcommunity.net/assets/v0/poc2024/hanqin%20ling%20&%20yutao%2 yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "7f5e9c08f81631d6",
      "item_id": "a1597a964ad100f1",
      "slug": "2024-vulnerabilities-lpe-unleashing-a-0day-pivoting-capabilities-and-conquering-the-linux-kernel-primary-15c97",
      "year": 2024,
      "title": "Unleashing a 0day: Pivoting Capabilities and Conquering the Linux Kernel",
      "item_title": "Unleashing a 0day: Pivoting Capabilities and Conquering the Linux Kernel",
      "authors": [
        "Pedro Pinto"
      ],
      "cves": [
        "CVE-2024-41010"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.figma.com/deck/GyXCgKKy6rMuY7NVZtInjY/Unleadhing-a-Oday---Osec?node-id=13-225",
      "primary_url": "https://www.figma.com/deck/GyXCgKKy6rMuY7NVZtInjY/Unleadhing-a-Oday---Osec?node-id=13-225",
      "parent_primary_url": "https://www.figma.com/deck/GyXCgKKy6rMuY7NVZtInjY/Unleadhing-a-Oday---Osec?node-id=13-225",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-unleashing-a-0day-pivoting-capabilities-and-conquering-the-linux-kernel-primary-15c97.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Unleashing a 0day: Pivoting Capabilities and Conquering the Linux Kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Unleashing a 0day: Pivoting Capabilities and Conquering the Linux Kernel resource_label: primary resource_type: slides resource_url: https://www.figma.com/deck/GyXCgKKy6rMuY7NVZtInjY/Unleadhing-a-Oday---Osec?node-id=13-225 parent_primary_url: https://www.figma.com/deck/GyXCgKKy6rMuY7NVZtInjY/Unleadhing-a-Oday---Osec?node-id=13-225 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Unleashing a 0day: Pivoting Capabilities and Conquering the Linux Kernel\" by Pedro Pinto](https://www.figma.com/deck/GyXCgKKy6rMuY7NVZtInjY/Unleadhing-a-Oday---Osec?node-id=13-225) [slides] [[video](https://www.youtube.com/watch?v=bxJhlwGjwWQ)] [CVE-2024-41010] cves: CVE-2024-41010 android",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.figma.com/deck/GyXCgKKy6rMuY7NVZtInjY/Unleadhing-a-Oday---Osec?node-id=13-225"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=bxJhlwGjwWQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.figma.com/deck/GyXCgKKy6rMuY7NVZtInjY/Unleadhing-a-Oday---Osec?node-id=13-225"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=bxJhlwGjwWQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "slides",
        "CVE-2024-41010"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2024 Linux kernel LPE resource \"Unleashing a 0day: Pivoting Capabilities and Conquering the Linux Kernel\" (CVE-2024-41010); URL type: slides.",
      "summary_zh": "2024 年 Linux 内核LPE资料：「Unleashing a 0day: Pivoting Capabilities and Conquering the Linux Kernel」（CVE-2024-41010）；URL 类型：slides。",
      "source_markdown": "[2024: \"Unleashing a 0day: Pivoting Capabilities and Conquering the Linux Kernel\" by Pedro Pinto](https://www.figma.com/deck/GyXCgKKy6rMuY7NVZtInjY/Unleadhing-a-Oday---Osec?node-id=13-225) [slides] [[video](https://www.youtube.com/watch?v=bxJhlwGjwWQ)] [CVE-2024-41010]",
      "search_text": "unleashing a 0day: pivoting capabilities and conquering the linux kernel unleashing a 0day: pivoting capabilities and conquering the linux kernel pedro pinto cve-2024-41010  vulnerabilities lpe lpe primary slides https://www.figma.com/deck/gyxcgkky6rmuy7nvztinjy/unleadhing-a-oday---osec?node-id=13-225 vulnerabilities lpe slides cve-2024-41010  lpe 2024 linux kernel lpe resource \"unleashing a 0day: pivoting capabilities and conquering the linux kernel\" (cve-2024-41010); url type: slides. 2024 年 linux 内核lpe资料：「unleashing a 0day: pivoting capabilities and conquering the linux kernel」（cve-2024-41010）；url 类型：slides。 # unleashing a 0day: pivoting capabilities and conquering the linux kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: unleashing a 0day: pivoting capabilities and conquering the linux kernel resource_label: primary resource_type: slides resource_url: https://www.figma.com/deck/gyxcgkky6rmuy7nvztinjy/unleadhing-a-oday---osec?node-id=13-225 parent_primary_url: https://www.figma.com/deck/gyxcgkky6rmuy7nvztinjy/unleadhing-a-oday---osec?node-id=13-225 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"unleashing a 0day: pivoting capabilities and conquering the linux kernel\" by pedro pinto](https://www.figma.com/deck/gyxcgkky6rmuy7nvztinjy/unleadhing-a-oday---osec?node-id=13-225) [slides] [[video](https://www.youtube.com/watch?v=bxjhlwgjwwq)] [cve-2024-41010] cves: cve-2024-41010 android unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "88f680ff692a202e",
      "item_id": "a1597a964ad100f1",
      "slug": "2024-vulnerabilities-lpe-unleashing-a-0day-pivoting-capabilities-and-conquering-the-linux-kernel-video-1eb2237",
      "year": 2024,
      "title": "Unleashing a 0day: Pivoting Capabilities and Conquering the Linux Kernel · video",
      "item_title": "Unleashing a 0day: Pivoting Capabilities and Conquering the Linux Kernel",
      "authors": [
        "Pedro Pinto"
      ],
      "cves": [
        "CVE-2024-41010"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=bxJhlwGjwWQ",
      "primary_url": "https://www.youtube.com/watch?v=bxJhlwGjwWQ",
      "parent_primary_url": "https://www.figma.com/deck/GyXCgKKy6rMuY7NVZtInjY/Unleadhing-a-Oday---Osec?node-id=13-225",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-unleashing-a-0day-pivoting-capabilities-and-conquering-the-linux-kernel-video-1eb2237.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Unleashing a 0day: Pivoting Capabilities and Conquering the Linux Kernel · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Unleashing a 0day: Pivoting Capabilities and Conquering the Linux Kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=bxJhlwGjwWQ parent_primary_url: https://www.figma.com/deck/GyXCgKKy6rMuY7NVZtInjY/Unleadhing-a-Oday---Osec?node-id=13-225 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Unleashing a 0day: Pivoting Capabilities and Conquering the Linux Kernel\" by Pedro Pinto](https://www.figma.com/deck/GyXCgKKy6rMuY7NVZtInjY/Unleadhing-a-Oday---Osec?node-id=13-225) [slides] [[video](https://www.youtube.com/watch?v=bxJhlwGjwWQ)] [CVE-2024-41010] cves: CVE-2024-41010 android_impact_status: unknown android_impact_re",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.figma.com/deck/GyXCgKKy6rMuY7NVZtInjY/Unleadhing-a-Oday---Osec?node-id=13-225"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=bxJhlwGjwWQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.figma.com/deck/GyXCgKKy6rMuY7NVZtInjY/Unleadhing-a-Oday---Osec?node-id=13-225"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=bxJhlwGjwWQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "0day",
        "pivoting"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This video discusses a 0day vulnerability in the Linux kernel focusing on pivoting capabilities.",
      "summary_zh": "该视频讨论了Linux内核中的0day漏洞，重点关注转发能力。",
      "source_markdown": "[2024: \"Unleashing a 0day: Pivoting Capabilities and Conquering the Linux Kernel\" by Pedro Pinto](https://www.figma.com/deck/GyXCgKKy6rMuY7NVZtInjY/Unleadhing-a-Oday---Osec?node-id=13-225) [slides] [[video](https://www.youtube.com/watch?v=bxJhlwGjwWQ)] [CVE-2024-41010]",
      "search_text": "unleashing a 0day: pivoting capabilities and conquering the linux kernel · video unleashing a 0day: pivoting capabilities and conquering the linux kernel pedro pinto cve-2024-41010  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=bxjhlwgjwwq lpe 0day pivoting  vulnerability this video discusses a 0day vulnerability in the linux kernel focusing on pivoting capabilities. 该视频讨论了linux内核中的0day漏洞，重点关注转发能力。 # unleashing a 0day: pivoting capabilities and conquering the linux kernel · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: unleashing a 0day: pivoting capabilities and conquering the linux kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=bxjhlwgjwwq parent_primary_url: https://www.figma.com/deck/gyxcgkky6rmuy7nvztinjy/unleadhing-a-oday---osec?node-id=13-225 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"unleashing a 0day: pivoting capabilities and conquering the linux kernel\" by pedro pinto](https://www.figma.com/deck/gyxcgkky6rmuy7nvztinjy/unleadhing-a-oday---osec?node-id=13-225) [slides] [[video](https://www.youtube.com/watch?v=bxjhlwgjwwq)] [cve-2024-41010] cves: cve-2024-41010 android_impact_status: unknown android_impact_re unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2e5d1808b70a27f4",
      "item_id": "dafee7a204c11214",
      "slug": "2024-vulnerabilities-lpe-utilizing-cross-cpu-allocation-to-exploit-preempt-disabled-linux-kernel-primary-77685",
      "year": 2024,
      "title": "Utilizing Cross-CPU Allocation to Exploit Preempt-Disabled Linux Kernel",
      "item_title": "Utilizing Cross-CPU Allocation to Exploit Preempt-Disabled Linux Kernel",
      "authors": [
        "Mingi Cho",
        "Wongi Lee"
      ],
      "cves": [
        "CVE-2023-31248",
        "CVE-2024-36978"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.hexacon.fr/slides/Cho_Lee-Utilizing_Cross-CPU_Allocation_to_Exploit_Preempt-Disabled_Linux_Kernel.pdf",
      "primary_url": "https://www.hexacon.fr/slides/Cho_Lee-Utilizing_Cross-CPU_Allocation_to_Exploit_Preempt-Disabled_Linux_Kernel.pdf",
      "parent_primary_url": "https://www.hexacon.fr/slides/Cho_Lee-Utilizing_Cross-CPU_Allocation_to_Exploit_Preempt-Disabled_Linux_Kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-utilizing-cross-cpu-allocation-to-exploit-preempt-disabled-linux-kernel-primary-77685.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Utilizing Cross-CPU Allocation to Exploit Preempt-Disabled Linux Kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Utilizing Cross-CPU Allocation to Exploit Preempt-Disabled Linux Kernel resource_label: primary resource_type: slides resource_url: https://www.hexacon.fr/slides/Cho_Lee-Utilizing_Cross-CPU_Allocation_to_Exploit_Preempt-Disabled_Linux_Kernel.pdf parent_primary_url: https://www.hexacon.fr/slides/Cho_Lee-Utilizing_Cross-CPU_Allocation_to_Exploit_Preempt-Disabled_Linux_Kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Utilizing Cross-CPU Allocation to Exploit Preempt-Disabled Linux Kernel\" by Mingi Cho and Wongi Lee](https://www.hexacon.fr/slides/Cho_Lee-Utilizing_Cross-CPU_Allocation_to_Exploit_Preempt-Disabled_Linux_Kernel.pdf) [slides] [CVE-2023-31248] [[",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.hexacon.fr/slides/Cho_Lee-Utilizing_Cross-CPU_Allocation_to_Exploit_Preempt-Disabled_Linux_Kernel.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=dUdU0lp35xU"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.hexacon.fr/slides/Cho_Lee-Utilizing_Cross-CPU_Allocation_to_Exploit_Preempt-Disabled_Linux_Kernel.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=dUdU0lp35xU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "cross-CPU",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Slides detailing the exploitation of preempt-disabled Linux kernel using cross-CPU allocation techniques.",
      "summary_zh": "幻灯片详细介绍了使用跨CPU分配技术利用禁用抢占的Linux内核。",
      "source_markdown": "[2024: \"Utilizing Cross-CPU Allocation to Exploit Preempt-Disabled Linux Kernel\" by Mingi Cho and Wongi Lee](https://www.hexacon.fr/slides/Cho_Lee-Utilizing_Cross-CPU_Allocation_to_Exploit_Preempt-Disabled_Linux_Kernel.pdf) [slides] [CVE-2023-31248] [[video](https://www.youtube.com/watch?v=dUdU0lp35xU)] [CVE-2024-36978]",
      "search_text": "utilizing cross-cpu allocation to exploit preempt-disabled linux kernel utilizing cross-cpu allocation to exploit preempt-disabled linux kernel mingi cho wongi lee cve-2023-31248 cve-2024-36978  vulnerabilities lpe lpe primary slides https://www.hexacon.fr/slides/cho_lee-utilizing_cross-cpu_allocation_to_exploit_preempt-disabled_linux_kernel.pdf lpe cross-cpu exploitation  vulnerability slides detailing the exploitation of preempt-disabled linux kernel using cross-cpu allocation techniques. 幻灯片详细介绍了使用跨cpu分配技术利用禁用抢占的linux内核。 # utilizing cross-cpu allocation to exploit preempt-disabled linux kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: utilizing cross-cpu allocation to exploit preempt-disabled linux kernel resource_label: primary resource_type: slides resource_url: https://www.hexacon.fr/slides/cho_lee-utilizing_cross-cpu_allocation_to_exploit_preempt-disabled_linux_kernel.pdf parent_primary_url: https://www.hexacon.fr/slides/cho_lee-utilizing_cross-cpu_allocation_to_exploit_preempt-disabled_linux_kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"utilizing cross-cpu allocation to exploit preempt-disabled linux kernel\" by mingi cho and wongi lee](https://www.hexacon.fr/slides/cho_lee-utilizing_cross-cpu_allocation_to_exploit_preempt-disabled_linux_kernel.pdf) [slides] [cve-2023-31248] [[ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "83eecc0d06161163",
      "item_id": "dafee7a204c11214",
      "slug": "2024-vulnerabilities-lpe-utilizing-cross-cpu-allocation-to-exploit-preempt-disabled-linux-kernel-video-2ffddc1",
      "year": 2024,
      "title": "Utilizing Cross-CPU Allocation to Exploit Preempt-Disabled Linux Kernel · video",
      "item_title": "Utilizing Cross-CPU Allocation to Exploit Preempt-Disabled Linux Kernel",
      "authors": [
        "Mingi Cho",
        "Wongi Lee"
      ],
      "cves": [
        "CVE-2023-31248",
        "CVE-2024-36978"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=dUdU0lp35xU",
      "primary_url": "https://www.youtube.com/watch?v=dUdU0lp35xU",
      "parent_primary_url": "https://www.hexacon.fr/slides/Cho_Lee-Utilizing_Cross-CPU_Allocation_to_Exploit_Preempt-Disabled_Linux_Kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-utilizing-cross-cpu-allocation-to-exploit-preempt-disabled-linux-kernel-video-2ffddc1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Utilizing Cross-CPU Allocation to Exploit Preempt-Disabled Linux Kernel · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Utilizing Cross-CPU Allocation to Exploit Preempt-Disabled Linux Kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=dUdU0lp35xU parent_primary_url: https://www.hexacon.fr/slides/Cho_Lee-Utilizing_Cross-CPU_Allocation_to_Exploit_Preempt-Disabled_Linux_Kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Utilizing Cross-CPU Allocation to Exploit Preempt-Disabled Linux Kernel\" by Mingi Cho and Wongi Lee](https://www.hexacon.fr/slides/Cho_Lee-Utilizing_Cross-CPU_Allocation_to_Exploit_Preempt-Disabled_Linux_Kernel.pdf) [slides] [CVE-2023-31248] [[video](https://www.youtube.com/watch?v=dUdU0lp35xU)] [CVE-2024-36",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.hexacon.fr/slides/Cho_Lee-Utilizing_Cross-CPU_Allocation_to_Exploit_Preempt-Disabled_Linux_Kernel.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=dUdU0lp35xU"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.hexacon.fr/slides/Cho_Lee-Utilizing_Cross-CPU_Allocation_to_Exploit_Preempt-Disabled_Linux_Kernel.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=dUdU0lp35xU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "cross-CPU",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "A video presentation on exploiting preempt-disabled Linux kernel through cross-CPU allocation.",
      "summary_zh": "关于通过跨CPU分配利用禁用抢占的Linux内核的视频演示。",
      "source_markdown": "[2024: \"Utilizing Cross-CPU Allocation to Exploit Preempt-Disabled Linux Kernel\" by Mingi Cho and Wongi Lee](https://www.hexacon.fr/slides/Cho_Lee-Utilizing_Cross-CPU_Allocation_to_Exploit_Preempt-Disabled_Linux_Kernel.pdf) [slides] [CVE-2023-31248] [[video](https://www.youtube.com/watch?v=dUdU0lp35xU)] [CVE-2024-36978]",
      "search_text": "utilizing cross-cpu allocation to exploit preempt-disabled linux kernel · video utilizing cross-cpu allocation to exploit preempt-disabled linux kernel mingi cho wongi lee cve-2023-31248 cve-2024-36978  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=dudu0lp35xu lpe cross-cpu exploitation  vulnerability a video presentation on exploiting preempt-disabled linux kernel through cross-cpu allocation. 关于通过跨cpu分配利用禁用抢占的linux内核的视频演示。 # utilizing cross-cpu allocation to exploit preempt-disabled linux kernel · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: utilizing cross-cpu allocation to exploit preempt-disabled linux kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=dudu0lp35xu parent_primary_url: https://www.hexacon.fr/slides/cho_lee-utilizing_cross-cpu_allocation_to_exploit_preempt-disabled_linux_kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"utilizing cross-cpu allocation to exploit preempt-disabled linux kernel\" by mingi cho and wongi lee](https://www.hexacon.fr/slides/cho_lee-utilizing_cross-cpu_allocation_to_exploit_preempt-disabled_linux_kernel.pdf) [slides] [cve-2023-31248] [[video](https://www.youtube.com/watch?v=dudu0lp35xu)] [cve-2024-36 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "a3788dc98bd94775",
      "item_id": "c333c586b131fd27",
      "slug": "2024-vulnerabilities-lpe-1day-vuln-dev-dirtycow-primary-db43b51d",
      "year": 2024,
      "title": "1day vuln dev: DirtyCOW",
      "item_title": "1day vuln dev: DirtyCOW",
      "authors": [],
      "cves": [
        "CVE-2016-5195"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=lQOiH-43zOc",
      "primary_url": "https://www.youtube.com/watch?v=lQOiH-43zOc",
      "parent_primary_url": "https://www.youtube.com/watch?v=lQOiH-43zOc",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-1day-vuln-dev-dirtycow-primary-db43b51d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 1day vuln dev: DirtyCOW record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: 1day vuln dev: DirtyCOW resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=lQOiH-43zOc parent_primary_url: https://www.youtube.com/watch?v=lQOiH-43zOc source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"1day vuln dev: DirtyCOW\"](https://www.youtube.com/watch?v=lQOiH-43zOc) [video] [CVE-2016-5195] cves: CVE-2016-5195 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=lQOiH-43zOc"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=lQOiH-43zOc"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "DirtyCOW"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "A video discussing the DirtyCOW vulnerability, a well-known Linux kernel exploit.",
      "summary_zh": "讨论DirtyCOW漏洞的一个视频，这是一个众所周知的Linux内核漏洞。",
      "source_markdown": "[2024: \"1day vuln dev: DirtyCOW\"](https://www.youtube.com/watch?v=lQOiH-43zOc) [video] [CVE-2016-5195]",
      "search_text": "1day vuln dev: dirtycow 1day vuln dev: dirtycow  cve-2016-5195  vulnerabilities lpe lpe primary video https://www.youtube.com/watch?v=lqoih-43zoc lpe dirtycow  vulnerability a video discussing the dirtycow vulnerability, a well-known linux kernel exploit. 讨论dirtycow漏洞的一个视频，这是一个众所周知的linux内核漏洞。 # 1day vuln dev: dirtycow record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: 1day vuln dev: dirtycow resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=lqoih-43zoc parent_primary_url: https://www.youtube.com/watch?v=lqoih-43zoc source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"1day vuln dev: dirtycow\"](https://www.youtube.com/watch?v=lqoih-43zoc) [video] [cve-2016-5195] cves: cve-2016-5195 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a81f455b80ebc185",
      "item_id": "ffc8c9077692f2b4",
      "slug": "2024-vulnerabilities-lpe-race-conditions-in-linux-kernel-perf-events-primary-5afc306d",
      "year": 2024,
      "title": "Race conditions in Linux Kernel perf events",
      "item_title": "Race conditions in Linux Kernel perf events",
      "authors": [],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/",
      "primary_url": "https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/",
      "parent_primary_url": "https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-race-conditions-in-linux-kernel-perf-events-primary-5afc306d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Race conditions in Linux Kernel perf events record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Race conditions in Linux Kernel perf events resource_label: primary resource_type: article resource_url: https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/ parent_primary_url: https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Race conditions in Linux Kernel perf events\"](https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/) [[code](https://github.com/Binary-Gecko/perf_PoC)] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/Binary-Gecko/perf_PoC"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/Binary-Gecko/perf_PoC"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Binary-Gecko/perf_PoC"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "race condition",
        "perf events"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article exploring race conditions in Linux Kernel perf events and their implications.",
      "summary_zh": "一篇探讨Linux内核性能事件中的竞争条件及其影响的文章。",
      "source_markdown": "[2024: \"Race conditions in Linux Kernel perf events\"](https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/) [[code](https://github.com/Binary-Gecko/perf_PoC)] [CVE-UNKNOWN]",
      "search_text": "race conditions in linux kernel perf events race conditions in linux kernel perf events  cve-unknown  vulnerabilities lpe lpe primary article https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/ lpe race condition perf events  vulnerability an article exploring race conditions in linux kernel perf events and their implications. 一篇探讨linux内核性能事件中的竞争条件及其影响的文章。 # race conditions in linux kernel perf events record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: race conditions in linux kernel perf events resource_label: primary resource_type: article resource_url: https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/ parent_primary_url: https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"race conditions in linux kernel perf events\"](https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/) [[code](https://github.com/binary-gecko/perf_poc)] [cve-unknown] cves: cve-unknown android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "078c01a174d47c35",
      "item_id": "ffc8c9077692f2b4",
      "slug": "2024-vulnerabilities-lpe-race-conditions-in-linux-kernel-perf-events-code-e654db74",
      "year": 2024,
      "title": "Race conditions in Linux Kernel perf events · code",
      "item_title": "Race conditions in Linux Kernel perf events",
      "authors": [],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/Binary-Gecko/perf_PoC",
      "primary_url": "https://github.com/Binary-Gecko/perf_PoC",
      "parent_primary_url": "https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-race-conditions-in-linux-kernel-perf-events-code-e654db74.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Race conditions in Linux Kernel perf events · code record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Race conditions in Linux Kernel perf events resource_label: code resource_type: code resource_url: https://github.com/Binary-Gecko/perf_PoC parent_primary_url: https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Race conditions in Linux Kernel perf events\"](https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/) [[code](https://github.com/Binary-Gecko/perf_PoC)] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_rea",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/Binary-Gecko/perf_PoC"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/Binary-Gecko/perf_PoC"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Binary-Gecko/perf_PoC"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "race condition",
        "perf events"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Code related to race conditions in Linux Kernel perf events, providing a proof of concept.",
      "summary_zh": "与Linux内核性能事件中的竞争条件相关的代码，提供了一个概念证明。",
      "source_markdown": "[2024: \"Race conditions in Linux Kernel perf events\"](https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/) [[code](https://github.com/Binary-Gecko/perf_PoC)] [CVE-UNKNOWN]",
      "search_text": "race conditions in linux kernel perf events · code race conditions in linux kernel perf events  cve-unknown  vulnerabilities lpe lpe code code https://github.com/binary-gecko/perf_poc lpe race condition perf events  vulnerability code related to race conditions in linux kernel perf events, providing a proof of concept. 与linux内核性能事件中的竞争条件相关的代码，提供了一个概念证明。 # race conditions in linux kernel perf events · code record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: race conditions in linux kernel perf events resource_label: code resource_type: code resource_url: https://github.com/binary-gecko/perf_poc parent_primary_url: https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"race conditions in linux kernel perf events\"](https://binarygecko.com/blog/race-conditions-in-linux-kernel-perf-events/) [[code](https://github.com/binary-gecko/perf_poc)] [cve-unknown] cves: cve-unknown android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_rea unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "160a163f137c6110",
      "item_id": "76ea0d38eed3f130",
      "slug": "2024-vulnerabilities-lpe-cve-2020-27786-race-condition-use-after-free-primary-ec837278",
      "year": 2024,
      "title": "CVE-2020-27786 (Race Condition + Use-After-Free)",
      "item_title": "CVE-2020-27786 (Race Condition + Use-After-Free)",
      "authors": [
        "ii4gsp"
      ],
      "cves": [
        "CVE-2020-27786"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ii4gsp.github.io/cve-2020-27786/",
      "primary_url": "https://ii4gsp.github.io/cve-2020-27786/",
      "parent_primary_url": "https://ii4gsp.github.io/cve-2020-27786/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-cve-2020-27786-race-condition-use-after-free-primary-ec837278.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2020-27786 (Race Condition + Use-After-Free) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2020-27786 (Race Condition + Use-After-Free) resource_label: primary resource_type: article resource_url: https://ii4gsp.github.io/cve-2020-27786/ parent_primary_url: https://ii4gsp.github.io/cve-2020-27786/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"CVE-2020-27786 (Race Condition + Use-After-Free)\" by ii4gsp](https://ii4gsp.github.io/cve-2020-27786/) [article] [CVE-2020-27786] cves: CVE-2020-27786 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_cod",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ii4gsp.github.io/cve-2020-27786/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ii4gsp.github.io/cve-2020-27786/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://ii4gsp.github.io/cve-2020-27786/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "race condition",
        "use-after-free"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article detailing CVE-2020-27786, which involves a race condition and use-after-free vulnerability.",
      "summary_zh": "一篇详细介绍CVE-2020-27786的文章，涉及竞争条件和使用后释放漏洞。",
      "source_markdown": "[2024: \"CVE-2020-27786 (Race Condition + Use-After-Free)\" by ii4gsp](https://ii4gsp.github.io/cve-2020-27786/) [article] [CVE-2020-27786]",
      "search_text": "cve-2020-27786 (race condition + use-after-free) cve-2020-27786 (race condition + use-after-free) ii4gsp cve-2020-27786  vulnerabilities lpe lpe primary article https://ii4gsp.github.io/cve-2020-27786/ lpe race condition use-after-free  vulnerability an article detailing cve-2020-27786, which involves a race condition and use-after-free vulnerability. 一篇详细介绍cve-2020-27786的文章，涉及竞争条件和使用后释放漏洞。 # cve-2020-27786 (race condition + use-after-free) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2020-27786 (race condition + use-after-free) resource_label: primary resource_type: article resource_url: https://ii4gsp.github.io/cve-2020-27786/ parent_primary_url: https://ii4gsp.github.io/cve-2020-27786/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"cve-2020-27786 (race condition + use-after-free)\" by ii4gsp](https://ii4gsp.github.io/cve-2020-27786/) [article] [cve-2020-27786] cves: cve-2020-27786 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_cod unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "acca7503b89cdfb9",
      "item_id": "63285f767b0ba2a6",
      "slug": "2024-vulnerabilities-lpe-gpuaf-using-a-general-gpu-exploit-tech-to-attack-pixel8-primary-2b82b3ee",
      "year": 2024,
      "title": "GPUAF Using a general GPU exploit tech to attack Pixel8",
      "item_title": "GPUAF Using a general GPU exploit tech to attack Pixel8",
      "authors": [
        "Pan Zhenpeng",
        "Jheng Bing Jhong"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://github.com/star-sg/OBO/blob/main/2024/Day%201/GPUAF%20-%20Using%20a%20general%20GPU%20exploit%20tech%20to%20attack%20Pixel8.pdf",
      "primary_url": "https://github.com/star-sg/OBO/blob/main/2024/Day%201/GPUAF%20-%20Using%20a%20general%20GPU%20exploit%20tech%20to%20attack%20Pixel8.pdf",
      "parent_primary_url": "https://github.com/star-sg/OBO/blob/main/2024/Day%201/GPUAF%20-%20Using%20a%20general%20GPU%20exploit%20tech%20to%20attack%20Pixel8.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-gpuaf-using-a-general-gpu-exploit-tech-to-attack-pixel8-primary-2b82b3ee.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# GPUAF Using a general GPU exploit tech to attack Pixel8 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: GPUAF Using a general GPU exploit tech to attack Pixel8 resource_label: primary resource_type: slides resource_url: https://github.com/star-sg/OBO/blob/main/2024/Day%201/GPUAF%20-%20Using%20a%20general%20GPU%20exploit%20tech%20to%20attack%20Pixel8.pdf parent_primary_url: https://github.com/star-sg/OBO/blob/main/2024/Day%201/GPUAF%20-%20Using%20a%20general%20GPU%20exploit%20tech%20to%20attack%20Pixel8.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"GPUAF Using a general GPU exploit tech to attack Pixel8\" by Pan Zhenpeng and Jheng Bing Jhong](https://github.com/star-sg/OBO/blob/main/2024/Day%201/GPUAF%20-%20Using%20a%20general%20GPU%20exploit%20tech%20to%20attack%20Pixel8.pdf) ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/star-sg/OBO/blob/main/2024/Day%201/GPUAF%20-%20Using%20a%20general%20GPU%20exploit%20tech%20to%20attack%20Pixel8.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Mw6iCqjOV9Q"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/star-sg/OBO/blob/main/2024/Day%201/GPUAF%20-%20Using%20a%20general%20GPU%20exploit%20tech%20to%20attack%20Pixel8.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Mw6iCqjOV9Q"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/star-sg/OBO/blob/main/2024/Day%201/GPUAF%20-%20Using%20a%20general%20GPU%20exploit%20tech%20to%20attack%20Pixel8.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "GPU",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Slides on a general GPU exploit technique targeting Pixel8 devices.",
      "summary_zh": "关于针对Pixel8设备的一般GPU利用技术的幻灯片。",
      "source_markdown": "[2024: \"GPUAF Using a general GPU exploit tech to attack Pixel8\" by Pan Zhenpeng and Jheng Bing Jhong](https://github.com/star-sg/OBO/blob/main/2024/Day%201/GPUAF%20-%20Using%20a%20general%20GPU%20exploit%20tech%20to%20attack%20Pixel8.pdf) [slides] [[video](https://www.youtube.com/watch?v=Mw6iCqjOV9Q)] [CVE-UNKNOWN]",
      "search_text": "gpuaf using a general gpu exploit tech to attack pixel8 gpuaf using a general gpu exploit tech to attack pixel8 pan zhenpeng jheng bing jhong cve-unknown  vulnerabilities lpe lpe primary slides https://github.com/star-sg/obo/blob/main/2024/day%201/gpuaf%20-%20using%20a%20general%20gpu%20exploit%20tech%20to%20attack%20pixel8.pdf lpe gpu exploitation  vulnerability slides on a general gpu exploit technique targeting pixel8 devices. 关于针对pixel8设备的一般gpu利用技术的幻灯片。 # gpuaf using a general gpu exploit tech to attack pixel8 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: gpuaf using a general gpu exploit tech to attack pixel8 resource_label: primary resource_type: slides resource_url: https://github.com/star-sg/obo/blob/main/2024/day%201/gpuaf%20-%20using%20a%20general%20gpu%20exploit%20tech%20to%20attack%20pixel8.pdf parent_primary_url: https://github.com/star-sg/obo/blob/main/2024/day%201/gpuaf%20-%20using%20a%20general%20gpu%20exploit%20tech%20to%20attack%20pixel8.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"gpuaf using a general gpu exploit tech to attack pixel8\" by pan zhenpeng and jheng bing jhong](https://github.com/star-sg/obo/blob/main/2024/day%201/gpuaf%20-%20using%20a%20general%20gpu%20exploit%20tech%20to%20attack%20pixel8.pdf)  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "64b51510ff2b96a3",
      "item_id": "63285f767b0ba2a6",
      "slug": "2024-vulnerabilities-lpe-gpuaf-using-a-general-gpu-exploit-tech-to-attack-pixel8-video-4f7b0012",
      "year": 2024,
      "title": "GPUAF Using a general GPU exploit tech to attack Pixel8 · video",
      "item_title": "GPUAF Using a general GPU exploit tech to attack Pixel8",
      "authors": [
        "Pan Zhenpeng",
        "Jheng Bing Jhong"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=Mw6iCqjOV9Q",
      "primary_url": "https://www.youtube.com/watch?v=Mw6iCqjOV9Q",
      "parent_primary_url": "https://github.com/star-sg/OBO/blob/main/2024/Day%201/GPUAF%20-%20Using%20a%20general%20GPU%20exploit%20tech%20to%20attack%20Pixel8.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-gpuaf-using-a-general-gpu-exploit-tech-to-attack-pixel8-video-4f7b0012.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# GPUAF Using a general GPU exploit tech to attack Pixel8 · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: GPUAF Using a general GPU exploit tech to attack Pixel8 resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=Mw6iCqjOV9Q parent_primary_url: https://github.com/star-sg/OBO/blob/main/2024/Day%201/GPUAF%20-%20Using%20a%20general%20GPU%20exploit%20tech%20to%20attack%20Pixel8.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"GPUAF Using a general GPU exploit tech to attack Pixel8\" by Pan Zhenpeng and Jheng Bing Jhong](https://github.com/star-sg/OBO/blob/main/2024/Day%201/GPUAF%20-%20Using%20a%20general%20GPU%20exploit%20tech%20to%20attack%20Pixel8.pdf) [slides] [[video](https://www.youtube.com/watch?v=Mw6iCqjOV9Q)] [CVE-UNKNOWN] cves: CVE",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/star-sg/OBO/blob/main/2024/Day%201/GPUAF%20-%20Using%20a%20general%20GPU%20exploit%20tech%20to%20attack%20Pixel8.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Mw6iCqjOV9Q"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/star-sg/OBO/blob/main/2024/Day%201/GPUAF%20-%20Using%20a%20general%20GPU%20exploit%20tech%20to%20attack%20Pixel8.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Mw6iCqjOV9Q"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/star-sg/OBO/blob/main/2024/Day%201/GPUAF%20-%20Using%20a%20general%20GPU%20exploit%20tech%20to%20attack%20Pixel8.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "GPU",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "A video presentation on exploiting GPU vulnerabilities in Pixel8 devices.",
      "summary_zh": "关于在Pixel8设备中利用GPU漏洞的视频演示。",
      "source_markdown": "[2024: \"GPUAF Using a general GPU exploit tech to attack Pixel8\" by Pan Zhenpeng and Jheng Bing Jhong](https://github.com/star-sg/OBO/blob/main/2024/Day%201/GPUAF%20-%20Using%20a%20general%20GPU%20exploit%20tech%20to%20attack%20Pixel8.pdf) [slides] [[video](https://www.youtube.com/watch?v=Mw6iCqjOV9Q)] [CVE-UNKNOWN]",
      "search_text": "gpuaf using a general gpu exploit tech to attack pixel8 · video gpuaf using a general gpu exploit tech to attack pixel8 pan zhenpeng jheng bing jhong cve-unknown  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=mw6icqjov9q lpe gpu exploitation  vulnerability a video presentation on exploiting gpu vulnerabilities in pixel8 devices. 关于在pixel8设备中利用gpu漏洞的视频演示。 # gpuaf using a general gpu exploit tech to attack pixel8 · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: gpuaf using a general gpu exploit tech to attack pixel8 resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=mw6icqjov9q parent_primary_url: https://github.com/star-sg/obo/blob/main/2024/day%201/gpuaf%20-%20using%20a%20general%20gpu%20exploit%20tech%20to%20attack%20pixel8.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"gpuaf using a general gpu exploit tech to attack pixel8\" by pan zhenpeng and jheng bing jhong](https://github.com/star-sg/obo/blob/main/2024/day%201/gpuaf%20-%20using%20a%20general%20gpu%20exploit%20tech%20to%20attack%20pixel8.pdf) [slides] [[video](https://www.youtube.com/watch?v=mw6icqjov9q)] [cve-unknown] cves: cve unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "cf7ef6531e6c30e2",
      "item_id": "5e2874329f6584c7",
      "slug": "2024-vulnerabilities-lpe-linux-kernel-taprio-oob-primary-0f233e8a",
      "year": 2024,
      "title": "Linux Kernel taprio OOB",
      "item_title": "Linux Kernel taprio OOB",
      "authors": [],
      "cves": [
        "CVE-2024-36974"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-taprio-oob/",
      "primary_url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-taprio-oob/",
      "parent_primary_url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-taprio-oob/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-linux-kernel-taprio-oob-primary-0f233e8a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel taprio OOB record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux Kernel taprio OOB resource_label: primary resource_type: article resource_url: https://ssd-disclosure.com/ssd-advisory-linux-kernel-taprio-oob/ parent_primary_url: https://ssd-disclosure.com/ssd-advisory-linux-kernel-taprio-oob/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Linux Kernel taprio OOB\"](https://ssd-disclosure.com/ssd-advisory-linux-kernel-taprio-oob/) [article] [CVE-2024-36974] cves: CVE-2024-36974 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-taprio-oob/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-taprio-oob/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "out-of-bounds"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article discussing an out-of-bounds vulnerability in the Linux Kernel taprio subsystem.",
      "summary_zh": "一篇讨论Linux内核taprio子系统中的越界漏洞的文章。",
      "source_markdown": "[2024: \"Linux Kernel taprio OOB\"](https://ssd-disclosure.com/ssd-advisory-linux-kernel-taprio-oob/) [article] [CVE-2024-36974]",
      "search_text": "linux kernel taprio oob linux kernel taprio oob  cve-2024-36974  vulnerabilities lpe lpe primary article https://ssd-disclosure.com/ssd-advisory-linux-kernel-taprio-oob/ lpe out-of-bounds  vulnerability an article discussing an out-of-bounds vulnerability in the linux kernel taprio subsystem. 一篇讨论linux内核taprio子系统中的越界漏洞的文章。 # linux kernel taprio oob record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel taprio oob resource_label: primary resource_type: article resource_url: https://ssd-disclosure.com/ssd-advisory-linux-kernel-taprio-oob/ parent_primary_url: https://ssd-disclosure.com/ssd-advisory-linux-kernel-taprio-oob/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"linux kernel taprio oob\"](https://ssd-disclosure.com/ssd-advisory-linux-kernel-taprio-oob/) [article] [cve-2024-36974] cves: cve-2024-36974 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "eaef855ee0c82ee1",
      "item_id": "e5e485388473c3be",
      "slug": "2024-vulnerabilities-lpe-cve-2022-22265-samsung-npu-driver-primary-8f0a03ba",
      "year": 2024,
      "title": "CVE-2022-22265 Samsung npu driver",
      "item_title": "CVE-2022-22265 Samsung npu driver",
      "authors": [
        "Javier P Rufo"
      ],
      "cves": [
        "CVE-2022-22265"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://soez.github.io/posts/CVE-2022-22265-Samsung-npu-driver/",
      "primary_url": "https://soez.github.io/posts/CVE-2022-22265-Samsung-npu-driver/",
      "parent_primary_url": "https://soez.github.io/posts/CVE-2022-22265-Samsung-npu-driver/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-cve-2022-22265-samsung-npu-driver-primary-8f0a03ba.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2022-22265 Samsung npu driver record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2022-22265 Samsung npu driver resource_label: primary resource_type: article resource_url: https://soez.github.io/posts/CVE-2022-22265-Samsung-npu-driver/ parent_primary_url: https://soez.github.io/posts/CVE-2022-22265-Samsung-npu-driver/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"CVE-2022-22265 Samsung npu driver\" by Javier P Rufo](https://soez.github.io/posts/CVE-2022-22265-Samsung-npu-driver/) [article] [CVE-2022-22265] cves: CVE-2022-22265 android_impact_status: yes android_impact_reason: mentions an Android OEM/device family ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://soez.github.io/posts/CVE-2022-22265-Samsung-npu-driver/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://soez.github.io/posts/CVE-2022-22265-Samsung-npu-driver/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://soez.github.io/posts/CVE-2022-22265-Samsung-npu-driver/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions an Android OEM/device family",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Samsung",
        "driver"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article detailing CVE-2022-22265, a vulnerability in the Samsung npu driver.",
      "summary_zh": "一篇详细介绍CVE-2022-22265的文章，这是一个三星npu驱动程序中的漏洞。",
      "source_markdown": "[2024: \"CVE-2022-22265 Samsung npu driver\" by Javier P Rufo](https://soez.github.io/posts/CVE-2022-22265-Samsung-npu-driver/) [article] [CVE-2022-22265]",
      "search_text": "cve-2022-22265 samsung npu driver cve-2022-22265 samsung npu driver javier p rufo cve-2022-22265  vulnerabilities lpe lpe primary article https://soez.github.io/posts/cve-2022-22265-samsung-npu-driver/ lpe samsung driver  vulnerability an article detailing cve-2022-22265, a vulnerability in the samsung npu driver. 一篇详细介绍cve-2022-22265的文章，这是一个三星npu驱动程序中的漏洞。 # cve-2022-22265 samsung npu driver record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2022-22265 samsung npu driver resource_label: primary resource_type: article resource_url: https://soez.github.io/posts/cve-2022-22265-samsung-npu-driver/ parent_primary_url: https://soez.github.io/posts/cve-2022-22265-samsung-npu-driver/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"cve-2022-22265 samsung npu driver\" by javier p rufo](https://soez.github.io/posts/cve-2022-22265-samsung-npu-driver/) [article] [cve-2022-22265] cves: cve-2022-22265 android_impact_status: yes android_impact_reason: mentions an android oem/device family ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_ yes mentions an android oem/device family no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "1367eee36ad37280",
      "item_id": "87665b6d12c926cf",
      "slug": "2024-vulnerabilities-lpe-the-way-to-android-root-exploiting-your-gpu-on-smartphone-primary-7b2f014c",
      "year": 2024,
      "title": "The Way to Android Root: Exploiting Your GPU On Smartphone",
      "item_title": "The Way to Android Root: Exploiting Your GPU On Smartphone",
      "authors": [
        "Xiling Gong",
        "Xuan Xing",
        "and Eugene Rodionov"
      ],
      "cves": [
        "CVE-2024-23380"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/BH-US-24/Presentations/REVISED02-US24-Gong-The-Way-to-Android-Root-Wednesday.pdf",
      "primary_url": "https://i.blackhat.com/BH-US-24/Presentations/REVISED02-US24-Gong-The-Way-to-Android-Root-Wednesday.pdf",
      "parent_primary_url": "https://i.blackhat.com/BH-US-24/Presentations/REVISED02-US24-Gong-The-Way-to-Android-Root-Wednesday.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-the-way-to-android-root-exploiting-your-gpu-on-smartphone-primary-7b2f014c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Way to Android Root: Exploiting Your GPU On Smartphone record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The Way to Android Root: Exploiting Your GPU On Smartphone resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/BH-US-24/Presentations/REVISED02-US24-Gong-The-Way-to-Android-Root-Wednesday.pdf parent_primary_url: https://i.blackhat.com/BH-US-24/Presentations/REVISED02-US24-Gong-The-Way-to-Android-Root-Wednesday.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"The Way to Android Root: Exploiting Your GPU On Smartphone\" by Xiling Gong, Xuan Xing, and Eugene Rodionov](https://i.blackhat.com/BH-US-24/Presentations/REVISED02-US24-Gong-The-Way-to-Android-Root-Wednesday.pdf) [slides] [[video](https://www.youtube.com/watch?v=BN07rjaNqXk)] [CVE-2024-233",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/BH-US-24/Presentations/REVISED02-US24-Gong-The-Way-to-Android-Root-Wednesday.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=BN07rjaNqXk"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/BH-US-24/Presentations/REVISED02-US24-Gong-The-Way-to-Android-Root-Wednesday.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=BN07rjaNqXk"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "GPU",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Slides on exploiting GPU vulnerabilities for Android root access.",
      "summary_zh": "关于利用GPU漏洞获取Android根访问权限的幻灯片。",
      "source_markdown": "[2024: \"The Way to Android Root: Exploiting Your GPU On Smartphone\" by Xiling Gong, Xuan Xing, and Eugene Rodionov](https://i.blackhat.com/BH-US-24/Presentations/REVISED02-US24-Gong-The-Way-to-Android-Root-Wednesday.pdf) [slides] [[video](https://www.youtube.com/watch?v=BN07rjaNqXk)] [CVE-2024-23380]",
      "search_text": "the way to android root: exploiting your gpu on smartphone the way to android root: exploiting your gpu on smartphone xiling gong xuan xing and eugene rodionov cve-2024-23380  vulnerabilities lpe lpe primary slides https://i.blackhat.com/bh-us-24/presentations/revised02-us24-gong-the-way-to-android-root-wednesday.pdf lpe gpu android  vulnerability slides on exploiting gpu vulnerabilities for android root access. 关于利用gpu漏洞获取android根访问权限的幻灯片。 # the way to android root: exploiting your gpu on smartphone record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the way to android root: exploiting your gpu on smartphone resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/bh-us-24/presentations/revised02-us24-gong-the-way-to-android-root-wednesday.pdf parent_primary_url: https://i.blackhat.com/bh-us-24/presentations/revised02-us24-gong-the-way-to-android-root-wednesday.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"the way to android root: exploiting your gpu on smartphone\" by xiling gong, xuan xing, and eugene rodionov](https://i.blackhat.com/bh-us-24/presentations/revised02-us24-gong-the-way-to-android-root-wednesday.pdf) [slides] [[video](https://www.youtube.com/watch?v=bn07rjanqxk)] [cve-2024-233 yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "94fd58dc7e00651c",
      "item_id": "87665b6d12c926cf",
      "slug": "2024-vulnerabilities-lpe-the-way-to-android-root-exploiting-your-gpu-on-smartphone-video-38fcd836",
      "year": 2024,
      "title": "The Way to Android Root: Exploiting Your GPU On Smartphone · video",
      "item_title": "The Way to Android Root: Exploiting Your GPU On Smartphone",
      "authors": [
        "Xiling Gong",
        "Xuan Xing",
        "and Eugene Rodionov"
      ],
      "cves": [
        "CVE-2024-23380"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=BN07rjaNqXk",
      "primary_url": "https://www.youtube.com/watch?v=BN07rjaNqXk",
      "parent_primary_url": "https://i.blackhat.com/BH-US-24/Presentations/REVISED02-US24-Gong-The-Way-to-Android-Root-Wednesday.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-the-way-to-android-root-exploiting-your-gpu-on-smartphone-video-38fcd836.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Way to Android Root: Exploiting Your GPU On Smartphone · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The Way to Android Root: Exploiting Your GPU On Smartphone resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=BN07rjaNqXk parent_primary_url: https://i.blackhat.com/BH-US-24/Presentations/REVISED02-US24-Gong-The-Way-to-Android-Root-Wednesday.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"The Way to Android Root: Exploiting Your GPU On Smartphone\" by Xiling Gong, Xuan Xing, and Eugene Rodionov](https://i.blackhat.com/BH-US-24/Presentations/REVISED02-US24-Gong-The-Way-to-Android-Root-Wednesday.pdf) [slides] [[video](https://www.youtube.com/watch?v=BN07rjaNqXk)] [CVE-2024-23380] cves: CVE-2024-23380 android_impact_status: yes and",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/BH-US-24/Presentations/REVISED02-US24-Gong-The-Way-to-Android-Root-Wednesday.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=BN07rjaNqXk"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/BH-US-24/Presentations/REVISED02-US24-Gong-The-Way-to-Android-Root-Wednesday.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=BN07rjaNqXk"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "GPU",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "A video presentation on exploiting GPU vulnerabilities for Android root access.",
      "summary_zh": "关于利用GPU漏洞获取Android根访问权限的视频演示。",
      "source_markdown": "[2024: \"The Way to Android Root: Exploiting Your GPU On Smartphone\" by Xiling Gong, Xuan Xing, and Eugene Rodionov](https://i.blackhat.com/BH-US-24/Presentations/REVISED02-US24-Gong-The-Way-to-Android-Root-Wednesday.pdf) [slides] [[video](https://www.youtube.com/watch?v=BN07rjaNqXk)] [CVE-2024-23380]",
      "search_text": "the way to android root: exploiting your gpu on smartphone · video the way to android root: exploiting your gpu on smartphone xiling gong xuan xing and eugene rodionov cve-2024-23380  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=bn07rjanqxk lpe gpu android  vulnerability a video presentation on exploiting gpu vulnerabilities for android root access. 关于利用gpu漏洞获取android根访问权限的视频演示。 # the way to android root: exploiting your gpu on smartphone · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the way to android root: exploiting your gpu on smartphone resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=bn07rjanqxk parent_primary_url: https://i.blackhat.com/bh-us-24/presentations/revised02-us24-gong-the-way-to-android-root-wednesday.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"the way to android root: exploiting your gpu on smartphone\" by xiling gong, xuan xing, and eugene rodionov](https://i.blackhat.com/bh-us-24/presentations/revised02-us24-gong-the-way-to-android-root-wednesday.pdf) [slides] [[video](https://www.youtube.com/watch?v=bn07rjanqxk)] [cve-2024-23380] cves: cve-2024-23380 android_impact_status: yes and yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "8f99e145241c70bb",
      "item_id": "a0f3eb9300e36922",
      "slug": "2024-vulnerabilities-lpe-clash-burn-and-exploit-manipulate-filters-to-pwn-kernelctf-primary-27bab9de",
      "year": 2024,
      "title": "Clash, Burn, and Exploit: Manipulate Filters to Pwn kernelCTF",
      "item_title": "Clash, Burn, and Exploit: Manipulate Filters to Pwn kernelCTF",
      "authors": [
        "HexRabbit"
      ],
      "cves": [
        "CVE-2024-26925"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://media.defcon.org/DEF%20CON%2032/DEF%20CON%2032%20presentations/DEF%20CON%2032%20-%20HexRabbit%20Chen%20-%20Clash%2C%20Burn%2C%20and%20Exploit%20-%20Manipulate%20Filters%20to%20Pwn%20kernelCTF.pdf",
      "primary_url": "https://media.defcon.org/DEF%20CON%2032/DEF%20CON%2032%20presentations/DEF%20CON%2032%20-%20HexRabbit%20Chen%20-%20Clash%2C%20Burn%2C%20and%20Exploit%20-%20Manipulate%20Filters%20to%20Pwn%20kernelCTF.pdf",
      "parent_primary_url": "https://media.defcon.org/DEF%20CON%2032/DEF%20CON%2032%20presentations/DEF%20CON%2032%20-%20HexRabbit%20Chen%20-%20Clash%2C%20Burn%2C%20and%20Exploit%20-%20Manipulate%20Filters%20to%20Pwn%20kernelCTF.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-clash-burn-and-exploit-manipulate-filters-to-pwn-kernelctf-primary-27bab9de.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Clash, Burn, and Exploit: Manipulate Filters to Pwn kernelCTF record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Clash, Burn, and Exploit: Manipulate Filters to Pwn kernelCTF resource_label: primary resource_type: slides resource_url: https://media.defcon.org/DEF%20CON%2032/DEF%20CON%2032%20presentations/DEF%20CON%2032%20-%20HexRabbit%20Chen%20-%20Clash%2C%20Burn%2C%20and%20Exploit%20-%20Manipulate%20Filters%20to%20Pwn%20kernelCTF.pdf parent_primary_url: https://media.defcon.org/DEF%20CON%2032/DEF%20CON%2032%20presentations/DEF%20CON%2032%20-%20HexRabbit%20Chen%20-%20Clash%2C%20Burn%2C%20and%20Exploit%20-%20Manipulate%20Filters%20to%20Pwn%20kernelCTF.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Clash, Burn, and Exploit: Manipulate Filters to Pwn kernelCTF\" by HexRabbit](https:/",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://media.defcon.org/DEF%20CON%2032/DEF%20CON%2032%20presentations/DEF%20CON%2032%20-%20HexRabbit%20Chen%20-%20Clash%2C%20Burn%2C%20and%20Exploit%20-%20Manipulate%20Filters%20to%20Pwn%20kernelCTF.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=_1DTkkaNqfM"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://media.defcon.org/DEF%20CON%2032/DEF%20CON%2032%20presentations/DEF%20CON%2032%20-%20HexRabbit%20Chen%20-%20Clash%2C%20Burn%2C%20and%20Exploit%20-%20Manipulate%20Filters%20to%20Pwn%20kernelCTF.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=_1DTkkaNqfM"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://media.defcon.org/DEF%20CON%2032/DEF%20CON%2032%20presentations/DEF%20CON%2032%20-%20HexRabbit%20Chen%20-%20Clash%2C%20Burn%2C%20and%20Exploit%20-%20Manipulate%20Filters%20to%20Pwn%20kernelCTF.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "filter manipulation"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Slides discussing manipulation of filters to exploit kernelCTF challenges.",
      "summary_zh": "讨论操纵过滤器以利用kernelCTF挑战的幻灯片。",
      "source_markdown": "[2024: \"Clash, Burn, and Exploit: Manipulate Filters to Pwn kernelCTF\" by HexRabbit](https://media.defcon.org/DEF%20CON%2032/DEF%20CON%2032%20presentations/DEF%20CON%2032%20-%20HexRabbit%20Chen%20-%20Clash%2C%20Burn%2C%20and%20Exploit%20-%20Manipulate%20Filters%20to%20Pwn%20kernelCTF.pdf) [slides] [[video](https://www.youtube.com/watch?v=_1DTkkaNqfM)] [CVE-2024-26925]",
      "search_text": "clash, burn, and exploit: manipulate filters to pwn kernelctf clash, burn, and exploit: manipulate filters to pwn kernelctf hexrabbit cve-2024-26925  vulnerabilities lpe lpe primary slides https://media.defcon.org/def%20con%2032/def%20con%2032%20presentations/def%20con%2032%20-%20hexrabbit%20chen%20-%20clash%2c%20burn%2c%20and%20exploit%20-%20manipulate%20filters%20to%20pwn%20kernelctf.pdf lpe filter manipulation  vulnerability slides discussing manipulation of filters to exploit kernelctf challenges. 讨论操纵过滤器以利用kernelctf挑战的幻灯片。 # clash, burn, and exploit: manipulate filters to pwn kernelctf record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: clash, burn, and exploit: manipulate filters to pwn kernelctf resource_label: primary resource_type: slides resource_url: https://media.defcon.org/def%20con%2032/def%20con%2032%20presentations/def%20con%2032%20-%20hexrabbit%20chen%20-%20clash%2c%20burn%2c%20and%20exploit%20-%20manipulate%20filters%20to%20pwn%20kernelctf.pdf parent_primary_url: https://media.defcon.org/def%20con%2032/def%20con%2032%20presentations/def%20con%2032%20-%20hexrabbit%20chen%20-%20clash%2c%20burn%2c%20and%20exploit%20-%20manipulate%20filters%20to%20pwn%20kernelctf.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"clash, burn, and exploit: manipulate filters to pwn kernelctf\" by hexrabbit](https:/ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "f7c41fce9cae6fb7",
      "item_id": "a0f3eb9300e36922",
      "slug": "2024-vulnerabilities-lpe-clash-burn-and-exploit-manipulate-filters-to-pwn-kernelctf-video-05d98192",
      "year": 2024,
      "title": "Clash, Burn, and Exploit: Manipulate Filters to Pwn kernelCTF · video",
      "item_title": "Clash, Burn, and Exploit: Manipulate Filters to Pwn kernelCTF",
      "authors": [
        "HexRabbit"
      ],
      "cves": [
        "CVE-2024-26925"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=_1DTkkaNqfM",
      "primary_url": "https://www.youtube.com/watch?v=_1DTkkaNqfM",
      "parent_primary_url": "https://media.defcon.org/DEF%20CON%2032/DEF%20CON%2032%20presentations/DEF%20CON%2032%20-%20HexRabbit%20Chen%20-%20Clash%2C%20Burn%2C%20and%20Exploit%20-%20Manipulate%20Filters%20to%20Pwn%20kernelCTF.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-clash-burn-and-exploit-manipulate-filters-to-pwn-kernelctf-video-05d98192.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Clash, Burn, and Exploit: Manipulate Filters to Pwn kernelCTF · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Clash, Burn, and Exploit: Manipulate Filters to Pwn kernelCTF resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=_1DTkkaNqfM parent_primary_url: https://media.defcon.org/DEF%20CON%2032/DEF%20CON%2032%20presentations/DEF%20CON%2032%20-%20HexRabbit%20Chen%20-%20Clash%2C%20Burn%2C%20and%20Exploit%20-%20Manipulate%20Filters%20to%20Pwn%20kernelCTF.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Clash, Burn, and Exploit: Manipulate Filters to Pwn kernelCTF\" by HexRabbit](https://media.defcon.org/DEF%20CON%2032/DEF%20CON%2032%20presentations/DEF%20CON%2032%20-%20HexRabbit%20Chen%20-%20Clash%2C%20Burn%2C%20and%20Exploit%20-%20Manipu",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://media.defcon.org/DEF%20CON%2032/DEF%20CON%2032%20presentations/DEF%20CON%2032%20-%20HexRabbit%20Chen%20-%20Clash%2C%20Burn%2C%20and%20Exploit%20-%20Manipulate%20Filters%20to%20Pwn%20kernelCTF.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=_1DTkkaNqfM"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://media.defcon.org/DEF%20CON%2032/DEF%20CON%2032%20presentations/DEF%20CON%2032%20-%20HexRabbit%20Chen%20-%20Clash%2C%20Burn%2C%20and%20Exploit%20-%20Manipulate%20Filters%20to%20Pwn%20kernelCTF.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=_1DTkkaNqfM"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://media.defcon.org/DEF%20CON%2032/DEF%20CON%2032%20presentations/DEF%20CON%2032%20-%20HexRabbit%20Chen%20-%20Clash%2C%20Burn%2C%20and%20Exploit%20-%20Manipulate%20Filters%20to%20Pwn%20kernelCTF.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "filter manipulation"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "A video presentation on manipulating filters to exploit kernelCTF challenges.",
      "summary_zh": "关于操纵过滤器以利用kernelCTF挑战的视频演示。",
      "source_markdown": "[2024: \"Clash, Burn, and Exploit: Manipulate Filters to Pwn kernelCTF\" by HexRabbit](https://media.defcon.org/DEF%20CON%2032/DEF%20CON%2032%20presentations/DEF%20CON%2032%20-%20HexRabbit%20Chen%20-%20Clash%2C%20Burn%2C%20and%20Exploit%20-%20Manipulate%20Filters%20to%20Pwn%20kernelCTF.pdf) [slides] [[video](https://www.youtube.com/watch?v=_1DTkkaNqfM)] [CVE-2024-26925]",
      "search_text": "clash, burn, and exploit: manipulate filters to pwn kernelctf · video clash, burn, and exploit: manipulate filters to pwn kernelctf hexrabbit cve-2024-26925  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=_1dtkkanqfm lpe filter manipulation  vulnerability a video presentation on manipulating filters to exploit kernelctf challenges. 关于操纵过滤器以利用kernelctf挑战的视频演示。 # clash, burn, and exploit: manipulate filters to pwn kernelctf · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: clash, burn, and exploit: manipulate filters to pwn kernelctf resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=_1dtkkanqfm parent_primary_url: https://media.defcon.org/def%20con%2032/def%20con%2032%20presentations/def%20con%2032%20-%20hexrabbit%20chen%20-%20clash%2c%20burn%2c%20and%20exploit%20-%20manipulate%20filters%20to%20pwn%20kernelctf.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"clash, burn, and exploit: manipulate filters to pwn kernelctf\" by hexrabbit](https://media.defcon.org/def%20con%2032/def%20con%2032%20presentations/def%20con%2032%20-%20hexrabbit%20chen%20-%20clash%2c%20burn%2c%20and%20exploit%20-%20manipu unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "b67377f16d53e3fd",
      "item_id": "c690a51a62555111",
      "slug": "2024-vulnerabilities-lpe-a-deep-dive-into-cve-2023-2163-how-we-found-and-fixed-an-ebpf-linux-kernel-vulnerabil",
      "year": 2024,
      "title": "A deep dive into CVE-2023-2163: How we found and fixed an eBPF Linux Kernel Vulnerability",
      "item_title": "A deep dive into CVE-2023-2163: How we found and fixed an eBPF Linux Kernel Vulnerability",
      "authors": [
        "Juan Jose Lopez Jaimez",
        "Meador Inge"
      ],
      "cves": [
        "CVE-2023-2163"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://bughunters.google.com/blog/6303226026131456/a-deep-dive-into-cve-2023-2163-how-we-found-and-fixed-an-ebpf-linux-kernel-vulnerability",
      "primary_url": "https://bughunters.google.com/blog/6303226026131456/a-deep-dive-into-cve-2023-2163-how-we-found-and-fixed-an-ebpf-linux-kernel-vulnerability",
      "parent_primary_url": "https://bughunters.google.com/blog/6303226026131456/a-deep-dive-into-cve-2023-2163-how-we-found-and-fixed-an-ebpf-linux-kernel-vulnerability",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-a-deep-dive-into-cve-2023-2163-how-we-found-and-fixed-an-ebpf-linux-kernel-vulnerabil.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A deep dive into CVE-2023-2163: How we found and fixed an eBPF Linux Kernel Vulnerability record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: A deep dive into CVE-2023-2163: How we found and fixed an eBPF Linux Kernel Vulnerability resource_label: primary resource_type: article resource_url: https://bughunters.google.com/blog/6303226026131456/a-deep-dive-into-cve-2023-2163-how-we-found-and-fixed-an-ebpf-linux-kernel-vulnerability parent_primary_url: https://bughunters.google.com/blog/6303226026131456/a-deep-dive-into-cve-2023-2163-how-we-found-and-fixed-an-ebpf-linux-kernel-vulnerability source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"A deep dive into CVE-2023-2163: How we found and fixed an eBPF Linux Kernel Vulnerability\" by Juan Jose Lopez Jaimez and Meador Inge](https://bughunters.",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://bughunters.google.com/blog/6303226026131456/a-deep-dive-into-cve-2023-2163-how-we-found-and-fixed-an-ebpf-linux-kernel-vulnerability"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://bughunters.google.com/blog/6303226026131456/a-deep-dive-into-cve-2023-2163-how-we-found-and-fixed-an-ebpf-linux-kernel-vulnerability"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "eBPF"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article providing a deep dive into CVE-2023-2163, an eBPF Linux Kernel vulnerability.",
      "summary_zh": "一篇深入探讨CVE-2023-2163的文章，这是一个eBPF Linux内核漏洞。",
      "source_markdown": "[2024: \"A deep dive into CVE-2023-2163: How we found and fixed an eBPF Linux Kernel Vulnerability\" by Juan Jose Lopez Jaimez and Meador Inge](https://bughunters.google.com/blog/6303226026131456/a-deep-dive-into-cve-2023-2163-how-we-found-and-fixed-an-ebpf-linux-kernel-vulnerability) [article] [CVE-2023-2163]",
      "search_text": "a deep dive into cve-2023-2163: how we found and fixed an ebpf linux kernel vulnerability a deep dive into cve-2023-2163: how we found and fixed an ebpf linux kernel vulnerability juan jose lopez jaimez meador inge cve-2023-2163  vulnerabilities lpe lpe primary article https://bughunters.google.com/blog/6303226026131456/a-deep-dive-into-cve-2023-2163-how-we-found-and-fixed-an-ebpf-linux-kernel-vulnerability lpe ebpf  vulnerability an article providing a deep dive into cve-2023-2163, an ebpf linux kernel vulnerability. 一篇深入探讨cve-2023-2163的文章，这是一个ebpf linux内核漏洞。 # a deep dive into cve-2023-2163: how we found and fixed an ebpf linux kernel vulnerability record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: a deep dive into cve-2023-2163: how we found and fixed an ebpf linux kernel vulnerability resource_label: primary resource_type: article resource_url: https://bughunters.google.com/blog/6303226026131456/a-deep-dive-into-cve-2023-2163-how-we-found-and-fixed-an-ebpf-linux-kernel-vulnerability parent_primary_url: https://bughunters.google.com/blog/6303226026131456/a-deep-dive-into-cve-2023-2163-how-we-found-and-fixed-an-ebpf-linux-kernel-vulnerability source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"a deep dive into cve-2023-2163: how we found and fixed an ebpf linux kernel vulnerability\" by juan jose lopez jaimez and meador inge](https://bughunters. unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "84b99b68523ae0f9",
      "item_id": "d53cdd768f905edc",
      "slug": "2024-vulnerabilities-lpe-vulnerability-in-the-ebpf-verifier-register-limit-tracking-primary-32390534",
      "year": 2024,
      "title": "Vulnerability in the eBPF verifier register limit tracking",
      "item_title": "Vulnerability in the eBPF verifier register limit tracking",
      "authors": [
        "Juan Jose Lopez Jaimez"
      ],
      "cves": [
        "CVE-2024-41003"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/google/security-research/security/advisories/GHSA-hfqc-63c7-rj9f",
      "primary_url": "https://github.com/google/security-research/security/advisories/GHSA-hfqc-63c7-rj9f",
      "parent_primary_url": "https://github.com/google/security-research/security/advisories/GHSA-hfqc-63c7-rj9f",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-vulnerability-in-the-ebpf-verifier-register-limit-tracking-primary-32390534.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Vulnerability in the eBPF verifier register limit tracking record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Vulnerability in the eBPF verifier register limit tracking resource_label: primary resource_type: code resource_url: https://github.com/google/security-research/security/advisories/GHSA-hfqc-63c7-rj9f parent_primary_url: https://github.com/google/security-research/security/advisories/GHSA-hfqc-63c7-rj9f source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Vulnerability in the eBPF verifier register limit tracking\" by Juan Jose Lopez Jaimez](https://github.com/google/security-research/security/advisories/GHSA-hfqc-63c7-rj9f) [CVE-2024-41003] cves: CVE-2024-41003 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact ",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-hfqc-63c7-rj9f"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-hfqc-63c7-rj9f"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/security-research/security/advisories/GHSA-hfqc-63c7-rj9f"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "eBPF",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Code related to a vulnerability in the eBPF verifier register limit tracking.",
      "summary_zh": "与eBPF验证器寄存器限制跟踪中的漏洞相关的代码。",
      "source_markdown": "[2024: \"Vulnerability in the eBPF verifier register limit tracking\" by Juan Jose Lopez Jaimez](https://github.com/google/security-research/security/advisories/GHSA-hfqc-63c7-rj9f) [CVE-2024-41003]",
      "search_text": "vulnerability in the ebpf verifier register limit tracking vulnerability in the ebpf verifier register limit tracking juan jose lopez jaimez cve-2024-41003  vulnerabilities lpe lpe primary code https://github.com/google/security-research/security/advisories/ghsa-hfqc-63c7-rj9f lpe ebpf code  vulnerability code related to a vulnerability in the ebpf verifier register limit tracking. 与ebpf验证器寄存器限制跟踪中的漏洞相关的代码。 # vulnerability in the ebpf verifier register limit tracking record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: vulnerability in the ebpf verifier register limit tracking resource_label: primary resource_type: code resource_url: https://github.com/google/security-research/security/advisories/ghsa-hfqc-63c7-rj9f parent_primary_url: https://github.com/google/security-research/security/advisories/ghsa-hfqc-63c7-rj9f source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"vulnerability in the ebpf verifier register limit tracking\" by juan jose lopez jaimez](https://github.com/google/security-research/security/advisories/ghsa-hfqc-63c7-rj9f) [cve-2024-41003] cves: cve-2024-41003 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3525ee8fa395cd83",
      "item_id": "6652bc32fe01330e",
      "slug": "2024-vulnerabilities-lpe-android-binder-attack-matrix-primary-c55362d7",
      "year": 2024,
      "title": "Android Binder Attack Matrix",
      "item_title": "Android Binder Attack Matrix",
      "authors": [
        "Utkarsh"
      ],
      "cves": [
        "CVE-2023-20938",
        "CVE-2023-21255"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951",
      "primary_url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951",
      "parent_primary_url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-android-binder-attack-matrix-primary-c55362d7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Android Binder Attack Matrix record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Android Binder Attack Matrix resource_label: primary resource_type: article resource_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951 parent_primary_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Android Binder Attack Matrix\" by Utkarsh](https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951) [article] [[part 2](https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9)] [[part 3](https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-art",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9"
        },
        {
          "label": "part 3",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373"
        },
        {
          "label": "part 4",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5"
        },
        {
          "label": "part 5",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9"
          },
          {
            "label": "part 3",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373"
          },
          {
            "label": "part 4",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5"
          },
          {
            "label": "part 5",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "Binder"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article introducing the Android Binder Attack Matrix and its vulnerabilities.",
      "summary_zh": "一篇介绍Android Binder攻击矩阵及其漏洞的文章。",
      "source_markdown": "[2024: \"Android Binder Attack Matrix\" by Utkarsh](https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951) [article]\n[[part 2](https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9)]\n[[part 3](https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373)]\n[[part 4](https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5)]\n[[part 5](https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f)]",
      "search_text": "android binder attack matrix android binder attack matrix utkarsh cve-2023-20938 cve-2023-21255  vulnerabilities lpe lpe primary article https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951 lpe android binder  vulnerability an article introducing the android binder attack matrix and its vulnerabilities. 一篇介绍android binder攻击矩阵及其漏洞的文章。 # android binder attack matrix record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: android binder attack matrix resource_label: primary resource_type: article resource_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951 parent_primary_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"android binder attack matrix\" by utkarsh](https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951) [article] [[part 2](https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9)] [[part 3](https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-art yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   has-poc poc proof-of-concept"
    },
    {
      "id": "76c2af8315d2ab82",
      "item_id": "6652bc32fe01330e",
      "slug": "2024-vulnerabilities-lpe-android-binder-attack-matrix-part-2-ba997b47",
      "year": 2024,
      "title": "Android Binder Attack Matrix · part 2",
      "item_title": "Android Binder Attack Matrix",
      "authors": [
        "Utkarsh"
      ],
      "cves": [
        "CVE-2023-20938",
        "CVE-2023-21255"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "part 2",
      "resource_type": "article",
      "resource_url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9",
      "primary_url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9",
      "parent_primary_url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-android-binder-attack-matrix-part-2-ba997b47.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Android Binder Attack Matrix · part 2 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Android Binder Attack Matrix resource_label: part 2 resource_type: article resource_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9 parent_primary_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Android Binder Attack Matrix\" by Utkarsh](https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951) [article] [[part 2](https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9)] [[part 3](https://utkarshcodes.medium.com/android-binder-a",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9"
        },
        {
          "label": "part 3",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373"
        },
        {
          "label": "part 4",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5"
        },
        {
          "label": "part 5",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9"
          },
          {
            "label": "part 3",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373"
          },
          {
            "label": "part 4",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5"
          },
          {
            "label": "part 5",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "Binder"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Part 2 of the Android Binder Attack Matrix detailing specific vulnerabilities.",
      "summary_zh": "Android Binder攻击矩阵的第二部分，详细说明特定漏洞。",
      "source_markdown": "[2024: \"Android Binder Attack Matrix\" by Utkarsh](https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951) [article]\n[[part 2](https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9)]\n[[part 3](https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373)]\n[[part 4](https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5)]\n[[part 5](https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f)]",
      "search_text": "android binder attack matrix · part 2 android binder attack matrix utkarsh cve-2023-20938 cve-2023-21255  vulnerabilities lpe lpe part 2 article https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9 lpe android binder  vulnerability part 2 of the android binder attack matrix detailing specific vulnerabilities. android binder攻击矩阵的第二部分，详细说明特定漏洞。 # android binder attack matrix · part 2 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: android binder attack matrix resource_label: part 2 resource_type: article resource_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9 parent_primary_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"android binder attack matrix\" by utkarsh](https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951) [article] [[part 2](https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9)] [[part 3](https://utkarshcodes.medium.com/android-binder-a yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   has-poc poc proof-of-concept"
    },
    {
      "id": "3a2e603298f6712a",
      "item_id": "6652bc32fe01330e",
      "slug": "2024-vulnerabilities-lpe-android-binder-attack-matrix-part-3-67d5aaa8",
      "year": 2024,
      "title": "Android Binder Attack Matrix · part 3",
      "item_title": "Android Binder Attack Matrix",
      "authors": [
        "Utkarsh"
      ],
      "cves": [
        "CVE-2023-20938",
        "CVE-2023-21255"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "part 3",
      "resource_type": "article",
      "resource_url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373",
      "primary_url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373",
      "parent_primary_url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-android-binder-attack-matrix-part-3-67d5aaa8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Android Binder Attack Matrix · part 3 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Android Binder Attack Matrix resource_label: part 3 resource_type: article resource_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373 parent_primary_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Android Binder Attack Matrix\" by Utkarsh](https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951) [article] [[part 2](https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9)] [[part 3](https://utkarshcodes.medium.com/android-binder-attack-matri",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9"
        },
        {
          "label": "part 3",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373"
        },
        {
          "label": "part 4",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5"
        },
        {
          "label": "part 5",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9"
          },
          {
            "label": "part 3",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373"
          },
          {
            "label": "part 4",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5"
          },
          {
            "label": "part 5",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "Binder"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Part 3 of the Android Binder Attack Matrix focusing on exploitation techniques.",
      "summary_zh": "Android Binder攻击矩阵的第三部分，重点介绍利用技术。",
      "source_markdown": "[2024: \"Android Binder Attack Matrix\" by Utkarsh](https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951) [article]\n[[part 2](https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9)]\n[[part 3](https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373)]\n[[part 4](https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5)]\n[[part 5](https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f)]",
      "search_text": "android binder attack matrix · part 3 android binder attack matrix utkarsh cve-2023-20938 cve-2023-21255  vulnerabilities lpe lpe part 3 article https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373 lpe android binder  vulnerability part 3 of the android binder attack matrix focusing on exploitation techniques. android binder攻击矩阵的第三部分，重点介绍利用技术。 # android binder attack matrix · part 3 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: android binder attack matrix resource_label: part 3 resource_type: article resource_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373 parent_primary_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"android binder attack matrix\" by utkarsh](https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951) [article] [[part 2](https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9)] [[part 3](https://utkarshcodes.medium.com/android-binder-attack-matri yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   has-poc poc proof-of-concept"
    },
    {
      "id": "86ddff08190754b6",
      "item_id": "6652bc32fe01330e",
      "slug": "2024-vulnerabilities-lpe-android-binder-attack-matrix-part-4-a8e97e33",
      "year": 2024,
      "title": "Android Binder Attack Matrix · part 4",
      "item_title": "Android Binder Attack Matrix",
      "authors": [
        "Utkarsh"
      ],
      "cves": [
        "CVE-2023-20938",
        "CVE-2023-21255"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "part 4",
      "resource_type": "article",
      "resource_url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5",
      "primary_url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5",
      "parent_primary_url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-android-binder-attack-matrix-part-4-a8e97e33.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Android Binder Attack Matrix · part 4 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Android Binder Attack Matrix resource_label: part 4 resource_type: article resource_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5 parent_primary_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Android Binder Attack Matrix\" by Utkarsh](https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951) [article] [[part 2](https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9)] [[part 3](https://utkarshcodes.medium.com/android-binde",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9"
        },
        {
          "label": "part 3",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373"
        },
        {
          "label": "part 4",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5"
        },
        {
          "label": "part 5",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9"
          },
          {
            "label": "part 3",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373"
          },
          {
            "label": "part 4",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5"
          },
          {
            "label": "part 5",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "Binder"
      ],
      "affected_area": "Binder",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This article discusses vulnerabilities in the Android Binder and their exploitation.",
      "summary_zh": "本文讨论了Android Binder中的漏洞及其利用。",
      "source_markdown": "[2024: \"Android Binder Attack Matrix\" by Utkarsh](https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951) [article]\n[[part 2](https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9)]\n[[part 3](https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373)]\n[[part 4](https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5)]\n[[part 5](https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f)]",
      "search_text": "android binder attack matrix · part 4 android binder attack matrix utkarsh cve-2023-20938 cve-2023-21255  vulnerabilities lpe lpe part 4 article https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5 lpe android binder binder vulnerability analysis this article discusses vulnerabilities in the android binder and their exploitation. 本文讨论了android binder中的漏洞及其利用。 # android binder attack matrix · part 4 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: android binder attack matrix resource_label: part 4 resource_type: article resource_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5 parent_primary_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"android binder attack matrix\" by utkarsh](https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951) [article] [[part 2](https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9)] [[part 3](https://utkarshcodes.medium.com/android-binde yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   has-poc poc proof-of-concept"
    },
    {
      "id": "6a662911ce5a1aad",
      "item_id": "6652bc32fe01330e",
      "slug": "2024-vulnerabilities-lpe-android-binder-attack-matrix-part-5-d3dde1e1",
      "year": 2024,
      "title": "Android Binder Attack Matrix · part 5",
      "item_title": "Android Binder Attack Matrix",
      "authors": [
        "Utkarsh"
      ],
      "cves": [
        "CVE-2023-20938",
        "CVE-2023-21255"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "part 5",
      "resource_type": "article",
      "resource_url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f",
      "primary_url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f",
      "parent_primary_url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-android-binder-attack-matrix-part-5-d3dde1e1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Android Binder Attack Matrix · part 5 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Android Binder Attack Matrix resource_label: part 5 resource_type: article resource_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f parent_primary_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Android Binder Attack Matrix\" by Utkarsh](https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951) [article] [[part 2](https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9)] [[part 3](https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9"
        },
        {
          "label": "part 3",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373"
        },
        {
          "label": "part 4",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5"
        },
        {
          "label": "part 5",
          "type": "article",
          "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9"
          },
          {
            "label": "part 3",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373"
          },
          {
            "label": "part 4",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5"
          },
          {
            "label": "part 5",
            "type": "article",
            "url": "https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "Binder"
      ],
      "affected_area": "Binder",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This article concludes the Android Binder Attack Matrix series focusing on vulnerabilities and their implications.",
      "summary_zh": "本文总结了Android Binder攻击矩阵系列，重点讨论漏洞及其影响。",
      "source_markdown": "[2024: \"Android Binder Attack Matrix\" by Utkarsh](https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951) [article]\n[[part 2](https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9)]\n[[part 3](https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve-2023-20938-article-2-6215160e3373)]\n[[part 4](https://utkarshcodes.medium.com/android-binder-attack-matrix-fuzzing-binder-with-linux-kernel-library-lkl-article-3-62e931161eb5)]\n[[part 5](https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f)]",
      "search_text": "android binder attack matrix · part 5 android binder attack matrix utkarsh cve-2023-20938 cve-2023-21255  vulnerabilities lpe lpe part 5 article https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f lpe android binder binder vulnerability analysis this article concludes the android binder attack matrix series focusing on vulnerabilities and their implications. 本文总结了android binder攻击矩阵系列，重点讨论漏洞及其影响。 # android binder attack matrix · part 5 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: android binder attack matrix resource_label: part 5 resource_type: article resource_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-results-conclusion-d7143057408f parent_primary_url: https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"android binder attack matrix\" by utkarsh](https://utkarshcodes.medium.com/android-binder-attack-matrix-introduction-450d31d1d951) [article] [[part 2](https://utkarshcodes.medium.com/android-binder-attack-matrix-cve-2023-20938-cve-2023-21255-uaf-details-article-1-4cc2eb3919f9)] [[part 3](https://utkarshcodes.medium.com/android-binder-attack-matrix-exploitation-of-cve- yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   has-poc poc proof-of-concept"
    },
    {
      "id": "a4e6b0bd8f941df3",
      "item_id": "7eb57e1d9e3d11d1",
      "slug": "2024-vulnerabilities-lpe-driving-forward-in-android-drivers-primary-98f06ef4",
      "year": 2024,
      "title": "Driving forward in Android drivers",
      "item_title": "Driving forward in Android drivers",
      "authors": [
        "Seth Jenkins"
      ],
      "cves": [
        "CVE-2023-32837",
        "CVE-2023-32832"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-driving-forward-in-android-drivers-primary-98f06ef4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Driving forward in Android drivers record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Driving forward in Android drivers resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html parent_primary_url: https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Driving forward in Android drivers\" by Seth Jenkins](https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html) [article] [[video](https://archive.org/details/shmoocon2024/Shmoocon2024-SethJenkins-Driving_Forward_in_Android_Drivers.mp4)] [CVE-2023-32837] [CVE-2023-32832] cves: CVE-2023-32837, CVE-2023-32832 android_impact_status: yes androi",
      "link_types": [
        "article",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://archive.org/details/shmoocon2024/Shmoocon2024-SethJenkins-Driving_Forward_in_Android_Drivers.mp4"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://archive.org/details/shmoocon2024/Shmoocon2024-SethJenkins-Driving_Forward_in_Android_Drivers.mp4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "Drivers"
      ],
      "affected_area": "Drivers",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This article explores vulnerabilities in Android drivers and their potential impacts.",
      "summary_zh": "本文探讨了Android驱动程序中的漏洞及其潜在影响。",
      "source_markdown": "[2024: \"Driving forward in Android drivers\" by Seth Jenkins](https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html) [article] [[video](https://archive.org/details/shmoocon2024/Shmoocon2024-SethJenkins-Driving_Forward_in_Android_Drivers.mp4)] [CVE-2023-32837] [CVE-2023-32832]",
      "search_text": "driving forward in android drivers driving forward in android drivers seth jenkins cve-2023-32837 cve-2023-32832  vulnerabilities lpe lpe primary article https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html lpe android drivers drivers vulnerability analysis this article explores vulnerabilities in android drivers and their potential impacts. 本文探讨了android驱动程序中的漏洞及其潜在影响。 # driving forward in android drivers record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: driving forward in android drivers resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html parent_primary_url: https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"driving forward in android drivers\" by seth jenkins](https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html) [article] [[video](https://archive.org/details/shmoocon2024/shmoocon2024-sethjenkins-driving_forward_in_android_drivers.mp4)] [cve-2023-32837] [cve-2023-32832] cves: cve-2023-32837, cve-2023-32832 android_impact_status: yes androi yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "96c9d2827bd4f8a4",
      "item_id": "7eb57e1d9e3d11d1",
      "slug": "2024-vulnerabilities-lpe-driving-forward-in-android-drivers-video-fa932318",
      "year": 2024,
      "title": "Driving forward in Android drivers · video",
      "item_title": "Driving forward in Android drivers",
      "authors": [
        "Seth Jenkins"
      ],
      "cves": [
        "CVE-2023-32837",
        "CVE-2023-32832"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://archive.org/details/shmoocon2024/Shmoocon2024-SethJenkins-Driving_Forward_in_Android_Drivers.mp4",
      "primary_url": "https://archive.org/details/shmoocon2024/Shmoocon2024-SethJenkins-Driving_Forward_in_Android_Drivers.mp4",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-driving-forward-in-android-drivers-video-fa932318.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Driving forward in Android drivers · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Driving forward in Android drivers resource_label: video resource_type: video resource_url: https://archive.org/details/shmoocon2024/Shmoocon2024-SethJenkins-Driving_Forward_in_Android_Drivers.mp4 parent_primary_url: https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Driving forward in Android drivers\" by Seth Jenkins](https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html) [article] [[video](https://archive.org/details/shmoocon2024/Shmoocon2024-SethJenkins-Driving_Forward_in_Android_Drivers.mp4)] [CVE-2023-32837] [CVE-2023-32832] cves: CVE-2023-32837, CVE-2023-32832 android_imp",
      "link_types": [
        "article",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://archive.org/details/shmoocon2024/Shmoocon2024-SethJenkins-Driving_Forward_in_Android_Drivers.mp4"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://archive.org/details/shmoocon2024/Shmoocon2024-SethJenkins-Driving_Forward_in_Android_Drivers.mp4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "Drivers"
      ],
      "affected_area": "Drivers",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This video presents findings on vulnerabilities in Android drivers and their exploitation.",
      "summary_zh": "该视频展示了Android驱动程序中的漏洞及其利用的发现。",
      "source_markdown": "[2024: \"Driving forward in Android drivers\" by Seth Jenkins](https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html) [article] [[video](https://archive.org/details/shmoocon2024/Shmoocon2024-SethJenkins-Driving_Forward_in_Android_Drivers.mp4)] [CVE-2023-32837] [CVE-2023-32832]",
      "search_text": "driving forward in android drivers · video driving forward in android drivers seth jenkins cve-2023-32837 cve-2023-32832  vulnerabilities lpe lpe video video https://archive.org/details/shmoocon2024/shmoocon2024-sethjenkins-driving_forward_in_android_drivers.mp4 lpe android drivers drivers vulnerability analysis this video presents findings on vulnerabilities in android drivers and their exploitation. 该视频展示了android驱动程序中的漏洞及其利用的发现。 # driving forward in android drivers · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: driving forward in android drivers resource_label: video resource_type: video resource_url: https://archive.org/details/shmoocon2024/shmoocon2024-sethjenkins-driving_forward_in_android_drivers.mp4 parent_primary_url: https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"driving forward in android drivers\" by seth jenkins](https://googleprojectzero.blogspot.com/2024/06/driving-forward-in-android-drivers.html) [article] [[video](https://archive.org/details/shmoocon2024/shmoocon2024-sethjenkins-driving_forward_in_android_drivers.mp4)] [cve-2023-32837] [cve-2023-32832] cves: cve-2023-32837, cve-2023-32832 android_imp yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "39bec19c9ec57257",
      "item_id": "d466ce7dfe417f54",
      "slug": "2024-vulnerabilities-lpe-attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938-primary-3f5860df",
      "year": 2024,
      "title": "Attacking Android Binder: Analysis and Exploitation of CVE-2023-20938",
      "item_title": "Attacking Android Binder: Analysis and Exploitation of CVE-2023-20938",
      "authors": [
        "Eugene Rodionov",
        "Zi Fan Tan",
        "and Gulshan Singh"
      ],
      "cves": [
        "CVE-2023-20938"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/",
      "primary_url": "https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/",
      "parent_primary_url": "https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938-primary-3f5860df.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Attacking Android Binder: Analysis and Exploitation of CVE-2023-20938 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Attacking Android Binder: Analysis and Exploitation of CVE-2023-20938 resource_label: primary resource_type: article resource_url: https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/ parent_primary_url: https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Attacking Android Binder: Analysis and Exploitation of CVE-2023-20938\" by Eugene Rodionov, Zi Fan Tan, and Gulshan Singh](https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/) [article] [CV",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "Binder"
      ],
      "affected_area": "Binder",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This article analyzes and exploits CVE-2023-20938 related to Android Binder vulnerabilities.",
      "summary_zh": "本文分析并利用与Android Binder漏洞相关的CVE-2023-20938。",
      "source_markdown": "[2024: \"Attacking Android Binder: Analysis and Exploitation of CVE-2023-20938\" by Eugene Rodionov, Zi Fan Tan, and Gulshan Singh](https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/) [article] [CVE-2023-20938]",
      "search_text": "attacking android binder: analysis and exploitation of cve-2023-20938 attacking android binder: analysis and exploitation of cve-2023-20938 eugene rodionov zi fan tan and gulshan singh cve-2023-20938  vulnerabilities lpe lpe primary article https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/ lpe android binder binder vulnerability analysis this article analyzes and exploits cve-2023-20938 related to android binder vulnerabilities. 本文分析并利用与android binder漏洞相关的cve-2023-20938。 # attacking android binder: analysis and exploitation of cve-2023-20938 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: attacking android binder: analysis and exploitation of cve-2023-20938 resource_label: primary resource_type: article resource_url: https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/ parent_primary_url: https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"attacking android binder: analysis and exploitation of cve-2023-20938\" by eugene rodionov, zi fan tan, and gulshan singh](https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/) [article] [cv yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   has-poc poc proof-of-concept"
    },
    {
      "id": "f9893d9321a53df6",
      "item_id": "d264b54439c28203",
      "slug": "2024-vulnerabilities-lpe-how-to-fuzz-your-way-to-android-universal-root-attacking-android-binder-primary-8ea42",
      "year": 2024,
      "title": "How to Fuzz Your Way to Android Universal Root: Attacking Android Binder",
      "item_title": "How to Fuzz Your Way to Android Universal Root: Attacking Android Binder",
      "authors": [
        "Eugene Rodionov",
        "Zi Fan Tan"
      ],
      "cves": [
        "CVE-2023-20938"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf",
      "primary_url": "https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf",
      "parent_primary_url": "https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-how-to-fuzz-your-way-to-android-universal-root-attacking-android-binder-primary-8ea42.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# How to Fuzz Your Way to Android Universal Root: Attacking Android Binder record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: How to Fuzz Your Way to Android Universal Root: Attacking Android Binder resource_label: primary resource_type: slides resource_url: https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf parent_primary_url: https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"How to Fuzz Your Way to Android Universal Root: Attacking Android Binder\" by Eugene Rodionov and Zi Fan Tan](https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-ex",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=U-xSM159YLI"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=U-xSM159YLI"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Fuzzing",
        "LPE",
        "Android",
        "Binder"
      ],
      "affected_area": "Binder",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This presentation discusses fuzzing techniques targeting Android Binder vulnerabilities.",
      "summary_zh": "本演示讨论了针对Android Binder漏洞的模糊测试技术。",
      "source_markdown": "[2024: \"How to Fuzz Your Way to Android Universal Root: Attacking Android Binder\" by Eugene Rodionov and Zi Fan Tan](https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf) [slides] [[video](https://www.youtube.com/watch?v=U-xSM159YLI)] [CVE-2023-20938]",
      "search_text": "how to fuzz your way to android universal root: attacking android binder how to fuzz your way to android universal root: attacking android binder eugene rodionov zi fan tan cve-2023-20938  vulnerabilities lpe lpe primary slides https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf fuzzing lpe android binder binder vulnerability analysis this presentation discusses fuzzing techniques targeting android binder vulnerabilities. 本演示讨论了针对android binder漏洞的模糊测试技术。 # how to fuzz your way to android universal root: attacking android binder record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: how to fuzz your way to android universal root: attacking android binder resource_label: primary resource_type: slides resource_url: https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf parent_primary_url: https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"how to fuzz your way to android universal root: attacking android binder\" by eugene rodionov and zi fan tan](https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-ex yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   has-poc poc proof-of-concept"
    },
    {
      "id": "eead5ac72f6085ea",
      "item_id": "d264b54439c28203",
      "slug": "2024-vulnerabilities-lpe-how-to-fuzz-your-way-to-android-universal-root-attacking-android-binder-video-94283fc",
      "year": 2024,
      "title": "How to Fuzz Your Way to Android Universal Root: Attacking Android Binder · video",
      "item_title": "How to Fuzz Your Way to Android Universal Root: Attacking Android Binder",
      "authors": [
        "Eugene Rodionov",
        "Zi Fan Tan"
      ],
      "cves": [
        "CVE-2023-20938"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=U-xSM159YLI",
      "primary_url": "https://www.youtube.com/watch?v=U-xSM159YLI",
      "parent_primary_url": "https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-how-to-fuzz-your-way-to-android-universal-root-attacking-android-binder-video-94283fc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# How to Fuzz Your Way to Android Universal Root: Attacking Android Binder · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: How to Fuzz Your Way to Android Universal Root: Attacking Android Binder resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=U-xSM159YLI parent_primary_url: https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"How to Fuzz Your Way to Android Universal Root: Attacking Android Binder\" by Eugene Rodionov and Zi Fan Tan](https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf) [slides] [[video](https://www.you",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=U-xSM159YLI"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=U-xSM159YLI"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Fuzzing",
        "LPE",
        "Android",
        "Binder"
      ],
      "affected_area": "Binder",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This video covers fuzzing techniques for exploiting Android Binder vulnerabilities.",
      "summary_zh": "该视频涵盖了利用Android Binder漏洞的模糊测试技术。",
      "source_markdown": "[2024: \"How to Fuzz Your Way to Android Universal Root: Attacking Android Binder\" by Eugene Rodionov and Zi Fan Tan](https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf) [slides] [[video](https://www.youtube.com/watch?v=U-xSM159YLI)] [CVE-2023-20938]",
      "search_text": "how to fuzz your way to android universal root: attacking android binder · video how to fuzz your way to android universal root: attacking android binder eugene rodionov zi fan tan cve-2023-20938  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=u-xsm159yli fuzzing lpe android binder binder vulnerability analysis this video covers fuzzing techniques for exploiting android binder vulnerabilities. 该视频涵盖了利用android binder漏洞的模糊测试技术。 # how to fuzz your way to android universal root: attacking android binder · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: how to fuzz your way to android universal root: attacking android binder resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=u-xsm159yli parent_primary_url: https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"how to fuzz your way to android universal root: attacking android binder\" by eugene rodionov and zi fan tan](https://androidoffsec.withgoogle.com/posts/attacking-android-binder-analysis-and-exploitation-of-cve-2023-20938/offensivecon_24_binder.pdf) [slides] [[video](https://www.you yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   has-poc poc proof-of-concept"
    },
    {
      "id": "10b34a4201cafbee",
      "item_id": "63a209b37a72fc4d",
      "slug": "2024-vulnerabilities-lpe-linux-kernel-nft-validate-register-store-integer-overflow-privilege-escalation-primar",
      "year": 2024,
      "title": "Linux Kernel nft_validate_register_store Integer Overflow Privilege Escalation",
      "item_title": "Linux Kernel nft_validate_register_store Integer Overflow Privilege Escalation",
      "authors": [],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-nft_validate_register_store-integer-overflow-privilege-escalation/",
      "primary_url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-nft_validate_register_store-integer-overflow-privilege-escalation/",
      "parent_primary_url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-nft_validate_register_store-integer-overflow-privilege-escalation/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-linux-kernel-nft-validate-register-store-integer-overflow-privilege-escalation-primar.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel nft_validate_register_store Integer Overflow Privilege Escalation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux Kernel nft_validate_register_store Integer Overflow Privilege Escalation resource_label: primary resource_type: article resource_url: https://ssd-disclosure.com/ssd-advisory-linux-kernel-nft_validate_register_store-integer-overflow-privilege-escalation/ parent_primary_url: https://ssd-disclosure.com/ssd-advisory-linux-kernel-nft_validate_register_store-integer-overflow-privilege-escalation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Linux Kernel nft_validate_register_store Integer Overflow Privilege Escalation\"](https://ssd-disclosure.com/ssd-advisory-linux-kernel-nft_validate_register_store-integer-overflow-privilege-escalation/) [article] [CVE-",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-nft_validate_register_store-integer-overflow-privilege-escalation/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-nft_validate_register_store-integer-overflow-privilege-escalation/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Linux",
        "Kernel"
      ],
      "affected_area": "nftables",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This article discusses an integer overflow vulnerability in the Linux kernel's nft_validate_register_store.",
      "summary_zh": "本文讨论了Linux内核nft_validate_register_store中的整数溢出漏洞。",
      "source_markdown": "[2024: \"Linux Kernel nft_validate_register_store Integer Overflow Privilege Escalation\"](https://ssd-disclosure.com/ssd-advisory-linux-kernel-nft_validate_register_store-integer-overflow-privilege-escalation/) [article] [CVE-UNKNOWN]",
      "search_text": "linux kernel nft_validate_register_store integer overflow privilege escalation linux kernel nft_validate_register_store integer overflow privilege escalation  cve-unknown  vulnerabilities lpe lpe primary article https://ssd-disclosure.com/ssd-advisory-linux-kernel-nft_validate_register_store-integer-overflow-privilege-escalation/ lpe linux kernel nftables vulnerability analysis this article discusses an integer overflow vulnerability in the linux kernel's nft_validate_register_store. 本文讨论了linux内核nft_validate_register_store中的整数溢出漏洞。 # linux kernel nft_validate_register_store integer overflow privilege escalation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel nft_validate_register_store integer overflow privilege escalation resource_label: primary resource_type: article resource_url: https://ssd-disclosure.com/ssd-advisory-linux-kernel-nft_validate_register_store-integer-overflow-privilege-escalation/ parent_primary_url: https://ssd-disclosure.com/ssd-advisory-linux-kernel-nft_validate_register_store-integer-overflow-privilege-escalation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"linux kernel nft_validate_register_store integer overflow privilege escalation\"](https://ssd-disclosure.com/ssd-advisory-linux-kernel-nft_validate_register_store-integer-overflow-privilege-escalation/) [article] [cve- unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "deac8986c9cd0d28",
      "item_id": "d8d78cccd2affc43",
      "slug": "2024-vulnerabilities-lpe-game-of-cross-cache-let-s-win-it-in-a-more-effective-way-primary-f4ccc450",
      "year": 2024,
      "title": "Game of Cross Cache: Let's win it in a more effective way!",
      "item_title": "Game of Cross Cache: Let's win it in a more effective way!",
      "authors": [
        "Le Wu"
      ],
      "cves": [
        "CVE-2023-21400"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/Asia-24/Presentations/Asia-24-Wu-Game-of-Cross-Cache.pdf",
      "primary_url": "https://i.blackhat.com/Asia-24/Presentations/Asia-24-Wu-Game-of-Cross-Cache.pdf",
      "parent_primary_url": "https://i.blackhat.com/Asia-24/Presentations/Asia-24-Wu-Game-of-Cross-Cache.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-game-of-cross-cache-let-s-win-it-in-a-more-effective-way-primary-f4ccc450.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Game of Cross Cache: Let's win it in a more effective way! record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Game of Cross Cache: Let's win it in a more effective way! resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/Asia-24/Presentations/Asia-24-Wu-Game-of-Cross-Cache.pdf parent_primary_url: https://i.blackhat.com/Asia-24/Presentations/Asia-24-Wu-Game-of-Cross-Cache.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Game of Cross Cache: Let's win it in a more effective way!\" by Le Wu](https://i.blackhat.com/Asia-24/Presentations/Asia-24-Wu-Game-of-Cross-Cache.pdf) [slides] [[video](https://www.youtube.com/watch?v=em9qgHm3uIk)] [CVE-2023-21400] cves: CVE-2023-21400 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/expl",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/Asia-24/Presentations/Asia-24-Wu-Game-of-Cross-Cache.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=em9qgHm3uIk"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/Asia-24/Presentations/Asia-24-Wu-Game-of-Cross-Cache.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=em9qgHm3uIk"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Linux"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This slide presentation explores a new technique for exploiting cross-cache vulnerabilities.",
      "summary_zh": "本幻灯片演示探讨了利用跨缓存漏洞的新技术。",
      "source_markdown": "[2024: \"Game of Cross Cache: Let's win it in a more effective way!\" by Le Wu](https://i.blackhat.com/Asia-24/Presentations/Asia-24-Wu-Game-of-Cross-Cache.pdf) [slides] [[video](https://www.youtube.com/watch?v=em9qgHm3uIk)] [CVE-2023-21400]",
      "search_text": "game of cross cache: let's win it in a more effective way! game of cross cache: let's win it in a more effective way! le wu cve-2023-21400  vulnerabilities lpe lpe primary slides https://i.blackhat.com/asia-24/presentations/asia-24-wu-game-of-cross-cache.pdf lpe linux  vulnerability analysis this slide presentation explores a new technique for exploiting cross-cache vulnerabilities. 本幻灯片演示探讨了利用跨缓存漏洞的新技术。 # game of cross cache: let's win it in a more effective way! record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: game of cross cache: let's win it in a more effective way! resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/asia-24/presentations/asia-24-wu-game-of-cross-cache.pdf parent_primary_url: https://i.blackhat.com/asia-24/presentations/asia-24-wu-game-of-cross-cache.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"game of cross cache: let's win it in a more effective way!\" by le wu](https://i.blackhat.com/asia-24/presentations/asia-24-wu-game-of-cross-cache.pdf) [slides] [[video](https://www.youtube.com/watch?v=em9qghm3uik)] [cve-2023-21400] cves: cve-2023-21400 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/expl unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "8ef673d9a3d55e9a",
      "item_id": "d8d78cccd2affc43",
      "slug": "2024-vulnerabilities-lpe-game-of-cross-cache-let-s-win-it-in-a-more-effective-way-video-355052e4",
      "year": 2024,
      "title": "Game of Cross Cache: Let's win it in a more effective way! · video",
      "item_title": "Game of Cross Cache: Let's win it in a more effective way!",
      "authors": [
        "Le Wu"
      ],
      "cves": [
        "CVE-2023-21400"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=em9qgHm3uIk",
      "primary_url": "https://www.youtube.com/watch?v=em9qgHm3uIk",
      "parent_primary_url": "https://i.blackhat.com/Asia-24/Presentations/Asia-24-Wu-Game-of-Cross-Cache.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-game-of-cross-cache-let-s-win-it-in-a-more-effective-way-video-355052e4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Game of Cross Cache: Let's win it in a more effective way! · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Game of Cross Cache: Let's win it in a more effective way! resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=em9qgHm3uIk parent_primary_url: https://i.blackhat.com/Asia-24/Presentations/Asia-24-Wu-Game-of-Cross-Cache.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Game of Cross Cache: Let's win it in a more effective way!\" by Le Wu](https://i.blackhat.com/Asia-24/Presentations/Asia-24-Wu-Game-of-Cross-Cache.pdf) [slides] [[video](https://www.youtube.com/watch?v=em9qgHm3uIk)] [CVE-2023-21400] cves: CVE-2023-21400 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production i",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/Asia-24/Presentations/Asia-24-Wu-Game-of-Cross-Cache.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=em9qgHm3uIk"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/Asia-24/Presentations/Asia-24-Wu-Game-of-Cross-Cache.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=em9qgHm3uIk"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Linux"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This video discusses a new technique for exploiting cross-cache vulnerabilities.",
      "summary_zh": "该视频讨论了利用跨缓存漏洞的新技术。",
      "source_markdown": "[2024: \"Game of Cross Cache: Let's win it in a more effective way!\" by Le Wu](https://i.blackhat.com/Asia-24/Presentations/Asia-24-Wu-Game-of-Cross-Cache.pdf) [slides] [[video](https://www.youtube.com/watch?v=em9qgHm3uIk)] [CVE-2023-21400]",
      "search_text": "game of cross cache: let's win it in a more effective way! · video game of cross cache: let's win it in a more effective way! le wu cve-2023-21400  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=em9qghm3uik lpe linux  vulnerability analysis this video discusses a new technique for exploiting cross-cache vulnerabilities. 该视频讨论了利用跨缓存漏洞的新技术。 # game of cross cache: let's win it in a more effective way! · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: game of cross cache: let's win it in a more effective way! resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=em9qghm3uik parent_primary_url: https://i.blackhat.com/asia-24/presentations/asia-24-wu-game-of-cross-cache.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"game of cross cache: let's win it in a more effective way!\" by le wu](https://i.blackhat.com/asia-24/presentations/asia-24-wu-game-of-cross-cache.pdf) [slides] [[video](https://www.youtube.com/watch?v=em9qghm3uik)] [cve-2023-21400] cves: cve-2023-21400 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production i unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9c85e91e8ddb0dc3",
      "item_id": "9950368dfc954f9c",
      "slug": "2024-vulnerabilities-lpe-linkdoor-a-hidden-attack-surface-in-the-android-netlink-kernel-modules-primary-393f6a",
      "year": 2024,
      "title": "LinkDoor: A Hidden Attack Surface in the Android Netlink Kernel Modules",
      "item_title": "LinkDoor: A Hidden Attack Surface in the Android Netlink Kernel Modules",
      "authors": [
        "Chao Ma et al."
      ],
      "cves": [
        "CVE-2023-32878",
        "CVE-2023-32882"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/Asia-24/Presentations/Asia-24-Ma-LinkDoor-A-Hidden-Attack.pdf",
      "primary_url": "https://i.blackhat.com/Asia-24/Presentations/Asia-24-Ma-LinkDoor-A-Hidden-Attack.pdf",
      "parent_primary_url": "https://i.blackhat.com/Asia-24/Presentations/Asia-24-Ma-LinkDoor-A-Hidden-Attack.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-linkdoor-a-hidden-attack-surface-in-the-android-netlink-kernel-modules-primary-393f6a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# LinkDoor: A Hidden Attack Surface in the Android Netlink Kernel Modules record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: LinkDoor: A Hidden Attack Surface in the Android Netlink Kernel Modules resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/Asia-24/Presentations/Asia-24-Ma-LinkDoor-A-Hidden-Attack.pdf parent_primary_url: https://i.blackhat.com/Asia-24/Presentations/Asia-24-Ma-LinkDoor-A-Hidden-Attack.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"LinkDoor: A Hidden Attack Surface in the Android Netlink Kernel Modules\" by Chao Ma et al.](https://i.blackhat.com/Asia-24/Presentations/Asia-24-Ma-LinkDoor-A-Hidden-Attack.pdf) [slides] [CVE-2023-32878] [CVE-2023-32882] cves: CVE-2023-32878, CVE-2023-32882 android_impact_status: yes android_impact_re",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/Asia-24/Presentations/Asia-24-Ma-LinkDoor-A-Hidden-Attack.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/Asia-24/Presentations/Asia-24-Ma-LinkDoor-A-Hidden-Attack.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "Netlink"
      ],
      "affected_area": "Netlink",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This presentation reveals hidden attack surfaces in Android Netlink kernel modules.",
      "summary_zh": "本演示揭示了Android Netlink内核模块中的隐藏攻击面。",
      "source_markdown": "[2024: \"LinkDoor: A Hidden Attack Surface in the Android Netlink Kernel Modules\" by Chao Ma et al.](https://i.blackhat.com/Asia-24/Presentations/Asia-24-Ma-LinkDoor-A-Hidden-Attack.pdf) [slides] [CVE-2023-32878] [CVE-2023-32882]",
      "search_text": "linkdoor: a hidden attack surface in the android netlink kernel modules linkdoor: a hidden attack surface in the android netlink kernel modules chao ma et al. cve-2023-32878 cve-2023-32882  vulnerabilities lpe lpe primary slides https://i.blackhat.com/asia-24/presentations/asia-24-ma-linkdoor-a-hidden-attack.pdf lpe android netlink netlink vulnerability analysis this presentation reveals hidden attack surfaces in android netlink kernel modules. 本演示揭示了android netlink内核模块中的隐藏攻击面。 # linkdoor: a hidden attack surface in the android netlink kernel modules record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linkdoor: a hidden attack surface in the android netlink kernel modules resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/asia-24/presentations/asia-24-ma-linkdoor-a-hidden-attack.pdf parent_primary_url: https://i.blackhat.com/asia-24/presentations/asia-24-ma-linkdoor-a-hidden-attack.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"linkdoor: a hidden attack surface in the android netlink kernel modules\" by chao ma et al.](https://i.blackhat.com/asia-24/presentations/asia-24-ma-linkdoor-a-hidden-attack.pdf) [slides] [cve-2023-32878] [cve-2023-32882] cves: cve-2023-32878, cve-2023-32882 android_impact_status: yes android_impact_re yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "7a5d2cacc515e814",
      "item_id": "e55fc1c0482370eb",
      "slug": "2024-vulnerabilities-lpe-flipping-pages-an-analysis-of-a-new-linux-vulnerability-in-nf-tables-and-hardened-exp",
      "year": 2024,
      "title": "Flipping Pages: An analysis of a new Linux vulnerability in nf_tables and hardened exploitation techniques",
      "item_title": "Flipping Pages: An analysis of a new Linux vulnerability in nf_tables and hardened exploitation techniques",
      "authors": [
        "notselwyn"
      ],
      "cves": [
        "CVE-2024-1086"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://pwning.tech/nftables/",
      "primary_url": "https://pwning.tech/nftables/",
      "parent_primary_url": "https://pwning.tech/nftables/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-flipping-pages-an-analysis-of-a-new-linux-vulnerability-in-nf-tables-and-hardened-exp.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Flipping Pages: An analysis of a new Linux vulnerability in nf_tables and hardened exploitation techniques record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Flipping Pages: An analysis of a new Linux vulnerability in nf_tables and hardened exploitation techniques resource_label: primary resource_type: article resource_url: https://pwning.tech/nftables/ parent_primary_url: https://pwning.tech/nftables/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Flipping Pages: An analysis of a new Linux vulnerability in nf_tables and hardened exploitation techniques\" by notselwyn](https://pwning.tech/nftables/) [article] [[exploit](https://github.com/Notselwyn/CVE-2024-1086)] [CVE-2024-1086] cves: CVE-2024-1086 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/explo",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://pwning.tech/nftables/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/Notselwyn/CVE-2024-1086"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://pwning.tech/nftables/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/Notselwyn/CVE-2024-1086"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Notselwyn/CVE-2024-1086"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Linux",
        "Kernel"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This article analyzes a new vulnerability in io_uring within the Linux kernel.",
      "summary_zh": "本文分析了Linux内核中io_uring的新漏洞。",
      "source_markdown": "[2024: \"Flipping Pages: An analysis of a new Linux vulnerability in nf_tables and hardened exploitation techniques\" by notselwyn](https://pwning.tech/nftables/) [article] [[exploit](https://github.com/Notselwyn/CVE-2024-1086)] [CVE-2024-1086]",
      "search_text": "flipping pages: an analysis of a new linux vulnerability in nf_tables and hardened exploitation techniques flipping pages: an analysis of a new linux vulnerability in nf_tables and hardened exploitation techniques notselwyn cve-2024-1086  vulnerabilities lpe lpe primary article https://pwning.tech/nftables/ lpe linux kernel  vulnerability analysis this article analyzes a new vulnerability in io_uring within the linux kernel. 本文分析了linux内核中io_uring的新漏洞。 # flipping pages: an analysis of a new linux vulnerability in nf_tables and hardened exploitation techniques record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: flipping pages: an analysis of a new linux vulnerability in nf_tables and hardened exploitation techniques resource_label: primary resource_type: article resource_url: https://pwning.tech/nftables/ parent_primary_url: https://pwning.tech/nftables/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"flipping pages: an analysis of a new linux vulnerability in nf_tables and hardened exploitation techniques\" by notselwyn](https://pwning.tech/nftables/) [article] [[exploit](https://github.com/notselwyn/cve-2024-1086)] [cve-2024-1086] cves: cve-2024-1086 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/explo unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "81bb5497071c0be2",
      "item_id": "e55fc1c0482370eb",
      "slug": "2024-vulnerabilities-lpe-flipping-pages-an-analysis-of-a-new-linux-vulnerability-in-nf-tables-and-hardened-exp-2",
      "year": 2024,
      "title": "Flipping Pages: An analysis of a new Linux vulnerability in nf_tables and hardened exploitation techniques · exploit",
      "item_title": "Flipping Pages: An analysis of a new Linux vulnerability in nf_tables and hardened exploitation techniques",
      "authors": [
        "notselwyn"
      ],
      "cves": [
        "CVE-2024-1086"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/Notselwyn/CVE-2024-1086",
      "primary_url": "https://github.com/Notselwyn/CVE-2024-1086",
      "parent_primary_url": "https://pwning.tech/nftables/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-flipping-pages-an-analysis-of-a-new-linux-vulnerability-in-nf-tables-and-hardened-exp-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Flipping Pages: An analysis of a new Linux vulnerability in nf_tables and hardened exploitation techniques · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Flipping Pages: An analysis of a new Linux vulnerability in nf_tables and hardened exploitation techniques resource_label: exploit resource_type: exploit resource_url: https://github.com/Notselwyn/CVE-2024-1086 parent_primary_url: https://pwning.tech/nftables/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Flipping Pages: An analysis of a new Linux vulnerability in nf_tables and hardened exploitation techniques\" by notselwyn](https://pwning.tech/nftables/) [article] [[exploit](https://github.com/Notselwyn/CVE-2024-1086)] [CVE-2024-1086] cves: CVE-2024-1086 android_impact_status: unknown android_impact_reason: Linux ker",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://pwning.tech/nftables/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/Notselwyn/CVE-2024-1086"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://pwning.tech/nftables/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/Notselwyn/CVE-2024-1086"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Notselwyn/CVE-2024-1086"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "exploit",
        "CVE-2024-1086"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2024 Linux kernel LPE resource \"Flipping Pages: An analysis of a new Linux vulnerability in nf_tables and hardened exploitation techniques · exploit\" (CVE-2024-1086); URL type: exploit.",
      "summary_zh": "2024 年 Linux 内核LPE资料：「Flipping Pages: An analysis of a new Linux vulnerability in nf_tables and hardened exploitation techniques · exploit」（CVE-2024-1086）；URL 类型：exploit。",
      "source_markdown": "[2024: \"Flipping Pages: An analysis of a new Linux vulnerability in nf_tables and hardened exploitation techniques\" by notselwyn](https://pwning.tech/nftables/) [article] [[exploit](https://github.com/Notselwyn/CVE-2024-1086)] [CVE-2024-1086]",
      "search_text": "flipping pages: an analysis of a new linux vulnerability in nf_tables and hardened exploitation techniques · exploit flipping pages: an analysis of a new linux vulnerability in nf_tables and hardened exploitation techniques notselwyn cve-2024-1086  vulnerabilities lpe lpe exploit exploit https://github.com/notselwyn/cve-2024-1086 vulnerabilities lpe exploit cve-2024-1086  lpe 2024 linux kernel lpe resource \"flipping pages: an analysis of a new linux vulnerability in nf_tables and hardened exploitation techniques · exploit\" (cve-2024-1086); url type: exploit. 2024 年 linux 内核lpe资料：「flipping pages: an analysis of a new linux vulnerability in nf_tables and hardened exploitation techniques · exploit」（cve-2024-1086）；url 类型：exploit。 # flipping pages: an analysis of a new linux vulnerability in nf_tables and hardened exploitation techniques · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: flipping pages: an analysis of a new linux vulnerability in nf_tables and hardened exploitation techniques resource_label: exploit resource_type: exploit resource_url: https://github.com/notselwyn/cve-2024-1086 parent_primary_url: https://pwning.tech/nftables/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"flipping pages: an analysis of a new linux vulnerability in nf_tables and hardened exploitation techniques\" by notselwyn](https://pwning.tech/nftables/) [article] [[exploit](https://github.com/notselwyn/cve-2024-1086)] [cve-2024-1086] cves: cve-2024-1086 android_impact_status: unknown android_impact_reason: linux ker unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "10285c492156097b",
      "item_id": "d24d45f6d05b1334",
      "slug": "2024-vulnerabilities-lpe-64-bytes-and-a-rop-chain-a-journey-through-nftables-primary-7f0a94d3",
      "year": 2024,
      "title": "64 bytes and a ROP chain – A journey through nftables",
      "item_title": "64 bytes and a ROP chain – A journey through nftables",
      "authors": [
        "Davide Ornaghi"
      ],
      "cves": [
        "CVE-2023-0179"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/",
      "primary_url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/",
      "parent_primary_url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-64-bytes-and-a-rop-chain-a-journey-through-nftables-primary-7f0a94d3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 64 bytes and a ROP chain – A journey through nftables record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: 64 bytes and a ROP chain – A journey through nftables resource_label: primary resource_type: article resource_url: https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/ parent_primary_url: https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"64 bytes and a ROP chain – A journey through nftables\" by Davide Ornaghi](https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/) [article] [[part 2](https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/)] [[exploit](https://github.com/TurtleARM/CVE-2023-0179-PoC)] [CVE-2023-0179] cves: CVE-2023-0179 android_impact_status: unknown android_impact_reason: Linux kernel vulnerabili",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/TurtleARM/CVE-2023-0179-PoC"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/TurtleARM/CVE-2023-0179-PoC"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/TurtleARM/CVE-2023-0179-PoC"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2023-0179"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2024 Linux kernel LPE resource \"64 bytes and a ROP chain – A journey through nftables\" (CVE-2023-0179); URL type: article.",
      "summary_zh": "2024 年 Linux 内核LPE资料：「64 bytes and a ROP chain – A journey through nftables」（CVE-2023-0179）；URL 类型：article。",
      "source_markdown": "[2024: \"64 bytes and a ROP chain – A journey through nftables\" by Davide Ornaghi](https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/) [article] [[part 2](https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/)] [[exploit](https://github.com/TurtleARM/CVE-2023-0179-PoC)] [CVE-2023-0179]",
      "search_text": "64 bytes and a rop chain – a journey through nftables 64 bytes and a rop chain – a journey through nftables davide ornaghi cve-2023-0179  vulnerabilities lpe lpe primary article https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/ vulnerabilities lpe article cve-2023-0179  lpe 2024 linux kernel lpe resource \"64 bytes and a rop chain – a journey through nftables\" (cve-2023-0179); url type: article. 2024 年 linux 内核lpe资料：「64 bytes and a rop chain – a journey through nftables」（cve-2023-0179）；url 类型：article。 # 64 bytes and a rop chain – a journey through nftables record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: 64 bytes and a rop chain – a journey through nftables resource_label: primary resource_type: article resource_url: https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/ parent_primary_url: https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"64 bytes and a rop chain – a journey through nftables\" by davide ornaghi](https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/) [article] [[part 2](https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/)] [[exploit](https://github.com/turtlearm/cve-2023-0179-poc)] [cve-2023-0179] cves: cve-2023-0179 android_impact_status: unknown android_impact_reason: linux kernel vulnerabili unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "96b497de6cf7bf84",
      "item_id": "d24d45f6d05b1334",
      "slug": "2024-vulnerabilities-lpe-64-bytes-and-a-rop-chain-a-journey-through-nftables-part-2-ddd71752",
      "year": 2024,
      "title": "64 bytes and a ROP chain – A journey through nftables · part 2",
      "item_title": "64 bytes and a ROP chain – A journey through nftables",
      "authors": [
        "Davide Ornaghi"
      ],
      "cves": [
        "CVE-2023-0179"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "part 2",
      "resource_type": "article",
      "resource_url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/",
      "primary_url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/",
      "parent_primary_url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-64-bytes-and-a-rop-chain-a-journey-through-nftables-part-2-ddd71752.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 64 bytes and a ROP chain – A journey through nftables · part 2 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: 64 bytes and a ROP chain – A journey through nftables resource_label: part 2 resource_type: article resource_url: https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/ parent_primary_url: https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"64 bytes and a ROP chain – A journey through nftables\" by Davide Ornaghi](https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/) [article] [[part 2](https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/)] [[exploit](https://github.com/TurtleARM/CVE-2023-0179-PoC)] [CVE-2023-0179] cves: CVE-2023-0179 android_impact_status: unknown android_impact_reason: Linux kernel vul",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/TurtleARM/CVE-2023-0179-PoC"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/TurtleARM/CVE-2023-0179-PoC"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/TurtleARM/CVE-2023-0179-PoC"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2023-0179"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2024 Linux kernel LPE resource \"64 bytes and a ROP chain – A journey through nftables · part 2\" (CVE-2023-0179); URL type: article.",
      "summary_zh": "2024 年 Linux 内核LPE资料：「64 bytes and a ROP chain – A journey through nftables · part 2」（CVE-2023-0179）；URL 类型：article。",
      "source_markdown": "[2024: \"64 bytes and a ROP chain – A journey through nftables\" by Davide Ornaghi](https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/) [article] [[part 2](https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/)] [[exploit](https://github.com/TurtleARM/CVE-2023-0179-PoC)] [CVE-2023-0179]",
      "search_text": "64 bytes and a rop chain – a journey through nftables · part 2 64 bytes and a rop chain – a journey through nftables davide ornaghi cve-2023-0179  vulnerabilities lpe lpe part 2 article https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/ vulnerabilities lpe article cve-2023-0179  lpe 2024 linux kernel lpe resource \"64 bytes and a rop chain – a journey through nftables · part 2\" (cve-2023-0179); url type: article. 2024 年 linux 内核lpe资料：「64 bytes and a rop chain – a journey through nftables · part 2」（cve-2023-0179）；url 类型：article。 # 64 bytes and a rop chain – a journey through nftables · part 2 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: 64 bytes and a rop chain – a journey through nftables resource_label: part 2 resource_type: article resource_url: https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/ parent_primary_url: https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"64 bytes and a rop chain – a journey through nftables\" by davide ornaghi](https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/) [article] [[part 2](https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/)] [[exploit](https://github.com/turtlearm/cve-2023-0179-poc)] [cve-2023-0179] cves: cve-2023-0179 android_impact_status: unknown android_impact_reason: linux kernel vul unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "a6af6f22c95a35e5",
      "item_id": "d24d45f6d05b1334",
      "slug": "2024-vulnerabilities-lpe-64-bytes-and-a-rop-chain-a-journey-through-nftables-exploit-194a7fbd",
      "year": 2024,
      "title": "64 bytes and a ROP chain – A journey through nftables · exploit",
      "item_title": "64 bytes and a ROP chain – A journey through nftables",
      "authors": [
        "Davide Ornaghi"
      ],
      "cves": [
        "CVE-2023-0179"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/TurtleARM/CVE-2023-0179-PoC",
      "primary_url": "https://github.com/TurtleARM/CVE-2023-0179-PoC",
      "parent_primary_url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-64-bytes-and-a-rop-chain-a-journey-through-nftables-exploit-194a7fbd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 64 bytes and a ROP chain – A journey through nftables · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: 64 bytes and a ROP chain – A journey through nftables resource_label: exploit resource_type: exploit resource_url: https://github.com/TurtleARM/CVE-2023-0179-PoC parent_primary_url: https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"64 bytes and a ROP chain – A journey through nftables\" by Davide Ornaghi](https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/) [article] [[part 2](https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/)] [[exploit](https://github.com/TurtleARM/CVE-2023-0179-PoC)] [CVE-2023-0179] cves: CVE-2023-0179 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/TurtleARM/CVE-2023-0179-PoC"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/TurtleARM/CVE-2023-0179-PoC"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/TurtleARM/CVE-2023-0179-PoC"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "exploit",
        "CVE-2023-0179"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2024 Linux kernel LPE resource \"64 bytes and a ROP chain – A journey through nftables · exploit\" (CVE-2023-0179); URL type: exploit.",
      "summary_zh": "2024 年 Linux 内核LPE资料：「64 bytes and a ROP chain – A journey through nftables · exploit」（CVE-2023-0179）；URL 类型：exploit。",
      "source_markdown": "[2024: \"64 bytes and a ROP chain – A journey through nftables\" by Davide Ornaghi](https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/) [article] [[part 2](https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/)] [[exploit](https://github.com/TurtleARM/CVE-2023-0179-PoC)] [CVE-2023-0179]",
      "search_text": "64 bytes and a rop chain – a journey through nftables · exploit 64 bytes and a rop chain – a journey through nftables davide ornaghi cve-2023-0179  vulnerabilities lpe lpe exploit exploit https://github.com/turtlearm/cve-2023-0179-poc vulnerabilities lpe exploit cve-2023-0179  lpe 2024 linux kernel lpe resource \"64 bytes and a rop chain – a journey through nftables · exploit\" (cve-2023-0179); url type: exploit. 2024 年 linux 内核lpe资料：「64 bytes and a rop chain – a journey through nftables · exploit」（cve-2023-0179）；url 类型：exploit。 # 64 bytes and a rop chain – a journey through nftables · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: 64 bytes and a rop chain – a journey through nftables resource_label: exploit resource_type: exploit resource_url: https://github.com/turtlearm/cve-2023-0179-poc parent_primary_url: https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"64 bytes and a rop chain – a journey through nftables\" by davide ornaghi](https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-1/) [article] [[part 2](https://betrusted.it/blog/64-bytes-and-a-rop-chain-part-2/)] [[exploit](https://github.com/turtlearm/cve-2023-0179-poc)] [cve-2023-0179] cves: cve-2023-0179 android_impact_status: unknown android_impact_reason: linux kernel vulnerability unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "7f2cef2b49f2b009",
      "item_id": "9a8be4f71f2254a3",
      "slug": "2024-vulnerabilities-lpe-mind-the-patch-gap-exploiting-an-io-uring-vulnerability-in-ubuntu-primary-c2e39284",
      "year": 2024,
      "title": "Mind the Patch Gap: Exploiting an io_uring Vulnerability in Ubuntu",
      "item_title": "Mind the Patch Gap: Exploiting an io_uring Vulnerability in Ubuntu",
      "authors": [
        "Oriol Castejon"
      ],
      "cves": [
        "CVE-2024-0582"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.exodusintel.com/2024/03/27/mind-the-patch-gap-exploiting-an-io_uring-vulnerability-in-ubuntu/",
      "primary_url": "https://blog.exodusintel.com/2024/03/27/mind-the-patch-gap-exploiting-an-io_uring-vulnerability-in-ubuntu/",
      "parent_primary_url": "https://blog.exodusintel.com/2024/03/27/mind-the-patch-gap-exploiting-an-io_uring-vulnerability-in-ubuntu/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-mind-the-patch-gap-exploiting-an-io-uring-vulnerability-in-ubuntu-primary-c2e39284.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mind the Patch Gap: Exploiting an io_uring Vulnerability in Ubuntu record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Mind the Patch Gap: Exploiting an io_uring Vulnerability in Ubuntu resource_label: primary resource_type: article resource_url: https://blog.exodusintel.com/2024/03/27/mind-the-patch-gap-exploiting-an-io_uring-vulnerability-in-ubuntu/ parent_primary_url: https://blog.exodusintel.com/2024/03/27/mind-the-patch-gap-exploiting-an-io_uring-vulnerability-in-ubuntu/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Mind the Patch Gap: Exploiting an io_uring Vulnerability in Ubuntu\" by Oriol Castejon](https://blog.exodusintel.com/2024/03/27/mind-the-patch-gap-exploiting-an-io_uring-vulnerability-in-ubuntu/) [CVE-2024-0582] cves: CVE-2024-0582 android_impact_status: unknown andro",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.exodusintel.com/2024/03/27/mind-the-patch-gap-exploiting-an-io_uring-vulnerability-in-ubuntu/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.exodusintel.com/2024/03/27/mind-the-patch-gap-exploiting-an-io_uring-vulnerability-in-ubuntu/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://blog.exodusintel.com/2024/03/27/mind-the-patch-gap-exploiting-an-io_uring-vulnerability-in-ubuntu/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2024-0582"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2024 Linux kernel LPE resource \"Mind the Patch Gap: Exploiting an io_uring Vulnerability in Ubuntu\" (CVE-2024-0582); URL type: article.",
      "summary_zh": "2024 年 Linux 内核LPE资料：「Mind the Patch Gap: Exploiting an io_uring Vulnerability in Ubuntu」（CVE-2024-0582）；URL 类型：article。",
      "source_markdown": "[2024: \"Mind the Patch Gap: Exploiting an io_uring Vulnerability in Ubuntu\" by Oriol Castejon](https://blog.exodusintel.com/2024/03/27/mind-the-patch-gap-exploiting-an-io_uring-vulnerability-in-ubuntu/) [CVE-2024-0582]",
      "search_text": "mind the patch gap: exploiting an io_uring vulnerability in ubuntu mind the patch gap: exploiting an io_uring vulnerability in ubuntu oriol castejon cve-2024-0582  vulnerabilities lpe lpe primary article https://blog.exodusintel.com/2024/03/27/mind-the-patch-gap-exploiting-an-io_uring-vulnerability-in-ubuntu/ vulnerabilities lpe article cve-2024-0582  lpe 2024 linux kernel lpe resource \"mind the patch gap: exploiting an io_uring vulnerability in ubuntu\" (cve-2024-0582); url type: article. 2024 年 linux 内核lpe资料：「mind the patch gap: exploiting an io_uring vulnerability in ubuntu」（cve-2024-0582）；url 类型：article。 # mind the patch gap: exploiting an io_uring vulnerability in ubuntu record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: mind the patch gap: exploiting an io_uring vulnerability in ubuntu resource_label: primary resource_type: article resource_url: https://blog.exodusintel.com/2024/03/27/mind-the-patch-gap-exploiting-an-io_uring-vulnerability-in-ubuntu/ parent_primary_url: https://blog.exodusintel.com/2024/03/27/mind-the-patch-gap-exploiting-an-io_uring-vulnerability-in-ubuntu/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"mind the patch gap: exploiting an io_uring vulnerability in ubuntu\" by oriol castejon](https://blog.exodusintel.com/2024/03/27/mind-the-patch-gap-exploiting-an-io_uring-vulnerability-in-ubuntu/) [cve-2024-0582] cves: cve-2024-0582 android_impact_status: unknown andro unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "2e3aa1ae143936da",
      "item_id": "c57c54f903d46824",
      "slug": "2024-vulnerabilities-lpe-cve-2022-2586-writeup-primary-7a8c7b0a",
      "year": 2024,
      "title": "CVE-2022-2586 Writeup",
      "item_title": "CVE-2022-2586 Writeup",
      "authors": [],
      "cves": [
        "CVE-2022-2586"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://jmpeax.dev/CVE-2022-2586-writeup.html",
      "primary_url": "https://jmpeax.dev/CVE-2022-2586-writeup.html",
      "parent_primary_url": "https://jmpeax.dev/CVE-2022-2586-writeup.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-cve-2022-2586-writeup-primary-7a8c7b0a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2022-2586 Writeup record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2022-2586 Writeup resource_label: primary resource_type: article resource_url: https://jmpeax.dev/CVE-2022-2586-writeup.html parent_primary_url: https://jmpeax.dev/CVE-2022-2586-writeup.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"CVE-2022-2586 Writeup\"](https://jmpeax.dev/CVE-2022-2586-writeup.html) [article] [CVE-2022-2586] cves: CVE-2022-2586 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links:",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://jmpeax.dev/CVE-2022-2586-writeup.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://jmpeax.dev/CVE-2022-2586-writeup.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Linux"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This writeup provides details on CVE-2022-2586 and its implications.",
      "summary_zh": "该写作提供了关于CVE-2022-2586及其影响的详细信息。",
      "source_markdown": "[2024: \"CVE-2022-2586 Writeup\"](https://jmpeax.dev/CVE-2022-2586-writeup.html) [article] [CVE-2022-2586]",
      "search_text": "cve-2022-2586 writeup cve-2022-2586 writeup  cve-2022-2586  vulnerabilities lpe lpe primary article https://jmpeax.dev/cve-2022-2586-writeup.html lpe linux  vulnerability analysis this writeup provides details on cve-2022-2586 and its implications. 该写作提供了关于cve-2022-2586及其影响的详细信息。 # cve-2022-2586 writeup record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2022-2586 writeup resource_label: primary resource_type: article resource_url: https://jmpeax.dev/cve-2022-2586-writeup.html parent_primary_url: https://jmpeax.dev/cve-2022-2586-writeup.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"cve-2022-2586 writeup\"](https://jmpeax.dev/cve-2022-2586-writeup.html) [article] [cve-2022-2586] cves: cve-2022-2586 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bed36884187cf27c",
      "item_id": "aaed9da68b8b60e8",
      "slug": "2024-vulnerabilities-lpe-n-gsm-exploit-primary-9b0ea593",
      "year": 2024,
      "title": "n_gsm_exploit",
      "item_title": "n_gsm_exploit",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/fff-vr/n_gsm_exploit",
      "primary_url": "https://github.com/fff-vr/n_gsm_exploit",
      "parent_primary_url": "https://github.com/fff-vr/n_gsm_exploit",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-n-gsm-exploit-primary-9b0ea593.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# n_gsm_exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: n_gsm_exploit resource_label: primary resource_type: article resource_url: https://github.com/fff-vr/n_gsm_exploit parent_primary_url: https://github.com/fff-vr/n_gsm_exploit source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"n_gsm_exploit\"](https://github.com/fff-vr/n_gsm_exploit) [article] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/fff-vr/n_gsm_exploit context_links: - [article] primary: https://githu",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/fff-vr/n_gsm_exploit"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/fff-vr/n_gsm_exploit"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/fff-vr/n_gsm_exploit"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Linux"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This article discusses an exploit related to the n_gsm vulnerability in the Linux kernel.",
      "summary_zh": "本文讨论了与Linux内核中n_gsm漏洞相关的利用。",
      "source_markdown": "[2024: \"n_gsm_exploit\"](https://github.com/fff-vr/n_gsm_exploit) [article]",
      "search_text": "n_gsm_exploit n_gsm_exploit    vulnerabilities lpe lpe primary article https://github.com/fff-vr/n_gsm_exploit lpe linux  vulnerability analysis this article discusses an exploit related to the n_gsm vulnerability in the linux kernel. 本文讨论了与linux内核中n_gsm漏洞相关的利用。 # n_gsm_exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: n_gsm_exploit resource_label: primary resource_type: article resource_url: https://github.com/fff-vr/n_gsm_exploit parent_primary_url: https://github.com/fff-vr/n_gsm_exploit source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"n_gsm_exploit\"](https://github.com/fff-vr/n_gsm_exploit) [article] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/fff-vr/n_gsm_exploit context_links: - [article] primary: https://githu unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "84cd003c845ce25c",
      "item_id": "d0f04f8c33c85adf",
      "slug": "2024-vulnerabilities-lpe-the-tale-of-a-gsm-kernel-lpe-primary-819666c1",
      "year": 2024,
      "title": "The tale of a GSM Kernel LPE",
      "item_title": "The tale of a GSM Kernel LPE",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html",
      "primary_url": "https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html",
      "parent_primary_url": "https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-the-tale-of-a-gsm-kernel-lpe-primary-819666c1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The tale of a GSM Kernel LPE record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The tale of a GSM Kernel LPE resource_label: primary resource_type: article resource_url: https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html parent_primary_url: https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"The tale of a GSM Kernel LPE\"](https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html) [article] [[exploit](https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit)] [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-v",
      "link_types": [
        "article",
        "exploit",
        "discussion"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit"
        },
        {
          "label": "notes",
          "type": "article",
          "url": "https://mastodon.social/@gabe_k/112251322421680553"
        },
        {
          "label": "discussion",
          "type": "discussion",
          "url": "https://www.openwall.com/lists/oss-security/2024/04/10/18"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html"
          },
          {
            "label": "notes",
            "type": "article",
            "url": "https://mastodon.social/@gabe_k/112251322421680553"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit"
          }
        ],
        "poc": [],
        "other": [
          {
            "label": "discussion",
            "type": "discussion",
            "url": "https://www.openwall.com/lists/oss-security/2024/04/10/18"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Linux",
        "GSM"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This article narrates the exploitation of a GSM kernel vulnerability.",
      "summary_zh": "本文叙述了对GSM内核漏洞的利用。",
      "source_markdown": "[2024: \"The tale of a GSM Kernel LPE\"](https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html) [article] [[exploit](https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit)] [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)]",
      "search_text": "the tale of a gsm kernel lpe the tale of a gsm kernel lpe    vulnerabilities lpe lpe primary article https://jmpeax.dev/the-tale-of-a-gsm-kernel-lpe.html lpe linux gsm  vulnerability analysis this article narrates the exploitation of a gsm kernel vulnerability. 本文叙述了对gsm内核漏洞的利用。 # the tale of a gsm kernel lpe record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the tale of a gsm kernel lpe resource_label: primary resource_type: article resource_url: https://jmpeax.dev/the-tale-of-a-gsm-kernel-lpe.html parent_primary_url: https://jmpeax.dev/the-tale-of-a-gsm-kernel-lpe.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"the tale of a gsm kernel lpe\"](https://jmpeax.dev/the-tale-of-a-gsm-kernel-lpe.html) [article] [[exploit](https://github.com/jmpe4x/gsm_linux_kernel_lpe_nday_exploit)] [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-v unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "36ae4fc14d91810d",
      "item_id": "d0f04f8c33c85adf",
      "slug": "2024-vulnerabilities-lpe-the-tale-of-a-gsm-kernel-lpe-exploit-10959d3d",
      "year": 2024,
      "title": "The tale of a GSM Kernel LPE · exploit",
      "item_title": "The tale of a GSM Kernel LPE",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit",
      "primary_url": "https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit",
      "parent_primary_url": "https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-the-tale-of-a-gsm-kernel-lpe-exploit-10959d3d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The tale of a GSM Kernel LPE · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The tale of a GSM Kernel LPE resource_label: exploit resource_type: exploit resource_url: https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit parent_primary_url: https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"The tale of a GSM Kernel LPE\"](https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html) [article] [[exploit](https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit)] [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impa",
      "link_types": [
        "article",
        "exploit",
        "discussion"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit"
        },
        {
          "label": "notes",
          "type": "article",
          "url": "https://mastodon.social/@gabe_k/112251322421680553"
        },
        {
          "label": "discussion",
          "type": "discussion",
          "url": "https://www.openwall.com/lists/oss-security/2024/04/10/18"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html"
          },
          {
            "label": "notes",
            "type": "article",
            "url": "https://mastodon.social/@gabe_k/112251322421680553"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit"
          }
        ],
        "poc": [],
        "other": [
          {
            "label": "discussion",
            "type": "discussion",
            "url": "https://www.openwall.com/lists/oss-security/2024/04/10/18"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "GSM",
        "kernel"
      ],
      "affected_area": "kernel",
      "exploit_stage": "vulnerability",
      "summary_en": "This resource discusses a local privilege escalation vulnerability in the Linux kernel related to GSM multiplexing.",
      "summary_zh": "该资源讨论了与GSM复用相关的Linux内核中的本地特权升级漏洞。",
      "source_markdown": "[2024: \"The tale of a GSM Kernel LPE\"](https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html) [article] [[exploit](https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit)] [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)]",
      "search_text": "the tale of a gsm kernel lpe · exploit the tale of a gsm kernel lpe    vulnerabilities lpe lpe exploit exploit https://github.com/jmpe4x/gsm_linux_kernel_lpe_nday_exploit lpe gsm kernel kernel vulnerability this resource discusses a local privilege escalation vulnerability in the linux kernel related to gsm multiplexing. 该资源讨论了与gsm复用相关的linux内核中的本地特权升级漏洞。 # the tale of a gsm kernel lpe · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the tale of a gsm kernel lpe resource_label: exploit resource_type: exploit resource_url: https://github.com/jmpe4x/gsm_linux_kernel_lpe_nday_exploit parent_primary_url: https://jmpeax.dev/the-tale-of-a-gsm-kernel-lpe.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"the tale of a gsm kernel lpe\"](https://jmpeax.dev/the-tale-of-a-gsm-kernel-lpe.html) [article] [[exploit](https://github.com/jmpe4x/gsm_linux_kernel_lpe_nday_exploit)] [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impa unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "73cebdc1d649d11c",
      "item_id": "d0f04f8c33c85adf",
      "slug": "2024-vulnerabilities-lpe-the-tale-of-a-gsm-kernel-lpe-notes-c7aceb53",
      "year": 2024,
      "title": "The tale of a GSM Kernel LPE · notes",
      "item_title": "The tale of a GSM Kernel LPE",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "notes",
      "resource_type": "article",
      "resource_url": "https://mastodon.social/@gabe_k/112251322421680553",
      "primary_url": "https://mastodon.social/@gabe_k/112251322421680553",
      "parent_primary_url": "https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-the-tale-of-a-gsm-kernel-lpe-notes-c7aceb53.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The tale of a GSM Kernel LPE · notes record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The tale of a GSM Kernel LPE resource_label: notes resource_type: article resource_url: https://mastodon.social/@gabe_k/112251322421680553 parent_primary_url: https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"The tale of a GSM Kernel LPE\"](https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html) [article] [[exploit](https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit)] [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kern",
      "link_types": [
        "article",
        "exploit",
        "discussion"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit"
        },
        {
          "label": "notes",
          "type": "article",
          "url": "https://mastodon.social/@gabe_k/112251322421680553"
        },
        {
          "label": "discussion",
          "type": "discussion",
          "url": "https://www.openwall.com/lists/oss-security/2024/04/10/18"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html"
          },
          {
            "label": "notes",
            "type": "article",
            "url": "https://mastodon.social/@gabe_k/112251322421680553"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit"
          }
        ],
        "poc": [],
        "other": [
          {
            "label": "discussion",
            "type": "discussion",
            "url": "https://www.openwall.com/lists/oss-security/2024/04/10/18"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "GSM",
        "kernel"
      ],
      "affected_area": "kernel",
      "exploit_stage": "vulnerability",
      "summary_en": "Notes on a local privilege escalation vulnerability in the Linux kernel related to GSM multiplexing.",
      "summary_zh": "关于与GSM复用相关的Linux内核中的本地特权升级漏洞的笔记。",
      "source_markdown": "[2024: \"The tale of a GSM Kernel LPE\"](https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html) [article] [[exploit](https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit)] [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)]",
      "search_text": "the tale of a gsm kernel lpe · notes the tale of a gsm kernel lpe    vulnerabilities lpe lpe notes article https://mastodon.social/@gabe_k/112251322421680553 lpe gsm kernel kernel vulnerability notes on a local privilege escalation vulnerability in the linux kernel related to gsm multiplexing. 关于与gsm复用相关的linux内核中的本地特权升级漏洞的笔记。 # the tale of a gsm kernel lpe · notes record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the tale of a gsm kernel lpe resource_label: notes resource_type: article resource_url: https://mastodon.social/@gabe_k/112251322421680553 parent_primary_url: https://jmpeax.dev/the-tale-of-a-gsm-kernel-lpe.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"the tale of a gsm kernel lpe\"](https://jmpeax.dev/the-tale-of-a-gsm-kernel-lpe.html) [article] [[exploit](https://github.com/jmpe4x/gsm_linux_kernel_lpe_nday_exploit)] [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kern unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "2c9c67b7866a322a",
      "item_id": "d0f04f8c33c85adf",
      "slug": "2024-vulnerabilities-lpe-the-tale-of-a-gsm-kernel-lpe-discussion-c61f5a0a",
      "year": 2024,
      "title": "The tale of a GSM Kernel LPE · discussion",
      "item_title": "The tale of a GSM Kernel LPE",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "discussion",
      "resource_type": "discussion",
      "resource_url": "https://www.openwall.com/lists/oss-security/2024/04/10/18",
      "primary_url": "https://www.openwall.com/lists/oss-security/2024/04/10/18",
      "parent_primary_url": "https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-the-tale-of-a-gsm-kernel-lpe-discussion-c61f5a0a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The tale of a GSM Kernel LPE · discussion record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The tale of a GSM Kernel LPE resource_label: discussion resource_type: discussion resource_url: https://www.openwall.com/lists/oss-security/2024/04/10/18 parent_primary_url: https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"The tale of a GSM Kernel LPE\"](https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html) [article] [[exploit](https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit)] [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android producti",
      "link_types": [
        "article",
        "exploit",
        "discussion"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit"
        },
        {
          "label": "notes",
          "type": "article",
          "url": "https://mastodon.social/@gabe_k/112251322421680553"
        },
        {
          "label": "discussion",
          "type": "discussion",
          "url": "https://www.openwall.com/lists/oss-security/2024/04/10/18"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html"
          },
          {
            "label": "notes",
            "type": "article",
            "url": "https://mastodon.social/@gabe_k/112251322421680553"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit"
          }
        ],
        "poc": [],
        "other": [
          {
            "label": "discussion",
            "type": "discussion",
            "url": "https://www.openwall.com/lists/oss-security/2024/04/10/18"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "GSM",
        "kernel"
      ],
      "affected_area": "kernel",
      "exploit_stage": "vulnerability",
      "summary_en": "Discussion on a local privilege escalation vulnerability in the Linux kernel related to GSM multiplexing.",
      "summary_zh": "关于与GSM复用相关的Linux内核中的本地特权升级漏洞的讨论。",
      "source_markdown": "[2024: \"The tale of a GSM Kernel LPE\"](https://jmpeax.dev/The-tale-of-a-GSM-Kernel-LPE.html) [article] [[exploit](https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit)] [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)]",
      "search_text": "the tale of a gsm kernel lpe · discussion the tale of a gsm kernel lpe    vulnerabilities lpe lpe discussion discussion https://www.openwall.com/lists/oss-security/2024/04/10/18 lpe gsm kernel kernel vulnerability discussion on a local privilege escalation vulnerability in the linux kernel related to gsm multiplexing. 关于与gsm复用相关的linux内核中的本地特权升级漏洞的讨论。 # the tale of a gsm kernel lpe · discussion record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the tale of a gsm kernel lpe resource_label: discussion resource_type: discussion resource_url: https://www.openwall.com/lists/oss-security/2024/04/10/18 parent_primary_url: https://jmpeax.dev/the-tale-of-a-gsm-kernel-lpe.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"the tale of a gsm kernel lpe\"](https://jmpeax.dev/the-tale-of-a-gsm-kernel-lpe.html) [article] [[exploit](https://github.com/jmpe4x/gsm_linux_kernel_lpe_nday_exploit)] [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android producti unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "6010d8ee59296890",
      "item_id": "1c204ec774897aac",
      "slug": "2024-vulnerabilities-lpe-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8-primary-5b64c9d4",
      "year": 2024,
      "title": "Gaining kernel code execution on an MTE-enabled Pixel 8",
      "item_title": "Gaining kernel code execution on an MTE-enabled Pixel 8",
      "authors": [
        "Man Yue Mo"
      ],
      "cves": [
        "CVE-2023-6241"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/",
      "primary_url": "https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/",
      "parent_primary_url": "https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8-primary-5b64c9d4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Gaining kernel code execution on an MTE-enabled Pixel 8 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Gaining kernel code execution on an MTE-enabled Pixel 8 resource_label: primary resource_type: article resource_url: https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/ parent_primary_url: https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Gaining kernel code execution on an MTE-enabled Pixel 8\" by Man Yue Mo](https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/) [article] [[exploit](https://github.com/github/securitylab/tree/main/SecurityExploits/Android/Mali/CVE_2023_6241)] [CVE-2023-6241] cves: CVE-2023-6241 android_impact_",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/github/securitylab/tree/main/SecurityExploits/Android/Mali/CVE_2023_6241"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/github/securitylab/tree/main/SecurityExploits/Android/Mali/CVE_2023_6241"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/",
        "https://github.com/github/securitylab/tree/main/SecurityExploits/Android/Mali/CVE_2023_6241"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "MTE",
        "Android"
      ],
      "affected_area": "kernel",
      "exploit_stage": "vulnerability",
      "summary_en": "An article detailing a local privilege escalation vulnerability on an MTE-enabled Pixel 8 device.",
      "summary_zh": "一篇详细介绍在MTE启用的Pixel 8设备上的本地特权升级漏洞的文章。",
      "source_markdown": "[2024: \"Gaining kernel code execution on an MTE-enabled Pixel 8\" by Man Yue Mo](https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/) [article] [[exploit](https://github.com/github/securitylab/tree/main/SecurityExploits/Android/Mali/CVE_2023_6241)] [CVE-2023-6241]",
      "search_text": "gaining kernel code execution on an mte-enabled pixel 8 gaining kernel code execution on an mte-enabled pixel 8 man yue mo cve-2023-6241  vulnerabilities lpe lpe primary article https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/ lpe mte android kernel vulnerability an article detailing a local privilege escalation vulnerability on an mte-enabled pixel 8 device. 一篇详细介绍在mte启用的pixel 8设备上的本地特权升级漏洞的文章。 # gaining kernel code execution on an mte-enabled pixel 8 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: gaining kernel code execution on an mte-enabled pixel 8 resource_label: primary resource_type: article resource_url: https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/ parent_primary_url: https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"gaining kernel code execution on an mte-enabled pixel 8\" by man yue mo](https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/) [article] [[exploit](https://github.com/github/securitylab/tree/main/securityexploits/android/mali/cve_2023_6241)] [cve-2023-6241] cves: cve-2023-6241 android_impact_ yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "4fb914ad0546a99e",
      "item_id": "1c204ec774897aac",
      "slug": "2024-vulnerabilities-lpe-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8-exploit-31180d94",
      "year": 2024,
      "title": "Gaining kernel code execution on an MTE-enabled Pixel 8 · exploit",
      "item_title": "Gaining kernel code execution on an MTE-enabled Pixel 8",
      "authors": [
        "Man Yue Mo"
      ],
      "cves": [
        "CVE-2023-6241"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/github/securitylab/tree/main/SecurityExploits/Android/Mali/CVE_2023_6241",
      "primary_url": "https://github.com/github/securitylab/tree/main/SecurityExploits/Android/Mali/CVE_2023_6241",
      "parent_primary_url": "https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8-exploit-31180d94.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Gaining kernel code execution on an MTE-enabled Pixel 8 · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Gaining kernel code execution on an MTE-enabled Pixel 8 resource_label: exploit resource_type: exploit resource_url: https://github.com/github/securitylab/tree/main/SecurityExploits/Android/Mali/CVE_2023_6241 parent_primary_url: https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Gaining kernel code execution on an MTE-enabled Pixel 8\" by Man Yue Mo](https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/) [article] [[exploit](https://github.com/github/securitylab/tree/main/SecurityExploits/Android/Mali/CVE_2023_6241)] [CVE-2023-6241] cves: CVE-2023-6241 a",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/github/securitylab/tree/main/SecurityExploits/Android/Mali/CVE_2023_6241"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/github/securitylab/tree/main/SecurityExploits/Android/Mali/CVE_2023_6241"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/",
        "https://github.com/github/securitylab/tree/main/SecurityExploits/Android/Mali/CVE_2023_6241"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "MTE",
        "Android"
      ],
      "affected_area": "kernel",
      "exploit_stage": "exploit",
      "summary_en": "Exploit code for a local privilege escalation vulnerability on an MTE-enabled Pixel 8 device.",
      "summary_zh": "在MTE启用的Pixel 8设备上的本地特权升级漏洞的利用代码。",
      "source_markdown": "[2024: \"Gaining kernel code execution on an MTE-enabled Pixel 8\" by Man Yue Mo](https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/) [article] [[exploit](https://github.com/github/securitylab/tree/main/SecurityExploits/Android/Mali/CVE_2023_6241)] [CVE-2023-6241]",
      "search_text": "gaining kernel code execution on an mte-enabled pixel 8 · exploit gaining kernel code execution on an mte-enabled pixel 8 man yue mo cve-2023-6241  vulnerabilities lpe lpe exploit exploit https://github.com/github/securitylab/tree/main/securityexploits/android/mali/cve_2023_6241 lpe mte android kernel exploit exploit code for a local privilege escalation vulnerability on an mte-enabled pixel 8 device. 在mte启用的pixel 8设备上的本地特权升级漏洞的利用代码。 # gaining kernel code execution on an mte-enabled pixel 8 · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: gaining kernel code execution on an mte-enabled pixel 8 resource_label: exploit resource_type: exploit resource_url: https://github.com/github/securitylab/tree/main/securityexploits/android/mali/cve_2023_6241 parent_primary_url: https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"gaining kernel code execution on an mte-enabled pixel 8\" by man yue mo](https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/) [article] [[exploit](https://github.com/github/securitylab/tree/main/securityexploits/android/mali/cve_2023_6241)] [cve-2023-6241] cves: cve-2023-6241 a yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "64555d6e1a7bff64",
      "item_id": "7a5f07c73d6e2cb8",
      "slug": "2024-vulnerabilities-lpe-mali-gpu-kernel-lpe-android-14-kernel-exploit-for-pixel7-8-pro-primary-52f095a7",
      "year": 2024,
      "title": "Mali GPU Kernel LPE: Android 14 kernel exploit for Pixel7/8 Pro",
      "item_title": "Mali GPU Kernel LPE: Android 14 kernel exploit for Pixel7/8 Pro",
      "authors": [
        "Mohamed Ghannam"
      ],
      "cves": [
        "CVE-2023-26083"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/0x36/Pixel_GPU_Exploit",
      "primary_url": "https://github.com/0x36/Pixel_GPU_Exploit",
      "parent_primary_url": "https://github.com/0x36/Pixel_GPU_Exploit",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-mali-gpu-kernel-lpe-android-14-kernel-exploit-for-pixel7-8-pro-primary-52f095a7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mali GPU Kernel LPE: Android 14 kernel exploit for Pixel7/8 Pro record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Mali GPU Kernel LPE: Android 14 kernel exploit for Pixel7/8 Pro resource_label: primary resource_type: article resource_url: https://github.com/0x36/Pixel_GPU_Exploit parent_primary_url: https://github.com/0x36/Pixel_GPU_Exploit source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"Mali GPU Kernel LPE: Android 14 kernel exploit for Pixel7/8 Pro\" by Mohamed Ghannam](https://github.com/0x36/Pixel_GPU_Exploit) [article] [CVE-2023-26083] cves: CVE-2023-26083 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true co",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/0x36/Pixel_GPU_Exploit"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/0x36/Pixel_GPU_Exploit"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/0x36/Pixel_GPU_Exploit"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Mali",
        "Android"
      ],
      "affected_area": "driver",
      "exploit_stage": "vulnerability",
      "summary_en": "An article on a local privilege escalation vulnerability in the Mali GPU driver for Android 14.",
      "summary_zh": "关于Android 14中Mali GPU驱动程序的本地特权升级漏洞的文章。",
      "source_markdown": "[2024: \"Mali GPU Kernel LPE: Android 14 kernel exploit for Pixel7/8 Pro\" by Mohamed Ghannam](https://github.com/0x36/Pixel_GPU_Exploit) [article] [CVE-2023-26083]",
      "search_text": "mali gpu kernel lpe: android 14 kernel exploit for pixel7/8 pro mali gpu kernel lpe: android 14 kernel exploit for pixel7/8 pro mohamed ghannam cve-2023-26083  vulnerabilities lpe lpe primary article https://github.com/0x36/pixel_gpu_exploit lpe mali android driver vulnerability an article on a local privilege escalation vulnerability in the mali gpu driver for android 14. 关于android 14中mali gpu驱动程序的本地特权升级漏洞的文章。 # mali gpu kernel lpe: android 14 kernel exploit for pixel7/8 pro record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: mali gpu kernel lpe: android 14 kernel exploit for pixel7/8 pro resource_label: primary resource_type: article resource_url: https://github.com/0x36/pixel_gpu_exploit parent_primary_url: https://github.com/0x36/pixel_gpu_exploit source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"mali gpu kernel lpe: android 14 kernel exploit for pixel7/8 pro\" by mohamed ghannam](https://github.com/0x36/pixel_gpu_exploit) [article] [cve-2023-26083] cves: cve-2023-26083 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true co yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "a44fcfaf6cdbe0d5",
      "item_id": "bb77a6a1dca04b6d",
      "slug": "2024-vulnerabilities-lpe-cve-2023-5178-exploiting-linux-kernel-nvme-of-tcp-driver-on-ubuntu-23-10-primary-bc95",
      "year": 2024,
      "title": "CVE-2023-5178: exploiting Linux kernel NVMe-oF-TCP driver on Ubuntu 23.10",
      "item_title": "CVE-2023-5178: exploiting Linux kernel NVMe-oF-TCP driver on Ubuntu 23.10",
      "authors": [
        "rockrid3r"
      ],
      "cves": [
        "CVE-2023-5178"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://rockrid3r.github.io/2024/02/07/CVE-2023-5178.html",
      "primary_url": "https://rockrid3r.github.io/2024/02/07/CVE-2023-5178.html",
      "parent_primary_url": "https://rockrid3r.github.io/2024/02/07/CVE-2023-5178.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-cve-2023-5178-exploiting-linux-kernel-nvme-of-tcp-driver-on-ubuntu-23-10-primary-bc95.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2023-5178: exploiting Linux kernel NVMe-oF-TCP driver on Ubuntu 23.10 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2023-5178: exploiting Linux kernel NVMe-oF-TCP driver on Ubuntu 23.10 resource_label: primary resource_type: article resource_url: https://rockrid3r.github.io/2024/02/07/CVE-2023-5178.html parent_primary_url: https://rockrid3r.github.io/2024/02/07/CVE-2023-5178.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"CVE-2023-5178: exploiting Linux kernel NVMe-oF-TCP driver on Ubuntu 23.10\" by rockrid3r](https://rockrid3r.github.io/2024/02/07/CVE-2023-5178.html) [article] [CVE-2023-5178] [[exploit](https://github.com/rockrid3r/CVE-2023-5178)] cves: CVE-2023-5178 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Andro",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://rockrid3r.github.io/2024/02/07/CVE-2023-5178.html"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/rockrid3r/CVE-2023-5178"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://rockrid3r.github.io/2024/02/07/CVE-2023-5178.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/rockrid3r/CVE-2023-5178"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://rockrid3r.github.io/2024/02/07/CVE-2023-5178.html",
        "https://github.com/rockrid3r/CVE-2023-5178"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "NVMe",
        "Ubuntu"
      ],
      "affected_area": "driver",
      "exploit_stage": "vulnerability",
      "summary_en": "An article discussing the exploitation of a local privilege escalation vulnerability in the NVMe-oF-TCP driver on Ubuntu 23.10.",
      "summary_zh": "讨论在Ubuntu 23.10上利用NVMe-oF-TCP驱动程序中的本地特权升级漏洞的文章。",
      "source_markdown": "[2024: \"CVE-2023-5178: exploiting Linux kernel NVMe-oF-TCP driver on Ubuntu 23.10\" by rockrid3r](https://rockrid3r.github.io/2024/02/07/CVE-2023-5178.html) [article] [CVE-2023-5178] [[exploit](https://github.com/rockrid3r/CVE-2023-5178)]",
      "search_text": "cve-2023-5178: exploiting linux kernel nvme-of-tcp driver on ubuntu 23.10 cve-2023-5178: exploiting linux kernel nvme-of-tcp driver on ubuntu 23.10 rockrid3r cve-2023-5178  vulnerabilities lpe lpe primary article https://rockrid3r.github.io/2024/02/07/cve-2023-5178.html lpe nvme ubuntu driver vulnerability an article discussing the exploitation of a local privilege escalation vulnerability in the nvme-of-tcp driver on ubuntu 23.10. 讨论在ubuntu 23.10上利用nvme-of-tcp驱动程序中的本地特权升级漏洞的文章。 # cve-2023-5178: exploiting linux kernel nvme-of-tcp driver on ubuntu 23.10 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2023-5178: exploiting linux kernel nvme-of-tcp driver on ubuntu 23.10 resource_label: primary resource_type: article resource_url: https://rockrid3r.github.io/2024/02/07/cve-2023-5178.html parent_primary_url: https://rockrid3r.github.io/2024/02/07/cve-2023-5178.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"cve-2023-5178: exploiting linux kernel nvme-of-tcp driver on ubuntu 23.10\" by rockrid3r](https://rockrid3r.github.io/2024/02/07/cve-2023-5178.html) [article] [cve-2023-5178] [[exploit](https://github.com/rockrid3r/cve-2023-5178)] cves: cve-2023-5178 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; andro unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "a52f2f92cd7a7671",
      "item_id": "bb77a6a1dca04b6d",
      "slug": "2024-vulnerabilities-lpe-cve-2023-5178-exploiting-linux-kernel-nvme-of-tcp-driver-on-ubuntu-23-10-exploit-6541",
      "year": 2024,
      "title": "CVE-2023-5178: exploiting Linux kernel NVMe-oF-TCP driver on Ubuntu 23.10 · exploit",
      "item_title": "CVE-2023-5178: exploiting Linux kernel NVMe-oF-TCP driver on Ubuntu 23.10",
      "authors": [
        "rockrid3r"
      ],
      "cves": [
        "CVE-2023-5178"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/rockrid3r/CVE-2023-5178",
      "primary_url": "https://github.com/rockrid3r/CVE-2023-5178",
      "parent_primary_url": "https://rockrid3r.github.io/2024/02/07/CVE-2023-5178.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2024-vulnerabilities-lpe-cve-2023-5178-exploiting-linux-kernel-nvme-of-tcp-driver-on-ubuntu-23-10-exploit-6541.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2023-5178: exploiting Linux kernel NVMe-oF-TCP driver on Ubuntu 23.10 · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2023-5178: exploiting Linux kernel NVMe-oF-TCP driver on Ubuntu 23.10 resource_label: exploit resource_type: exploit resource_url: https://github.com/rockrid3r/CVE-2023-5178 parent_primary_url: https://rockrid3r.github.io/2024/02/07/CVE-2023-5178.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"CVE-2023-5178: exploiting Linux kernel NVMe-oF-TCP driver on Ubuntu 23.10\" by rockrid3r](https://rockrid3r.github.io/2024/02/07/CVE-2023-5178.html) [article] [CVE-2023-5178] [[exploit](https://github.com/rockrid3r/CVE-2023-5178)] cves: CVE-2023-5178 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android pr",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://rockrid3r.github.io/2024/02/07/CVE-2023-5178.html"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/rockrid3r/CVE-2023-5178"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://rockrid3r.github.io/2024/02/07/CVE-2023-5178.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/rockrid3r/CVE-2023-5178"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://rockrid3r.github.io/2024/02/07/CVE-2023-5178.html",
        "https://github.com/rockrid3r/CVE-2023-5178"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "NVMe",
        "Ubuntu"
      ],
      "affected_area": "driver",
      "exploit_stage": "exploit",
      "summary_en": "Exploit code for a local privilege escalation vulnerability in the NVMe-oF-TCP driver on Ubuntu 23.10.",
      "summary_zh": "在Ubuntu 23.10上NVMe-oF-TCP驱动程序中的本地特权升级漏洞的利用代码。",
      "source_markdown": "[2024: \"CVE-2023-5178: exploiting Linux kernel NVMe-oF-TCP driver on Ubuntu 23.10\" by rockrid3r](https://rockrid3r.github.io/2024/02/07/CVE-2023-5178.html) [article] [CVE-2023-5178] [[exploit](https://github.com/rockrid3r/CVE-2023-5178)]",
      "search_text": "cve-2023-5178: exploiting linux kernel nvme-of-tcp driver on ubuntu 23.10 · exploit cve-2023-5178: exploiting linux kernel nvme-of-tcp driver on ubuntu 23.10 rockrid3r cve-2023-5178  vulnerabilities lpe lpe exploit exploit https://github.com/rockrid3r/cve-2023-5178 lpe nvme ubuntu driver exploit exploit code for a local privilege escalation vulnerability in the nvme-of-tcp driver on ubuntu 23.10. 在ubuntu 23.10上nvme-of-tcp驱动程序中的本地特权升级漏洞的利用代码。 # cve-2023-5178: exploiting linux kernel nvme-of-tcp driver on ubuntu 23.10 · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2023-5178: exploiting linux kernel nvme-of-tcp driver on ubuntu 23.10 resource_label: exploit resource_type: exploit resource_url: https://github.com/rockrid3r/cve-2023-5178 parent_primary_url: https://rockrid3r.github.io/2024/02/07/cve-2023-5178.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2024: \"cve-2023-5178: exploiting linux kernel nvme-of-tcp driver on ubuntu 23.10\" by rockrid3r](https://rockrid3r.github.io/2024/02/07/cve-2023-5178.html) [article] [cve-2023-5178] [[exploit](https://github.com/rockrid3r/cve-2023-5178)] cves: cve-2023-5178 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android pr unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "6b33f788554ab078",
      "item_id": "e2755da45f16308d",
      "slug": "2023-vulnerabilities-lpe-exploiting-null-derefs-primary-f7e4fc51",
      "year": 2023,
      "title": "Exploiting null-derefs",
      "item_title": "Exploiting null-derefs",
      "authors": [
        "Seth Jenkins"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://powerofcommunity.net/assets/v0/poc2023/SethJenkins.pdf",
      "primary_url": "https://powerofcommunity.net/assets/v0/poc2023/SethJenkins.pdf",
      "parent_primary_url": "https://powerofcommunity.net/assets/v0/poc2023/SethJenkins.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-exploiting-null-derefs-primary-f7e4fc51.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting null-derefs record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting null-derefs resource_label: primary resource_type: slides resource_url: https://powerofcommunity.net/assets/v0/poc2023/SethJenkins.pdf parent_primary_url: https://powerofcommunity.net/assets/v0/poc2023/SethJenkins.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Exploiting null-derefs\" by Seth Jenkins](https://powerofcommunity.net/assets/v0/poc2023/SethJenkins.pdf) [slides] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_p",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://powerofcommunity.net/assets/v0/poc2023/SethJenkins.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://powerofcommunity.net/assets/v0/poc2023/SethJenkins.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "null-deref",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Slides on exploiting null-dereference vulnerabilities in the Linux kernel.",
      "summary_zh": "关于在Linux内核中利用空引用漏洞的幻灯片。",
      "source_markdown": "[2023: \"Exploiting null-derefs\" by Seth Jenkins](https://powerofcommunity.net/assets/v0/poc2023/SethJenkins.pdf) [slides] [CVE-UNKNOWN]",
      "search_text": "exploiting null-derefs exploiting null-derefs seth jenkins cve-unknown  vulnerabilities lpe lpe primary slides https://powerofcommunity.net/assets/v0/poc2023/sethjenkins.pdf lpe null-deref kernel  vulnerability slides on exploiting null-dereference vulnerabilities in the linux kernel. 关于在linux内核中利用空引用漏洞的幻灯片。 # exploiting null-derefs record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting null-derefs resource_label: primary resource_type: slides resource_url: https://powerofcommunity.net/assets/v0/poc2023/sethjenkins.pdf parent_primary_url: https://powerofcommunity.net/assets/v0/poc2023/sethjenkins.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"exploiting null-derefs\" by seth jenkins](https://powerofcommunity.net/assets/v0/poc2023/sethjenkins.pdf) [slides] [cve-unknown] cves: cve-unknown android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_p unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f8add3cac95d8f32",
      "item_id": "8b57eed942620d9a",
      "slug": "2023-vulnerabilities-lpe-linux-kernel-gsm-multiplexing-race-condition-local-privilege-escalation-vulnerability",
      "year": 2023,
      "title": "Linux Kernel GSM Multiplexing Race Condition Local Privilege Escalation Vulnerability (CVE-2023-6546)",
      "item_title": "Linux Kernel GSM Multiplexing Race Condition Local Privilege Escalation Vulnerability (CVE-2023-6546)",
      "authors": [
        "Nassim Asrir"
      ],
      "cves": [
        "CVE-2023-6546"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/Nassim-Asrir/ZDI-24-020/",
      "primary_url": "https://github.com/Nassim-Asrir/ZDI-24-020/",
      "parent_primary_url": "https://github.com/Nassim-Asrir/ZDI-24-020/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-linux-kernel-gsm-multiplexing-race-condition-local-privilege-escalation-vulnerability.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel GSM Multiplexing Race Condition Local Privilege Escalation Vulnerability (CVE-2023-6546) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux Kernel GSM Multiplexing Race Condition Local Privilege Escalation Vulnerability (CVE-2023-6546) resource_label: primary resource_type: code resource_url: https://github.com/Nassim-Asrir/ZDI-24-020/ parent_primary_url: https://github.com/Nassim-Asrir/ZDI-24-020/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Linux Kernel GSM Multiplexing Race Condition Local Privilege Escalation Vulnerability (CVE-2023-6546)\" by Nassim Asrir](https://github.com/Nassim-Asrir/ZDI-24-020/) [CVE-2023-6546] cves: CVE-2023-6546 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact nee",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/Nassim-Asrir/ZDI-24-020/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/Nassim-Asrir/ZDI-24-020/"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Nassim-Asrir/ZDI-24-020/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "GSM",
        "kernel"
      ],
      "affected_area": "kernel",
      "exploit_stage": "vulnerability",
      "summary_en": "A report on a local privilege escalation vulnerability in the Linux kernel related to GSM multiplexing.",
      "summary_zh": "关于与GSM复用相关的Linux内核中的本地特权升级漏洞的报告。",
      "source_markdown": "[2023: \"Linux Kernel GSM Multiplexing Race Condition Local Privilege Escalation Vulnerability (CVE-2023-6546)\" by Nassim Asrir](https://github.com/Nassim-Asrir/ZDI-24-020/) [CVE-2023-6546]",
      "search_text": "linux kernel gsm multiplexing race condition local privilege escalation vulnerability (cve-2023-6546) linux kernel gsm multiplexing race condition local privilege escalation vulnerability (cve-2023-6546) nassim asrir cve-2023-6546  vulnerabilities lpe lpe primary code https://github.com/nassim-asrir/zdi-24-020/ lpe gsm kernel kernel vulnerability a report on a local privilege escalation vulnerability in the linux kernel related to gsm multiplexing. 关于与gsm复用相关的linux内核中的本地特权升级漏洞的报告。 # linux kernel gsm multiplexing race condition local privilege escalation vulnerability (cve-2023-6546) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel gsm multiplexing race condition local privilege escalation vulnerability (cve-2023-6546) resource_label: primary resource_type: code resource_url: https://github.com/nassim-asrir/zdi-24-020/ parent_primary_url: https://github.com/nassim-asrir/zdi-24-020/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"linux kernel gsm multiplexing race condition local privilege escalation vulnerability (cve-2023-6546)\" by nassim asrir](https://github.com/nassim-asrir/zdi-24-020/) [cve-2023-6546] cves: cve-2023-6546 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact nee unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "8e8b99129a490327",
      "item_id": "32a16482ee2db35f",
      "slug": "2023-vulnerabilities-lpe-cve-2022-27666-my-file-your-memory-primary-7e9a3bd6",
      "year": 2023,
      "title": "CVE-2022-27666: My file your memory",
      "item_title": "CVE-2022-27666: My file your memory",
      "authors": [
        "Erin Avllazagaj"
      ],
      "cves": [
        "CVE-2022-27666"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://albocoder.github.io/exploit/2023/03/13/KernelFileExploit.html",
      "primary_url": "https://albocoder.github.io/exploit/2023/03/13/KernelFileExploit.html",
      "parent_primary_url": "https://albocoder.github.io/exploit/2023/03/13/KernelFileExploit.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-cve-2022-27666-my-file-your-memory-primary-7e9a3bd6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2022-27666: My file your memory record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2022-27666: My file your memory resource_label: primary resource_type: article resource_url: https://albocoder.github.io/exploit/2023/03/13/KernelFileExploit.html parent_primary_url: https://albocoder.github.io/exploit/2023/03/13/KernelFileExploit.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"CVE-2022-27666: My file your memory\" by Erin Avllazagaj](https://albocoder.github.io/exploit/2023/03/13/KernelFileExploit.html) [article] [CVE-2022-27666] cves: CVE-2022-27666 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://albocoder.github.io/exploit/2023/03/13/KernelFileExploit.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://albocoder.github.io/exploit/2023/03/13/KernelFileExploit.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://albocoder.github.io/exploit/2023/03/13/KernelFileExploit.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article analyzing a local privilege escalation vulnerability in the Linux kernel.",
      "summary_zh": "分析Linux内核中的本地特权升级漏洞的文章。",
      "source_markdown": "[2023: \"CVE-2022-27666: My file your memory\" by Erin Avllazagaj](https://albocoder.github.io/exploit/2023/03/13/KernelFileExploit.html) [article] [CVE-2022-27666]",
      "search_text": "cve-2022-27666: my file your memory cve-2022-27666: my file your memory erin avllazagaj cve-2022-27666  vulnerabilities lpe lpe primary article https://albocoder.github.io/exploit/2023/03/13/kernelfileexploit.html lpe kernel  vulnerability an article analyzing a local privilege escalation vulnerability in the linux kernel. 分析linux内核中的本地特权升级漏洞的文章。 # cve-2022-27666: my file your memory record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2022-27666: my file your memory resource_label: primary resource_type: article resource_url: https://albocoder.github.io/exploit/2023/03/13/kernelfileexploit.html parent_primary_url: https://albocoder.github.io/exploit/2023/03/13/kernelfileexploit.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"cve-2022-27666: my file your memory\" by erin avllazagaj](https://albocoder.github.io/exploit/2023/03/13/kernelfileexploit.html) [article] [cve-2022-27666] cves: cve-2022-27666 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "7677be38c81d4fdf",
      "item_id": "5fa7d2bd5177ab29",
      "slug": "2023-vulnerabilities-lpe-conquering-the-memory-through-io-uring-analysis-of-cve-2023-2598-primary-90beef7a",
      "year": 2023,
      "title": "Conquering the memory through io_uring - Analysis of CVE-2023-2598",
      "item_title": "Conquering the memory through io_uring - Analysis of CVE-2023-2598",
      "authors": [],
      "cves": [
        "CVE-2023-2598"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://anatomic.rip/cve-2023-2598/",
      "primary_url": "https://anatomic.rip/cve-2023-2598/",
      "parent_primary_url": "https://anatomic.rip/cve-2023-2598/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-conquering-the-memory-through-io-uring-analysis-of-cve-2023-2598-primary-90beef7a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Conquering the memory through io_uring - Analysis of CVE-2023-2598 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Conquering the memory through io_uring - Analysis of CVE-2023-2598 resource_label: primary resource_type: article resource_url: https://anatomic.rip/cve-2023-2598/ parent_primary_url: https://anatomic.rip/cve-2023-2598/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Conquering the memory through io_uring - Analysis of CVE-2023-2598\"](https://anatomic.rip/cve-2023-2598/) [article] [[exploit](https://github.com/ysanatomic/io_uring_LPE-CVE-2023-2598)] [CVE-2023-2598] cves: CVE-2023-2598 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_statu",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://anatomic.rip/cve-2023-2598/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/ysanatomic/io_uring_LPE-CVE-2023-2598"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://anatomic.rip/cve-2023-2598/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/ysanatomic/io_uring_LPE-CVE-2023-2598"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ysanatomic/io_uring_LPE-CVE-2023-2598"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "io_uring",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An analysis of a local privilege escalation vulnerability through io_uring in the Linux kernel.",
      "summary_zh": "通过io_uring分析Linux内核中的本地特权升级漏洞。",
      "source_markdown": "[2023: \"Conquering the memory through io_uring - Analysis of CVE-2023-2598\"](https://anatomic.rip/cve-2023-2598/) [article] [[exploit](https://github.com/ysanatomic/io_uring_LPE-CVE-2023-2598)] [CVE-2023-2598]",
      "search_text": "conquering the memory through io_uring - analysis of cve-2023-2598 conquering the memory through io_uring - analysis of cve-2023-2598  cve-2023-2598  vulnerabilities lpe lpe primary article https://anatomic.rip/cve-2023-2598/ lpe io_uring kernel  vulnerability an analysis of a local privilege escalation vulnerability through io_uring in the linux kernel. 通过io_uring分析linux内核中的本地特权升级漏洞。 # conquering the memory through io_uring - analysis of cve-2023-2598 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: conquering the memory through io_uring - analysis of cve-2023-2598 resource_label: primary resource_type: article resource_url: https://anatomic.rip/cve-2023-2598/ parent_primary_url: https://anatomic.rip/cve-2023-2598/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"conquering the memory through io_uring - analysis of cve-2023-2598\"](https://anatomic.rip/cve-2023-2598/) [article] [[exploit](https://github.com/ysanatomic/io_uring_lpe-cve-2023-2598)] [cve-2023-2598] cves: cve-2023-2598 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_statu unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "9cf54aff03aa5fdc",
      "item_id": "5fa7d2bd5177ab29",
      "slug": "2023-vulnerabilities-lpe-conquering-the-memory-through-io-uring-analysis-of-cve-2023-2598-exploit-68eb52f1",
      "year": 2023,
      "title": "Conquering the memory through io_uring - Analysis of CVE-2023-2598 · exploit",
      "item_title": "Conquering the memory through io_uring - Analysis of CVE-2023-2598",
      "authors": [],
      "cves": [
        "CVE-2023-2598"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/ysanatomic/io_uring_LPE-CVE-2023-2598",
      "primary_url": "https://github.com/ysanatomic/io_uring_LPE-CVE-2023-2598",
      "parent_primary_url": "https://anatomic.rip/cve-2023-2598/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-conquering-the-memory-through-io-uring-analysis-of-cve-2023-2598-exploit-68eb52f1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Conquering the memory through io_uring - Analysis of CVE-2023-2598 · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Conquering the memory through io_uring - Analysis of CVE-2023-2598 resource_label: exploit resource_type: exploit resource_url: https://github.com/ysanatomic/io_uring_LPE-CVE-2023-2598 parent_primary_url: https://anatomic.rip/cve-2023-2598/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Conquering the memory through io_uring - Analysis of CVE-2023-2598\"](https://anatomic.rip/cve-2023-2598/) [article] [[exploit](https://github.com/ysanatomic/io_uring_LPE-CVE-2023-2598)] [CVE-2023-2598] cves: CVE-2023-2598 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-ba",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://anatomic.rip/cve-2023-2598/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/ysanatomic/io_uring_LPE-CVE-2023-2598"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://anatomic.rip/cve-2023-2598/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/ysanatomic/io_uring_LPE-CVE-2023-2598"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ysanatomic/io_uring_LPE-CVE-2023-2598"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "io_uring",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Exploit code for a local privilege escalation vulnerability through io_uring in the Linux kernel.",
      "summary_zh": "通过io_uring在Linux内核中的本地特权升级漏洞的利用代码。",
      "source_markdown": "[2023: \"Conquering the memory through io_uring - Analysis of CVE-2023-2598\"](https://anatomic.rip/cve-2023-2598/) [article] [[exploit](https://github.com/ysanatomic/io_uring_LPE-CVE-2023-2598)] [CVE-2023-2598]",
      "search_text": "conquering the memory through io_uring - analysis of cve-2023-2598 · exploit conquering the memory through io_uring - analysis of cve-2023-2598  cve-2023-2598  vulnerabilities lpe lpe exploit exploit https://github.com/ysanatomic/io_uring_lpe-cve-2023-2598 lpe io_uring kernel  exploit exploit code for a local privilege escalation vulnerability through io_uring in the linux kernel. 通过io_uring在linux内核中的本地特权升级漏洞的利用代码。 # conquering the memory through io_uring - analysis of cve-2023-2598 · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: conquering the memory through io_uring - analysis of cve-2023-2598 resource_label: exploit resource_type: exploit resource_url: https://github.com/ysanatomic/io_uring_lpe-cve-2023-2598 parent_primary_url: https://anatomic.rip/cve-2023-2598/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"conquering the memory through io_uring - analysis of cve-2023-2598\"](https://anatomic.rip/cve-2023-2598/) [article] [[exploit](https://github.com/ysanatomic/io_uring_lpe-cve-2023-2598)] [cve-2023-2598] cves: cve-2023-2598 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-ba unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "096e82eeb9b641e6",
      "item_id": "5f80ef08b44a2fe9",
      "slug": "2023-vulnerabilities-lpe-conquering-a-use-after-free-in-nf-tables-detailed-analysis-and-exploitation-of-cve-20",
      "year": 2023,
      "title": "Conquering a Use-After-Free in nf_tables: Detailed Analysis and Exploitation of CVE-2022-32250",
      "item_title": "Conquering a Use-After-Free in nf_tables: Detailed Analysis and Exploitation of CVE-2022-32250",
      "authors": [
        "Yordan Stoychev"
      ],
      "cves": [
        "CVE-2022-32250"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://anatomic.rip/cve-2022-32250/",
      "primary_url": "https://anatomic.rip/cve-2022-32250/",
      "parent_primary_url": "https://anatomic.rip/cve-2022-32250/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-conquering-a-use-after-free-in-nf-tables-detailed-analysis-and-exploitation-of-cve-20.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Conquering a Use-After-Free in nf_tables: Detailed Analysis and Exploitation of CVE-2022-32250 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Conquering a Use-After-Free in nf_tables: Detailed Analysis and Exploitation of CVE-2022-32250 resource_label: primary resource_type: article resource_url: https://anatomic.rip/cve-2022-32250/ parent_primary_url: https://anatomic.rip/cve-2022-32250/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Conquering a Use-After-Free in nf_tables: Detailed Analysis and Exploitation of CVE-2022-32250\" by Yordan Stoychev](https://anatomic.rip/cve-2022-32250/) [article] [CVE-2022-32250] cves: CVE-2022-32250 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and ve",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://anatomic.rip/cve-2022-32250/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://anatomic.rip/cve-2022-32250/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "use-after-free",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article detailing the exploitation of a use-after-free vulnerability in nf_tables.",
      "summary_zh": "详细介绍在nf_tables中利用使用后释放漏洞的文章。",
      "source_markdown": "[2023: \"Conquering a Use-After-Free in nf_tables: Detailed Analysis and Exploitation of CVE-2022-32250\" by Yordan Stoychev](https://anatomic.rip/cve-2022-32250/) [article] [CVE-2022-32250]",
      "search_text": "conquering a use-after-free in nf_tables: detailed analysis and exploitation of cve-2022-32250 conquering a use-after-free in nf_tables: detailed analysis and exploitation of cve-2022-32250 yordan stoychev cve-2022-32250  vulnerabilities lpe lpe primary article https://anatomic.rip/cve-2022-32250/ lpe use-after-free kernel  vulnerability an article detailing the exploitation of a use-after-free vulnerability in nf_tables. 详细介绍在nf_tables中利用使用后释放漏洞的文章。 # conquering a use-after-free in nf_tables: detailed analysis and exploitation of cve-2022-32250 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: conquering a use-after-free in nf_tables: detailed analysis and exploitation of cve-2022-32250 resource_label: primary resource_type: article resource_url: https://anatomic.rip/cve-2022-32250/ parent_primary_url: https://anatomic.rip/cve-2022-32250/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"conquering a use-after-free in nf_tables: detailed analysis and exploitation of cve-2022-32250\" by yordan stoychev](https://anatomic.rip/cve-2022-32250/) [article] [cve-2022-32250] cves: cve-2022-32250 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and ve unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ccd92cc3035102a4",
      "item_id": "e408cca7f20accd4",
      "slug": "2023-vulnerabilities-lpe-one-shot-triple-kill-pwning-all-three-google-kernelctf-instances-with-a-single-1-day-",
      "year": 2023,
      "title": "One shot, Triple kill: Pwning all three Google kernelCTF instances with a single 1-day Linux vulnerability",
      "item_title": "One shot, Triple kill: Pwning all three Google kernelCTF instances with a single 1-day Linux vulnerability",
      "authors": [],
      "cves": [
        "CVE-2023-3390"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf",
      "primary_url": "https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf",
      "parent_primary_url": "https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-one-shot-triple-kill-pwning-all-three-google-kernelctf-instances-with-a-single-1-day-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# One shot, Triple kill: Pwning all three Google kernelCTF instances with a single 1-day Linux vulnerability record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: One shot, Triple kill: Pwning all three Google kernelCTF instances with a single 1-day Linux vulnerability resource_label: primary resource_type: slides resource_url: https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf parent_primary_url: https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"One shot, Triple kill: Pwning all three Google kernelCTF instances with a single 1-day Linux vulnerability\"](https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf) [slides] [[abstract](https://kaist-hacking.github.io/publication/kim-kernel-ctf/)] [CVE-",
      "link_types": [
        "slides",
        "abstract"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf"
        },
        {
          "label": "abstract",
          "type": "abstract",
          "url": "https://kaist-hacking.github.io/publication/kim-kernel-ctf/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "abstract",
            "type": "abstract",
            "url": "https://kaist-hacking.github.io/publication/kim-kernel-ctf/"
          }
        ]
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf",
        "https://kaist-hacking.github.io/publication/kim-kernel-ctf/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "kernelCTF",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Slides on exploiting a single-day Linux vulnerability affecting multiple Google kernelCTF instances.",
      "summary_zh": "关于利用影响多个Google kernelCTF实例的单日Linux漏洞的幻灯片。",
      "source_markdown": "[2023: \"One shot, Triple kill: Pwning all three Google kernelCTF instances with a single 1-day Linux vulnerability\"](https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf) [slides] [[abstract](https://kaist-hacking.github.io/publication/kim-kernel-ctf/)] [CVE-2023-3390]",
      "search_text": "one shot, triple kill: pwning all three google kernelctf instances with a single 1-day linux vulnerability one shot, triple kill: pwning all three google kernelctf instances with a single 1-day linux vulnerability  cve-2023-3390  vulnerabilities lpe lpe primary slides https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf lpe kernelctf kernel  vulnerability slides on exploiting a single-day linux vulnerability affecting multiple google kernelctf instances. 关于利用影响多个google kernelctf实例的单日linux漏洞的幻灯片。 # one shot, triple kill: pwning all three google kernelctf instances with a single 1-day linux vulnerability record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: one shot, triple kill: pwning all three google kernelctf instances with a single 1-day linux vulnerability resource_label: primary resource_type: slides resource_url: https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf parent_primary_url: https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"one shot, triple kill: pwning all three google kernelctf instances with a single 1-day linux vulnerability\"](https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf) [slides] [[abstract](https://kaist-hacking.github.io/publication/kim-kernel-ctf/)] [cve- unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ea7f6fe385fffc56",
      "item_id": "e408cca7f20accd4",
      "slug": "2023-vulnerabilities-lpe-one-shot-triple-kill-pwning-all-three-google-kernelctf-instances-with-a-single-1-day--2",
      "year": 2023,
      "title": "One shot, Triple kill: Pwning all three Google kernelCTF instances with a single 1-day Linux vulnerability · abstract",
      "item_title": "One shot, Triple kill: Pwning all three Google kernelCTF instances with a single 1-day Linux vulnerability",
      "authors": [],
      "cves": [
        "CVE-2023-3390"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "abstract",
      "resource_type": "abstract",
      "resource_url": "https://kaist-hacking.github.io/publication/kim-kernel-ctf/",
      "primary_url": "https://kaist-hacking.github.io/publication/kim-kernel-ctf/",
      "parent_primary_url": "https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-one-shot-triple-kill-pwning-all-three-google-kernelctf-instances-with-a-single-1-day--2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# One shot, Triple kill: Pwning all three Google kernelCTF instances with a single 1-day Linux vulnerability · abstract record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: One shot, Triple kill: Pwning all three Google kernelCTF instances with a single 1-day Linux vulnerability resource_label: abstract resource_type: abstract resource_url: https://kaist-hacking.github.io/publication/kim-kernel-ctf/ parent_primary_url: https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"One shot, Triple kill: Pwning all three Google kernelCTF instances with a single 1-day Linux vulnerability\"](https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf) [slides] [[abstract](https://kaist-hacking.github.io/publication/kim-kernel-ctf/)]",
      "link_types": [
        "slides",
        "abstract"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf"
        },
        {
          "label": "abstract",
          "type": "abstract",
          "url": "https://kaist-hacking.github.io/publication/kim-kernel-ctf/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "abstract",
            "type": "abstract",
            "url": "https://kaist-hacking.github.io/publication/kim-kernel-ctf/"
          }
        ]
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf",
        "https://kaist-hacking.github.io/publication/kim-kernel-ctf/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "kCTF",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article on escaping a Google kCTF container using a data-only exploit.",
      "summary_zh": "关于使用数据仅利用逃逸Google kCTF容器的文章。",
      "source_markdown": "[2023: \"One shot, Triple kill: Pwning all three Google kernelCTF instances with a single 1-day Linux vulnerability\"](https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf) [slides] [[abstract](https://kaist-hacking.github.io/publication/kim-kernel-ctf/)] [CVE-2023-3390]",
      "search_text": "one shot, triple kill: pwning all three google kernelctf instances with a single 1-day linux vulnerability · abstract one shot, triple kill: pwning all three google kernelctf instances with a single 1-day linux vulnerability  cve-2023-3390  vulnerabilities lpe lpe abstract abstract https://kaist-hacking.github.io/publication/kim-kernel-ctf/ lpe kctf kernel  vulnerability an article on escaping a google kctf container using a data-only exploit. 关于使用数据仅利用逃逸google kctf容器的文章。 # one shot, triple kill: pwning all three google kernelctf instances with a single 1-day linux vulnerability · abstract record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: one shot, triple kill: pwning all three google kernelctf instances with a single 1-day linux vulnerability resource_label: abstract resource_type: abstract resource_url: https://kaist-hacking.github.io/publication/kim-kernel-ctf/ parent_primary_url: https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"one shot, triple kill: pwning all three google kernelctf instances with a single 1-day linux vulnerability\"](https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf) [slides] [[abstract](https://kaist-hacking.github.io/publication/kim-kernel-ctf/)] unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "f1eea9a62bd89541",
      "item_id": "a400b919e8ce7f04",
      "slug": "2023-vulnerabilities-lpe-exploiting-a-bug-in-the-linux-kernel-with-zig-primary-26efe05a",
      "year": 2023,
      "title": "Exploiting a bug in the Linux kernel with Zig",
      "item_title": "Exploiting a bug in the Linux kernel with Zig",
      "authors": [
        "Richard Palethorpe"
      ],
      "cves": [
        "CVE-2023-0461"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://richiejp.com/linux-kernel-exploit-tls_context-uaf",
      "primary_url": "https://richiejp.com/linux-kernel-exploit-tls_context-uaf",
      "parent_primary_url": "https://richiejp.com/linux-kernel-exploit-tls_context-uaf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-exploiting-a-bug-in-the-linux-kernel-with-zig-primary-26efe05a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting a bug in the Linux kernel with Zig record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting a bug in the Linux kernel with Zig resource_label: primary resource_type: article resource_url: https://richiejp.com/linux-kernel-exploit-tls_context-uaf parent_primary_url: https://richiejp.com/linux-kernel-exploit-tls_context-uaf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Exploiting a bug in the Linux kernel with Zig\" by Richard Palethorpe](https://richiejp.com/linux-kernel-exploit-tls_context-uaf) [article] [[video](https://www.youtube.com/watch?v=g7ATRgat0v4)] [CVE-2023-0461] cves: CVE-2023-0461 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_im",
      "link_types": [
        "article",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://richiejp.com/linux-kernel-exploit-tls_context-uaf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=g7ATRgat0v4"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://richiejp.com/linux-kernel-exploit-tls_context-uaf"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=g7ATRgat0v4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://richiejp.com/linux-kernel-exploit-tls_context-uaf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Zig",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article discussing the exploitation of a bug in the Linux kernel using Zig.",
      "summary_zh": "讨论使用Zig利用Linux内核中的漏洞的文章。",
      "source_markdown": "[2023: \"Exploiting a bug in the Linux kernel with Zig\" by Richard Palethorpe](https://richiejp.com/linux-kernel-exploit-tls_context-uaf) [article] [[video](https://www.youtube.com/watch?v=g7ATRgat0v4)] [CVE-2023-0461]",
      "search_text": "exploiting a bug in the linux kernel with zig exploiting a bug in the linux kernel with zig richard palethorpe cve-2023-0461  vulnerabilities lpe lpe primary article https://richiejp.com/linux-kernel-exploit-tls_context-uaf lpe zig kernel  vulnerability an article discussing the exploitation of a bug in the linux kernel using zig. 讨论使用zig利用linux内核中的漏洞的文章。 # exploiting a bug in the linux kernel with zig record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting a bug in the linux kernel with zig resource_label: primary resource_type: article resource_url: https://richiejp.com/linux-kernel-exploit-tls_context-uaf parent_primary_url: https://richiejp.com/linux-kernel-exploit-tls_context-uaf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"exploiting a bug in the linux kernel with zig\" by richard palethorpe](https://richiejp.com/linux-kernel-exploit-tls_context-uaf) [article] [[video](https://www.youtube.com/watch?v=g7atrgat0v4)] [cve-2023-0461] cves: cve-2023-0461 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_im unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "280af74b3cec22d0",
      "item_id": "a400b919e8ce7f04",
      "slug": "2023-vulnerabilities-lpe-exploiting-a-bug-in-the-linux-kernel-with-zig-video-1507f265",
      "year": 2023,
      "title": "Exploiting a bug in the Linux kernel with Zig · video",
      "item_title": "Exploiting a bug in the Linux kernel with Zig",
      "authors": [
        "Richard Palethorpe"
      ],
      "cves": [
        "CVE-2023-0461"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=g7ATRgat0v4",
      "primary_url": "https://www.youtube.com/watch?v=g7ATRgat0v4",
      "parent_primary_url": "https://richiejp.com/linux-kernel-exploit-tls_context-uaf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-exploiting-a-bug-in-the-linux-kernel-with-zig-video-1507f265.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting a bug in the Linux kernel with Zig · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting a bug in the Linux kernel with Zig resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=g7ATRgat0v4 parent_primary_url: https://richiejp.com/linux-kernel-exploit-tls_context-uaf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Exploiting a bug in the Linux kernel with Zig\" by Richard Palethorpe](https://richiejp.com/linux-kernel-exploit-tls_context-uaf) [article] [[video](https://www.youtube.com/watch?v=g7ATRgat0v4)] [CVE-2023-0461] cves: CVE-2023-0461 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_statu",
      "link_types": [
        "article",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://richiejp.com/linux-kernel-exploit-tls_context-uaf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=g7ATRgat0v4"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://richiejp.com/linux-kernel-exploit-tls_context-uaf"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=g7ATRgat0v4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://richiejp.com/linux-kernel-exploit-tls_context-uaf"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Zig",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "A video discussing the exploitation of a bug in the Linux kernel using Zig.",
      "summary_zh": "讨论使用Zig利用Linux内核中的漏洞的视频。",
      "source_markdown": "[2023: \"Exploiting a bug in the Linux kernel with Zig\" by Richard Palethorpe](https://richiejp.com/linux-kernel-exploit-tls_context-uaf) [article] [[video](https://www.youtube.com/watch?v=g7ATRgat0v4)] [CVE-2023-0461]",
      "search_text": "exploiting a bug in the linux kernel with zig · video exploiting a bug in the linux kernel with zig richard palethorpe cve-2023-0461  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=g7atrgat0v4 lpe zig kernel  vulnerability a video discussing the exploitation of a bug in the linux kernel using zig. 讨论使用zig利用linux内核中的漏洞的视频。 # exploiting a bug in the linux kernel with zig · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting a bug in the linux kernel with zig resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=g7atrgat0v4 parent_primary_url: https://richiejp.com/linux-kernel-exploit-tls_context-uaf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"exploiting a bug in the linux kernel with zig\" by richard palethorpe](https://richiejp.com/linux-kernel-exploit-tls_context-uaf) [article] [[video](https://www.youtube.com/watch?v=g7atrgat0v4)] [cve-2023-0461] cves: cve-2023-0461 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_statu unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "74b4f22f42a8e3af",
      "item_id": "dba046acc3aa58ec",
      "slug": "2023-vulnerabilities-lpe-escaping-the-google-kctf-container-with-a-data-only-exploit-primary-afbe53f4",
      "year": 2023,
      "title": "Escaping the Google kCTF Container with a Data-Only Exploit",
      "item_title": "Escaping the Google kCTF Container with a Data-Only Exploit",
      "authors": [
        "h0mbre"
      ],
      "cves": [
        "CVE-2022-3910"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://h0mbre.github.io/kCTF_Data_Only_Exploit/",
      "primary_url": "https://h0mbre.github.io/kCTF_Data_Only_Exploit/",
      "parent_primary_url": "https://h0mbre.github.io/kCTF_Data_Only_Exploit/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-escaping-the-google-kctf-container-with-a-data-only-exploit-primary-afbe53f4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Escaping the Google kCTF Container with a Data-Only Exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Escaping the Google kCTF Container with a Data-Only Exploit resource_label: primary resource_type: article resource_url: https://h0mbre.github.io/kCTF_Data_Only_Exploit/ parent_primary_url: https://h0mbre.github.io/kCTF_Data_Only_Exploit/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Escaping the Google kCTF Container with a Data-Only Exploit\" by h0mbre](https://h0mbre.github.io/kCTF_Data_Only_Exploit/) [article] [CVE-2022-3910] cves: CVE-2022-3910 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS de",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://h0mbre.github.io/kCTF_Data_Only_Exploit/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://h0mbre.github.io/kCTF_Data_Only_Exploit/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://h0mbre.github.io/kCTF_Data_Only_Exploit/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "CVE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article analyzing a modern in-the-wild Android exploit affecting multiple CVEs.",
      "summary_zh": "分析影响多个CVE的现代野外Android利用的文章。",
      "source_markdown": "[2023: \"Escaping the Google kCTF Container with a Data-Only Exploit\" by h0mbre](https://h0mbre.github.io/kCTF_Data_Only_Exploit/) [article] [CVE-2022-3910]",
      "search_text": "escaping the google kctf container with a data-only exploit escaping the google kctf container with a data-only exploit h0mbre cve-2022-3910  vulnerabilities lpe lpe primary article https://h0mbre.github.io/kctf_data_only_exploit/ lpe android cve  vulnerability an article analyzing a modern in-the-wild android exploit affecting multiple cves. 分析影响多个cve的现代野外android利用的文章。 # escaping the google kctf container with a data-only exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: escaping the google kctf container with a data-only exploit resource_label: primary resource_type: article resource_url: https://h0mbre.github.io/kctf_data_only_exploit/ parent_primary_url: https://h0mbre.github.io/kctf_data_only_exploit/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"escaping the google kctf container with a data-only exploit\" by h0mbre](https://h0mbre.github.io/kctf_data_only_exploit/) [article] [cve-2022-3910] cves: cve-2022-3910 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios de unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "06ae545ba5c34a02",
      "item_id": "15b138d05d0d017f",
      "slug": "2023-vulnerabilities-lpe-analyzing-a-modern-in-the-wild-android-exploit-primary-5bc9bddb",
      "year": 2023,
      "title": "Analyzing a Modern In-the-wild Android Exploit",
      "item_title": "Analyzing a Modern In-the-wild Android Exploit",
      "authors": [
        "Seth Jenkins"
      ],
      "cves": [
        "CVE-2023-0266",
        "CVE-2023-26083"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2023/09/analyzing-modern-in-wild-android-exploit.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2023/09/analyzing-modern-in-wild-android-exploit.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2023/09/analyzing-modern-in-wild-android-exploit.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-analyzing-a-modern-in-the-wild-android-exploit-primary-5bc9bddb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Analyzing a Modern In-the-wild Android Exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Analyzing a Modern In-the-wild Android Exploit resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2023/09/analyzing-modern-in-wild-android-exploit.html parent_primary_url: https://googleprojectzero.blogspot.com/2023/09/analyzing-modern-in-wild-android-exploit.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Analyzing a Modern In-the-wild Android Exploit\" by Seth Jenkins](https://googleprojectzero.blogspot.com/2023/09/analyzing-modern-in-wild-android-exploit.html) [article] [CVE-2023-0266] [CVE-2023-26083] cves: CVE-2023-0266, CVE-2023-26083 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impa",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2023/09/analyzing-modern-in-wild-android-exploit.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2023/09/analyzing-modern-in-wild-android-exploit.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://googleprojectzero.blogspot.com/2023/09/analyzing-modern-in-wild-android-exploit.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2023-0266",
        "CVE-2023-26083"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2023 Linux kernel LPE resource \"Analyzing a Modern In-the-wild Android Exploit\" (CVE-2023-0266, CVE-2023-26083); URL type: article. Android impact: yes.",
      "summary_zh": "2023 年 Linux 内核LPE资料：「Analyzing a Modern In-the-wild Android Exploit」（CVE-2023-0266、CVE-2023-26083）；URL 类型：article。 Android 影响：yes。",
      "source_markdown": "[2023: \"Analyzing a Modern In-the-wild Android Exploit\" by Seth Jenkins](https://googleprojectzero.blogspot.com/2023/09/analyzing-modern-in-wild-android-exploit.html) [article] [CVE-2023-0266] [CVE-2023-26083]",
      "search_text": "analyzing a modern in-the-wild android exploit analyzing a modern in-the-wild android exploit seth jenkins cve-2023-0266 cve-2023-26083  vulnerabilities lpe lpe primary article https://googleprojectzero.blogspot.com/2023/09/analyzing-modern-in-wild-android-exploit.html vulnerabilities lpe article cve-2023-0266 cve-2023-26083  lpe 2023 linux kernel lpe resource \"analyzing a modern in-the-wild android exploit\" (cve-2023-0266, cve-2023-26083); url type: article. android impact: yes. 2023 年 linux 内核lpe资料：「analyzing a modern in-the-wild android exploit」（cve-2023-0266、cve-2023-26083）；url 类型：article。 android 影响：yes。 # analyzing a modern in-the-wild android exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: analyzing a modern in-the-wild android exploit resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2023/09/analyzing-modern-in-wild-android-exploit.html parent_primary_url: https://googleprojectzero.blogspot.com/2023/09/analyzing-modern-in-wild-android-exploit.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"analyzing a modern in-the-wild android exploit\" by seth jenkins](https://googleprojectzero.blogspot.com/2023/09/analyzing-modern-in-wild-android-exploit.html) [article] [cve-2023-0266] [cve-2023-26083] cves: cve-2023-0266, cve-2023-26083 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impa yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "4886da23939a1500",
      "item_id": "fcadffa6efd34ec0",
      "slug": "2023-vulnerabilities-lpe-old-bug-shallow-bug-exploiting-ubuntu-at-pwn2own-vancouver-2023-primary-7c8afef1",
      "year": 2023,
      "title": "Old bug, shallow bug: Exploiting Ubuntu at Pwn2Own Vancouver 2023",
      "item_title": "Old bug, shallow bug: Exploiting Ubuntu at Pwn2Own Vancouver 2023",
      "authors": [
        "Tanguy Dubroca"
      ],
      "cves": [
        "CVE-2023-35001"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.synacktiv.com/publications/old-bug-shallow-bug-exploiting-ubuntu-at-pwn2own-vancouver-2023",
      "primary_url": "https://www.synacktiv.com/publications/old-bug-shallow-bug-exploiting-ubuntu-at-pwn2own-vancouver-2023",
      "parent_primary_url": "https://www.synacktiv.com/publications/old-bug-shallow-bug-exploiting-ubuntu-at-pwn2own-vancouver-2023",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-old-bug-shallow-bug-exploiting-ubuntu-at-pwn2own-vancouver-2023-primary-7c8afef1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Old bug, shallow bug: Exploiting Ubuntu at Pwn2Own Vancouver 2023 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Old bug, shallow bug: Exploiting Ubuntu at Pwn2Own Vancouver 2023 resource_label: primary resource_type: article resource_url: https://www.synacktiv.com/publications/old-bug-shallow-bug-exploiting-ubuntu-at-pwn2own-vancouver-2023 parent_primary_url: https://www.synacktiv.com/publications/old-bug-shallow-bug-exploiting-ubuntu-at-pwn2own-vancouver-2023 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Old bug, shallow bug: Exploiting Ubuntu at Pwn2Own Vancouver 2023\" by Tanguy Dubroca](https://www.synacktiv.com/publications/old-bug-shallow-bug-exploiting-ubuntu-at-pwn2own-vancouver-2023) [article] [CVE-2023-35001] cves: CVE-2023-35001 android_impact_status: unknown android_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.synacktiv.com/publications/old-bug-shallow-bug-exploiting-ubuntu-at-pwn2own-vancouver-2023"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.synacktiv.com/publications/old-bug-shallow-bug-exploiting-ubuntu-at-pwn2own-vancouver-2023"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Ubuntu",
        "Pwn2Own"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This article discusses the exploitation of an old vulnerability in Ubuntu during Pwn2Own Vancouver 2023.",
      "summary_zh": "本文讨论了在2023年Pwn2Own温哥华大会上利用Ubuntu中的一个旧漏洞。",
      "source_markdown": "[2023: \"Old bug, shallow bug: Exploiting Ubuntu at Pwn2Own Vancouver 2023\" by Tanguy Dubroca](https://www.synacktiv.com/publications/old-bug-shallow-bug-exploiting-ubuntu-at-pwn2own-vancouver-2023) [article] [CVE-2023-35001]",
      "search_text": "old bug, shallow bug: exploiting ubuntu at pwn2own vancouver 2023 old bug, shallow bug: exploiting ubuntu at pwn2own vancouver 2023 tanguy dubroca cve-2023-35001  vulnerabilities lpe lpe primary article https://www.synacktiv.com/publications/old-bug-shallow-bug-exploiting-ubuntu-at-pwn2own-vancouver-2023 lpe ubuntu pwn2own  vulnerability analysis this article discusses the exploitation of an old vulnerability in ubuntu during pwn2own vancouver 2023. 本文讨论了在2023年pwn2own温哥华大会上利用ubuntu中的一个旧漏洞。 # old bug, shallow bug: exploiting ubuntu at pwn2own vancouver 2023 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: old bug, shallow bug: exploiting ubuntu at pwn2own vancouver 2023 resource_label: primary resource_type: article resource_url: https://www.synacktiv.com/publications/old-bug-shallow-bug-exploiting-ubuntu-at-pwn2own-vancouver-2023 parent_primary_url: https://www.synacktiv.com/publications/old-bug-shallow-bug-exploiting-ubuntu-at-pwn2own-vancouver-2023 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"old bug, shallow bug: exploiting ubuntu at pwn2own vancouver 2023\" by tanguy dubroca](https://www.synacktiv.com/publications/old-bug-shallow-bug-exploiting-ubuntu-at-pwn2own-vancouver-2023) [article] [cve-2023-35001] cves: cve-2023-35001 android_impact_status: unknown android_ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "45ec5b13c11e9503",
      "item_id": "7b5e56c4ac972f1a",
      "slug": "2023-vulnerabilities-lpe-linux-kernel-exploit-cve-2022-32250-with-mqueue-primary-34bcef8f",
      "year": 2023,
      "title": "Linux Kernel Exploit (CVE-2022–32250) with mqueue",
      "item_title": "Linux Kernel Exploit (CVE-2022–32250) with mqueue",
      "authors": [],
      "cves": [
        "CVE-2022-32250"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.theori.io/linux-kernel-exploit-cve-2022-32250-with-mqueue-a8468f32aab5",
      "primary_url": "https://blog.theori.io/linux-kernel-exploit-cve-2022-32250-with-mqueue-a8468f32aab5",
      "parent_primary_url": "https://blog.theori.io/linux-kernel-exploit-cve-2022-32250-with-mqueue-a8468f32aab5",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-linux-kernel-exploit-cve-2022-32250-with-mqueue-primary-34bcef8f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Exploit (CVE-2022–32250) with mqueue record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux Kernel Exploit (CVE-2022–32250) with mqueue resource_label: primary resource_type: article resource_url: https://blog.theori.io/linux-kernel-exploit-cve-2022-32250-with-mqueue-a8468f32aab5 parent_primary_url: https://blog.theori.io/linux-kernel-exploit-cve-2022-32250-with-mqueue-a8468f32aab5 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Linux Kernel Exploit (CVE-2022–32250) with mqueue\"](https://blog.theori.io/linux-kernel-exploit-cve-2022-32250-with-mqueue-a8468f32aab5) [article] [CVE-2022-32250] cves: CVE-2022-32250 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.theori.io/linux-kernel-exploit-cve-2022-32250-with-mqueue-a8468f32aab5"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.theori.io/linux-kernel-exploit-cve-2022-32250-with-mqueue-a8468f32aab5"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://blog.theori.io/linux-kernel-exploit-cve-2022-32250-with-mqueue-a8468f32aab5"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Kernel",
        "Exploit"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit Development",
      "summary_en": "The article explores the exploitation of CVE-2022-32250 in the Linux kernel using message queues.",
      "summary_zh": "本文探讨了如何利用消息队列中的CVE-2022-32250漏洞进行攻击。",
      "source_markdown": "[2023: \"Linux Kernel Exploit (CVE-2022–32250) with mqueue\"](https://blog.theori.io/linux-kernel-exploit-cve-2022-32250-with-mqueue-a8468f32aab5) [article] [CVE-2022-32250]",
      "search_text": "linux kernel exploit (cve-2022–32250) with mqueue linux kernel exploit (cve-2022–32250) with mqueue  cve-2022-32250  vulnerabilities lpe lpe primary article https://blog.theori.io/linux-kernel-exploit-cve-2022-32250-with-mqueue-a8468f32aab5 lpe kernel exploit  exploit development the article explores the exploitation of cve-2022-32250 in the linux kernel using message queues. 本文探讨了如何利用消息队列中的cve-2022-32250漏洞进行攻击。 # linux kernel exploit (cve-2022–32250) with mqueue record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel exploit (cve-2022–32250) with mqueue resource_label: primary resource_type: article resource_url: https://blog.theori.io/linux-kernel-exploit-cve-2022-32250-with-mqueue-a8468f32aab5 parent_primary_url: https://blog.theori.io/linux-kernel-exploit-cve-2022-32250-with-mqueue-a8468f32aab5 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"linux kernel exploit (cve-2022–32250) with mqueue\"](https://blog.theori.io/linux-kernel-exploit-cve-2022-32250-with-mqueue-a8468f32aab5) [article] [cve-2022-32250] cves: cve-2022-32250 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "d6974b17551d764e",
      "item_id": "f05f12395ecd5870",
      "slug": "2023-vulnerabilities-lpe-bad-io-uring-a-new-era-of-rooting-for-android-primary-e4328c54",
      "year": 2023,
      "title": "Bad io_uring: A New Era of Rooting for Android",
      "item_title": "Bad io_uring: A New Era of Rooting for Android",
      "authors": [
        "Zhenpeng Lin"
      ],
      "cves": [
        "CVE-2022-20409"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-Lin-bad_io_uring.pdf",
      "primary_url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-Lin-bad_io_uring.pdf",
      "parent_primary_url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-Lin-bad_io_uring.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-bad-io-uring-a-new-era-of-rooting-for-android-primary-e4328c54.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Bad io_uring: A New Era of Rooting for Android record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Bad io_uring: A New Era of Rooting for Android resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/BH-US-23/Presentations/US-23-Lin-bad_io_uring.pdf parent_primary_url: https://i.blackhat.com/BH-US-23/Presentations/US-23-Lin-bad_io_uring.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Bad io_uring: A New Era of Rooting for Android\" by Zhenpeng Lin](https://i.blackhat.com/BH-US-23/Presentations/US-23-Lin-bad_io_uring.pdf) [slides] [[video](https://www.youtube.com/watch?v=fhx3W1z7YD0)] [CVE-2022-20409] cves: CVE-2022-20409 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-Lin-bad_io_uring.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=fhx3W1z7YD0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-Lin-bad_io_uring.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=fhx3W1z7YD0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "io_uring"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This presentation covers a local privilege escalation vulnerability in Android using io_uring.",
      "summary_zh": "本演示涵盖了利用io_uring在Android中进行本地权限提升的漏洞。",
      "source_markdown": "[2023: \"Bad io_uring: A New Era of Rooting for Android\" by Zhenpeng Lin](https://i.blackhat.com/BH-US-23/Presentations/US-23-Lin-bad_io_uring.pdf) [slides] [[video](https://www.youtube.com/watch?v=fhx3W1z7YD0)] [CVE-2022-20409]",
      "search_text": "bad io_uring: a new era of rooting for android bad io_uring: a new era of rooting for android zhenpeng lin cve-2022-20409  vulnerabilities lpe lpe primary slides https://i.blackhat.com/bh-us-23/presentations/us-23-lin-bad_io_uring.pdf lpe android io_uring  vulnerability analysis this presentation covers a local privilege escalation vulnerability in android using io_uring. 本演示涵盖了利用io_uring在android中进行本地权限提升的漏洞。 # bad io_uring: a new era of rooting for android record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: bad io_uring: a new era of rooting for android resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/bh-us-23/presentations/us-23-lin-bad_io_uring.pdf parent_primary_url: https://i.blackhat.com/bh-us-23/presentations/us-23-lin-bad_io_uring.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"bad io_uring: a new era of rooting for android\" by zhenpeng lin](https://i.blackhat.com/bh-us-23/presentations/us-23-lin-bad_io_uring.pdf) [slides] [[video](https://www.youtube.com/watch?v=fhx3w1z7yd0)] [cve-2022-20409] cves: cve-2022-20409 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use  yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "771422b92c59ced0",
      "item_id": "f05f12395ecd5870",
      "slug": "2023-vulnerabilities-lpe-bad-io-uring-a-new-era-of-rooting-for-android-video-2bff7cd2",
      "year": 2023,
      "title": "Bad io_uring: A New Era of Rooting for Android · video",
      "item_title": "Bad io_uring: A New Era of Rooting for Android",
      "authors": [
        "Zhenpeng Lin"
      ],
      "cves": [
        "CVE-2022-20409"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=fhx3W1z7YD0",
      "primary_url": "https://www.youtube.com/watch?v=fhx3W1z7YD0",
      "parent_primary_url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-Lin-bad_io_uring.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-bad-io-uring-a-new-era-of-rooting-for-android-video-2bff7cd2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Bad io_uring: A New Era of Rooting for Android · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Bad io_uring: A New Era of Rooting for Android resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=fhx3W1z7YD0 parent_primary_url: https://i.blackhat.com/BH-US-23/Presentations/US-23-Lin-bad_io_uring.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Bad io_uring: A New Era of Rooting for Android\" by Zhenpeng Lin](https://i.blackhat.com/BH-US-23/Presentations/US-23-Lin-bad_io_uring.pdf) [slides] [[video](https://www.youtube.com/watch?v=fhx3W1z7YD0)] [CVE-2022-20409] cves: CVE-2022-20409 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rathe",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-Lin-bad_io_uring.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=fhx3W1z7YD0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/BH-US-23/Presentations/US-23-Lin-bad_io_uring.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=fhx3W1z7YD0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "io_uring"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "The video discusses a local privilege escalation vulnerability in Android related to io_uring.",
      "summary_zh": "该视频讨论了与io_uring相关的Android本地权限提升漏洞。",
      "source_markdown": "[2023: \"Bad io_uring: A New Era of Rooting for Android\" by Zhenpeng Lin](https://i.blackhat.com/BH-US-23/Presentations/US-23-Lin-bad_io_uring.pdf) [slides] [[video](https://www.youtube.com/watch?v=fhx3W1z7YD0)] [CVE-2022-20409]",
      "search_text": "bad io_uring: a new era of rooting for android · video bad io_uring: a new era of rooting for android zhenpeng lin cve-2022-20409  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=fhx3w1z7yd0 lpe android io_uring  vulnerability analysis the video discusses a local privilege escalation vulnerability in android related to io_uring. 该视频讨论了与io_uring相关的android本地权限提升漏洞。 # bad io_uring: a new era of rooting for android · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: bad io_uring: a new era of rooting for android resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=fhx3w1z7yd0 parent_primary_url: https://i.blackhat.com/bh-us-23/presentations/us-23-lin-bad_io_uring.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"bad io_uring: a new era of rooting for android\" by zhenpeng lin](https://i.blackhat.com/bh-us-23/presentations/us-23-lin-bad_io_uring.pdf) [slides] [[video](https://www.youtube.com/watch?v=fhx3w1z7yd0)] [cve-2022-20409] cves: cve-2022-20409 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rathe yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "33a071b73083db5e",
      "item_id": "66da686d8a31dc65",
      "slug": "2023-vulnerabilities-lpe-cve-2023-3389-linkedpoll-primary-b75d9000",
      "year": 2023,
      "title": "CVE-2023-3389 - LinkedPoll",
      "item_title": "CVE-2023-3389 - LinkedPoll",
      "authors": [
        "Querijn Voet"
      ],
      "cves": [
        "CVE-2023-3389"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://qyn.app/posts/CVE-2023-3389/",
      "primary_url": "https://qyn.app/posts/CVE-2023-3389/",
      "parent_primary_url": "https://qyn.app/posts/CVE-2023-3389/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-cve-2023-3389-linkedpoll-primary-b75d9000.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2023-3389 - LinkedPoll record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2023-3389 - LinkedPoll resource_label: primary resource_type: article resource_url: https://qyn.app/posts/CVE-2023-3389/ parent_primary_url: https://qyn.app/posts/CVE-2023-3389/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"CVE-2023-3389 - LinkedPoll\" by Querijn Voet](https://qyn.app/posts/CVE-2023-3389/) [article] [CVE-2023-3389] cves: CVE-2023-3389 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_li",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://qyn.app/posts/CVE-2023-3389/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://qyn.app/posts/CVE-2023-3389/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This article analyzes CVE-2023-3389, a local privilege escalation vulnerability.",
      "summary_zh": "本文分析了CVE-2023-3389，一个本地权限提升漏洞。",
      "source_markdown": "[2023: \"CVE-2023-3389 - LinkedPoll\" by Querijn Voet](https://qyn.app/posts/CVE-2023-3389/) [article] [CVE-2023-3389]",
      "search_text": "cve-2023-3389 - linkedpoll cve-2023-3389 - linkedpoll querijn voet cve-2023-3389  vulnerabilities lpe lpe primary article https://qyn.app/posts/cve-2023-3389/ lpe  vulnerability analysis this article analyzes cve-2023-3389, a local privilege escalation vulnerability. 本文分析了cve-2023-3389，一个本地权限提升漏洞。 # cve-2023-3389 - linkedpoll record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2023-3389 - linkedpoll resource_label: primary resource_type: article resource_url: https://qyn.app/posts/cve-2023-3389/ parent_primary_url: https://qyn.app/posts/cve-2023-3389/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"cve-2023-3389 - linkedpoll\" by querijn voet](https://qyn.app/posts/cve-2023-3389/) [article] [cve-2023-3389] cves: cve-2023-3389 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_li unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "adb407e6416ddfd0",
      "item_id": "c80b4e7081aedf3e",
      "slug": "2023-vulnerabilities-lpe-gameover-lay-easy-to-exploit-local-privilege-escalation-vulnerabilities-in-ubuntu-lin",
      "year": 2023,
      "title": "GameOver(lay): Easy-to-exploit local privilege escalation vulnerabilities in Ubuntu Linux",
      "item_title": "GameOver(lay): Easy-to-exploit local privilege escalation vulnerabilities in Ubuntu Linux",
      "authors": [
        "Sagi Tzadik",
        "Shir Tamari"
      ],
      "cves": [
        "CVE-2023-2640",
        "CVE-2023-32629"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability",
      "primary_url": "https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability",
      "parent_primary_url": "https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-gameover-lay-easy-to-exploit-local-privilege-escalation-vulnerabilities-in-ubuntu-lin.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# GameOver(lay): Easy-to-exploit local privilege escalation vulnerabilities in Ubuntu Linux record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: GameOver(lay): Easy-to-exploit local privilege escalation vulnerabilities in Ubuntu Linux resource_label: primary resource_type: article resource_url: https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability parent_primary_url: https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"GameOver(lay): Easy-to-exploit local privilege escalation vulnerabilities in Ubuntu Linux\" by Sagi Tzadik and Shir Tamari](https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability) [article] [CVE-2023-2640] [CVE-2023-32629] cves: CVE-2023-2640, CVE-2023-32629 android_impact_status: unknown android_impact_reason: Linux kernel ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Ubuntu"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "The article discusses multiple local privilege escalation vulnerabilities in Ubuntu Linux.",
      "summary_zh": "本文讨论了Ubuntu Linux中的多个本地权限提升漏洞。",
      "source_markdown": "[2023: \"GameOver(lay): Easy-to-exploit local privilege escalation vulnerabilities in Ubuntu Linux\" by Sagi Tzadik and Shir Tamari](https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability) [article] [CVE-2023-2640] [CVE-2023-32629]",
      "search_text": "gameover(lay): easy-to-exploit local privilege escalation vulnerabilities in ubuntu linux gameover(lay): easy-to-exploit local privilege escalation vulnerabilities in ubuntu linux sagi tzadik shir tamari cve-2023-2640 cve-2023-32629  vulnerabilities lpe lpe primary article https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability lpe ubuntu  vulnerability analysis the article discusses multiple local privilege escalation vulnerabilities in ubuntu linux. 本文讨论了ubuntu linux中的多个本地权限提升漏洞。 # gameover(lay): easy-to-exploit local privilege escalation vulnerabilities in ubuntu linux record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: gameover(lay): easy-to-exploit local privilege escalation vulnerabilities in ubuntu linux resource_label: primary resource_type: article resource_url: https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability parent_primary_url: https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"gameover(lay): easy-to-exploit local privilege escalation vulnerabilities in ubuntu linux\" by sagi tzadik and shir tamari](https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability) [article] [cve-2023-2640] [cve-2023-32629] cves: cve-2023-2640, cve-2023-32629 android_impact_status: unknown android_impact_reason: linux kernel  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "68292a4701c5c03b",
      "item_id": "fb9b48ea85e521cd",
      "slug": "2023-vulnerabilities-lpe-stackrot-cve-2023-3269-linux-kernel-privilege-escalation-vulnerability-primary-b433ac",
      "year": 2023,
      "title": "StackRot (CVE-2023-3269): Linux kernel privilege escalation vulnerability",
      "item_title": "StackRot (CVE-2023-3269): Linux kernel privilege escalation vulnerability",
      "authors": [
        "Ruihan Li"
      ],
      "cves": [
        "CVE-2023-3269"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/lrh2000/StackRot",
      "primary_url": "https://github.com/lrh2000/StackRot",
      "parent_primary_url": "https://github.com/lrh2000/StackRot",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-stackrot-cve-2023-3269-linux-kernel-privilege-escalation-vulnerability-primary-b433ac.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# StackRot (CVE-2023-3269): Linux kernel privilege escalation vulnerability record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: StackRot (CVE-2023-3269): Linux kernel privilege escalation vulnerability resource_label: primary resource_type: article resource_url: https://github.com/lrh2000/StackRot parent_primary_url: https://github.com/lrh2000/StackRot source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"StackRot (CVE-2023-3269): Linux kernel privilege escalation vulnerability\" by Ruihan Li](https://github.com/lrh2000/StackRot) [article] [CVE-2023-3269] cves: CVE-2023-3269 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/lrh2000/StackRot"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/lrh2000/StackRot"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/lrh2000/StackRot"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Kernel"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "StackRot (CVE-2023-3269) is a local privilege escalation vulnerability in the Linux kernel.",
      "summary_zh": "StackRot（CVE-2023-3269）是Linux内核中的一个本地权限提升漏洞。",
      "source_markdown": "[2023: \"StackRot (CVE-2023-3269): Linux kernel privilege escalation vulnerability\" by Ruihan Li](https://github.com/lrh2000/StackRot) [article] [CVE-2023-3269]",
      "search_text": "stackrot (cve-2023-3269): linux kernel privilege escalation vulnerability stackrot (cve-2023-3269): linux kernel privilege escalation vulnerability ruihan li cve-2023-3269  vulnerabilities lpe lpe primary article https://github.com/lrh2000/stackrot lpe kernel  vulnerability analysis stackrot (cve-2023-3269) is a local privilege escalation vulnerability in the linux kernel. stackrot（cve-2023-3269）是linux内核中的一个本地权限提升漏洞。 # stackrot (cve-2023-3269): linux kernel privilege escalation vulnerability record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: stackrot (cve-2023-3269): linux kernel privilege escalation vulnerability resource_label: primary resource_type: article resource_url: https://github.com/lrh2000/stackrot parent_primary_url: https://github.com/lrh2000/stackrot source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"stackrot (cve-2023-3269): linux kernel privilege escalation vulnerability\" by ruihan li](https://github.com/lrh2000/stackrot) [article] [cve-2023-3269] cves: cve-2023-3269 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ea8ba9fde78582c3",
      "item_id": "448a8539d003ac3c",
      "slug": "2023-vulnerabilities-lpe-no-cve-for-this-it-has-never-been-in-the-official-kernel-primary-53edbfb4",
      "year": 2023,
      "title": "No CVE for this. It has never been in the official kernel",
      "item_title": "No CVE for this. It has never been in the official kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://soez.github.io/posts/no-cve-for-this.-It-has-never-been-in-the-official-kernel/",
      "primary_url": "https://soez.github.io/posts/no-cve-for-this.-It-has-never-been-in-the-official-kernel/",
      "parent_primary_url": "https://soez.github.io/posts/no-cve-for-this.-It-has-never-been-in-the-official-kernel/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-no-cve-for-this-it-has-never-been-in-the-official-kernel-primary-53edbfb4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# No CVE for this. It has never been in the official kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: No CVE for this. It has never been in the official kernel resource_label: primary resource_type: article resource_url: https://soez.github.io/posts/no-cve-for-this.-It-has-never-been-in-the-official-kernel/ parent_primary_url: https://soez.github.io/posts/no-cve-for-this.-It-has-never-been-in-the-official-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"No CVE for this. It has never been in the official kernel\"](https://soez.github.io/posts/no-cve-for-this.-It-has-never-been-in-the-official-kernel/) [article] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://soez.github.io/posts/no-cve-for-this.-It-has-never-been-in-the-official-kernel/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://soez.github.io/posts/no-cve-for-this.-It-has-never-been-in-the-official-kernel/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://soez.github.io/posts/no-cve-for-this.-It-has-never-been-in-the-official-kernel/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This article discusses a vulnerability that has never been assigned a CVE in the official kernel.",
      "summary_zh": "本文讨论了一个在官方内核中从未被分配CVE的漏洞。",
      "source_markdown": "[2023: \"No CVE for this. It has never been in the official kernel\"](https://soez.github.io/posts/no-cve-for-this.-It-has-never-been-in-the-official-kernel/) [article]",
      "search_text": "no cve for this. it has never been in the official kernel no cve for this. it has never been in the official kernel    vulnerabilities lpe lpe primary article https://soez.github.io/posts/no-cve-for-this.-it-has-never-been-in-the-official-kernel/ lpe  vulnerability analysis this article discusses a vulnerability that has never been assigned a cve in the official kernel. 本文讨论了一个在官方内核中从未被分配cve的漏洞。 # no cve for this. it has never been in the official kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: no cve for this. it has never been in the official kernel resource_label: primary resource_type: article resource_url: https://soez.github.io/posts/no-cve-for-this.-it-has-never-been-in-the-official-kernel/ parent_primary_url: https://soez.github.io/posts/no-cve-for-this.-it-has-never-been-in-the-official-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"no cve for this. it has never been in the official kernel\"](https://soez.github.io/posts/no-cve-for-this.-it-has-never-been-in-the-official-kernel/) [article] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3cbc56322d789c08",
      "item_id": "3deeb073f5813c7e",
      "slug": "2023-vulnerabilities-lpe-cve-2020-27786-exploitation-userfaultfd-patching-file-struct-etc-passwd-primary-6769e",
      "year": 2023,
      "title": "CVE-2020-27786 exploitation userfaultfd + patching file struct etc passwd",
      "item_title": "CVE-2020-27786 exploitation userfaultfd + patching file struct etc passwd",
      "authors": [],
      "cves": [
        "CVE-2020-27786"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://soez.github.io/posts/CVE-2020-27786-exploitation-userfaultfd-+-patching-file-struct-etc-passwd/",
      "primary_url": "https://soez.github.io/posts/CVE-2020-27786-exploitation-userfaultfd-+-patching-file-struct-etc-passwd/",
      "parent_primary_url": "https://soez.github.io/posts/CVE-2020-27786-exploitation-userfaultfd-+-patching-file-struct-etc-passwd/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-cve-2020-27786-exploitation-userfaultfd-patching-file-struct-etc-passwd-primary-6769e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2020-27786 exploitation userfaultfd + patching file struct etc passwd record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2020-27786 exploitation userfaultfd + patching file struct etc passwd resource_label: primary resource_type: article resource_url: https://soez.github.io/posts/CVE-2020-27786-exploitation-userfaultfd-+-patching-file-struct-etc-passwd/ parent_primary_url: https://soez.github.io/posts/CVE-2020-27786-exploitation-userfaultfd-+-patching-file-struct-etc-passwd/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"CVE-2020-27786 exploitation userfaultfd + patching file struct etc passwd\"](https://soez.github.io/posts/CVE-2020-27786-exploitation-userfaultfd-+-patching-file-struct-etc-passwd/) [article] [CVE-2020-27786] cves: CVE-2020-27786 android_impact_status: unknown",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://soez.github.io/posts/CVE-2020-27786-exploitation-userfaultfd-+-patching-file-struct-etc-passwd/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://soez.github.io/posts/CVE-2020-27786-exploitation-userfaultfd-+-patching-file-struct-etc-passwd/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://soez.github.io/posts/CVE-2020-27786-exploitation-userfaultfd-+-patching-file-struct-etc-passwd/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit Development",
      "summary_en": "The article explores the exploitation of CVE-2020-27786 using userfaultfd.",
      "summary_zh": "本文探讨了如何利用userfaultfd进行CVE-2020-27786的攻击。",
      "source_markdown": "[2023: \"CVE-2020-27786 exploitation userfaultfd + patching file struct etc passwd\"](https://soez.github.io/posts/CVE-2020-27786-exploitation-userfaultfd-+-patching-file-struct-etc-passwd/) [article] [CVE-2020-27786]",
      "search_text": "cve-2020-27786 exploitation userfaultfd + patching file struct etc passwd cve-2020-27786 exploitation userfaultfd + patching file struct etc passwd  cve-2020-27786  vulnerabilities lpe lpe primary article https://soez.github.io/posts/cve-2020-27786-exploitation-userfaultfd-+-patching-file-struct-etc-passwd/ lpe  exploit development the article explores the exploitation of cve-2020-27786 using userfaultfd. 本文探讨了如何利用userfaultfd进行cve-2020-27786的攻击。 # cve-2020-27786 exploitation userfaultfd + patching file struct etc passwd record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2020-27786 exploitation userfaultfd + patching file struct etc passwd resource_label: primary resource_type: article resource_url: https://soez.github.io/posts/cve-2020-27786-exploitation-userfaultfd-+-patching-file-struct-etc-passwd/ parent_primary_url: https://soez.github.io/posts/cve-2020-27786-exploitation-userfaultfd-+-patching-file-struct-etc-passwd/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"cve-2020-27786 exploitation userfaultfd + patching file struct etc passwd\"](https://soez.github.io/posts/cve-2020-27786-exploitation-userfaultfd-+-patching-file-struct-etc-passwd/) [article] [cve-2020-27786] cves: cve-2020-27786 android_impact_status: unknown unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "9bcff8dee1c57351",
      "item_id": "2670718aad5b027e",
      "slug": "2023-vulnerabilities-lpe-breaking-the-code-exploiting-and-examining-cve-2023-1829-in-cls-tcindex-classifier-vu",
      "year": 2023,
      "title": "Breaking the Code - Exploiting and Examining CVE-2023-1829 in cls_tcindex Classifier Vulnerability",
      "item_title": "Breaking the Code - Exploiting and Examining CVE-2023-1829 in cls_tcindex Classifier Vulnerability",
      "authors": [
        "Vu Thi Lan"
      ],
      "cves": [
        "CVE-2023-1829"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://starlabs.sg/blog/2023/06-breaking-the-code-exploiting-and-examining-cve-2023-1829-in-cls_tcindex-classifier-vulnerability/",
      "primary_url": "https://starlabs.sg/blog/2023/06-breaking-the-code-exploiting-and-examining-cve-2023-1829-in-cls_tcindex-classifier-vulnerability/",
      "parent_primary_url": "https://starlabs.sg/blog/2023/06-breaking-the-code-exploiting-and-examining-cve-2023-1829-in-cls_tcindex-classifier-vulnerability/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-breaking-the-code-exploiting-and-examining-cve-2023-1829-in-cls-tcindex-classifier-vu.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Breaking the Code - Exploiting and Examining CVE-2023-1829 in cls_tcindex Classifier Vulnerability record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Breaking the Code - Exploiting and Examining CVE-2023-1829 in cls_tcindex Classifier Vulnerability resource_label: primary resource_type: article resource_url: https://starlabs.sg/blog/2023/06-breaking-the-code-exploiting-and-examining-cve-2023-1829-in-cls_tcindex-classifier-vulnerability/ parent_primary_url: https://starlabs.sg/blog/2023/06-breaking-the-code-exploiting-and-examining-cve-2023-1829-in-cls_tcindex-classifier-vulnerability/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Breaking the Code - Exploiting and Examining CVE-2023-1829 in cls_tcindex Classifier Vulnerability\" by Vu Thi Lan](https://starlabs.sg/blog/2023/06-breakin",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://starlabs.sg/blog/2023/06-breaking-the-code-exploiting-and-examining-cve-2023-1829-in-cls_tcindex-classifier-vulnerability/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://starlabs.sg/blog/2023/06-breaking-the-code-exploiting-and-examining-cve-2023-1829-in-cls_tcindex-classifier-vulnerability/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://starlabs.sg/blog/2023/06-breaking-the-code-exploiting-and-examining-cve-2023-1829-in-cls_tcindex-classifier-vulnerability/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit Development",
      "summary_en": "This article examines the exploitation of CVE-2023-1829 in the cls_tcindex classifier.",
      "summary_zh": "本文研究了在cls_tcindex分类器中利用CVE-2023-1829的攻击。",
      "source_markdown": "[2023: \"Breaking the Code - Exploiting and Examining CVE-2023-1829 in cls_tcindex Classifier Vulnerability\" by Vu Thi Lan](https://starlabs.sg/blog/2023/06-breaking-the-code-exploiting-and-examining-cve-2023-1829-in-cls_tcindex-classifier-vulnerability/) [article] [CVE-2023-1829]",
      "search_text": "breaking the code - exploiting and examining cve-2023-1829 in cls_tcindex classifier vulnerability breaking the code - exploiting and examining cve-2023-1829 in cls_tcindex classifier vulnerability vu thi lan cve-2023-1829  vulnerabilities lpe lpe primary article https://starlabs.sg/blog/2023/06-breaking-the-code-exploiting-and-examining-cve-2023-1829-in-cls_tcindex-classifier-vulnerability/ lpe  exploit development this article examines the exploitation of cve-2023-1829 in the cls_tcindex classifier. 本文研究了在cls_tcindex分类器中利用cve-2023-1829的攻击。 # breaking the code - exploiting and examining cve-2023-1829 in cls_tcindex classifier vulnerability record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: breaking the code - exploiting and examining cve-2023-1829 in cls_tcindex classifier vulnerability resource_label: primary resource_type: article resource_url: https://starlabs.sg/blog/2023/06-breaking-the-code-exploiting-and-examining-cve-2023-1829-in-cls_tcindex-classifier-vulnerability/ parent_primary_url: https://starlabs.sg/blog/2023/06-breaking-the-code-exploiting-and-examining-cve-2023-1829-in-cls_tcindex-classifier-vulnerability/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"breaking the code - exploiting and examining cve-2023-1829 in cls_tcindex classifier vulnerability\" by vu thi lan](https://starlabs.sg/blog/2023/06-breakin unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "6a01f144575d9bd4",
      "item_id": "5a60daa136a27e1d",
      "slug": "2023-vulnerabilities-lpe-cve-2023-2008-analyzing-and-exploiting-a-bug-in-the-udmabuf-driver-primary-57ef38da",
      "year": 2023,
      "title": "CVE-2023-2008 - Analyzing and exploiting a bug in the udmabuf driver",
      "item_title": "CVE-2023-2008 - Analyzing and exploiting a bug in the udmabuf driver",
      "authors": [],
      "cves": [
        "CVE-2023-2008"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://labs.bluefrostsecurity.de/blog/cve-2023-2008.html",
      "primary_url": "https://labs.bluefrostsecurity.de/blog/cve-2023-2008.html",
      "parent_primary_url": "https://labs.bluefrostsecurity.de/blog/cve-2023-2008.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-cve-2023-2008-analyzing-and-exploiting-a-bug-in-the-udmabuf-driver-primary-57ef38da.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2023-2008 - Analyzing and exploiting a bug in the udmabuf driver record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2023-2008 - Analyzing and exploiting a bug in the udmabuf driver resource_label: primary resource_type: article resource_url: https://labs.bluefrostsecurity.de/blog/cve-2023-2008.html parent_primary_url: https://labs.bluefrostsecurity.de/blog/cve-2023-2008.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"CVE-2023-2008 - Analyzing and exploiting a bug in the udmabuf driver\"](https://labs.bluefrostsecurity.de/blog/cve-2023-2008.html) [article] [CVE-2023-2008] cves: CVE-2023-2008 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_sta",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://labs.bluefrostsecurity.de/blog/cve-2023-2008.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://labs.bluefrostsecurity.de/blog/cve-2023-2008.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Driver"
      ],
      "affected_area": "udmabuf driver",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "The article analyzes CVE-2023-2008, a bug in the udmabuf driver.",
      "summary_zh": "本文分析了udmabuf驱动中的CVE-2023-2008漏洞。",
      "source_markdown": "[2023: \"CVE-2023-2008 - Analyzing and exploiting a bug in the udmabuf driver\"](https://labs.bluefrostsecurity.de/blog/cve-2023-2008.html) [article] [CVE-2023-2008]",
      "search_text": "cve-2023-2008 - analyzing and exploiting a bug in the udmabuf driver cve-2023-2008 - analyzing and exploiting a bug in the udmabuf driver  cve-2023-2008  vulnerabilities lpe lpe primary article https://labs.bluefrostsecurity.de/blog/cve-2023-2008.html lpe driver udmabuf driver vulnerability analysis the article analyzes cve-2023-2008, a bug in the udmabuf driver. 本文分析了udmabuf驱动中的cve-2023-2008漏洞。 # cve-2023-2008 - analyzing and exploiting a bug in the udmabuf driver record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2023-2008 - analyzing and exploiting a bug in the udmabuf driver resource_label: primary resource_type: article resource_url: https://labs.bluefrostsecurity.de/blog/cve-2023-2008.html parent_primary_url: https://labs.bluefrostsecurity.de/blog/cve-2023-2008.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"cve-2023-2008 - analyzing and exploiting a bug in the udmabuf driver\"](https://labs.bluefrostsecurity.de/blog/cve-2023-2008.html) [article] [cve-2023-2008] cves: cve-2023-2008 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_sta unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1de17d2fb8e8d5d8",
      "item_id": "1b47bc8c6c5f69a9",
      "slug": "2023-vulnerabilities-lpe-rooting-with-root-cause-finding-a-variant-of-a-project-zero-bug-primary-83ba4117",
      "year": 2023,
      "title": "Rooting with root cause: finding a variant of a Project Zero bug",
      "item_title": "Rooting with root cause: finding a variant of a Project Zero bug",
      "authors": [
        "Man Yue Mo"
      ],
      "cves": [
        "CVE-2022-46395"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.blog/2023-05-25-rooting-with-root-cause-finding-a-variant-of-a-project-zero-bug/",
      "primary_url": "https://github.blog/2023-05-25-rooting-with-root-cause-finding-a-variant-of-a-project-zero-bug/",
      "parent_primary_url": "https://github.blog/2023-05-25-rooting-with-root-cause-finding-a-variant-of-a-project-zero-bug/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-rooting-with-root-cause-finding-a-variant-of-a-project-zero-bug-primary-83ba4117.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Rooting with root cause: finding a variant of a Project Zero bug record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Rooting with root cause: finding a variant of a Project Zero bug resource_label: primary resource_type: article resource_url: https://github.blog/2023-05-25-rooting-with-root-cause-finding-a-variant-of-a-project-zero-bug/ parent_primary_url: https://github.blog/2023-05-25-rooting-with-root-cause-finding-a-variant-of-a-project-zero-bug/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Rooting with root cause: finding a variant of a Project Zero bug\" by Man Yue Mo](https://github.blog/2023-05-25-rooting-with-root-cause-finding-a-variant-of-a-project-zero-bug/) [article] [CVE-2022-46395] cves: CVE-2022-46395 android_impact_status: unknown android_impact_reason: Linux kernel ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.blog/2023-05-25-rooting-with-root-cause-finding-a-variant-of-a-project-zero-bug/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.blog/2023-05-25-rooting-with-root-cause-finding-a-variant-of-a-project-zero-bug/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.blog/2023-05-25-rooting-with-root-cause-finding-a-variant-of-a-project-zero-bug/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit Development",
      "summary_en": "This article discusses a variant of a Project Zero bug related to local privilege escalation.",
      "summary_zh": "本文讨论了与本地权限提升相关的Project Zero漏洞变种。",
      "source_markdown": "[2023: \"Rooting with root cause: finding a variant of a Project Zero bug\" by Man Yue Mo](https://github.blog/2023-05-25-rooting-with-root-cause-finding-a-variant-of-a-project-zero-bug/) [article] [CVE-2022-46395]",
      "search_text": "rooting with root cause: finding a variant of a project zero bug rooting with root cause: finding a variant of a project zero bug man yue mo cve-2022-46395  vulnerabilities lpe lpe primary article https://github.blog/2023-05-25-rooting-with-root-cause-finding-a-variant-of-a-project-zero-bug/ lpe  exploit development this article discusses a variant of a project zero bug related to local privilege escalation. 本文讨论了与本地权限提升相关的project zero漏洞变种。 # rooting with root cause: finding a variant of a project zero bug record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: rooting with root cause: finding a variant of a project zero bug resource_label: primary resource_type: article resource_url: https://github.blog/2023-05-25-rooting-with-root-cause-finding-a-variant-of-a-project-zero-bug/ parent_primary_url: https://github.blog/2023-05-25-rooting-with-root-cause-finding-a-variant-of-a-project-zero-bug/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"rooting with root cause: finding a variant of a project zero bug\" by man yue mo](https://github.blog/2023-05-25-rooting-with-root-cause-finding-a-variant-of-a-project-zero-bug/) [article] [cve-2022-46395] cves: cve-2022-46395 android_impact_status: unknown android_impact_reason: linux kernel  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "31c8ee4e4dc4e4bf",
      "item_id": "bc1c4a289dcb48ca",
      "slug": "2023-vulnerabilities-lpe-racing-against-the-lock-exploiting-spinlock-uaf-in-the-android-kernel-primary-2fca2fa",
      "year": 2023,
      "title": "Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel",
      "item_title": "Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel",
      "authors": [
        "Moshe Kol"
      ],
      "cves": [
        "CVE-2022-20421"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf",
      "primary_url": "https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf",
      "parent_primary_url": "https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-racing-against-the-lock-exploiting-spinlock-uaf-in-the-android-kernel-primary-2fca2fa.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel resource_label: primary resource_type: article resource_url: https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf parent_primary_url: https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel\" by Moshe Kol](https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf) [article] [[slides](https://0xkol.github.io/assets",
      "link_types": [
        "article",
        "slides",
        "video",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=E3CVDOlcHC4"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/0xkol/badspin"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=E3CVDOlcHC4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/0xkol/badspin"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf",
        "https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf",
        "https://github.com/0xkol/badspin"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit Development",
      "summary_en": "The article discusses exploiting a spinlock use-after-free vulnerability in the Android kernel.",
      "summary_zh": "本文讨论了在Android内核中利用自旋锁使用后释放漏洞的攻击。",
      "source_markdown": "[2023: \"Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel\" by Moshe Kol](https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf) [article] [[slides](https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf)] [[video](https://www.youtube.com/watch?v=E3CVDOlcHC4)] [[exploit](https://github.com/0xkol/badspin)] [CVE-2022-20421]",
      "search_text": "racing against the lock: exploiting spinlock uaf in the android kernel racing against the lock: exploiting spinlock uaf in the android kernel moshe kol cve-2022-20421  vulnerabilities lpe lpe primary article https://0xkol.github.io/assets/files/racing_against_the_lock__exploiting_spinlock_uaf_in_the_android_kernel.pdf lpe android  exploit development the article discusses exploiting a spinlock use-after-free vulnerability in the android kernel. 本文讨论了在android内核中利用自旋锁使用后释放漏洞的攻击。 # racing against the lock: exploiting spinlock uaf in the android kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: racing against the lock: exploiting spinlock uaf in the android kernel resource_label: primary resource_type: article resource_url: https://0xkol.github.io/assets/files/racing_against_the_lock__exploiting_spinlock_uaf_in_the_android_kernel.pdf parent_primary_url: https://0xkol.github.io/assets/files/racing_against_the_lock__exploiting_spinlock_uaf_in_the_android_kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"racing against the lock: exploiting spinlock uaf in the android kernel\" by moshe kol](https://0xkol.github.io/assets/files/racing_against_the_lock__exploiting_spinlock_uaf_in_the_android_kernel.pdf) [article] [[slides](https://0xkol.github.io/assets yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "f6024a01d84684f3",
      "item_id": "bc1c4a289dcb48ca",
      "slug": "2023-vulnerabilities-lpe-racing-against-the-lock-exploiting-spinlock-uaf-in-the-android-kernel-slides-677cdce9",
      "year": 2023,
      "title": "Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel · slides",
      "item_title": "Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel",
      "authors": [
        "Moshe Kol"
      ],
      "cves": [
        "CVE-2022-20421"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf",
      "primary_url": "https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf",
      "parent_primary_url": "https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-racing-against-the-lock-exploiting-spinlock-uaf-in-the-android-kernel-slides-677cdce9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel · slides record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel resource_label: slides resource_type: slides resource_url: https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf parent_primary_url: https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel\" by Moshe Kol](https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf) [article] [[slides](https://",
      "link_types": [
        "article",
        "slides",
        "video",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=E3CVDOlcHC4"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/0xkol/badspin"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=E3CVDOlcHC4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/0xkol/badspin"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf",
        "https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf",
        "https://github.com/0xkol/badspin"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit Development",
      "summary_en": "This presentation covers the exploitation of a spinlock UAF vulnerability in the Android kernel.",
      "summary_zh": "本演示涵盖了在Android内核中利用自旋锁使用后释放漏洞的攻击。",
      "source_markdown": "[2023: \"Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel\" by Moshe Kol](https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf) [article] [[slides](https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf)] [[video](https://www.youtube.com/watch?v=E3CVDOlcHC4)] [[exploit](https://github.com/0xkol/badspin)] [CVE-2022-20421]",
      "search_text": "racing against the lock: exploiting spinlock uaf in the android kernel · slides racing against the lock: exploiting spinlock uaf in the android kernel moshe kol cve-2022-20421  vulnerabilities lpe lpe slides slides https://0xkol.github.io/assets/files/offensivecon23_racing_against_the_lock__exploiting_spinlock_uaf_in_the_android_kernel.pdf lpe android  exploit development this presentation covers the exploitation of a spinlock uaf vulnerability in the android kernel. 本演示涵盖了在android内核中利用自旋锁使用后释放漏洞的攻击。 # racing against the lock: exploiting spinlock uaf in the android kernel · slides record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: racing against the lock: exploiting spinlock uaf in the android kernel resource_label: slides resource_type: slides resource_url: https://0xkol.github.io/assets/files/offensivecon23_racing_against_the_lock__exploiting_spinlock_uaf_in_the_android_kernel.pdf parent_primary_url: https://0xkol.github.io/assets/files/racing_against_the_lock__exploiting_spinlock_uaf_in_the_android_kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"racing against the lock: exploiting spinlock uaf in the android kernel\" by moshe kol](https://0xkol.github.io/assets/files/racing_against_the_lock__exploiting_spinlock_uaf_in_the_android_kernel.pdf) [article] [[slides](https:// yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "28d51428cad40e8e",
      "item_id": "bc1c4a289dcb48ca",
      "slug": "2023-vulnerabilities-lpe-racing-against-the-lock-exploiting-spinlock-uaf-in-the-android-kernel-video-bddd45d0",
      "year": 2023,
      "title": "Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel · video",
      "item_title": "Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel",
      "authors": [
        "Moshe Kol"
      ],
      "cves": [
        "CVE-2022-20421"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=E3CVDOlcHC4",
      "primary_url": "https://www.youtube.com/watch?v=E3CVDOlcHC4",
      "parent_primary_url": "https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-racing-against-the-lock-exploiting-spinlock-uaf-in-the-android-kernel-video-bddd45d0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=E3CVDOlcHC4 parent_primary_url: https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel\" by Moshe Kol](https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf) [article] [[slides](https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlo",
      "link_types": [
        "article",
        "slides",
        "video",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=E3CVDOlcHC4"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/0xkol/badspin"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=E3CVDOlcHC4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/0xkol/badspin"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf",
        "https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf",
        "https://github.com/0xkol/badspin"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit Development",
      "summary_en": "The video discusses exploiting a spinlock UAF vulnerability in the Android kernel.",
      "summary_zh": "该视频讨论了在Android内核中利用自旋锁使用后释放漏洞的攻击。",
      "source_markdown": "[2023: \"Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel\" by Moshe Kol](https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf) [article] [[slides](https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf)] [[video](https://www.youtube.com/watch?v=E3CVDOlcHC4)] [[exploit](https://github.com/0xkol/badspin)] [CVE-2022-20421]",
      "search_text": "racing against the lock: exploiting spinlock uaf in the android kernel · video racing against the lock: exploiting spinlock uaf in the android kernel moshe kol cve-2022-20421  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=e3cvdolchc4 lpe android  exploit development the video discusses exploiting a spinlock uaf vulnerability in the android kernel. 该视频讨论了在android内核中利用自旋锁使用后释放漏洞的攻击。 # racing against the lock: exploiting spinlock uaf in the android kernel · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: racing against the lock: exploiting spinlock uaf in the android kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=e3cvdolchc4 parent_primary_url: https://0xkol.github.io/assets/files/racing_against_the_lock__exploiting_spinlock_uaf_in_the_android_kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"racing against the lock: exploiting spinlock uaf in the android kernel\" by moshe kol](https://0xkol.github.io/assets/files/racing_against_the_lock__exploiting_spinlock_uaf_in_the_android_kernel.pdf) [article] [[slides](https://0xkol.github.io/assets/files/offensivecon23_racing_against_the_lock__exploiting_spinlo yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "1a20a8e938f6b628",
      "item_id": "bc1c4a289dcb48ca",
      "slug": "2023-vulnerabilities-lpe-racing-against-the-lock-exploiting-spinlock-uaf-in-the-android-kernel-exploit-9ac798c",
      "year": 2023,
      "title": "Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel · exploit",
      "item_title": "Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel",
      "authors": [
        "Moshe Kol"
      ],
      "cves": [
        "CVE-2022-20421"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/0xkol/badspin",
      "primary_url": "https://github.com/0xkol/badspin",
      "parent_primary_url": "https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-racing-against-the-lock-exploiting-spinlock-uaf-in-the-android-kernel-exploit-9ac798c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel resource_label: exploit resource_type: exploit resource_url: https://github.com/0xkol/badspin parent_primary_url: https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel\" by Moshe Kol](https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf) [article] [[slides](https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UA",
      "link_types": [
        "article",
        "slides",
        "video",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=E3CVDOlcHC4"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/0xkol/badspin"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=E3CVDOlcHC4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/0xkol/badspin"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf",
        "https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf",
        "https://github.com/0xkol/badspin"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit Development",
      "summary_en": "This resource provides an exploit for a spinlock UAF vulnerability in the Android kernel.",
      "summary_zh": "该资源提供了在Android内核中利用自旋锁使用后释放漏洞的攻击代码。",
      "source_markdown": "[2023: \"Racing Against the Lock: Exploiting Spinlock UAF in the Android Kernel\" by Moshe Kol](https://0xkol.github.io/assets/files/Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf) [article] [[slides](https://0xkol.github.io/assets/files/OffensiveCon23_Racing_Against_the_Lock__Exploiting_Spinlock_UAF_in_the_Android_Kernel.pdf)] [[video](https://www.youtube.com/watch?v=E3CVDOlcHC4)] [[exploit](https://github.com/0xkol/badspin)] [CVE-2022-20421]",
      "search_text": "racing against the lock: exploiting spinlock uaf in the android kernel · exploit racing against the lock: exploiting spinlock uaf in the android kernel moshe kol cve-2022-20421  vulnerabilities lpe lpe exploit exploit https://github.com/0xkol/badspin lpe android  exploit development this resource provides an exploit for a spinlock uaf vulnerability in the android kernel. 该资源提供了在android内核中利用自旋锁使用后释放漏洞的攻击代码。 # racing against the lock: exploiting spinlock uaf in the android kernel · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: racing against the lock: exploiting spinlock uaf in the android kernel resource_label: exploit resource_type: exploit resource_url: https://github.com/0xkol/badspin parent_primary_url: https://0xkol.github.io/assets/files/racing_against_the_lock__exploiting_spinlock_uaf_in_the_android_kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"racing against the lock: exploiting spinlock uaf in the android kernel\" by moshe kol](https://0xkol.github.io/assets/files/racing_against_the_lock__exploiting_spinlock_uaf_in_the_android_kernel.pdf) [article] [[slides](https://0xkol.github.io/assets/files/offensivecon23_racing_against_the_lock__exploiting_spinlock_ua yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "2fef1cc395d9546d",
      "item_id": "0ebd071f20da9d81",
      "slug": "2023-vulnerabilities-lpe-two-bugs-with-one-poc-roo2ng-pixel-6-from-android-12-to-android-1-primary-0c23c1a2",
      "year": 2023,
      "title": "Two bugs with one PoC: Roo2ng Pixel 6 from Android 12 to Android 1",
      "item_title": "Two bugs with one PoC: Roo2ng Pixel 6 from Android 12 to Android 1",
      "authors": [
        "Yong Wang"
      ],
      "cves": [
        "CVE-2021-28664"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/Asia-23/AS-23-WANG-Two-bugs-with-one-PoC-Rooting-Pixel-6-from-Android-12-to-Android-13.pdf",
      "primary_url": "https://i.blackhat.com/Asia-23/AS-23-WANG-Two-bugs-with-one-PoC-Rooting-Pixel-6-from-Android-12-to-Android-13.pdf",
      "parent_primary_url": "https://i.blackhat.com/Asia-23/AS-23-WANG-Two-bugs-with-one-PoC-Rooting-Pixel-6-from-Android-12-to-Android-13.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-two-bugs-with-one-poc-roo2ng-pixel-6-from-android-12-to-android-1-primary-0c23c1a2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Two bugs with one PoC: Roo2ng Pixel 6 from Android 12 to Android 1 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Two bugs with one PoC: Roo2ng Pixel 6 from Android 12 to Android 1 resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/Asia-23/AS-23-WANG-Two-bugs-with-one-PoC-Rooting-Pixel-6-from-Android-12-to-Android-13.pdf parent_primary_url: https://i.blackhat.com/Asia-23/AS-23-WANG-Two-bugs-with-one-PoC-Rooting-Pixel-6-from-Android-12-to-Android-13.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Two bugs with one PoC: Roo2ng Pixel 6 from Android 12 to Android 1\" by Yong Wang](https://i.blackhat.com/Asia-23/AS-23-WANG-Two-bugs-with-one-PoC-Rooting-Pixel-6-from-Android-12-to-Android-13.pdf) [slides] [CVE-2021-28664] cves: CVE-2021-28664 android_im",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/Asia-23/AS-23-WANG-Two-bugs-with-one-PoC-Rooting-Pixel-6-from-Android-12-to-Android-13.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/Asia-23/AS-23-WANG-Two-bugs-with-one-PoC-Rooting-Pixel-6-from-Android-12-to-Android-13.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://i.blackhat.com/Asia-23/AS-23-WANG-Two-bugs-with-one-PoC-Rooting-Pixel-6-from-Android-12-to-Android-13.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit Development",
      "summary_en": "The slides discuss exploiting two bugs to root a Pixel 6 device.",
      "summary_zh": "这些幻灯片讨论了利用两个漏洞来获取Pixel 6设备的root权限。",
      "source_markdown": "[2023: \"Two bugs with one PoC: Roo2ng Pixel 6 from Android 12 to Android 1\" by Yong Wang](https://i.blackhat.com/Asia-23/AS-23-WANG-Two-bugs-with-one-PoC-Rooting-Pixel-6-from-Android-12-to-Android-13.pdf) [slides] [CVE-2021-28664]",
      "search_text": "two bugs with one poc: roo2ng pixel 6 from android 12 to android 1 two bugs with one poc: roo2ng pixel 6 from android 12 to android 1 yong wang cve-2021-28664  vulnerabilities lpe lpe primary slides https://i.blackhat.com/asia-23/as-23-wang-two-bugs-with-one-poc-rooting-pixel-6-from-android-12-to-android-13.pdf lpe android  exploit development the slides discuss exploiting two bugs to root a pixel 6 device. 这些幻灯片讨论了利用两个漏洞来获取pixel 6设备的root权限。 # two bugs with one poc: roo2ng pixel 6 from android 12 to android 1 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: two bugs with one poc: roo2ng pixel 6 from android 12 to android 1 resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/asia-23/as-23-wang-two-bugs-with-one-poc-rooting-pixel-6-from-android-12-to-android-13.pdf parent_primary_url: https://i.blackhat.com/asia-23/as-23-wang-two-bugs-with-one-poc-rooting-pixel-6-from-android-12-to-android-13.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"two bugs with one poc: roo2ng pixel 6 from android 12 to android 1\" by yong wang](https://i.blackhat.com/asia-23/as-23-wang-two-bugs-with-one-poc-rooting-pixel-6-from-android-12-to-android-13.pdf) [slides] [cve-2021-28664] cves: cve-2021-28664 android_im yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "e63b3d044f6305c5",
      "item_id": "b27a8e084190baff",
      "slug": "2023-vulnerabilities-lpe-the-overlayfs-vulnerability-cve-2023-0386-overview-detection-and-remediation-primary-",
      "year": 2023,
      "title": "The OverlayFS vulnerability CVE-2023-0386: Overview, detection, and remediation",
      "item_title": "The OverlayFS vulnerability CVE-2023-0386: Overview, detection, and remediation",
      "authors": [],
      "cves": [
        "CVE-2023-0386"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://securitylabs.datadoghq.com/articles/overlayfs-cve-2023-0386/",
      "primary_url": "https://securitylabs.datadoghq.com/articles/overlayfs-cve-2023-0386/",
      "parent_primary_url": "https://securitylabs.datadoghq.com/articles/overlayfs-cve-2023-0386/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-the-overlayfs-vulnerability-cve-2023-0386-overview-detection-and-remediation-primary-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The OverlayFS vulnerability CVE-2023-0386: Overview, detection, and remediation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The OverlayFS vulnerability CVE-2023-0386: Overview, detection, and remediation resource_label: primary resource_type: article resource_url: https://securitylabs.datadoghq.com/articles/overlayfs-cve-2023-0386/ parent_primary_url: https://securitylabs.datadoghq.com/articles/overlayfs-cve-2023-0386/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"The OverlayFS vulnerability CVE-2023-0386: Overview, detection, and remediation\"](https://securitylabs.datadoghq.com/articles/overlayfs-cve-2023-0386/) [article] [CVE-2023-0386] cves: CVE-2023-0386 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impa",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://securitylabs.datadoghq.com/articles/overlayfs-cve-2023-0386/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://securitylabs.datadoghq.com/articles/overlayfs-cve-2023-0386/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This article provides an overview of the OverlayFS vulnerability CVE-2023-0386.",
      "summary_zh": "本文提供了关于OverlayFS漏洞CVE-2023-0386的概述。",
      "source_markdown": "[2023: \"The OverlayFS vulnerability CVE-2023-0386: Overview, detection, and remediation\"](https://securitylabs.datadoghq.com/articles/overlayfs-cve-2023-0386/) [article] [CVE-2023-0386]",
      "search_text": "the overlayfs vulnerability cve-2023-0386: overview, detection, and remediation the overlayfs vulnerability cve-2023-0386: overview, detection, and remediation  cve-2023-0386  vulnerabilities lpe lpe primary article https://securitylabs.datadoghq.com/articles/overlayfs-cve-2023-0386/ lpe  vulnerability analysis this article provides an overview of the overlayfs vulnerability cve-2023-0386. 本文提供了关于overlayfs漏洞cve-2023-0386的概述。 # the overlayfs vulnerability cve-2023-0386: overview, detection, and remediation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the overlayfs vulnerability cve-2023-0386: overview, detection, and remediation resource_label: primary resource_type: article resource_url: https://securitylabs.datadoghq.com/articles/overlayfs-cve-2023-0386/ parent_primary_url: https://securitylabs.datadoghq.com/articles/overlayfs-cve-2023-0386/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"the overlayfs vulnerability cve-2023-0386: overview, detection, and remediation\"](https://securitylabs.datadoghq.com/articles/overlayfs-cve-2023-0386/) [article] [cve-2023-0386] cves: cve-2023-0386 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impa unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9d9046dc9c371474",
      "item_id": "eddd91e99d603ed9",
      "slug": "2023-vulnerabilities-lpe-pwning-pixel-6-with-a-leftover-patch-primary-0168c7a5",
      "year": 2023,
      "title": "Pwning Pixel 6 with a leftover patch",
      "item_title": "Pwning Pixel 6 with a leftover patch",
      "authors": [
        "Man Yue Mo"
      ],
      "cves": [],
      "tags": [
        "GHSL-2023-005"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.blog/2023-04-06-pwning-pixel-6-with-a-leftover-patch/",
      "primary_url": "https://github.blog/2023-04-06-pwning-pixel-6-with-a-leftover-patch/",
      "parent_primary_url": "https://github.blog/2023-04-06-pwning-pixel-6-with-a-leftover-patch/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-pwning-pixel-6-with-a-leftover-patch-primary-0168c7a5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Pwning Pixel 6 with a leftover patch record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Pwning Pixel 6 with a leftover patch resource_label: primary resource_type: article resource_url: https://github.blog/2023-04-06-pwning-pixel-6-with-a-leftover-patch/ parent_primary_url: https://github.blog/2023-04-06-pwning-pixel-6-with-a-leftover-patch/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Pwning Pixel 6 with a leftover patch\" by Man Yue Mo](https://github.blog/2023-04-06-pwning-pixel-6-with-a-leftover-patch/) [article] [GHSL-2023-005] cves: none android_impact_status: yes android_impact_reason: mentions Pixel devices ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls:",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.blog/2023-04-06-pwning-pixel-6-with-a-leftover-patch/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.blog/2023-04-06-pwning-pixel-6-with-a-leftover-patch/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.blog/2023-04-06-pwning-pixel-6-with-a-leftover-patch/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Pixel devices",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit Development",
      "summary_en": "The article discusses exploiting a Pixel 6 device using a leftover patch.",
      "summary_zh": "本文讨论了如何利用遗留补丁攻击Pixel 6设备。",
      "source_markdown": "[2023: \"Pwning Pixel 6 with a leftover patch\" by Man Yue Mo](https://github.blog/2023-04-06-pwning-pixel-6-with-a-leftover-patch/) [article] [GHSL-2023-005]",
      "search_text": "pwning pixel 6 with a leftover patch pwning pixel 6 with a leftover patch man yue mo  ghsl-2023-005 vulnerabilities lpe lpe primary article https://github.blog/2023-04-06-pwning-pixel-6-with-a-leftover-patch/ lpe android  exploit development the article discusses exploiting a pixel 6 device using a leftover patch. 本文讨论了如何利用遗留补丁攻击pixel 6设备。 # pwning pixel 6 with a leftover patch record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: pwning pixel 6 with a leftover patch resource_label: primary resource_type: article resource_url: https://github.blog/2023-04-06-pwning-pixel-6-with-a-leftover-patch/ parent_primary_url: https://github.blog/2023-04-06-pwning-pixel-6-with-a-leftover-patch/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"pwning pixel 6 with a leftover patch\" by man yue mo](https://github.blog/2023-04-06-pwning-pixel-6-with-a-leftover-patch/) [article] [ghsl-2023-005] cves: none android_impact_status: yes android_impact_reason: mentions pixel devices ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: yes mentions pixel devices no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "4381ddece9c437a4",
      "item_id": "fc6b0f88b851a115",
      "slug": "2023-vulnerabilities-lpe-revisiting-cve-2017-11176-primary-a9aaf4a4",
      "year": 2023,
      "title": "Revisiting CVE-2017-11176",
      "item_title": "Revisiting CVE-2017-11176",
      "authors": [
        "Nils Ole Timm"
      ],
      "cves": [
        "CVE-2017-11176"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://labs.bluefrostsecurity.de/revisiting-cve-2017-11176",
      "primary_url": "https://labs.bluefrostsecurity.de/revisiting-cve-2017-11176",
      "parent_primary_url": "https://labs.bluefrostsecurity.de/revisiting-cve-2017-11176",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-revisiting-cve-2017-11176-primary-a9aaf4a4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Revisiting CVE-2017-11176 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Revisiting CVE-2017-11176 resource_label: primary resource_type: article resource_url: https://labs.bluefrostsecurity.de/revisiting-cve-2017-11176 parent_primary_url: https://labs.bluefrostsecurity.de/revisiting-cve-2017-11176 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Revisiting CVE-2017-11176\" by Nils Ole Timm](https://labs.bluefrostsecurity.de/revisiting-cve-2017-11176) [article] [CVE-2017-11176] cves: CVE-2017-11176 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: fa",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://labs.bluefrostsecurity.de/revisiting-cve-2017-11176"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://labs.bluefrostsecurity.de/revisiting-cve-2017-11176"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability Analysis",
      "summary_en": "This article revisits CVE-2017-11176, a local privilege escalation vulnerability.",
      "summary_zh": "本文重新审视了CVE-2017-11176，一个本地权限提升漏洞。",
      "source_markdown": "[2023: \"Revisiting CVE-2017-11176\" by Nils Ole Timm](https://labs.bluefrostsecurity.de/revisiting-cve-2017-11176) [article] [CVE-2017-11176]",
      "search_text": "revisiting cve-2017-11176 revisiting cve-2017-11176 nils ole timm cve-2017-11176  vulnerabilities lpe lpe primary article https://labs.bluefrostsecurity.de/revisiting-cve-2017-11176 lpe  vulnerability analysis this article revisits cve-2017-11176, a local privilege escalation vulnerability. 本文重新审视了cve-2017-11176，一个本地权限提升漏洞。 # revisiting cve-2017-11176 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: revisiting cve-2017-11176 resource_label: primary resource_type: article resource_url: https://labs.bluefrostsecurity.de/revisiting-cve-2017-11176 parent_primary_url: https://labs.bluefrostsecurity.de/revisiting-cve-2017-11176 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"revisiting cve-2017-11176\" by nils ole timm](https://labs.bluefrostsecurity.de/revisiting-cve-2017-11176) [article] [cve-2017-11176] cves: cve-2017-11176 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: fa unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9c940ee26a229e5b",
      "item_id": "63676137e8766a7d",
      "slug": "2023-vulnerabilities-lpe-rooting-the-fiio-m6-primary-18717d8f",
      "year": 2023,
      "title": "Rooting the FiiO M6",
      "item_title": "Rooting the FiiO M6",
      "authors": [
        "Jack Maginnes"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://stigward.github.io/posts/fiio-m6-kernel-bug/",
      "primary_url": "https://stigward.github.io/posts/fiio-m6-kernel-bug/",
      "parent_primary_url": "https://stigward.github.io/posts/fiio-m6-kernel-bug/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-rooting-the-fiio-m6-primary-18717d8f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Rooting the FiiO M6 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Rooting the FiiO M6 resource_label: primary resource_type: article resource_url: https://stigward.github.io/posts/fiio-m6-kernel-bug/ parent_primary_url: https://stigward.github.io/posts/fiio-m6-kernel-bug/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Rooting the FiiO M6\" by Jack Maginnes](https://stigward.github.io/posts/fiio-m6-kernel-bug/) [article] [[part 2](https://stigward.github.io/posts/fiio-m6-exploit/)] [[video](https://www.youtube.com/watch?v=Cd_CAYe4M_M&t=3s)] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS device",
      "link_types": [
        "article",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://stigward.github.io/posts/fiio-m6-kernel-bug/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://stigward.github.io/posts/fiio-m6-exploit/"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Cd_CAYe4M_M&t=3s"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://stigward.github.io/posts/fiio-m6-kernel-bug/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://stigward.github.io/posts/fiio-m6-exploit/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Cd_CAYe4M_M&t=3s"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://stigward.github.io/posts/fiio-m6-kernel-bug/",
        "https://stigward.github.io/posts/fiio-m6-exploit/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "FiiO",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This article discusses a vulnerability in the FiiO M6 that allows for local privilege escalation.",
      "summary_zh": "本文讨论了FiiO M6中的一个漏洞，允许本地权限提升。",
      "source_markdown": "[2023: \"Rooting the FiiO M6\" by Jack Maginnes](https://stigward.github.io/posts/fiio-m6-kernel-bug/) [article] [[part 2](https://stigward.github.io/posts/fiio-m6-exploit/)] [[video](https://www.youtube.com/watch?v=Cd_CAYe4M_M&t=3s)]",
      "search_text": "rooting the fiio m6 rooting the fiio m6 jack maginnes   vulnerabilities lpe lpe primary article https://stigward.github.io/posts/fiio-m6-kernel-bug/ lpe fiio vulnerability  vulnerability research this article discusses a vulnerability in the fiio m6 that allows for local privilege escalation. 本文讨论了fiio m6中的一个漏洞，允许本地权限提升。 # rooting the fiio m6 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: rooting the fiio m6 resource_label: primary resource_type: article resource_url: https://stigward.github.io/posts/fiio-m6-kernel-bug/ parent_primary_url: https://stigward.github.io/posts/fiio-m6-kernel-bug/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"rooting the fiio m6\" by jack maginnes](https://stigward.github.io/posts/fiio-m6-kernel-bug/) [article] [[part 2](https://stigward.github.io/posts/fiio-m6-exploit/)] [[video](https://www.youtube.com/watch?v=cd_caye4m_m&t=3s)] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios device unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "7b92a47fc360d8ce",
      "item_id": "63676137e8766a7d",
      "slug": "2023-vulnerabilities-lpe-rooting-the-fiio-m6-part-2-bc93734c",
      "year": 2023,
      "title": "Rooting the FiiO M6 · part 2",
      "item_title": "Rooting the FiiO M6",
      "authors": [
        "Jack Maginnes"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "part 2",
      "resource_type": "article",
      "resource_url": "https://stigward.github.io/posts/fiio-m6-exploit/",
      "primary_url": "https://stigward.github.io/posts/fiio-m6-exploit/",
      "parent_primary_url": "https://stigward.github.io/posts/fiio-m6-kernel-bug/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-rooting-the-fiio-m6-part-2-bc93734c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Rooting the FiiO M6 · part 2 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Rooting the FiiO M6 resource_label: part 2 resource_type: article resource_url: https://stigward.github.io/posts/fiio-m6-exploit/ parent_primary_url: https://stigward.github.io/posts/fiio-m6-kernel-bug/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Rooting the FiiO M6\" by Jack Maginnes](https://stigward.github.io/posts/fiio-m6-kernel-bug/) [article] [[part 2](https://stigward.github.io/posts/fiio-m6-exploit/)] [[video](https://www.youtube.com/watch?v=Cd_CAYe4M_M&t=3s)] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS d",
      "link_types": [
        "article",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://stigward.github.io/posts/fiio-m6-kernel-bug/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://stigward.github.io/posts/fiio-m6-exploit/"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Cd_CAYe4M_M&t=3s"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://stigward.github.io/posts/fiio-m6-kernel-bug/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://stigward.github.io/posts/fiio-m6-exploit/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Cd_CAYe4M_M&t=3s"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://stigward.github.io/posts/fiio-m6-kernel-bug/",
        "https://stigward.github.io/posts/fiio-m6-exploit/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "FiiO",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "Part 2 of the FiiO M6 vulnerability analysis focusing on exploitation techniques.",
      "summary_zh": "FiiO M6漏洞分析的第二部分，重点介绍利用技术。",
      "source_markdown": "[2023: \"Rooting the FiiO M6\" by Jack Maginnes](https://stigward.github.io/posts/fiio-m6-kernel-bug/) [article] [[part 2](https://stigward.github.io/posts/fiio-m6-exploit/)] [[video](https://www.youtube.com/watch?v=Cd_CAYe4M_M&t=3s)]",
      "search_text": "rooting the fiio m6 · part 2 rooting the fiio m6 jack maginnes   vulnerabilities lpe lpe part 2 article https://stigward.github.io/posts/fiio-m6-exploit/ lpe fiio vulnerability  vulnerability research part 2 of the fiio m6 vulnerability analysis focusing on exploitation techniques. fiio m6漏洞分析的第二部分，重点介绍利用技术。 # rooting the fiio m6 · part 2 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: rooting the fiio m6 resource_label: part 2 resource_type: article resource_url: https://stigward.github.io/posts/fiio-m6-exploit/ parent_primary_url: https://stigward.github.io/posts/fiio-m6-kernel-bug/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"rooting the fiio m6\" by jack maginnes](https://stigward.github.io/posts/fiio-m6-kernel-bug/) [article] [[part 2](https://stigward.github.io/posts/fiio-m6-exploit/)] [[video](https://www.youtube.com/watch?v=cd_caye4m_m&t=3s)] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios d unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "e613d2cd64f1f633",
      "item_id": "63676137e8766a7d",
      "slug": "2023-vulnerabilities-lpe-rooting-the-fiio-m6-video-05f8e9ed",
      "year": 2023,
      "title": "Rooting the FiiO M6 · video",
      "item_title": "Rooting the FiiO M6",
      "authors": [
        "Jack Maginnes"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=Cd_CAYe4M_M&t=3s",
      "primary_url": "https://www.youtube.com/watch?v=Cd_CAYe4M_M&t=3s",
      "parent_primary_url": "https://stigward.github.io/posts/fiio-m6-kernel-bug/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-rooting-the-fiio-m6-video-05f8e9ed.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Rooting the FiiO M6 · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Rooting the FiiO M6 resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=Cd_CAYe4M_M&t=3s parent_primary_url: https://stigward.github.io/posts/fiio-m6-kernel-bug/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Rooting the FiiO M6\" by Jack Maginnes](https://stigward.github.io/posts/fiio-m6-kernel-bug/) [article] [[part 2](https://stigward.github.io/posts/fiio-m6-exploit/)] [[video](https://www.youtube.com/watch?v=Cd_CAYe4M_M&t=3s)] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS device",
      "link_types": [
        "article",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://stigward.github.io/posts/fiio-m6-kernel-bug/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://stigward.github.io/posts/fiio-m6-exploit/"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Cd_CAYe4M_M&t=3s"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://stigward.github.io/posts/fiio-m6-kernel-bug/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://stigward.github.io/posts/fiio-m6-exploit/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Cd_CAYe4M_M&t=3s"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://stigward.github.io/posts/fiio-m6-kernel-bug/",
        "https://stigward.github.io/posts/fiio-m6-exploit/"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "FiiO",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "A video presentation on the exploitation of the FiiO M6 vulnerability.",
      "summary_zh": "关于FiiO M6漏洞利用的视频演示。",
      "source_markdown": "[2023: \"Rooting the FiiO M6\" by Jack Maginnes](https://stigward.github.io/posts/fiio-m6-kernel-bug/) [article] [[part 2](https://stigward.github.io/posts/fiio-m6-exploit/)] [[video](https://www.youtube.com/watch?v=Cd_CAYe4M_M&t=3s)]",
      "search_text": "rooting the fiio m6 · video rooting the fiio m6 jack maginnes   vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=cd_caye4m_m&t=3s lpe fiio vulnerability  vulnerability research a video presentation on the exploitation of the fiio m6 vulnerability. 关于fiio m6漏洞利用的视频演示。 # rooting the fiio m6 · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: rooting the fiio m6 resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=cd_caye4m_m&t=3s parent_primary_url: https://stigward.github.io/posts/fiio-m6-kernel-bug/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"rooting the fiio m6\" by jack maginnes](https://stigward.github.io/posts/fiio-m6-kernel-bug/) [article] [[part 2](https://stigward.github.io/posts/fiio-m6-exploit/)] [[video](https://www.youtube.com/watch?v=cd_caye4m_m&t=3s)] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios device unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "8cff7130187f665c",
      "item_id": "68b6b3cf6861ebc4",
      "slug": "2023-vulnerabilities-lpe-exploiting-cve-2021-3490-for-container-escapes-primary-1a53330d",
      "year": 2023,
      "title": "Exploiting CVE-2021-3490 for Container Escapes",
      "item_title": "Exploiting CVE-2021-3490 for Container Escapes",
      "authors": [
        "Karsten Kyonig"
      ],
      "cves": [
        "CVE-2021-3490"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.crowdstrike.com/blog/exploiting-cve-2021-3490-for-container-escapes/",
      "primary_url": "https://www.crowdstrike.com/blog/exploiting-cve-2021-3490-for-container-escapes/",
      "parent_primary_url": "https://www.crowdstrike.com/blog/exploiting-cve-2021-3490-for-container-escapes/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-exploiting-cve-2021-3490-for-container-escapes-primary-1a53330d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting CVE-2021-3490 for Container Escapes record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting CVE-2021-3490 for Container Escapes resource_label: primary resource_type: article resource_url: https://www.crowdstrike.com/blog/exploiting-cve-2021-3490-for-container-escapes/ parent_primary_url: https://www.crowdstrike.com/blog/exploiting-cve-2021-3490-for-container-escapes/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Exploiting CVE-2021-3490 for Container Escapes\" by Karsten Kyonig](https://www.crowdstrike.com/blog/exploiting-cve-2021-3490-for-container-escapes/) [article] [CVE-2021-3490] cves: CVE-2021-3490 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport r",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.crowdstrike.com/blog/exploiting-cve-2021-3490-for-container-escapes/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.crowdstrike.com/blog/exploiting-cve-2021-3490-for-container-escapes/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2021-3490",
        "container escape"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This article explores the exploitation of CVE-2021-3490 for container escape scenarios.",
      "summary_zh": "本文探讨了CVE-2021-3490在容器逃逸场景中的利用。",
      "source_markdown": "[2023: \"Exploiting CVE-2021-3490 for Container Escapes\" by Karsten Kyonig](https://www.crowdstrike.com/blog/exploiting-cve-2021-3490-for-container-escapes/) [article] [CVE-2021-3490]",
      "search_text": "exploiting cve-2021-3490 for container escapes exploiting cve-2021-3490 for container escapes karsten kyonig cve-2021-3490  vulnerabilities lpe lpe primary article https://www.crowdstrike.com/blog/exploiting-cve-2021-3490-for-container-escapes/ lpe cve-2021-3490 container escape  vulnerability research this article explores the exploitation of cve-2021-3490 for container escape scenarios. 本文探讨了cve-2021-3490在容器逃逸场景中的利用。 # exploiting cve-2021-3490 for container escapes record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting cve-2021-3490 for container escapes resource_label: primary resource_type: article resource_url: https://www.crowdstrike.com/blog/exploiting-cve-2021-3490-for-container-escapes/ parent_primary_url: https://www.crowdstrike.com/blog/exploiting-cve-2021-3490-for-container-escapes/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"exploiting cve-2021-3490 for container escapes\" by karsten kyonig](https://www.crowdstrike.com/blog/exploiting-cve-2021-3490-for-container-escapes/) [article] [cve-2021-3490] cves: cve-2021-3490 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport r unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "6abe0705bcfcc140",
      "item_id": "d12f3351fd1b4e7c",
      "slug": "2023-vulnerabilities-lpe-pwning-the-all-google-phone-with-a-non-google-bug-primary-6f6adf84",
      "year": 2023,
      "title": "Pwning the all Google phone with a non-Google bug",
      "item_title": "Pwning the all Google phone with a non-Google bug",
      "authors": [],
      "cves": [
        "CVE-2022-38181"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.blog/2023-01-23-pwning-the-all-google-phone-with-a-non-google-bug/",
      "primary_url": "https://github.blog/2023-01-23-pwning-the-all-google-phone-with-a-non-google-bug/",
      "parent_primary_url": "https://github.blog/2023-01-23-pwning-the-all-google-phone-with-a-non-google-bug/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-pwning-the-all-google-phone-with-a-non-google-bug-primary-6f6adf84.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Pwning the all Google phone with a non-Google bug record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Pwning the all Google phone with a non-Google bug resource_label: primary resource_type: article resource_url: https://github.blog/2023-01-23-pwning-the-all-google-phone-with-a-non-google-bug/ parent_primary_url: https://github.blog/2023-01-23-pwning-the-all-google-phone-with-a-non-google-bug/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"Pwning the all Google phone with a non-Google bug\"](https://github.blog/2023-01-23-pwning-the-all-google-phone-with-a-non-google-bug/) [article] [CVE-2022-38181] cves: CVE-2022-38181 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport revie",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.blog/2023-01-23-pwning-the-all-google-phone-with-a-non-google-bug/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.blog/2023-01-23-pwning-the-all-google-phone-with-a-non-google-bug/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.blog/2023-01-23-pwning-the-all-google-phone-with-a-non-google-bug/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-38181",
        "Google"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "An article detailing a non-Google bug that allows privilege escalation on Google phones.",
      "summary_zh": "一篇详细介绍允许Google手机权限提升的非Google漏洞的文章。",
      "source_markdown": "[2023: \"Pwning the all Google phone with a non-Google bug\"](https://github.blog/2023-01-23-pwning-the-all-google-phone-with-a-non-google-bug/) [article] [CVE-2022-38181]",
      "search_text": "pwning the all google phone with a non-google bug pwning the all google phone with a non-google bug  cve-2022-38181  vulnerabilities lpe lpe primary article https://github.blog/2023-01-23-pwning-the-all-google-phone-with-a-non-google-bug/ lpe cve-2022-38181 google  vulnerability research an article detailing a non-google bug that allows privilege escalation on google phones. 一篇详细介绍允许google手机权限提升的非google漏洞的文章。 # pwning the all google phone with a non-google bug record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: pwning the all google phone with a non-google bug resource_label: primary resource_type: article resource_url: https://github.blog/2023-01-23-pwning-the-all-google-phone-with-a-non-google-bug/ parent_primary_url: https://github.blog/2023-01-23-pwning-the-all-google-phone-with-a-non-google-bug/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"pwning the all google phone with a non-google bug\"](https://github.blog/2023-01-23-pwning-the-all-google-phone-with-a-non-google-bug/) [article] [cve-2022-38181] cves: cve-2022-38181 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport revie unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "869a66808c53f33d",
      "item_id": "f50b9d0a0d19730b",
      "slug": "2023-vulnerabilities-lpe-cve-2023-0386-analysis-and-exploitation-primary-3a3edfec",
      "year": 2023,
      "title": "CVE-2023-0386 analysis and exploitation",
      "item_title": "CVE-2023-0386 analysis and exploitation",
      "authors": [
        "chenaotian"
      ],
      "cves": [
        "CVE-2023-0386"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/chenaotian/CVE-2023-0386",
      "primary_url": "https://github.com/chenaotian/CVE-2023-0386",
      "parent_primary_url": "https://github.com/chenaotian/CVE-2023-0386",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2023-vulnerabilities-lpe-cve-2023-0386-analysis-and-exploitation-primary-3a3edfec.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2023-0386 analysis and exploitation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2023-0386 analysis and exploitation resource_label: primary resource_type: article resource_url: https://github.com/chenaotian/CVE-2023-0386 parent_primary_url: https://github.com/chenaotian/CVE-2023-0386 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"CVE-2023-0386 analysis and exploitation\" by chenaotian](https://github.com/chenaotian/CVE-2023-0386) [article] [CVE-2023-0386] cves: CVE-2023-0386 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc:",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/chenaotian/CVE-2023-0386"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/chenaotian/CVE-2023-0386"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/chenaotian/CVE-2023-0386"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2023-0386"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "Analysis and exploitation techniques for CVE-2023-0386 are discussed in this article.",
      "summary_zh": "本文讨论了CVE-2023-0386的分析和利用技术。",
      "source_markdown": "[2023: \"CVE-2023-0386 analysis and exploitation\" by chenaotian](https://github.com/chenaotian/CVE-2023-0386) [article] [CVE-2023-0386]",
      "search_text": "cve-2023-0386 analysis and exploitation cve-2023-0386 analysis and exploitation chenaotian cve-2023-0386  vulnerabilities lpe lpe primary article https://github.com/chenaotian/cve-2023-0386 lpe cve-2023-0386  vulnerability research analysis and exploitation techniques for cve-2023-0386 are discussed in this article. 本文讨论了cve-2023-0386的分析和利用技术。 # cve-2023-0386 analysis and exploitation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2023-0386 analysis and exploitation resource_label: primary resource_type: article resource_url: https://github.com/chenaotian/cve-2023-0386 parent_primary_url: https://github.com/chenaotian/cve-2023-0386 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2023: \"cve-2023-0386 analysis and exploitation\" by chenaotian](https://github.com/chenaotian/cve-2023-0386) [article] [cve-2023-0386] cves: cve-2023-0386 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "24d8eb3711d9add1",
      "item_id": "e45b46a069e9a4a8",
      "slug": "2022-vulnerabilities-lpe-escaping-containers-using-the-dirty-pipe-vulnerability-primary-fa0fec14",
      "year": 2022,
      "title": "Escaping containers using the Dirty Pipe vulnerability",
      "item_title": "Escaping containers using the Dirty Pipe vulnerability",
      "authors": [
        "Eric Mountain et. al"
      ],
      "cves": [
        "CVE-2022-0847"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://securitylabs.datadoghq.com/articles/dirty-pipe-container-escape-poc/",
      "primary_url": "https://securitylabs.datadoghq.com/articles/dirty-pipe-container-escape-poc/",
      "parent_primary_url": "https://securitylabs.datadoghq.com/articles/dirty-pipe-container-escape-poc/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-escaping-containers-using-the-dirty-pipe-vulnerability-primary-fa0fec14.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Escaping containers using the Dirty Pipe vulnerability record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Escaping containers using the Dirty Pipe vulnerability resource_label: primary resource_type: article resource_url: https://securitylabs.datadoghq.com/articles/dirty-pipe-container-escape-poc/ parent_primary_url: https://securitylabs.datadoghq.com/articles/dirty-pipe-container-escape-poc/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Escaping containers using the Dirty Pipe vulnerability\" by Eric Mountain et. al](https://securitylabs.datadoghq.com/articles/dirty-pipe-container-escape-poc/) [article] [CVE-2022-0847] cves: CVE-2022-0847 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://securitylabs.datadoghq.com/articles/dirty-pipe-container-escape-poc/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://securitylabs.datadoghq.com/articles/dirty-pipe-container-escape-poc/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://securitylabs.datadoghq.com/articles/dirty-pipe-container-escape-poc/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-0847",
        "container escape"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This article covers the Dirty Pipe vulnerability and its exploitation for container escapes.",
      "summary_zh": "本文介绍了Dirty Pipe漏洞及其在容器逃逸中的利用。",
      "source_markdown": "[2022: \"Escaping containers using the Dirty Pipe vulnerability\" by Eric Mountain et. al](https://securitylabs.datadoghq.com/articles/dirty-pipe-container-escape-poc/) [article] [CVE-2022-0847]",
      "search_text": "escaping containers using the dirty pipe vulnerability escaping containers using the dirty pipe vulnerability eric mountain et. al cve-2022-0847  vulnerabilities lpe lpe primary article https://securitylabs.datadoghq.com/articles/dirty-pipe-container-escape-poc/ lpe cve-2022-0847 container escape  vulnerability research this article covers the dirty pipe vulnerability and its exploitation for container escapes. 本文介绍了dirty pipe漏洞及其在容器逃逸中的利用。 # escaping containers using the dirty pipe vulnerability record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: escaping containers using the dirty pipe vulnerability resource_label: primary resource_type: article resource_url: https://securitylabs.datadoghq.com/articles/dirty-pipe-container-escape-poc/ parent_primary_url: https://securitylabs.datadoghq.com/articles/dirty-pipe-container-escape-poc/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"escaping containers using the dirty pipe vulnerability\" by eric mountain et. al](https://securitylabs.datadoghq.com/articles/dirty-pipe-container-escape-poc/) [article] [cve-2022-0847] cves: cve-2022-0847 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "360404a43f0f2ea3",
      "item_id": "797595038dd3389c",
      "slug": "2022-vulnerabilities-lpe-how-we-use-dirty-pipe-to-get-reverse-root-shell-on-android-emulator-and-pixel-6-prima",
      "year": 2022,
      "title": "How we use Dirty Pipe to get reverse root shell on Android Emulator and Pixel 6",
      "item_title": "How we use Dirty Pipe to get reverse root shell on Android Emulator and Pixel 6",
      "authors": [
        "LiN",
        "YingMuo"
      ],
      "cves": [
        "CVE-2022-0847"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://hitcon.org/2022/slides/How%20we%20use%20Dirty%20Pipe%20to%20get%20reverse%20root%20shell%20on%20Android%20Emulator%20and%20Pixel%206.pdf",
      "primary_url": "https://hitcon.org/2022/slides/How%20we%20use%20Dirty%20Pipe%20to%20get%20reverse%20root%20shell%20on%20Android%20Emulator%20and%20Pixel%206.pdf",
      "parent_primary_url": "https://hitcon.org/2022/slides/How%20we%20use%20Dirty%20Pipe%20to%20get%20reverse%20root%20shell%20on%20Android%20Emulator%20and%20Pixel%206.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-how-we-use-dirty-pipe-to-get-reverse-root-shell-on-android-emulator-and-pixel-6-prima.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# How we use Dirty Pipe to get reverse root shell on Android Emulator and Pixel 6 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: How we use Dirty Pipe to get reverse root shell on Android Emulator and Pixel 6 resource_label: primary resource_type: slides resource_url: https://hitcon.org/2022/slides/How%20we%20use%20Dirty%20Pipe%20to%20get%20reverse%20root%20shell%20on%20Android%20Emulator%20and%20Pixel%206.pdf parent_primary_url: https://hitcon.org/2022/slides/How%20we%20use%20Dirty%20Pipe%20to%20get%20reverse%20root%20shell%20on%20Android%20Emulator%20and%20Pixel%206.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"How we use Dirty Pipe to get reverse root shell on Android Emulator and Pixel 6\" by LiN and YingMuo](https://hitcon.org/2022/slides/How%20we%20use%20Dirty%20Pipe%20to",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://hitcon.org/2022/slides/How%20we%20use%20Dirty%20Pipe%20to%20get%20reverse%20root%20shell%20on%20Android%20Emulator%20and%20Pixel%206.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=gyku4QyV5eM"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://hitcon.org/2022/slides/How%20we%20use%20Dirty%20Pipe%20to%20get%20reverse%20root%20shell%20on%20Android%20Emulator%20and%20Pixel%206.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=gyku4QyV5eM"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-0847",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "Slides detailing the use of Dirty Pipe for privilege escalation on Android devices.",
      "summary_zh": "关于在Android设备上利用Dirty Pipe进行权限提升的幻灯片。",
      "source_markdown": "[2022: \"How we use Dirty Pipe to get reverse root shell on Android Emulator and Pixel 6\" by LiN and YingMuo](https://hitcon.org/2022/slides/How%20we%20use%20Dirty%20Pipe%20to%20get%20reverse%20root%20shell%20on%20Android%20Emulator%20and%20Pixel%206.pdf) [slides] [[video](https://www.youtube.com/watch?v=gyku4QyV5eM)] [CVE-2022-0847]",
      "search_text": "how we use dirty pipe to get reverse root shell on android emulator and pixel 6 how we use dirty pipe to get reverse root shell on android emulator and pixel 6 lin yingmuo cve-2022-0847  vulnerabilities lpe lpe primary slides https://hitcon.org/2022/slides/how%20we%20use%20dirty%20pipe%20to%20get%20reverse%20root%20shell%20on%20android%20emulator%20and%20pixel%206.pdf lpe cve-2022-0847 android  vulnerability research slides detailing the use of dirty pipe for privilege escalation on android devices. 关于在android设备上利用dirty pipe进行权限提升的幻灯片。 # how we use dirty pipe to get reverse root shell on android emulator and pixel 6 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: how we use dirty pipe to get reverse root shell on android emulator and pixel 6 resource_label: primary resource_type: slides resource_url: https://hitcon.org/2022/slides/how%20we%20use%20dirty%20pipe%20to%20get%20reverse%20root%20shell%20on%20android%20emulator%20and%20pixel%206.pdf parent_primary_url: https://hitcon.org/2022/slides/how%20we%20use%20dirty%20pipe%20to%20get%20reverse%20root%20shell%20on%20android%20emulator%20and%20pixel%206.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"how we use dirty pipe to get reverse root shell on android emulator and pixel 6\" by lin and yingmuo](https://hitcon.org/2022/slides/how%20we%20use%20dirty%20pipe%20to yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "0549419867ed12cc",
      "item_id": "797595038dd3389c",
      "slug": "2022-vulnerabilities-lpe-how-we-use-dirty-pipe-to-get-reverse-root-shell-on-android-emulator-and-pixel-6-video",
      "year": 2022,
      "title": "How we use Dirty Pipe to get reverse root shell on Android Emulator and Pixel 6 · video",
      "item_title": "How we use Dirty Pipe to get reverse root shell on Android Emulator and Pixel 6",
      "authors": [
        "LiN",
        "YingMuo"
      ],
      "cves": [
        "CVE-2022-0847"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=gyku4QyV5eM",
      "primary_url": "https://www.youtube.com/watch?v=gyku4QyV5eM",
      "parent_primary_url": "https://hitcon.org/2022/slides/How%20we%20use%20Dirty%20Pipe%20to%20get%20reverse%20root%20shell%20on%20Android%20Emulator%20and%20Pixel%206.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-how-we-use-dirty-pipe-to-get-reverse-root-shell-on-android-emulator-and-pixel-6-video.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# How we use Dirty Pipe to get reverse root shell on Android Emulator and Pixel 6 · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: How we use Dirty Pipe to get reverse root shell on Android Emulator and Pixel 6 resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=gyku4QyV5eM parent_primary_url: https://hitcon.org/2022/slides/How%20we%20use%20Dirty%20Pipe%20to%20get%20reverse%20root%20shell%20on%20Android%20Emulator%20and%20Pixel%206.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"How we use Dirty Pipe to get reverse root shell on Android Emulator and Pixel 6\" by LiN and YingMuo](https://hitcon.org/2022/slides/How%20we%20use%20Dirty%20Pipe%20to%20get%20reverse%20root%20shell%20on%20Android%20Emulator%20and%20Pixel%206.pdf) [slides] [[vide",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://hitcon.org/2022/slides/How%20we%20use%20Dirty%20Pipe%20to%20get%20reverse%20root%20shell%20on%20Android%20Emulator%20and%20Pixel%206.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=gyku4QyV5eM"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://hitcon.org/2022/slides/How%20we%20use%20Dirty%20Pipe%20to%20get%20reverse%20root%20shell%20on%20Android%20Emulator%20and%20Pixel%206.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=gyku4QyV5eM"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-0847",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "A video presentation on using Dirty Pipe for privilege escalation on Android devices.",
      "summary_zh": "关于在Android设备上使用Dirty Pipe进行权限提升的视频演示。",
      "source_markdown": "[2022: \"How we use Dirty Pipe to get reverse root shell on Android Emulator and Pixel 6\" by LiN and YingMuo](https://hitcon.org/2022/slides/How%20we%20use%20Dirty%20Pipe%20to%20get%20reverse%20root%20shell%20on%20Android%20Emulator%20and%20Pixel%206.pdf) [slides] [[video](https://www.youtube.com/watch?v=gyku4QyV5eM)] [CVE-2022-0847]",
      "search_text": "how we use dirty pipe to get reverse root shell on android emulator and pixel 6 · video how we use dirty pipe to get reverse root shell on android emulator and pixel 6 lin yingmuo cve-2022-0847  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=gyku4qyv5em lpe cve-2022-0847 android  vulnerability research a video presentation on using dirty pipe for privilege escalation on android devices. 关于在android设备上使用dirty pipe进行权限提升的视频演示。 # how we use dirty pipe to get reverse root shell on android emulator and pixel 6 · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: how we use dirty pipe to get reverse root shell on android emulator and pixel 6 resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=gyku4qyv5em parent_primary_url: https://hitcon.org/2022/slides/how%20we%20use%20dirty%20pipe%20to%20get%20reverse%20root%20shell%20on%20android%20emulator%20and%20pixel%206.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"how we use dirty pipe to get reverse root shell on android emulator and pixel 6\" by lin and yingmuo](https://hitcon.org/2022/slides/how%20we%20use%20dirty%20pipe%20to%20get%20reverse%20root%20shell%20on%20android%20emulator%20and%20pixel%206.pdf) [slides] [[vide yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "1d335c74cbf0af3f",
      "item_id": "f6e323b49e46dbd6",
      "slug": "2022-vulnerabilities-lpe-linux-kernel-io-uring-module-pbuf-ring-vulnerability-and-privilege-escalation-0day-pr",
      "year": 2022,
      "title": "Linux kernel io_uring module pbuf_ring vulnerability and privilege escalation 0day",
      "item_title": "Linux kernel io_uring module pbuf_ring vulnerability and privilege escalation 0day",
      "authors": [],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://dawnslab.jd.com/linux-5.19-rc2_pbuf_ring_0day/",
      "primary_url": "https://dawnslab.jd.com/linux-5.19-rc2_pbuf_ring_0day/",
      "parent_primary_url": "https://dawnslab.jd.com/linux-5.19-rc2_pbuf_ring_0day/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-linux-kernel-io-uring-module-pbuf-ring-vulnerability-and-privilege-escalation-0day-pr.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux kernel io_uring module pbuf_ring vulnerability and privilege escalation 0day record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux kernel io_uring module pbuf_ring vulnerability and privilege escalation 0day resource_label: primary resource_type: article resource_url: https://dawnslab.jd.com/linux-5.19-rc2_pbuf_ring_0day/ parent_primary_url: https://dawnslab.jd.com/linux-5.19-rc2_pbuf_ring_0day/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Linux kernel io_uring module pbuf_ring vulnerability and privilege escalation 0day\"](https://dawnslab.jd.com/linux-5.19-rc2_pbuf_ring_0day/) [article [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-bac",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://dawnslab.jd.com/linux-5.19-rc2_pbuf_ring_0day/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://dawnslab.jd.com/linux-5.19-rc2_pbuf_ring_0day/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "io_uring",
        "0day"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This article discusses a 0day vulnerability in the Linux kernel's io_uring module.",
      "summary_zh": "本文讨论了Linux内核io_uring模块中的0day漏洞。",
      "source_markdown": "[2022: \"Linux kernel io_uring module pbuf_ring vulnerability and privilege escalation 0day\"](https://dawnslab.jd.com/linux-5.19-rc2_pbuf_ring_0day/) [article [CVE-UNKNOWN]",
      "search_text": "linux kernel io_uring module pbuf_ring vulnerability and privilege escalation 0day linux kernel io_uring module pbuf_ring vulnerability and privilege escalation 0day  cve-unknown  vulnerabilities lpe lpe primary article https://dawnslab.jd.com/linux-5.19-rc2_pbuf_ring_0day/ lpe io_uring 0day  vulnerability research this article discusses a 0day vulnerability in the linux kernel's io_uring module. 本文讨论了linux内核io_uring模块中的0day漏洞。 # linux kernel io_uring module pbuf_ring vulnerability and privilege escalation 0day record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel io_uring module pbuf_ring vulnerability and privilege escalation 0day resource_label: primary resource_type: article resource_url: https://dawnslab.jd.com/linux-5.19-rc2_pbuf_ring_0day/ parent_primary_url: https://dawnslab.jd.com/linux-5.19-rc2_pbuf_ring_0day/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"linux kernel io_uring module pbuf_ring vulnerability and privilege escalation 0day\"](https://dawnslab.jd.com/linux-5.19-rc2_pbuf_ring_0day/) [article [cve-unknown] cves: cve-unknown android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-bac unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "15f93453bdc010a2",
      "item_id": "a2b5a9939a937b9b",
      "slug": "2022-vulnerabilities-lpe-cve-2022-1015-a-validation-flaw-in-netfilter-leading-to-local-privilege-escalation-pr",
      "year": 2022,
      "title": "CVE-2022-1015: A validation flaw in Netfilter leading to Local Privilege Escalation",
      "item_title": "CVE-2022-1015: A validation flaw in Netfilter leading to Local Privilege Escalation",
      "authors": [
        "Yordan Stoychev"
      ],
      "cves": [
        "CVE-2022-1015"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://anatomic.rip/cve-2022-1015/",
      "primary_url": "https://anatomic.rip/cve-2022-1015/",
      "parent_primary_url": "https://anatomic.rip/cve-2022-1015/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-cve-2022-1015-a-validation-flaw-in-netfilter-leading-to-local-privilege-escalation-pr.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2022-1015: A validation flaw in Netfilter leading to Local Privilege Escalation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2022-1015: A validation flaw in Netfilter leading to Local Privilege Escalation resource_label: primary resource_type: article resource_url: https://anatomic.rip/cve-2022-1015/ parent_primary_url: https://anatomic.rip/cve-2022-1015/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"CVE-2022-1015: A validation flaw in Netfilter leading to Local Privilege Escalation\" by Yordan Stoychev](https://anatomic.rip/cve-2022-1015/) [article] [CVE-2022-1015] cves: CVE-2022-1015 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_statu",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://anatomic.rip/cve-2022-1015/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://anatomic.rip/cve-2022-1015/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-1015",
        "Netfilter"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "CVE-2022-1015 is analyzed as a validation flaw in Netfilter leading to privilege escalation.",
      "summary_zh": "CVE-2022-1015被分析为Netfilter中的验证缺陷，导致权限提升。",
      "source_markdown": "[2022: \"CVE-2022-1015: A validation flaw in Netfilter leading to Local Privilege Escalation\" by Yordan Stoychev](https://anatomic.rip/cve-2022-1015/) [article] [CVE-2022-1015]",
      "search_text": "cve-2022-1015: a validation flaw in netfilter leading to local privilege escalation cve-2022-1015: a validation flaw in netfilter leading to local privilege escalation yordan stoychev cve-2022-1015  vulnerabilities lpe lpe primary article https://anatomic.rip/cve-2022-1015/ lpe cve-2022-1015 netfilter  vulnerability research cve-2022-1015 is analyzed as a validation flaw in netfilter leading to privilege escalation. cve-2022-1015被分析为netfilter中的验证缺陷，导致权限提升。 # cve-2022-1015: a validation flaw in netfilter leading to local privilege escalation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2022-1015: a validation flaw in netfilter leading to local privilege escalation resource_label: primary resource_type: article resource_url: https://anatomic.rip/cve-2022-1015/ parent_primary_url: https://anatomic.rip/cve-2022-1015/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"cve-2022-1015: a validation flaw in netfilter leading to local privilege escalation\" by yordan stoychev](https://anatomic.rip/cve-2022-1015/) [article] [cve-2022-1015] cves: cve-2022-1015 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_statu unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "089673c68b5778c5",
      "item_id": "a44bf87e886bf0a4",
      "slug": "2022-vulnerabilities-lpe-cve-2022-22265-samsung-npu-device-driver-double-free-in-android-primary-fe4d868c",
      "year": 2022,
      "title": "CVE-2022-22265: Samsung NPU device driver double free in Android",
      "item_title": "CVE-2022-22265: Samsung NPU device driver double free in Android",
      "authors": [
        "Xingyu Jin"
      ],
      "cves": [
        "CVE-2022-22265"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2022/CVE-2022-22265.html",
      "primary_url": "https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2022/CVE-2022-22265.html",
      "parent_primary_url": "https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2022/CVE-2022-22265.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-cve-2022-22265-samsung-npu-device-driver-double-free-in-android-primary-fe4d868c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2022-22265: Samsung NPU device driver double free in Android record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2022-22265: Samsung NPU device driver double free in Android resource_label: primary resource_type: article resource_url: https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2022/CVE-2022-22265.html parent_primary_url: https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2022/CVE-2022-22265.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"CVE-2022-22265: Samsung NPU device driver double free in Android\" by Xingyu Jin](https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2022/CVE-2022-22265.html) [article] [CVE-2022-22265] cves: CVE-2022-22265 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2022/CVE-2022-22265.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2022/CVE-2022-22265.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2022/CVE-2022-22265.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-22265",
        "Samsung"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This article discusses a double free vulnerability in the Samsung NPU device driver for Android.",
      "summary_zh": "本文讨论了Android中Samsung NPU设备驱动的双重释放漏洞。",
      "source_markdown": "[2022: \"CVE-2022-22265: Samsung NPU device driver double free in Android\" by Xingyu Jin](https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2022/CVE-2022-22265.html) [article] [CVE-2022-22265]",
      "search_text": "cve-2022-22265: samsung npu device driver double free in android cve-2022-22265: samsung npu device driver double free in android xingyu jin cve-2022-22265  vulnerabilities lpe lpe primary article https://googleprojectzero.github.io/0days-in-the-wild/0day-rcas/2022/cve-2022-22265.html lpe cve-2022-22265 samsung  vulnerability research this article discusses a double free vulnerability in the samsung npu device driver for android. 本文讨论了android中samsung npu设备驱动的双重释放漏洞。 # cve-2022-22265: samsung npu device driver double free in android record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2022-22265: samsung npu device driver double free in android resource_label: primary resource_type: article resource_url: https://googleprojectzero.github.io/0days-in-the-wild/0day-rcas/2022/cve-2022-22265.html parent_primary_url: https://googleprojectzero.github.io/0days-in-the-wild/0day-rcas/2022/cve-2022-22265.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"cve-2022-22265: samsung npu device driver double free in android\" by xingyu jin](https://googleprojectzero.github.io/0days-in-the-wild/0day-rcas/2022/cve-2022-22265.html) [article] [cve-2022-22265] cves: cve-2022-22265 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "328d3e5539c2980c",
      "item_id": "07d42fe22fbf064a",
      "slug": "2022-vulnerabilities-lpe-linux-kernel-exploiting-a-netfilter-use-after-free-in-kmalloc-cg-primary-5dba05a1",
      "year": 2022,
      "title": "Linux Kernel: Exploiting a Netfilter Use-after-Free in kmalloc-cg",
      "item_title": "Linux Kernel: Exploiting a Netfilter Use-after-Free in kmalloc-cg",
      "authors": [
        "Sergi Martinez"
      ],
      "cves": [
        "CVE-2022-32250"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.exodusintel.com/2022/12/19/linux-kernel-exploiting-a-netfilter-use-after-free-in-kmalloc-cg/",
      "primary_url": "https://blog.exodusintel.com/2022/12/19/linux-kernel-exploiting-a-netfilter-use-after-free-in-kmalloc-cg/",
      "parent_primary_url": "https://blog.exodusintel.com/2022/12/19/linux-kernel-exploiting-a-netfilter-use-after-free-in-kmalloc-cg/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-linux-kernel-exploiting-a-netfilter-use-after-free-in-kmalloc-cg-primary-5dba05a1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel: Exploiting a Netfilter Use-after-Free in kmalloc-cg record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux Kernel: Exploiting a Netfilter Use-after-Free in kmalloc-cg resource_label: primary resource_type: article resource_url: https://blog.exodusintel.com/2022/12/19/linux-kernel-exploiting-a-netfilter-use-after-free-in-kmalloc-cg/ parent_primary_url: https://blog.exodusintel.com/2022/12/19/linux-kernel-exploiting-a-netfilter-use-after-free-in-kmalloc-cg/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Linux Kernel: Exploiting a Netfilter Use-after-Free in kmalloc-cg\" by Sergi Martinez](https://blog.exodusintel.com/2022/12/19/linux-kernel-exploiting-a-netfilter-use-after-free-in-kmalloc-cg/) [article] [CVE-2022-32250] cves: CVE-2022-32250 android_impact_status: unknown",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.exodusintel.com/2022/12/19/linux-kernel-exploiting-a-netfilter-use-after-free-in-kmalloc-cg/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.exodusintel.com/2022/12/19/linux-kernel-exploiting-a-netfilter-use-after-free-in-kmalloc-cg/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-32250",
        "Netfilter"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "Exploitation techniques for a use-after-free vulnerability in the Netfilter subsystem are discussed.",
      "summary_zh": "讨论了Netfilter子系统中的使用后释放漏洞的利用技术。",
      "source_markdown": "[2022: \"Linux Kernel: Exploiting a Netfilter Use-after-Free in kmalloc-cg\" by Sergi Martinez](https://blog.exodusintel.com/2022/12/19/linux-kernel-exploiting-a-netfilter-use-after-free-in-kmalloc-cg/) [article] [CVE-2022-32250]",
      "search_text": "linux kernel: exploiting a netfilter use-after-free in kmalloc-cg linux kernel: exploiting a netfilter use-after-free in kmalloc-cg sergi martinez cve-2022-32250  vulnerabilities lpe lpe primary article https://blog.exodusintel.com/2022/12/19/linux-kernel-exploiting-a-netfilter-use-after-free-in-kmalloc-cg/ lpe cve-2022-32250 netfilter  vulnerability research exploitation techniques for a use-after-free vulnerability in the netfilter subsystem are discussed. 讨论了netfilter子系统中的使用后释放漏洞的利用技术。 # linux kernel: exploiting a netfilter use-after-free in kmalloc-cg record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel: exploiting a netfilter use-after-free in kmalloc-cg resource_label: primary resource_type: article resource_url: https://blog.exodusintel.com/2022/12/19/linux-kernel-exploiting-a-netfilter-use-after-free-in-kmalloc-cg/ parent_primary_url: https://blog.exodusintel.com/2022/12/19/linux-kernel-exploiting-a-netfilter-use-after-free-in-kmalloc-cg/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"linux kernel: exploiting a netfilter use-after-free in kmalloc-cg\" by sergi martinez](https://blog.exodusintel.com/2022/12/19/linux-kernel-exploiting-a-netfilter-use-after-free-in-kmalloc-cg/) [article] [cve-2022-32250] cves: cve-2022-32250 android_impact_status: unknown unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "74d9e72dffa2e3a1",
      "item_id": "9bebbe8a61ad8f9d",
      "slug": "2022-vulnerabilities-lpe-exploiting-cve-2022-42703-bringing-back-the-stack-attack-primary-7ab370df",
      "year": 2022,
      "title": "Exploiting CVE-2022-42703 - Bringing back the stack attack",
      "item_title": "Exploiting CVE-2022-42703 - Bringing back the stack attack",
      "authors": [
        "Seth Jenkins"
      ],
      "cves": [
        "CVE-2022-42703"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2022/12/exploiting-CVE-2022-42703-bringing-back-the-stack-attack.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2022/12/exploiting-CVE-2022-42703-bringing-back-the-stack-attack.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2022/12/exploiting-CVE-2022-42703-bringing-back-the-stack-attack.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-exploiting-cve-2022-42703-bringing-back-the-stack-attack-primary-7ab370df.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting CVE-2022-42703 - Bringing back the stack attack record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting CVE-2022-42703 - Bringing back the stack attack resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2022/12/exploiting-CVE-2022-42703-bringing-back-the-stack-attack.html parent_primary_url: https://googleprojectzero.blogspot.com/2022/12/exploiting-CVE-2022-42703-bringing-back-the-stack-attack.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Exploiting CVE-2022-42703 - Bringing back the stack attack\" by Seth Jenkins](https://googleprojectzero.blogspot.com/2022/12/exploiting-CVE-2022-42703-bringing-back-the-stack-attack.html) [article] [CVE-2022-42703] cves: CVE-2022-42703 android_impact_status: unknown android_impac",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2022/12/exploiting-CVE-2022-42703-bringing-back-the-stack-attack.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2022/12/exploiting-CVE-2022-42703-bringing-back-the-stack-attack.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-42703",
        "stack attack"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This article explores the exploitation of CVE-2022-42703, focusing on stack-based attacks.",
      "summary_zh": "本文探讨了CVE-2022-42703的利用，重点关注基于堆栈的攻击。",
      "source_markdown": "[2022: \"Exploiting CVE-2022-42703 - Bringing back the stack attack\" by Seth Jenkins](https://googleprojectzero.blogspot.com/2022/12/exploiting-CVE-2022-42703-bringing-back-the-stack-attack.html) [article] [CVE-2022-42703]",
      "search_text": "exploiting cve-2022-42703 - bringing back the stack attack exploiting cve-2022-42703 - bringing back the stack attack seth jenkins cve-2022-42703  vulnerabilities lpe lpe primary article https://googleprojectzero.blogspot.com/2022/12/exploiting-cve-2022-42703-bringing-back-the-stack-attack.html lpe cve-2022-42703 stack attack  vulnerability research this article explores the exploitation of cve-2022-42703, focusing on stack-based attacks. 本文探讨了cve-2022-42703的利用，重点关注基于堆栈的攻击。 # exploiting cve-2022-42703 - bringing back the stack attack record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting cve-2022-42703 - bringing back the stack attack resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2022/12/exploiting-cve-2022-42703-bringing-back-the-stack-attack.html parent_primary_url: https://googleprojectzero.blogspot.com/2022/12/exploiting-cve-2022-42703-bringing-back-the-stack-attack.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"exploiting cve-2022-42703 - bringing back the stack attack\" by seth jenkins](https://googleprojectzero.blogspot.com/2022/12/exploiting-cve-2022-42703-bringing-back-the-stack-attack.html) [article] [cve-2022-42703] cves: cve-2022-42703 android_impact_status: unknown android_impac unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "b6bd64a2b9edaa92",
      "item_id": "2ed2173b030922cb",
      "slug": "2022-vulnerabilities-lpe-cve-2022-2602-dirtycred-file-exploitation-applied-on-an-io-uring-uaf-primary-09af3d90",
      "year": 2022,
      "title": "CVE-2022-2602: DirtyCred File Exploitation applied on an io_uring UAF",
      "item_title": "CVE-2022-2602: DirtyCred File Exploitation applied on an io_uring UAF",
      "authors": [],
      "cves": [
        "CVE-2022-2602"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://1day.dev/notes/CVE-2022-2602-DirtyCred-File-Exploitation-applied-on-an-io_uring-UAF/",
      "primary_url": "https://1day.dev/notes/CVE-2022-2602-DirtyCred-File-Exploitation-applied-on-an-io_uring-UAF/",
      "parent_primary_url": "https://1day.dev/notes/CVE-2022-2602-DirtyCred-File-Exploitation-applied-on-an-io_uring-UAF/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-cve-2022-2602-dirtycred-file-exploitation-applied-on-an-io-uring-uaf-primary-09af3d90.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2022-2602: DirtyCred File Exploitation applied on an io_uring UAF record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2022-2602: DirtyCred File Exploitation applied on an io_uring UAF resource_label: primary resource_type: article resource_url: https://1day.dev/notes/CVE-2022-2602-DirtyCred-File-Exploitation-applied-on-an-io_uring-UAF/ parent_primary_url: https://1day.dev/notes/CVE-2022-2602-DirtyCred-File-Exploitation-applied-on-an-io_uring-UAF/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"CVE-2022-2602: DirtyCred File Exploitation applied on an io_uring UAF\"](https://1day.dev/notes/CVE-2022-2602-DirtyCred-File-Exploitation-applied-on-an-io_uring-UAF/) [article] [CVE-2022-2602] cves: CVE-2022-2602 android_impact_status: unknown android_impact_reason: Linux kernel vulnerabil",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://1day.dev/notes/CVE-2022-2602-DirtyCred-File-Exploitation-applied-on-an-io_uring-UAF/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://1day.dev/notes/CVE-2022-2602-DirtyCred-File-Exploitation-applied-on-an-io_uring-UAF/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-2602",
        "use-after-free"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "CVE-2022-2602 is analyzed for its exploitation potential in a use-after-free scenario.",
      "summary_zh": "CVE-2022-2602在使用后释放场景中的利用潜力被分析。",
      "source_markdown": "[2022: \"CVE-2022-2602: DirtyCred File Exploitation applied on an io_uring UAF\"](https://1day.dev/notes/CVE-2022-2602-DirtyCred-File-Exploitation-applied-on-an-io_uring-UAF/) [article] [CVE-2022-2602]",
      "search_text": "cve-2022-2602: dirtycred file exploitation applied on an io_uring uaf cve-2022-2602: dirtycred file exploitation applied on an io_uring uaf  cve-2022-2602  vulnerabilities lpe lpe primary article https://1day.dev/notes/cve-2022-2602-dirtycred-file-exploitation-applied-on-an-io_uring-uaf/ lpe cve-2022-2602 use-after-free  vulnerability research cve-2022-2602 is analyzed for its exploitation potential in a use-after-free scenario. cve-2022-2602在使用后释放场景中的利用潜力被分析。 # cve-2022-2602: dirtycred file exploitation applied on an io_uring uaf record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2022-2602: dirtycred file exploitation applied on an io_uring uaf resource_label: primary resource_type: article resource_url: https://1day.dev/notes/cve-2022-2602-dirtycred-file-exploitation-applied-on-an-io_uring-uaf/ parent_primary_url: https://1day.dev/notes/cve-2022-2602-dirtycred-file-exploitation-applied-on-an-io_uring-uaf/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"cve-2022-2602: dirtycred file exploitation applied on an io_uring uaf\"](https://1day.dev/notes/cve-2022-2602-dirtycred-file-exploitation-applied-on-an-io_uring-uaf/) [article] [cve-2022-2602] cves: cve-2022-2602 android_impact_status: unknown android_impact_reason: linux kernel vulnerabil unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "f7354e81f4d06ade",
      "item_id": "f68b29780c4762ca",
      "slug": "2022-vulnerabilities-lpe-dirtycred-remastered-how-to-turn-an-uaf-into-privilege-escalation-primary-9275273e",
      "year": 2022,
      "title": "DirtyCred Remastered: how to turn an UAF into Privilege Escalation",
      "item_title": "DirtyCred Remastered: how to turn an UAF into Privilege Escalation",
      "authors": [],
      "cves": [
        "CVE-2022-2602"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://exploiter.dev/blog/2022/CVE-2022-2602.html",
      "primary_url": "https://exploiter.dev/blog/2022/CVE-2022-2602.html",
      "parent_primary_url": "https://exploiter.dev/blog/2022/CVE-2022-2602.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-dirtycred-remastered-how-to-turn-an-uaf-into-privilege-escalation-primary-9275273e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DirtyCred Remastered: how to turn an UAF into Privilege Escalation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: DirtyCred Remastered: how to turn an UAF into Privilege Escalation resource_label: primary resource_type: article resource_url: https://exploiter.dev/blog/2022/CVE-2022-2602.html parent_primary_url: https://exploiter.dev/blog/2022/CVE-2022-2602.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"DirtyCred Remastered: how to turn an UAF into Privilege Escalation\"](https://exploiter.dev/blog/2022/CVE-2022-2602.html) [article] [CVE-2022-2602] cves: CVE-2022-2602 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://exploiter.dev/blog/2022/CVE-2022-2602.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://exploiter.dev/blog/2022/CVE-2022-2602.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-2602",
        "use-after-free"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This article discusses how to exploit a use-after-free vulnerability for privilege escalation.",
      "summary_zh": "本文讨论了如何利用使用后释放漏洞进行权限提升。",
      "source_markdown": "[2022: \"DirtyCred Remastered: how to turn an UAF into Privilege Escalation\"](https://exploiter.dev/blog/2022/CVE-2022-2602.html) [article] [CVE-2022-2602]",
      "search_text": "dirtycred remastered: how to turn an uaf into privilege escalation dirtycred remastered: how to turn an uaf into privilege escalation  cve-2022-2602  vulnerabilities lpe lpe primary article https://exploiter.dev/blog/2022/cve-2022-2602.html lpe cve-2022-2602 use-after-free  vulnerability research this article discusses how to exploit a use-after-free vulnerability for privilege escalation. 本文讨论了如何利用使用后释放漏洞进行权限提升。 # dirtycred remastered: how to turn an uaf into privilege escalation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: dirtycred remastered: how to turn an uaf into privilege escalation resource_label: primary resource_type: article resource_url: https://exploiter.dev/blog/2022/cve-2022-2602.html parent_primary_url: https://exploiter.dev/blog/2022/cve-2022-2602.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"dirtycred remastered: how to turn an uaf into privilege escalation\"](https://exploiter.dev/blog/2022/cve-2022-2602.html) [article] [cve-2022-2602] cves: cve-2022-2602 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason:  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "50d4f75428758304",
      "item_id": "30c6280b9d06f522",
      "slug": "2022-vulnerabilities-lpe-exploiting-cross-table-object-reference-in-linux-netfilter-table-nft-module-primary-7",
      "year": 2022,
      "title": "Exploiting cross table object reference in Linux Netfilter table (NFT) module",
      "item_title": "Exploiting cross table object reference in Linux Netfilter table (NFT) module",
      "authors": [],
      "cves": [
        "CVE-2022-2078",
        "CVE-2022-2586"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://docs.google.com/presentation/d/1qcPPz9E_X3z5h_E-Cc7Qmy1ppP4hWjFZQCQ5ZCb9hw8/edit?usp=sharing",
      "primary_url": "https://docs.google.com/presentation/d/1qcPPz9E_X3z5h_E-Cc7Qmy1ppP4hWjFZQCQ5ZCb9hw8/edit?usp=sharing",
      "parent_primary_url": "https://docs.google.com/presentation/d/1qcPPz9E_X3z5h_E-Cc7Qmy1ppP4hWjFZQCQ5ZCb9hw8/edit?usp=sharing",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-exploiting-cross-table-object-reference-in-linux-netfilter-table-nft-module-primary-7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting cross table object reference in Linux Netfilter table (NFT) module record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting cross table object reference in Linux Netfilter table (NFT) module resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/1qcPPz9E_X3z5h_E-Cc7Qmy1ppP4hWjFZQCQ5ZCb9hw8/edit?usp=sharing parent_primary_url: https://docs.google.com/presentation/d/1qcPPz9E_X3z5h_E-Cc7Qmy1ppP4hWjFZQCQ5ZCb9hw8/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Exploiting cross table object reference in Linux Netfilter table (NFT) module\"](https://docs.google.com/presentation/d/1qcPPz9E_X3z5h_E-Cc7Qmy1ppP4hWjFZQCQ5ZCb9hw8/edit?usp=sharing) [slides] [CVE-2022-2078] [CVE-2022-2586] cves: CVE-2022-2078, CVE-2022-2586 ",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/1qcPPz9E_X3z5h_E-Cc7Qmy1ppP4hWjFZQCQ5ZCb9hw8/edit?usp=sharing"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/1qcPPz9E_X3z5h_E-Cc7Qmy1ppP4hWjFZQCQ5ZCb9hw8/edit?usp=sharing"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-2078",
        "CVE-2022-2586"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "Exploitation techniques for cross table object references in the Linux Netfilter module are presented.",
      "summary_zh": "介绍了Linux Netfilter模块中交叉表对象引用的利用技术。",
      "source_markdown": "[2022: \"Exploiting cross table object reference in Linux Netfilter table (NFT) module\"](https://docs.google.com/presentation/d/1qcPPz9E_X3z5h_E-Cc7Qmy1ppP4hWjFZQCQ5ZCb9hw8/edit?usp=sharing) [slides] [CVE-2022-2078] [CVE-2022-2586]",
      "search_text": "exploiting cross table object reference in linux netfilter table (nft) module exploiting cross table object reference in linux netfilter table (nft) module  cve-2022-2078 cve-2022-2586  vulnerabilities lpe lpe primary slides https://docs.google.com/presentation/d/1qcppz9e_x3z5h_e-cc7qmy1ppp4hwjfzqcq5zcb9hw8/edit?usp=sharing lpe cve-2022-2078 cve-2022-2586  vulnerability research exploitation techniques for cross table object references in the linux netfilter module are presented. 介绍了linux netfilter模块中交叉表对象引用的利用技术。 # exploiting cross table object reference in linux netfilter table (nft) module record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting cross table object reference in linux netfilter table (nft) module resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/1qcppz9e_x3z5h_e-cc7qmy1ppp4hwjfzqcq5zcb9hw8/edit?usp=sharing parent_primary_url: https://docs.google.com/presentation/d/1qcppz9e_x3z5h_e-cc7qmy1ppp4hwjfzqcq5zcb9hw8/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"exploiting cross table object reference in linux netfilter table (nft) module\"](https://docs.google.com/presentation/d/1qcppz9e_x3z5h_e-cc7qmy1ppp4hwjfzqcq5zcb9hw8/edit?usp=sharing) [slides] [cve-2022-2078] [cve-2022-2586] cves: cve-2022-2078, cve-2022-2586  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "0248c49d541074ba",
      "item_id": "ab19846f06bdcd22",
      "slug": "2022-vulnerabilities-lpe-linux-kernel-n-day-exploit-development-primary-327529a4",
      "year": 2022,
      "title": "Linux Kernel n-day exploit development",
      "item_title": "Linux Kernel n-day exploit development",
      "authors": [],
      "cves": [
        "CVE-2020-27786"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://1day.dev/notes/Linux-Kernel-n-day-exploit-development/",
      "primary_url": "https://1day.dev/notes/Linux-Kernel-n-day-exploit-development/",
      "parent_primary_url": "https://1day.dev/notes/Linux-Kernel-n-day-exploit-development/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-linux-kernel-n-day-exploit-development-primary-327529a4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel n-day exploit development record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux Kernel n-day exploit development resource_label: primary resource_type: article resource_url: https://1day.dev/notes/Linux-Kernel-n-day-exploit-development/ parent_primary_url: https://1day.dev/notes/Linux-Kernel-n-day-exploit-development/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Linux Kernel n-day exploit development\"](https://1day.dev/notes/Linux-Kernel-n-day-exploit-development/) [article] [CVE-2020-27786] cves: CVE-2020-27786 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://1day.dev/notes/Linux-Kernel-n-day-exploit-development/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://1day.dev/notes/Linux-Kernel-n-day-exploit-development/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://1day.dev/notes/Linux-Kernel-n-day-exploit-development/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2020-27786",
        "exploit development"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This article covers the development of exploits for a known Linux kernel vulnerability.",
      "summary_zh": "本文介绍了针对已知Linux内核漏洞的利用开发。",
      "source_markdown": "[2022: \"Linux Kernel n-day exploit development\"](https://1day.dev/notes/Linux-Kernel-n-day-exploit-development/) [article] [CVE-2020-27786]",
      "search_text": "linux kernel n-day exploit development linux kernel n-day exploit development  cve-2020-27786  vulnerabilities lpe lpe primary article https://1day.dev/notes/linux-kernel-n-day-exploit-development/ lpe cve-2020-27786 exploit development  vulnerability research this article covers the development of exploits for a known linux kernel vulnerability. 本文介绍了针对已知linux内核漏洞的利用开发。 # linux kernel n-day exploit development record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel n-day exploit development resource_label: primary resource_type: article resource_url: https://1day.dev/notes/linux-kernel-n-day-exploit-development/ parent_primary_url: https://1day.dev/notes/linux-kernel-n-day-exploit-development/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"linux kernel n-day exploit development\"](https://1day.dev/notes/linux-kernel-n-day-exploit-development/) [article] [cve-2020-27786] cves: cve-2020-27786 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "f7b2c0795649e8b0",
      "item_id": "14c88bbd15ccb26b",
      "slug": "2022-vulnerabilities-lpe-linux-kernel-exploit-development-1day-case-study-primary-dd90d362",
      "year": 2022,
      "title": "Linux Kernel Exploit Development: 1day case study",
      "item_title": "Linux Kernel Exploit Development: 1day case study",
      "authors": [
        "Alessandro Groppo"
      ],
      "cves": [
        "CVE-2020-27786"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.hacktivesecurity.com/index.php/2022/06/13/linux-kernel-exploit-development-1day-case-study/",
      "primary_url": "https://blog.hacktivesecurity.com/index.php/2022/06/13/linux-kernel-exploit-development-1day-case-study/",
      "parent_primary_url": "https://blog.hacktivesecurity.com/index.php/2022/06/13/linux-kernel-exploit-development-1day-case-study/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-linux-kernel-exploit-development-1day-case-study-primary-dd90d362.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Exploit Development: 1day case study record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux Kernel Exploit Development: 1day case study resource_label: primary resource_type: article resource_url: https://blog.hacktivesecurity.com/index.php/2022/06/13/linux-kernel-exploit-development-1day-case-study/ parent_primary_url: https://blog.hacktivesecurity.com/index.php/2022/06/13/linux-kernel-exploit-development-1day-case-study/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Linux Kernel Exploit Development: 1day case study\" by Alessandro Groppo](https://blog.hacktivesecurity.com/index.php/2022/06/13/linux-kernel-exploit-development-1day-case-study/) [article] [CVE-2020-27786] cves: CVE-2020-27786 android_impact_status: unknown android_impact_reason: Linux kernel vulnerabili",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.hacktivesecurity.com/index.php/2022/06/13/linux-kernel-exploit-development-1day-case-study/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.hacktivesecurity.com/index.php/2022/06/13/linux-kernel-exploit-development-1day-case-study/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://blog.hacktivesecurity.com/index.php/2022/06/13/linux-kernel-exploit-development-1day-case-study/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2020-27786",
        "exploit development"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "A case study on the development of exploits for a Linux kernel vulnerability is presented.",
      "summary_zh": "介绍了针对Linux内核漏洞的利用开发的案例研究。",
      "source_markdown": "[2022: \"Linux Kernel Exploit Development: 1day case study\" by Alessandro Groppo](https://blog.hacktivesecurity.com/index.php/2022/06/13/linux-kernel-exploit-development-1day-case-study/) [article] [CVE-2020-27786]",
      "search_text": "linux kernel exploit development: 1day case study linux kernel exploit development: 1day case study alessandro groppo cve-2020-27786  vulnerabilities lpe lpe primary article https://blog.hacktivesecurity.com/index.php/2022/06/13/linux-kernel-exploit-development-1day-case-study/ lpe cve-2020-27786 exploit development  vulnerability research a case study on the development of exploits for a linux kernel vulnerability is presented. 介绍了针对linux内核漏洞的利用开发的案例研究。 # linux kernel exploit development: 1day case study record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel exploit development: 1day case study resource_label: primary resource_type: article resource_url: https://blog.hacktivesecurity.com/index.php/2022/06/13/linux-kernel-exploit-development-1day-case-study/ parent_primary_url: https://blog.hacktivesecurity.com/index.php/2022/06/13/linux-kernel-exploit-development-1day-case-study/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"linux kernel exploit development: 1day case study\" by alessandro groppo](https://blog.hacktivesecurity.com/index.php/2022/06/13/linux-kernel-exploit-development-1day-case-study/) [article] [cve-2020-27786] cves: cve-2020-27786 android_impact_status: unknown android_impact_reason: linux kernel vulnerabili unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "1831b8f78e94fe34",
      "item_id": "1a0381869bad47cd",
      "slug": "2022-vulnerabilities-lpe-cve-2022-1786-a-journey-to-the-dawn-primary-f4a85d31",
      "year": 2022,
      "title": "[CVE-2022-1786] A Journey To The Dawn",
      "item_title": "[CVE-2022-1786] A Journey To The Dawn",
      "authors": [],
      "cves": [
        "CVE-2022-1786"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.kylebot.net/2022/10/16/CVE-2022-1786/",
      "primary_url": "https://blog.kylebot.net/2022/10/16/CVE-2022-1786/",
      "parent_primary_url": "https://blog.kylebot.net/2022/10/16/CVE-2022-1786/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-cve-2022-1786-a-journey-to-the-dawn-primary-f4a85d31.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# [CVE-2022-1786] A Journey To The Dawn record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: [CVE-2022-1786] A Journey To The Dawn resource_label: primary resource_type: article resource_url: https://blog.kylebot.net/2022/10/16/CVE-2022-1786/ parent_primary_url: https://blog.kylebot.net/2022/10/16/CVE-2022-1786/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"[CVE-2022-1786] A Journey To The Dawn\"](https://blog.kylebot.net/2022/10/16/CVE-2022-1786/) [article] [CVE-2022-1786] cves: CVE-2022-1786 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_po",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.kylebot.net/2022/10/16/CVE-2022-1786/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.kylebot.net/2022/10/16/CVE-2022-1786/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-1786"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "An exploration of CVE-2022-1786 and its implications for privilege escalation.",
      "summary_zh": "对CVE-2022-1786及其对权限提升影响的探讨。",
      "source_markdown": "[2022: \"[CVE-2022-1786] A Journey To The Dawn\"](https://blog.kylebot.net/2022/10/16/CVE-2022-1786/) [article] [CVE-2022-1786]",
      "search_text": "[cve-2022-1786] a journey to the dawn [cve-2022-1786] a journey to the dawn  cve-2022-1786  vulnerabilities lpe lpe primary article https://blog.kylebot.net/2022/10/16/cve-2022-1786/ lpe cve-2022-1786  vulnerability research an exploration of cve-2022-1786 and its implications for privilege escalation. 对cve-2022-1786及其对权限提升影响的探讨。 # [cve-2022-1786] a journey to the dawn record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: [cve-2022-1786] a journey to the dawn resource_label: primary resource_type: article resource_url: https://blog.kylebot.net/2022/10/16/cve-2022-1786/ parent_primary_url: https://blog.kylebot.net/2022/10/16/cve-2022-1786/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"[cve-2022-1786] a journey to the dawn\"](https://blog.kylebot.net/2022/10/16/cve-2022-1786/) [article] [cve-2022-1786] cves: cve-2022-1786 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_po unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d3a32a2681517f1f",
      "item_id": "2e6abb318a77f4d7",
      "slug": "2022-vulnerabilities-lpe-a-very-powerful-clipboard-analysis-of-a-samsung-in-the-wild-exploit-chain-primary-144",
      "year": 2022,
      "title": "A Very Powerful Clipboard: Analysis of a Samsung in-the-wild exploit chain",
      "item_title": "A Very Powerful Clipboard: Analysis of a Samsung in-the-wild exploit chain",
      "authors": [
        "Maddie Stone"
      ],
      "cves": [
        "CVE-2021-25369",
        "CVE-2021-25370"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2022/11/a-very-powerful-clipboard-samsung-in-the-wild-exploit-chain.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2022/11/a-very-powerful-clipboard-samsung-in-the-wild-exploit-chain.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2022/11/a-very-powerful-clipboard-samsung-in-the-wild-exploit-chain.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-a-very-powerful-clipboard-analysis-of-a-samsung-in-the-wild-exploit-chain-primary-144.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Very Powerful Clipboard: Analysis of a Samsung in-the-wild exploit chain record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: A Very Powerful Clipboard: Analysis of a Samsung in-the-wild exploit chain resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2022/11/a-very-powerful-clipboard-samsung-in-the-wild-exploit-chain.html parent_primary_url: https://googleprojectzero.blogspot.com/2022/11/a-very-powerful-clipboard-samsung-in-the-wild-exploit-chain.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"A Very Powerful Clipboard: Analysis of a Samsung in-the-wild exploit chain\" by Maddie Stone](https://googleprojectzero.blogspot.com/2022/11/a-very-powerful-clipboard-samsung-in-the-wild-exploit-chain.html) [article] [CVE-2021-25369] [CVE-202",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2022/11/a-very-powerful-clipboard-samsung-in-the-wild-exploit-chain.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2022/11/a-very-powerful-clipboard-samsung-in-the-wild-exploit-chain.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://googleprojectzero.blogspot.com/2022/11/a-very-powerful-clipboard-samsung-in-the-wild-exploit-chain.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions an Android OEM/device family",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "exploit_chain",
        "Android"
      ],
      "affected_area": "clipboard",
      "exploit_stage": "vulnerability",
      "summary_en": "This article analyzes a Samsung exploit chain leveraging clipboard vulnerabilities.",
      "summary_zh": "本文分析了利用剪贴板漏洞的三星攻击链。",
      "source_markdown": "[2022: \"A Very Powerful Clipboard: Analysis of a Samsung in-the-wild exploit chain\" by Maddie Stone](https://googleprojectzero.blogspot.com/2022/11/a-very-powerful-clipboard-samsung-in-the-wild-exploit-chain.html) [article] [CVE-2021-25369] [CVE-2021-25370]",
      "search_text": "a very powerful clipboard: analysis of a samsung in-the-wild exploit chain a very powerful clipboard: analysis of a samsung in-the-wild exploit chain maddie stone cve-2021-25369 cve-2021-25370  vulnerabilities lpe lpe primary article https://googleprojectzero.blogspot.com/2022/11/a-very-powerful-clipboard-samsung-in-the-wild-exploit-chain.html lpe exploit_chain android clipboard vulnerability this article analyzes a samsung exploit chain leveraging clipboard vulnerabilities. 本文分析了利用剪贴板漏洞的三星攻击链。 # a very powerful clipboard: analysis of a samsung in-the-wild exploit chain record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: a very powerful clipboard: analysis of a samsung in-the-wild exploit chain resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2022/11/a-very-powerful-clipboard-samsung-in-the-wild-exploit-chain.html parent_primary_url: https://googleprojectzero.blogspot.com/2022/11/a-very-powerful-clipboard-samsung-in-the-wild-exploit-chain.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"a very powerful clipboard: analysis of a samsung in-the-wild exploit chain\" by maddie stone](https://googleprojectzero.blogspot.com/2022/11/a-very-powerful-clipboard-samsung-in-the-wild-exploit-chain.html) [article] [cve-2021-25369] [cve-202 yes mentions an android oem/device family no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "f6dcc1b9eb9fe09b",
      "item_id": "ca73012cc5ecf6db",
      "slug": "2022-vulnerabilities-lpe-attacking-the-android-kernel-using-the-qualcomm-trustzone-primary-3ada8d65",
      "year": 2022,
      "title": "Attacking the Android kernel using the Qualcomm TrustZone",
      "item_title": "Attacking the Android kernel using the Qualcomm TrustZone",
      "authors": [
        "Tamir Zahavi-Brunner"
      ],
      "cves": [
        "CVE-2021-1961"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone",
      "primary_url": "https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone",
      "parent_primary_url": "https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-attacking-the-android-kernel-using-the-qualcomm-trustzone-primary-3ada8d65.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Attacking the Android kernel using the Qualcomm TrustZone record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Attacking the Android kernel using the Qualcomm TrustZone resource_label: primary resource_type: article resource_url: https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone parent_primary_url: https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Attacking the Android kernel using the Qualcomm TrustZone\" by Tamir Zahavi-Brunner](https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone) [article] [[video](https://www.youtube.com/watch?v=WXqff23dT5I)] [CVE-2021-1961] cves: CVE-2021-1961 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_rea",
      "link_types": [
        "article",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=WXqff23dT5I"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=WXqff23dT5I"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Qualcomm",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The article discusses exploiting the Android kernel via Qualcomm TrustZone vulnerabilities.",
      "summary_zh": "本文讨论了通过高通TrustZone漏洞攻击Android内核。",
      "source_markdown": "[2022: \"Attacking the Android kernel using the Qualcomm TrustZone\" by Tamir Zahavi-Brunner](https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone) [article] [[video](https://www.youtube.com/watch?v=WXqff23dT5I)] [CVE-2021-1961]",
      "search_text": "attacking the android kernel using the qualcomm trustzone attacking the android kernel using the qualcomm trustzone tamir zahavi-brunner cve-2021-1961  vulnerabilities lpe lpe primary article https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone lpe qualcomm android  vulnerability the article discusses exploiting the android kernel via qualcomm trustzone vulnerabilities. 本文讨论了通过高通trustzone漏洞攻击android内核。 # attacking the android kernel using the qualcomm trustzone record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: attacking the android kernel using the qualcomm trustzone resource_label: primary resource_type: article resource_url: https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone parent_primary_url: https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"attacking the android kernel using the qualcomm trustzone\" by tamir zahavi-brunner](https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone) [article] [[video](https://www.youtube.com/watch?v=wxqff23dt5i)] [cve-2021-1961] cves: cve-2021-1961 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_rea yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "c4e45e2b1c9f88c8",
      "item_id": "ca73012cc5ecf6db",
      "slug": "2022-vulnerabilities-lpe-attacking-the-android-kernel-using-the-qualcomm-trustzone-video-19c0a27a",
      "year": 2022,
      "title": "Attacking the Android kernel using the Qualcomm TrustZone · video",
      "item_title": "Attacking the Android kernel using the Qualcomm TrustZone",
      "authors": [
        "Tamir Zahavi-Brunner"
      ],
      "cves": [
        "CVE-2021-1961"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=WXqff23dT5I",
      "primary_url": "https://www.youtube.com/watch?v=WXqff23dT5I",
      "parent_primary_url": "https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-attacking-the-android-kernel-using-the-qualcomm-trustzone-video-19c0a27a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Attacking the Android kernel using the Qualcomm TrustZone · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Attacking the Android kernel using the Qualcomm TrustZone resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=WXqff23dT5I parent_primary_url: https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Attacking the Android kernel using the Qualcomm TrustZone\" by Tamir Zahavi-Brunner](https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone) [article] [[video](https://www.youtube.com/watch?v=WXqff23dT5I)] [CVE-2021-1961] cves: CVE-2021-1961 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS de",
      "link_types": [
        "article",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=WXqff23dT5I"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=WXqff23dT5I"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Qualcomm",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "A video presentation on exploiting the Android kernel using Qualcomm TrustZone vulnerabilities.",
      "summary_zh": "关于利用高通TrustZone漏洞攻击Android内核的视频演示。",
      "source_markdown": "[2022: \"Attacking the Android kernel using the Qualcomm TrustZone\" by Tamir Zahavi-Brunner](https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone) [article] [[video](https://www.youtube.com/watch?v=WXqff23dT5I)] [CVE-2021-1961]",
      "search_text": "attacking the android kernel using the qualcomm trustzone · video attacking the android kernel using the qualcomm trustzone tamir zahavi-brunner cve-2021-1961  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=wxqff23dt5i lpe qualcomm android  vulnerability a video presentation on exploiting the android kernel using qualcomm trustzone vulnerabilities. 关于利用高通trustzone漏洞攻击android内核的视频演示。 # attacking the android kernel using the qualcomm trustzone · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: attacking the android kernel using the qualcomm trustzone resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=wxqff23dt5i parent_primary_url: https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"attacking the android kernel using the qualcomm trustzone\" by tamir zahavi-brunner](https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone) [article] [[video](https://www.youtube.com/watch?v=wxqff23dt5i)] [cve-2021-1961] cves: cve-2021-1961 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios de yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "adc11b5f5dc6b255",
      "item_id": "241a455a69aa2f0a",
      "slug": "2022-vulnerabilities-lpe-settlers-of-netlink-exploiting-a-limited-uaf-in-nf-tables-cve-2022-32250-primary-6ea9",
      "year": 2022,
      "title": "SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250)",
      "item_title": "SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250)",
      "authors": [],
      "cves": [
        "CVE-2022-32250"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/",
      "primary_url": "https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/",
      "parent_primary_url": "https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-settlers-of-netlink-exploiting-a-limited-uaf-in-nf-tables-cve-2022-32250-primary-6ea9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250) resource_label: primary resource_type: article resource_url: https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/ parent_primary_url: https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250)\"](https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/) [article] [[slides](https://conference.",
      "link_types": [
        "article",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Settlers%20of%20Netlink%20-%20Exploiting%20a%20Limited%20UAF%20on%20Ubuntu%2022.04%20to%20Achieve%20LPE%20-%20Aaron%20Adams.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=7T_ajYpRWJw"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Settlers%20of%20Netlink%20-%20Exploiting%20a%20Limited%20UAF%20on%20Ubuntu%2022.04%20to%20Achieve%20LPE%20-%20Aaron%20Adams.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=7T_ajYpRWJw"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "UAF",
        "nf_tables"
      ],
      "affected_area": "nf_tables",
      "exploit_stage": "vulnerability",
      "summary_en": "This article explores a limited use-after-free vulnerability in nf_tables.",
      "summary_zh": "本文探讨了nf_tables中的有限使用后释放漏洞。",
      "source_markdown": "[2022: \"SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250)\"](https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/) [article] [[slides](https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Settlers%20of%20Netlink%20-%20Exploiting%20a%20Limited%20UAF%20on%20Ubuntu%2022.04%20to%20Achieve%20LPE%20-%20Aaron%20Adams.pdf)] [[video](https://www.youtube.com/watch?v=7T_ajYpRWJw)] [CVE-2022-32250]",
      "search_text": "settlers of netlink: exploiting a limited uaf in nf_tables (cve-2022-32250) settlers of netlink: exploiting a limited uaf in nf_tables (cve-2022-32250)  cve-2022-32250  vulnerabilities lpe lpe primary article https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/ lpe uaf nf_tables nf_tables vulnerability this article explores a limited use-after-free vulnerability in nf_tables. 本文探讨了nf_tables中的有限使用后释放漏洞。 # settlers of netlink: exploiting a limited uaf in nf_tables (cve-2022-32250) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: settlers of netlink: exploiting a limited uaf in nf_tables (cve-2022-32250) resource_label: primary resource_type: article resource_url: https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/ parent_primary_url: https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"settlers of netlink: exploiting a limited uaf in nf_tables (cve-2022-32250)\"](https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/) [article] [[slides](https://conference. unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "14a25f912f34f320",
      "item_id": "241a455a69aa2f0a",
      "slug": "2022-vulnerabilities-lpe-settlers-of-netlink-exploiting-a-limited-uaf-in-nf-tables-cve-2022-32250-slides-02d8b",
      "year": 2022,
      "title": "SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250) · slides",
      "item_title": "SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250)",
      "authors": [],
      "cves": [
        "CVE-2022-32250"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Settlers%20of%20Netlink%20-%20Exploiting%20a%20Limited%20UAF%20on%20Ubuntu%2022.04%20to%20Achieve%20LPE%20-%20Aaron%20Adams.pdf",
      "primary_url": "https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Settlers%20of%20Netlink%20-%20Exploiting%20a%20Limited%20UAF%20on%20Ubuntu%2022.04%20to%20Achieve%20LPE%20-%20Aaron%20Adams.pdf",
      "parent_primary_url": "https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-settlers-of-netlink-exploiting-a-limited-uaf-in-nf-tables-cve-2022-32250-slides-02d8b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250) · slides record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250) resource_label: slides resource_type: slides resource_url: https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Settlers%20of%20Netlink%20-%20Exploiting%20a%20Limited%20UAF%20on%20Ubuntu%2022.04%20to%20Achieve%20LPE%20-%20Aaron%20Adams.pdf parent_primary_url: https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250)\"](https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploi",
      "link_types": [
        "article",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Settlers%20of%20Netlink%20-%20Exploiting%20a%20Limited%20UAF%20on%20Ubuntu%2022.04%20to%20Achieve%20LPE%20-%20Aaron%20Adams.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=7T_ajYpRWJw"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Settlers%20of%20Netlink%20-%20Exploiting%20a%20Limited%20UAF%20on%20Ubuntu%2022.04%20to%20Achieve%20LPE%20-%20Aaron%20Adams.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=7T_ajYpRWJw"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "UAF",
        "nf_tables"
      ],
      "affected_area": "nf_tables",
      "exploit_stage": "vulnerability",
      "summary_en": "Slides detailing the exploitation of a limited UAF in nf_tables.",
      "summary_zh": "关于nf_tables中有限使用后释放漏洞利用的幻灯片。",
      "source_markdown": "[2022: \"SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250)\"](https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/) [article] [[slides](https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Settlers%20of%20Netlink%20-%20Exploiting%20a%20Limited%20UAF%20on%20Ubuntu%2022.04%20to%20Achieve%20LPE%20-%20Aaron%20Adams.pdf)] [[video](https://www.youtube.com/watch?v=7T_ajYpRWJw)] [CVE-2022-32250]",
      "search_text": "settlers of netlink: exploiting a limited uaf in nf_tables (cve-2022-32250) · slides settlers of netlink: exploiting a limited uaf in nf_tables (cve-2022-32250)  cve-2022-32250  vulnerabilities lpe lpe slides slides https://conference.hitb.org/hitbsecconf2022sin/materials/d1t1%20-%20settlers%20of%20netlink%20-%20exploiting%20a%20limited%20uaf%20on%20ubuntu%2022.04%20to%20achieve%20lpe%20-%20aaron%20adams.pdf lpe uaf nf_tables nf_tables vulnerability slides detailing the exploitation of a limited uaf in nf_tables. 关于nf_tables中有限使用后释放漏洞利用的幻灯片。 # settlers of netlink: exploiting a limited uaf in nf_tables (cve-2022-32250) · slides record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: settlers of netlink: exploiting a limited uaf in nf_tables (cve-2022-32250) resource_label: slides resource_type: slides resource_url: https://conference.hitb.org/hitbsecconf2022sin/materials/d1t1%20-%20settlers%20of%20netlink%20-%20exploiting%20a%20limited%20uaf%20on%20ubuntu%2022.04%20to%20achieve%20lpe%20-%20aaron%20adams.pdf parent_primary_url: https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"settlers of netlink: exploiting a limited uaf in nf_tables (cve-2022-32250)\"](https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploi unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "1795286a6f2f9fc9",
      "item_id": "241a455a69aa2f0a",
      "slug": "2022-vulnerabilities-lpe-settlers-of-netlink-exploiting-a-limited-uaf-in-nf-tables-cve-2022-32250-video-5a04f3",
      "year": 2022,
      "title": "SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250) · video",
      "item_title": "SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250)",
      "authors": [],
      "cves": [
        "CVE-2022-32250"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=7T_ajYpRWJw",
      "primary_url": "https://www.youtube.com/watch?v=7T_ajYpRWJw",
      "parent_primary_url": "https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-settlers-of-netlink-exploiting-a-limited-uaf-in-nf-tables-cve-2022-32250-video-5a04f3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250) · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250) resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=7T_ajYpRWJw parent_primary_url: https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250)\"](https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/) [article] [[slides](https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Settlers%20of%20Ne",
      "link_types": [
        "article",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Settlers%20of%20Netlink%20-%20Exploiting%20a%20Limited%20UAF%20on%20Ubuntu%2022.04%20to%20Achieve%20LPE%20-%20Aaron%20Adams.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=7T_ajYpRWJw"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Settlers%20of%20Netlink%20-%20Exploiting%20a%20Limited%20UAF%20on%20Ubuntu%2022.04%20to%20Achieve%20LPE%20-%20Aaron%20Adams.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=7T_ajYpRWJw"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "UAF",
        "nf_tables"
      ],
      "affected_area": "nf_tables",
      "exploit_stage": "vulnerability",
      "summary_en": "A video presentation on exploiting a limited UAF in nf_tables.",
      "summary_zh": "关于利用nf_tables中有限使用后释放漏洞的视频演示。",
      "source_markdown": "[2022: \"SETTLERS OF NETLINK: Exploiting a limited UAF in nf_tables (CVE-2022-32250)\"](https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/) [article] [[slides](https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Settlers%20of%20Netlink%20-%20Exploiting%20a%20Limited%20UAF%20on%20Ubuntu%2022.04%20to%20Achieve%20LPE%20-%20Aaron%20Adams.pdf)] [[video](https://www.youtube.com/watch?v=7T_ajYpRWJw)] [CVE-2022-32250]",
      "search_text": "settlers of netlink: exploiting a limited uaf in nf_tables (cve-2022-32250) · video settlers of netlink: exploiting a limited uaf in nf_tables (cve-2022-32250)  cve-2022-32250  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=7t_ajyprwjw lpe uaf nf_tables nf_tables vulnerability a video presentation on exploiting a limited uaf in nf_tables. 关于利用nf_tables中有限使用后释放漏洞的视频演示。 # settlers of netlink: exploiting a limited uaf in nf_tables (cve-2022-32250) · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: settlers of netlink: exploiting a limited uaf in nf_tables (cve-2022-32250) resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=7t_ajyprwjw parent_primary_url: https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"settlers of netlink: exploiting a limited uaf in nf_tables (cve-2022-32250)\"](https://research.nccgroup.com/2022/09/01/settlers-of-netlink-exploiting-a-limited-uaf-in-nf_tables-cve-2022-32250/) [article] [[slides](https://conference.hitb.org/hitbsecconf2022sin/materials/d1t1%20-%20settlers%20of%20ne unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "294b28f3202da460",
      "item_id": "9c5620b9dd0cf7b5",
      "slug": "2022-vulnerabilities-lpe-linux-kernel-exploit-cve-2022-32250-with-mqueue-primary-fa4b8f4a",
      "year": 2022,
      "title": "Linux Kernel Exploit (CVE-2022-32250) with mqueue",
      "item_title": "Linux Kernel Exploit (CVE-2022-32250) with mqueue",
      "authors": [],
      "cves": [
        "CVE-2022-32250"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.theori.io/research/CVE-2022-32250-linux-kernel-lpe-2022/",
      "primary_url": "https://blog.theori.io/research/CVE-2022-32250-linux-kernel-lpe-2022/",
      "parent_primary_url": "https://blog.theori.io/research/CVE-2022-32250-linux-kernel-lpe-2022/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-linux-kernel-exploit-cve-2022-32250-with-mqueue-primary-fa4b8f4a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Exploit (CVE-2022-32250) with mqueue record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux Kernel Exploit (CVE-2022-32250) with mqueue resource_label: primary resource_type: article resource_url: https://blog.theori.io/research/CVE-2022-32250-linux-kernel-lpe-2022/ parent_primary_url: https://blog.theori.io/research/CVE-2022-32250-linux-kernel-lpe-2022/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Linux Kernel Exploit (CVE-2022-32250) with mqueue\"](https://blog.theori.io/research/CVE-2022-32250-linux-kernel-lpe-2022/) [article] [CVE-2022-32250] cves: CVE-2022-32250 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.theori.io/research/CVE-2022-32250-linux-kernel-lpe-2022/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.theori.io/research/CVE-2022-32250-linux-kernel-lpe-2022/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "mqueue"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article discussing a Linux kernel exploit related to mqueue.",
      "summary_zh": "一篇讨论与mqueue相关的Linux内核漏洞的文章。",
      "source_markdown": "[2022: \"Linux Kernel Exploit (CVE-2022-32250) with mqueue\"](https://blog.theori.io/research/CVE-2022-32250-linux-kernel-lpe-2022/) [article] [CVE-2022-32250]",
      "search_text": "linux kernel exploit (cve-2022-32250) with mqueue linux kernel exploit (cve-2022-32250) with mqueue  cve-2022-32250  vulnerabilities lpe lpe primary article https://blog.theori.io/research/cve-2022-32250-linux-kernel-lpe-2022/ lpe mqueue  vulnerability an article discussing a linux kernel exploit related to mqueue. 一篇讨论与mqueue相关的linux内核漏洞的文章。 # linux kernel exploit (cve-2022-32250) with mqueue record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel exploit (cve-2022-32250) with mqueue resource_label: primary resource_type: article resource_url: https://blog.theori.io/research/cve-2022-32250-linux-kernel-lpe-2022/ parent_primary_url: https://blog.theori.io/research/cve-2022-32250-linux-kernel-lpe-2022/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"linux kernel exploit (cve-2022-32250) with mqueue\"](https://blog.theori.io/research/cve-2022-32250-linux-kernel-lpe-2022/) [article] [cve-2022-32250] cves: cve-2022-32250 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bf5b932c517925e7",
      "item_id": "93df5f7489ac5900",
      "slug": "2022-vulnerabilities-lpe-n-day-exploit-for-cve-2022-2586-linux-kernel-nft-object-uaf-primary-1540d50e",
      "year": 2022,
      "title": "N-day exploit for CVE-2022-2586: Linux kernel nft_object UAF",
      "item_title": "N-day exploit for CVE-2022-2586: Linux kernel nft_object UAF",
      "authors": [
        "Alejandro Guerrero"
      ],
      "cves": [
        "CVE-2022-2586"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.openwall.com/lists/oss-security/2022/08/29/5",
      "primary_url": "https://www.openwall.com/lists/oss-security/2022/08/29/5",
      "parent_primary_url": "https://www.openwall.com/lists/oss-security/2022/08/29/5",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-n-day-exploit-for-cve-2022-2586-linux-kernel-nft-object-uaf-primary-1540d50e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# N-day exploit for CVE-2022-2586: Linux kernel nft_object UAF record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: N-day exploit for CVE-2022-2586: Linux kernel nft_object UAF resource_label: primary resource_type: article resource_url: https://www.openwall.com/lists/oss-security/2022/08/29/5 parent_primary_url: https://www.openwall.com/lists/oss-security/2022/08/29/5 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"N-day exploit for CVE-2022-2586: Linux kernel nft_object UAF\" by Alejandro Guerrero](https://www.openwall.com/lists/oss-security/2022/08/29/5) [article] [CVE-2022-2586] cves: CVE-2022-2586 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.openwall.com/lists/oss-security/2022/08/29/5"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.openwall.com/lists/oss-security/2022/08/29/5"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "UAF"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article describes an N-day exploit for a Linux kernel UAF vulnerability.",
      "summary_zh": "本文描述了Linux内核UAF漏洞的N天利用。",
      "source_markdown": "[2022: \"N-day exploit for CVE-2022-2586: Linux kernel nft_object UAF\" by Alejandro Guerrero](https://www.openwall.com/lists/oss-security/2022/08/29/5) [article] [CVE-2022-2586]",
      "search_text": "n-day exploit for cve-2022-2586: linux kernel nft_object uaf n-day exploit for cve-2022-2586: linux kernel nft_object uaf alejandro guerrero cve-2022-2586  vulnerabilities lpe lpe primary article https://www.openwall.com/lists/oss-security/2022/08/29/5 lpe uaf  vulnerability this article describes an n-day exploit for a linux kernel uaf vulnerability. 本文描述了linux内核uaf漏洞的n天利用。 # n-day exploit for cve-2022-2586: linux kernel nft_object uaf record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: n-day exploit for cve-2022-2586: linux kernel nft_object uaf resource_label: primary resource_type: article resource_url: https://www.openwall.com/lists/oss-security/2022/08/29/5 parent_primary_url: https://www.openwall.com/lists/oss-security/2022/08/29/5 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"n-day exploit for cve-2022-2586: linux kernel nft_object uaf\" by alejandro guerrero](https://www.openwall.com/lists/oss-security/2022/08/29/5) [article] [cve-2022-2586] cves: cve-2022-2586 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status:  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "cfcc220dcc254c40",
      "item_id": "123bf5e945963bb5",
      "slug": "2022-vulnerabilities-lpe-monitoring-surveillance-vendors-a-deep-dive-into-in-the-wild-android-full-chains-in-2",
      "year": 2022,
      "title": "Monitoring Surveillance Vendors: A Deep Dive into In-the-Wild Android Full Chains in 2021",
      "item_title": "Monitoring Surveillance Vendors: A Deep Dive into In-the-Wild Android Full Chains in 2021",
      "authors": [],
      "cves": [
        "CVE-2021-0920"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Jin-Monitoring-Surveillance-Vendors.pdf",
      "primary_url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Jin-Monitoring-Surveillance-Vendors.pdf",
      "parent_primary_url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Jin-Monitoring-Surveillance-Vendors.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-monitoring-surveillance-vendors-a-deep-dive-into-in-the-wild-android-full-chains-in-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Monitoring Surveillance Vendors: A Deep Dive into In-the-Wild Android Full Chains in 2021 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Monitoring Surveillance Vendors: A Deep Dive into In-the-Wild Android Full Chains in 2021 resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/USA-22/Wednesday/US-22-Jin-Monitoring-Surveillance-Vendors.pdf parent_primary_url: https://i.blackhat.com/USA-22/Wednesday/US-22-Jin-Monitoring-Surveillance-Vendors.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Monitoring Surveillance Vendors: A Deep Dive into In-the-Wild Android Full Chains in 2021\"](https://i.blackhat.com/USA-22/Wednesday/US-22-Jin-Monitoring-Surveillance-Vendors.pdf) [slides] [CVE-2021-0920] cves: CVE-2021-0920 android_impact_status: yes android_impac",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Jin-Monitoring-Surveillance-Vendors.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Jin-Monitoring-Surveillance-Vendors.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Slides providing insights into in-the-wild Android exploit chains from 2021.",
      "summary_zh": "关于2021年在野Android攻击链的幻灯片。",
      "source_markdown": "[2022: \"Monitoring Surveillance Vendors: A Deep Dive into In-the-Wild Android Full Chains in 2021\"](https://i.blackhat.com/USA-22/Wednesday/US-22-Jin-Monitoring-Surveillance-Vendors.pdf) [slides] [CVE-2021-0920]",
      "search_text": "monitoring surveillance vendors: a deep dive into in-the-wild android full chains in 2021 monitoring surveillance vendors: a deep dive into in-the-wild android full chains in 2021  cve-2021-0920  vulnerabilities lpe lpe primary slides https://i.blackhat.com/usa-22/wednesday/us-22-jin-monitoring-surveillance-vendors.pdf lpe android  vulnerability slides providing insights into in-the-wild android exploit chains from 2021. 关于2021年在野android攻击链的幻灯片。 # monitoring surveillance vendors: a deep dive into in-the-wild android full chains in 2021 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: monitoring surveillance vendors: a deep dive into in-the-wild android full chains in 2021 resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/usa-22/wednesday/us-22-jin-monitoring-surveillance-vendors.pdf parent_primary_url: https://i.blackhat.com/usa-22/wednesday/us-22-jin-monitoring-surveillance-vendors.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"monitoring surveillance vendors: a deep dive into in-the-wild android full chains in 2021\"](https://i.blackhat.com/usa-22/wednesday/us-22-jin-monitoring-surveillance-vendors.pdf) [slides] [cve-2021-0920] cves: cve-2021-0920 android_impact_status: yes android_impac yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "81a4f81f6f8b42b8",
      "item_id": "579fb0eda08cb693",
      "slug": "2022-vulnerabilities-lpe-cve-2022-29582-an-io-uring-vulnerability-primary-1d173d6c",
      "year": 2022,
      "title": "CVE-2022-29582: An io_uring vulnerability",
      "item_title": "CVE-2022-29582: An io_uring vulnerability",
      "authors": [
        "Awarau",
        "David Bouman"
      ],
      "cves": [
        "CVE-2022-29582"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ruia-ruia.github.io/2022/08/05/CVE-2022-29582-io-uring/",
      "primary_url": "https://ruia-ruia.github.io/2022/08/05/CVE-2022-29582-io-uring/",
      "parent_primary_url": "https://ruia-ruia.github.io/2022/08/05/CVE-2022-29582-io-uring/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-cve-2022-29582-an-io-uring-vulnerability-primary-1d173d6c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2022-29582: An io_uring vulnerability record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2022-29582: An io_uring vulnerability resource_label: primary resource_type: article resource_url: https://ruia-ruia.github.io/2022/08/05/CVE-2022-29582-io-uring/ parent_primary_url: https://ruia-ruia.github.io/2022/08/05/CVE-2022-29582-io-uring/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"CVE-2022-29582: An io_uring vulnerability\" by Awarau and David Bouman](https://ruia-ruia.github.io/2022/08/05/CVE-2022-29582-io-uring/) [article] [CVE-2022-29582] cves: CVE-2022-29582 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Product",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ruia-ruia.github.io/2022/08/05/CVE-2022-29582-io-uring/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ruia-ruia.github.io/2022/08/05/CVE-2022-29582-io-uring/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://ruia-ruia.github.io/2022/08/05/CVE-2022-29582-io-uring/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "io_uring"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article detailing an io_uring vulnerability in the Linux kernel.",
      "summary_zh": "一篇详细介绍Linux内核中io_uring漏洞的文章。",
      "source_markdown": "[2022: \"CVE-2022-29582: An io_uring vulnerability\" by Awarau and David Bouman](https://ruia-ruia.github.io/2022/08/05/CVE-2022-29582-io-uring/) [article] [CVE-2022-29582]",
      "search_text": "cve-2022-29582: an io_uring vulnerability cve-2022-29582: an io_uring vulnerability awarau david bouman cve-2022-29582  vulnerabilities lpe lpe primary article https://ruia-ruia.github.io/2022/08/05/cve-2022-29582-io-uring/ lpe io_uring  vulnerability an article detailing an io_uring vulnerability in the linux kernel. 一篇详细介绍linux内核中io_uring漏洞的文章。 # cve-2022-29582: an io_uring vulnerability record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2022-29582: an io_uring vulnerability resource_label: primary resource_type: article resource_url: https://ruia-ruia.github.io/2022/08/05/cve-2022-29582-io-uring/ parent_primary_url: https://ruia-ruia.github.io/2022/08/05/cve-2022-29582-io-uring/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"cve-2022-29582: an io_uring vulnerability\" by awarau and david bouman](https://ruia-ruia.github.io/2022/08/05/cve-2022-29582-io-uring/) [article] [cve-2022-29582] cves: cve-2022-29582 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: product unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "fb6bd4f50c83ed2f",
      "item_id": "85278fd2969fe947",
      "slug": "2022-vulnerabilities-lpe-corrupting-memory-without-memory-corruption-primary-01b55dc6",
      "year": 2022,
      "title": "Corrupting memory without memory corruption",
      "item_title": "Corrupting memory without memory corruption",
      "authors": [
        "Man Yue Mo"
      ],
      "cves": [
        "CVE-2022-20186"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.blog/2022-07-27-corrupting-memory-without-memory-corruption/",
      "primary_url": "https://github.blog/2022-07-27-corrupting-memory-without-memory-corruption/",
      "parent_primary_url": "https://github.blog/2022-07-27-corrupting-memory-without-memory-corruption/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-corrupting-memory-without-memory-corruption-primary-01b55dc6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Corrupting memory without memory corruption record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Corrupting memory without memory corruption resource_label: primary resource_type: article resource_url: https://github.blog/2022-07-27-corrupting-memory-without-memory-corruption/ parent_primary_url: https://github.blog/2022-07-27-corrupting-memory-without-memory-corruption/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Corrupting memory without memory corruption\" by Man Yue Mo](https://github.blog/2022-07-27-corrupting-memory-without-memory-corruption/) [article] [CVE-2022-20186] cves: CVE-2022-20186 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.blog/2022-07-27-corrupting-memory-without-memory-corruption/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.blog/2022-07-27-corrupting-memory-without-memory-corruption/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.blog/2022-07-27-corrupting-memory-without-memory-corruption/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "memory_corruption"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses memory corruption techniques without traditional memory corruption.",
      "summary_zh": "本文讨论了无需传统内存损坏的内存损坏技术。",
      "source_markdown": "[2022: \"Corrupting memory without memory corruption\" by Man Yue Mo](https://github.blog/2022-07-27-corrupting-memory-without-memory-corruption/) [article] [CVE-2022-20186]",
      "search_text": "corrupting memory without memory corruption corrupting memory without memory corruption man yue mo cve-2022-20186  vulnerabilities lpe lpe primary article https://github.blog/2022-07-27-corrupting-memory-without-memory-corruption/ lpe memory_corruption  vulnerability this article discusses memory corruption techniques without traditional memory corruption. 本文讨论了无需传统内存损坏的内存损坏技术。 # corrupting memory without memory corruption record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: corrupting memory without memory corruption resource_label: primary resource_type: article resource_url: https://github.blog/2022-07-27-corrupting-memory-without-memory-corruption/ parent_primary_url: https://github.blog/2022-07-27-corrupting-memory-without-memory-corruption/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"corrupting memory without memory corruption\" by man yue mo](https://github.blog/2022-07-27-corrupting-memory-without-memory-corruption/) [article] [cve-2022-20186] cves: cve-2022-20186 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status:  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "1d0826f35e6353d1",
      "item_id": "c0d87b682f728fee",
      "slug": "2022-vulnerabilities-lpe-cve-2022-34918-a-crack-in-the-linux-firewall-primary-54d759a2",
      "year": 2022,
      "title": "[CVE-2022-34918] A crack in the Linux firewall",
      "item_title": "[CVE-2022-34918] A crack in the Linux firewall",
      "authors": [
        "Arthur Mongodin"
      ],
      "cves": [
        "CVE-2022-34918"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.randorisec.fr/crack-linux-firewall/",
      "primary_url": "https://www.randorisec.fr/crack-linux-firewall/",
      "parent_primary_url": "https://www.randorisec.fr/crack-linux-firewall/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-cve-2022-34918-a-crack-in-the-linux-firewall-primary-54d759a2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# [CVE-2022-34918] A crack in the Linux firewall record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: [CVE-2022-34918] A crack in the Linux firewall resource_label: primary resource_type: article resource_url: https://www.randorisec.fr/crack-linux-firewall/ parent_primary_url: https://www.randorisec.fr/crack-linux-firewall/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"[CVE-2022-34918] A crack in the Linux firewall\" by Arthur Mongodin](https://www.randorisec.fr/crack-linux-firewall/) [article] [CVE-2022-34918] [[exploit](https://github.com/randorisec/CVE-2022-34918-LPE-PoC)] cves: CVE-2022-34918 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no i",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.randorisec.fr/crack-linux-firewall/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/randorisec/CVE-2022-34918-LPE-PoC"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.randorisec.fr/crack-linux-firewall/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/randorisec/CVE-2022-34918-LPE-PoC"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/randorisec/CVE-2022-34918-LPE-PoC"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "firewall"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article analyzing a vulnerability in the Linux firewall.",
      "summary_zh": "一篇分析Linux防火墙漏洞的文章。",
      "source_markdown": "[2022: \"[CVE-2022-34918] A crack in the Linux firewall\" by Arthur Mongodin](https://www.randorisec.fr/crack-linux-firewall/) [article] [CVE-2022-34918] [[exploit](https://github.com/randorisec/CVE-2022-34918-LPE-PoC)]",
      "search_text": "[cve-2022-34918] a crack in the linux firewall [cve-2022-34918] a crack in the linux firewall arthur mongodin cve-2022-34918  vulnerabilities lpe lpe primary article https://www.randorisec.fr/crack-linux-firewall/ lpe firewall  vulnerability an article analyzing a vulnerability in the linux firewall. 一篇分析linux防火墙漏洞的文章。 # [cve-2022-34918] a crack in the linux firewall record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: [cve-2022-34918] a crack in the linux firewall resource_label: primary resource_type: article resource_url: https://www.randorisec.fr/crack-linux-firewall/ parent_primary_url: https://www.randorisec.fr/crack-linux-firewall/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"[cve-2022-34918] a crack in the linux firewall\" by arthur mongodin](https://www.randorisec.fr/crack-linux-firewall/) [article] [cve-2022-34918] [[exploit](https://github.com/randorisec/cve-2022-34918-lpe-poc)] cves: cve-2022-34918 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no i unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "1ba4fcc66da2ac3f",
      "item_id": "c0d87b682f728fee",
      "slug": "2022-vulnerabilities-lpe-cve-2022-34918-a-crack-in-the-linux-firewall-exploit-3fdb73e0",
      "year": 2022,
      "title": "[CVE-2022-34918] A crack in the Linux firewall · exploit",
      "item_title": "[CVE-2022-34918] A crack in the Linux firewall",
      "authors": [
        "Arthur Mongodin"
      ],
      "cves": [
        "CVE-2022-34918"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/randorisec/CVE-2022-34918-LPE-PoC",
      "primary_url": "https://github.com/randorisec/CVE-2022-34918-LPE-PoC",
      "parent_primary_url": "https://www.randorisec.fr/crack-linux-firewall/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-cve-2022-34918-a-crack-in-the-linux-firewall-exploit-3fdb73e0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# [CVE-2022-34918] A crack in the Linux firewall · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: [CVE-2022-34918] A crack in the Linux firewall resource_label: exploit resource_type: exploit resource_url: https://github.com/randorisec/CVE-2022-34918-LPE-PoC parent_primary_url: https://www.randorisec.fr/crack-linux-firewall/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"[CVE-2022-34918] A crack in the Linux firewall\" by Arthur Mongodin](https://www.randorisec.fr/crack-linux-firewall/) [article] [CVE-2022-34918] [[exploit](https://github.com/randorisec/CVE-2022-34918-LPE-PoC)] cves: CVE-2022-34918 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impa",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.randorisec.fr/crack-linux-firewall/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/randorisec/CVE-2022-34918-LPE-PoC"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.randorisec.fr/crack-linux-firewall/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/randorisec/CVE-2022-34918-LPE-PoC"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/randorisec/CVE-2022-34918-LPE-PoC"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "firewall"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "An exploit resource detailing a vulnerability in the Linux firewall.",
      "summary_zh": "一份详细介绍Linux防火墙漏洞的利用资源。",
      "source_markdown": "[2022: \"[CVE-2022-34918] A crack in the Linux firewall\" by Arthur Mongodin](https://www.randorisec.fr/crack-linux-firewall/) [article] [CVE-2022-34918] [[exploit](https://github.com/randorisec/CVE-2022-34918-LPE-PoC)]",
      "search_text": "[cve-2022-34918] a crack in the linux firewall · exploit [cve-2022-34918] a crack in the linux firewall arthur mongodin cve-2022-34918  vulnerabilities lpe lpe exploit exploit https://github.com/randorisec/cve-2022-34918-lpe-poc lpe firewall  exploit an exploit resource detailing a vulnerability in the linux firewall. 一份详细介绍linux防火墙漏洞的利用资源。 # [cve-2022-34918] a crack in the linux firewall · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: [cve-2022-34918] a crack in the linux firewall resource_label: exploit resource_type: exploit resource_url: https://github.com/randorisec/cve-2022-34918-lpe-poc parent_primary_url: https://www.randorisec.fr/crack-linux-firewall/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"[cve-2022-34918] a crack in the linux firewall\" by arthur mongodin](https://www.randorisec.fr/crack-linux-firewall/) [article] [cve-2022-34918] [[exploit](https://github.com/randorisec/cve-2022-34918-lpe-poc)] cves: cve-2022-34918 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impa unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "faab48206581c56e",
      "item_id": "906bb555a71c5ade",
      "slug": "2022-vulnerabilities-lpe-cve-2022-34918-netfilter-analysis-notes-primary-7976d1ab",
      "year": 2022,
      "title": "CVE-2022-34918: netfilter analysis notes",
      "item_title": "CVE-2022-34918: netfilter analysis notes",
      "authors": [],
      "cves": [
        "CVE-2022-34918"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://veritas501.github.io/2022_08_02-CVE-2022-34918%20netfilter%20%E5%88%86%E6%9E%90%E7%AC%94%E8%AE%B0/",
      "primary_url": "https://veritas501.github.io/2022_08_02-CVE-2022-34918%20netfilter%20%E5%88%86%E6%9E%90%E7%AC%94%E8%AE%B0/",
      "parent_primary_url": "https://veritas501.github.io/2022_08_02-CVE-2022-34918%20netfilter%20%E5%88%86%E6%9E%90%E7%AC%94%E8%AE%B0/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-cve-2022-34918-netfilter-analysis-notes-primary-7976d1ab.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2022-34918: netfilter analysis notes record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2022-34918: netfilter analysis notes resource_label: primary resource_type: article resource_url: https://veritas501.github.io/2022_08_02-CVE-2022-34918%20netfilter%20%E5%88%86%E6%9E%90%E7%AC%94%E8%AE%B0/ parent_primary_url: https://veritas501.github.io/2022_08_02-CVE-2022-34918%20netfilter%20%E5%88%86%E6%9E%90%E7%AC%94%E8%AE%B0/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"CVE-2022-34918: netfilter analysis notes\"](https://veritas501.github.io/2022_08_02-CVE-2022-34918%20netfilter%20%E5%88%86%E6%9E%90%E7%AC%94%E8%AE%B0/) [article] [CVE-2022-34918] cves: CVE-2022-34918 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impac",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://veritas501.github.io/2022_08_02-CVE-2022-34918%20netfilter%20%E5%88%86%E6%9E%90%E7%AC%94%E8%AE%B0/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://veritas501.github.io/2022_08_02-CVE-2022-34918%20netfilter%20%E5%88%86%E6%9E%90%E7%AC%94%E8%AE%B0/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://veritas501.github.io/2022_08_02-CVE-2022-34918%20netfilter%20%E5%88%86%E6%9E%90%E7%AC%94%E8%AE%B0/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "firewall"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article providing analysis notes on a Linux firewall vulnerability.",
      "summary_zh": "一篇提供Linux防火墙漏洞分析笔记的文章。",
      "source_markdown": "[2022: \"CVE-2022-34918: netfilter analysis notes\"](https://veritas501.github.io/2022_08_02-CVE-2022-34918%20netfilter%20%E5%88%86%E6%9E%90%E7%AC%94%E8%AE%B0/) [article] [CVE-2022-34918]",
      "search_text": "cve-2022-34918: netfilter analysis notes cve-2022-34918: netfilter analysis notes  cve-2022-34918  vulnerabilities lpe lpe primary article https://veritas501.github.io/2022_08_02-cve-2022-34918%20netfilter%20%e5%88%86%e6%9e%90%e7%ac%94%e8%ae%b0/ lpe firewall  vulnerability an article providing analysis notes on a linux firewall vulnerability. 一篇提供linux防火墙漏洞分析笔记的文章。 # cve-2022-34918: netfilter analysis notes record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2022-34918: netfilter analysis notes resource_label: primary resource_type: article resource_url: https://veritas501.github.io/2022_08_02-cve-2022-34918%20netfilter%20%e5%88%86%e6%9e%90%e7%ac%94%e8%ae%b0/ parent_primary_url: https://veritas501.github.io/2022_08_02-cve-2022-34918%20netfilter%20%e5%88%86%e6%9e%90%e7%ac%94%e8%ae%b0/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"cve-2022-34918: netfilter analysis notes\"](https://veritas501.github.io/2022_08_02-cve-2022-34918%20netfilter%20%e5%88%86%e6%9e%90%e7%ac%94%e8%ae%b0/) [article] [cve-2022-34918] cves: cve-2022-34918 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impac unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "0b56085410db237a",
      "item_id": "15a55d430ce6d811",
      "slug": "2022-vulnerabilities-lpe-practice-of-usma-based-kernel-universal-exp-writing-ideas-on-cve-2022-34918-primary-7",
      "year": 2022,
      "title": "Practice of USMA-based Kernel Universal EXP Writing Ideas on CVE-2022-34918",
      "item_title": "Practice of USMA-based Kernel Universal EXP Writing Ideas on CVE-2022-34918",
      "authors": [],
      "cves": [
        "CVE-2022-34918"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://veritas501.github.io/2022_08_11_%E5%9F%BA%E4%BA%8EUSMA%E7%9A%84%E5%86%85%E6%A0%B8%E9%80%9A%E7%94%A8EXP%E7%BC%96%E5%86%99%E6%80%9D%E8%B7%AF%E5%9C%A8%20CVE-2022-34918%20%E4%B8%8A%E7%9A%84%E5%AE%9E%E8%B7%B5/",
      "primary_url": "https://veritas501.github.io/2022_08_11_%E5%9F%BA%E4%BA%8EUSMA%E7%9A%84%E5%86%85%E6%A0%B8%E9%80%9A%E7%94%A8EXP%E7%BC%96%E5%86%99%E6%80%9D%E8%B7%AF%E5%9C%A8%20CVE-2022-34918%20%E4%B8%8A%E7%9A%84%E5%AE%9E%E8%B7%B5/",
      "parent_primary_url": "https://veritas501.github.io/2022_08_11_%E5%9F%BA%E4%BA%8EUSMA%E7%9A%84%E5%86%85%E6%A0%B8%E9%80%9A%E7%94%A8EXP%E7%BC%96%E5%86%99%E6%80%9D%E8%B7%AF%E5%9C%A8%20CVE-2022-34918%20%E4%B8%8A%E7%9A%84%E5%AE%9E%E8%B7%B5/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-practice-of-usma-based-kernel-universal-exp-writing-ideas-on-cve-2022-34918-primary-7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Practice of USMA-based Kernel Universal EXP Writing Ideas on CVE-2022-34918 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Practice of USMA-based Kernel Universal EXP Writing Ideas on CVE-2022-34918 resource_label: primary resource_type: article resource_url: https://veritas501.github.io/2022_08_11_%E5%9F%BA%E4%BA%8EUSMA%E7%9A%84%E5%86%85%E6%A0%B8%E9%80%9A%E7%94%A8EXP%E7%BC%96%E5%86%99%E6%80%9D%E8%B7%AF%E5%9C%A8%20CVE-2022-34918%20%E4%B8%8A%E7%9A%84%E5%AE%9E%E8%B7%B5/ parent_primary_url: https://veritas501.github.io/2022_08_11_%E5%9F%BA%E4%BA%8EUSMA%E7%9A%84%E5%86%85%E6%A0%B8%E9%80%9A%E7%94%A8EXP%E7%BC%96%E5%86%99%E6%80%9D%E8%B7%AF%E5%9C%A8%20CVE-2022-34918%20%E4%B8%8A%E7%9A%84%E5%AE%9E%E8%B7%B5/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Practice of USMA-based Kernel Univers",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://veritas501.github.io/2022_08_11_%E5%9F%BA%E4%BA%8EUSMA%E7%9A%84%E5%86%85%E6%A0%B8%E9%80%9A%E7%94%A8EXP%E7%BC%96%E5%86%99%E6%80%9D%E8%B7%AF%E5%9C%A8%20CVE-2022-34918%20%E4%B8%8A%E7%9A%84%E5%AE%9E%E8%B7%B5/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://veritas501.github.io/2022_08_11_%E5%9F%BA%E4%BA%8EUSMA%E7%9A%84%E5%86%85%E6%A0%B8%E9%80%9A%E7%94%A8EXP%E7%BC%96%E5%86%99%E6%80%9D%E8%B7%AF%E5%9C%A8%20CVE-2022-34918%20%E4%B8%8A%E7%9A%84%E5%AE%9E%E8%B7%B5/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://veritas501.github.io/2022_08_11_%E5%9F%BA%E4%BA%8EUSMA%E7%9A%84%E5%86%85%E6%A0%B8%E9%80%9A%E7%94%A8EXP%E7%BC%96%E5%86%99%E6%80%9D%E8%B7%AF%E5%9C%A8%20CVE-2022-34918%20%E4%B8%8A%E7%9A%84%E5%AE%9E%E8%B7%B5/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "kernel_exploit"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article discussing kernel exploit writing ideas based on CVE-2022-34918.",
      "summary_zh": "一篇讨论基于CVE-2022-34918的内核利用编写思路的文章。",
      "source_markdown": "[2022: \"Practice of USMA-based Kernel Universal EXP Writing Ideas on CVE-2022-34918\"](https://veritas501.github.io/2022_08_11_%E5%9F%BA%E4%BA%8EUSMA%E7%9A%84%E5%86%85%E6%A0%B8%E9%80%9A%E7%94%A8EXP%E7%BC%96%E5%86%99%E6%80%9D%E8%B7%AF%E5%9C%A8%20CVE-2022-34918%20%E4%B8%8A%E7%9A%84%E5%AE%9E%E8%B7%B5/) [article] [CVE-2022-34918]",
      "search_text": "practice of usma-based kernel universal exp writing ideas on cve-2022-34918 practice of usma-based kernel universal exp writing ideas on cve-2022-34918  cve-2022-34918  vulnerabilities lpe lpe primary article https://veritas501.github.io/2022_08_11_%e5%9f%ba%e4%ba%8eusma%e7%9a%84%e5%86%85%e6%a0%b8%e9%80%9a%e7%94%a8exp%e7%bc%96%e5%86%99%e6%80%9d%e8%b7%af%e5%9c%a8%20cve-2022-34918%20%e4%b8%8a%e7%9a%84%e5%ae%9e%e8%b7%b5/ lpe kernel_exploit  vulnerability an article discussing kernel exploit writing ideas based on cve-2022-34918. 一篇讨论基于cve-2022-34918的内核利用编写思路的文章。 # practice of usma-based kernel universal exp writing ideas on cve-2022-34918 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: practice of usma-based kernel universal exp writing ideas on cve-2022-34918 resource_label: primary resource_type: article resource_url: https://veritas501.github.io/2022_08_11_%e5%9f%ba%e4%ba%8eusma%e7%9a%84%e5%86%85%e6%a0%b8%e9%80%9a%e7%94%a8exp%e7%bc%96%e5%86%99%e6%80%9d%e8%b7%af%e5%9c%a8%20cve-2022-34918%20%e4%b8%8a%e7%9a%84%e5%ae%9e%e8%b7%b5/ parent_primary_url: https://veritas501.github.io/2022_08_11_%e5%9f%ba%e4%ba%8eusma%e7%9a%84%e5%86%85%e6%a0%b8%e9%80%9a%e7%94%a8exp%e7%bc%96%e5%86%99%e6%80%9d%e8%b7%af%e5%9c%a8%20cve-2022-34918%20%e4%b8%8a%e7%9a%84%e5%ae%9e%e8%b7%b5/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"practice of usma-based kernel univers unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "4e6f1561d8445d29",
      "item_id": "f14669b6b9355a00",
      "slug": "2022-vulnerabilities-lpe-the-android-kernel-mitigations-obstacle-race-primary-2d47dce2",
      "year": 2022,
      "title": "The Android kernel mitigations obstacle race",
      "item_title": "The Android kernel mitigations obstacle race",
      "authors": [
        "Man Yue Mo"
      ],
      "cves": [
        "CVE-2022-22057"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.blog/2022-06-16-the-android-kernel-mitigations-obstacle-race/",
      "primary_url": "https://github.blog/2022-06-16-the-android-kernel-mitigations-obstacle-race/",
      "parent_primary_url": "https://github.blog/2022-06-16-the-android-kernel-mitigations-obstacle-race/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-the-android-kernel-mitigations-obstacle-race-primary-2d47dce2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Android kernel mitigations obstacle race record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The Android kernel mitigations obstacle race resource_label: primary resource_type: article resource_url: https://github.blog/2022-06-16-the-android-kernel-mitigations-obstacle-race/ parent_primary_url: https://github.blog/2022-06-16-the-android-kernel-mitigations-obstacle-race/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"The Android kernel mitigations obstacle race\" by Man Yue Mo](https://github.blog/2022-06-16-the-android-kernel-mitigations-obstacle-race/) [article] [CVE-2022-22057] cves: CVE-2022-22057 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: t",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.blog/2022-06-16-the-android-kernel-mitigations-obstacle-race/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.blog/2022-06-16-the-android-kernel-mitigations-obstacle-race/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.blog/2022-06-16-the-android-kernel-mitigations-obstacle-race/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An article discussing Android kernel mitigations and their challenges.",
      "summary_zh": "一篇讨论Android内核缓解措施及其挑战的文章。",
      "source_markdown": "[2022: \"The Android kernel mitigations obstacle race\" by Man Yue Mo](https://github.blog/2022-06-16-the-android-kernel-mitigations-obstacle-race/) [article] [CVE-2022-22057]",
      "search_text": "the android kernel mitigations obstacle race the android kernel mitigations obstacle race man yue mo cve-2022-22057  vulnerabilities lpe lpe primary article https://github.blog/2022-06-16-the-android-kernel-mitigations-obstacle-race/ lpe android  vulnerability an article discussing android kernel mitigations and their challenges. 一篇讨论android内核缓解措施及其挑战的文章。 # the android kernel mitigations obstacle race record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the android kernel mitigations obstacle race resource_label: primary resource_type: article resource_url: https://github.blog/2022-06-16-the-android-kernel-mitigations-obstacle-race/ parent_primary_url: https://github.blog/2022-06-16-the-android-kernel-mitigations-obstacle-race/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"the android kernel mitigations obstacle race\" by man yue mo](https://github.blog/2022-06-16-the-android-kernel-mitigations-obstacle-race/) [article] [cve-2022-22057] cves: cve-2022-22057 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: t yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "a4b8348c1f66dbfa",
      "item_id": "fdb3e871e21cbb1c",
      "slug": "2022-vulnerabilities-lpe-io-uring-new-code-new-bugs-and-a-new-exploit-technique-primary-c6650ea6",
      "year": 2022,
      "title": "io_uring - new code, new bugs, and a new exploit technique",
      "item_title": "io_uring - new code, new bugs, and a new exploit technique",
      "authors": [
        "Lam Jun Rong"
      ],
      "cves": [
        "CVE-2021-41073"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://starlabs.sg/blog/2022/06/io_uring-new-code-new-bugs-and-a-new-exploit-technique/",
      "primary_url": "https://starlabs.sg/blog/2022/06/io_uring-new-code-new-bugs-and-a-new-exploit-technique/",
      "parent_primary_url": "https://starlabs.sg/blog/2022/06/io_uring-new-code-new-bugs-and-a-new-exploit-technique/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-io-uring-new-code-new-bugs-and-a-new-exploit-technique-primary-c6650ea6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# io_uring - new code, new bugs, and a new exploit technique record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: io_uring - new code, new bugs, and a new exploit technique resource_label: primary resource_type: article resource_url: https://starlabs.sg/blog/2022/06/io_uring-new-code-new-bugs-and-a-new-exploit-technique/ parent_primary_url: https://starlabs.sg/blog/2022/06/io_uring-new-code-new-bugs-and-a-new-exploit-technique/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"io_uring - new code, new bugs, and a new exploit technique\" by Lam Jun Rong](https://starlabs.sg/blog/2022/06/io_uring-new-code-new-bugs-and-a-new-exploit-technique/) [article] [CVE-2021-41073] cves: CVE-2021-41073 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://starlabs.sg/blog/2022/06/io_uring-new-code-new-bugs-and-a-new-exploit-technique/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://starlabs.sg/blog/2022/06/io_uring-new-code-new-bugs-and-a-new-exploit-technique/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://starlabs.sg/blog/2022/06/io_uring-new-code-new-bugs-and-a-new-exploit-technique/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "io_uring"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses new bugs and exploit techniques related to io_uring.",
      "summary_zh": "本文讨论与io_uring相关的新漏洞和利用技术。",
      "source_markdown": "[2022: \"io_uring - new code, new bugs, and a new exploit technique\" by Lam Jun Rong](https://starlabs.sg/blog/2022/06/io_uring-new-code-new-bugs-and-a-new-exploit-technique/) [article] [CVE-2021-41073]",
      "search_text": "io_uring - new code, new bugs, and a new exploit technique io_uring - new code, new bugs, and a new exploit technique lam jun rong cve-2021-41073  vulnerabilities lpe lpe primary article https://starlabs.sg/blog/2022/06/io_uring-new-code-new-bugs-and-a-new-exploit-technique/ lpe io_uring  vulnerability this article discusses new bugs and exploit techniques related to io_uring. 本文讨论与io_uring相关的新漏洞和利用技术。 # io_uring - new code, new bugs, and a new exploit technique record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: io_uring - new code, new bugs, and a new exploit technique resource_label: primary resource_type: article resource_url: https://starlabs.sg/blog/2022/06/io_uring-new-code-new-bugs-and-a-new-exploit-technique/ parent_primary_url: https://starlabs.sg/blog/2022/06/io_uring-new-code-new-bugs-and-a-new-exploit-technique/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"io_uring - new code, new bugs, and a new exploit technique\" by lam jun rong](https://starlabs.sg/blog/2022/06/io_uring-new-code-new-bugs-and-a-new-exploit-technique/) [article] [cve-2021-41073] cves: cve-2021-41073 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "bec8e423aac78301",
      "item_id": "87d15ca194b01293",
      "slug": "2022-vulnerabilities-lpe-exploration-of-the-dirty-pipe-vulnerability-cve-2022-0847-primary-947da6e7",
      "year": 2022,
      "title": "Exploration of the Dirty Pipe Vulnerability (CVE-2022-0847)",
      "item_title": "Exploration of the Dirty Pipe Vulnerability (CVE-2022-0847)",
      "authors": [
        "lolcads"
      ],
      "cves": [
        "CVE-2022-0847"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://lolcads.github.io/posts/2022/06/dirty_pipe_cve_2022_0847/",
      "primary_url": "https://lolcads.github.io/posts/2022/06/dirty_pipe_cve_2022_0847/",
      "parent_primary_url": "https://lolcads.github.io/posts/2022/06/dirty_pipe_cve_2022_0847/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-exploration-of-the-dirty-pipe-vulnerability-cve-2022-0847-primary-947da6e7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploration of the Dirty Pipe Vulnerability (CVE-2022-0847) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploration of the Dirty Pipe Vulnerability (CVE-2022-0847) resource_label: primary resource_type: article resource_url: https://lolcads.github.io/posts/2022/06/dirty_pipe_cve_2022_0847/ parent_primary_url: https://lolcads.github.io/posts/2022/06/dirty_pipe_cve_2022_0847/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Exploration of the Dirty Pipe Vulnerability (CVE-2022-0847)\" by lolcads](https://lolcads.github.io/posts/2022/06/dirty_pipe_cve_2022_0847/) [article] [CVE-2022-0847] cves: CVE-2022-0847 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_im",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://lolcads.github.io/posts/2022/06/dirty_pipe_cve_2022_0847/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://lolcads.github.io/posts/2022/06/dirty_pipe_cve_2022_0847/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://lolcads.github.io/posts/2022/06/dirty_pipe_cve_2022_0847/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Dirty_Pipe"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An exploration of the Dirty Pipe vulnerability in the Linux kernel.",
      "summary_zh": "对Linux内核中Dirty Pipe漏洞的探讨。",
      "source_markdown": "[2022: \"Exploration of the Dirty Pipe Vulnerability (CVE-2022-0847)\" by lolcads](https://lolcads.github.io/posts/2022/06/dirty_pipe_cve_2022_0847/) [article] [CVE-2022-0847]",
      "search_text": "exploration of the dirty pipe vulnerability (cve-2022-0847) exploration of the dirty pipe vulnerability (cve-2022-0847) lolcads cve-2022-0847  vulnerabilities lpe lpe primary article https://lolcads.github.io/posts/2022/06/dirty_pipe_cve_2022_0847/ lpe dirty_pipe  vulnerability an exploration of the dirty pipe vulnerability in the linux kernel. 对linux内核中dirty pipe漏洞的探讨。 # exploration of the dirty pipe vulnerability (cve-2022-0847) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploration of the dirty pipe vulnerability (cve-2022-0847) resource_label: primary resource_type: article resource_url: https://lolcads.github.io/posts/2022/06/dirty_pipe_cve_2022_0847/ parent_primary_url: https://lolcads.github.io/posts/2022/06/dirty_pipe_cve_2022_0847/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"exploration of the dirty pipe vulnerability (cve-2022-0847)\" by lolcads](https://lolcads.github.io/posts/2022/06/dirty_pipe_cve_2022_0847/) [article] [cve-2022-0847] cves: cve-2022-0847 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_im unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "c1ebeab6c925e936",
      "item_id": "7af0295b000d1537",
      "slug": "2022-vulnerabilities-lpe-dirtypipe-android-technical-details-md-primary-d154460b",
      "year": 2022,
      "title": "DirtyPipe-Android/TECHNICAL-DETAILS.md",
      "item_title": "DirtyPipe-Android/TECHNICAL-DETAILS.md",
      "authors": [
        "polygraphene"
      ],
      "cves": [
        "CVE-2022-0847"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/polygraphene/DirtyPipe-Android/blob/master/TECHNICAL-DETAILS.md",
      "primary_url": "https://github.com/polygraphene/DirtyPipe-Android/blob/master/TECHNICAL-DETAILS.md",
      "parent_primary_url": "https://github.com/polygraphene/DirtyPipe-Android/blob/master/TECHNICAL-DETAILS.md",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-dirtypipe-android-technical-details-md-primary-d154460b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DirtyPipe-Android/TECHNICAL-DETAILS.md record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: DirtyPipe-Android/TECHNICAL-DETAILS.md resource_label: primary resource_type: article resource_url: https://github.com/polygraphene/DirtyPipe-Android/blob/master/TECHNICAL-DETAILS.md parent_primary_url: https://github.com/polygraphene/DirtyPipe-Android/blob/master/TECHNICAL-DETAILS.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"DirtyPipe-Android/TECHNICAL-DETAILS.md\" by polygraphene](https://github.com/polygraphene/DirtyPipe-Android/blob/master/TECHNICAL-DETAILS.md) [article] [CVE-2022-0847] cves: CVE-2022-0847 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: t",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/polygraphene/DirtyPipe-Android/blob/master/TECHNICAL-DETAILS.md"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/polygraphene/DirtyPipe-Android/blob/master/TECHNICAL-DETAILS.md"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/polygraphene/DirtyPipe-Android/blob/master/TECHNICAL-DETAILS.md"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Dirty_Pipe",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Technical details on the Dirty Pipe vulnerability in Android.",
      "summary_zh": "关于Android中Dirty Pipe漏洞的技术细节。",
      "source_markdown": "[2022: \"DirtyPipe-Android/TECHNICAL-DETAILS.md\" by polygraphene](https://github.com/polygraphene/DirtyPipe-Android/blob/master/TECHNICAL-DETAILS.md) [article] [CVE-2022-0847]",
      "search_text": "dirtypipe-android/technical-details.md dirtypipe-android/technical-details.md polygraphene cve-2022-0847  vulnerabilities lpe lpe primary article https://github.com/polygraphene/dirtypipe-android/blob/master/technical-details.md lpe dirty_pipe android  vulnerability technical details on the dirty pipe vulnerability in android. 关于android中dirty pipe漏洞的技术细节。 # dirtypipe-android/technical-details.md record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: dirtypipe-android/technical-details.md resource_label: primary resource_type: article resource_url: https://github.com/polygraphene/dirtypipe-android/blob/master/technical-details.md parent_primary_url: https://github.com/polygraphene/dirtypipe-android/blob/master/technical-details.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"dirtypipe-android/technical-details.md\" by polygraphene](https://github.com/polygraphene/dirtypipe-android/blob/master/technical-details.md) [article] [cve-2022-0847] cves: cve-2022-0847 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: t yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "3ca83307bf29c35a",
      "item_id": "2706950ffec61408",
      "slug": "2022-vulnerabilities-lpe-weaponizing-dirtypipe-on-android-primary-cf0687f4",
      "year": 2022,
      "title": "Weaponizing dirtypipe on android",
      "item_title": "Weaponizing dirtypipe on android",
      "authors": [
        "Giovanni Rocca"
      ],
      "cves": [
        "CVE-2022-0847"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://docs.google.com/presentation/d/1Tq00gy1GtiK0OvNYOy_kCz0er9ZECBXGoy5Lfy5MD3M/edit?usp=sharing",
      "primary_url": "https://docs.google.com/presentation/d/1Tq00gy1GtiK0OvNYOy_kCz0er9ZECBXGoy5Lfy5MD3M/edit?usp=sharing",
      "parent_primary_url": "https://docs.google.com/presentation/d/1Tq00gy1GtiK0OvNYOy_kCz0er9ZECBXGoy5Lfy5MD3M/edit?usp=sharing",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-weaponizing-dirtypipe-on-android-primary-cf0687f4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Weaponizing dirtypipe on android record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Weaponizing dirtypipe on android resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/1Tq00gy1GtiK0OvNYOy_kCz0er9ZECBXGoy5Lfy5MD3M/edit?usp=sharing parent_primary_url: https://docs.google.com/presentation/d/1Tq00gy1GtiK0OvNYOy_kCz0er9ZECBXGoy5Lfy5MD3M/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Weaponizing dirtypipe on android\" by Giovanni Rocca](https://docs.google.com/presentation/d/1Tq00gy1GtiK0OvNYOy_kCz0er9ZECBXGoy5Lfy5MD3M/edit?usp=sharing) [slides] [[exploit](https://github.com/iGio90/DirtyPipeZ)] [CVE-2022-0847] cves: CVE-2022-0847 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impac",
      "link_types": [
        "slides",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/1Tq00gy1GtiK0OvNYOy_kCz0er9ZECBXGoy5Lfy5MD3M/edit?usp=sharing"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/iGio90/DirtyPipeZ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/1Tq00gy1GtiK0OvNYOy_kCz0er9ZECBXGoy5Lfy5MD3M/edit?usp=sharing"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/iGio90/DirtyPipeZ"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/iGio90/DirtyPipeZ"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Dirty_Pipe",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Slides on weaponizing the Dirty Pipe vulnerability on Android.",
      "summary_zh": "关于在Android上武器化Dirty Pipe漏洞的幻灯片。",
      "source_markdown": "[2022: \"Weaponizing dirtypipe on android\" by Giovanni Rocca](https://docs.google.com/presentation/d/1Tq00gy1GtiK0OvNYOy_kCz0er9ZECBXGoy5Lfy5MD3M/edit?usp=sharing) [slides] [[exploit](https://github.com/iGio90/DirtyPipeZ)] [CVE-2022-0847]",
      "search_text": "weaponizing dirtypipe on android weaponizing dirtypipe on android giovanni rocca cve-2022-0847  vulnerabilities lpe lpe primary slides https://docs.google.com/presentation/d/1tq00gy1gtik0ovnyoy_kcz0er9zecbxgoy5lfy5md3m/edit?usp=sharing lpe dirty_pipe android  vulnerability slides on weaponizing the dirty pipe vulnerability on android. 关于在android上武器化dirty pipe漏洞的幻灯片。 # weaponizing dirtypipe on android record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: weaponizing dirtypipe on android resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/1tq00gy1gtik0ovnyoy_kcz0er9zecbxgoy5lfy5md3m/edit?usp=sharing parent_primary_url: https://docs.google.com/presentation/d/1tq00gy1gtik0ovnyoy_kcz0er9zecbxgoy5lfy5md3m/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"weaponizing dirtypipe on android\" by giovanni rocca](https://docs.google.com/presentation/d/1tq00gy1gtik0ovnyoy_kcz0er9zecbxgoy5lfy5md3m/edit?usp=sharing) [slides] [[exploit](https://github.com/igio90/dirtypipez)] [cve-2022-0847] cves: cve-2022-0847 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impac yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "b7930cab608e534b",
      "item_id": "2706950ffec61408",
      "slug": "2022-vulnerabilities-lpe-weaponizing-dirtypipe-on-android-exploit-c3ef9997",
      "year": 2022,
      "title": "Weaponizing dirtypipe on android · exploit",
      "item_title": "Weaponizing dirtypipe on android",
      "authors": [
        "Giovanni Rocca"
      ],
      "cves": [
        "CVE-2022-0847"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/iGio90/DirtyPipeZ",
      "primary_url": "https://github.com/iGio90/DirtyPipeZ",
      "parent_primary_url": "https://docs.google.com/presentation/d/1Tq00gy1GtiK0OvNYOy_kCz0er9ZECBXGoy5Lfy5MD3M/edit?usp=sharing",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-weaponizing-dirtypipe-on-android-exploit-c3ef9997.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Weaponizing dirtypipe on android · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Weaponizing dirtypipe on android resource_label: exploit resource_type: exploit resource_url: https://github.com/iGio90/DirtyPipeZ parent_primary_url: https://docs.google.com/presentation/d/1Tq00gy1GtiK0OvNYOy_kCz0er9ZECBXGoy5Lfy5MD3M/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Weaponizing dirtypipe on android\" by Giovanni Rocca](https://docs.google.com/presentation/d/1Tq00gy1GtiK0OvNYOy_kCz0er9ZECBXGoy5Lfy5MD3M/edit?usp=sharing) [slides] [[exploit](https://github.com/iGio90/DirtyPipeZ)] [CVE-2022-0847] cves: CVE-2022-0847 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kern",
      "link_types": [
        "slides",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/1Tq00gy1GtiK0OvNYOy_kCz0er9ZECBXGoy5Lfy5MD3M/edit?usp=sharing"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/iGio90/DirtyPipeZ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/1Tq00gy1GtiK0OvNYOy_kCz0er9ZECBXGoy5Lfy5MD3M/edit?usp=sharing"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/iGio90/DirtyPipeZ"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/iGio90/DirtyPipeZ"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "CVE-2022-0847"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The Dirty Pipe vulnerability allows local privilege escalation on Android devices.",
      "summary_zh": "Dirty Pipe漏洞允许Android设备上的本地权限提升。",
      "source_markdown": "[2022: \"Weaponizing dirtypipe on android\" by Giovanni Rocca](https://docs.google.com/presentation/d/1Tq00gy1GtiK0OvNYOy_kCz0er9ZECBXGoy5Lfy5MD3M/edit?usp=sharing) [slides] [[exploit](https://github.com/iGio90/DirtyPipeZ)] [CVE-2022-0847]",
      "search_text": "weaponizing dirtypipe on android · exploit weaponizing dirtypipe on android giovanni rocca cve-2022-0847  vulnerabilities lpe lpe exploit exploit https://github.com/igio90/dirtypipez lpe android cve-2022-0847  vulnerability the dirty pipe vulnerability allows local privilege escalation on android devices. dirty pipe漏洞允许android设备上的本地权限提升。 # weaponizing dirtypipe on android · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: weaponizing dirtypipe on android resource_label: exploit resource_type: exploit resource_url: https://github.com/igio90/dirtypipez parent_primary_url: https://docs.google.com/presentation/d/1tq00gy1gtik0ovnyoy_kcz0er9zecbxgoy5lfy5md3m/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"weaponizing dirtypipe on android\" by giovanni rocca](https://docs.google.com/presentation/d/1tq00gy1gtik0ovnyoy_kcz0er9zecbxgoy5lfy5md3m/edit?usp=sharing) [slides] [[exploit](https://github.com/igio90/dirtypipez)] [cve-2022-0847] cves: cve-2022-0847 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kern yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "c98afec21c1da1a3",
      "item_id": "35498a870f86c341",
      "slug": "2022-vulnerabilities-lpe-how-the-tables-have-turned-an-analysis-of-two-new-linux-vulnerabilities-in-nf-tables-",
      "year": 2022,
      "title": "How The Tables Have Turned: An analysis of two new Linux vulnerabilities in nf_tables",
      "item_title": "How The Tables Have Turned: An analysis of two new Linux vulnerabilities in nf_tables",
      "authors": [
        "David Bouman"
      ],
      "cves": [
        "CVE-2022-1015",
        "CVE-2022-1016"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/",
      "primary_url": "https://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/",
      "parent_primary_url": "https://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-how-the-tables-have-turned-an-analysis-of-two-new-linux-vulnerabilities-in-nf-tables-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# How The Tables Have Turned: An analysis of two new Linux vulnerabilities in nf_tables record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: How The Tables Have Turned: An analysis of two new Linux vulnerabilities in nf_tables resource_label: primary resource_type: article resource_url: https://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/ parent_primary_url: https://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"How The Tables Have Turned: An analysis of two new Linux vulnerabilities in nf_tables\" by David Bouman](https://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/) [CVE-2022-1015] [CVE-2022-1016] cves: CVE-2022-1015, CVE-2022-1016 android_impact_status: un",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-1015",
        "CVE-2022-1016"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An analysis of two new Linux vulnerabilities in nf_tables reveals potential local privilege escalation risks.",
      "summary_zh": "对nf_tables中两个新Linux漏洞的分析揭示了潜在的本地权限提升风险。",
      "source_markdown": "[2022: \"How The Tables Have Turned: An analysis of two new Linux vulnerabilities in nf_tables\" by David Bouman](https://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/) [CVE-2022-1015] [CVE-2022-1016]",
      "search_text": "how the tables have turned: an analysis of two new linux vulnerabilities in nf_tables how the tables have turned: an analysis of two new linux vulnerabilities in nf_tables david bouman cve-2022-1015 cve-2022-1016  vulnerabilities lpe lpe primary article https://blog.dbouman.nl/2022/04/02/how-the-tables-have-turned-cve-2022-1015-1016/ lpe cve-2022-1015 cve-2022-1016  vulnerability an analysis of two new linux vulnerabilities in nf_tables reveals potential local privilege escalation risks. 对nf_tables中两个新linux漏洞的分析揭示了潜在的本地权限提升风险。 # how the tables have turned: an analysis of two new linux vulnerabilities in nf_tables record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: how the tables have turned: an analysis of two new linux vulnerabilities in nf_tables resource_label: primary resource_type: article resource_url: https://blog.dbouman.nl/2022/04/02/how-the-tables-have-turned-cve-2022-1015-1016/ parent_primary_url: https://blog.dbouman.nl/2022/04/02/how-the-tables-have-turned-cve-2022-1015-1016/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"how the tables have turned: an analysis of two new linux vulnerabilities in nf_tables\" by david bouman](https://blog.dbouman.nl/2022/04/02/how-the-tables-have-turned-cve-2022-1015-1016/) [cve-2022-1015] [cve-2022-1016] cves: cve-2022-1015, cve-2022-1016 android_impact_status: un unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b9c2864b3e84a14b",
      "item_id": "835444cf0a9d86df",
      "slug": "2022-vulnerabilities-lpe-the-discovery-and-exploitation-of-cve-2022-25636-primary-0cf33b45",
      "year": 2022,
      "title": "The Discovery and Exploitation of CVE-2022-25636",
      "item_title": "The Discovery and Exploitation of CVE-2022-25636",
      "authors": [
        "Nick Gregory"
      ],
      "cves": [
        "CVE-2022-25636"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://nickgregory.me/linux/security/2022/03/12/cve-2022-25636/",
      "primary_url": "https://nickgregory.me/linux/security/2022/03/12/cve-2022-25636/",
      "parent_primary_url": "https://nickgregory.me/linux/security/2022/03/12/cve-2022-25636/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-the-discovery-and-exploitation-of-cve-2022-25636-primary-0cf33b45.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Discovery and Exploitation of CVE-2022-25636 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The Discovery and Exploitation of CVE-2022-25636 resource_label: primary resource_type: article resource_url: https://nickgregory.me/linux/security/2022/03/12/cve-2022-25636/ parent_primary_url: https://nickgregory.me/linux/security/2022/03/12/cve-2022-25636/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"The Discovery and Exploitation of CVE-2022-25636\" by Nick Gregory](https://nickgregory.me/linux/security/2022/03/12/cve-2022-25636/) [article] [CVE-2022-25636] cves: CVE-2022-25636 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_re",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://nickgregory.me/linux/security/2022/03/12/cve-2022-25636/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://nickgregory.me/linux/security/2022/03/12/cve-2022-25636/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-25636"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2022-25636 presents a local privilege escalation vulnerability in the Linux kernel.",
      "summary_zh": "CVE-2022-25636在Linux内核中存在本地权限提升漏洞。",
      "source_markdown": "[2022: \"The Discovery and Exploitation of CVE-2022-25636\" by Nick Gregory](https://nickgregory.me/linux/security/2022/03/12/cve-2022-25636/) [article] [CVE-2022-25636]",
      "search_text": "the discovery and exploitation of cve-2022-25636 the discovery and exploitation of cve-2022-25636 nick gregory cve-2022-25636  vulnerabilities lpe lpe primary article https://nickgregory.me/linux/security/2022/03/12/cve-2022-25636/ lpe cve-2022-25636  vulnerability cve-2022-25636 presents a local privilege escalation vulnerability in the linux kernel. cve-2022-25636在linux内核中存在本地权限提升漏洞。 # the discovery and exploitation of cve-2022-25636 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the discovery and exploitation of cve-2022-25636 resource_label: primary resource_type: article resource_url: https://nickgregory.me/linux/security/2022/03/12/cve-2022-25636/ parent_primary_url: https://nickgregory.me/linux/security/2022/03/12/cve-2022-25636/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"the discovery and exploitation of cve-2022-25636\" by nick gregory](https://nickgregory.me/linux/security/2022/03/12/cve-2022-25636/) [article] [cve-2022-25636] cves: cve-2022-25636 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_re unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "94a7feb3848db46d",
      "item_id": "7d044e75d9233e37",
      "slug": "2022-vulnerabilities-lpe-cve-2022-27666-exploit-esp6-modules-in-linux-kernel-primary-50794dd3",
      "year": 2022,
      "title": "CVE-2022-27666: Exploit esp6 modules in Linux kernel",
      "item_title": "CVE-2022-27666: Exploit esp6 modules in Linux kernel",
      "authors": [
        "ETenal"
      ],
      "cves": [
        "CVE-2022-27666"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://etenal.me/archives/1825",
      "primary_url": "https://etenal.me/archives/1825",
      "parent_primary_url": "https://etenal.me/archives/1825",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-cve-2022-27666-exploit-esp6-modules-in-linux-kernel-primary-50794dd3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2022-27666: Exploit esp6 modules in Linux kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2022-27666: Exploit esp6 modules in Linux kernel resource_label: primary resource_type: article resource_url: https://etenal.me/archives/1825 parent_primary_url: https://etenal.me/archives/1825 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"CVE-2022-27666: Exploit esp6 modules in Linux kernel\" by ETenal](https://etenal.me/archives/1825) [article] [CVE-2022-27666] cves: CVE-2022-27666 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_po",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://etenal.me/archives/1825"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://etenal.me/archives/1825"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-27666"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2022-27666 exploits vulnerabilities in esp6 modules of the Linux kernel.",
      "summary_zh": "CVE-2022-27666利用Linux内核esp6模块中的漏洞。",
      "source_markdown": "[2022: \"CVE-2022-27666: Exploit esp6 modules in Linux kernel\" by ETenal](https://etenal.me/archives/1825) [article] [CVE-2022-27666]",
      "search_text": "cve-2022-27666: exploit esp6 modules in linux kernel cve-2022-27666: exploit esp6 modules in linux kernel etenal cve-2022-27666  vulnerabilities lpe lpe primary article https://etenal.me/archives/1825 lpe cve-2022-27666  vulnerability cve-2022-27666 exploits vulnerabilities in esp6 modules of the linux kernel. cve-2022-27666利用linux内核esp6模块中的漏洞。 # cve-2022-27666: exploit esp6 modules in linux kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2022-27666: exploit esp6 modules in linux kernel resource_label: primary resource_type: article resource_url: https://etenal.me/archives/1825 parent_primary_url: https://etenal.me/archives/1825 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"cve-2022-27666: exploit esp6 modules in linux kernel\" by etenal](https://etenal.me/archives/1825) [article] [cve-2022-27666] cves: cve-2022-27666 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_po unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b3cbc6e5a1804024",
      "item_id": "7a766668216b3653",
      "slug": "2022-vulnerabilities-lpe-put-an-io-uring-on-it-exploiting-the-linux-kernel-primary-cdb1c22a",
      "year": 2022,
      "title": "Put an io_uring on it: Exploiting the Linux Kernel",
      "item_title": "Put an io_uring on it: Exploiting the Linux Kernel",
      "authors": [
        "Valentina Palmiotti"
      ],
      "cves": [
        "CVE-2021-41073"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.graplsecurity.com/post/iou-ring-exploiting-the-linux-kernel",
      "primary_url": "https://www.graplsecurity.com/post/iou-ring-exploiting-the-linux-kernel",
      "parent_primary_url": "https://www.graplsecurity.com/post/iou-ring-exploiting-the-linux-kernel",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-put-an-io-uring-on-it-exploiting-the-linux-kernel-primary-cdb1c22a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Put an io_uring on it: Exploiting the Linux Kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Put an io_uring on it: Exploiting the Linux Kernel resource_label: primary resource_type: article resource_url: https://www.graplsecurity.com/post/iou-ring-exploiting-the-linux-kernel parent_primary_url: https://www.graplsecurity.com/post/iou-ring-exploiting-the-linux-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Put an io_uring on it: Exploiting the Linux Kernel\" by Valentina Palmiotti](https://www.graplsecurity.com/post/iou-ring-exploiting-the-linux-kernel) [article] [CVE-2021-41073] cves: CVE-2021-41073 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. i",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.graplsecurity.com/post/iou-ring-exploiting-the-linux-kernel"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.graplsecurity.com/post/iou-ring-exploiting-the-linux-kernel"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2021-41073"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The io_uring vulnerability (CVE-2021-41073) allows for local privilege escalation in the Linux kernel.",
      "summary_zh": "io_uring漏洞(CVE-2021-41073)允许在Linux内核中进行本地权限提升。",
      "source_markdown": "[2022: \"Put an io_uring on it: Exploiting the Linux Kernel\" by Valentina Palmiotti](https://www.graplsecurity.com/post/iou-ring-exploiting-the-linux-kernel) [article] [CVE-2021-41073]",
      "search_text": "put an io_uring on it: exploiting the linux kernel put an io_uring on it: exploiting the linux kernel valentina palmiotti cve-2021-41073  vulnerabilities lpe lpe primary article https://www.graplsecurity.com/post/iou-ring-exploiting-the-linux-kernel lpe cve-2021-41073  vulnerability the io_uring vulnerability (cve-2021-41073) allows for local privilege escalation in the linux kernel. io_uring漏洞(cve-2021-41073)允许在linux内核中进行本地权限提升。 # put an io_uring on it: exploiting the linux kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: put an io_uring on it: exploiting the linux kernel resource_label: primary resource_type: article resource_url: https://www.graplsecurity.com/post/iou-ring-exploiting-the-linux-kernel parent_primary_url: https://www.graplsecurity.com/post/iou-ring-exploiting-the-linux-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"put an io_uring on it: exploiting the linux kernel\" by valentina palmiotti](https://www.graplsecurity.com/post/iou-ring-exploiting-the-linux-kernel) [article] [cve-2021-41073] cves: cve-2021-41073 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. i unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "d1a00289612e0538",
      "item_id": "8d51341138656b4d",
      "slug": "2022-vulnerabilities-lpe-the-dirty-pipe-vulnerability-primary-2e26e836",
      "year": 2022,
      "title": "The Dirty Pipe Vulnerability",
      "item_title": "The Dirty Pipe Vulnerability",
      "authors": [
        "Max Kellermann"
      ],
      "cves": [
        "CVE-2022-0847"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://dirtypipe.cm4all.com/",
      "primary_url": "https://dirtypipe.cm4all.com/",
      "parent_primary_url": "https://dirtypipe.cm4all.com/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-the-dirty-pipe-vulnerability-primary-2e26e836.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Dirty Pipe Vulnerability record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The Dirty Pipe Vulnerability resource_label: primary resource_type: article resource_url: https://dirtypipe.cm4all.com/ parent_primary_url: https://dirtypipe.cm4all.com/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"The Dirty Pipe Vulnerability\" by Max Kellermann](https://dirtypipe.cm4all.com/) [article] [CVE-2022-0847] cves: CVE-2022-0847 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [artic",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://dirtypipe.cm4all.com/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://dirtypipe.cm4all.com/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-0847"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The Dirty Pipe vulnerability (CVE-2022-0847) poses a significant risk for local privilege escalation.",
      "summary_zh": "Dirty Pipe漏洞(CVE-2022-0847)对本地权限提升构成重大风险。",
      "source_markdown": "[2022: \"The Dirty Pipe Vulnerability\" by Max Kellermann](https://dirtypipe.cm4all.com/) [article] [CVE-2022-0847]",
      "search_text": "the dirty pipe vulnerability the dirty pipe vulnerability max kellermann cve-2022-0847  vulnerabilities lpe lpe primary article https://dirtypipe.cm4all.com/ lpe cve-2022-0847  vulnerability the dirty pipe vulnerability (cve-2022-0847) poses a significant risk for local privilege escalation. dirty pipe漏洞(cve-2022-0847)对本地权限提升构成重大风险。 # the dirty pipe vulnerability record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the dirty pipe vulnerability resource_label: primary resource_type: article resource_url: https://dirtypipe.cm4all.com/ parent_primary_url: https://dirtypipe.cm4all.com/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"the dirty pipe vulnerability\" by max kellermann](https://dirtypipe.cm4all.com/) [article] [cve-2022-0847] cves: cve-2022-0847 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [artic unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "0da7d2b3226a8839",
      "item_id": "9f42a6d910b68c73",
      "slug": "2022-vulnerabilities-lpe-cve-2022-0185-winning-a-31337-bounty-after-pwning-ubuntu-and-escaping-google-s-kctf-c",
      "year": 2022,
      "title": "CVE-2022-0185 - Winning a $31337 Bounty after Pwning Ubuntu and Escaping Google's KCTF Containers",
      "item_title": "CVE-2022-0185 - Winning a $31337 Bounty after Pwning Ubuntu and Escaping Google's KCTF Containers",
      "authors": [],
      "cves": [
        "CVE-2022-0185"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.willsroot.io/2022/01/cve-2022-0185.html",
      "primary_url": "https://www.willsroot.io/2022/01/cve-2022-0185.html",
      "parent_primary_url": "https://www.willsroot.io/2022/01/cve-2022-0185.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-cve-2022-0185-winning-a-31337-bounty-after-pwning-ubuntu-and-escaping-google-s-kctf-c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2022-0185 - Winning a $31337 Bounty after Pwning Ubuntu and Escaping Google's KCTF Containers record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2022-0185 - Winning a $31337 Bounty after Pwning Ubuntu and Escaping Google's KCTF Containers resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2022/01/cve-2022-0185.html parent_primary_url: https://www.willsroot.io/2022/01/cve-2022-0185.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"CVE-2022-0185 - Winning a $31337 Bounty after Pwning Ubuntu and Escaping Google's KCTF Containers\"](https://www.willsroot.io/2022/01/cve-2022-0185.html) [article] [CVE-2022-0185] cves: CVE-2022-0185 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production i",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.willsroot.io/2022/01/cve-2022-0185.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.willsroot.io/2022/01/cve-2022-0185.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-0185"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2022-0185 demonstrates a local privilege escalation vulnerability affecting Ubuntu.",
      "summary_zh": "CVE-2022-0185展示了影响Ubuntu的本地权限提升漏洞。",
      "source_markdown": "[2022: \"CVE-2022-0185 - Winning a $31337 Bounty after Pwning Ubuntu and Escaping Google's KCTF Containers\"](https://www.willsroot.io/2022/01/cve-2022-0185.html) [article] [CVE-2022-0185]",
      "search_text": "cve-2022-0185 - winning a $31337 bounty after pwning ubuntu and escaping google's kctf containers cve-2022-0185 - winning a $31337 bounty after pwning ubuntu and escaping google's kctf containers  cve-2022-0185  vulnerabilities lpe lpe primary article https://www.willsroot.io/2022/01/cve-2022-0185.html lpe cve-2022-0185  vulnerability cve-2022-0185 demonstrates a local privilege escalation vulnerability affecting ubuntu. cve-2022-0185展示了影响ubuntu的本地权限提升漏洞。 # cve-2022-0185 - winning a $31337 bounty after pwning ubuntu and escaping google's kctf containers record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2022-0185 - winning a $31337 bounty after pwning ubuntu and escaping google's kctf containers resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2022/01/cve-2022-0185.html parent_primary_url: https://www.willsroot.io/2022/01/cve-2022-0185.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"cve-2022-0185 - winning a $31337 bounty after pwning ubuntu and escaping google's kctf containers\"](https://www.willsroot.io/2022/01/cve-2022-0185.html) [article] [cve-2022-0185] cves: cve-2022-0185 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production i unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c0a575812a8b717b",
      "item_id": "b96ccc0860b4b448",
      "slug": "2022-vulnerabilities-lpe-cve-2022-0185-linux-kernel-slab-out-of-bounds-write-exploit-and-writeup-primary-8f741",
      "year": 2022,
      "title": "CVE-2022-0185: Linux kernel slab out-of-bounds write: exploit and writeup",
      "item_title": "CVE-2022-0185: Linux kernel slab out-of-bounds write: exploit and writeup",
      "authors": [
        "Alejandro Guerrero"
      ],
      "cves": [
        "CVE-2022-0185"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.openwall.com/lists/oss-security/2022/01/25/14",
      "primary_url": "https://www.openwall.com/lists/oss-security/2022/01/25/14",
      "parent_primary_url": "https://www.openwall.com/lists/oss-security/2022/01/25/14",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-cve-2022-0185-linux-kernel-slab-out-of-bounds-write-exploit-and-writeup-primary-8f741.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2022-0185: Linux kernel slab out-of-bounds write: exploit and writeup record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2022-0185: Linux kernel slab out-of-bounds write: exploit and writeup resource_label: primary resource_type: article resource_url: https://www.openwall.com/lists/oss-security/2022/01/25/14 parent_primary_url: https://www.openwall.com/lists/oss-security/2022/01/25/14 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"CVE-2022-0185: Linux kernel slab out-of-bounds write: exploit and writeup\" by Alejandro Guerrero](https://www.openwall.com/lists/oss-security/2022/01/25/14) [article] [CVE-2022-0185] cves: CVE-2022-0185 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and v",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.openwall.com/lists/oss-security/2022/01/25/14"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.openwall.com/lists/oss-security/2022/01/25/14"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-0185"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2022-0185 involves a slab out-of-bounds write vulnerability in the Linux kernel.",
      "summary_zh": "CVE-2022-0185涉及Linux内核中的slab越界写漏洞。",
      "source_markdown": "[2022: \"CVE-2022-0185: Linux kernel slab out-of-bounds write: exploit and writeup\" by Alejandro Guerrero](https://www.openwall.com/lists/oss-security/2022/01/25/14) [article] [CVE-2022-0185]",
      "search_text": "cve-2022-0185: linux kernel slab out-of-bounds write: exploit and writeup cve-2022-0185: linux kernel slab out-of-bounds write: exploit and writeup alejandro guerrero cve-2022-0185  vulnerabilities lpe lpe primary article https://www.openwall.com/lists/oss-security/2022/01/25/14 lpe cve-2022-0185  vulnerability cve-2022-0185 involves a slab out-of-bounds write vulnerability in the linux kernel. cve-2022-0185涉及linux内核中的slab越界写漏洞。 # cve-2022-0185: linux kernel slab out-of-bounds write: exploit and writeup record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2022-0185: linux kernel slab out-of-bounds write: exploit and writeup resource_label: primary resource_type: article resource_url: https://www.openwall.com/lists/oss-security/2022/01/25/14 parent_primary_url: https://www.openwall.com/lists/oss-security/2022/01/25/14 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"cve-2022-0185: linux kernel slab out-of-bounds write: exploit and writeup\" by alejandro guerrero](https://www.openwall.com/lists/oss-security/2022/01/25/14) [article] [cve-2022-0185] cves: cve-2022-0185 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and v unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "782d94608a92e46b",
      "item_id": "21b1c7874139bd2d",
      "slug": "2022-vulnerabilities-lpe-cve-2022-0185-a-case-study-primary-dda875ac",
      "year": 2022,
      "title": "CVE-2022-0185: A Case Study",
      "item_title": "CVE-2022-0185: A Case Study",
      "authors": [],
      "cves": [
        "CVE-2022-0185"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.hackthebox.com/blog/CVE-2022-0185:_A_case_study",
      "primary_url": "https://www.hackthebox.com/blog/CVE-2022-0185:_A_case_study",
      "parent_primary_url": "https://www.hackthebox.com/blog/CVE-2022-0185:_A_case_study",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-cve-2022-0185-a-case-study-primary-dda875ac.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2022-0185: A Case Study record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2022-0185: A Case Study resource_label: primary resource_type: article resource_url: https://www.hackthebox.com/blog/CVE-2022-0185:_A_case_study parent_primary_url: https://www.hackthebox.com/blog/CVE-2022-0185:_A_case_study source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"CVE-2022-0185: A Case Study\"](https://www.hackthebox.com/blog/CVE-2022-0185:_A_case_study) [article] [CVE-2022-0185] cves: CVE-2022-0185 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.hackthebox.com/blog/CVE-2022-0185:_A_case_study"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.hackthebox.com/blog/CVE-2022-0185:_A_case_study"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-0185"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2022-0185 is analyzed as a case study for local privilege escalation.",
      "summary_zh": "CVE-2022-0185被分析为本地权限提升的案例研究。",
      "source_markdown": "[2022: \"CVE-2022-0185: A Case Study\"](https://www.hackthebox.com/blog/CVE-2022-0185:_A_case_study) [article] [CVE-2022-0185]",
      "search_text": "cve-2022-0185: a case study cve-2022-0185: a case study  cve-2022-0185  vulnerabilities lpe lpe primary article https://www.hackthebox.com/blog/cve-2022-0185:_a_case_study lpe cve-2022-0185  vulnerability cve-2022-0185 is analyzed as a case study for local privilege escalation. cve-2022-0185被分析为本地权限提升的案例研究。 # cve-2022-0185: a case study record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2022-0185: a case study resource_label: primary resource_type: article resource_url: https://www.hackthebox.com/blog/cve-2022-0185:_a_case_study parent_primary_url: https://www.hackthebox.com/blog/cve-2022-0185:_a_case_study source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"cve-2022-0185: a case study\"](https://www.hackthebox.com/blog/cve-2022-0185:_a_case_study) [article] [cve-2022-0185] cves: cve-2022-0185 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc:  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "419e700183057732",
      "item_id": "08d3742ddc771c18",
      "slug": "2022-vulnerabilities-lpe-cve-2022-0185-analysis-and-utilization-and-thinking-and-practice-of-new-primitives-fo",
      "year": 2022,
      "title": "CVE-2022-0185: Analysis and utilization and thinking and practice of new primitives for pipe",
      "item_title": "CVE-2022-0185: Analysis and utilization and thinking and practice of new primitives for pipe",
      "authors": [],
      "cves": [
        "CVE-2022-0185"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://veritas501.github.io/2022_03_16-CVE_2022_0185%E5%88%86%E6%9E%90%E5%8F%8A%E5%88%A9%E7%94%A8%E4%B8%8Epipe%E6%96%B0%E5%8E%9F%E8%AF%AD%E6%80%9D%E8%80%83%E4%B8%8E%E5%AE%9E%E8%B7%B5/#%E7%9C%9F%E2%80%A2%E6%AD%A3%E6%96%87-%E6%96%B0%E5%9E%8B%E5%88%A9%E7%94%A8%E5%8E%9F%E8%AF%AD-pipe",
      "primary_url": "https://veritas501.github.io/2022_03_16-CVE_2022_0185%E5%88%86%E6%9E%90%E5%8F%8A%E5%88%A9%E7%94%A8%E4%B8%8Epipe%E6%96%B0%E5%8E%9F%E8%AF%AD%E6%80%9D%E8%80%83%E4%B8%8E%E5%AE%9E%E8%B7%B5/#%E7%9C%9F%E2%80%A2%E6%AD%A3%E6%96%87-%E6%96%B0%E5%9E%8B%E5%88%A9%E7%94%A8%E5%8E%9F%E8%AF%AD-pipe",
      "parent_primary_url": "https://veritas501.github.io/2022_03_16-CVE_2022_0185%E5%88%86%E6%9E%90%E5%8F%8A%E5%88%A9%E7%94%A8%E4%B8%8Epipe%E6%96%B0%E5%8E%9F%E8%AF%AD%E6%80%9D%E8%80%83%E4%B8%8E%E5%AE%9E%E8%B7%B5/#%E7%9C%9F%E2%80%A2%E6%AD%A3%E6%96%87-%E6%96%B0%E5%9E%8B%E5%88%A9%E7%94%A8%E5%8E%9F%E8%AF%AD-pipe",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-cve-2022-0185-analysis-and-utilization-and-thinking-and-practice-of-new-primitives-fo.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2022-0185: Analysis and utilization and thinking and practice of new primitives for pipe record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2022-0185: Analysis and utilization and thinking and practice of new primitives for pipe resource_label: primary resource_type: article resource_url: https://veritas501.github.io/2022_03_16-CVE_2022_0185%E5%88%86%E6%9E%90%E5%8F%8A%E5%88%A9%E7%94%A8%E4%B8%8Epipe%E6%96%B0%E5%8E%9F%E8%AF%AD%E6%80%9D%E8%80%83%E4%B8%8E%E5%AE%9E%E8%B7%B5/#%E7%9C%9F%E2%80%A2%E6%AD%A3%E6%96%87-%E6%96%B0%E5%9E%8B%E5%88%A9%E7%94%A8%E5%8E%9F%E8%AF%AD-pipe parent_primary_url: https://veritas501.github.io/2022_03_16-CVE_2022_0185%E5%88%86%E6%9E%90%E5%8F%8A%E5%88%A9%E7%94%A8%E4%B8%8Epipe%E6%96%B0%E5%8E%9F%E8%AF%AD%E6%80%9D%E8%80%83%E4%B8%8E%E5%AE%9E%E8%B7%B5/#%E7%9C%9F%E2%80%A2%E6%AD%A3%E6%96%87-%E6%96%B0%E5%9E%8B%E5",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://veritas501.github.io/2022_03_16-CVE_2022_0185%E5%88%86%E6%9E%90%E5%8F%8A%E5%88%A9%E7%94%A8%E4%B8%8Epipe%E6%96%B0%E5%8E%9F%E8%AF%AD%E6%80%9D%E8%80%83%E4%B8%8E%E5%AE%9E%E8%B7%B5/#%E7%9C%9F%E2%80%A2%E6%AD%A3%E6%96%87-%E6%96%B0%E5%9E%8B%E5%88%A9%E7%94%A8%E5%8E%9F%E8%AF%AD-pipe"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://veritas501.github.io/2022_03_16-CVE_2022_0185%E5%88%86%E6%9E%90%E5%8F%8A%E5%88%A9%E7%94%A8%E4%B8%8Epipe%E6%96%B0%E5%8E%9F%E8%AF%AD%E6%80%9D%E8%80%83%E4%B8%8E%E5%AE%9E%E8%B7%B5/#%E7%9C%9F%E2%80%A2%E6%AD%A3%E6%96%87-%E6%96%B0%E5%9E%8B%E5%88%A9%E7%94%A8%E5%8E%9F%E8%AF%AD-pipe"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://veritas501.github.io/2022_03_16-CVE_2022_0185%E5%88%86%E6%9E%90%E5%8F%8A%E5%88%A9%E7%94%A8%E4%B8%8Epipe%E6%96%B0%E5%8E%9F%E8%AF%AD%E6%80%9D%E8%80%83%E4%B8%8E%E5%AE%9E%E8%B7%B5/#%E7%9C%9F%E2%80%A2%E6%AD%A3%E6%96%87-%E6%96%B0%E5%9E%8B%E5%88%A9%E7%94%A8%E5%8E%9F%E8%AF%AD-pipe"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2022-0185"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2022-0185 explores new primitives for pipe exploitation in the Linux kernel.",
      "summary_zh": "CVE-2022-0185探索了Linux内核中管道利用的新原语。",
      "source_markdown": "[2022: \"CVE-2022-0185: Analysis and utilization and thinking and practice of new primitives for pipe\"](https://veritas501.github.io/2022_03_16-CVE_2022_0185%E5%88%86%E6%9E%90%E5%8F%8A%E5%88%A9%E7%94%A8%E4%B8%8Epipe%E6%96%B0%E5%8E%9F%E8%AF%AD%E6%80%9D%E8%80%83%E4%B8%8E%E5%AE%9E%E8%B7%B5/#%E7%9C%9F%E2%80%A2%E6%AD%A3%E6%96%87-%E6%96%B0%E5%9E%8B%E5%88%A9%E7%94%A8%E5%8E%9F%E8%AF%AD-pipe) [article] [CVE-2022-0185]",
      "search_text": "cve-2022-0185: analysis and utilization and thinking and practice of new primitives for pipe cve-2022-0185: analysis and utilization and thinking and practice of new primitives for pipe  cve-2022-0185  vulnerabilities lpe lpe primary article https://veritas501.github.io/2022_03_16-cve_2022_0185%e5%88%86%e6%9e%90%e5%8f%8a%e5%88%a9%e7%94%a8%e4%b8%8epipe%e6%96%b0%e5%8e%9f%e8%af%ad%e6%80%9d%e8%80%83%e4%b8%8e%e5%ae%9e%e8%b7%b5/#%e7%9c%9f%e2%80%a2%e6%ad%a3%e6%96%87-%e6%96%b0%e5%9e%8b%e5%88%a9%e7%94%a8%e5%8e%9f%e8%af%ad-pipe lpe cve-2022-0185  vulnerability cve-2022-0185 explores new primitives for pipe exploitation in the linux kernel. cve-2022-0185探索了linux内核中管道利用的新原语。 # cve-2022-0185: analysis and utilization and thinking and practice of new primitives for pipe record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2022-0185: analysis and utilization and thinking and practice of new primitives for pipe resource_label: primary resource_type: article resource_url: https://veritas501.github.io/2022_03_16-cve_2022_0185%e5%88%86%e6%9e%90%e5%8f%8a%e5%88%a9%e7%94%a8%e4%b8%8epipe%e6%96%b0%e5%8e%9f%e8%af%ad%e6%80%9d%e8%80%83%e4%b8%8e%e5%ae%9e%e8%b7%b5/#%e7%9c%9f%e2%80%a2%e6%ad%a3%e6%96%87-%e6%96%b0%e5%9e%8b%e5%88%a9%e7%94%a8%e5%8e%9f%e8%af%ad-pipe parent_primary_url: https://veritas501.github.io/2022_03_16-cve_2022_0185%e5%88%86%e6%9e%90%e5%8f%8a%e5%88%a9%e7%94%a8%e4%b8%8epipe%e6%96%b0%e5%8e%9f%e8%af%ad%e6%80%9d%e8%80%83%e4%b8%8e%e5%ae%9e%e8%b7%b5/#%e7%9c%9f%e2%80%a2%e6%ad%a3%e6%96%87-%e6%96%b0%e5%9e%8b%e5 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "747500dc3cac38eb",
      "item_id": "a76764c9ac1b982d",
      "slug": "2022-vulnerabilities-lpe-linux-kernel-use-after-free-cve-2021-23134-poc-primary-f578f41a",
      "year": 2022,
      "title": "Linux kernel Use-After-Free (CVE-2021-23134) PoC",
      "item_title": "Linux kernel Use-After-Free (CVE-2021-23134) PoC",
      "authors": [],
      "cves": [
        "CVE-2021-23134"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://web.archive.org/web/20220616193522/https://ruia-ruia.github.io/NFC-UAF/",
      "primary_url": "https://web.archive.org/web/20220616193522/https://ruia-ruia.github.io/NFC-UAF/",
      "parent_primary_url": "https://web.archive.org/web/20220616193522/https://ruia-ruia.github.io/NFC-UAF/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-linux-kernel-use-after-free-cve-2021-23134-poc-primary-f578f41a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux kernel Use-After-Free (CVE-2021-23134) PoC record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux kernel Use-After-Free (CVE-2021-23134) PoC resource_label: primary resource_type: article resource_url: https://web.archive.org/web/20220616193522/https://ruia-ruia.github.io/NFC-UAF/ parent_primary_url: https://web.archive.org/web/20220616193522/https://ruia-ruia.github.io/NFC-UAF/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Linux kernel Use-After-Free (CVE-2021-23134) PoC\"](https://web.archive.org/web/20220616193522/https://ruia-ruia.github.io/NFC-UAF/) [article] [CVE-2021-23134] cves: CVE-2021-23134 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_im",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://web.archive.org/web/20220616193522/https://ruia-ruia.github.io/NFC-UAF/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://web.archive.org/web/20220616193522/https://ruia-ruia.github.io/NFC-UAF/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://web.archive.org/web/20220616193522/https://ruia-ruia.github.io/NFC-UAF/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2021-23134"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2021-23134 is a use-after-free vulnerability in the Linux kernel.",
      "summary_zh": "CVE-2021-23134是Linux内核中的使用后释放漏洞。",
      "source_markdown": "[2022: \"Linux kernel Use-After-Free (CVE-2021-23134) PoC\"](https://web.archive.org/web/20220616193522/https://ruia-ruia.github.io/NFC-UAF/) [article] [CVE-2021-23134]",
      "search_text": "linux kernel use-after-free (cve-2021-23134) poc linux kernel use-after-free (cve-2021-23134) poc  cve-2021-23134  vulnerabilities lpe lpe primary article https://web.archive.org/web/20220616193522/https://ruia-ruia.github.io/nfc-uaf/ lpe cve-2021-23134  vulnerability cve-2021-23134 is a use-after-free vulnerability in the linux kernel. cve-2021-23134是linux内核中的使用后释放漏洞。 # linux kernel use-after-free (cve-2021-23134) poc record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel use-after-free (cve-2021-23134) poc resource_label: primary resource_type: article resource_url: https://web.archive.org/web/20220616193522/https://ruia-ruia.github.io/nfc-uaf/ parent_primary_url: https://web.archive.org/web/20220616193522/https://ruia-ruia.github.io/nfc-uaf/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"linux kernel use-after-free (cve-2021-23134) poc\"](https://web.archive.org/web/20220616193522/https://ruia-ruia.github.io/nfc-uaf/) [article] [cve-2021-23134] cves: cve-2021-23134 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_im unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "2c71abd364dd93c1",
      "item_id": "3a681aa677ca7965",
      "slug": "2022-vulnerabilities-lpe-exploiting-cve-2021-26708-linux-kernel-with-ssh-primary-abc947f2",
      "year": 2022,
      "title": "Exploiting CVE-2021-26708 (Linux kernel) with ssh",
      "item_title": "Exploiting CVE-2021-26708 (Linux kernel) with ssh",
      "authors": [],
      "cves": [
        "CVE-2021-26708"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://hardenedvault.net/2022/03/01/poc-cve-2021-26708.html",
      "primary_url": "https://hardenedvault.net/2022/03/01/poc-cve-2021-26708.html",
      "parent_primary_url": "https://hardenedvault.net/2022/03/01/poc-cve-2021-26708.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-exploiting-cve-2021-26708-linux-kernel-with-ssh-primary-abc947f2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting CVE-2021-26708 (Linux kernel) with ssh record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting CVE-2021-26708 (Linux kernel) with ssh resource_label: primary resource_type: article resource_url: https://hardenedvault.net/2022/03/01/poc-cve-2021-26708.html parent_primary_url: https://hardenedvault.net/2022/03/01/poc-cve-2021-26708.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Exploiting CVE-2021-26708 (Linux kernel) with ssh\"](https://hardenedvault.net/2022/03/01/poc-cve-2021-26708.html) [article] [CVE-2021-26708] cves: CVE-2021-26708 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devi",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://hardenedvault.net/2022/03/01/poc-cve-2021-26708.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://hardenedvault.net/2022/03/01/poc-cve-2021-26708.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://hardenedvault.net/2022/03/01/poc-cve-2021-26708.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2021-26708"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2021-26708 is a local privilege escalation vulnerability in the Linux kernel.",
      "summary_zh": "CVE-2021-26708是Linux内核中的本地权限提升漏洞。",
      "source_markdown": "[2022: \"Exploiting CVE-2021-26708 (Linux kernel) with ssh\"](https://hardenedvault.net/2022/03/01/poc-cve-2021-26708.html) [article] [CVE-2021-26708]",
      "search_text": "exploiting cve-2021-26708 (linux kernel) with ssh exploiting cve-2021-26708 (linux kernel) with ssh  cve-2021-26708  vulnerabilities lpe lpe primary article https://hardenedvault.net/2022/03/01/poc-cve-2021-26708.html lpe cve-2021-26708  vulnerability cve-2021-26708 is a local privilege escalation vulnerability in the linux kernel. cve-2021-26708是linux内核中的本地权限提升漏洞。 # exploiting cve-2021-26708 (linux kernel) with ssh record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting cve-2021-26708 (linux kernel) with ssh resource_label: primary resource_type: article resource_url: https://hardenedvault.net/2022/03/01/poc-cve-2021-26708.html parent_primary_url: https://hardenedvault.net/2022/03/01/poc-cve-2021-26708.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"exploiting cve-2021-26708 (linux kernel) with ssh\"](https://hardenedvault.net/2022/03/01/poc-cve-2021-26708.html) [article] [cve-2021-26708] cves: cve-2021-26708 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devi unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "0b156158a7706fd1",
      "item_id": "9fa33196c00be0a3",
      "slug": "2022-vulnerabilities-lpe-exploiting-cve-2019-2215-primary-304b2958",
      "year": 2022,
      "title": "exploiting CVE-2019-2215",
      "item_title": "exploiting CVE-2019-2215",
      "authors": [
        "cutesmilee"
      ],
      "cves": [
        "CVE-2019-2215"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://cutesmilee.github.io/kernel/linux/android/2022/02/17/cve-2019-2215_writeup.html",
      "primary_url": "https://cutesmilee.github.io/kernel/linux/android/2022/02/17/cve-2019-2215_writeup.html",
      "parent_primary_url": "https://cutesmilee.github.io/kernel/linux/android/2022/02/17/cve-2019-2215_writeup.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-exploiting-cve-2019-2215-primary-304b2958.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# exploiting CVE-2019-2215 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: exploiting CVE-2019-2215 resource_label: primary resource_type: article resource_url: https://cutesmilee.github.io/kernel/linux/android/2022/02/17/cve-2019-2215_writeup.html parent_primary_url: https://cutesmilee.github.io/kernel/linux/android/2022/02/17/cve-2019-2215_writeup.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"exploiting CVE-2019-2215\" by cutesmilee](https://cutesmilee.github.io/kernel/linux/android/2022/02/17/cve-2019-2215_writeup.html) [article] [CVE-2019-2215] cves: CVE-2019-2215 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploi",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://cutesmilee.github.io/kernel/linux/android/2022/02/17/cve-2019-2215_writeup.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://cutesmilee.github.io/kernel/linux/android/2022/02/17/cve-2019-2215_writeup.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://cutesmilee.github.io/kernel/linux/android/2022/02/17/cve-2019-2215_writeup.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "CVE-2019-2215"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2019-2215 is a local privilege escalation vulnerability affecting Android devices.",
      "summary_zh": "CVE-2019-2215是影响Android设备的本地权限提升漏洞。",
      "source_markdown": "[2022: \"exploiting CVE-2019-2215\" by cutesmilee](https://cutesmilee.github.io/kernel/linux/android/2022/02/17/cve-2019-2215_writeup.html) [article] [CVE-2019-2215]",
      "search_text": "exploiting cve-2019-2215 exploiting cve-2019-2215 cutesmilee cve-2019-2215  vulnerabilities lpe lpe primary article https://cutesmilee.github.io/kernel/linux/android/2022/02/17/cve-2019-2215_writeup.html lpe android cve-2019-2215  vulnerability cve-2019-2215 is a local privilege escalation vulnerability affecting android devices. cve-2019-2215是影响android设备的本地权限提升漏洞。 # exploiting cve-2019-2215 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting cve-2019-2215 resource_label: primary resource_type: article resource_url: https://cutesmilee.github.io/kernel/linux/android/2022/02/17/cve-2019-2215_writeup.html parent_primary_url: https://cutesmilee.github.io/kernel/linux/android/2022/02/17/cve-2019-2215_writeup.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"exploiting cve-2019-2215\" by cutesmilee](https://cutesmilee.github.io/kernel/linux/android/2022/02/17/cve-2019-2215_writeup.html) [article] [cve-2019-2215] cves: cve-2019-2215 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploi yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "72e5352176f817f8",
      "item_id": "489fab6a48caff18",
      "slug": "2022-vulnerabilities-lpe-linux-kernel-pwn-02-cve-2009-1897-primary-fa580fa8",
      "year": 2022,
      "title": "Linux Kernel PWN | 02 CVE-2009-1897",
      "item_title": "Linux Kernel PWN | 02 CVE-2009-1897",
      "authors": [],
      "cves": [
        "CVE-2009-1897"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.wohin.me/posts/linux-kernel-pwn-02/",
      "primary_url": "https://blog.wohin.me/posts/linux-kernel-pwn-02/",
      "parent_primary_url": "https://blog.wohin.me/posts/linux-kernel-pwn-02/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2022-vulnerabilities-lpe-linux-kernel-pwn-02-cve-2009-1897-primary-fa580fa8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel PWN | 02 CVE-2009-1897 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux Kernel PWN | 02 CVE-2009-1897 resource_label: primary resource_type: article resource_url: https://blog.wohin.me/posts/linux-kernel-pwn-02/ parent_primary_url: https://blog.wohin.me/posts/linux-kernel-pwn-02/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"Linux Kernel PWN | 02 CVE-2009-1897\"](https://blog.wohin.me/posts/linux-kernel-pwn-02/) [article] [CVE-2009-1897] cves: CVE-2009-1897 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.wohin.me/posts/linux-kernel-pwn-02/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.wohin.me/posts/linux-kernel-pwn-02/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2009-1897"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2009-1897 is a historical local privilege escalation vulnerability in the Linux kernel.",
      "summary_zh": "CVE-2009-1897是Linux内核中的历史性本地权限提升漏洞。",
      "source_markdown": "[2022: \"Linux Kernel PWN | 02 CVE-2009-1897\"](https://blog.wohin.me/posts/linux-kernel-pwn-02/) [article] [CVE-2009-1897]",
      "search_text": "linux kernel pwn | 02 cve-2009-1897 linux kernel pwn | 02 cve-2009-1897  cve-2009-1897  vulnerabilities lpe lpe primary article https://blog.wohin.me/posts/linux-kernel-pwn-02/ lpe cve-2009-1897  vulnerability cve-2009-1897 is a historical local privilege escalation vulnerability in the linux kernel. cve-2009-1897是linux内核中的历史性本地权限提升漏洞。 # linux kernel pwn | 02 cve-2009-1897 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel pwn | 02 cve-2009-1897 resource_label: primary resource_type: article resource_url: https://blog.wohin.me/posts/linux-kernel-pwn-02/ parent_primary_url: https://blog.wohin.me/posts/linux-kernel-pwn-02/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2022: \"linux kernel pwn | 02 cve-2009-1897\"](https://blog.wohin.me/posts/linux-kernel-pwn-02/) [article] [cve-2009-1897] cves: cve-2009-1897 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3afa6c4b20f541ce",
      "item_id": "cae1d8c3c88335d2",
      "slug": "2021-vulnerabilities-lpe-typhoon-mangkhut-one-click-remote-universal-root-formed-with-two-vulnerabilities-prim",
      "year": 2021,
      "title": "Typhoon Mangkhut: One-click Remote Universal Root Formed with Two Vulnerabilities",
      "item_title": "Typhoon Mangkhut: One-click Remote Universal Root Formed with Two Vulnerabilities",
      "authors": [],
      "cves": [
        "CVE-2020-0423"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/USA21/Wednesday-Handouts/us-21-Typhoon-Mangkhut-One-Click-Remote-Universal-Root-Formed-With-Two-Vulnerabilities.pdf",
      "primary_url": "https://i.blackhat.com/USA21/Wednesday-Handouts/us-21-Typhoon-Mangkhut-One-Click-Remote-Universal-Root-Formed-With-Two-Vulnerabilities.pdf",
      "parent_primary_url": "https://i.blackhat.com/USA21/Wednesday-Handouts/us-21-Typhoon-Mangkhut-One-Click-Remote-Universal-Root-Formed-With-Two-Vulnerabilities.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-typhoon-mangkhut-one-click-remote-universal-root-formed-with-two-vulnerabilities-prim.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Typhoon Mangkhut: One-click Remote Universal Root Formed with Two Vulnerabilities record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Typhoon Mangkhut: One-click Remote Universal Root Formed with Two Vulnerabilities resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/USA21/Wednesday-Handouts/us-21-Typhoon-Mangkhut-One-Click-Remote-Universal-Root-Formed-With-Two-Vulnerabilities.pdf parent_primary_url: https://i.blackhat.com/USA21/Wednesday-Handouts/us-21-Typhoon-Mangkhut-One-Click-Remote-Universal-Root-Formed-With-Two-Vulnerabilities.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Typhoon Mangkhut: One-click Remote Universal Root Formed with Two Vulnerabilities\"](https://i.blackhat.com/USA21/Wednesday-Handouts/us-21-Typhoon-Mangkhut-One-Click-Remote-Un",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/USA21/Wednesday-Handouts/us-21-Typhoon-Mangkhut-One-Click-Remote-Universal-Root-Formed-With-Two-Vulnerabilities.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=a1vyt6iWmS4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/USA21/Wednesday-Handouts/us-21-Typhoon-Mangkhut-One-Click-Remote-Universal-Root-Formed-With-Two-Vulnerabilities.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=a1vyt6iWmS4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2020-0423"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2020-0423 involves vulnerabilities that can lead to local privilege escalation.",
      "summary_zh": "CVE-2020-0423涉及可能导致本地权限提升的漏洞。",
      "source_markdown": "[2021: \"Typhoon Mangkhut: One-click Remote Universal Root Formed with Two Vulnerabilities\"](https://i.blackhat.com/USA21/Wednesday-Handouts/us-21-Typhoon-Mangkhut-One-Click-Remote-Universal-Root-Formed-With-Two-Vulnerabilities.pdf) [slides] [[video](https://www.youtube.com/watch?v=a1vyt6iWmS4)] [CVE-2020-0423]",
      "search_text": "typhoon mangkhut: one-click remote universal root formed with two vulnerabilities typhoon mangkhut: one-click remote universal root formed with two vulnerabilities  cve-2020-0423  vulnerabilities lpe lpe primary slides https://i.blackhat.com/usa21/wednesday-handouts/us-21-typhoon-mangkhut-one-click-remote-universal-root-formed-with-two-vulnerabilities.pdf lpe cve-2020-0423  vulnerability cve-2020-0423 involves vulnerabilities that can lead to local privilege escalation. cve-2020-0423涉及可能导致本地权限提升的漏洞。 # typhoon mangkhut: one-click remote universal root formed with two vulnerabilities record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: typhoon mangkhut: one-click remote universal root formed with two vulnerabilities resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/usa21/wednesday-handouts/us-21-typhoon-mangkhut-one-click-remote-universal-root-formed-with-two-vulnerabilities.pdf parent_primary_url: https://i.blackhat.com/usa21/wednesday-handouts/us-21-typhoon-mangkhut-one-click-remote-universal-root-formed-with-two-vulnerabilities.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"typhoon mangkhut: one-click remote universal root formed with two vulnerabilities\"](https://i.blackhat.com/usa21/wednesday-handouts/us-21-typhoon-mangkhut-one-click-remote-un unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ec6776daffa71d7c",
      "item_id": "cae1d8c3c88335d2",
      "slug": "2021-vulnerabilities-lpe-typhoon-mangkhut-one-click-remote-universal-root-formed-with-two-vulnerabilities-vide",
      "year": 2021,
      "title": "Typhoon Mangkhut: One-click Remote Universal Root Formed with Two Vulnerabilities · video",
      "item_title": "Typhoon Mangkhut: One-click Remote Universal Root Formed with Two Vulnerabilities",
      "authors": [],
      "cves": [
        "CVE-2020-0423"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=a1vyt6iWmS4",
      "primary_url": "https://www.youtube.com/watch?v=a1vyt6iWmS4",
      "parent_primary_url": "https://i.blackhat.com/USA21/Wednesday-Handouts/us-21-Typhoon-Mangkhut-One-Click-Remote-Universal-Root-Formed-With-Two-Vulnerabilities.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-typhoon-mangkhut-one-click-remote-universal-root-formed-with-two-vulnerabilities-vide.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Typhoon Mangkhut: One-click Remote Universal Root Formed with Two Vulnerabilities · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Typhoon Mangkhut: One-click Remote Universal Root Formed with Two Vulnerabilities resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=a1vyt6iWmS4 parent_primary_url: https://i.blackhat.com/USA21/Wednesday-Handouts/us-21-Typhoon-Mangkhut-One-Click-Remote-Universal-Root-Formed-With-Two-Vulnerabilities.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Typhoon Mangkhut: One-click Remote Universal Root Formed with Two Vulnerabilities\"](https://i.blackhat.com/USA21/Wednesday-Handouts/us-21-Typhoon-Mangkhut-One-Click-Remote-Universal-Root-Formed-With-Two-Vulnerabilities.pdf) [slides] [[video](https://www.youtube.co",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/USA21/Wednesday-Handouts/us-21-Typhoon-Mangkhut-One-Click-Remote-Universal-Root-Formed-With-Two-Vulnerabilities.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=a1vyt6iWmS4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/USA21/Wednesday-Handouts/us-21-Typhoon-Mangkhut-One-Click-Remote-Universal-Root-Formed-With-Two-Vulnerabilities.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=a1vyt6iWmS4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2020-0423"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2020-0423 is presented in a video discussing local privilege escalation vulnerabilities.",
      "summary_zh": "CVE-2020-0423在视频中讨论了本地权限提升漏洞。",
      "source_markdown": "[2021: \"Typhoon Mangkhut: One-click Remote Universal Root Formed with Two Vulnerabilities\"](https://i.blackhat.com/USA21/Wednesday-Handouts/us-21-Typhoon-Mangkhut-One-Click-Remote-Universal-Root-Formed-With-Two-Vulnerabilities.pdf) [slides] [[video](https://www.youtube.com/watch?v=a1vyt6iWmS4)] [CVE-2020-0423]",
      "search_text": "typhoon mangkhut: one-click remote universal root formed with two vulnerabilities · video typhoon mangkhut: one-click remote universal root formed with two vulnerabilities  cve-2020-0423  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=a1vyt6iwms4 lpe cve-2020-0423  vulnerability cve-2020-0423 is presented in a video discussing local privilege escalation vulnerabilities. cve-2020-0423在视频中讨论了本地权限提升漏洞。 # typhoon mangkhut: one-click remote universal root formed with two vulnerabilities · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: typhoon mangkhut: one-click remote universal root formed with two vulnerabilities resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=a1vyt6iwms4 parent_primary_url: https://i.blackhat.com/usa21/wednesday-handouts/us-21-typhoon-mangkhut-one-click-remote-universal-root-formed-with-two-vulnerabilities.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"typhoon mangkhut: one-click remote universal root formed with two vulnerabilities\"](https://i.blackhat.com/usa21/wednesday-handouts/us-21-typhoon-mangkhut-one-click-remote-universal-root-formed-with-two-vulnerabilities.pdf) [slides] [[video](https://www.youtube.co unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "077a51decaa69658",
      "item_id": "46d60a6093617410",
      "slug": "2021-vulnerabilities-lpe-analysis-and-exploitation-of-cve-2021-28664-for-android-privilege-escalation-primary-",
      "year": 2021,
      "title": "Analysis and Exploitation of CVE-2021-28664 for Android Privilege Escalation",
      "item_title": "Analysis and Exploitation of CVE-2021-28664 for Android Privilege Escalation",
      "authors": [
        "Bernard Lampe"
      ],
      "cves": [
        "CVE-2021-28664"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.bernardlampe.com/pub/Grayshift-CVE-2021-28664.pdf",
      "primary_url": "https://www.bernardlampe.com/pub/Grayshift-CVE-2021-28664.pdf",
      "parent_primary_url": "https://www.bernardlampe.com/pub/Grayshift-CVE-2021-28664.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-analysis-and-exploitation-of-cve-2021-28664-for-android-privilege-escalation-primary-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Analysis and Exploitation of CVE-2021-28664 for Android Privilege Escalation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Analysis and Exploitation of CVE-2021-28664 for Android Privilege Escalation resource_label: primary resource_type: slides resource_url: https://www.bernardlampe.com/pub/Grayshift-CVE-2021-28664.pdf parent_primary_url: https://www.bernardlampe.com/pub/Grayshift-CVE-2021-28664.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Analysis and Exploitation of CVE-2021-28664 for Android Privilege Escalation\" by Bernard Lampe](https://www.bernardlampe.com/pub/Grayshift-CVE-2021-28664.pdf) [slides] [CVE-2021-28664] cves: CVE-2021-28664 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices u",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.bernardlampe.com/pub/Grayshift-CVE-2021-28664.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.bernardlampe.com/pub/Grayshift-CVE-2021-28664.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "CVE-2021-28664"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2021-28664 is a local privilege escalation vulnerability affecting Android devices.",
      "summary_zh": "CVE-2021-28664是影响Android设备的本地权限提升漏洞。",
      "source_markdown": "[2021: \"Analysis and Exploitation of CVE-2021-28664 for Android Privilege Escalation\" by Bernard Lampe](https://www.bernardlampe.com/pub/Grayshift-CVE-2021-28664.pdf) [slides] [CVE-2021-28664]",
      "search_text": "analysis and exploitation of cve-2021-28664 for android privilege escalation analysis and exploitation of cve-2021-28664 for android privilege escalation bernard lampe cve-2021-28664  vulnerabilities lpe lpe primary slides https://www.bernardlampe.com/pub/grayshift-cve-2021-28664.pdf lpe android cve-2021-28664  vulnerability cve-2021-28664 is a local privilege escalation vulnerability affecting android devices. cve-2021-28664是影响android设备的本地权限提升漏洞。 # analysis and exploitation of cve-2021-28664 for android privilege escalation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: analysis and exploitation of cve-2021-28664 for android privilege escalation resource_label: primary resource_type: slides resource_url: https://www.bernardlampe.com/pub/grayshift-cve-2021-28664.pdf parent_primary_url: https://www.bernardlampe.com/pub/grayshift-cve-2021-28664.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"analysis and exploitation of cve-2021-28664 for android privilege escalation\" by bernard lampe](https://www.bernardlampe.com/pub/grayshift-cve-2021-28664.pdf) [slides] [cve-2021-28664] cves: cve-2021-28664 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices u yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "9d1803f7bd82a00a",
      "item_id": "5b648d449b79699b",
      "slug": "2021-vulnerabilities-lpe-your-trash-kernel-bug-my-precious-0-day-primary-108ac522",
      "year": 2021,
      "title": "Your Trash Kernel Bug, My Precious 0-day",
      "item_title": "Your Trash Kernel Bug, My Precious 0-day",
      "authors": [
        "Zhenpeng Lin"
      ],
      "cves": [
        "CVE-2021-3715"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://zplin.me/talks/BHEU21_trash_kernel_bug.pdf",
      "primary_url": "https://zplin.me/talks/BHEU21_trash_kernel_bug.pdf",
      "parent_primary_url": "https://zplin.me/talks/BHEU21_trash_kernel_bug.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-your-trash-kernel-bug-my-precious-0-day-primary-108ac522.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Your Trash Kernel Bug, My Precious 0-day record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Your Trash Kernel Bug, My Precious 0-day resource_label: primary resource_type: slides resource_url: https://zplin.me/talks/BHEU21_trash_kernel_bug.pdf parent_primary_url: https://zplin.me/talks/BHEU21_trash_kernel_bug.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Your Trash Kernel Bug, My Precious 0-day\" by Zhenpeng Lin](https://zplin.me/talks/BHEU21_trash_kernel_bug.pdf) [slides] [CVE-2021-3715] cves: CVE-2021-3715 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux.",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://zplin.me/talks/BHEU21_trash_kernel_bug.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://zplin.me/talks/BHEU21_trash_kernel_bug.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2021-3715"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2021-3715 is a local privilege escalation vulnerability in the Linux kernel.",
      "summary_zh": "CVE-2021-3715是Linux内核中的本地权限提升漏洞。",
      "source_markdown": "[2021: \"Your Trash Kernel Bug, My Precious 0-day\" by Zhenpeng Lin](https://zplin.me/talks/BHEU21_trash_kernel_bug.pdf) [slides] [CVE-2021-3715]",
      "search_text": "your trash kernel bug, my precious 0-day your trash kernel bug, my precious 0-day zhenpeng lin cve-2021-3715  vulnerabilities lpe lpe primary slides https://zplin.me/talks/bheu21_trash_kernel_bug.pdf lpe cve-2021-3715  vulnerability cve-2021-3715 is a local privilege escalation vulnerability in the linux kernel. cve-2021-3715是linux内核中的本地权限提升漏洞。 # your trash kernel bug, my precious 0-day record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: your trash kernel bug, my precious 0-day resource_label: primary resource_type: slides resource_url: https://zplin.me/talks/bheu21_trash_kernel_bug.pdf parent_primary_url: https://zplin.me/talks/bheu21_trash_kernel_bug.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"your trash kernel bug, my precious 0-day\" by zhenpeng lin](https://zplin.me/talks/bheu21_trash_kernel_bug.pdf) [slides] [cve-2021-3715] cves: cve-2021-3715 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "01858fe92c408a2b",
      "item_id": "deee9379378326d7",
      "slug": "2021-vulnerabilities-lpe-cve-2021-42008-exploiting-a-16-year-old-vulnerability-in-the-linux-6pack-driver-prima",
      "year": 2021,
      "title": "[CVE-2021-42008] Exploiting A 16-Year-Old Vulnerability In The Linux 6pack Driver",
      "item_title": "[CVE-2021-42008] Exploiting A 16-Year-Old Vulnerability In The Linux 6pack Driver",
      "authors": [],
      "cves": [
        "CVE-2021-42008"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://syst3mfailure.io/sixpack-slab-out-of-bounds",
      "primary_url": "https://syst3mfailure.io/sixpack-slab-out-of-bounds",
      "parent_primary_url": "https://syst3mfailure.io/sixpack-slab-out-of-bounds",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-cve-2021-42008-exploiting-a-16-year-old-vulnerability-in-the-linux-6pack-driver-prima.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# [CVE-2021-42008] Exploiting A 16-Year-Old Vulnerability In The Linux 6pack Driver record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: [CVE-2021-42008] Exploiting A 16-Year-Old Vulnerability In The Linux 6pack Driver resource_label: primary resource_type: article resource_url: https://syst3mfailure.io/sixpack-slab-out-of-bounds parent_primary_url: https://syst3mfailure.io/sixpack-slab-out-of-bounds source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"[CVE-2021-42008] Exploiting A 16-Year-Old Vulnerability In The Linux 6pack Driver\"](https://syst3mfailure.io/sixpack-slab-out-of-bounds) [article] [CVE-2021-42008] cves: CVE-2021-42008 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://syst3mfailure.io/sixpack-slab-out-of-bounds"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://syst3mfailure.io/sixpack-slab-out-of-bounds"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2021-42008"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2021-42008 is a local privilege escalation vulnerability in the Linux 6pack driver.",
      "summary_zh": "CVE-2021-42008是Linux 6pack驱动中的本地权限提升漏洞。",
      "source_markdown": "[2021: \"[CVE-2021-42008] Exploiting A 16-Year-Old Vulnerability In The Linux 6pack Driver\"](https://syst3mfailure.io/sixpack-slab-out-of-bounds) [article] [CVE-2021-42008]",
      "search_text": "[cve-2021-42008] exploiting a 16-year-old vulnerability in the linux 6pack driver [cve-2021-42008] exploiting a 16-year-old vulnerability in the linux 6pack driver  cve-2021-42008  vulnerabilities lpe lpe primary article https://syst3mfailure.io/sixpack-slab-out-of-bounds lpe cve-2021-42008  vulnerability cve-2021-42008 is a local privilege escalation vulnerability in the linux 6pack driver. cve-2021-42008是linux 6pack驱动中的本地权限提升漏洞。 # [cve-2021-42008] exploiting a 16-year-old vulnerability in the linux 6pack driver record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: [cve-2021-42008] exploiting a 16-year-old vulnerability in the linux 6pack driver resource_label: primary resource_type: article resource_url: https://syst3mfailure.io/sixpack-slab-out-of-bounds parent_primary_url: https://syst3mfailure.io/sixpack-slab-out-of-bounds source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"[cve-2021-42008] exploiting a 16-year-old vulnerability in the linux 6pack driver\"](https://syst3mfailure.io/sixpack-slab-out-of-bounds) [article] [cve-2021-42008] cves: cve-2021-42008 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9a701e23995a7052",
      "item_id": "51823a32acab4d9b",
      "slug": "2021-vulnerabilities-lpe-pwn2own-local-escalation-of-privilege-category-ubuntu-desktop-exploit-primary-ea73003",
      "year": 2021,
      "title": "PWN2OWN Local Escalation of Privilege Category, Ubuntu Desktop Exploit",
      "item_title": "PWN2OWN Local Escalation of Privilege Category, Ubuntu Desktop Exploit",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://flatt.tech/assets/reports/210401_pwn2own/whitepaper.pdf",
      "primary_url": "https://flatt.tech/assets/reports/210401_pwn2own/whitepaper.pdf",
      "parent_primary_url": "https://flatt.tech/assets/reports/210401_pwn2own/whitepaper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-pwn2own-local-escalation-of-privilege-category-ubuntu-desktop-exploit-primary-ea73003.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PWN2OWN Local Escalation of Privilege Category, Ubuntu Desktop Exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: PWN2OWN Local Escalation of Privilege Category, Ubuntu Desktop Exploit resource_label: primary resource_type: article resource_url: https://flatt.tech/assets/reports/210401_pwn2own/whitepaper.pdf parent_primary_url: https://flatt.tech/assets/reports/210401_pwn2own/whitepaper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"PWN2OWN Local Escalation of Privilege Category, Ubuntu Desktop Exploit\"](https://flatt.tech/assets/reports/210401_pwn2own/whitepaper.pdf) [article] [CVE-TBD] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_i",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://flatt.tech/assets/reports/210401_pwn2own/whitepaper.pdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://flatt.tech/assets/reports/210401_pwn2own/whitepaper.pdf"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The PWN2OWN event highlights local privilege escalation vulnerabilities in Ubuntu.",
      "summary_zh": "PWN2OWN事件强调了Ubuntu中的本地权限提升漏洞。",
      "source_markdown": "[2021: \"PWN2OWN Local Escalation of Privilege Category, Ubuntu Desktop Exploit\"](https://flatt.tech/assets/reports/210401_pwn2own/whitepaper.pdf) [article] [CVE-TBD]",
      "search_text": "pwn2own local escalation of privilege category, ubuntu desktop exploit pwn2own local escalation of privilege category, ubuntu desktop exploit    vulnerabilities lpe lpe primary article https://flatt.tech/assets/reports/210401_pwn2own/whitepaper.pdf lpe  vulnerability the pwn2own event highlights local privilege escalation vulnerabilities in ubuntu. pwn2own事件强调了ubuntu中的本地权限提升漏洞。 # pwn2own local escalation of privilege category, ubuntu desktop exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: pwn2own local escalation of privilege category, ubuntu desktop exploit resource_label: primary resource_type: article resource_url: https://flatt.tech/assets/reports/210401_pwn2own/whitepaper.pdf parent_primary_url: https://flatt.tech/assets/reports/210401_pwn2own/whitepaper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"pwn2own local escalation of privilege category, ubuntu desktop exploit\"](https://flatt.tech/assets/reports/210401_pwn2own/whitepaper.pdf) [article] [cve-tbd] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_i unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3a652bf13336aa7b",
      "item_id": "6ccd22a83a079fea",
      "slug": "2021-vulnerabilities-lpe-reversing-and-exploiting-samsung-s-npu-primary-a6d79151",
      "year": 2021,
      "title": "Reversing and Exploiting Samsung's NPU",
      "item_title": "Reversing and Exploiting Samsung's NPU",
      "authors": [
        "Maxime Peterlin"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.impalabs.com/2103_reversing-samsung-npu.html",
      "primary_url": "https://blog.impalabs.com/2103_reversing-samsung-npu.html",
      "parent_primary_url": "https://blog.impalabs.com/2103_reversing-samsung-npu.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-reversing-and-exploiting-samsung-s-npu-primary-a6d79151.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Reversing and Exploiting Samsung's NPU record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Reversing and Exploiting Samsung's NPU resource_label: primary resource_type: article resource_url: https://blog.impalabs.com/2103_reversing-samsung-npu.html parent_primary_url: https://blog.impalabs.com/2103_reversing-samsung-npu.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Reversing and Exploiting Samsung's NPU\" by Maxime Peterlin](https://blog.impalabs.com/2103_reversing-samsung-npu.html) [article] [[part 2](https://blog.impalabs.com/2110_exploiting-samsung-npu.html)] [slides](https://github.com/Impalabs/conferences/blob/master/2021-barbhack21/21-Barbhack21-Reversing_and_Exploiting_Samsungs_Neural_Processing_Unit.pdf) cves: none android_impact_status: yes android_impact_reason: mention",
      "link_types": [
        "article",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.impalabs.com/2103_reversing-samsung-npu.html"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://blog.impalabs.com/2110_exploiting-samsung-npu.html"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://github.com/Impalabs/conferences/blob/master/2021-barbhack21/21-Barbhack21-Reversing_and_Exploiting_Samsungs_Neural_Processing_Unit.pdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.impalabs.com/2103_reversing-samsung-npu.html"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://blog.impalabs.com/2110_exploiting-samsung-npu.html"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://github.com/Impalabs/conferences/blob/master/2021-barbhack21/21-Barbhack21-Reversing_and_Exploiting_Samsungs_Neural_Processing_Unit.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Impalabs/conferences/blob/master/2021-barbhack21/21-Barbhack21-Reversing_and_Exploiting_Samsungs_Neural_Processing_Unit.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions an Android OEM/device family",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "NPU",
        "Samsung"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This resource discusses the vulnerabilities in Samsung's NPU and their exploitation.",
      "summary_zh": "该资源讨论了三星NPU中的漏洞及其利用。",
      "source_markdown": "[2021: \"Reversing and Exploiting Samsung's NPU\" by Maxime Peterlin](https://blog.impalabs.com/2103_reversing-samsung-npu.html) [article] [[part 2](https://blog.impalabs.com/2110_exploiting-samsung-npu.html)] [slides](https://github.com/Impalabs/conferences/blob/master/2021-barbhack21/21-Barbhack21-Reversing_and_Exploiting_Samsungs_Neural_Processing_Unit.pdf)",
      "search_text": "reversing and exploiting samsung's npu reversing and exploiting samsung's npu maxime peterlin   vulnerabilities lpe lpe primary article https://blog.impalabs.com/2103_reversing-samsung-npu.html lpe npu samsung  vulnerability research this resource discusses the vulnerabilities in samsung's npu and their exploitation. 该资源讨论了三星npu中的漏洞及其利用。 # reversing and exploiting samsung's npu record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: reversing and exploiting samsung's npu resource_label: primary resource_type: article resource_url: https://blog.impalabs.com/2103_reversing-samsung-npu.html parent_primary_url: https://blog.impalabs.com/2103_reversing-samsung-npu.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"reversing and exploiting samsung's npu\" by maxime peterlin](https://blog.impalabs.com/2103_reversing-samsung-npu.html) [article] [[part 2](https://blog.impalabs.com/2110_exploiting-samsung-npu.html)] [slides](https://github.com/impalabs/conferences/blob/master/2021-barbhack21/21-barbhack21-reversing_and_exploiting_samsungs_neural_processing_unit.pdf) cves: none android_impact_status: yes android_impact_reason: mention yes mentions an android oem/device family no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "efbd9a104db35717",
      "item_id": "6ccd22a83a079fea",
      "slug": "2021-vulnerabilities-lpe-reversing-and-exploiting-samsung-s-npu-part-2-d84c041e",
      "year": 2021,
      "title": "Reversing and Exploiting Samsung's NPU · part 2",
      "item_title": "Reversing and Exploiting Samsung's NPU",
      "authors": [
        "Maxime Peterlin"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "part 2",
      "resource_type": "article",
      "resource_url": "https://blog.impalabs.com/2110_exploiting-samsung-npu.html",
      "primary_url": "https://blog.impalabs.com/2110_exploiting-samsung-npu.html",
      "parent_primary_url": "https://blog.impalabs.com/2103_reversing-samsung-npu.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-reversing-and-exploiting-samsung-s-npu-part-2-d84c041e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Reversing and Exploiting Samsung's NPU · part 2 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Reversing and Exploiting Samsung's NPU resource_label: part 2 resource_type: article resource_url: https://blog.impalabs.com/2110_exploiting-samsung-npu.html parent_primary_url: https://blog.impalabs.com/2103_reversing-samsung-npu.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Reversing and Exploiting Samsung's NPU\" by Maxime Peterlin](https://blog.impalabs.com/2103_reversing-samsung-npu.html) [article] [[part 2](https://blog.impalabs.com/2110_exploiting-samsung-npu.html)] [slides](https://github.com/Impalabs/conferences/blob/master/2021-barbhack21/21-Barbhack21-Reversing_and_Exploiting_Samsungs_Neural_Processing_Unit.pdf) cves: none android_impact_status: yes android_impact_reason",
      "link_types": [
        "article",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.impalabs.com/2103_reversing-samsung-npu.html"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://blog.impalabs.com/2110_exploiting-samsung-npu.html"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://github.com/Impalabs/conferences/blob/master/2021-barbhack21/21-Barbhack21-Reversing_and_Exploiting_Samsungs_Neural_Processing_Unit.pdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.impalabs.com/2103_reversing-samsung-npu.html"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://blog.impalabs.com/2110_exploiting-samsung-npu.html"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://github.com/Impalabs/conferences/blob/master/2021-barbhack21/21-Barbhack21-Reversing_and_Exploiting_Samsungs_Neural_Processing_Unit.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Impalabs/conferences/blob/master/2021-barbhack21/21-Barbhack21-Reversing_and_Exploiting_Samsungs_Neural_Processing_Unit.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions an Android OEM/device family",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "NPU",
        "Samsung"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "The second part of the resource continues to explore vulnerabilities in Samsung's NPU.",
      "summary_zh": "该资源的第二部分继续探讨三星NPU中的漏洞。",
      "source_markdown": "[2021: \"Reversing and Exploiting Samsung's NPU\" by Maxime Peterlin](https://blog.impalabs.com/2103_reversing-samsung-npu.html) [article] [[part 2](https://blog.impalabs.com/2110_exploiting-samsung-npu.html)] [slides](https://github.com/Impalabs/conferences/blob/master/2021-barbhack21/21-Barbhack21-Reversing_and_Exploiting_Samsungs_Neural_Processing_Unit.pdf)",
      "search_text": "reversing and exploiting samsung's npu · part 2 reversing and exploiting samsung's npu maxime peterlin   vulnerabilities lpe lpe part 2 article https://blog.impalabs.com/2110_exploiting-samsung-npu.html lpe npu samsung  vulnerability research the second part of the resource continues to explore vulnerabilities in samsung's npu. 该资源的第二部分继续探讨三星npu中的漏洞。 # reversing and exploiting samsung's npu · part 2 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: reversing and exploiting samsung's npu resource_label: part 2 resource_type: article resource_url: https://blog.impalabs.com/2110_exploiting-samsung-npu.html parent_primary_url: https://blog.impalabs.com/2103_reversing-samsung-npu.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"reversing and exploiting samsung's npu\" by maxime peterlin](https://blog.impalabs.com/2103_reversing-samsung-npu.html) [article] [[part 2](https://blog.impalabs.com/2110_exploiting-samsung-npu.html)] [slides](https://github.com/impalabs/conferences/blob/master/2021-barbhack21/21-barbhack21-reversing_and_exploiting_samsungs_neural_processing_unit.pdf) cves: none android_impact_status: yes android_impact_reason yes mentions an android oem/device family no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "7ae67242ef5f315b",
      "item_id": "6ccd22a83a079fea",
      "slug": "2021-vulnerabilities-lpe-reversing-and-exploiting-samsung-s-npu-slides-680fe97d",
      "year": 2021,
      "title": "Reversing and Exploiting Samsung's NPU · slides",
      "item_title": "Reversing and Exploiting Samsung's NPU",
      "authors": [
        "Maxime Peterlin"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://github.com/Impalabs/conferences/blob/master/2021-barbhack21/21-Barbhack21-Reversing_and_Exploiting_Samsungs_Neural_Processing_Unit.pdf",
      "primary_url": "https://github.com/Impalabs/conferences/blob/master/2021-barbhack21/21-Barbhack21-Reversing_and_Exploiting_Samsungs_Neural_Processing_Unit.pdf",
      "parent_primary_url": "https://blog.impalabs.com/2103_reversing-samsung-npu.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-reversing-and-exploiting-samsung-s-npu-slides-680fe97d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Reversing and Exploiting Samsung's NPU · slides record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Reversing and Exploiting Samsung's NPU resource_label: slides resource_type: slides resource_url: https://github.com/Impalabs/conferences/blob/master/2021-barbhack21/21-Barbhack21-Reversing_and_Exploiting_Samsungs_Neural_Processing_Unit.pdf parent_primary_url: https://blog.impalabs.com/2103_reversing-samsung-npu.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Reversing and Exploiting Samsung's NPU\" by Maxime Peterlin](https://blog.impalabs.com/2103_reversing-samsung-npu.html) [article] [[part 2](https://blog.impalabs.com/2110_exploiting-samsung-npu.html)] [slides](https://github.com/Impalabs/conferences/blob/master/2021-barbhack21/21-Barbhack21-Reversing_and_Exploiting_Samsungs_Neur",
      "link_types": [
        "article",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.impalabs.com/2103_reversing-samsung-npu.html"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://blog.impalabs.com/2110_exploiting-samsung-npu.html"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://github.com/Impalabs/conferences/blob/master/2021-barbhack21/21-Barbhack21-Reversing_and_Exploiting_Samsungs_Neural_Processing_Unit.pdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.impalabs.com/2103_reversing-samsung-npu.html"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://blog.impalabs.com/2110_exploiting-samsung-npu.html"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://github.com/Impalabs/conferences/blob/master/2021-barbhack21/21-Barbhack21-Reversing_and_Exploiting_Samsungs_Neural_Processing_Unit.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Impalabs/conferences/blob/master/2021-barbhack21/21-Barbhack21-Reversing_and_Exploiting_Samsungs_Neural_Processing_Unit.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions an Android OEM/device family",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Research on reversing and exploiting Samsung's NPU highlights potential local privilege escalation vulnerabilities.",
      "summary_zh": "对三星NPU的逆向工程和利用研究突显了潜在的本地权限提升漏洞。",
      "source_markdown": "[2021: \"Reversing and Exploiting Samsung's NPU\" by Maxime Peterlin](https://blog.impalabs.com/2103_reversing-samsung-npu.html) [article] [[part 2](https://blog.impalabs.com/2110_exploiting-samsung-npu.html)] [slides](https://github.com/Impalabs/conferences/blob/master/2021-barbhack21/21-Barbhack21-Reversing_and_Exploiting_Samsungs_Neural_Processing_Unit.pdf)",
      "search_text": "reversing and exploiting samsung's npu · slides reversing and exploiting samsung's npu maxime peterlin   vulnerabilities lpe lpe slides slides https://github.com/impalabs/conferences/blob/master/2021-barbhack21/21-barbhack21-reversing_and_exploiting_samsungs_neural_processing_unit.pdf lpe  exploit research on reversing and exploiting samsung's npu highlights potential local privilege escalation vulnerabilities. 对三星npu的逆向工程和利用研究突显了潜在的本地权限提升漏洞。 # reversing and exploiting samsung's npu · slides record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: reversing and exploiting samsung's npu resource_label: slides resource_type: slides resource_url: https://github.com/impalabs/conferences/blob/master/2021-barbhack21/21-barbhack21-reversing_and_exploiting_samsungs_neural_processing_unit.pdf parent_primary_url: https://blog.impalabs.com/2103_reversing-samsung-npu.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"reversing and exploiting samsung's npu\" by maxime peterlin](https://blog.impalabs.com/2103_reversing-samsung-npu.html) [article] [[part 2](https://blog.impalabs.com/2110_exploiting-samsung-npu.html)] [slides](https://github.com/impalabs/conferences/blob/master/2021-barbhack21/21-barbhack21-reversing_and_exploiting_samsungs_neur yes mentions an android oem/device family no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "3b9152761e11d5e9",
      "item_id": "86793903b0c37afa",
      "slug": "2021-vulnerabilities-lpe-fall-of-the-machines-exploiting-the-qualcomm-npu-neural-processing-unit-kernel-driver",
      "year": 2021,
      "title": "Fall of the machines: Exploiting the Qualcomm NPU (neural processing unit) kernel driver",
      "item_title": "Fall of the machines: Exploiting the Qualcomm NPU (neural processing unit) kernel driver",
      "authors": [
        "Man Yue Mo"
      ],
      "cves": [
        "CVE-2021-1940",
        "CVE-2021-1968",
        "CVE-2021-1969"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://securitylab.github.com/research/qualcomm_npu/",
      "primary_url": "https://securitylab.github.com/research/qualcomm_npu/",
      "parent_primary_url": "https://securitylab.github.com/research/qualcomm_npu/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-fall-of-the-machines-exploiting-the-qualcomm-npu-neural-processing-unit-kernel-driver.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fall of the machines: Exploiting the Qualcomm NPU (neural processing unit) kernel driver record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Fall of the machines: Exploiting the Qualcomm NPU (neural processing unit) kernel driver resource_label: primary resource_type: article resource_url: https://securitylab.github.com/research/qualcomm_npu/ parent_primary_url: https://securitylab.github.com/research/qualcomm_npu/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Fall of the machines: Exploiting the Qualcomm NPU (neural processing unit) kernel driver\" by Man Yue Mo](https://securitylab.github.com/research/qualcomm_npu/) [article] [CVE-2021-1940, CVE-2021-1968, CVE-2021-1969] cves: CVE-2021-1940, CVE-2021-1968, CVE-2021-1969 android_impact_status: possible android_impact_reason: mentions",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://securitylab.github.com/research/qualcomm_npu/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://securitylab.github.com/research/qualcomm_npu/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://securitylab.github.com/research/qualcomm_npu/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions Qualcomm/Adreno Android SoC components",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "NPU",
        "Qualcomm"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This article details the exploitation of vulnerabilities in the Qualcomm NPU kernel driver.",
      "summary_zh": "本文详细介绍了对高通NPU内核驱动程序漏洞的利用。",
      "source_markdown": "[2021: \"Fall of the machines: Exploiting the Qualcomm NPU (neural processing unit) kernel driver\" by Man Yue Mo](https://securitylab.github.com/research/qualcomm_npu/) [article] [CVE-2021-1940, CVE-2021-1968, CVE-2021-1969]",
      "search_text": "fall of the machines: exploiting the qualcomm npu (neural processing unit) kernel driver fall of the machines: exploiting the qualcomm npu (neural processing unit) kernel driver man yue mo cve-2021-1940 cve-2021-1968 cve-2021-1969  vulnerabilities lpe lpe primary article https://securitylab.github.com/research/qualcomm_npu/ lpe npu qualcomm  vulnerability research this article details the exploitation of vulnerabilities in the qualcomm npu kernel driver. 本文详细介绍了对高通npu内核驱动程序漏洞的利用。 # fall of the machines: exploiting the qualcomm npu (neural processing unit) kernel driver record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: fall of the machines: exploiting the qualcomm npu (neural processing unit) kernel driver resource_label: primary resource_type: article resource_url: https://securitylab.github.com/research/qualcomm_npu/ parent_primary_url: https://securitylab.github.com/research/qualcomm_npu/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"fall of the machines: exploiting the qualcomm npu (neural processing unit) kernel driver\" by man yue mo](https://securitylab.github.com/research/qualcomm_npu/) [article] [cve-2021-1940, cve-2021-1968, cve-2021-1969] cves: cve-2021-1940, cve-2021-1968, cve-2021-1969 android_impact_status: possible android_impact_reason: mentions possible mentions qualcomm/adreno android soc components no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "b72ce8cb05d85c21",
      "item_id": "225c649cdc8893e3",
      "slug": "2021-vulnerabilities-lpe-exploiting-cve-2021-43267-primary-18648d28",
      "year": 2021,
      "title": "Exploiting CVE-2021-43267",
      "item_title": "Exploiting CVE-2021-43267",
      "authors": [
        "Blasty"
      ],
      "cves": [
        "CVE-2021-43267"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://haxx.in/posts/pwning-tipc/",
      "primary_url": "https://haxx.in/posts/pwning-tipc/",
      "parent_primary_url": "https://haxx.in/posts/pwning-tipc/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-exploiting-cve-2021-43267-primary-18648d28.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting CVE-2021-43267 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting CVE-2021-43267 resource_label: primary resource_type: article resource_url: https://haxx.in/posts/pwning-tipc/ parent_primary_url: https://haxx.in/posts/pwning-tipc/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Exploiting CVE-2021-43267\" by Blasty](https://haxx.in/posts/pwning-tipc/) [article] [CVE-2021-43267] cves: CVE-2021-43267 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [artic",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://haxx.in/posts/pwning-tipc/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://haxx.in/posts/pwning-tipc/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "The article provides insights into exploiting CVE-2021-43267.",
      "summary_zh": "该文章提供了对CVE-2021-43267的利用见解。",
      "source_markdown": "[2021: \"Exploiting CVE-2021-43267\" by Blasty](https://haxx.in/posts/pwning-tipc/) [article] [CVE-2021-43267]",
      "search_text": "exploiting cve-2021-43267 exploiting cve-2021-43267 blasty cve-2021-43267  vulnerabilities lpe lpe primary article https://haxx.in/posts/pwning-tipc/ lpe  vulnerability research the article provides insights into exploiting cve-2021-43267. 该文章提供了对cve-2021-43267的利用见解。 # exploiting cve-2021-43267 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting cve-2021-43267 resource_label: primary resource_type: article resource_url: https://haxx.in/posts/pwning-tipc/ parent_primary_url: https://haxx.in/posts/pwning-tipc/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"exploiting cve-2021-43267\" by blasty](https://haxx.in/posts/pwning-tipc/) [article] [cve-2021-43267] cves: cve-2021-43267 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [artic unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "77e09ea018c37938",
      "item_id": "7d6e1857f72119ec",
      "slug": "2021-vulnerabilities-lpe-how-a-simple-linux-kernel-memory-corruption-bug-can-lead-to-complete-system-compromis",
      "year": 2021,
      "title": "How a simple Linux kernel memory corruption bug can lead to complete system compromise",
      "item_title": "How a simple Linux kernel memory corruption bug can lead to complete system compromise",
      "authors": [
        "Jann Horn"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2021/10/how-simple-linux-kernel-memory.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2021/10/how-simple-linux-kernel-memory.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2021/10/how-simple-linux-kernel-memory.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-how-a-simple-linux-kernel-memory-corruption-bug-can-lead-to-complete-system-compromis.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# How a simple Linux kernel memory corruption bug can lead to complete system compromise record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: How a simple Linux kernel memory corruption bug can lead to complete system compromise resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2021/10/how-simple-linux-kernel-memory.html parent_primary_url: https://googleprojectzero.blogspot.com/2021/10/how-simple-linux-kernel-memory.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"How a simple Linux kernel memory corruption bug can lead to complete system compromise\" by Jann Horn](https://googleprojectzero.blogspot.com/2021/10/how-simple-linux-kernel-memory.html) [article] [CVE-TBD] cves: none android_impact_status: unknown android_impact_reason: Linu",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2021/10/how-simple-linux-kernel-memory.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2021/10/how-simple-linux-kernel-memory.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "memory corruption"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This resource explains how a memory corruption bug in the Linux kernel can lead to system compromise.",
      "summary_zh": "该资源解释了Linux内核中的内存损坏漏洞如何导致系统被攻陷。",
      "source_markdown": "[2021: \"How a simple Linux kernel memory corruption bug can lead to complete system compromise\" by Jann Horn](https://googleprojectzero.blogspot.com/2021/10/how-simple-linux-kernel-memory.html) [article] [CVE-TBD]",
      "search_text": "how a simple linux kernel memory corruption bug can lead to complete system compromise how a simple linux kernel memory corruption bug can lead to complete system compromise jann horn   vulnerabilities lpe lpe primary article https://googleprojectzero.blogspot.com/2021/10/how-simple-linux-kernel-memory.html lpe memory corruption  vulnerability research this resource explains how a memory corruption bug in the linux kernel can lead to system compromise. 该资源解释了linux内核中的内存损坏漏洞如何导致系统被攻陷。 # how a simple linux kernel memory corruption bug can lead to complete system compromise record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: how a simple linux kernel memory corruption bug can lead to complete system compromise resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2021/10/how-simple-linux-kernel-memory.html parent_primary_url: https://googleprojectzero.blogspot.com/2021/10/how-simple-linux-kernel-memory.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"how a simple linux kernel memory corruption bug can lead to complete system compromise\" by jann horn](https://googleprojectzero.blogspot.com/2021/10/how-simple-linux-kernel-memory.html) [article] [cve-tbd] cves: none android_impact_status: unknown android_impact_reason: linu unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ae124d0a3d496aeb",
      "item_id": "06d1a7db980885b1",
      "slug": "2021-vulnerabilities-lpe-sudump-exploiting-suid-binaries-through-the-kernel-primary-1ffa53f5",
      "year": 2021,
      "title": "SuDump: Exploiting suid binaries through the kernel",
      "item_title": "SuDump: Exploiting suid binaries through the kernel",
      "authors": [
        "Itai Greenhut"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://alephsecurity.com/2021/10/20/sudump/",
      "primary_url": "https://alephsecurity.com/2021/10/20/sudump/",
      "parent_primary_url": "https://alephsecurity.com/2021/10/20/sudump/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-sudump-exploiting-suid-binaries-through-the-kernel-primary-1ffa53f5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SuDump: Exploiting suid binaries through the kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: SuDump: Exploiting suid binaries through the kernel resource_label: primary resource_type: article resource_url: https://alephsecurity.com/2021/10/20/sudump/ parent_primary_url: https://alephsecurity.com/2021/10/20/sudump/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"SuDump: Exploiting suid binaries through the kernel\" by Itai Greenhut](https://alephsecurity.com/2021/10/20/sudump/) [article] [CVE-TBD] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Lin",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://alephsecurity.com/2021/10/20/sudump/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://alephsecurity.com/2021/10/20/sudump/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "suid"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "The article discusses the exploitation of suid binaries through the kernel.",
      "summary_zh": "该文章讨论了通过内核利用suid二进制文件的方式。",
      "source_markdown": "[2021: \"SuDump: Exploiting suid binaries through the kernel\" by Itai Greenhut](https://alephsecurity.com/2021/10/20/sudump/) [article] [CVE-TBD]",
      "search_text": "sudump: exploiting suid binaries through the kernel sudump: exploiting suid binaries through the kernel itai greenhut   vulnerabilities lpe lpe primary article https://alephsecurity.com/2021/10/20/sudump/ lpe suid  vulnerability research the article discusses the exploitation of suid binaries through the kernel. 该文章讨论了通过内核利用suid二进制文件的方式。 # sudump: exploiting suid binaries through the kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: sudump: exploiting suid binaries through the kernel resource_label: primary resource_type: article resource_url: https://alephsecurity.com/2021/10/20/sudump/ parent_primary_url: https://alephsecurity.com/2021/10/20/sudump/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"sudump: exploiting suid binaries through the kernel\" by itai greenhut](https://alephsecurity.com/2021/10/20/sudump/) [article] [cve-tbd] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than lin unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "828122ae12eb8e1f",
      "item_id": "af48aa3408d19321",
      "slug": "2021-vulnerabilities-lpe-cve-2021-34866-writeup-primary-63e36050",
      "year": 2021,
      "title": "CVE-2021-34866 Writeup",
      "item_title": "CVE-2021-34866 Writeup",
      "authors": [
        "HexRabbit"
      ],
      "cves": [
        "CVE-2021-34866"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.hexrabbit.io/2021/11/03/CVE-2021-34866-writeup/",
      "primary_url": "https://blog.hexrabbit.io/2021/11/03/CVE-2021-34866-writeup/",
      "parent_primary_url": "https://blog.hexrabbit.io/2021/11/03/CVE-2021-34866-writeup/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-cve-2021-34866-writeup-primary-63e36050.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2021-34866 Writeup record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2021-34866 Writeup resource_label: primary resource_type: article resource_url: https://blog.hexrabbit.io/2021/11/03/CVE-2021-34866-writeup/ parent_primary_url: https://blog.hexrabbit.io/2021/11/03/CVE-2021-34866-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"CVE-2021-34866 Writeup\" by HexRabbit](https://blog.hexrabbit.io/2021/11/03/CVE-2021-34866-writeup/) [article] [CVE-2021-34866] cves: CVE-2021-34866 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_po",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.hexrabbit.io/2021/11/03/CVE-2021-34866-writeup/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.hexrabbit.io/2021/11/03/CVE-2021-34866-writeup/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This writeup covers the details of CVE-2021-34866.",
      "summary_zh": "该写作涵盖了CVE-2021-34866的详细信息。",
      "source_markdown": "[2021: \"CVE-2021-34866 Writeup\" by HexRabbit](https://blog.hexrabbit.io/2021/11/03/CVE-2021-34866-writeup/) [article] [CVE-2021-34866]",
      "search_text": "cve-2021-34866 writeup cve-2021-34866 writeup hexrabbit cve-2021-34866  vulnerabilities lpe lpe primary article https://blog.hexrabbit.io/2021/11/03/cve-2021-34866-writeup/ lpe  vulnerability research this writeup covers the details of cve-2021-34866. 该写作涵盖了cve-2021-34866的详细信息。 # cve-2021-34866 writeup record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2021-34866 writeup resource_label: primary resource_type: article resource_url: https://blog.hexrabbit.io/2021/11/03/cve-2021-34866-writeup/ parent_primary_url: https://blog.hexrabbit.io/2021/11/03/cve-2021-34866-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"cve-2021-34866 writeup\" by hexrabbit](https://blog.hexrabbit.io/2021/11/03/cve-2021-34866-writeup/) [article] [cve-2021-34866] cves: cve-2021-34866 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_po unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9537c72b9f5e94cc",
      "item_id": "ef92e867a3d83763",
      "slug": "2021-vulnerabilities-lpe-kernel-pwning-with-ebpf-a-love-story-primary-1fa1160d",
      "year": 2021,
      "title": "Kernel Pwning with eBPF: a Love Story",
      "item_title": "Kernel Pwning with eBPF: a Love Story",
      "authors": [
        "Valentina Palmiotti"
      ],
      "cves": [
        "CVE-2021-3490"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.graplsecurity.com/post/kernel-pwning-with-ebpf-a-love-story",
      "primary_url": "https://www.graplsecurity.com/post/kernel-pwning-with-ebpf-a-love-story",
      "parent_primary_url": "https://www.graplsecurity.com/post/kernel-pwning-with-ebpf-a-love-story",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-kernel-pwning-with-ebpf-a-love-story-primary-1fa1160d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Pwning with eBPF: a Love Story record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Kernel Pwning with eBPF: a Love Story resource_label: primary resource_type: article resource_url: https://www.graplsecurity.com/post/kernel-pwning-with-ebpf-a-love-story parent_primary_url: https://www.graplsecurity.com/post/kernel-pwning-with-ebpf-a-love-story source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Kernel Pwning with eBPF: a Love Story\" by Valentina Palmiotti](https://www.graplsecurity.com/post/kernel-pwning-with-ebpf-a-love-story) [article] [CVE-2021-3490] cves: CVE-2021-3490 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: P",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.graplsecurity.com/post/kernel-pwning-with-ebpf-a-love-story"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.graplsecurity.com/post/kernel-pwning-with-ebpf-a-love-story"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "eBPF"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "The article explores kernel exploitation techniques using eBPF.",
      "summary_zh": "该文章探讨了使用eBPF的内核利用技术。",
      "source_markdown": "[2021: \"Kernel Pwning with eBPF: a Love Story\" by Valentina Palmiotti](https://www.graplsecurity.com/post/kernel-pwning-with-ebpf-a-love-story) [article] [CVE-2021-3490]",
      "search_text": "kernel pwning with ebpf: a love story kernel pwning with ebpf: a love story valentina palmiotti cve-2021-3490  vulnerabilities lpe lpe primary article https://www.graplsecurity.com/post/kernel-pwning-with-ebpf-a-love-story lpe ebpf  vulnerability research the article explores kernel exploitation techniques using ebpf. 该文章探讨了使用ebpf的内核利用技术。 # kernel pwning with ebpf: a love story record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: kernel pwning with ebpf: a love story resource_label: primary resource_type: article resource_url: https://www.graplsecurity.com/post/kernel-pwning-with-ebpf-a-love-story parent_primary_url: https://www.graplsecurity.com/post/kernel-pwning-with-ebpf-a-love-story source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"kernel pwning with ebpf: a love story\" by valentina palmiotti](https://www.graplsecurity.com/post/kernel-pwning-with-ebpf-a-love-story) [article] [cve-2021-3490] cves: cve-2021-3490 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: p unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1e17a67789a15bfd",
      "item_id": "0c4b9182e54cf9b1",
      "slug": "2021-vulnerabilities-lpe-the-art-of-exploiting-uaf-primary-6b950310",
      "year": 2021,
      "title": "The Art of Exploiting UAF",
      "item_title": "The Art of Exploiting UAF",
      "authors": [
        "Ret2bpf in Android Kernel\" by Xingyu Jin",
        "Richard Neal"
      ],
      "cves": [
        "CVE-2021-0399"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf",
      "primary_url": "https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf",
      "parent_primary_url": "https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-the-art-of-exploiting-uaf-primary-6b950310.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Art of Exploiting UAF record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The Art of Exploiting UAF resource_label: primary resource_type: article resource_url: https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf parent_primary_url: https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"The Art of Exploiting UAF by Ret2bpf in Android Kernel\" by Xingyu Jin and Richard Neal](https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf) [article] [[slides](https://conference.hitb.org/hitbsecconf2021sin/materials/D1T1%20-%20%20The%20Art%20of%20Exploiting%20UAF%20by%20Ret2bpf%2",
      "link_types": [
        "article",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://conference.hitb.org/hitbsecconf2021sin/materials/D1T1%20-%20%20The%20Art%20of%20Exploiting%20UAF%20by%20Ret2bpf%20in%20Android%20Kernel%20-%20Xingyu%20Jin%20&%20Richard%20Neal.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=7UXtirV1Vzg"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://conference.hitb.org/hitbsecconf2021sin/materials/D1T1%20-%20%20The%20Art%20of%20Exploiting%20UAF%20by%20Ret2bpf%20in%20Android%20Kernel%20-%20Xingyu%20Jin%20&%20Richard%20Neal.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=7UXtirV1Vzg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "UAF",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This resource details the exploitation of UAF vulnerabilities in the Android kernel.",
      "summary_zh": "该资源详细介绍了在Android内核中利用UAF漏洞的方式。",
      "source_markdown": "[2021: \"The Art of Exploiting UAF by Ret2bpf in Android Kernel\" by Xingyu Jin and Richard Neal](https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf) [article] [[slides](https://conference.hitb.org/hitbsecconf2021sin/materials/D1T1%20-%20%20The%20Art%20of%20Exploiting%20UAF%20by%20Ret2bpf%20in%20Android%20Kernel%20-%20Xingyu%20Jin%20&%20Richard%20Neal.pdf)] [[video](https://www.youtube.com/watch?v=7UXtirV1Vzg)] [CVE-2021-0399]",
      "search_text": "the art of exploiting uaf the art of exploiting uaf ret2bpf in android kernel\" by xingyu jin richard neal cve-2021-0399  vulnerabilities lpe lpe primary article https://i.blackhat.com/eu-21/wednesday/eu-21-jin-the-art-of-exploiting-uaf-by-ret2bpf-in-android-kernel-wp.pdf lpe uaf android  vulnerability research this resource details the exploitation of uaf vulnerabilities in the android kernel. 该资源详细介绍了在android内核中利用uaf漏洞的方式。 # the art of exploiting uaf record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the art of exploiting uaf resource_label: primary resource_type: article resource_url: https://i.blackhat.com/eu-21/wednesday/eu-21-jin-the-art-of-exploiting-uaf-by-ret2bpf-in-android-kernel-wp.pdf parent_primary_url: https://i.blackhat.com/eu-21/wednesday/eu-21-jin-the-art-of-exploiting-uaf-by-ret2bpf-in-android-kernel-wp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"the art of exploiting uaf by ret2bpf in android kernel\" by xingyu jin and richard neal](https://i.blackhat.com/eu-21/wednesday/eu-21-jin-the-art-of-exploiting-uaf-by-ret2bpf-in-android-kernel-wp.pdf) [article] [[slides](https://conference.hitb.org/hitbsecconf2021sin/materials/d1t1%20-%20%20the%20art%20of%20exploiting%20uaf%20by%20ret2bpf%2 yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   has-poc poc proof-of-concept"
    },
    {
      "id": "f3fc0d1d49eb66c8",
      "item_id": "0c4b9182e54cf9b1",
      "slug": "2021-vulnerabilities-lpe-the-art-of-exploiting-uaf-slides-94588e83",
      "year": 2021,
      "title": "The Art of Exploiting UAF · slides",
      "item_title": "The Art of Exploiting UAF",
      "authors": [
        "Ret2bpf in Android Kernel\" by Xingyu Jin",
        "Richard Neal"
      ],
      "cves": [
        "CVE-2021-0399"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://conference.hitb.org/hitbsecconf2021sin/materials/D1T1%20-%20%20The%20Art%20of%20Exploiting%20UAF%20by%20Ret2bpf%20in%20Android%20Kernel%20-%20Xingyu%20Jin%20&%20Richard%20Neal.pdf",
      "primary_url": "https://conference.hitb.org/hitbsecconf2021sin/materials/D1T1%20-%20%20The%20Art%20of%20Exploiting%20UAF%20by%20Ret2bpf%20in%20Android%20Kernel%20-%20Xingyu%20Jin%20&%20Richard%20Neal.pdf",
      "parent_primary_url": "https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-the-art-of-exploiting-uaf-slides-94588e83.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Art of Exploiting UAF · slides record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The Art of Exploiting UAF resource_label: slides resource_type: slides resource_url: https://conference.hitb.org/hitbsecconf2021sin/materials/D1T1%20-%20%20The%20Art%20of%20Exploiting%20UAF%20by%20Ret2bpf%20in%20Android%20Kernel%20-%20Xingyu%20Jin%20&%20Richard%20Neal.pdf parent_primary_url: https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"The Art of Exploiting UAF by Ret2bpf in Android Kernel\" by Xingyu Jin and Richard Neal](https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf) [article] [[slides](https://conference.hitb.org/hitbsecco",
      "link_types": [
        "article",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://conference.hitb.org/hitbsecconf2021sin/materials/D1T1%20-%20%20The%20Art%20of%20Exploiting%20UAF%20by%20Ret2bpf%20in%20Android%20Kernel%20-%20Xingyu%20Jin%20&%20Richard%20Neal.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=7UXtirV1Vzg"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://conference.hitb.org/hitbsecconf2021sin/materials/D1T1%20-%20%20The%20Art%20of%20Exploiting%20UAF%20by%20Ret2bpf%20in%20Android%20Kernel%20-%20Xingyu%20Jin%20&%20Richard%20Neal.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=7UXtirV1Vzg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "UAF",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "Slides from a presentation on exploiting UAF vulnerabilities in the Android kernel.",
      "summary_zh": "关于在Android内核中利用UAF漏洞的演示幻灯片。",
      "source_markdown": "[2021: \"The Art of Exploiting UAF by Ret2bpf in Android Kernel\" by Xingyu Jin and Richard Neal](https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf) [article] [[slides](https://conference.hitb.org/hitbsecconf2021sin/materials/D1T1%20-%20%20The%20Art%20of%20Exploiting%20UAF%20by%20Ret2bpf%20in%20Android%20Kernel%20-%20Xingyu%20Jin%20&%20Richard%20Neal.pdf)] [[video](https://www.youtube.com/watch?v=7UXtirV1Vzg)] [CVE-2021-0399]",
      "search_text": "the art of exploiting uaf · slides the art of exploiting uaf ret2bpf in android kernel\" by xingyu jin richard neal cve-2021-0399  vulnerabilities lpe lpe slides slides https://conference.hitb.org/hitbsecconf2021sin/materials/d1t1%20-%20%20the%20art%20of%20exploiting%20uaf%20by%20ret2bpf%20in%20android%20kernel%20-%20xingyu%20jin%20&%20richard%20neal.pdf lpe uaf android  vulnerability research slides from a presentation on exploiting uaf vulnerabilities in the android kernel. 关于在android内核中利用uaf漏洞的演示幻灯片。 # the art of exploiting uaf · slides record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the art of exploiting uaf resource_label: slides resource_type: slides resource_url: https://conference.hitb.org/hitbsecconf2021sin/materials/d1t1%20-%20%20the%20art%20of%20exploiting%20uaf%20by%20ret2bpf%20in%20android%20kernel%20-%20xingyu%20jin%20&%20richard%20neal.pdf parent_primary_url: https://i.blackhat.com/eu-21/wednesday/eu-21-jin-the-art-of-exploiting-uaf-by-ret2bpf-in-android-kernel-wp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"the art of exploiting uaf by ret2bpf in android kernel\" by xingyu jin and richard neal](https://i.blackhat.com/eu-21/wednesday/eu-21-jin-the-art-of-exploiting-uaf-by-ret2bpf-in-android-kernel-wp.pdf) [article] [[slides](https://conference.hitb.org/hitbsecco yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   has-poc poc proof-of-concept"
    },
    {
      "id": "e5d17b53ac625967",
      "item_id": "0c4b9182e54cf9b1",
      "slug": "2021-vulnerabilities-lpe-the-art-of-exploiting-uaf-video-e6473586",
      "year": 2021,
      "title": "The Art of Exploiting UAF · video",
      "item_title": "The Art of Exploiting UAF",
      "authors": [
        "Ret2bpf in Android Kernel\" by Xingyu Jin",
        "Richard Neal"
      ],
      "cves": [
        "CVE-2021-0399"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=7UXtirV1Vzg",
      "primary_url": "https://www.youtube.com/watch?v=7UXtirV1Vzg",
      "parent_primary_url": "https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-the-art-of-exploiting-uaf-video-e6473586.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Art of Exploiting UAF · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The Art of Exploiting UAF resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=7UXtirV1Vzg parent_primary_url: https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"The Art of Exploiting UAF by Ret2bpf in Android Kernel\" by Xingyu Jin and Richard Neal](https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf) [article] [[slides](https://conference.hitb.org/hitbsecconf2021sin/materials/D1T1%20-%20%20The%20Art%20of%20Exploiting%20UAF%20by%20Ret2bpf%20in%20Android%20Kernel%20-%20Xingyu%20Jin%20&%20Richard%20Neal.",
      "link_types": [
        "article",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://conference.hitb.org/hitbsecconf2021sin/materials/D1T1%20-%20%20The%20Art%20of%20Exploiting%20UAF%20by%20Ret2bpf%20in%20Android%20Kernel%20-%20Xingyu%20Jin%20&%20Richard%20Neal.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=7UXtirV1Vzg"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://conference.hitb.org/hitbsecconf2021sin/materials/D1T1%20-%20%20The%20Art%20of%20Exploiting%20UAF%20by%20Ret2bpf%20in%20Android%20Kernel%20-%20Xingyu%20Jin%20&%20Richard%20Neal.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=7UXtirV1Vzg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "UAF",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "A video presentation on exploiting UAF vulnerabilities in the Android kernel.",
      "summary_zh": "关于在Android内核中利用UAF漏洞的视频演示。",
      "source_markdown": "[2021: \"The Art of Exploiting UAF by Ret2bpf in Android Kernel\" by Xingyu Jin and Richard Neal](https://i.blackhat.com/EU-21/Wednesday/EU-21-Jin-The-Art-of-Exploiting-UAF-by-Ret2bpf-in-Android-Kernel-wp.pdf) [article] [[slides](https://conference.hitb.org/hitbsecconf2021sin/materials/D1T1%20-%20%20The%20Art%20of%20Exploiting%20UAF%20by%20Ret2bpf%20in%20Android%20Kernel%20-%20Xingyu%20Jin%20&%20Richard%20Neal.pdf)] [[video](https://www.youtube.com/watch?v=7UXtirV1Vzg)] [CVE-2021-0399]",
      "search_text": "the art of exploiting uaf · video the art of exploiting uaf ret2bpf in android kernel\" by xingyu jin richard neal cve-2021-0399  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=7uxtirv1vzg lpe uaf android  vulnerability research a video presentation on exploiting uaf vulnerabilities in the android kernel. 关于在android内核中利用uaf漏洞的视频演示。 # the art of exploiting uaf · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the art of exploiting uaf resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=7uxtirv1vzg parent_primary_url: https://i.blackhat.com/eu-21/wednesday/eu-21-jin-the-art-of-exploiting-uaf-by-ret2bpf-in-android-kernel-wp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"the art of exploiting uaf by ret2bpf in android kernel\" by xingyu jin and richard neal](https://i.blackhat.com/eu-21/wednesday/eu-21-jin-the-art-of-exploiting-uaf-by-ret2bpf-in-android-kernel-wp.pdf) [article] [[slides](https://conference.hitb.org/hitbsecconf2021sin/materials/d1t1%20-%20%20the%20art%20of%20exploiting%20uaf%20by%20ret2bpf%20in%20android%20kernel%20-%20xingyu%20jin%20&%20richard%20neal. yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   has-poc poc proof-of-concept"
    },
    {
      "id": "9bab79e1ff61e3e5",
      "item_id": "e2d4bf9abe2fb236",
      "slug": "2021-vulnerabilities-lpe-internal-of-the-android-kernel-backdoor-vulnerability-primary-5e559b7b",
      "year": 2021,
      "title": "Internal of the Android kernel backdoor vulnerability",
      "item_title": "Internal of the Android kernel backdoor vulnerability",
      "authors": [],
      "cves": [
        "CVE-2021-28663"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://vul.360.net/archives/263",
      "primary_url": "https://vul.360.net/archives/263",
      "parent_primary_url": "https://vul.360.net/archives/263",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-internal-of-the-android-kernel-backdoor-vulnerability-primary-5e559b7b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Internal of the Android kernel backdoor vulnerability record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Internal of the Android kernel backdoor vulnerability resource_label: primary resource_type: article resource_url: https://vul.360.net/archives/263 parent_primary_url: https://vul.360.net/archives/263 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Internal of the Android kernel backdoor vulnerability\"](https://vul.360.net/archives/263) [article] [CVE-2021-28663] cves: CVE-2021-28663 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://vul.360.net/arc",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://vul.360.net/archives/263"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://vul.360.net/archives/263"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This article discusses a backdoor vulnerability in the Android kernel.",
      "summary_zh": "该文章讨论了Android内核中的后门漏洞。",
      "source_markdown": "[2021: \"Internal of the Android kernel backdoor vulnerability\"](https://vul.360.net/archives/263) [article] [CVE-2021-28663]",
      "search_text": "internal of the android kernel backdoor vulnerability internal of the android kernel backdoor vulnerability  cve-2021-28663  vulnerabilities lpe lpe primary article https://vul.360.net/archives/263 lpe android  vulnerability research this article discusses a backdoor vulnerability in the android kernel. 该文章讨论了android内核中的后门漏洞。 # internal of the android kernel backdoor vulnerability record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: internal of the android kernel backdoor vulnerability resource_label: primary resource_type: article resource_url: https://vul.360.net/archives/263 parent_primary_url: https://vul.360.net/archives/263 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"internal of the android kernel backdoor vulnerability\"](https://vul.360.net/archives/263) [article] [cve-2021-28663] cves: cve-2021-28663 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://vul.360.net/arc yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "e376dc11538d6c5e",
      "item_id": "955ed90be0a4a6f2",
      "slug": "2021-vulnerabilities-lpe-escape-from-chrome-sandbox-to-root-primary-a895bc16",
      "year": 2021,
      "title": "Escape from chrome sandbox to root",
      "item_title": "Escape from chrome sandbox to root",
      "authors": [],
      "cves": [
        "CVE-2020-0423"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://vul.360.net/archives/217",
      "primary_url": "https://vul.360.net/archives/217",
      "parent_primary_url": "https://vul.360.net/archives/217",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-escape-from-chrome-sandbox-to-root-primary-a895bc16.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Escape from chrome sandbox to root record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Escape from chrome sandbox to root resource_label: primary resource_type: article resource_url: https://vul.360.net/archives/217 parent_primary_url: https://vul.360.net/archives/217 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Escape from chrome sandbox to root\"](https://vul.360.net/archives/217) [article] [CVE-2020-0423] cves: CVE-2020-0423 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links:",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://vul.360.net/archives/217"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://vul.360.net/archives/217"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Chrome"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "The article describes a method to escape from the Chrome sandbox to root.",
      "summary_zh": "该文章描述了一种从Chrome沙箱逃逸到root的方法。",
      "source_markdown": "[2021: \"Escape from chrome sandbox to root\"](https://vul.360.net/archives/217) [article] [CVE-2020-0423]",
      "search_text": "escape from chrome sandbox to root escape from chrome sandbox to root  cve-2020-0423  vulnerabilities lpe lpe primary article https://vul.360.net/archives/217 lpe chrome  vulnerability research the article describes a method to escape from the chrome sandbox to root. 该文章描述了一种从chrome沙箱逃逸到root的方法。 # escape from chrome sandbox to root record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: escape from chrome sandbox to root resource_label: primary resource_type: article resource_url: https://vul.360.net/archives/217 parent_primary_url: https://vul.360.net/archives/217 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"escape from chrome sandbox to root\"](https://vul.360.net/archives/217) [article] [cve-2020-0423] cves: cve-2020-0423 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f97028b450df7dcc",
      "item_id": "94615b55f37c850f",
      "slug": "2021-vulnerabilities-lpe-cve-2017-11176-primary-db5d704a",
      "year": 2021,
      "title": "CVE-2017-11176",
      "item_title": "CVE-2017-11176",
      "authors": [
        "Maher Azzouzi"
      ],
      "cves": [
        "CVE-2017-11176"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2017-11176",
      "primary_url": "https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2017-11176",
      "parent_primary_url": "https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2017-11176",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-cve-2017-11176-primary-db5d704a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2017-11176 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2017-11176 resource_label: primary resource_type: article resource_url: https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2017-11176 parent_primary_url: https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2017-11176 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"CVE-2017-11176\" by Maher Azzouzi](https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2017-11176) [article] [CVE-2017-11176] cves: CVE-2017-11176 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2017-11176"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2017-11176"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2017-11176"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This resource provides insights into CVE-2017-11176.",
      "summary_zh": "该资源提供了对CVE-2017-11176的见解。",
      "source_markdown": "[2021: \"CVE-2017-11176\" by Maher Azzouzi](https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2017-11176) [article] [CVE-2017-11176]",
      "search_text": "cve-2017-11176 cve-2017-11176 maher azzouzi cve-2017-11176  vulnerabilities lpe lpe primary article https://github.com/maherazzouzi/linuxkernelstudy/tree/main/cve-2017-11176 lpe  vulnerability research this resource provides insights into cve-2017-11176. 该资源提供了对cve-2017-11176的见解。 # cve-2017-11176 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2017-11176 resource_label: primary resource_type: article resource_url: https://github.com/maherazzouzi/linuxkernelstudy/tree/main/cve-2017-11176 parent_primary_url: https://github.com/maherazzouzi/linuxkernelstudy/tree/main/cve-2017-11176 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"cve-2017-11176\" by maher azzouzi](https://github.com/maherazzouzi/linuxkernelstudy/tree/main/cve-2017-11176) [article] [cve-2017-11176] cves: cve-2017-11176 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "f1e926da88fa0c54",
      "item_id": "57bb04a78278b837",
      "slug": "2021-vulnerabilities-lpe-sequoia-a-deep-root-in-linux-s-filesystem-layer-cve-2021-33909-primary-e59c9b2b",
      "year": 2021,
      "title": "Sequoia: A deep root in Linux's filesystem layer (CVE-2021-33909)",
      "item_title": "Sequoia: A deep root in Linux's filesystem layer (CVE-2021-33909)",
      "authors": [
        "Qualys Research Team"
      ],
      "cves": [
        "CVE-2021-33909"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.qualys.com/2021/07/20/cve-2021-33909/sequoia-local-privilege-escalation-linux.txt",
      "primary_url": "https://www.qualys.com/2021/07/20/cve-2021-33909/sequoia-local-privilege-escalation-linux.txt",
      "parent_primary_url": "https://www.qualys.com/2021/07/20/cve-2021-33909/sequoia-local-privilege-escalation-linux.txt",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-sequoia-a-deep-root-in-linux-s-filesystem-layer-cve-2021-33909-primary-e59c9b2b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Sequoia: A deep root in Linux's filesystem layer (CVE-2021-33909) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Sequoia: A deep root in Linux's filesystem layer (CVE-2021-33909) resource_label: primary resource_type: article resource_url: https://www.qualys.com/2021/07/20/cve-2021-33909/sequoia-local-privilege-escalation-linux.txt parent_primary_url: https://www.qualys.com/2021/07/20/cve-2021-33909/sequoia-local-privilege-escalation-linux.txt source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Sequoia: A deep root in Linux's filesystem layer (CVE-2021-33909)\" by Qualys Research Team](https://www.qualys.com/2021/07/20/cve-2021-33909/sequoia-local-privilege-escalation-linux.txt) [article] [CVE-2021-33909] cves: CVE-2021-33909 android_impact_status: unknown android_impact_reason: Linux ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.qualys.com/2021/07/20/cve-2021-33909/sequoia-local-privilege-escalation-linux.txt"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.qualys.com/2021/07/20/cve-2021-33909/sequoia-local-privilege-escalation-linux.txt"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "filesystem"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "The article discusses a filesystem layer vulnerability in Linux (CVE-2021-33909).",
      "summary_zh": "该文章讨论了Linux中的文件系统层漏洞（CVE-2021-33909）。",
      "source_markdown": "[2021: \"Sequoia: A deep root in Linux's filesystem layer (CVE-2021-33909)\" by Qualys Research Team](https://www.qualys.com/2021/07/20/cve-2021-33909/sequoia-local-privilege-escalation-linux.txt) [article] [CVE-2021-33909]",
      "search_text": "sequoia: a deep root in linux's filesystem layer (cve-2021-33909) sequoia: a deep root in linux's filesystem layer (cve-2021-33909) qualys research team cve-2021-33909  vulnerabilities lpe lpe primary article https://www.qualys.com/2021/07/20/cve-2021-33909/sequoia-local-privilege-escalation-linux.txt lpe filesystem  vulnerability research the article discusses a filesystem layer vulnerability in linux (cve-2021-33909). 该文章讨论了linux中的文件系统层漏洞（cve-2021-33909）。 # sequoia: a deep root in linux's filesystem layer (cve-2021-33909) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: sequoia: a deep root in linux's filesystem layer (cve-2021-33909) resource_label: primary resource_type: article resource_url: https://www.qualys.com/2021/07/20/cve-2021-33909/sequoia-local-privilege-escalation-linux.txt parent_primary_url: https://www.qualys.com/2021/07/20/cve-2021-33909/sequoia-local-privilege-escalation-linux.txt source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"sequoia: a deep root in linux's filesystem layer (cve-2021-33909)\" by qualys research team](https://www.qualys.com/2021/07/20/cve-2021-33909/sequoia-local-privilege-escalation-linux.txt) [article] [cve-2021-33909] cves: cve-2021-33909 android_impact_status: unknown android_impact_reason: linux  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "eb3f100686c61959",
      "item_id": "bab61318121cb095",
      "slug": "2021-vulnerabilities-lpe-cve-2021-22555-turning-x00-x00-into-10000-primary-11ce17b4",
      "year": 2021,
      "title": "CVE-2021-22555: Turning \\x00\\x00 into 10000$",
      "item_title": "CVE-2021-22555: Turning \\x00\\x00 into 10000$",
      "authors": [
        "Andy Nguyen"
      ],
      "cves": [
        "CVE-2021-22555"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://google.github.io/security-research/pocs/linux/cve-2021-22555/writeup.html",
      "primary_url": "https://google.github.io/security-research/pocs/linux/cve-2021-22555/writeup.html",
      "parent_primary_url": "https://google.github.io/security-research/pocs/linux/cve-2021-22555/writeup.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-cve-2021-22555-turning-x00-x00-into-10000-primary-11ce17b4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2021-22555: Turning \\x00\\x00 into 10000$ record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2021-22555: Turning \\x00\\x00 into 10000$ resource_label: primary resource_type: article resource_url: https://google.github.io/security-research/pocs/linux/cve-2021-22555/writeup.html parent_primary_url: https://google.github.io/security-research/pocs/linux/cve-2021-22555/writeup.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"CVE-2021-22555: Turning \\x00\\x00 into 10000$\" by Andy Nguyen](https://google.github.io/security-research/pocs/linux/cve-2021-22555/writeup.html) [CVE-2021-22555, article] cves: CVE-2021-22555 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://google.github.io/security-research/pocs/linux/cve-2021-22555/writeup.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://google.github.io/security-research/pocs/linux/cve-2021-22555/writeup.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://google.github.io/security-research/pocs/linux/cve-2021-22555/writeup.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This article covers CVE-2021-22555 and its implications.",
      "summary_zh": "该文章涵盖了CVE-2021-22555及其影响。",
      "source_markdown": "[2021: \"CVE-2021-22555: Turning \\x00\\x00 into 10000$\" by Andy Nguyen](https://google.github.io/security-research/pocs/linux/cve-2021-22555/writeup.html) [CVE-2021-22555, article]",
      "search_text": "cve-2021-22555: turning \\x00\\x00 into 10000$ cve-2021-22555: turning \\x00\\x00 into 10000$ andy nguyen cve-2021-22555  vulnerabilities lpe lpe primary article https://google.github.io/security-research/pocs/linux/cve-2021-22555/writeup.html lpe  vulnerability research this article covers cve-2021-22555 and its implications. 该文章涵盖了cve-2021-22555及其影响。 # cve-2021-22555: turning \\x00\\x00 into 10000$ record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2021-22555: turning \\x00\\x00 into 10000$ resource_label: primary resource_type: article resource_url: https://google.github.io/security-research/pocs/linux/cve-2021-22555/writeup.html parent_primary_url: https://google.github.io/security-research/pocs/linux/cve-2021-22555/writeup.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"cve-2021-22555: turning \\x00\\x00 into 10000$\" by andy nguyen](https://google.github.io/security-research/pocs/linux/cve-2021-22555/writeup.html) [cve-2021-22555, article] cves: cve-2021-22555 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "2f5f66a11a54a0bc",
      "item_id": "8a48bc7aec1acfe0",
      "slug": "2021-vulnerabilities-lpe-exploitation-of-a-double-free-vulnerability-in-ubuntu-shiftfs-driver-cve-2021-3492-pr",
      "year": 2021,
      "title": "Exploitation of a double free vulnerability in Ubuntu shiftfs driver (CVE-2021-3492)",
      "item_title": "Exploitation of a double free vulnerability in Ubuntu shiftfs driver (CVE-2021-3492)",
      "authors": [
        "Vincent Dehors"
      ],
      "cves": [
        "CVE-2021-3492"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.synacktiv.com/publications/exploitation-of-a-double-free-vulnerability-in-ubuntu-shiftfs-driver-cve-2021-3492.html",
      "primary_url": "https://www.synacktiv.com/publications/exploitation-of-a-double-free-vulnerability-in-ubuntu-shiftfs-driver-cve-2021-3492.html",
      "parent_primary_url": "https://www.synacktiv.com/publications/exploitation-of-a-double-free-vulnerability-in-ubuntu-shiftfs-driver-cve-2021-3492.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-exploitation-of-a-double-free-vulnerability-in-ubuntu-shiftfs-driver-cve-2021-3492-pr.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploitation of a double free vulnerability in Ubuntu shiftfs driver (CVE-2021-3492) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploitation of a double free vulnerability in Ubuntu shiftfs driver (CVE-2021-3492) resource_label: primary resource_type: article resource_url: https://www.synacktiv.com/publications/exploitation-of-a-double-free-vulnerability-in-ubuntu-shiftfs-driver-cve-2021-3492.html parent_primary_url: https://www.synacktiv.com/publications/exploitation-of-a-double-free-vulnerability-in-ubuntu-shiftfs-driver-cve-2021-3492.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Exploitation of a double free vulnerability in Ubuntu shiftfs driver (CVE-2021-3492)\" by Vincent Dehors](https://www.synacktiv.com/publications/exploitation-of-a-double-free-vulnerability-in-",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.synacktiv.com/publications/exploitation-of-a-double-free-vulnerability-in-ubuntu-shiftfs-driver-cve-2021-3492.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.synacktiv.com/publications/exploitation-of-a-double-free-vulnerability-in-ubuntu-shiftfs-driver-cve-2021-3492.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "shiftfs"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "The article details the exploitation of a double free vulnerability in the Ubuntu shiftfs driver.",
      "summary_zh": "该文章详细介绍了在Ubuntu shiftfs驱动程序中利用双重释放漏洞的方式。",
      "source_markdown": "[2021: \"Exploitation of a double free vulnerability in Ubuntu shiftfs driver (CVE-2021-3492)\" by Vincent Dehors](https://www.synacktiv.com/publications/exploitation-of-a-double-free-vulnerability-in-ubuntu-shiftfs-driver-cve-2021-3492.html) [article] [CVE-2021-3492]",
      "search_text": "exploitation of a double free vulnerability in ubuntu shiftfs driver (cve-2021-3492) exploitation of a double free vulnerability in ubuntu shiftfs driver (cve-2021-3492) vincent dehors cve-2021-3492  vulnerabilities lpe lpe primary article https://www.synacktiv.com/publications/exploitation-of-a-double-free-vulnerability-in-ubuntu-shiftfs-driver-cve-2021-3492.html lpe shiftfs  vulnerability research the article details the exploitation of a double free vulnerability in the ubuntu shiftfs driver. 该文章详细介绍了在ubuntu shiftfs驱动程序中利用双重释放漏洞的方式。 # exploitation of a double free vulnerability in ubuntu shiftfs driver (cve-2021-3492) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploitation of a double free vulnerability in ubuntu shiftfs driver (cve-2021-3492) resource_label: primary resource_type: article resource_url: https://www.synacktiv.com/publications/exploitation-of-a-double-free-vulnerability-in-ubuntu-shiftfs-driver-cve-2021-3492.html parent_primary_url: https://www.synacktiv.com/publications/exploitation-of-a-double-free-vulnerability-in-ubuntu-shiftfs-driver-cve-2021-3492.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"exploitation of a double free vulnerability in ubuntu shiftfs driver (cve-2021-3492)\" by vincent dehors](https://www.synacktiv.com/publications/exploitation-of-a-double-free-vulnerability-in- unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "57b731f587164181",
      "item_id": "744a6858a59593b8",
      "slug": "2021-vulnerabilities-lpe-cve-2021-20226-a-reference-counting-bug-which-leads-to-local-privilege-escalation-in-",
      "year": 2021,
      "title": "CVE-2021-20226 a reference counting bug which leads to local privilege escalation in io_uring",
      "item_title": "CVE-2021-20226 a reference counting bug which leads to local privilege escalation in io_uring",
      "authors": [],
      "cves": [
        "CVE-2021-20226"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://flattsecurity.medium.com/cve-2021-20226-a-reference-counting-bug-which-leads-to-local-privilege-escalation-in-io-uring-e946bd69177a",
      "primary_url": "https://flattsecurity.medium.com/cve-2021-20226-a-reference-counting-bug-which-leads-to-local-privilege-escalation-in-io-uring-e946bd69177a",
      "parent_primary_url": "https://flattsecurity.medium.com/cve-2021-20226-a-reference-counting-bug-which-leads-to-local-privilege-escalation-in-io-uring-e946bd69177a",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-cve-2021-20226-a-reference-counting-bug-which-leads-to-local-privilege-escalation-in-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2021-20226 a reference counting bug which leads to local privilege escalation in io_uring record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2021-20226 a reference counting bug which leads to local privilege escalation in io_uring resource_label: primary resource_type: article resource_url: https://flattsecurity.medium.com/cve-2021-20226-a-reference-counting-bug-which-leads-to-local-privilege-escalation-in-io-uring-e946bd69177a parent_primary_url: https://flattsecurity.medium.com/cve-2021-20226-a-reference-counting-bug-which-leads-to-local-privilege-escalation-in-io-uring-e946bd69177a source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"CVE-2021-20226 a reference counting bug which leads to local privilege escalation in io_uring\"](https://flattsecurity.medium.com/cve-2021-20226-a-r",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://flattsecurity.medium.com/cve-2021-20226-a-reference-counting-bug-which-leads-to-local-privilege-escalation-in-io-uring-e946bd69177a"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://flattsecurity.medium.com/cve-2021-20226-a-reference-counting-bug-which-leads-to-local-privilege-escalation-in-io-uring-e946bd69177a"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "io_uring"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This resource discusses a reference counting bug in io_uring leading to local privilege escalation.",
      "summary_zh": "该资源讨论了io_uring中的引用计数错误，导致本地权限提升。",
      "source_markdown": "[2021: \"CVE-2021-20226 a reference counting bug which leads to local privilege escalation in io_uring\"](https://flattsecurity.medium.com/cve-2021-20226-a-reference-counting-bug-which-leads-to-local-privilege-escalation-in-io-uring-e946bd69177a) [article] [CVE-2021-20226]",
      "search_text": "cve-2021-20226 a reference counting bug which leads to local privilege escalation in io_uring cve-2021-20226 a reference counting bug which leads to local privilege escalation in io_uring  cve-2021-20226  vulnerabilities lpe lpe primary article https://flattsecurity.medium.com/cve-2021-20226-a-reference-counting-bug-which-leads-to-local-privilege-escalation-in-io-uring-e946bd69177a lpe io_uring  vulnerability research this resource discusses a reference counting bug in io_uring leading to local privilege escalation. 该资源讨论了io_uring中的引用计数错误，导致本地权限提升。 # cve-2021-20226 a reference counting bug which leads to local privilege escalation in io_uring record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2021-20226 a reference counting bug which leads to local privilege escalation in io_uring resource_label: primary resource_type: article resource_url: https://flattsecurity.medium.com/cve-2021-20226-a-reference-counting-bug-which-leads-to-local-privilege-escalation-in-io-uring-e946bd69177a parent_primary_url: https://flattsecurity.medium.com/cve-2021-20226-a-reference-counting-bug-which-leads-to-local-privilege-escalation-in-io-uring-e946bd69177a source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"cve-2021-20226 a reference counting bug which leads to local privilege escalation in io_uring\"](https://flattsecurity.medium.com/cve-2021-20226-a-r unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1c67fc0c991710cc",
      "item_id": "619a665d60e508c9",
      "slug": "2021-vulnerabilities-lpe-cve-2021-32606-can-isotp-local-privilege-escalation-primary-b5546545",
      "year": 2021,
      "title": "CVE-2021-32606: CAN ISOTP local privilege escalation",
      "item_title": "CVE-2021-32606: CAN ISOTP local privilege escalation",
      "authors": [],
      "cves": [
        "CVE-2021-32606"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-32606/cve-2021-32606.md",
      "primary_url": "https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-32606/cve-2021-32606.md",
      "parent_primary_url": "https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-32606/cve-2021-32606.md",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-cve-2021-32606-can-isotp-local-privilege-escalation-primary-b5546545.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2021-32606: CAN ISOTP local privilege escalation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2021-32606: CAN ISOTP local privilege escalation resource_label: primary resource_type: article resource_url: https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-32606/cve-2021-32606.md parent_primary_url: https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-32606/cve-2021-32606.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"CVE-2021-32606: CAN ISOTP local privilege escalation\"](https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-32606/cve-2021-32606.md) [article] [CVE-2021-32606] cves: CVE-2021-32606 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-ver",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-32606/cve-2021-32606.md"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-32606/cve-2021-32606.md"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-32606/cve-2021-32606.md"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CAN"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "The article discusses local privilege escalation in CAN ISOTP (CVE-2021-32606).",
      "summary_zh": "该文章讨论了CAN ISOTP中的本地权限提升（CVE-2021-32606）。",
      "source_markdown": "[2021: \"CVE-2021-32606: CAN ISOTP local privilege escalation\"](https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-32606/cve-2021-32606.md) [article] [CVE-2021-32606]",
      "search_text": "cve-2021-32606: can isotp local privilege escalation cve-2021-32606: can isotp local privilege escalation  cve-2021-32606  vulnerabilities lpe lpe primary article https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-32606/cve-2021-32606.md lpe can  vulnerability research the article discusses local privilege escalation in can isotp (cve-2021-32606). 该文章讨论了can isotp中的本地权限提升（cve-2021-32606）。 # cve-2021-32606: can isotp local privilege escalation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2021-32606: can isotp local privilege escalation resource_label: primary resource_type: article resource_url: https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-32606/cve-2021-32606.md parent_primary_url: https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-32606/cve-2021-32606.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"cve-2021-32606: can isotp local privilege escalation\"](https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-32606/cve-2021-32606.md) [article] [cve-2021-32606] cves: cve-2021-32606 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-ver unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "84b7ee120ef85796",
      "item_id": "5f5c545687440367",
      "slug": "2021-vulnerabilities-lpe-cve-2021-3609-can-bcm-local-privilege-escalation-primary-ecf3b7dc",
      "year": 2021,
      "title": "CVE-2021-3609: CAN BCM local privilege escalation",
      "item_title": "CVE-2021-3609: CAN BCM local privilege escalation",
      "authors": [],
      "cves": [
        "CVE-2021-3609"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md",
      "primary_url": "https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md",
      "parent_primary_url": "https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-cve-2021-3609-can-bcm-local-privilege-escalation-primary-ecf3b7dc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2021-3609: CAN BCM local privilege escalation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2021-3609: CAN BCM local privilege escalation resource_label: primary resource_type: article resource_url: https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md parent_primary_url: https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"CVE-2021-3609: CAN BCM local privilege escalation\"](https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md) [article] [[announcement](https://www.openwall.com/lists/oss-security/2021/06/19/1)] [CVE-2021-3609] cves: CVE-2021-3609 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability",
      "link_types": [
        "article",
        "announcement"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md"
        },
        {
          "label": "announcement",
          "type": "announcement",
          "url": "https://www.openwall.com/lists/oss-security/2021/06/19/1"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "announcement",
            "type": "announcement",
            "url": "https://www.openwall.com/lists/oss-security/2021/06/19/1"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CAN"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability research",
      "summary_en": "This article covers local privilege escalation in CAN BCM (CVE-2021-3609).",
      "summary_zh": "该文章涵盖了CAN BCM中的本地权限提升（CVE-2021-3609）。",
      "source_markdown": "[2021: \"CVE-2021-3609: CAN BCM local privilege escalation\"](https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md) [article] [[announcement](https://www.openwall.com/lists/oss-security/2021/06/19/1)] [CVE-2021-3609]",
      "search_text": "cve-2021-3609: can bcm local privilege escalation cve-2021-3609: can bcm local privilege escalation  cve-2021-3609  vulnerabilities lpe lpe primary article https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md lpe can  vulnerability research this article covers local privilege escalation in can bcm (cve-2021-3609). 该文章涵盖了can bcm中的本地权限提升（cve-2021-3609）。 # cve-2021-3609: can bcm local privilege escalation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2021-3609: can bcm local privilege escalation resource_label: primary resource_type: article resource_url: https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md parent_primary_url: https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"cve-2021-3609: can bcm local privilege escalation\"](https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md) [article] [[announcement](https://www.openwall.com/lists/oss-security/2021/06/19/1)] [cve-2021-3609] cves: cve-2021-3609 android_impact_status: unknown android_impact_reason: linux kernel vulnerability unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "b1c5a2544611d910",
      "item_id": "5f5c545687440367",
      "slug": "2021-vulnerabilities-lpe-cve-2021-3609-can-bcm-local-privilege-escalation-announcement-23ec6cb2",
      "year": 2021,
      "title": "CVE-2021-3609: CAN BCM local privilege escalation · announcement",
      "item_title": "CVE-2021-3609: CAN BCM local privilege escalation",
      "authors": [],
      "cves": [
        "CVE-2021-3609"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "announcement",
      "resource_type": "announcement",
      "resource_url": "https://www.openwall.com/lists/oss-security/2021/06/19/1",
      "primary_url": "https://www.openwall.com/lists/oss-security/2021/06/19/1",
      "parent_primary_url": "https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-cve-2021-3609-can-bcm-local-privilege-escalation-announcement-23ec6cb2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2021-3609: CAN BCM local privilege escalation · announcement record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2021-3609: CAN BCM local privilege escalation resource_label: announcement resource_type: announcement resource_url: https://www.openwall.com/lists/oss-security/2021/06/19/1 parent_primary_url: https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"CVE-2021-3609: CAN BCM local privilege escalation\"](https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md) [article] [[announcement](https://www.openwall.com/lists/oss-security/2021/06/19/1)] [CVE-2021-3609] cves: CVE-2021-3609 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/expl",
      "link_types": [
        "article",
        "announcement"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md"
        },
        {
          "label": "announcement",
          "type": "announcement",
          "url": "https://www.openwall.com/lists/oss-security/2021/06/19/1"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "announcement",
            "type": "announcement",
            "url": "https://www.openwall.com/lists/oss-security/2021/06/19/1"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2021-3609"
      ],
      "affected_area": "CAN BCM",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2021-3609 is a local privilege escalation vulnerability in the CAN BCM subsystem of the Linux kernel.",
      "summary_zh": "CVE-2021-3609是Linux内核中CAN BCM子系统的本地权限提升漏洞。",
      "source_markdown": "[2021: \"CVE-2021-3609: CAN BCM local privilege escalation\"](https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md) [article] [[announcement](https://www.openwall.com/lists/oss-security/2021/06/19/1)] [CVE-2021-3609]",
      "search_text": "cve-2021-3609: can bcm local privilege escalation · announcement cve-2021-3609: can bcm local privilege escalation  cve-2021-3609  vulnerabilities lpe lpe announcement announcement https://www.openwall.com/lists/oss-security/2021/06/19/1 lpe cve-2021-3609 can bcm vulnerability cve-2021-3609 is a local privilege escalation vulnerability in the can bcm subsystem of the linux kernel. cve-2021-3609是linux内核中can bcm子系统的本地权限提升漏洞。 # cve-2021-3609: can bcm local privilege escalation · announcement record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2021-3609: can bcm local privilege escalation resource_label: announcement resource_type: announcement resource_url: https://www.openwall.com/lists/oss-security/2021/06/19/1 parent_primary_url: https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"cve-2021-3609: can bcm local privilege escalation\"](https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md) [article] [[announcement](https://www.openwall.com/lists/oss-security/2021/06/19/1)] [cve-2021-3609] cves: cve-2021-3609 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/expl unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "35ffbae3877e3f69",
      "item_id": "0986be83950c1c9c",
      "slug": "2021-vulnerabilities-lpe-blue-klotski-cve-2021-3573-and-the-story-for-fixing-primary-f301ee48",
      "year": 2021,
      "title": "Blue Klotski (CVE-2021-3573) and the story for fixing",
      "item_title": "Blue Klotski (CVE-2021-3573) and the story for fixing",
      "authors": [
        "f0rm2l1n"
      ],
      "cves": [
        "CVE-2021-3573"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://f0rm2l1n.github.io/2021-07-23-Blue-Klotski/",
      "primary_url": "https://f0rm2l1n.github.io/2021-07-23-Blue-Klotski/",
      "parent_primary_url": "https://f0rm2l1n.github.io/2021-07-23-Blue-Klotski/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-blue-klotski-cve-2021-3573-and-the-story-for-fixing-primary-f301ee48.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Blue Klotski (CVE-2021-3573) and the story for fixing record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Blue Klotski (CVE-2021-3573) and the story for fixing resource_label: primary resource_type: article resource_url: https://f0rm2l1n.github.io/2021-07-23-Blue-Klotski/ parent_primary_url: https://f0rm2l1n.github.io/2021-07-23-Blue-Klotski/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Blue Klotski (CVE-2021-3573) and the story for fixing\" by f0rm2l1n](https://f0rm2l1n.github.io/2021-07-23-Blue-Klotski/) [article] [[announcement](https://www.openwall.com/lists/oss-security/2021/06/08/2)] [CVE-2021-3573] cves: CVE-2021-3573 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backpor",
      "link_types": [
        "article",
        "announcement"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://f0rm2l1n.github.io/2021-07-23-Blue-Klotski/"
        },
        {
          "label": "announcement",
          "type": "announcement",
          "url": "https://www.openwall.com/lists/oss-security/2021/06/08/2"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://f0rm2l1n.github.io/2021-07-23-Blue-Klotski/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "announcement",
            "type": "announcement",
            "url": "https://www.openwall.com/lists/oss-security/2021/06/08/2"
          }
        ]
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://f0rm2l1n.github.io/2021-07-23-Blue-Klotski/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2021-3573"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2021-3573, known as Blue Klotski, is a local privilege escalation vulnerability in the Linux kernel.",
      "summary_zh": "CVE-2021-3573，称为Blue Klotski，是Linux内核中的本地权限提升漏洞。",
      "source_markdown": "[2021: \"Blue Klotski (CVE-2021-3573) and the story for fixing\" by f0rm2l1n](https://f0rm2l1n.github.io/2021-07-23-Blue-Klotski/) [article] [[announcement](https://www.openwall.com/lists/oss-security/2021/06/08/2)] [CVE-2021-3573]",
      "search_text": "blue klotski (cve-2021-3573) and the story for fixing blue klotski (cve-2021-3573) and the story for fixing f0rm2l1n cve-2021-3573  vulnerabilities lpe lpe primary article https://f0rm2l1n.github.io/2021-07-23-blue-klotski/ lpe cve-2021-3573  vulnerability cve-2021-3573, known as blue klotski, is a local privilege escalation vulnerability in the linux kernel. cve-2021-3573，称为blue klotski，是linux内核中的本地权限提升漏洞。 # blue klotski (cve-2021-3573) and the story for fixing record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: blue klotski (cve-2021-3573) and the story for fixing resource_label: primary resource_type: article resource_url: https://f0rm2l1n.github.io/2021-07-23-blue-klotski/ parent_primary_url: https://f0rm2l1n.github.io/2021-07-23-blue-klotski/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"blue klotski (cve-2021-3573) and the story for fixing\" by f0rm2l1n](https://f0rm2l1n.github.io/2021-07-23-blue-klotski/) [article] [[announcement](https://www.openwall.com/lists/oss-security/2021/06/08/2)] [cve-2021-3573] cves: cve-2021-3573 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backpor unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "4d4ca11a98f2e8f0",
      "item_id": "0986be83950c1c9c",
      "slug": "2021-vulnerabilities-lpe-blue-klotski-cve-2021-3573-and-the-story-for-fixing-announcement-acd3f6a3",
      "year": 2021,
      "title": "Blue Klotski (CVE-2021-3573) and the story for fixing · announcement",
      "item_title": "Blue Klotski (CVE-2021-3573) and the story for fixing",
      "authors": [
        "f0rm2l1n"
      ],
      "cves": [
        "CVE-2021-3573"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "announcement",
      "resource_type": "announcement",
      "resource_url": "https://www.openwall.com/lists/oss-security/2021/06/08/2",
      "primary_url": "https://www.openwall.com/lists/oss-security/2021/06/08/2",
      "parent_primary_url": "https://f0rm2l1n.github.io/2021-07-23-Blue-Klotski/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-blue-klotski-cve-2021-3573-and-the-story-for-fixing-announcement-acd3f6a3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Blue Klotski (CVE-2021-3573) and the story for fixing · announcement record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Blue Klotski (CVE-2021-3573) and the story for fixing resource_label: announcement resource_type: announcement resource_url: https://www.openwall.com/lists/oss-security/2021/06/08/2 parent_primary_url: https://f0rm2l1n.github.io/2021-07-23-Blue-Klotski/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Blue Klotski (CVE-2021-3573) and the story for fixing\" by f0rm2l1n](https://f0rm2l1n.github.io/2021-07-23-Blue-Klotski/) [article] [[announcement](https://www.openwall.com/lists/oss-security/2021/06/08/2)] [CVE-2021-3573] cves: CVE-2021-3573 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs ker",
      "link_types": [
        "article",
        "announcement"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://f0rm2l1n.github.io/2021-07-23-Blue-Klotski/"
        },
        {
          "label": "announcement",
          "type": "announcement",
          "url": "https://www.openwall.com/lists/oss-security/2021/06/08/2"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://f0rm2l1n.github.io/2021-07-23-Blue-Klotski/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "announcement",
            "type": "announcement",
            "url": "https://www.openwall.com/lists/oss-security/2021/06/08/2"
          }
        ]
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://f0rm2l1n.github.io/2021-07-23-Blue-Klotski/"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2021-3573"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2021-3573, known as Blue Klotski, is a local privilege escalation vulnerability in the Linux kernel.",
      "summary_zh": "CVE-2021-3573，称为Blue Klotski，是Linux内核中的本地权限提升漏洞。",
      "source_markdown": "[2021: \"Blue Klotski (CVE-2021-3573) and the story for fixing\" by f0rm2l1n](https://f0rm2l1n.github.io/2021-07-23-Blue-Klotski/) [article] [[announcement](https://www.openwall.com/lists/oss-security/2021/06/08/2)] [CVE-2021-3573]",
      "search_text": "blue klotski (cve-2021-3573) and the story for fixing · announcement blue klotski (cve-2021-3573) and the story for fixing f0rm2l1n cve-2021-3573  vulnerabilities lpe lpe announcement announcement https://www.openwall.com/lists/oss-security/2021/06/08/2 lpe cve-2021-3573  vulnerability cve-2021-3573, known as blue klotski, is a local privilege escalation vulnerability in the linux kernel. cve-2021-3573，称为blue klotski，是linux内核中的本地权限提升漏洞。 # blue klotski (cve-2021-3573) and the story for fixing · announcement record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: blue klotski (cve-2021-3573) and the story for fixing resource_label: announcement resource_type: announcement resource_url: https://www.openwall.com/lists/oss-security/2021/06/08/2 parent_primary_url: https://f0rm2l1n.github.io/2021-07-23-blue-klotski/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"blue klotski (cve-2021-3573) and the story for fixing\" by f0rm2l1n](https://f0rm2l1n.github.io/2021-07-23-blue-klotski/) [article] [[announcement](https://www.openwall.com/lists/oss-security/2021/06/08/2)] [cve-2021-3573] cves: cve-2021-3573 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs ker unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "716a9ffc19feada7",
      "item_id": "4685f96d6a1b28e5",
      "slug": "2021-vulnerabilities-lpe-zdi-20-1440-an-incorrect-calculation-bug-in-the-linux-kernel-ebpf-verifier-primary-bd",
      "year": 2021,
      "title": "ZDI-20-1440: An Incorrect Calculation Bug in the Linux Kernel eBPF Verifier",
      "item_title": "ZDI-20-1440: An Incorrect Calculation Bug in the Linux Kernel eBPF Verifier",
      "authors": [
        "Lucas Leong"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.zerodayinitiative.com/blog/2021/1/18/zdi-20-1440-an-incorrect-calculation-bug-in-the-linux-kernel-ebpf-verifier",
      "primary_url": "https://www.zerodayinitiative.com/blog/2021/1/18/zdi-20-1440-an-incorrect-calculation-bug-in-the-linux-kernel-ebpf-verifier",
      "parent_primary_url": "https://www.zerodayinitiative.com/blog/2021/1/18/zdi-20-1440-an-incorrect-calculation-bug-in-the-linux-kernel-ebpf-verifier",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-zdi-20-1440-an-incorrect-calculation-bug-in-the-linux-kernel-ebpf-verifier-primary-bd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ZDI-20-1440: An Incorrect Calculation Bug in the Linux Kernel eBPF Verifier record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: ZDI-20-1440: An Incorrect Calculation Bug in the Linux Kernel eBPF Verifier resource_label: primary resource_type: article resource_url: https://www.zerodayinitiative.com/blog/2021/1/18/zdi-20-1440-an-incorrect-calculation-bug-in-the-linux-kernel-ebpf-verifier parent_primary_url: https://www.zerodayinitiative.com/blog/2021/1/18/zdi-20-1440-an-incorrect-calculation-bug-in-the-linux-kernel-ebpf-verifier source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"ZDI-20-1440: An Incorrect Calculation Bug in the Linux Kernel eBPF Verifier\" by Lucas Leong](https://www.zerodayinitiative.com/blog/2021/1/18/zdi-20-1440-an-incorrect-calculation-bug-in-the-linux-kernel-ebpf-verifie",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.zerodayinitiative.com/blog/2021/1/18/zdi-20-1440-an-incorrect-calculation-bug-in-the-linux-kernel-ebpf-verifier"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.zerodayinitiative.com/blog/2021/1/18/zdi-20-1440-an-incorrect-calculation-bug-in-the-linux-kernel-ebpf-verifier"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "eBPF"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "ZDI-20-1440 describes an incorrect calculation bug in the Linux kernel eBPF verifier leading to local privilege escalation.",
      "summary_zh": "ZDI-20-1440描述了Linux内核eBPF验证器中的一个错误计算漏洞，导致本地权限提升。",
      "source_markdown": "[2021: \"ZDI-20-1440: An Incorrect Calculation Bug in the Linux Kernel eBPF Verifier\" by Lucas Leong](https://www.zerodayinitiative.com/blog/2021/1/18/zdi-20-1440-an-incorrect-calculation-bug-in-the-linux-kernel-ebpf-verifier) [article]",
      "search_text": "zdi-20-1440: an incorrect calculation bug in the linux kernel ebpf verifier zdi-20-1440: an incorrect calculation bug in the linux kernel ebpf verifier lucas leong   vulnerabilities lpe lpe primary article https://www.zerodayinitiative.com/blog/2021/1/18/zdi-20-1440-an-incorrect-calculation-bug-in-the-linux-kernel-ebpf-verifier lpe ebpf  vulnerability zdi-20-1440 describes an incorrect calculation bug in the linux kernel ebpf verifier leading to local privilege escalation. zdi-20-1440描述了linux内核ebpf验证器中的一个错误计算漏洞，导致本地权限提升。 # zdi-20-1440: an incorrect calculation bug in the linux kernel ebpf verifier record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: zdi-20-1440: an incorrect calculation bug in the linux kernel ebpf verifier resource_label: primary resource_type: article resource_url: https://www.zerodayinitiative.com/blog/2021/1/18/zdi-20-1440-an-incorrect-calculation-bug-in-the-linux-kernel-ebpf-verifier parent_primary_url: https://www.zerodayinitiative.com/blog/2021/1/18/zdi-20-1440-an-incorrect-calculation-bug-in-the-linux-kernel-ebpf-verifier source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"zdi-20-1440: an incorrect calculation bug in the linux kernel ebpf verifier\" by lucas leong](https://www.zerodayinitiative.com/blog/2021/1/18/zdi-20-1440-an-incorrect-calculation-bug-in-the-linux-kernel-ebpf-verifie unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d7fc72fec649c80e",
      "item_id": "aec77d023e63c796",
      "slug": "2021-vulnerabilities-lpe-zdi-20-1440-writeup-primary-262bbdf1",
      "year": 2021,
      "title": "ZDI-20-1440 Writeup",
      "item_title": "ZDI-20-1440 Writeup",
      "authors": [
        "HexRabbit"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.hexrabbit.io/2021/02/07/ZDI-20-1440-writeup/",
      "primary_url": "https://blog.hexrabbit.io/2021/02/07/ZDI-20-1440-writeup/",
      "parent_primary_url": "https://blog.hexrabbit.io/2021/02/07/ZDI-20-1440-writeup/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-zdi-20-1440-writeup-primary-262bbdf1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ZDI-20-1440 Writeup record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: ZDI-20-1440 Writeup resource_label: primary resource_type: article resource_url: https://blog.hexrabbit.io/2021/02/07/ZDI-20-1440-writeup/ parent_primary_url: https://blog.hexrabbit.io/2021/02/07/ZDI-20-1440-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"ZDI-20-1440 Writeup\" by HexRabbit](https://blog.hexrabbit.io/2021/02/07/ZDI-20-1440-writeup/) [article] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: n",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.hexrabbit.io/2021/02/07/ZDI-20-1440-writeup/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.hexrabbit.io/2021/02/07/ZDI-20-1440-writeup/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "eBPF"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The ZDI-20-1440 writeup details an incorrect calculation bug in the Linux kernel eBPF verifier.",
      "summary_zh": "ZDI-20-1440的写作详细描述了Linux内核eBPF验证器中的一个错误计算漏洞。",
      "source_markdown": "[2021: \"ZDI-20-1440 Writeup\" by HexRabbit](https://blog.hexrabbit.io/2021/02/07/ZDI-20-1440-writeup/) [article]",
      "search_text": "zdi-20-1440 writeup zdi-20-1440 writeup hexrabbit   vulnerabilities lpe lpe primary article https://blog.hexrabbit.io/2021/02/07/zdi-20-1440-writeup/ lpe ebpf  vulnerability the zdi-20-1440 writeup details an incorrect calculation bug in the linux kernel ebpf verifier. zdi-20-1440的写作详细描述了linux内核ebpf验证器中的一个错误计算漏洞。 # zdi-20-1440 writeup record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: zdi-20-1440 writeup resource_label: primary resource_type: article resource_url: https://blog.hexrabbit.io/2021/02/07/zdi-20-1440-writeup/ parent_primary_url: https://blog.hexrabbit.io/2021/02/07/zdi-20-1440-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"zdi-20-1440 writeup\" by hexrabbit](https://blog.hexrabbit.io/2021/02/07/zdi-20-1440-writeup/) [article] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: n unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bf4ab5f199acdc18",
      "item_id": "997e2a5f790d7193",
      "slug": "2021-vulnerabilities-lpe-ssd-advisory-overlayfs-pe-primary-1c6a91fe",
      "year": 2021,
      "title": "SSD Advisory – OverlayFS PE",
      "item_title": "SSD Advisory – OverlayFS PE",
      "authors": [],
      "cves": [
        "CVE-2021-3493"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ssd-disclosure.com/ssd-advisory-overlayfs-pe/",
      "primary_url": "https://ssd-disclosure.com/ssd-advisory-overlayfs-pe/",
      "parent_primary_url": "https://ssd-disclosure.com/ssd-advisory-overlayfs-pe/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-ssd-advisory-overlayfs-pe-primary-1c6a91fe.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SSD Advisory – OverlayFS PE record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: SSD Advisory – OverlayFS PE resource_label: primary resource_type: article resource_url: https://ssd-disclosure.com/ssd-advisory-overlayfs-pe/ parent_primary_url: https://ssd-disclosure.com/ssd-advisory-overlayfs-pe/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"SSD Advisory – OverlayFS PE\"](https://ssd-disclosure.com/ssd-advisory-overlayfs-pe/) [article] [CVE-2021-3493] cves: CVE-2021-3493 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ssd-disclosure.com/ssd-advisory-overlayfs-pe/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ssd-disclosure.com/ssd-advisory-overlayfs-pe/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2021-3493"
      ],
      "affected_area": "OverlayFS",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2021-3493 is a local privilege escalation vulnerability in the OverlayFS component of the Linux kernel.",
      "summary_zh": "CVE-2021-3493是Linux内核中OverlayFS组件的本地权限提升漏洞。",
      "source_markdown": "[2021: \"SSD Advisory – OverlayFS PE\"](https://ssd-disclosure.com/ssd-advisory-overlayfs-pe/) [article] [CVE-2021-3493]",
      "search_text": "ssd advisory – overlayfs pe ssd advisory – overlayfs pe  cve-2021-3493  vulnerabilities lpe lpe primary article https://ssd-disclosure.com/ssd-advisory-overlayfs-pe/ lpe cve-2021-3493 overlayfs vulnerability cve-2021-3493 is a local privilege escalation vulnerability in the overlayfs component of the linux kernel. cve-2021-3493是linux内核中overlayfs组件的本地权限提升漏洞。 # ssd advisory – overlayfs pe record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: ssd advisory – overlayfs pe resource_label: primary resource_type: article resource_url: https://ssd-disclosure.com/ssd-advisory-overlayfs-pe/ parent_primary_url: https://ssd-disclosure.com/ssd-advisory-overlayfs-pe/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"ssd advisory – overlayfs pe\"](https://ssd-disclosure.com/ssd-advisory-overlayfs-pe/) [article] [cve-2021-3493] cves: cve-2021-3493 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "dc882f7d4016fc2e",
      "item_id": "63ee9962aeea933a",
      "slug": "2021-vulnerabilities-lpe-bugtales-a-nerve-racking-bug-collision-in-samsung-s-npu-driver-primary-f1feefe6",
      "year": 2021,
      "title": "[BugTales] A Nerve-Racking Bug Collision in Samsung's NPU Driver",
      "item_title": "[BugTales] A Nerve-Racking Bug Collision in Samsung's NPU Driver",
      "authors": [
        "Gyorgy Miru"
      ],
      "cves": [
        "CVE-2020-28343"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://labs.taszk.io/articles/post/bug_collision_in_samsungs_npu_driver/",
      "primary_url": "https://labs.taszk.io/articles/post/bug_collision_in_samsungs_npu_driver/",
      "parent_primary_url": "https://labs.taszk.io/articles/post/bug_collision_in_samsungs_npu_driver/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-bugtales-a-nerve-racking-bug-collision-in-samsung-s-npu-driver-primary-f1feefe6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# [BugTales] A Nerve-Racking Bug Collision in Samsung's NPU Driver record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: [BugTales] A Nerve-Racking Bug Collision in Samsung's NPU Driver resource_label: primary resource_type: article resource_url: https://labs.taszk.io/articles/post/bug_collision_in_samsungs_npu_driver/ parent_primary_url: https://labs.taszk.io/articles/post/bug_collision_in_samsungs_npu_driver/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"[BugTales] A Nerve-Racking Bug Collision in Samsung's NPU Driver\" by Gyorgy Miru](https://labs.taszk.io/articles/post/bug_collision_in_samsungs_npu_driver/) [article] [CVE-2020-28343, SVE-2020-18610] cves: CVE-2020-28343 android_impact_status: yes android_impact_reason: mentions an Android OEM/device family ios_impact_status: no ios_im",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://labs.taszk.io/articles/post/bug_collision_in_samsungs_npu_driver/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://labs.taszk.io/articles/post/bug_collision_in_samsungs_npu_driver/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions an Android OEM/device family",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2020-28343"
      ],
      "affected_area": "NPU driver",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2020-28343 is a local privilege escalation vulnerability in Samsung's NPU driver.",
      "summary_zh": "CVE-2020-28343是三星NPU驱动程序中的本地权限提升漏洞。",
      "source_markdown": "[2021: \"[BugTales] A Nerve-Racking Bug Collision in Samsung's NPU Driver\" by Gyorgy Miru](https://labs.taszk.io/articles/post/bug_collision_in_samsungs_npu_driver/) [article] [CVE-2020-28343, SVE-2020-18610]",
      "search_text": "[bugtales] a nerve-racking bug collision in samsung's npu driver [bugtales] a nerve-racking bug collision in samsung's npu driver gyorgy miru cve-2020-28343  vulnerabilities lpe lpe primary article https://labs.taszk.io/articles/post/bug_collision_in_samsungs_npu_driver/ lpe cve-2020-28343 npu driver vulnerability cve-2020-28343 is a local privilege escalation vulnerability in samsung's npu driver. cve-2020-28343是三星npu驱动程序中的本地权限提升漏洞。 # [bugtales] a nerve-racking bug collision in samsung's npu driver record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: [bugtales] a nerve-racking bug collision in samsung's npu driver resource_label: primary resource_type: article resource_url: https://labs.taszk.io/articles/post/bug_collision_in_samsungs_npu_driver/ parent_primary_url: https://labs.taszk.io/articles/post/bug_collision_in_samsungs_npu_driver/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"[bugtales] a nerve-racking bug collision in samsung's npu driver\" by gyorgy miru](https://labs.taszk.io/articles/post/bug_collision_in_samsungs_npu_driver/) [article] [cve-2020-28343, sve-2020-18610] cves: cve-2020-28343 android_impact_status: yes android_impact_reason: mentions an android oem/device family ios_impact_status: no ios_im yes mentions an android oem/device family no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "c8c97004f3b23e13",
      "item_id": "0716602dc2afd3be",
      "slug": "2021-vulnerabilities-lpe-cve-2021-20226-a-reference-counting-bug-in-the-linux-kernel-io-uring-subsystem-primar",
      "year": 2021,
      "title": "CVE-2021-20226: A Reference-Counting Bug in the Linux Kernel io_uring Subsystem",
      "item_title": "CVE-2021-20226: A Reference-Counting Bug in the Linux Kernel io_uring Subsystem",
      "authors": [
        "Lucas Leong"
      ],
      "cves": [
        "CVE-2021-20226"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.zerodayinitiative.com/blog/2021/4/22/cve-2021-20226-a-reference-counting-bug-in-the-linux-kernel-iouring-subsystem",
      "primary_url": "https://www.zerodayinitiative.com/blog/2021/4/22/cve-2021-20226-a-reference-counting-bug-in-the-linux-kernel-iouring-subsystem",
      "parent_primary_url": "https://www.zerodayinitiative.com/blog/2021/4/22/cve-2021-20226-a-reference-counting-bug-in-the-linux-kernel-iouring-subsystem",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-cve-2021-20226-a-reference-counting-bug-in-the-linux-kernel-io-uring-subsystem-primar.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2021-20226: A Reference-Counting Bug in the Linux Kernel io_uring Subsystem record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2021-20226: A Reference-Counting Bug in the Linux Kernel io_uring Subsystem resource_label: primary resource_type: article resource_url: https://www.zerodayinitiative.com/blog/2021/4/22/cve-2021-20226-a-reference-counting-bug-in-the-linux-kernel-iouring-subsystem parent_primary_url: https://www.zerodayinitiative.com/blog/2021/4/22/cve-2021-20226-a-reference-counting-bug-in-the-linux-kernel-iouring-subsystem source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"CVE-2021-20226: A Reference-Counting Bug in the Linux Kernel io_uring Subsystem\" by Lucas Leong](https://www.zerodayinitiative.com/blog/2021/4/22/cve-2021-20226-a-reference-counting-bug-in-the-linux-ke",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.zerodayinitiative.com/blog/2021/4/22/cve-2021-20226-a-reference-counting-bug-in-the-linux-kernel-iouring-subsystem"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.zerodayinitiative.com/blog/2021/4/22/cve-2021-20226-a-reference-counting-bug-in-the-linux-kernel-iouring-subsystem"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2021-20226"
      ],
      "affected_area": "io_uring",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2021-20226 is a reference-counting bug in the Linux kernel io_uring subsystem leading to local privilege escalation.",
      "summary_zh": "CVE-2021-20226是Linux内核io_uring子系统中的引用计数错误，导致本地权限提升。",
      "source_markdown": "[2021: \"CVE-2021-20226: A Reference-Counting Bug in the Linux Kernel io_uring Subsystem\" by Lucas Leong](https://www.zerodayinitiative.com/blog/2021/4/22/cve-2021-20226-a-reference-counting-bug-in-the-linux-kernel-iouring-subsystem) [article] [CVE-2021-20226]",
      "search_text": "cve-2021-20226: a reference-counting bug in the linux kernel io_uring subsystem cve-2021-20226: a reference-counting bug in the linux kernel io_uring subsystem lucas leong cve-2021-20226  vulnerabilities lpe lpe primary article https://www.zerodayinitiative.com/blog/2021/4/22/cve-2021-20226-a-reference-counting-bug-in-the-linux-kernel-iouring-subsystem lpe cve-2021-20226 io_uring vulnerability cve-2021-20226 is a reference-counting bug in the linux kernel io_uring subsystem leading to local privilege escalation. cve-2021-20226是linux内核io_uring子系统中的引用计数错误，导致本地权限提升。 # cve-2021-20226: a reference-counting bug in the linux kernel io_uring subsystem record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2021-20226: a reference-counting bug in the linux kernel io_uring subsystem resource_label: primary resource_type: article resource_url: https://www.zerodayinitiative.com/blog/2021/4/22/cve-2021-20226-a-reference-counting-bug-in-the-linux-kernel-iouring-subsystem parent_primary_url: https://www.zerodayinitiative.com/blog/2021/4/22/cve-2021-20226-a-reference-counting-bug-in-the-linux-kernel-iouring-subsystem source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"cve-2021-20226: a reference-counting bug in the linux kernel io_uring subsystem\" by lucas leong](https://www.zerodayinitiative.com/blog/2021/4/22/cve-2021-20226-a-reference-counting-bug-in-the-linux-ke unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bbe8be9436d885f8",
      "item_id": "380ef21122dbe59e",
      "slug": "2021-vulnerabilities-lpe-one-day-short-of-a-full-chain-part-1-android-kernel-arbitrary-code-execution-primary-",
      "year": 2021,
      "title": "One day short of a full chain: Part 1 - Android Kernel arbitrary code execution",
      "item_title": "One day short of a full chain: Part 1 - Android Kernel arbitrary code execution",
      "authors": [
        "Man Yue Mo"
      ],
      "cves": [],
      "tags": [
        "GHSL-2020-375"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://securitylab.github.com/research/one_day_short_of_a_fullchain_android/",
      "primary_url": "https://securitylab.github.com/research/one_day_short_of_a_fullchain_android/",
      "parent_primary_url": "https://securitylab.github.com/research/one_day_short_of_a_fullchain_android/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-one-day-short-of-a-full-chain-part-1-android-kernel-arbitrary-code-execution-primary-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# One day short of a full chain: Part 1 - Android Kernel arbitrary code execution record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: One day short of a full chain: Part 1 - Android Kernel arbitrary code execution resource_label: primary resource_type: article resource_url: https://securitylab.github.com/research/one_day_short_of_a_fullchain_android/ parent_primary_url: https://securitylab.github.com/research/one_day_short_of_a_fullchain_android/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"One day short of a full chain: Part 1 - Android Kernel arbitrary code execution\" by Man Yue Mo](https://securitylab.github.com/research/one_day_short_of_a_fullchain_android/) [article] [GHSL-2020-375] cves: none android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: n",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://securitylab.github.com/research/one_day_short_of_a_fullchain_android/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://securitylab.github.com/research/one_day_short_of_a_fullchain_android/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://securitylab.github.com/research/one_day_short_of_a_fullchain_android/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The article discusses an Android kernel vulnerability that could lead to arbitrary code execution.",
      "summary_zh": "该文章讨论了一个可能导致任意代码执行的Android内核漏洞。",
      "source_markdown": "[2021: \"One day short of a full chain: Part 1 - Android Kernel arbitrary code execution\" by Man Yue Mo](https://securitylab.github.com/research/one_day_short_of_a_fullchain_android/) [article] [GHSL-2020-375]",
      "search_text": "one day short of a full chain: part 1 - android kernel arbitrary code execution one day short of a full chain: part 1 - android kernel arbitrary code execution man yue mo  ghsl-2020-375 vulnerabilities lpe lpe primary article https://securitylab.github.com/research/one_day_short_of_a_fullchain_android/ lpe android  vulnerability the article discusses an android kernel vulnerability that could lead to arbitrary code execution. 该文章讨论了一个可能导致任意代码执行的android内核漏洞。 # one day short of a full chain: part 1 - android kernel arbitrary code execution record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: one day short of a full chain: part 1 - android kernel arbitrary code execution resource_label: primary resource_type: article resource_url: https://securitylab.github.com/research/one_day_short_of_a_fullchain_android/ parent_primary_url: https://securitylab.github.com/research/one_day_short_of_a_fullchain_android/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"one day short of a full chain: part 1 - android kernel arbitrary code execution\" by man yue mo](https://securitylab.github.com/research/one_day_short_of_a_fullchain_android/) [article] [ghsl-2020-375] cves: none android_impact_status: yes android_impact_reason: mentions android ios_impact_status: n yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "aabf93374684c612",
      "item_id": "228c0d38a63c3f08",
      "slug": "2021-vulnerabilities-lpe-new-old-bugs-in-the-linux-kernel-primary-05773940",
      "year": 2021,
      "title": "New Old Bugs in the Linux Kernel",
      "item_title": "New Old Bugs in the Linux Kernel",
      "authors": [],
      "cves": [
        "CVE-2021-27365",
        "CVE-2021-27363",
        "CVE-2021-27364"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.grimm-co.com/2021/03/new-old-bugs-in-linux-kernel.html",
      "primary_url": "https://blog.grimm-co.com/2021/03/new-old-bugs-in-linux-kernel.html",
      "parent_primary_url": "https://blog.grimm-co.com/2021/03/new-old-bugs-in-linux-kernel.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-new-old-bugs-in-the-linux-kernel-primary-05773940.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# New Old Bugs in the Linux Kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: New Old Bugs in the Linux Kernel resource_label: primary resource_type: article resource_url: https://blog.grimm-co.com/2021/03/new-old-bugs-in-linux-kernel.html parent_primary_url: https://blog.grimm-co.com/2021/03/new-old-bugs-in-linux-kernel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"New Old Bugs in the Linux Kernel\"](https://blog.grimm-co.com/2021/03/new-old-bugs-in-linux-kernel.html) [article] [CVE-2021-27365, CVE-2021-27363, CVE-2021-27364] cves: CVE-2021-27365, CVE-2021-27363, CVE-2021-27364 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.grimm-co.com/2021/03/new-old-bugs-in-linux-kernel.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.grimm-co.com/2021/03/new-old-bugs-in-linux-kernel.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The article highlights multiple old vulnerabilities in the Linux kernel that have resurfaced.",
      "summary_zh": "该文章强调了在Linux内核中重新出现的多个旧漏洞。",
      "source_markdown": "[2021: \"New Old Bugs in the Linux Kernel\"](https://blog.grimm-co.com/2021/03/new-old-bugs-in-linux-kernel.html) [article] [CVE-2021-27365, CVE-2021-27363, CVE-2021-27364]",
      "search_text": "new old bugs in the linux kernel new old bugs in the linux kernel  cve-2021-27365 cve-2021-27363 cve-2021-27364  vulnerabilities lpe lpe primary article https://blog.grimm-co.com/2021/03/new-old-bugs-in-linux-kernel.html lpe  vulnerability the article highlights multiple old vulnerabilities in the linux kernel that have resurfaced. 该文章强调了在linux内核中重新出现的多个旧漏洞。 # new old bugs in the linux kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: new old bugs in the linux kernel resource_label: primary resource_type: article resource_url: https://blog.grimm-co.com/2021/03/new-old-bugs-in-linux-kernel.html parent_primary_url: https://blog.grimm-co.com/2021/03/new-old-bugs-in-linux-kernel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"new old bugs in the linux kernel\"](https://blog.grimm-co.com/2021/03/new-old-bugs-in-linux-kernel.html) [article] [cve-2021-27365, cve-2021-27363, cve-2021-27364] cves: cve-2021-27365, cve-2021-27363, cve-2021-27364 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "05e3e965e526b1e8",
      "item_id": "8d362be7cca544de",
      "slug": "2021-vulnerabilities-lpe-four-bytes-of-power-exploiting-cve-2021-26708-in-the-linux-kernel-primary-b1fa79c5",
      "year": 2021,
      "title": "Four Bytes of Power: exploiting CVE-2021-26708 in the Linux kernel",
      "item_title": "Four Bytes of Power: exploiting CVE-2021-26708 in the Linux kernel",
      "authors": [],
      "cves": [
        "CVE-2021-26708"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html",
      "primary_url": "https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html",
      "parent_primary_url": "https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-four-bytes-of-power-exploiting-cve-2021-26708-in-the-linux-kernel-primary-b1fa79c5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Four Bytes of Power: exploiting CVE-2021-26708 in the Linux kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Four Bytes of Power: exploiting CVE-2021-26708 in the Linux kernel resource_label: primary resource_type: article resource_url: https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html parent_primary_url: https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Four Bytes of Power: exploiting CVE-2021-26708 in the Linux kernel\"](https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html) [article] [[slides](https://a13xp0p0v.github.io/img/CVE-2021-26708.pdf)] [[video](https://www.youtube.com/watch?v=EMcjHfceX44)] [CVE-2021-26708] cves: CVE-2021-26708 android_impact_status: unknown android_impact_reason: Linux kernel v",
      "link_types": [
        "article",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://a13xp0p0v.github.io/img/CVE-2021-26708.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=EMcjHfceX44"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://a13xp0p0v.github.io/img/CVE-2021-26708.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=EMcjHfceX44"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html",
        "https://a13xp0p0v.github.io/img/CVE-2021-26708.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2021-26708"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2021-26708 is a vulnerability in the Linux kernel that can be exploited for local privilege escalation.",
      "summary_zh": "CVE-2021-26708是Linux内核中的一个漏洞，可被利用进行本地权限提升。",
      "source_markdown": "[2021: \"Four Bytes of Power: exploiting CVE-2021-26708 in the Linux kernel\"](https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html) [article] [[slides](https://a13xp0p0v.github.io/img/CVE-2021-26708.pdf)] [[video](https://www.youtube.com/watch?v=EMcjHfceX44)] [CVE-2021-26708]",
      "search_text": "four bytes of power: exploiting cve-2021-26708 in the linux kernel four bytes of power: exploiting cve-2021-26708 in the linux kernel  cve-2021-26708  vulnerabilities lpe lpe primary article https://a13xp0p0v.github.io/2021/02/09/cve-2021-26708.html lpe cve-2021-26708  vulnerability cve-2021-26708 is a vulnerability in the linux kernel that can be exploited for local privilege escalation. cve-2021-26708是linux内核中的一个漏洞，可被利用进行本地权限提升。 # four bytes of power: exploiting cve-2021-26708 in the linux kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: four bytes of power: exploiting cve-2021-26708 in the linux kernel resource_label: primary resource_type: article resource_url: https://a13xp0p0v.github.io/2021/02/09/cve-2021-26708.html parent_primary_url: https://a13xp0p0v.github.io/2021/02/09/cve-2021-26708.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"four bytes of power: exploiting cve-2021-26708 in the linux kernel\"](https://a13xp0p0v.github.io/2021/02/09/cve-2021-26708.html) [article] [[slides](https://a13xp0p0v.github.io/img/cve-2021-26708.pdf)] [[video](https://www.youtube.com/watch?v=emcjhfcex44)] [cve-2021-26708] cves: cve-2021-26708 android_impact_status: unknown android_impact_reason: linux kernel v unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "e2f25885e3ff552a",
      "item_id": "8d362be7cca544de",
      "slug": "2021-vulnerabilities-lpe-four-bytes-of-power-exploiting-cve-2021-26708-in-the-linux-kernel-slides-52877104",
      "year": 2021,
      "title": "Four Bytes of Power: exploiting CVE-2021-26708 in the Linux kernel · slides",
      "item_title": "Four Bytes of Power: exploiting CVE-2021-26708 in the Linux kernel",
      "authors": [],
      "cves": [
        "CVE-2021-26708"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://a13xp0p0v.github.io/img/CVE-2021-26708.pdf",
      "primary_url": "https://a13xp0p0v.github.io/img/CVE-2021-26708.pdf",
      "parent_primary_url": "https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-four-bytes-of-power-exploiting-cve-2021-26708-in-the-linux-kernel-slides-52877104.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Four Bytes of Power: exploiting CVE-2021-26708 in the Linux kernel · slides record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Four Bytes of Power: exploiting CVE-2021-26708 in the Linux kernel resource_label: slides resource_type: slides resource_url: https://a13xp0p0v.github.io/img/CVE-2021-26708.pdf parent_primary_url: https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Four Bytes of Power: exploiting CVE-2021-26708 in the Linux kernel\"](https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html) [article] [[slides](https://a13xp0p0v.github.io/img/CVE-2021-26708.pdf)] [[video](https://www.youtube.com/watch?v=EMcjHfceX44)] [CVE-2021-26708] cves: CVE-2021-26708 android_impact_status: unknown android_impact_reason: Linux kernel vu",
      "link_types": [
        "article",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://a13xp0p0v.github.io/img/CVE-2021-26708.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=EMcjHfceX44"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://a13xp0p0v.github.io/img/CVE-2021-26708.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=EMcjHfceX44"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html",
        "https://a13xp0p0v.github.io/img/CVE-2021-26708.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2021-26708"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The slides detail the exploitation of CVE-2021-26708 in the Linux kernel.",
      "summary_zh": "这些幻灯片详细描述了Linux内核中CVE-2021-26708的利用。",
      "source_markdown": "[2021: \"Four Bytes of Power: exploiting CVE-2021-26708 in the Linux kernel\"](https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html) [article] [[slides](https://a13xp0p0v.github.io/img/CVE-2021-26708.pdf)] [[video](https://www.youtube.com/watch?v=EMcjHfceX44)] [CVE-2021-26708]",
      "search_text": "four bytes of power: exploiting cve-2021-26708 in the linux kernel · slides four bytes of power: exploiting cve-2021-26708 in the linux kernel  cve-2021-26708  vulnerabilities lpe lpe slides slides https://a13xp0p0v.github.io/img/cve-2021-26708.pdf lpe cve-2021-26708  vulnerability the slides detail the exploitation of cve-2021-26708 in the linux kernel. 这些幻灯片详细描述了linux内核中cve-2021-26708的利用。 # four bytes of power: exploiting cve-2021-26708 in the linux kernel · slides record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: four bytes of power: exploiting cve-2021-26708 in the linux kernel resource_label: slides resource_type: slides resource_url: https://a13xp0p0v.github.io/img/cve-2021-26708.pdf parent_primary_url: https://a13xp0p0v.github.io/2021/02/09/cve-2021-26708.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"four bytes of power: exploiting cve-2021-26708 in the linux kernel\"](https://a13xp0p0v.github.io/2021/02/09/cve-2021-26708.html) [article] [[slides](https://a13xp0p0v.github.io/img/cve-2021-26708.pdf)] [[video](https://www.youtube.com/watch?v=emcjhfcex44)] [cve-2021-26708] cves: cve-2021-26708 android_impact_status: unknown android_impact_reason: linux kernel vu unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "aa0d560ba2e93a0e",
      "item_id": "8d362be7cca544de",
      "slug": "2021-vulnerabilities-lpe-four-bytes-of-power-exploiting-cve-2021-26708-in-the-linux-kernel-video-3189870a",
      "year": 2021,
      "title": "Four Bytes of Power: exploiting CVE-2021-26708 in the Linux kernel · video",
      "item_title": "Four Bytes of Power: exploiting CVE-2021-26708 in the Linux kernel",
      "authors": [],
      "cves": [
        "CVE-2021-26708"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=EMcjHfceX44",
      "primary_url": "https://www.youtube.com/watch?v=EMcjHfceX44",
      "parent_primary_url": "https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-four-bytes-of-power-exploiting-cve-2021-26708-in-the-linux-kernel-video-3189870a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Four Bytes of Power: exploiting CVE-2021-26708 in the Linux kernel · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Four Bytes of Power: exploiting CVE-2021-26708 in the Linux kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=EMcjHfceX44 parent_primary_url: https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Four Bytes of Power: exploiting CVE-2021-26708 in the Linux kernel\"](https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html) [article] [[slides](https://a13xp0p0v.github.io/img/CVE-2021-26708.pdf)] [[video](https://www.youtube.com/watch?v=EMcjHfceX44)] [CVE-2021-26708] cves: CVE-2021-26708 android_impact_status: unknown android_impact_reason: Linux kernel vulnerabilit",
      "link_types": [
        "article",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://a13xp0p0v.github.io/img/CVE-2021-26708.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=EMcjHfceX44"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://a13xp0p0v.github.io/img/CVE-2021-26708.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=EMcjHfceX44"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html",
        "https://a13xp0p0v.github.io/img/CVE-2021-26708.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2021-26708"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The paper discusses gaining root access in Linux using the CVE-2021-26708 vulnerability.",
      "summary_zh": "该论文讨论了如何利用CVE-2021-26708漏洞在Linux中获得根访问权限。",
      "source_markdown": "[2021: \"Four Bytes of Power: exploiting CVE-2021-26708 in the Linux kernel\"](https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html) [article] [[slides](https://a13xp0p0v.github.io/img/CVE-2021-26708.pdf)] [[video](https://www.youtube.com/watch?v=EMcjHfceX44)] [CVE-2021-26708]",
      "search_text": "four bytes of power: exploiting cve-2021-26708 in the linux kernel · video four bytes of power: exploiting cve-2021-26708 in the linux kernel  cve-2021-26708  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=emcjhfcex44 lpe cve-2021-26708  vulnerability the paper discusses gaining root access in linux using the cve-2021-26708 vulnerability. 该论文讨论了如何利用cve-2021-26708漏洞在linux中获得根访问权限。 # four bytes of power: exploiting cve-2021-26708 in the linux kernel · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: four bytes of power: exploiting cve-2021-26708 in the linux kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=emcjhfcex44 parent_primary_url: https://a13xp0p0v.github.io/2021/02/09/cve-2021-26708.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"four bytes of power: exploiting cve-2021-26708 in the linux kernel\"](https://a13xp0p0v.github.io/2021/02/09/cve-2021-26708.html) [article] [[slides](https://a13xp0p0v.github.io/img/cve-2021-26708.pdf)] [[video](https://www.youtube.com/watch?v=emcjhfcex44)] [cve-2021-26708] cves: cve-2021-26708 android_impact_status: unknown android_impact_reason: linux kernel vulnerabilit unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "f8423de1e37c12e0",
      "item_id": "ce2ef50333b2718a",
      "slug": "2021-vulnerabilities-lpe-improving-the-exploit-for-cve-2021-26708-in-the-linux-kernel-to-bypass-lkrg-primary-2",
      "year": 2021,
      "title": "Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG",
      "item_title": "Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [
        "CVE-2021-26708"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html",
      "primary_url": "https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html",
      "parent_primary_url": "https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-improving-the-exploit-for-cve-2021-26708-in-the-linux-kernel-to-bypass-lkrg-primary-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG resource_label: primary resource_type: article resource_url: https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html parent_primary_url: https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG\" by Alexander Popov](https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html) [article] [[slides](https://a13xp0p0v.github.io/img/CVE-2021-26708_LKRG_bypass.pdf)] [[video](https://www.youtube.com/watch?v=n6YLiYiCIMA)] cves: CVE-2021-26708 android_impact_status: unknown andro",
      "link_types": [
        "article",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://a13xp0p0v.github.io/img/CVE-2021-26708_LKRG_bypass.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=n6YLiYiCIMA"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://a13xp0p0v.github.io/img/CVE-2021-26708_LKRG_bypass.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=n6YLiYiCIMA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html",
        "https://a13xp0p0v.github.io/img/CVE-2021-26708_LKRG_bypass.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2021-26708"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2021 Linux kernel LPE resource \"Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG\" (CVE-2021-26708); URL type: article.",
      "summary_zh": "2021 年 Linux 内核LPE资料：「Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG」（CVE-2021-26708）；URL 类型：article。",
      "source_markdown": "[2021: \"Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG\" by Alexander Popov](https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html) [article] [[slides](https://a13xp0p0v.github.io/img/CVE-2021-26708_LKRG_bypass.pdf)] [[video](https://www.youtube.com/watch?v=n6YLiYiCIMA)]",
      "search_text": "improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg alexander popov cve-2021-26708  vulnerabilities lpe lpe primary article https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html vulnerabilities lpe article cve-2021-26708  lpe 2021 linux kernel lpe resource \"improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg\" (cve-2021-26708); url type: article. 2021 年 linux 内核lpe资料：「improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg」（cve-2021-26708）；url 类型：article。 # improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg resource_label: primary resource_type: article resource_url: https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html parent_primary_url: https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg\" by alexander popov](https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html) [article] [[slides](https://a13xp0p0v.github.io/img/cve-2021-26708_lkrg_bypass.pdf)] [[video](https://www.youtube.com/watch?v=n6yliyicima)] cves: cve-2021-26708 android_impact_status: unknown andro unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "9de9e3c396db21d1",
      "item_id": "ce2ef50333b2718a",
      "slug": "2021-vulnerabilities-lpe-improving-the-exploit-for-cve-2021-26708-in-the-linux-kernel-to-bypass-lkrg-slides-58",
      "year": 2021,
      "title": "Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG · slides",
      "item_title": "Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [
        "CVE-2021-26708"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://a13xp0p0v.github.io/img/CVE-2021-26708_LKRG_bypass.pdf",
      "primary_url": "https://a13xp0p0v.github.io/img/CVE-2021-26708_LKRG_bypass.pdf",
      "parent_primary_url": "https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-improving-the-exploit-for-cve-2021-26708-in-the-linux-kernel-to-bypass-lkrg-slides-58.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG · slides record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG resource_label: slides resource_type: slides resource_url: https://a13xp0p0v.github.io/img/CVE-2021-26708_LKRG_bypass.pdf parent_primary_url: https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG\" by Alexander Popov](https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html) [article] [[slides](https://a13xp0p0v.github.io/img/CVE-2021-26708_LKRG_bypass.pdf)] [[video](https://www.youtube.com/watch?v=n6YLiYiCIMA)] cves: CVE-2021-26708 android_impact_status:",
      "link_types": [
        "article",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://a13xp0p0v.github.io/img/CVE-2021-26708_LKRG_bypass.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=n6YLiYiCIMA"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://a13xp0p0v.github.io/img/CVE-2021-26708_LKRG_bypass.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=n6YLiYiCIMA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html",
        "https://a13xp0p0v.github.io/img/CVE-2021-26708_LKRG_bypass.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "slides",
        "CVE-2021-26708"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2021 Linux kernel LPE resource \"Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG · slides\" (CVE-2021-26708); URL type: slides.",
      "summary_zh": "2021 年 Linux 内核LPE资料：「Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG · slides」（CVE-2021-26708）；URL 类型：slides。",
      "source_markdown": "[2021: \"Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG\" by Alexander Popov](https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html) [article] [[slides](https://a13xp0p0v.github.io/img/CVE-2021-26708_LKRG_bypass.pdf)] [[video](https://www.youtube.com/watch?v=n6YLiYiCIMA)]",
      "search_text": "improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg · slides improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg alexander popov cve-2021-26708  vulnerabilities lpe lpe slides slides https://a13xp0p0v.github.io/img/cve-2021-26708_lkrg_bypass.pdf vulnerabilities lpe slides cve-2021-26708  lpe 2021 linux kernel lpe resource \"improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg · slides\" (cve-2021-26708); url type: slides. 2021 年 linux 内核lpe资料：「improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg · slides」（cve-2021-26708）；url 类型：slides。 # improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg · slides record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg resource_label: slides resource_type: slides resource_url: https://a13xp0p0v.github.io/img/cve-2021-26708_lkrg_bypass.pdf parent_primary_url: https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg\" by alexander popov](https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html) [article] [[slides](https://a13xp0p0v.github.io/img/cve-2021-26708_lkrg_bypass.pdf)] [[video](https://www.youtube.com/watch?v=n6yliyicima)] cves: cve-2021-26708 android_impact_status: unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "bce9ca3c13ca26c6",
      "item_id": "ce2ef50333b2718a",
      "slug": "2021-vulnerabilities-lpe-improving-the-exploit-for-cve-2021-26708-in-the-linux-kernel-to-bypass-lkrg-video-94e",
      "year": 2021,
      "title": "Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG · video",
      "item_title": "Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [
        "CVE-2021-26708"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=n6YLiYiCIMA",
      "primary_url": "https://www.youtube.com/watch?v=n6YLiYiCIMA",
      "parent_primary_url": "https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-improving-the-exploit-for-cve-2021-26708-in-the-linux-kernel-to-bypass-lkrg-video-94e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=n6YLiYiCIMA parent_primary_url: https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG\" by Alexander Popov](https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html) [article] [[slides](https://a13xp0p0v.github.io/img/CVE-2021-26708_LKRG_bypass.pdf)] [[video](https://www.youtube.com/watch?v=n6YLiYiCIMA)] cves: CVE-2021-26708 android_impact_status: unknown android_impac",
      "link_types": [
        "article",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://a13xp0p0v.github.io/img/CVE-2021-26708_LKRG_bypass.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=n6YLiYiCIMA"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://a13xp0p0v.github.io/img/CVE-2021-26708_LKRG_bypass.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=n6YLiYiCIMA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html",
        "https://a13xp0p0v.github.io/img/CVE-2021-26708_LKRG_bypass.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "video",
        "CVE-2021-26708"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2021 Linux kernel LPE resource \"Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG · video\" (CVE-2021-26708); URL type: video.",
      "summary_zh": "2021 年 Linux 内核LPE资料：「Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG · video」（CVE-2021-26708）；URL 类型：video。",
      "source_markdown": "[2021: \"Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG\" by Alexander Popov](https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html) [article] [[slides](https://a13xp0p0v.github.io/img/CVE-2021-26708_LKRG_bypass.pdf)] [[video](https://www.youtube.com/watch?v=n6YLiYiCIMA)]",
      "search_text": "improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg · video improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg alexander popov cve-2021-26708  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=n6yliyicima vulnerabilities lpe video cve-2021-26708  lpe 2021 linux kernel lpe resource \"improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg · video\" (cve-2021-26708); url type: video. 2021 年 linux 内核lpe资料：「improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg · video」（cve-2021-26708）；url 类型：video。 # improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=n6yliyicima parent_primary_url: https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"improving the exploit for cve-2021-26708 in the linux kernel to bypass lkrg\" by alexander popov](https://a13xp0p0v.github.io/2021/08/25/lkrg-bypass.html) [article] [[slides](https://a13xp0p0v.github.io/img/cve-2021-26708_lkrg_bypass.pdf)] [[video](https://www.youtube.com/watch?v=n6yliyicima)] cves: cve-2021-26708 android_impact_status: unknown android_impac unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "0ae8c53b580c50a8",
      "item_id": "c46d7d68b85380a1",
      "slug": "2021-vulnerabilities-lpe-gaining-root-access-in-linux-using-the-cve-2021-26708-vulnerability-primary-23a382c0",
      "year": 2021,
      "title": "Gaining root access in Linux using the CVE-2021-26708 vulnerability",
      "item_title": "Gaining root access in Linux using the CVE-2021-26708 vulnerability",
      "authors": [
        "Markel Azpeitia Loiti"
      ],
      "cves": [
        "CVE-2021-26708"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://addi.ehu.es/bitstream/handle/10810/53355/GrAL_MAzpeitia.pdf",
      "primary_url": "https://addi.ehu.es/bitstream/handle/10810/53355/GrAL_MAzpeitia.pdf",
      "parent_primary_url": "https://addi.ehu.es/bitstream/handle/10810/53355/GrAL_MAzpeitia.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-gaining-root-access-in-linux-using-the-cve-2021-26708-vulnerability-primary-23a382c0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Gaining root access in Linux using the CVE-2021-26708 vulnerability record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Gaining root access in Linux using the CVE-2021-26708 vulnerability resource_label: primary resource_type: paper resource_url: https://addi.ehu.es/bitstream/handle/10810/53355/GrAL_MAzpeitia.pdf parent_primary_url: https://addi.ehu.es/bitstream/handle/10810/53355/GrAL_MAzpeitia.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Gaining root access in Linux using the CVE-2021-26708 vulnerability\" by Markel Azpeitia Loiti](https://addi.ehu.es/bitstream/handle/10810/53355/GrAL_MAzpeitia.pdf) [paper] cves: CVE-2021-26708 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendo",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://addi.ehu.es/bitstream/handle/10810/53355/GrAL_MAzpeitia.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://addi.ehu.es/bitstream/handle/10810/53355/GrAL_MAzpeitia.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "paper",
        "CVE-2021-26708"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2021 Linux kernel LPE resource \"Gaining root access in Linux using the CVE-2021-26708 vulnerability\" (CVE-2021-26708); URL type: paper.",
      "summary_zh": "2021 年 Linux 内核LPE资料：「Gaining root access in Linux using the CVE-2021-26708 vulnerability」（CVE-2021-26708）；URL 类型：paper。",
      "source_markdown": "[2021: \"Gaining root access in Linux using the CVE-2021-26708 vulnerability\" by Markel Azpeitia Loiti](https://addi.ehu.es/bitstream/handle/10810/53355/GrAL_MAzpeitia.pdf) [paper]",
      "search_text": "gaining root access in linux using the cve-2021-26708 vulnerability gaining root access in linux using the cve-2021-26708 vulnerability markel azpeitia loiti cve-2021-26708  vulnerabilities lpe lpe primary paper https://addi.ehu.es/bitstream/handle/10810/53355/gral_mazpeitia.pdf vulnerabilities lpe paper cve-2021-26708  lpe 2021 linux kernel lpe resource \"gaining root access in linux using the cve-2021-26708 vulnerability\" (cve-2021-26708); url type: paper. 2021 年 linux 内核lpe资料：「gaining root access in linux using the cve-2021-26708 vulnerability」（cve-2021-26708）；url 类型：paper。 # gaining root access in linux using the cve-2021-26708 vulnerability record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: gaining root access in linux using the cve-2021-26708 vulnerability resource_label: primary resource_type: paper resource_url: https://addi.ehu.es/bitstream/handle/10810/53355/gral_mazpeitia.pdf parent_primary_url: https://addi.ehu.es/bitstream/handle/10810/53355/gral_mazpeitia.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"gaining root access in linux using the cve-2021-26708 vulnerability\" by markel azpeitia loiti](https://addi.ehu.es/bitstream/handle/10810/53355/gral_mazpeitia.pdf) [paper] cves: cve-2021-26708 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendo unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "45e5138118fa9c62",
      "item_id": "3c65ecacb901299f",
      "slug": "2021-vulnerabilities-lpe-the-curious-case-of-cve-2020-14381-primary-4a5e1697",
      "year": 2021,
      "title": "The curious case of CVE-2020-14381",
      "item_title": "The curious case of CVE-2020-14381",
      "authors": [],
      "cves": [
        "CVE-2020-14381"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.frizn.fr/linux-kernel/cve-2020-14381",
      "primary_url": "https://blog.frizn.fr/linux-kernel/cve-2020-14381",
      "parent_primary_url": "https://blog.frizn.fr/linux-kernel/cve-2020-14381",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-the-curious-case-of-cve-2020-14381-primary-4a5e1697.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The curious case of CVE-2020-14381 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The curious case of CVE-2020-14381 resource_label: primary resource_type: article resource_url: https://blog.frizn.fr/linux-kernel/cve-2020-14381 parent_primary_url: https://blog.frizn.fr/linux-kernel/cve-2020-14381 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"The curious case of CVE-2020-14381\"](https://blog.frizn.fr/linux-kernel/cve-2020-14381) [article] [CVE-2020-14381] cves: CVE-2020-14381 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false h",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.frizn.fr/linux-kernel/cve-2020-14381"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.frizn.fr/linux-kernel/cve-2020-14381"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2020-14381"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The article explores the details surrounding CVE-2020-14381, a local privilege escalation vulnerability.",
      "summary_zh": "该文章探讨了CVE-2020-14381的细节，这是一个本地权限提升漏洞。",
      "source_markdown": "[2021: \"The curious case of CVE-2020-14381\"](https://blog.frizn.fr/linux-kernel/cve-2020-14381) [article] [CVE-2020-14381]",
      "search_text": "the curious case of cve-2020-14381 the curious case of cve-2020-14381  cve-2020-14381  vulnerabilities lpe lpe primary article https://blog.frizn.fr/linux-kernel/cve-2020-14381 lpe cve-2020-14381  vulnerability the article explores the details surrounding cve-2020-14381, a local privilege escalation vulnerability. 该文章探讨了cve-2020-14381的细节，这是一个本地权限提升漏洞。 # the curious case of cve-2020-14381 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the curious case of cve-2020-14381 resource_label: primary resource_type: article resource_url: https://blog.frizn.fr/linux-kernel/cve-2020-14381 parent_primary_url: https://blog.frizn.fr/linux-kernel/cve-2020-14381 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"the curious case of cve-2020-14381\"](https://blog.frizn.fr/linux-kernel/cve-2020-14381) [article] [cve-2020-14381] cves: cve-2020-14381 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false h unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f3a3e7f19de3ff8d",
      "item_id": "812dada3f180b882",
      "slug": "2021-vulnerabilities-lpe-galaxy-s-meltdown-exploiting-sve-2020-18610-primary-4ea5f2bb",
      "year": 2021,
      "title": "Galaxy's Meltdown - Exploiting SVE-2020-18610",
      "item_title": "Galaxy's Meltdown - Exploiting SVE-2020-18610",
      "authors": [],
      "cves": [
        "CVE-2020-28343"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/vngkv123/articles/blob/main/Galaxy's%20Meltdown%20-%20Exploiting%20SVE-2020-18610.md",
      "primary_url": "https://github.com/vngkv123/articles/blob/main/Galaxy's%20Meltdown%20-%20Exploiting%20SVE-2020-18610.md",
      "parent_primary_url": "https://github.com/vngkv123/articles/blob/main/Galaxy's%20Meltdown%20-%20Exploiting%20SVE-2020-18610.md",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-galaxy-s-meltdown-exploiting-sve-2020-18610-primary-4ea5f2bb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Galaxy's Meltdown - Exploiting SVE-2020-18610 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Galaxy's Meltdown - Exploiting SVE-2020-18610 resource_label: primary resource_type: article resource_url: https://github.com/vngkv123/articles/blob/main/Galaxy's%20Meltdown%20-%20Exploiting%20SVE-2020-18610.md parent_primary_url: https://github.com/vngkv123/articles/blob/main/Galaxy's%20Meltdown%20-%20Exploiting%20SVE-2020-18610.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Galaxy's Meltdown - Exploiting SVE-2020-18610\"](https://github.com/vngkv123/articles/blob/main/Galaxy's%20Meltdown%20-%20Exploiting%20SVE-2020-18610.md) [article] [CVE-2020-28343, SVE-2020-18610] cves: CVE-2020-28343 android_impact_status: yes android_impact_reason: mentions an Android OEM/device family ios_impact",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/vngkv123/articles/blob/main/Galaxy's%20Meltdown%20-%20Exploiting%20SVE-2020-18610.md"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/vngkv123/articles/blob/main/Galaxy's%20Meltdown%20-%20Exploiting%20SVE-2020-18610.md"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/vngkv123/articles/blob/main/Galaxy's%20Meltdown%20-%20Exploiting%20SVE-2020-18610.md"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions an Android OEM/device family",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2020-28343"
      ],
      "affected_area": "NPU driver",
      "exploit_stage": "vulnerability",
      "summary_en": "The article discusses exploiting CVE-2020-28343, a local privilege escalation vulnerability in Samsung's NPU driver.",
      "summary_zh": "该文章讨论了利用CVE-2020-28343，这是三星NPU驱动程序中的一个本地权限提升漏洞。",
      "source_markdown": "[2021: \"Galaxy's Meltdown - Exploiting SVE-2020-18610\"](https://github.com/vngkv123/articles/blob/main/Galaxy's%20Meltdown%20-%20Exploiting%20SVE-2020-18610.md) [article] [CVE-2020-28343, SVE-2020-18610]",
      "search_text": "galaxy's meltdown - exploiting sve-2020-18610 galaxy's meltdown - exploiting sve-2020-18610  cve-2020-28343  vulnerabilities lpe lpe primary article https://github.com/vngkv123/articles/blob/main/galaxy's%20meltdown%20-%20exploiting%20sve-2020-18610.md lpe cve-2020-28343 npu driver vulnerability the article discusses exploiting cve-2020-28343, a local privilege escalation vulnerability in samsung's npu driver. 该文章讨论了利用cve-2020-28343，这是三星npu驱动程序中的一个本地权限提升漏洞。 # galaxy's meltdown - exploiting sve-2020-18610 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: galaxy's meltdown - exploiting sve-2020-18610 resource_label: primary resource_type: article resource_url: https://github.com/vngkv123/articles/blob/main/galaxy's%20meltdown%20-%20exploiting%20sve-2020-18610.md parent_primary_url: https://github.com/vngkv123/articles/blob/main/galaxy's%20meltdown%20-%20exploiting%20sve-2020-18610.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"galaxy's meltdown - exploiting sve-2020-18610\"](https://github.com/vngkv123/articles/blob/main/galaxy's%20meltdown%20-%20exploiting%20sve-2020-18610.md) [article] [cve-2020-28343, sve-2020-18610] cves: cve-2020-28343 android_impact_status: yes android_impact_reason: mentions an android oem/device family ios_impact yes mentions an android oem/device family no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "070f34498c15e116",
      "item_id": "3c52169f781b1107",
      "slug": "2021-vulnerabilities-lpe-in-the-wild-series-android-exploits-primary-c30e0db9",
      "year": 2021,
      "title": "In-the-Wild Series: Android Exploits",
      "item_title": "In-the-Wild Series: Android Exploits",
      "authors": [
        "Mark Brand"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2021/01/in-wild-series-android-exploits.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2021/01/in-wild-series-android-exploits.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2021/01/in-wild-series-android-exploits.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-in-the-wild-series-android-exploits-primary-c30e0db9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# In-the-Wild Series: Android Exploits record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: In-the-Wild Series: Android Exploits resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2021/01/in-wild-series-android-exploits.html parent_primary_url: https://googleprojectzero.blogspot.com/2021/01/in-wild-series-android-exploits.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"In-the-Wild Series: Android Exploits\" by Mark Brand](https://googleprojectzero.blogspot.com/2021/01/in-wild-series-android-exploits.html) [article] cves: none android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: true has_exploit",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2021/01/in-wild-series-android-exploits.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2021/01/in-wild-series-android-exploits.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The article covers various Android exploits that have been observed in the wild.",
      "summary_zh": "该文章涵盖了在野外观察到的各种Android漏洞。",
      "source_markdown": "[2021: \"In-the-Wild Series: Android Exploits\" by Mark Brand](https://googleprojectzero.blogspot.com/2021/01/in-wild-series-android-exploits.html) [article]",
      "search_text": "in-the-wild series: android exploits in-the-wild series: android exploits mark brand   vulnerabilities lpe lpe primary article https://googleprojectzero.blogspot.com/2021/01/in-wild-series-android-exploits.html lpe android  vulnerability the article covers various android exploits that have been observed in the wild. 该文章涵盖了在野外观察到的各种android漏洞。 # in-the-wild series: android exploits record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: in-the-wild series: android exploits resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2021/01/in-wild-series-android-exploits.html parent_primary_url: https://googleprojectzero.blogspot.com/2021/01/in-wild-series-android-exploits.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"in-the-wild series: android exploits\" by mark brand](https://googleprojectzero.blogspot.com/2021/01/in-wild-series-android-exploits.html) [article] cves: none android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: true has_exploit yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   has-poc poc proof-of-concept"
    },
    {
      "id": "9339b33ceb25f01f",
      "item_id": "4b8bc054ff866b0e",
      "slug": "2021-vulnerabilities-lpe-exploiting-cve-2014-3153-towelroot-primary-762802c1",
      "year": 2021,
      "title": "Exploiting CVE-2014-3153 (Towelroot)",
      "item_title": "Exploiting CVE-2014-3153 (Towelroot)",
      "authors": [
        "Elon Gliksberg"
      ],
      "cves": [
        "CVE-2014-3153"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://elongl.github.io/exploitation/2021/01/08/cve-2014-3153.html",
      "primary_url": "https://elongl.github.io/exploitation/2021/01/08/cve-2014-3153.html",
      "parent_primary_url": "https://elongl.github.io/exploitation/2021/01/08/cve-2014-3153.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-exploiting-cve-2014-3153-towelroot-primary-762802c1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting CVE-2014-3153 (Towelroot) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting CVE-2014-3153 (Towelroot) resource_label: primary resource_type: article resource_url: https://elongl.github.io/exploitation/2021/01/08/cve-2014-3153.html parent_primary_url: https://elongl.github.io/exploitation/2021/01/08/cve-2014-3153.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"Exploiting CVE-2014-3153 (Towelroot)\" by Elon Gliksberg](https://elongl.github.io/exploitation/2021/01/08/cve-2014-3153.html) [article] [CVE-2014-3153] cves: CVE-2014-3153 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS device",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://elongl.github.io/exploitation/2021/01/08/cve-2014-3153.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://elongl.github.io/exploitation/2021/01/08/cve-2014-3153.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://elongl.github.io/exploitation/2021/01/08/cve-2014-3153.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2014-3153"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2021 Linux kernel LPE resource \"Exploiting CVE-2014-3153 (Towelroot)\" (CVE-2014-3153); URL type: article.",
      "summary_zh": "2021 年 Linux 内核LPE资料：「Exploiting CVE-2014-3153 (Towelroot)」（CVE-2014-3153）；URL 类型：article。",
      "source_markdown": "[2021: \"Exploiting CVE-2014-3153 (Towelroot)\" by Elon Gliksberg](https://elongl.github.io/exploitation/2021/01/08/cve-2014-3153.html) [article] [CVE-2014-3153]",
      "search_text": "exploiting cve-2014-3153 (towelroot) exploiting cve-2014-3153 (towelroot) elon gliksberg cve-2014-3153  vulnerabilities lpe lpe primary article https://elongl.github.io/exploitation/2021/01/08/cve-2014-3153.html vulnerabilities lpe article cve-2014-3153  lpe 2021 linux kernel lpe resource \"exploiting cve-2014-3153 (towelroot)\" (cve-2014-3153); url type: article. 2021 年 linux 内核lpe资料：「exploiting cve-2014-3153 (towelroot)」（cve-2014-3153）；url 类型：article。 # exploiting cve-2014-3153 (towelroot) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting cve-2014-3153 (towelroot) resource_label: primary resource_type: article resource_url: https://elongl.github.io/exploitation/2021/01/08/cve-2014-3153.html parent_primary_url: https://elongl.github.io/exploitation/2021/01/08/cve-2014-3153.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"exploiting cve-2014-3153 (towelroot)\" by elon gliksberg](https://elongl.github.io/exploitation/2021/01/08/cve-2014-3153.html) [article] [cve-2014-3153] cves: cve-2014-3153 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios device unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "f5e3d8e627554cd3",
      "item_id": "14acbfdc83d364df",
      "slug": "2021-vulnerabilities-lpe-cve-2014-3153-primary-bf72267b",
      "year": 2021,
      "title": "CVE-2014-3153",
      "item_title": "CVE-2014-3153",
      "authors": [
        "Maher Azzouzi"
      ],
      "cves": [
        "CVE-2014-3153"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2014-3153",
      "primary_url": "https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2014-3153",
      "parent_primary_url": "https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2014-3153",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2021-vulnerabilities-lpe-cve-2014-3153-primary-bf72267b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2014-3153 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2014-3153 resource_label: primary resource_type: article resource_url: https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2014-3153 parent_primary_url: https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2014-3153 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"CVE-2014-3153\" by Maher Azzouzi](https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2014-3153) [article] [CVE-2014-3153] cves: CVE-2014-3153 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: t",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2014-3153"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2014-3153"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2014-3153"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2014-3153"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2021 Linux kernel LPE resource \"CVE-2014-3153\" (CVE-2014-3153); URL type: article.",
      "summary_zh": "2021 年 Linux 内核LPE资料：「CVE-2014-3153」（CVE-2014-3153）；URL 类型：article。",
      "source_markdown": "[2021: \"CVE-2014-3153\" by Maher Azzouzi](https://github.com/MaherAzzouzi/LinuxKernelStudy/tree/main/CVE-2014-3153) [article] [CVE-2014-3153]",
      "search_text": "cve-2014-3153 cve-2014-3153 maher azzouzi cve-2014-3153  vulnerabilities lpe lpe primary article https://github.com/maherazzouzi/linuxkernelstudy/tree/main/cve-2014-3153 vulnerabilities lpe article cve-2014-3153  lpe 2021 linux kernel lpe resource \"cve-2014-3153\" (cve-2014-3153); url type: article. 2021 年 linux 内核lpe资料：「cve-2014-3153」（cve-2014-3153）；url 类型：article。 # cve-2014-3153 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2014-3153 resource_label: primary resource_type: article resource_url: https://github.com/maherazzouzi/linuxkernelstudy/tree/main/cve-2014-3153 parent_primary_url: https://github.com/maherazzouzi/linuxkernelstudy/tree/main/cve-2014-3153 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2021: \"cve-2014-3153\" by maher azzouzi](https://github.com/maherazzouzi/linuxkernelstudy/tree/main/cve-2014-3153) [article] [cve-2014-3153] cves: cve-2014-3153 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: t unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6eb3abbe5ece6ac5",
      "item_id": "4303675a708e0344",
      "slug": "2020-vulnerabilities-lpe-an-ios-hacker-tries-android-primary-105c16cc",
      "year": 2020,
      "title": "An iOS hacker tries Android",
      "item_title": "An iOS hacker tries Android",
      "authors": [
        "Brandon Azad"
      ],
      "cves": [
        "CVE-2020-28343"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2020/12/an-ios-hacker-tries-android.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2020/12/an-ios-hacker-tries-android.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2020/12/an-ios-hacker-tries-android.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-an-ios-hacker-tries-android-primary-105c16cc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An iOS hacker tries Android record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: An iOS hacker tries Android resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2020/12/an-ios-hacker-tries-android.html parent_primary_url: https://googleprojectzero.blogspot.com/2020/12/an-ios-hacker-tries-android.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"An iOS hacker tries Android\" by Brandon Azad](https://googleprojectzero.blogspot.com/2020/12/an-ios-hacker-tries-android.html) [article] [CVE-2020-28343, SVE-2020-18610] cves: CVE-2020-28343 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: unknown ios_impact_reason: mentions iOS/iPhone/iPad context; this source is Linux-kernel focused, so production iOS impact",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2020/12/an-ios-hacker-tries-android.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2020/12/an-ios-hacker-tries-android.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "unknown",
      "ios_related": true,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "mentions iOS/iPhone/iPad context; this source is Linux-kernel focused, so production iOS impact is not established.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2020-28343"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2020 Linux kernel LPE resource \"An iOS hacker tries Android\" (CVE-2020-28343); URL type: article. Android impact: yes.",
      "summary_zh": "2020 年 Linux 内核LPE资料：「An iOS hacker tries Android」（CVE-2020-28343）；URL 类型：article。 Android 影响：yes。",
      "source_markdown": "[2020: \"An iOS hacker tries Android\" by Brandon Azad](https://googleprojectzero.blogspot.com/2020/12/an-ios-hacker-tries-android.html) [article] [CVE-2020-28343, SVE-2020-18610]",
      "search_text": "an ios hacker tries android an ios hacker tries android brandon azad cve-2020-28343  vulnerabilities lpe lpe primary article https://googleprojectzero.blogspot.com/2020/12/an-ios-hacker-tries-android.html vulnerabilities lpe article cve-2020-28343  lpe 2020 linux kernel lpe resource \"an ios hacker tries android\" (cve-2020-28343); url type: article. android impact: yes. 2020 年 linux 内核lpe资料：「an ios hacker tries android」（cve-2020-28343）；url 类型：article。 android 影响：yes。 # an ios hacker tries android record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: an ios hacker tries android resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2020/12/an-ios-hacker-tries-android.html parent_primary_url: https://googleprojectzero.blogspot.com/2020/12/an-ios-hacker-tries-android.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"an ios hacker tries android\" by brandon azad](https://googleprojectzero.blogspot.com/2020/12/an-ios-hacker-tries-android.html) [article] [cve-2020-28343, sve-2020-18610] cves: cve-2020-28343 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: unknown ios_impact_reason: mentions ios/iphone/ipad context; this source is linux-kernel focused, so production ios impact yes mentions android unknown mentions ios/iphone/ipad context; this source is linux-kernel focused, so production ios impact is not established. android-related android ios-related ios  "
    },
    {
      "id": "239ed381fd849374",
      "item_id": "b6ed4c3093e5b63f",
      "slug": "2020-vulnerabilities-lpe-exploiting-a-single-instruction-race-condition-in-binder-primary-aa0eb539",
      "year": 2020,
      "title": "Exploiting a Single Instruction Race Condition in Binder",
      "item_title": "Exploiting a Single Instruction Race Condition in Binder",
      "authors": [],
      "cves": [
        "CVE-2020-0423"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.longterm.io/cve-2020-0423.html",
      "primary_url": "https://blog.longterm.io/cve-2020-0423.html",
      "parent_primary_url": "https://blog.longterm.io/cve-2020-0423.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-exploiting-a-single-instruction-race-condition-in-binder-primary-aa0eb539.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting a Single Instruction Race Condition in Binder record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting a Single Instruction Race Condition in Binder resource_label: primary resource_type: article resource_url: https://blog.longterm.io/cve-2020-0423.html parent_primary_url: https://blog.longterm.io/cve-2020-0423.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"Exploiting a Single Instruction Race Condition in Binder\"](https://blog.longterm.io/cve-2020-0423.html) [article] [CVE-2020-0423] cves: CVE-2020-0423 android_impact_status: possible android_impact_reason: mentions Binder, a core Android IPC driver ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.longterm.io/cve-2020-0423.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.longterm.io/cve-2020-0423.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions Binder, a core Android IPC driver",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2020-0423"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2020 Linux kernel LPE resource \"Exploiting a Single Instruction Race Condition in Binder\" (CVE-2020-0423); URL type: article. Android impact: possible.",
      "summary_zh": "2020 年 Linux 内核LPE资料：「Exploiting a Single Instruction Race Condition in Binder」（CVE-2020-0423）；URL 类型：article。 Android 影响：possible。",
      "source_markdown": "[2020: \"Exploiting a Single Instruction Race Condition in Binder\"](https://blog.longterm.io/cve-2020-0423.html) [article] [CVE-2020-0423]",
      "search_text": "exploiting a single instruction race condition in binder exploiting a single instruction race condition in binder  cve-2020-0423  vulnerabilities lpe lpe primary article https://blog.longterm.io/cve-2020-0423.html vulnerabilities lpe article cve-2020-0423  lpe 2020 linux kernel lpe resource \"exploiting a single instruction race condition in binder\" (cve-2020-0423); url type: article. android impact: possible. 2020 年 linux 内核lpe资料：「exploiting a single instruction race condition in binder」（cve-2020-0423）；url 类型：article。 android 影响：possible。 # exploiting a single instruction race condition in binder record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting a single instruction race condition in binder resource_label: primary resource_type: article resource_url: https://blog.longterm.io/cve-2020-0423.html parent_primary_url: https://blog.longterm.io/cve-2020-0423.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"exploiting a single instruction race condition in binder\"](https://blog.longterm.io/cve-2020-0423.html) [article] [cve-2020-0423] cves: cve-2020-0423 android_impact_status: possible android_impact_reason: mentions binder, a core android ipc driver ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code possible mentions binder, a core android ipc driver no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "7062a7b9f646fbc4",
      "item_id": "176bab554fde6042",
      "slug": "2020-vulnerabilities-lpe-three-dark-clouds-over-the-android-kernel-primary-50628092",
      "year": 2020,
      "title": "Three Dark clouds over the Android kernel",
      "item_title": "Three Dark clouds over the Android kernel",
      "authors": [
        "Jun Yao"
      ],
      "cves": [
        "CVE-2020-3680"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://github.com/2freeman/Slides/blob/main/PoC-2020-Three%20Dark%20clouds%20over%20the%20Android%20kernel.pdf",
      "primary_url": "https://github.com/2freeman/Slides/blob/main/PoC-2020-Three%20Dark%20clouds%20over%20the%20Android%20kernel.pdf",
      "parent_primary_url": "https://github.com/2freeman/Slides/blob/main/PoC-2020-Three%20Dark%20clouds%20over%20the%20Android%20kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-three-dark-clouds-over-the-android-kernel-primary-50628092.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Three Dark clouds over the Android kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Three Dark clouds over the Android kernel resource_label: primary resource_type: slides resource_url: https://github.com/2freeman/Slides/blob/main/PoC-2020-Three%20Dark%20clouds%20over%20the%20Android%20kernel.pdf parent_primary_url: https://github.com/2freeman/Slides/blob/main/PoC-2020-Three%20Dark%20clouds%20over%20the%20Android%20kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"Three Dark clouds over the Android kernel\" by Jun Yao](https://github.com/2freeman/Slides/blob/main/PoC-2020-Three%20Dark%20clouds%20over%20the%20Android%20kernel.pdf) [slides] [CVE-2020-3680] cves: CVE-2020-3680 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_im",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/2freeman/Slides/blob/main/PoC-2020-Three%20Dark%20clouds%20over%20the%20Android%20kernel.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/2freeman/Slides/blob/main/PoC-2020-Three%20Dark%20clouds%20over%20the%20Android%20kernel.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/2freeman/Slides/blob/main/PoC-2020-Three%20Dark%20clouds%20over%20the%20Android%20kernel.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "slides",
        "CVE-2020-3680"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2020 Linux kernel LPE resource \"Three Dark clouds over the Android kernel\" (CVE-2020-3680); URL type: slides. Android impact: yes.",
      "summary_zh": "2020 年 Linux 内核LPE资料：「Three Dark clouds over the Android kernel」（CVE-2020-3680）；URL 类型：slides。 Android 影响：yes。",
      "source_markdown": "[2020: \"Three Dark clouds over the Android kernel\" by Jun Yao](https://github.com/2freeman/Slides/blob/main/PoC-2020-Three%20Dark%20clouds%20over%20the%20Android%20kernel.pdf) [slides] [CVE-2020-3680]",
      "search_text": "three dark clouds over the android kernel three dark clouds over the android kernel jun yao cve-2020-3680  vulnerabilities lpe lpe primary slides https://github.com/2freeman/slides/blob/main/poc-2020-three%20dark%20clouds%20over%20the%20android%20kernel.pdf vulnerabilities lpe slides cve-2020-3680  lpe 2020 linux kernel lpe resource \"three dark clouds over the android kernel\" (cve-2020-3680); url type: slides. android impact: yes. 2020 年 linux 内核lpe资料：「three dark clouds over the android kernel」（cve-2020-3680）；url 类型：slides。 android 影响：yes。 # three dark clouds over the android kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: three dark clouds over the android kernel resource_label: primary resource_type: slides resource_url: https://github.com/2freeman/slides/blob/main/poc-2020-three%20dark%20clouds%20over%20the%20android%20kernel.pdf parent_primary_url: https://github.com/2freeman/slides/blob/main/poc-2020-three%20dark%20clouds%20over%20the%20android%20kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"three dark clouds over the android kernel\" by jun yao](https://github.com/2freeman/slides/blob/main/poc-2020-three%20dark%20clouds%20over%20the%20android%20kernel.pdf) [slides] [cve-2020-3680] cves: cve-2020-3680 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_im yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "eda5dd00c0845dd5",
      "item_id": "248b1cdfd027c6a5",
      "slug": "2020-vulnerabilities-lpe-kernel-exploitation-with-a-file-system-fuzzer-primary-dcaa40e6",
      "year": 2020,
      "title": "Kernel Exploitation With A File System Fuzzer",
      "item_title": "Kernel Exploitation With A File System Fuzzer",
      "authors": [],
      "cves": [
        "CVE-2019-19377"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://cyberweek.ae/materials/2020/D1T2%20-%20Kernel%20Exploitation%20with%20a%20File%20System%20Fuzzer.pdf",
      "primary_url": "https://cyberweek.ae/materials/2020/D1T2%20-%20Kernel%20Exploitation%20with%20a%20File%20System%20Fuzzer.pdf",
      "parent_primary_url": "https://cyberweek.ae/materials/2020/D1T2%20-%20Kernel%20Exploitation%20with%20a%20File%20System%20Fuzzer.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-kernel-exploitation-with-a-file-system-fuzzer-primary-dcaa40e6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Exploitation With A File System Fuzzer record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Kernel Exploitation With A File System Fuzzer resource_label: primary resource_type: slides resource_url: https://cyberweek.ae/materials/2020/D1T2%20-%20Kernel%20Exploitation%20with%20a%20File%20System%20Fuzzer.pdf parent_primary_url: https://cyberweek.ae/materials/2020/D1T2%20-%20Kernel%20Exploitation%20with%20a%20File%20System%20Fuzzer.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"Kernel Exploitation With A File System Fuzzer\"](https://cyberweek.ae/materials/2020/D1T2%20-%20Kernel%20Exploitation%20with%20a%20File%20System%20Fuzzer.pdf) [slides] [[video](https://www.youtube.com/watch?v=95f1b4FcrQ4)] [CVE-2019-19377] cves: CVE-2019-19377 android_impact_status: unknown android_impact_",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://cyberweek.ae/materials/2020/D1T2%20-%20Kernel%20Exploitation%20with%20a%20File%20System%20Fuzzer.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=95f1b4FcrQ4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://cyberweek.ae/materials/2020/D1T2%20-%20Kernel%20Exploitation%20with%20a%20File%20System%20Fuzzer.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=95f1b4FcrQ4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "slides",
        "CVE-2019-19377"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2020 Linux kernel LPE resource \"Kernel Exploitation With A File System Fuzzer\" (CVE-2019-19377); URL type: slides.",
      "summary_zh": "2020 年 Linux 内核LPE资料：「Kernel Exploitation With A File System Fuzzer」（CVE-2019-19377）；URL 类型：slides。",
      "source_markdown": "[2020: \"Kernel Exploitation With A File System Fuzzer\"](https://cyberweek.ae/materials/2020/D1T2%20-%20Kernel%20Exploitation%20with%20a%20File%20System%20Fuzzer.pdf) [slides] [[video](https://www.youtube.com/watch?v=95f1b4FcrQ4)] [CVE-2019-19377]",
      "search_text": "kernel exploitation with a file system fuzzer kernel exploitation with a file system fuzzer  cve-2019-19377  vulnerabilities lpe lpe primary slides https://cyberweek.ae/materials/2020/d1t2%20-%20kernel%20exploitation%20with%20a%20file%20system%20fuzzer.pdf vulnerabilities lpe slides cve-2019-19377  lpe 2020 linux kernel lpe resource \"kernel exploitation with a file system fuzzer\" (cve-2019-19377); url type: slides. 2020 年 linux 内核lpe资料：「kernel exploitation with a file system fuzzer」（cve-2019-19377）；url 类型：slides。 # kernel exploitation with a file system fuzzer record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: kernel exploitation with a file system fuzzer resource_label: primary resource_type: slides resource_url: https://cyberweek.ae/materials/2020/d1t2%20-%20kernel%20exploitation%20with%20a%20file%20system%20fuzzer.pdf parent_primary_url: https://cyberweek.ae/materials/2020/d1t2%20-%20kernel%20exploitation%20with%20a%20file%20system%20fuzzer.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"kernel exploitation with a file system fuzzer\"](https://cyberweek.ae/materials/2020/d1t2%20-%20kernel%20exploitation%20with%20a%20file%20system%20fuzzer.pdf) [slides] [[video](https://www.youtube.com/watch?v=95f1b4fcrq4)] [cve-2019-19377] cves: cve-2019-19377 android_impact_status: unknown android_impact_ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "1a740479c557b3ca",
      "item_id": "248b1cdfd027c6a5",
      "slug": "2020-vulnerabilities-lpe-kernel-exploitation-with-a-file-system-fuzzer-video-19f0a684",
      "year": 2020,
      "title": "Kernel Exploitation With A File System Fuzzer · video",
      "item_title": "Kernel Exploitation With A File System Fuzzer",
      "authors": [],
      "cves": [
        "CVE-2019-19377"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=95f1b4FcrQ4",
      "primary_url": "https://www.youtube.com/watch?v=95f1b4FcrQ4",
      "parent_primary_url": "https://cyberweek.ae/materials/2020/D1T2%20-%20Kernel%20Exploitation%20with%20a%20File%20System%20Fuzzer.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-kernel-exploitation-with-a-file-system-fuzzer-video-19f0a684.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Exploitation With A File System Fuzzer · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Kernel Exploitation With A File System Fuzzer resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=95f1b4FcrQ4 parent_primary_url: https://cyberweek.ae/materials/2020/D1T2%20-%20Kernel%20Exploitation%20with%20a%20File%20System%20Fuzzer.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"Kernel Exploitation With A File System Fuzzer\"](https://cyberweek.ae/materials/2020/D1T2%20-%20Kernel%20Exploitation%20with%20a%20File%20System%20Fuzzer.pdf) [slides] [[video](https://www.youtube.com/watch?v=95f1b4FcrQ4)] [CVE-2019-19377] cves: CVE-2019-19377 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android pr",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://cyberweek.ae/materials/2020/D1T2%20-%20Kernel%20Exploitation%20with%20a%20File%20System%20Fuzzer.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=95f1b4FcrQ4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://cyberweek.ae/materials/2020/D1T2%20-%20Kernel%20Exploitation%20with%20a%20File%20System%20Fuzzer.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=95f1b4FcrQ4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "video",
        "CVE-2019-19377"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2020 Linux kernel LPE resource \"Kernel Exploitation With A File System Fuzzer · video\" (CVE-2019-19377); URL type: video.",
      "summary_zh": "2020 年 Linux 内核LPE资料：「Kernel Exploitation With A File System Fuzzer · video」（CVE-2019-19377）；URL 类型：video。",
      "source_markdown": "[2020: \"Kernel Exploitation With A File System Fuzzer\"](https://cyberweek.ae/materials/2020/D1T2%20-%20Kernel%20Exploitation%20with%20a%20File%20System%20Fuzzer.pdf) [slides] [[video](https://www.youtube.com/watch?v=95f1b4FcrQ4)] [CVE-2019-19377]",
      "search_text": "kernel exploitation with a file system fuzzer · video kernel exploitation with a file system fuzzer  cve-2019-19377  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=95f1b4fcrq4 vulnerabilities lpe video cve-2019-19377  lpe 2020 linux kernel lpe resource \"kernel exploitation with a file system fuzzer · video\" (cve-2019-19377); url type: video. 2020 年 linux 内核lpe资料：「kernel exploitation with a file system fuzzer · video」（cve-2019-19377）；url 类型：video。 # kernel exploitation with a file system fuzzer · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: kernel exploitation with a file system fuzzer resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=95f1b4fcrq4 parent_primary_url: https://cyberweek.ae/materials/2020/d1t2%20-%20kernel%20exploitation%20with%20a%20file%20system%20fuzzer.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"kernel exploitation with a file system fuzzer\"](https://cyberweek.ae/materials/2020/d1t2%20-%20kernel%20exploitation%20with%20a%20file%20system%20fuzzer.pdf) [slides] [[video](https://www.youtube.com/watch?v=95f1b4fcrq4)] [cve-2019-19377] cves: cve-2019-19377 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android pr unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "917096845b46a37a",
      "item_id": "855a82c46f828e86",
      "slug": "2020-vulnerabilities-lpe-finding-and-exploiting-a-bug-lpe-in-an-old-android-phone-primary-55a2b8de",
      "year": 2020,
      "title": "Finding and exploiting a bug (LPE) in an old Android phone",
      "item_title": "Finding and exploiting a bug (LPE) in an old Android phone",
      "authors": [
        "Brandon Falk"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=g62FXds2pt8",
      "primary_url": "https://www.youtube.com/watch?v=g62FXds2pt8",
      "parent_primary_url": "https://www.youtube.com/watch?v=g62FXds2pt8",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-finding-and-exploiting-a-bug-lpe-in-an-old-android-phone-primary-55a2b8de.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Finding and exploiting a bug (LPE) in an old Android phone record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Finding and exploiting a bug (LPE) in an old Android phone resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=g62FXds2pt8 parent_primary_url: https://www.youtube.com/watch?v=g62FXds2pt8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"Finding and exploiting a bug (LPE) in an old Android phone\" by Brandon Falk](https://www.youtube.com/watch?v=g62FXds2pt8) [stream] [[part 2](https://www.youtube.com/watch?v=qnyFk-f3Koo)] [[summary](https://www.youtube.com/watch?v=t-t7D0vQNmo)] cves: none android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel ra",
      "link_types": [
        "video",
        "article",
        "summary"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=g62FXds2pt8"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://www.youtube.com/watch?v=qnyFk-f3Koo"
        },
        {
          "label": "summary",
          "type": "summary",
          "url": "https://www.youtube.com/watch?v=t-t7D0vQNmo"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "part 2",
            "type": "article",
            "url": "https://www.youtube.com/watch?v=qnyFk-f3Koo"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=g62FXds2pt8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "summary",
            "type": "summary",
            "url": "https://www.youtube.com/watch?v=t-t7D0vQNmo"
          }
        ]
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2020 Linux kernel LPE resource \"Finding and exploiting a bug (LPE) in an old Android phone\"; URL type: video. Android impact: yes.",
      "summary_zh": "2020 年 Linux 内核LPE资料：「Finding and exploiting a bug (LPE) in an old Android phone」；URL 类型：video。 Android 影响：yes。",
      "source_markdown": "[2020: \"Finding and exploiting a bug (LPE) in an old Android phone\" by Brandon Falk](https://www.youtube.com/watch?v=g62FXds2pt8) [stream] [[part 2](https://www.youtube.com/watch?v=qnyFk-f3Koo)] [[summary](https://www.youtube.com/watch?v=t-t7D0vQNmo)]",
      "search_text": "finding and exploiting a bug (lpe) in an old android phone finding and exploiting a bug (lpe) in an old android phone brandon falk   vulnerabilities lpe lpe primary video https://www.youtube.com/watch?v=g62fxds2pt8 vulnerabilities lpe video  lpe 2020 linux kernel lpe resource \"finding and exploiting a bug (lpe) in an old android phone\"; url type: video. android impact: yes. 2020 年 linux 内核lpe资料：「finding and exploiting a bug (lpe) in an old android phone」；url 类型：video。 android 影响：yes。 # finding and exploiting a bug (lpe) in an old android phone record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: finding and exploiting a bug (lpe) in an old android phone resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=g62fxds2pt8 parent_primary_url: https://www.youtube.com/watch?v=g62fxds2pt8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"finding and exploiting a bug (lpe) in an old android phone\" by brandon falk](https://www.youtube.com/watch?v=g62fxds2pt8) [stream] [[part 2](https://www.youtube.com/watch?v=qnyfk-f3koo)] [[summary](https://www.youtube.com/watch?v=t-t7d0vqnmo)] cves: none android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel ra yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "ba4e0df5ff93f7a5",
      "item_id": "855a82c46f828e86",
      "slug": "2020-vulnerabilities-lpe-finding-and-exploiting-a-bug-lpe-in-an-old-android-phone-part-2-e0394cc4",
      "year": 2020,
      "title": "Finding and exploiting a bug (LPE) in an old Android phone · part 2",
      "item_title": "Finding and exploiting a bug (LPE) in an old Android phone",
      "authors": [
        "Brandon Falk"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "part 2",
      "resource_type": "article",
      "resource_url": "https://www.youtube.com/watch?v=qnyFk-f3Koo",
      "primary_url": "https://www.youtube.com/watch?v=qnyFk-f3Koo",
      "parent_primary_url": "https://www.youtube.com/watch?v=g62FXds2pt8",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-finding-and-exploiting-a-bug-lpe-in-an-old-android-phone-part-2-e0394cc4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Finding and exploiting a bug (LPE) in an old Android phone · part 2 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Finding and exploiting a bug (LPE) in an old Android phone resource_label: part 2 resource_type: article resource_url: https://www.youtube.com/watch?v=qnyFk-f3Koo parent_primary_url: https://www.youtube.com/watch?v=g62FXds2pt8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"Finding and exploiting a bug (LPE) in an old Android phone\" by Brandon Falk](https://www.youtube.com/watch?v=g62FXds2pt8) [stream] [[part 2](https://www.youtube.com/watch?v=qnyFk-f3Koo)] [[summary](https://www.youtube.com/watch?v=t-t7D0vQNmo)] cves: none android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU",
      "link_types": [
        "video",
        "article",
        "summary"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=g62FXds2pt8"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://www.youtube.com/watch?v=qnyFk-f3Koo"
        },
        {
          "label": "summary",
          "type": "summary",
          "url": "https://www.youtube.com/watch?v=t-t7D0vQNmo"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "part 2",
            "type": "article",
            "url": "https://www.youtube.com/watch?v=qnyFk-f3Koo"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=g62FXds2pt8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "summary",
            "type": "summary",
            "url": "https://www.youtube.com/watch?v=t-t7D0vQNmo"
          }
        ]
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2020 Linux kernel LPE resource \"Finding and exploiting a bug (LPE) in an old Android phone · part 2\"; URL type: article. Android impact: yes.",
      "summary_zh": "2020 年 Linux 内核LPE资料：「Finding and exploiting a bug (LPE) in an old Android phone · part 2」；URL 类型：article。 Android 影响：yes。",
      "source_markdown": "[2020: \"Finding and exploiting a bug (LPE) in an old Android phone\" by Brandon Falk](https://www.youtube.com/watch?v=g62FXds2pt8) [stream] [[part 2](https://www.youtube.com/watch?v=qnyFk-f3Koo)] [[summary](https://www.youtube.com/watch?v=t-t7D0vQNmo)]",
      "search_text": "finding and exploiting a bug (lpe) in an old android phone · part 2 finding and exploiting a bug (lpe) in an old android phone brandon falk   vulnerabilities lpe lpe part 2 article https://www.youtube.com/watch?v=qnyfk-f3koo vulnerabilities lpe article  lpe 2020 linux kernel lpe resource \"finding and exploiting a bug (lpe) in an old android phone · part 2\"; url type: article. android impact: yes. 2020 年 linux 内核lpe资料：「finding and exploiting a bug (lpe) in an old android phone · part 2」；url 类型：article。 android 影响：yes。 # finding and exploiting a bug (lpe) in an old android phone · part 2 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: finding and exploiting a bug (lpe) in an old android phone resource_label: part 2 resource_type: article resource_url: https://www.youtube.com/watch?v=qnyfk-f3koo parent_primary_url: https://www.youtube.com/watch?v=g62fxds2pt8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"finding and exploiting a bug (lpe) in an old android phone\" by brandon falk](https://www.youtube.com/watch?v=g62fxds2pt8) [stream] [[part 2](https://www.youtube.com/watch?v=qnyfk-f3koo)] [[summary](https://www.youtube.com/watch?v=t-t7d0vqnmo)] cves: none android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "b5f60c20d698dd94",
      "item_id": "855a82c46f828e86",
      "slug": "2020-vulnerabilities-lpe-finding-and-exploiting-a-bug-lpe-in-an-old-android-phone-summary-f728c462",
      "year": 2020,
      "title": "Finding and exploiting a bug (LPE) in an old Android phone · summary",
      "item_title": "Finding and exploiting a bug (LPE) in an old Android phone",
      "authors": [
        "Brandon Falk"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "summary",
      "resource_type": "summary",
      "resource_url": "https://www.youtube.com/watch?v=t-t7D0vQNmo",
      "primary_url": "https://www.youtube.com/watch?v=t-t7D0vQNmo",
      "parent_primary_url": "https://www.youtube.com/watch?v=g62FXds2pt8",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-finding-and-exploiting-a-bug-lpe-in-an-old-android-phone-summary-f728c462.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Finding and exploiting a bug (LPE) in an old Android phone · summary record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Finding and exploiting a bug (LPE) in an old Android phone resource_label: summary resource_type: summary resource_url: https://www.youtube.com/watch?v=t-t7D0vQNmo parent_primary_url: https://www.youtube.com/watch?v=g62FXds2pt8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"Finding and exploiting a bug (LPE) in an old Android phone\" by Brandon Falk](https://www.youtube.com/watch?v=g62FXds2pt8) [stream] [[part 2](https://www.youtube.com/watch?v=qnyFk-f3Koo)] [[summary](https://www.youtube.com/watch?v=t-t7D0vQNmo)] cves: none android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's X",
      "link_types": [
        "video",
        "article",
        "summary"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=g62FXds2pt8"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://www.youtube.com/watch?v=qnyFk-f3Koo"
        },
        {
          "label": "summary",
          "type": "summary",
          "url": "https://www.youtube.com/watch?v=t-t7D0vQNmo"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "part 2",
            "type": "article",
            "url": "https://www.youtube.com/watch?v=qnyFk-f3Koo"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=g62FXds2pt8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "summary",
            "type": "summary",
            "url": "https://www.youtube.com/watch?v=t-t7D0vQNmo"
          }
        ]
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "summary"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2020 Linux kernel LPE resource \"Finding and exploiting a bug (LPE) in an old Android phone · summary\"; URL type: summary. Android impact: yes.",
      "summary_zh": "2020 年 Linux 内核LPE资料：「Finding and exploiting a bug (LPE) in an old Android phone · summary」；URL 类型：summary。 Android 影响：yes。",
      "source_markdown": "[2020: \"Finding and exploiting a bug (LPE) in an old Android phone\" by Brandon Falk](https://www.youtube.com/watch?v=g62FXds2pt8) [stream] [[part 2](https://www.youtube.com/watch?v=qnyFk-f3Koo)] [[summary](https://www.youtube.com/watch?v=t-t7D0vQNmo)]",
      "search_text": "finding and exploiting a bug (lpe) in an old android phone · summary finding and exploiting a bug (lpe) in an old android phone brandon falk   vulnerabilities lpe lpe summary summary https://www.youtube.com/watch?v=t-t7d0vqnmo vulnerabilities lpe summary  lpe 2020 linux kernel lpe resource \"finding and exploiting a bug (lpe) in an old android phone · summary\"; url type: summary. android impact: yes. 2020 年 linux 内核lpe资料：「finding and exploiting a bug (lpe) in an old android phone · summary」；url 类型：summary。 android 影响：yes。 # finding and exploiting a bug (lpe) in an old android phone · summary record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: finding and exploiting a bug (lpe) in an old android phone resource_label: summary resource_type: summary resource_url: https://www.youtube.com/watch?v=t-t7d0vqnmo parent_primary_url: https://www.youtube.com/watch?v=g62fxds2pt8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"finding and exploiting a bug (lpe) in an old android phone\" by brandon falk](https://www.youtube.com/watch?v=g62fxds2pt8) [stream] [[part 2](https://www.youtube.com/watch?v=qnyfk-f3koo)] [[summary](https://www.youtube.com/watch?v=t-t7d0vqnmo)] cves: none android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's x yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "e2bb004411062a3c",
      "item_id": "be36a26561aae141",
      "slug": "2020-vulnerabilities-lpe-cve-2020-14386-privilege-escalation-vulnerability-in-the-linux-kernel-primary-777a41c",
      "year": 2020,
      "title": "CVE-2020-14386: Privilege Escalation Vulnerability in the Linux kernel",
      "item_title": "CVE-2020-14386: Privilege Escalation Vulnerability in the Linux kernel",
      "authors": [
        "Or Cohen"
      ],
      "cves": [
        "CVE-2020-14386"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://unit42.paloaltonetworks.com/cve-2020-14386/",
      "primary_url": "https://unit42.paloaltonetworks.com/cve-2020-14386/",
      "parent_primary_url": "https://unit42.paloaltonetworks.com/cve-2020-14386/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-cve-2020-14386-privilege-escalation-vulnerability-in-the-linux-kernel-primary-777a41c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2020-14386: Privilege Escalation Vulnerability in the Linux kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2020-14386: Privilege Escalation Vulnerability in the Linux kernel resource_label: primary resource_type: article resource_url: https://unit42.paloaltonetworks.com/cve-2020-14386/ parent_primary_url: https://unit42.paloaltonetworks.com/cve-2020-14386/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"CVE-2020-14386: Privilege Escalation Vulnerability in the Linux kernel\" by Or Cohen](https://unit42.paloaltonetworks.com/cve-2020-14386/) [article] [CVE-2020-14386] cves: CVE-2020-14386 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_s",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://unit42.paloaltonetworks.com/cve-2020-14386/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://unit42.paloaltonetworks.com/cve-2020-14386/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2020-14386"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2020 Linux kernel LPE resource \"CVE-2020-14386: Privilege Escalation Vulnerability in the Linux kernel\" (CVE-2020-14386); URL type: article.",
      "summary_zh": "2020 年 Linux 内核LPE资料：「CVE-2020-14386: Privilege Escalation Vulnerability in the Linux kernel」（CVE-2020-14386）；URL 类型：article。",
      "source_markdown": "[2020: \"CVE-2020-14386: Privilege Escalation Vulnerability in the Linux kernel\" by Or Cohen](https://unit42.paloaltonetworks.com/cve-2020-14386/) [article] [CVE-2020-14386]",
      "search_text": "cve-2020-14386: privilege escalation vulnerability in the linux kernel cve-2020-14386: privilege escalation vulnerability in the linux kernel or cohen cve-2020-14386  vulnerabilities lpe lpe primary article https://unit42.paloaltonetworks.com/cve-2020-14386/ vulnerabilities lpe article cve-2020-14386  lpe 2020 linux kernel lpe resource \"cve-2020-14386: privilege escalation vulnerability in the linux kernel\" (cve-2020-14386); url type: article. 2020 年 linux 内核lpe资料：「cve-2020-14386: privilege escalation vulnerability in the linux kernel」（cve-2020-14386）；url 类型：article。 # cve-2020-14386: privilege escalation vulnerability in the linux kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2020-14386: privilege escalation vulnerability in the linux kernel resource_label: primary resource_type: article resource_url: https://unit42.paloaltonetworks.com/cve-2020-14386/ parent_primary_url: https://unit42.paloaltonetworks.com/cve-2020-14386/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"cve-2020-14386: privilege escalation vulnerability in the linux kernel\" by or cohen](https://unit42.paloaltonetworks.com/cve-2020-14386/) [article] [cve-2020-14386] cves: cve-2020-14386 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_s unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "541c0bb2c58fb081",
      "item_id": "da4252bcf712fd52",
      "slug": "2020-vulnerabilities-lpe-attacking-the-qualcomm-adreno-gpu-primary-2e49e642",
      "year": 2020,
      "title": "Attacking the Qualcomm Adreno GPU",
      "item_title": "Attacking the Qualcomm Adreno GPU",
      "authors": [
        "Ben Hawkes"
      ],
      "cves": [
        "CVE-2020-11179"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2020/09/attacking-qualcomm-adreno-gpu.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2020/09/attacking-qualcomm-adreno-gpu.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2020/09/attacking-qualcomm-adreno-gpu.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-attacking-the-qualcomm-adreno-gpu-primary-2e49e642.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Attacking the Qualcomm Adreno GPU record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Attacking the Qualcomm Adreno GPU resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2020/09/attacking-qualcomm-adreno-gpu.html parent_primary_url: https://googleprojectzero.blogspot.com/2020/09/attacking-qualcomm-adreno-gpu.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"Attacking the Qualcomm Adreno GPU\" by Ben Hawkes](https://googleprojectzero.blogspot.com/2020/09/attacking-qualcomm-adreno-gpu.html) [article] [CVE-2020-11179] cves: CVE-2020-11179 android_impact_status: possible android_impact_reason: mentions Qualcomm/Adreno Android SoC components ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2020/09/attacking-qualcomm-adreno-gpu.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2020/09/attacking-qualcomm-adreno-gpu.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions Qualcomm/Adreno Android SoC components",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2020-11179"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2020 Linux kernel LPE resource \"Attacking the Qualcomm Adreno GPU\" (CVE-2020-11179); URL type: article. Android impact: possible.",
      "summary_zh": "2020 年 Linux 内核LPE资料：「Attacking the Qualcomm Adreno GPU」（CVE-2020-11179）；URL 类型：article。 Android 影响：possible。",
      "source_markdown": "[2020: \"Attacking the Qualcomm Adreno GPU\" by Ben Hawkes](https://googleprojectzero.blogspot.com/2020/09/attacking-qualcomm-adreno-gpu.html) [article] [CVE-2020-11179]",
      "search_text": "attacking the qualcomm adreno gpu attacking the qualcomm adreno gpu ben hawkes cve-2020-11179  vulnerabilities lpe lpe primary article https://googleprojectzero.blogspot.com/2020/09/attacking-qualcomm-adreno-gpu.html vulnerabilities lpe article cve-2020-11179  lpe 2020 linux kernel lpe resource \"attacking the qualcomm adreno gpu\" (cve-2020-11179); url type: article. android impact: possible. 2020 年 linux 内核lpe资料：「attacking the qualcomm adreno gpu」（cve-2020-11179）；url 类型：article。 android 影响：possible。 # attacking the qualcomm adreno gpu record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: attacking the qualcomm adreno gpu resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2020/09/attacking-qualcomm-adreno-gpu.html parent_primary_url: https://googleprojectzero.blogspot.com/2020/09/attacking-qualcomm-adreno-gpu.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"attacking the qualcomm adreno gpu\" by ben hawkes](https://googleprojectzero.blogspot.com/2020/09/attacking-qualcomm-adreno-gpu.html) [article] [cve-2020-11179] cves: cve-2020-11179 android_impact_status: possible android_impact_reason: mentions qualcomm/adreno android soc components ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than  possible mentions qualcomm/adreno android soc components no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "f1ee26f2201d381d",
      "item_id": "d81d01550316de71",
      "slug": "2020-vulnerabilities-lpe-tiyunzong-an-exploit-chain-to-remotely-root-modern-android-devices-primary-90c35898",
      "year": 2020,
      "title": "TiYunZong: An Exploit Chain to Remotely Root Modern Android Devices",
      "item_title": "TiYunZong: An Exploit Chain to Remotely Root Modern Android Devices",
      "authors": [
        "Guang Gong at Black Hat"
      ],
      "cves": [
        "CVE-2019-10567"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices.pdf",
      "primary_url": "https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices.pdf",
      "parent_primary_url": "https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-tiyunzong-an-exploit-chain-to-remotely-root-modern-android-devices-primary-90c35898.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TiYunZong: An Exploit Chain to Remotely Root Modern Android Devices record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: TiYunZong: An Exploit Chain to Remotely Root Modern Android Devices resource_label: primary resource_type: slides resource_url: https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices.pdf parent_primary_url: https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"TiYunZong: An Exploit Chain to Remotely Root Modern Android Devices\" by Guang Gong at Black Hat](https://g",
      "link_types": [
        "slides",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices.pdf"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices-wp.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices-wp.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices.pdf",
        "https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices-wp.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "slides",
        "CVE-2019-10567"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2020 Linux kernel LPE resource \"TiYunZong: An Exploit Chain to Remotely Root Modern Android Devices\" (CVE-2019-10567); URL type: slides. Android impact: yes.",
      "summary_zh": "2020 年 Linux 内核LPE资料：「TiYunZong: An Exploit Chain to Remotely Root Modern Android Devices」（CVE-2019-10567）；URL 类型：slides。 Android 影响：yes。",
      "source_markdown": "[2020: \"TiYunZong: An Exploit Chain to Remotely Root Modern Android Devices\" by Guang Gong at Black Hat](https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices.pdf) [slides] [[paper](https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices-wp.pdf)] [CVE-2019-10567]",
      "search_text": "tiyunzong: an exploit chain to remotely root modern android devices tiyunzong: an exploit chain to remotely root modern android devices guang gong at black hat cve-2019-10567  vulnerabilities lpe lpe primary slides https://github.com/secmob/tiyunzong-an-exploit-chain-to-remotely-root-modern-android-devices/blob/master/us-20-gong-tiyunzong-an-exploit-chain-to-remotely-root-modern-android-devices.pdf vulnerabilities lpe slides cve-2019-10567  lpe 2020 linux kernel lpe resource \"tiyunzong: an exploit chain to remotely root modern android devices\" (cve-2019-10567); url type: slides. android impact: yes. 2020 年 linux 内核lpe资料：「tiyunzong: an exploit chain to remotely root modern android devices」（cve-2019-10567）；url 类型：slides。 android 影响：yes。 # tiyunzong: an exploit chain to remotely root modern android devices record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: tiyunzong: an exploit chain to remotely root modern android devices resource_label: primary resource_type: slides resource_url: https://github.com/secmob/tiyunzong-an-exploit-chain-to-remotely-root-modern-android-devices/blob/master/us-20-gong-tiyunzong-an-exploit-chain-to-remotely-root-modern-android-devices.pdf parent_primary_url: https://github.com/secmob/tiyunzong-an-exploit-chain-to-remotely-root-modern-android-devices/blob/master/us-20-gong-tiyunzong-an-exploit-chain-to-remotely-root-modern-android-devices.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"tiyunzong: an exploit chain to remotely root modern android devices\" by guang gong at black hat](https://g yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "dd782710f1d1db25",
      "item_id": "d81d01550316de71",
      "slug": "2020-vulnerabilities-lpe-tiyunzong-an-exploit-chain-to-remotely-root-modern-android-devices-paper-272d8f74",
      "year": 2020,
      "title": "TiYunZong: An Exploit Chain to Remotely Root Modern Android Devices · paper",
      "item_title": "TiYunZong: An Exploit Chain to Remotely Root Modern Android Devices",
      "authors": [
        "Guang Gong at Black Hat"
      ],
      "cves": [
        "CVE-2019-10567"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "paper",
      "resource_type": "paper",
      "resource_url": "https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices-wp.pdf",
      "primary_url": "https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices-wp.pdf",
      "parent_primary_url": "https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-tiyunzong-an-exploit-chain-to-remotely-root-modern-android-devices-paper-272d8f74.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TiYunZong: An Exploit Chain to Remotely Root Modern Android Devices · paper record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: TiYunZong: An Exploit Chain to Remotely Root Modern Android Devices resource_label: paper resource_type: paper resource_url: https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices-wp.pdf parent_primary_url: https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"TiYunZong: An Exploit Chain to Remotely Root Modern Android Devices\" by Guang Gong at Black Hat](h",
      "link_types": [
        "slides",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices.pdf"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices-wp.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices-wp.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices.pdf",
        "https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices-wp.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "paper",
        "CVE-2019-10567"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2020 Linux kernel LPE resource \"TiYunZong: An Exploit Chain to Remotely Root Modern Android Devices · paper\" (CVE-2019-10567); URL type: paper. Android impact: yes.",
      "summary_zh": "2020 年 Linux 内核LPE资料：「TiYunZong: An Exploit Chain to Remotely Root Modern Android Devices · paper」（CVE-2019-10567）；URL 类型：paper。 Android 影响：yes。",
      "source_markdown": "[2020: \"TiYunZong: An Exploit Chain to Remotely Root Modern Android Devices\" by Guang Gong at Black Hat](https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices.pdf) [slides] [[paper](https://github.com/secmob/TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices/blob/master/us-20-Gong-TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices-wp.pdf)] [CVE-2019-10567]",
      "search_text": "tiyunzong: an exploit chain to remotely root modern android devices · paper tiyunzong: an exploit chain to remotely root modern android devices guang gong at black hat cve-2019-10567  vulnerabilities lpe lpe paper paper https://github.com/secmob/tiyunzong-an-exploit-chain-to-remotely-root-modern-android-devices/blob/master/us-20-gong-tiyunzong-an-exploit-chain-to-remotely-root-modern-android-devices-wp.pdf vulnerabilities lpe paper cve-2019-10567  lpe 2020 linux kernel lpe resource \"tiyunzong: an exploit chain to remotely root modern android devices · paper\" (cve-2019-10567); url type: paper. android impact: yes. 2020 年 linux 内核lpe资料：「tiyunzong: an exploit chain to remotely root modern android devices · paper」（cve-2019-10567）；url 类型：paper。 android 影响：yes。 # tiyunzong: an exploit chain to remotely root modern android devices · paper record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: tiyunzong: an exploit chain to remotely root modern android devices resource_label: paper resource_type: paper resource_url: https://github.com/secmob/tiyunzong-an-exploit-chain-to-remotely-root-modern-android-devices/blob/master/us-20-gong-tiyunzong-an-exploit-chain-to-remotely-root-modern-android-devices-wp.pdf parent_primary_url: https://github.com/secmob/tiyunzong-an-exploit-chain-to-remotely-root-modern-android-devices/blob/master/us-20-gong-tiyunzong-an-exploit-chain-to-remotely-root-modern-android-devices.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"tiyunzong: an exploit chain to remotely root modern android devices\" by guang gong at black hat](h yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "de6142c9486c2be7",
      "item_id": "916c9edc360d3314",
      "slug": "2020-vulnerabilities-lpe-binder-analysis-and-exploitation-of-cve-2020-0041-primary-0ee8e5af",
      "year": 2020,
      "title": "Binder - Analysis and exploitation of CVE-2020-0041",
      "item_title": "Binder - Analysis and exploitation of CVE-2020-0041",
      "authors": [
        "Jean-Baptiste Cayrou"
      ],
      "cves": [
        "CVE-2020-0041"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.synacktiv.com/posts/exploit/binder-analysis-and-exploitation-of-cve-2020-0041.html",
      "primary_url": "https://www.synacktiv.com/posts/exploit/binder-analysis-and-exploitation-of-cve-2020-0041.html",
      "parent_primary_url": "https://www.synacktiv.com/posts/exploit/binder-analysis-and-exploitation-of-cve-2020-0041.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-binder-analysis-and-exploitation-of-cve-2020-0041-primary-0ee8e5af.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Binder - Analysis and exploitation of CVE-2020-0041 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Binder - Analysis and exploitation of CVE-2020-0041 resource_label: primary resource_type: article resource_url: https://www.synacktiv.com/posts/exploit/binder-analysis-and-exploitation-of-cve-2020-0041.html parent_primary_url: https://www.synacktiv.com/posts/exploit/binder-analysis-and-exploitation-of-cve-2020-0041.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"Binder - Analysis and exploitation of CVE-2020-0041\" by Jean-Baptiste Cayrou](https://www.synacktiv.com/posts/exploit/binder-analysis-and-exploitation-of-cve-2020-0041.html) [article] [CVE-2020-0041] cves: CVE-2020-0041 android_impact_status: possible android_impact_reason: mentions Binder, a core Android IPC driver ios",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.synacktiv.com/posts/exploit/binder-analysis-and-exploitation-of-cve-2020-0041.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.synacktiv.com/posts/exploit/binder-analysis-and-exploitation-of-cve-2020-0041.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://www.synacktiv.com/posts/exploit/binder-analysis-and-exploitation-of-cve-2020-0041.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions Binder, a core Android IPC driver",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2020-0041"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2020 Linux kernel LPE resource \"Binder - Analysis and exploitation of CVE-2020-0041\" (CVE-2020-0041); URL type: article. Android impact: possible.",
      "summary_zh": "2020 年 Linux 内核LPE资料：「Binder - Analysis and exploitation of CVE-2020-0041」（CVE-2020-0041）；URL 类型：article。 Android 影响：possible。",
      "source_markdown": "[2020: \"Binder - Analysis and exploitation of CVE-2020-0041\" by Jean-Baptiste Cayrou](https://www.synacktiv.com/posts/exploit/binder-analysis-and-exploitation-of-cve-2020-0041.html) [article] [CVE-2020-0041]",
      "search_text": "binder - analysis and exploitation of cve-2020-0041 binder - analysis and exploitation of cve-2020-0041 jean-baptiste cayrou cve-2020-0041  vulnerabilities lpe lpe primary article https://www.synacktiv.com/posts/exploit/binder-analysis-and-exploitation-of-cve-2020-0041.html vulnerabilities lpe article cve-2020-0041  lpe 2020 linux kernel lpe resource \"binder - analysis and exploitation of cve-2020-0041\" (cve-2020-0041); url type: article. android impact: possible. 2020 年 linux 内核lpe资料：「binder - analysis and exploitation of cve-2020-0041」（cve-2020-0041）；url 类型：article。 android 影响：possible。 # binder - analysis and exploitation of cve-2020-0041 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: binder - analysis and exploitation of cve-2020-0041 resource_label: primary resource_type: article resource_url: https://www.synacktiv.com/posts/exploit/binder-analysis-and-exploitation-of-cve-2020-0041.html parent_primary_url: https://www.synacktiv.com/posts/exploit/binder-analysis-and-exploitation-of-cve-2020-0041.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"binder - analysis and exploitation of cve-2020-0041\" by jean-baptiste cayrou](https://www.synacktiv.com/posts/exploit/binder-analysis-and-exploitation-of-cve-2020-0041.html) [article] [cve-2020-0041] cves: cve-2020-0041 android_impact_status: possible android_impact_reason: mentions binder, a core android ipc driver ios possible mentions binder, a core android ipc driver no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "3858ebb4930e15c2",
      "item_id": "ee91f4975a8fc252",
      "slug": "2020-vulnerabilities-lpe-binder-ipc-and-its-vulnerabilities-primary-bcf82314",
      "year": 2020,
      "title": "Binder IPC and its vulnerabilities",
      "item_title": "Binder IPC and its vulnerabilities",
      "authors": [
        "Jean-Baptiste Cayrou at THCON"
      ],
      "cves": [
        "CVE-2019-2215",
        "CVE-2019-2025",
        "CVE-2019-2181",
        "CVE-2019-2214",
        "CVE-2020-0041"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.synacktiv.com/ressources/thcon2020_binder.pdf",
      "primary_url": "https://www.synacktiv.com/ressources/thcon2020_binder.pdf",
      "parent_primary_url": "https://www.synacktiv.com/ressources/thcon2020_binder.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-binder-ipc-and-its-vulnerabilities-primary-bcf82314.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Binder IPC and its vulnerabilities record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Binder IPC and its vulnerabilities resource_label: primary resource_type: slides resource_url: https://www.synacktiv.com/ressources/thcon2020_binder.pdf parent_primary_url: https://www.synacktiv.com/ressources/thcon2020_binder.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"Binder IPC and its vulnerabilities\" by Jean-Baptiste Cayrou at THCON](https://www.synacktiv.com/ressources/thcon2020_binder.pdf) [slides] [CVE-2019-2215, CVE-2019-2025, CVE-2019-2181, CVE-2019-2214, CVE-2020-0041] cves: CVE-2019-2215, CVE-2019-2025, CVE-2019-2181, CVE-2019-2214, CVE-2020-0041 android_impact_status: possible android_impact_reason: mentions Binder, a core Android IPC driver ios_impact_status: no ios_impact_reaso",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.synacktiv.com/ressources/thcon2020_binder.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.synacktiv.com/ressources/thcon2020_binder.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions Binder, a core Android IPC driver",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "slides",
        "CVE-2019-2215",
        "CVE-2019-2025",
        "CVE-2019-2181"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2020 Linux kernel LPE resource \"Binder IPC and its vulnerabilities\" (CVE-2019-2215, CVE-2019-2025, CVE-2019-2181, CVE-2019-2214, CVE-2020-0041); URL type: slides. Android impact: possible.",
      "summary_zh": "2020 年 Linux 内核LPE资料：「Binder IPC and its vulnerabilities」（CVE-2019-2215、CVE-2019-2025、CVE-2019-2181、CVE-2019-2214、CVE-2020-0041）；URL 类型：slides。 Android 影响：possible。",
      "source_markdown": "[2020: \"Binder IPC and its vulnerabilities\" by Jean-Baptiste Cayrou at THCON](https://www.synacktiv.com/ressources/thcon2020_binder.pdf) [slides] [CVE-2019-2215, CVE-2019-2025, CVE-2019-2181, CVE-2019-2214, CVE-2020-0041]",
      "search_text": "binder ipc and its vulnerabilities binder ipc and its vulnerabilities jean-baptiste cayrou at thcon cve-2019-2215 cve-2019-2025 cve-2019-2181 cve-2019-2214 cve-2020-0041  vulnerabilities lpe lpe primary slides https://www.synacktiv.com/ressources/thcon2020_binder.pdf vulnerabilities lpe slides cve-2019-2215 cve-2019-2025 cve-2019-2181  lpe 2020 linux kernel lpe resource \"binder ipc and its vulnerabilities\" (cve-2019-2215, cve-2019-2025, cve-2019-2181, cve-2019-2214, cve-2020-0041); url type: slides. android impact: possible. 2020 年 linux 内核lpe资料：「binder ipc and its vulnerabilities」（cve-2019-2215、cve-2019-2025、cve-2019-2181、cve-2019-2214、cve-2020-0041）；url 类型：slides。 android 影响：possible。 # binder ipc and its vulnerabilities record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: binder ipc and its vulnerabilities resource_label: primary resource_type: slides resource_url: https://www.synacktiv.com/ressources/thcon2020_binder.pdf parent_primary_url: https://www.synacktiv.com/ressources/thcon2020_binder.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"binder ipc and its vulnerabilities\" by jean-baptiste cayrou at thcon](https://www.synacktiv.com/ressources/thcon2020_binder.pdf) [slides] [cve-2019-2215, cve-2019-2025, cve-2019-2181, cve-2019-2214, cve-2020-0041] cves: cve-2019-2215, cve-2019-2025, cve-2019-2181, cve-2019-2214, cve-2020-0041 android_impact_status: possible android_impact_reason: mentions binder, a core android ipc driver ios_impact_status: no ios_impact_reaso possible mentions binder, a core android ipc driver no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "99518fa71c77a45c",
      "item_id": "7c50b641b9228dc8",
      "slug": "2020-vulnerabilities-lpe-exploiting-cve-2020-0041-part-2-escalating-to-root-primary-4f0e32d1",
      "year": 2020,
      "title": "Exploiting CVE-2020-0041 - Part 2: Escalating to root",
      "item_title": "Exploiting CVE-2020-0041 - Part 2: Escalating to root",
      "authors": [
        "Eloi Sanfelix",
        "Jordan Gruskovnjak"
      ],
      "cves": [
        "CVE-2020-0041"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://labs.bluefrostsecurity.de/blog/2020/04/08/cve-2020-0041-part-2-escalating-to-root/",
      "primary_url": "https://labs.bluefrostsecurity.de/blog/2020/04/08/cve-2020-0041-part-2-escalating-to-root/",
      "parent_primary_url": "https://labs.bluefrostsecurity.de/blog/2020/04/08/cve-2020-0041-part-2-escalating-to-root/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-exploiting-cve-2020-0041-part-2-escalating-to-root-primary-4f0e32d1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting CVE-2020-0041 - Part 2: Escalating to root record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting CVE-2020-0041 - Part 2: Escalating to root resource_label: primary resource_type: article resource_url: https://labs.bluefrostsecurity.de/blog/2020/04/08/cve-2020-0041-part-2-escalating-to-root/ parent_primary_url: https://labs.bluefrostsecurity.de/blog/2020/04/08/cve-2020-0041-part-2-escalating-to-root/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"Exploiting CVE-2020-0041 - Part 2: Escalating to root\" by Eloi Sanfelix and Jordan Gruskovnjak](https://labs.bluefrostsecurity.de/blog/2020/04/08/cve-2020-0041-part-2-escalating-to-root/) [article] [CVE-2020-0041] cves: CVE-2020-0041 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit en",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://labs.bluefrostsecurity.de/blog/2020/04/08/cve-2020-0041-part-2-escalating-to-root/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://labs.bluefrostsecurity.de/blog/2020/04/08/cve-2020-0041-part-2-escalating-to-root/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2020-0041"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2020 Linux kernel LPE resource \"Exploiting CVE-2020-0041 - Part 2: Escalating to root\" (CVE-2020-0041); URL type: article.",
      "summary_zh": "2020 年 Linux 内核LPE资料：「Exploiting CVE-2020-0041 - Part 2: Escalating to root」（CVE-2020-0041）；URL 类型：article。",
      "source_markdown": "[2020: \"Exploiting CVE-2020-0041 - Part 2: Escalating to root\" by Eloi Sanfelix and Jordan Gruskovnjak](https://labs.bluefrostsecurity.de/blog/2020/04/08/cve-2020-0041-part-2-escalating-to-root/) [article] [CVE-2020-0041]",
      "search_text": "exploiting cve-2020-0041 - part 2: escalating to root exploiting cve-2020-0041 - part 2: escalating to root eloi sanfelix jordan gruskovnjak cve-2020-0041  vulnerabilities lpe lpe primary article https://labs.bluefrostsecurity.de/blog/2020/04/08/cve-2020-0041-part-2-escalating-to-root/ vulnerabilities lpe article cve-2020-0041  lpe 2020 linux kernel lpe resource \"exploiting cve-2020-0041 - part 2: escalating to root\" (cve-2020-0041); url type: article. 2020 年 linux 内核lpe资料：「exploiting cve-2020-0041 - part 2: escalating to root」（cve-2020-0041）；url 类型：article。 # exploiting cve-2020-0041 - part 2: escalating to root record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting cve-2020-0041 - part 2: escalating to root resource_label: primary resource_type: article resource_url: https://labs.bluefrostsecurity.de/blog/2020/04/08/cve-2020-0041-part-2-escalating-to-root/ parent_primary_url: https://labs.bluefrostsecurity.de/blog/2020/04/08/cve-2020-0041-part-2-escalating-to-root/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"exploiting cve-2020-0041 - part 2: escalating to root\" by eloi sanfelix and jordan gruskovnjak](https://labs.bluefrostsecurity.de/blog/2020/04/08/cve-2020-0041-part-2-escalating-to-root/) [article] [cve-2020-0041] cves: cve-2020-0041 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit en unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a4e462443a93712b",
      "item_id": "57bca4e4f0602798",
      "slug": "2020-vulnerabilities-lpe-a-bug-collision-tale-primary-65cad295",
      "year": 2020,
      "title": "A bug collision tale",
      "item_title": "A bug collision tale",
      "authors": [
        "Eloi Sanfelix at OffensiveCon"
      ],
      "cves": [
        "CVE-2019-2025"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://labs.bluefrostsecurity.de/files/OffensiveCon2020_bug_collision_tale.pdf",
      "primary_url": "https://labs.bluefrostsecurity.de/files/OffensiveCon2020_bug_collision_tale.pdf",
      "parent_primary_url": "https://labs.bluefrostsecurity.de/files/OffensiveCon2020_bug_collision_tale.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-a-bug-collision-tale-primary-65cad295.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A bug collision tale record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: A bug collision tale resource_label: primary resource_type: slides resource_url: https://labs.bluefrostsecurity.de/files/OffensiveCon2020_bug_collision_tale.pdf parent_primary_url: https://labs.bluefrostsecurity.de/files/OffensiveCon2020_bug_collision_tale.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"A bug collision tale\" by Eloi Sanfelix at OffensiveCon](https://labs.bluefrostsecurity.de/files/OffensiveCon2020_bug_collision_tale.pdf) [slides] [[video](https://www.youtube.com/watch?v=WOdRkZwGYDQ)] [CVE-2019-2025] cves: CVE-2019-2025 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_im",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://labs.bluefrostsecurity.de/files/OffensiveCon2020_bug_collision_tale.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=WOdRkZwGYDQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://labs.bluefrostsecurity.de/files/OffensiveCon2020_bug_collision_tale.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=WOdRkZwGYDQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "slides",
        "CVE-2019-2025"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2020 Linux kernel LPE resource \"A bug collision tale\" (CVE-2019-2025); URL type: slides.",
      "summary_zh": "2020 年 Linux 内核LPE资料：「A bug collision tale」（CVE-2019-2025）；URL 类型：slides。",
      "source_markdown": "[2020: \"A bug collision tale\" by Eloi Sanfelix at OffensiveCon](https://labs.bluefrostsecurity.de/files/OffensiveCon2020_bug_collision_tale.pdf) [slides] [[video](https://www.youtube.com/watch?v=WOdRkZwGYDQ)] [CVE-2019-2025]",
      "search_text": "a bug collision tale a bug collision tale eloi sanfelix at offensivecon cve-2019-2025  vulnerabilities lpe lpe primary slides https://labs.bluefrostsecurity.de/files/offensivecon2020_bug_collision_tale.pdf vulnerabilities lpe slides cve-2019-2025  lpe 2020 linux kernel lpe resource \"a bug collision tale\" (cve-2019-2025); url type: slides. 2020 年 linux 内核lpe资料：「a bug collision tale」（cve-2019-2025）；url 类型：slides。 # a bug collision tale record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: a bug collision tale resource_label: primary resource_type: slides resource_url: https://labs.bluefrostsecurity.de/files/offensivecon2020_bug_collision_tale.pdf parent_primary_url: https://labs.bluefrostsecurity.de/files/offensivecon2020_bug_collision_tale.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"a bug collision tale\" by eloi sanfelix at offensivecon](https://labs.bluefrostsecurity.de/files/offensivecon2020_bug_collision_tale.pdf) [slides] [[video](https://www.youtube.com/watch?v=wodrkzwgydq)] [cve-2019-2025] cves: cve-2019-2025 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_im unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "37adceee29a25b03",
      "item_id": "57bca4e4f0602798",
      "slug": "2020-vulnerabilities-lpe-a-bug-collision-tale-video-b17a7f2e",
      "year": 2020,
      "title": "A bug collision tale · video",
      "item_title": "A bug collision tale",
      "authors": [
        "Eloi Sanfelix at OffensiveCon"
      ],
      "cves": [
        "CVE-2019-2025"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=WOdRkZwGYDQ",
      "primary_url": "https://www.youtube.com/watch?v=WOdRkZwGYDQ",
      "parent_primary_url": "https://labs.bluefrostsecurity.de/files/OffensiveCon2020_bug_collision_tale.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-a-bug-collision-tale-video-b17a7f2e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A bug collision tale · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: A bug collision tale resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=WOdRkZwGYDQ parent_primary_url: https://labs.bluefrostsecurity.de/files/OffensiveCon2020_bug_collision_tale.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"A bug collision tale\" by Eloi Sanfelix at OffensiveCon](https://labs.bluefrostsecurity.de/files/OffensiveCon2020_bug_collision_tale.pdf) [slides] [[video](https://www.youtube.com/watch?v=WOdRkZwGYDQ)] [CVE-2019-2025] cves: CVE-2019-2025 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reas",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://labs.bluefrostsecurity.de/files/OffensiveCon2020_bug_collision_tale.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=WOdRkZwGYDQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://labs.bluefrostsecurity.de/files/OffensiveCon2020_bug_collision_tale.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=WOdRkZwGYDQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "video",
        "CVE-2019-2025"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2020 Linux kernel LPE resource \"A bug collision tale · video\" (CVE-2019-2025); URL type: video.",
      "summary_zh": "2020 年 Linux 内核LPE资料：「A bug collision tale · video」（CVE-2019-2025）；URL 类型：video。",
      "source_markdown": "[2020: \"A bug collision tale\" by Eloi Sanfelix at OffensiveCon](https://labs.bluefrostsecurity.de/files/OffensiveCon2020_bug_collision_tale.pdf) [slides] [[video](https://www.youtube.com/watch?v=WOdRkZwGYDQ)] [CVE-2019-2025]",
      "search_text": "a bug collision tale · video a bug collision tale eloi sanfelix at offensivecon cve-2019-2025  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=wodrkzwgydq vulnerabilities lpe video cve-2019-2025  lpe 2020 linux kernel lpe resource \"a bug collision tale · video\" (cve-2019-2025); url type: video. 2020 年 linux 内核lpe资料：「a bug collision tale · video」（cve-2019-2025）；url 类型：video。 # a bug collision tale · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: a bug collision tale resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=wodrkzwgydq parent_primary_url: https://labs.bluefrostsecurity.de/files/offensivecon2020_bug_collision_tale.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"a bug collision tale\" by eloi sanfelix at offensivecon](https://labs.bluefrostsecurity.de/files/offensivecon2020_bug_collision_tale.pdf) [slides] [[video](https://www.youtube.com/watch?v=wodrkzwgydq)] [cve-2019-2025] cves: cve-2019-2025 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reas unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bb1fff5d64de5469",
      "item_id": "a834355b74f20100",
      "slug": "2020-vulnerabilities-lpe-cve-2020-8835-linux-kernel-privilege-escalation-via-improper-ebpf-program-verificatio",
      "year": 2020,
      "title": "CVE-2020-8835: Linux Kernel Privilege Escalation via Improper eBPF Program Verification",
      "item_title": "CVE-2020-8835: Linux Kernel Privilege Escalation via Improper eBPF Program Verification",
      "authors": [
        "Manfred Paul"
      ],
      "cves": [
        "CVE-2020-8835"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.zerodayinitiative.com/blog/2020/4/8/cve-2020-8835-linux-kernel-privilege-escalation-via-improper-ebpf-program-verification",
      "primary_url": "https://www.zerodayinitiative.com/blog/2020/4/8/cve-2020-8835-linux-kernel-privilege-escalation-via-improper-ebpf-program-verification",
      "parent_primary_url": "https://www.zerodayinitiative.com/blog/2020/4/8/cve-2020-8835-linux-kernel-privilege-escalation-via-improper-ebpf-program-verification",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-cve-2020-8835-linux-kernel-privilege-escalation-via-improper-ebpf-program-verificatio.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2020-8835: Linux Kernel Privilege Escalation via Improper eBPF Program Verification record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2020-8835: Linux Kernel Privilege Escalation via Improper eBPF Program Verification resource_label: primary resource_type: article resource_url: https://www.zerodayinitiative.com/blog/2020/4/8/cve-2020-8835-linux-kernel-privilege-escalation-via-improper-ebpf-program-verification parent_primary_url: https://www.zerodayinitiative.com/blog/2020/4/8/cve-2020-8835-linux-kernel-privilege-escalation-via-improper-ebpf-program-verification source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"CVE-2020-8835: Linux Kernel Privilege Escalation via Improper eBPF Program Verification\" by Manfred Paul](https://www.zerodayinitiative.com/blog/2020/4/8/cve-2020-8835-l",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.zerodayinitiative.com/blog/2020/4/8/cve-2020-8835-linux-kernel-privilege-escalation-via-improper-ebpf-program-verification"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.zerodayinitiative.com/blog/2020/4/8/cve-2020-8835-linux-kernel-privilege-escalation-via-improper-ebpf-program-verification"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2020-8835"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2020 Linux kernel LPE resource \"CVE-2020-8835: Linux Kernel Privilege Escalation via Improper eBPF Program Verification\" (CVE-2020-8835); URL type: article.",
      "summary_zh": "2020 年 Linux 内核LPE资料：「CVE-2020-8835: Linux Kernel Privilege Escalation via Improper eBPF Program Verification」（CVE-2020-8835）；URL 类型：article。",
      "source_markdown": "[2020: \"CVE-2020-8835: Linux Kernel Privilege Escalation via Improper eBPF Program Verification\" by Manfred Paul](https://www.zerodayinitiative.com/blog/2020/4/8/cve-2020-8835-linux-kernel-privilege-escalation-via-improper-ebpf-program-verification) [article] [CVE-2020-8835]",
      "search_text": "cve-2020-8835: linux kernel privilege escalation via improper ebpf program verification cve-2020-8835: linux kernel privilege escalation via improper ebpf program verification manfred paul cve-2020-8835  vulnerabilities lpe lpe primary article https://www.zerodayinitiative.com/blog/2020/4/8/cve-2020-8835-linux-kernel-privilege-escalation-via-improper-ebpf-program-verification vulnerabilities lpe article cve-2020-8835  lpe 2020 linux kernel lpe resource \"cve-2020-8835: linux kernel privilege escalation via improper ebpf program verification\" (cve-2020-8835); url type: article. 2020 年 linux 内核lpe资料：「cve-2020-8835: linux kernel privilege escalation via improper ebpf program verification」（cve-2020-8835）；url 类型：article。 # cve-2020-8835: linux kernel privilege escalation via improper ebpf program verification record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2020-8835: linux kernel privilege escalation via improper ebpf program verification resource_label: primary resource_type: article resource_url: https://www.zerodayinitiative.com/blog/2020/4/8/cve-2020-8835-linux-kernel-privilege-escalation-via-improper-ebpf-program-verification parent_primary_url: https://www.zerodayinitiative.com/blog/2020/4/8/cve-2020-8835-linux-kernel-privilege-escalation-via-improper-ebpf-program-verification source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"cve-2020-8835: linux kernel privilege escalation via improper ebpf program verification\" by manfred paul](https://www.zerodayinitiative.com/blog/2020/4/8/cve-2020-8835-l unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "cef9bdf300ffa0a9",
      "item_id": "0a519a61c0381784",
      "slug": "2020-vulnerabilities-lpe-mitigations-are-attack-surface-too-primary-b5e6c7e6",
      "year": 2020,
      "title": "Mitigations are attack surface, too",
      "item_title": "Mitigations are attack surface, too",
      "authors": [
        "Jann Horn"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2020/02/mitigations-are-attack-surface-too.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2020/02/mitigations-are-attack-surface-too.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2020/02/mitigations-are-attack-surface-too.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-mitigations-are-attack-surface-too-primary-b5e6c7e6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mitigations are attack surface, too record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Mitigations are attack surface, too resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2020/02/mitigations-are-attack-surface-too.html parent_primary_url: https://googleprojectzero.blogspot.com/2020/02/mitigations-are-attack-surface-too.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"Mitigations are attack surface, too\" by Jann Horn](https://googleprojectzero.blogspot.com/2020/02/mitigations-are-attack-surface-too.html) [article] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reaso",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2020/02/mitigations-are-attack-surface-too.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2020/02/mitigations-are-attack-surface-too.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "mitigation",
        "attack_surface"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Mitigations can also be considered an attack surface in security research.",
      "summary_zh": "缓解措施在安全研究中也可以被视为攻击面。",
      "source_markdown": "[2020: \"Mitigations are attack surface, too\" by Jann Horn](https://googleprojectzero.blogspot.com/2020/02/mitigations-are-attack-surface-too.html) [article]",
      "search_text": "mitigations are attack surface, too mitigations are attack surface, too jann horn   vulnerabilities lpe lpe primary article https://googleprojectzero.blogspot.com/2020/02/mitigations-are-attack-surface-too.html mitigation attack_surface  defensive research mitigations can also be considered an attack surface in security research. 缓解措施在安全研究中也可以被视为攻击面。 # mitigations are attack surface, too record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: mitigations are attack surface, too resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2020/02/mitigations-are-attack-surface-too.html parent_primary_url: https://googleprojectzero.blogspot.com/2020/02/mitigations-are-attack-surface-too.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"mitigations are attack surface, too\" by jann horn](https://googleprojectzero.blogspot.com/2020/02/mitigations-are-attack-surface-too.html) [article] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reaso unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "834d95f47f53895e",
      "item_id": "650921690c7d1543",
      "slug": "2020-vulnerabilities-lpe-cve-2019-18683-exploiting-a-linux-kernel-vulnerability-in-the-v4l2-subsystem-primary-",
      "year": 2020,
      "title": "CVE-2019-18683: Exploiting a Linux kernel vulnerability in the V4L2 subsystem",
      "item_title": "CVE-2019-18683: Exploiting a Linux kernel vulnerability in the V4L2 subsystem",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [
        "CVE-2019-18683"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://a13xp0p0v.github.io/2020/02/15/CVE-2019-18683.html",
      "primary_url": "https://a13xp0p0v.github.io/2020/02/15/CVE-2019-18683.html",
      "parent_primary_url": "https://a13xp0p0v.github.io/2020/02/15/CVE-2019-18683.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-cve-2019-18683-exploiting-a-linux-kernel-vulnerability-in-the-v4l2-subsystem-primary-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2019-18683: Exploiting a Linux kernel vulnerability in the V4L2 subsystem record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2019-18683: Exploiting a Linux kernel vulnerability in the V4L2 subsystem resource_label: primary resource_type: article resource_url: https://a13xp0p0v.github.io/2020/02/15/CVE-2019-18683.html parent_primary_url: https://a13xp0p0v.github.io/2020/02/15/CVE-2019-18683.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"CVE-2019-18683: Exploiting a Linux kernel vulnerability in the V4L2 subsystem\" by Alexander Popov](https://a13xp0p0v.github.io/2020/02/15/CVE-2019-18683.html) [article] [[slides](https://a13xp0p0v.github.io/img/CVE-2019-18683.pdf)] [CVE-2019-18683] cves: CVE-2019-18683 android_impact_status: unknown android_impact_reason: Linux kernel vuln",
      "link_types": [
        "article",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://a13xp0p0v.github.io/2020/02/15/CVE-2019-18683.html"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://a13xp0p0v.github.io/img/CVE-2019-18683.pdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://a13xp0p0v.github.io/2020/02/15/CVE-2019-18683.html"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://a13xp0p0v.github.io/img/CVE-2019-18683.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://a13xp0p0v.github.io/2020/02/15/CVE-2019-18683.html",
        "https://a13xp0p0v.github.io/img/CVE-2019-18683.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "V4L2",
        "CVE-2019-18683"
      ],
      "affected_area": "V4L2",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "CVE-2019-18683 is a Linux kernel vulnerability in the V4L2 subsystem that can lead to local privilege escalation.",
      "summary_zh": "CVE-2019-18683是V4L2子系统中的Linux内核漏洞，可能导致本地权限提升。",
      "source_markdown": "[2020: \"CVE-2019-18683: Exploiting a Linux kernel vulnerability in the V4L2 subsystem\" by Alexander Popov](https://a13xp0p0v.github.io/2020/02/15/CVE-2019-18683.html) [article] [[slides](https://a13xp0p0v.github.io/img/CVE-2019-18683.pdf)] [CVE-2019-18683]",
      "search_text": "cve-2019-18683: exploiting a linux kernel vulnerability in the v4l2 subsystem cve-2019-18683: exploiting a linux kernel vulnerability in the v4l2 subsystem alexander popov cve-2019-18683  vulnerabilities lpe lpe primary article https://a13xp0p0v.github.io/2020/02/15/cve-2019-18683.html lpe v4l2 cve-2019-18683 v4l2 vulnerability analysis cve-2019-18683 is a linux kernel vulnerability in the v4l2 subsystem that can lead to local privilege escalation. cve-2019-18683是v4l2子系统中的linux内核漏洞，可能导致本地权限提升。 # cve-2019-18683: exploiting a linux kernel vulnerability in the v4l2 subsystem record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2019-18683: exploiting a linux kernel vulnerability in the v4l2 subsystem resource_label: primary resource_type: article resource_url: https://a13xp0p0v.github.io/2020/02/15/cve-2019-18683.html parent_primary_url: https://a13xp0p0v.github.io/2020/02/15/cve-2019-18683.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"cve-2019-18683: exploiting a linux kernel vulnerability in the v4l2 subsystem\" by alexander popov](https://a13xp0p0v.github.io/2020/02/15/cve-2019-18683.html) [article] [[slides](https://a13xp0p0v.github.io/img/cve-2019-18683.pdf)] [cve-2019-18683] cves: cve-2019-18683 android_impact_status: unknown android_impact_reason: linux kernel vuln unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "a5da50b12fa9e0ab",
      "item_id": "650921690c7d1543",
      "slug": "2020-vulnerabilities-lpe-cve-2019-18683-exploiting-a-linux-kernel-vulnerability-in-the-v4l2-subsystem-slides-4",
      "year": 2020,
      "title": "CVE-2019-18683: Exploiting a Linux kernel vulnerability in the V4L2 subsystem · slides",
      "item_title": "CVE-2019-18683: Exploiting a Linux kernel vulnerability in the V4L2 subsystem",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [
        "CVE-2019-18683"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://a13xp0p0v.github.io/img/CVE-2019-18683.pdf",
      "primary_url": "https://a13xp0p0v.github.io/img/CVE-2019-18683.pdf",
      "parent_primary_url": "https://a13xp0p0v.github.io/2020/02/15/CVE-2019-18683.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-cve-2019-18683-exploiting-a-linux-kernel-vulnerability-in-the-v4l2-subsystem-slides-4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2019-18683: Exploiting a Linux kernel vulnerability in the V4L2 subsystem · slides record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2019-18683: Exploiting a Linux kernel vulnerability in the V4L2 subsystem resource_label: slides resource_type: slides resource_url: https://a13xp0p0v.github.io/img/CVE-2019-18683.pdf parent_primary_url: https://a13xp0p0v.github.io/2020/02/15/CVE-2019-18683.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"CVE-2019-18683: Exploiting a Linux kernel vulnerability in the V4L2 subsystem\" by Alexander Popov](https://a13xp0p0v.github.io/2020/02/15/CVE-2019-18683.html) [article] [[slides](https://a13xp0p0v.github.io/img/CVE-2019-18683.pdf)] [CVE-2019-18683] cves: CVE-2019-18683 android_impact_status: unknown android_impact_reason: Linux kernel vulne",
      "link_types": [
        "article",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://a13xp0p0v.github.io/2020/02/15/CVE-2019-18683.html"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://a13xp0p0v.github.io/img/CVE-2019-18683.pdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://a13xp0p0v.github.io/2020/02/15/CVE-2019-18683.html"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://a13xp0p0v.github.io/img/CVE-2019-18683.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://a13xp0p0v.github.io/2020/02/15/CVE-2019-18683.html",
        "https://a13xp0p0v.github.io/img/CVE-2019-18683.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "V4L2",
        "CVE-2019-18683"
      ],
      "affected_area": "V4L2",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "Slides on CVE-2019-18683 provide insights into exploiting a Linux kernel vulnerability in the V4L2 subsystem.",
      "summary_zh": "关于CVE-2019-18683的幻灯片提供了对V4L2子系统中Linux内核漏洞利用的见解。",
      "source_markdown": "[2020: \"CVE-2019-18683: Exploiting a Linux kernel vulnerability in the V4L2 subsystem\" by Alexander Popov](https://a13xp0p0v.github.io/2020/02/15/CVE-2019-18683.html) [article] [[slides](https://a13xp0p0v.github.io/img/CVE-2019-18683.pdf)] [CVE-2019-18683]",
      "search_text": "cve-2019-18683: exploiting a linux kernel vulnerability in the v4l2 subsystem · slides cve-2019-18683: exploiting a linux kernel vulnerability in the v4l2 subsystem alexander popov cve-2019-18683  vulnerabilities lpe lpe slides slides https://a13xp0p0v.github.io/img/cve-2019-18683.pdf lpe v4l2 cve-2019-18683 v4l2 vulnerability analysis slides on cve-2019-18683 provide insights into exploiting a linux kernel vulnerability in the v4l2 subsystem. 关于cve-2019-18683的幻灯片提供了对v4l2子系统中linux内核漏洞利用的见解。 # cve-2019-18683: exploiting a linux kernel vulnerability in the v4l2 subsystem · slides record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2019-18683: exploiting a linux kernel vulnerability in the v4l2 subsystem resource_label: slides resource_type: slides resource_url: https://a13xp0p0v.github.io/img/cve-2019-18683.pdf parent_primary_url: https://a13xp0p0v.github.io/2020/02/15/cve-2019-18683.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"cve-2019-18683: exploiting a linux kernel vulnerability in the v4l2 subsystem\" by alexander popov](https://a13xp0p0v.github.io/2020/02/15/cve-2019-18683.html) [article] [[slides](https://a13xp0p0v.github.io/img/cve-2019-18683.pdf)] [cve-2019-18683] cves: cve-2019-18683 android_impact_status: unknown android_impact_reason: linux kernel vulne unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "264b233240686dcd",
      "item_id": "f1e14634950f3a34",
      "slug": "2020-vulnerabilities-lpe-multiple-kernel-vulnerabilities-affecting-all-qualcomm-devices-primary-59bc6de3",
      "year": 2020,
      "title": "Multiple Kernel Vulnerabilities Affecting All Qualcomm Devices",
      "item_title": "Multiple Kernel Vulnerabilities Affecting All Qualcomm Devices",
      "authors": [
        "Tamir Zahavi-Brunner"
      ],
      "cves": [
        "CVE-2019-14040",
        "CVE-2019-14041"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.zimperium.com/multiple-kernel-vulnerabilities-affecting-all-qualcomm-devices/",
      "primary_url": "https://blog.zimperium.com/multiple-kernel-vulnerabilities-affecting-all-qualcomm-devices/",
      "parent_primary_url": "https://blog.zimperium.com/multiple-kernel-vulnerabilities-affecting-all-qualcomm-devices/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2020-vulnerabilities-lpe-multiple-kernel-vulnerabilities-affecting-all-qualcomm-devices-primary-59bc6de3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Multiple Kernel Vulnerabilities Affecting All Qualcomm Devices record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Multiple Kernel Vulnerabilities Affecting All Qualcomm Devices resource_label: primary resource_type: article resource_url: https://blog.zimperium.com/multiple-kernel-vulnerabilities-affecting-all-qualcomm-devices/ parent_primary_url: https://blog.zimperium.com/multiple-kernel-vulnerabilities-affecting-all-qualcomm-devices/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"Multiple Kernel Vulnerabilities Affecting All Qualcomm Devices\" by Tamir Zahavi-Brunner](https://blog.zimperium.com/multiple-kernel-vulnerabilities-affecting-all-qualcomm-devices/) [article] [CVE-2019-14040, CVE-2019-14041] cves: CVE-2019-14040, CVE-2019-14041 android_impact_status: possible android_impact",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.zimperium.com/multiple-kernel-vulnerabilities-affecting-all-qualcomm-devices/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.zimperium.com/multiple-kernel-vulnerabilities-affecting-all-qualcomm-devices/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions Qualcomm/Adreno Android SoC components",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Qualcomm"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "Multiple kernel vulnerabilities affecting all Qualcomm devices have been identified, potentially leading to local privilege escalation.",
      "summary_zh": "已发现影响所有高通设备的多个内核漏洞，可能导致本地权限提升。",
      "source_markdown": "[2020: \"Multiple Kernel Vulnerabilities Affecting All Qualcomm Devices\" by Tamir Zahavi-Brunner](https://blog.zimperium.com/multiple-kernel-vulnerabilities-affecting-all-qualcomm-devices/) [article] [CVE-2019-14040, CVE-2019-14041]",
      "search_text": "multiple kernel vulnerabilities affecting all qualcomm devices multiple kernel vulnerabilities affecting all qualcomm devices tamir zahavi-brunner cve-2019-14040 cve-2019-14041  vulnerabilities lpe lpe primary article https://blog.zimperium.com/multiple-kernel-vulnerabilities-affecting-all-qualcomm-devices/ lpe qualcomm  vulnerability analysis multiple kernel vulnerabilities affecting all qualcomm devices have been identified, potentially leading to local privilege escalation. 已发现影响所有高通设备的多个内核漏洞，可能导致本地权限提升。 # multiple kernel vulnerabilities affecting all qualcomm devices record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: multiple kernel vulnerabilities affecting all qualcomm devices resource_label: primary resource_type: article resource_url: https://blog.zimperium.com/multiple-kernel-vulnerabilities-affecting-all-qualcomm-devices/ parent_primary_url: https://blog.zimperium.com/multiple-kernel-vulnerabilities-affecting-all-qualcomm-devices/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2020: \"multiple kernel vulnerabilities affecting all qualcomm devices\" by tamir zahavi-brunner](https://blog.zimperium.com/multiple-kernel-vulnerabilities-affecting-all-qualcomm-devices/) [article] [cve-2019-14040, cve-2019-14041] cves: cve-2019-14040, cve-2019-14041 android_impact_status: possible android_impact possible mentions qualcomm/adreno android soc components no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "dc4c6b9a5be7bce9",
      "item_id": "2fdef48833239606",
      "slug": "2019-vulnerabilities-lpe-cve-2017-16995-analysis-ebpf-sign-extension-lpe-primary-71e0548c",
      "year": 2019,
      "title": "CVE-2017-16995 Analysis - eBPF Sign Extension LPE",
      "item_title": "CVE-2017-16995 Analysis - eBPF Sign Extension LPE",
      "authors": [
        "senyuuri"
      ],
      "cves": [
        "CVE-2017-16995"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.senyuuri.info/2019/01/19/kernel-epbf-sign-extension/",
      "primary_url": "https://blog.senyuuri.info/2019/01/19/kernel-epbf-sign-extension/",
      "parent_primary_url": "https://blog.senyuuri.info/2019/01/19/kernel-epbf-sign-extension/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-cve-2017-16995-analysis-ebpf-sign-extension-lpe-primary-71e0548c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2017-16995 Analysis - eBPF Sign Extension LPE record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2017-16995 Analysis - eBPF Sign Extension LPE resource_label: primary resource_type: article resource_url: https://blog.senyuuri.info/2019/01/19/kernel-epbf-sign-extension/ parent_primary_url: https://blog.senyuuri.info/2019/01/19/kernel-epbf-sign-extension/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"CVE-2017-16995 Analysis - eBPF Sign Extension LPE\" by senyuuri](https://blog.senyuuri.info/2019/01/19/kernel-epbf-sign-extension/) [article] [CVE-2017-16995] cves: CVE-2017-16995 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.senyuuri.info/2019/01/19/kernel-epbf-sign-extension/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.senyuuri.info/2019/01/19/kernel-epbf-sign-extension/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "eBPF",
        "CVE-2017-16995"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "CVE-2017-16995 is an eBPF sign extension vulnerability that can lead to local privilege escalation.",
      "summary_zh": "CVE-2017-16995是一个eBPF符号扩展漏洞，可能导致本地权限提升。",
      "source_markdown": "[2019: \"CVE-2017-16995 Analysis - eBPF Sign Extension LPE\" by senyuuri](https://blog.senyuuri.info/2019/01/19/kernel-epbf-sign-extension/) [article] [CVE-2017-16995]",
      "search_text": "cve-2017-16995 analysis - ebpf sign extension lpe cve-2017-16995 analysis - ebpf sign extension lpe senyuuri cve-2017-16995  vulnerabilities lpe lpe primary article https://blog.senyuuri.info/2019/01/19/kernel-epbf-sign-extension/ lpe ebpf cve-2017-16995  vulnerability analysis cve-2017-16995 is an ebpf sign extension vulnerability that can lead to local privilege escalation. cve-2017-16995是一个ebpf符号扩展漏洞，可能导致本地权限提升。 # cve-2017-16995 analysis - ebpf sign extension lpe record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2017-16995 analysis - ebpf sign extension lpe resource_label: primary resource_type: article resource_url: https://blog.senyuuri.info/2019/01/19/kernel-epbf-sign-extension/ parent_primary_url: https://blog.senyuuri.info/2019/01/19/kernel-epbf-sign-extension/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"cve-2017-16995 analysis - ebpf sign extension lpe\" by senyuuri](https://blog.senyuuri.info/2019/01/19/kernel-epbf-sign-extension/) [article] [cve-2017-16995] cves: cve-2017-16995 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "27c167e1533bfc9f",
      "item_id": "f3e7fb971a83568b",
      "slug": "2019-vulnerabilities-lpe-kernel-research-mmap-handler-exploitation-primary-7942e6dc",
      "year": 2019,
      "title": "Kernel Research / mmap handler exploitation",
      "item_title": "Kernel Research / mmap handler exploitation",
      "authors": [
        "deshal3v"
      ],
      "cves": [
        "CVE-2019-18675"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://deshal3v.github.io/blog/kernel-research/mmap_exploitation",
      "primary_url": "https://deshal3v.github.io/blog/kernel-research/mmap_exploitation",
      "parent_primary_url": "https://deshal3v.github.io/blog/kernel-research/mmap_exploitation",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-kernel-research-mmap-handler-exploitation-primary-7942e6dc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Research / mmap handler exploitation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Kernel Research / mmap handler exploitation resource_label: primary resource_type: article resource_url: https://deshal3v.github.io/blog/kernel-research/mmap_exploitation parent_primary_url: https://deshal3v.github.io/blog/kernel-research/mmap_exploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"Kernel Research / mmap handler exploitation\" by deshal3v](https://deshal3v.github.io/blog/kernel-research/mmap_exploitation) [article] [CVE-2019-18675] cves: CVE-2019-18675 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://deshal3v.github.io/blog/kernel-research/mmap_exploitation"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://deshal3v.github.io/blog/kernel-research/mmap_exploitation"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://deshal3v.github.io/blog/kernel-research/mmap_exploitation"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "mmap"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "Research on mmap handler exploitation reveals vulnerabilities in the Linux kernel.",
      "summary_zh": "对mmap处理程序利用的研究揭示了Linux内核中的漏洞。",
      "source_markdown": "[2019: \"Kernel Research / mmap handler exploitation\" by deshal3v](https://deshal3v.github.io/blog/kernel-research/mmap_exploitation) [article] [CVE-2019-18675]",
      "search_text": "kernel research / mmap handler exploitation kernel research / mmap handler exploitation deshal3v cve-2019-18675  vulnerabilities lpe lpe primary article https://deshal3v.github.io/blog/kernel-research/mmap_exploitation lpe mmap  vulnerability analysis research on mmap handler exploitation reveals vulnerabilities in the linux kernel. 对mmap处理程序利用的研究揭示了linux内核中的漏洞。 # kernel research / mmap handler exploitation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: kernel research / mmap handler exploitation resource_label: primary resource_type: article resource_url: https://deshal3v.github.io/blog/kernel-research/mmap_exploitation parent_primary_url: https://deshal3v.github.io/blog/kernel-research/mmap_exploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"kernel research / mmap handler exploitation\" by deshal3v](https://deshal3v.github.io/blog/kernel-research/mmap_exploitation) [article] [cve-2019-18675] cves: cve-2019-18675 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "15b60703c518b2e7",
      "item_id": "bad242ad0e2505ef",
      "slug": "2019-vulnerabilities-lpe-bad-binder-android-in-the-wild-exploit-primary-d0e46f8c",
      "year": 2019,
      "title": "Bad Binder: Android In-The-Wild Exploit",
      "item_title": "Bad Binder: Android In-The-Wild Exploit",
      "authors": [
        "Maddie Stone"
      ],
      "cves": [
        "CVE-2019-2215"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2019/11/bad-binder-android-in-wild-exploit.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2019/11/bad-binder-android-in-wild-exploit.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2019/11/bad-binder-android-in-wild-exploit.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-bad-binder-android-in-the-wild-exploit-primary-d0e46f8c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Bad Binder: Android In-The-Wild Exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Bad Binder: Android In-The-Wild Exploit resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2019/11/bad-binder-android-in-wild-exploit.html parent_primary_url: https://googleprojectzero.blogspot.com/2019/11/bad-binder-android-in-wild-exploit.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"Bad Binder: Android In-The-Wild Exploit\" by Maddie Stone](https://googleprojectzero.blogspot.com/2019/11/bad-binder-android-in-wild-exploit.html) [article] [CVE-2019-2215] cves: CVE-2019-2215 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Lin",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2019/11/bad-binder-android-in-wild-exploit.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2019/11/bad-binder-android-in-wild-exploit.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://googleprojectzero.blogspot.com/2019/11/bad-binder-android-in-wild-exploit.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "CVE-2019-2215"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "The Bad Binder exploit demonstrates a real-world local privilege escalation vulnerability in Android.",
      "summary_zh": "Bad Binder漏洞展示了Android中的一个真实本地权限提升漏洞。",
      "source_markdown": "[2019: \"Bad Binder: Android In-The-Wild Exploit\" by Maddie Stone](https://googleprojectzero.blogspot.com/2019/11/bad-binder-android-in-wild-exploit.html) [article] [CVE-2019-2215]",
      "search_text": "bad binder: android in-the-wild exploit bad binder: android in-the-wild exploit maddie stone cve-2019-2215  vulnerabilities lpe lpe primary article https://googleprojectzero.blogspot.com/2019/11/bad-binder-android-in-wild-exploit.html lpe android cve-2019-2215  vulnerability analysis the bad binder exploit demonstrates a real-world local privilege escalation vulnerability in android. bad binder漏洞展示了android中的一个真实本地权限提升漏洞。 # bad binder: android in-the-wild exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: bad binder: android in-the-wild exploit resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2019/11/bad-binder-android-in-wild-exploit.html parent_primary_url: https://googleprojectzero.blogspot.com/2019/11/bad-binder-android-in-wild-exploit.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"bad binder: android in-the-wild exploit\" by maddie stone](https://googleprojectzero.blogspot.com/2019/11/bad-binder-android-in-wild-exploit.html) [article] [cve-2019-2215] cves: cve-2019-2215 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than lin yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "3e860c4d3a981111",
      "item_id": "dfb17cc128917af8",
      "slug": "2019-vulnerabilities-lpe-analyzing-android-s-cve-2019-2215-dev-binder-uaf-primary-e311caa7",
      "year": 2019,
      "title": "Analyzing Android's CVE-2019-2215 (/dev/binder UAF)",
      "item_title": "Analyzing Android's CVE-2019-2215 (/dev/binder UAF)",
      "authors": [],
      "cves": [
        "CVE-2019-2215"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://dayzerosec.com/posts/analyzing-androids-cve-2019-2215-dev-binder-uaf/",
      "primary_url": "https://dayzerosec.com/posts/analyzing-androids-cve-2019-2215-dev-binder-uaf/",
      "parent_primary_url": "https://dayzerosec.com/posts/analyzing-androids-cve-2019-2215-dev-binder-uaf/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-analyzing-android-s-cve-2019-2215-dev-binder-uaf-primary-e311caa7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Analyzing Android's CVE-2019-2215 (/dev/binder UAF) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Analyzing Android's CVE-2019-2215 (/dev/binder UAF) resource_label: primary resource_type: article resource_url: https://dayzerosec.com/posts/analyzing-androids-cve-2019-2215-dev-binder-uaf/ parent_primary_url: https://dayzerosec.com/posts/analyzing-androids-cve-2019-2215-dev-binder-uaf/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"Analyzing Android's CVE-2019-2215 (/dev/binder UAF)\"](https://dayzerosec.com/posts/analyzing-androids-cve-2019-2215-dev-binder-uaf/) [article] [CVE-2019-2215] cves: CVE-2019-2215 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://dayzerosec.com/posts/analyzing-androids-cve-2019-2215-dev-binder-uaf/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://dayzerosec.com/posts/analyzing-androids-cve-2019-2215-dev-binder-uaf/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "CVE-2019-2215"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "Analyzing CVE-2019-2215 reveals critical insights into a local privilege escalation vulnerability in Android's binder.",
      "summary_zh": "分析CVE-2019-2215揭示了Android binder中的一个关键本地权限提升漏洞。",
      "source_markdown": "[2019: \"Analyzing Android's CVE-2019-2215 (/dev/binder UAF)\"](https://dayzerosec.com/posts/analyzing-androids-cve-2019-2215-dev-binder-uaf/) [article] [CVE-2019-2215]",
      "search_text": "analyzing android's cve-2019-2215 (/dev/binder uaf) analyzing android's cve-2019-2215 (/dev/binder uaf)  cve-2019-2215  vulnerabilities lpe lpe primary article https://dayzerosec.com/posts/analyzing-androids-cve-2019-2215-dev-binder-uaf/ lpe android cve-2019-2215  vulnerability analysis analyzing cve-2019-2215 reveals critical insights into a local privilege escalation vulnerability in android's binder. 分析cve-2019-2215揭示了android binder中的一个关键本地权限提升漏洞。 # analyzing android's cve-2019-2215 (/dev/binder uaf) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: analyzing android's cve-2019-2215 (/dev/binder uaf) resource_label: primary resource_type: article resource_url: https://dayzerosec.com/posts/analyzing-androids-cve-2019-2215-dev-binder-uaf/ parent_primary_url: https://dayzerosec.com/posts/analyzing-androids-cve-2019-2215-dev-binder-uaf/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"analyzing android's cve-2019-2215 (/dev/binder uaf)\"](https://dayzerosec.com/posts/analyzing-androids-cve-2019-2215-dev-binder-uaf/) [article] [cve-2019-2215] cves: cve-2019-2215 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "94d731cfe08d2920",
      "item_id": "a634267b4764b07b",
      "slug": "2019-vulnerabilities-lpe-stream-cut-android-kernel-exploitation-with-binder-use-after-free-cve-2019-2215-prima",
      "year": 2019,
      "title": "Stream Cut: Android Kernel Exploitation with Binder Use-After-Free (CVE-2019-2215)",
      "item_title": "Stream Cut: Android Kernel Exploitation with Binder Use-After-Free (CVE-2019-2215)",
      "authors": [],
      "cves": [
        "CVE-2019-2215"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=yrLXvmzUQME",
      "primary_url": "https://www.youtube.com/watch?v=yrLXvmzUQME",
      "parent_primary_url": "https://www.youtube.com/watch?v=yrLXvmzUQME",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-stream-cut-android-kernel-exploitation-with-binder-use-after-free-cve-2019-2215-prima.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Stream Cut: Android Kernel Exploitation with Binder Use-After-Free (CVE-2019-2215) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Stream Cut: Android Kernel Exploitation with Binder Use-After-Free (CVE-2019-2215) resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=yrLXvmzUQME parent_primary_url: https://www.youtube.com/watch?v=yrLXvmzUQME source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"Stream Cut: Android Kernel Exploitation with Binder Use-After-Free (CVE-2019-2215)\"](https://www.youtube.com/watch?v=yrLXvmzUQME) [video] [CVE-2019-2215] cves: CVE-2019-2215 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false ",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=yrLXvmzUQME"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=yrLXvmzUQME"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "CVE-2019-2215"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "A video presentation discusses the exploitation of CVE-2019-2215, focusing on a binder use-after-free vulnerability.",
      "summary_zh": "一段视频演示讨论了CVE-2019-2215的利用，重点是binder的使用后释放漏洞。",
      "source_markdown": "[2019: \"Stream Cut: Android Kernel Exploitation with Binder Use-After-Free (CVE-2019-2215)\"](https://www.youtube.com/watch?v=yrLXvmzUQME) [video] [CVE-2019-2215]",
      "search_text": "stream cut: android kernel exploitation with binder use-after-free (cve-2019-2215) stream cut: android kernel exploitation with binder use-after-free (cve-2019-2215)  cve-2019-2215  vulnerabilities lpe lpe primary video https://www.youtube.com/watch?v=yrlxvmzuqme lpe android cve-2019-2215  vulnerability analysis a video presentation discusses the exploitation of cve-2019-2215, focusing on a binder use-after-free vulnerability. 一段视频演示讨论了cve-2019-2215的利用，重点是binder的使用后释放漏洞。 # stream cut: android kernel exploitation with binder use-after-free (cve-2019-2215) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: stream cut: android kernel exploitation with binder use-after-free (cve-2019-2215) resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=yrlxvmzuqme parent_primary_url: https://www.youtube.com/watch?v=yrlxvmzuqme source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"stream cut: android kernel exploitation with binder use-after-free (cve-2019-2215)\"](https://www.youtube.com/watch?v=yrlxvmzuqme) [video] [cve-2019-2215] cves: cve-2019-2215 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false  yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "d5a9ec9376a57423",
      "item_id": "1b0e723f0f65cb51",
      "slug": "2019-vulnerabilities-lpe-cve-2019-2215-android-kernel-binder-vulnerability-analysis-primary-cf9af4f8",
      "year": 2019,
      "title": "CVE-2019-2215 - Android kernel binder vulnerability analysis",
      "item_title": "CVE-2019-2215 - Android kernel binder vulnerability analysis",
      "authors": [],
      "cves": [
        "CVE-2019-2215"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://xz.aliyun.com/t/6853",
      "primary_url": "https://xz.aliyun.com/t/6853",
      "parent_primary_url": "https://xz.aliyun.com/t/6853",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-cve-2019-2215-android-kernel-binder-vulnerability-analysis-primary-cf9af4f8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2019-2215 - Android kernel binder vulnerability analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2019-2215 - Android kernel binder vulnerability analysis resource_label: primary resource_type: article resource_url: https://xz.aliyun.com/t/6853 parent_primary_url: https://xz.aliyun.com/t/6853 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"CVE-2019-2215 - Android kernel binder vulnerability analysis\"](https://xz.aliyun.com/t/6853) [article] [CVE-2019-2215] cves: CVE-2019-2215 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://xz.aliyu",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://xz.aliyun.com/t/6853"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://xz.aliyun.com/t/6853"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "CVE-2019-2215"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "An analysis of CVE-2019-2215 provides insights into the Android kernel binder vulnerability.",
      "summary_zh": "对CVE-2019-2215的分析提供了对Android内核binder漏洞的见解。",
      "source_markdown": "[2019: \"CVE-2019-2215 - Android kernel binder vulnerability analysis\"](https://xz.aliyun.com/t/6853) [article] [CVE-2019-2215]",
      "search_text": "cve-2019-2215 - android kernel binder vulnerability analysis cve-2019-2215 - android kernel binder vulnerability analysis  cve-2019-2215  vulnerabilities lpe lpe primary article https://xz.aliyun.com/t/6853 lpe android cve-2019-2215  vulnerability analysis an analysis of cve-2019-2215 provides insights into the android kernel binder vulnerability. 对cve-2019-2215的分析提供了对android内核binder漏洞的见解。 # cve-2019-2215 - android kernel binder vulnerability analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2019-2215 - android kernel binder vulnerability analysis resource_label: primary resource_type: article resource_url: https://xz.aliyun.com/t/6853 parent_primary_url: https://xz.aliyun.com/t/6853 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"cve-2019-2215 - android kernel binder vulnerability analysis\"](https://xz.aliyun.com/t/6853) [article] [cve-2019-2215] cves: cve-2019-2215 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://xz.aliyu yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "222269393005e729",
      "item_id": "44e79e6d51b3e3c2",
      "slug": "2019-vulnerabilities-lpe-deep-analysis-of-exploitable-linux-kernel-vulnerabilities-primary-81304335",
      "year": 2019,
      "title": "Deep Analysis of Exploitable Linux Kernel Vulnerabilities",
      "item_title": "Deep Analysis of Exploitable Linux Kernel Vulnerabilities",
      "authors": [
        "Tong Lin",
        "Luhai Chen at Linux Security Summit EU"
      ],
      "cves": [
        "CVE-2017-16995",
        "CVE-2017-10661"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=MYEAGmP_id4",
      "primary_url": "https://www.youtube.com/watch?v=MYEAGmP_id4",
      "parent_primary_url": "https://www.youtube.com/watch?v=MYEAGmP_id4",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-deep-analysis-of-exploitable-linux-kernel-vulnerabilities-primary-81304335.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Deep Analysis of Exploitable Linux Kernel Vulnerabilities record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Deep Analysis of Exploitable Linux Kernel Vulnerabilities resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=MYEAGmP_id4 parent_primary_url: https://www.youtube.com/watch?v=MYEAGmP_id4 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"Deep Analysis of Exploitable Linux Kernel Vulnerabilities\" by Tong Lin and Luhai Chen at Linux Security Summit EU](https://www.youtube.com/watch?v=MYEAGmP_id4) [video] [CVE-2017-16995, CVE-2017-10661] cves: CVE-2017-16995, CVE-2017-10661 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=MYEAGmP_id4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=MYEAGmP_id4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2017-16995"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "A video presentation at the Linux Security Summit EU covers exploitable Linux kernel vulnerabilities including CVE-2017-16995.",
      "summary_zh": "在Linux安全峰会上，视频演示涵盖了可利用的Linux内核漏洞，包括CVE-2017-16995。",
      "source_markdown": "[2019: \"Deep Analysis of Exploitable Linux Kernel Vulnerabilities\" by Tong Lin and Luhai Chen at Linux Security Summit EU](https://www.youtube.com/watch?v=MYEAGmP_id4) [video] [CVE-2017-16995, CVE-2017-10661]",
      "search_text": "deep analysis of exploitable linux kernel vulnerabilities deep analysis of exploitable linux kernel vulnerabilities tong lin luhai chen at linux security summit eu cve-2017-16995 cve-2017-10661  vulnerabilities lpe lpe primary video https://www.youtube.com/watch?v=myeagmp_id4 lpe cve-2017-16995  vulnerability analysis a video presentation at the linux security summit eu covers exploitable linux kernel vulnerabilities including cve-2017-16995. 在linux安全峰会上，视频演示涵盖了可利用的linux内核漏洞，包括cve-2017-16995。 # deep analysis of exploitable linux kernel vulnerabilities record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: deep analysis of exploitable linux kernel vulnerabilities resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=myeagmp_id4 parent_primary_url: https://www.youtube.com/watch?v=myeagmp_id4 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"deep analysis of exploitable linux kernel vulnerabilities\" by tong lin and luhai chen at linux security summit eu](https://www.youtube.com/watch?v=myeagmp_id4) [video] [cve-2017-16995, cve-2017-10661] cves: cve-2017-16995, cve-2017-10661 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "383477bbc73ee0dc",
      "item_id": "c27e88b62d59cc9c",
      "slug": "2019-vulnerabilities-lpe-tailoring-cve-2019-2215-to-achieve-root-primary-d8201d9a",
      "year": 2019,
      "title": "Tailoring CVE-2019-2215 to Achieve Root",
      "item_title": "Tailoring CVE-2019-2215 to Achieve Root",
      "authors": [
        "Grant Hernandez"
      ],
      "cves": [
        "CVE-2019-2215"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://hernan.de/blog/2019/10/15/tailoring-cve-2019-2215-to-achieve-root/",
      "primary_url": "https://hernan.de/blog/2019/10/15/tailoring-cve-2019-2215-to-achieve-root/",
      "parent_primary_url": "https://hernan.de/blog/2019/10/15/tailoring-cve-2019-2215-to-achieve-root/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-tailoring-cve-2019-2215-to-achieve-root-primary-d8201d9a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Tailoring CVE-2019-2215 to Achieve Root record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Tailoring CVE-2019-2215 to Achieve Root resource_label: primary resource_type: article resource_url: https://hernan.de/blog/2019/10/15/tailoring-cve-2019-2215-to-achieve-root/ parent_primary_url: https://hernan.de/blog/2019/10/15/tailoring-cve-2019-2215-to-achieve-root/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"Tailoring CVE-2019-2215 to Achieve Root\" by Grant Hernandez](https://hernan.de/blog/2019/10/15/tailoring-cve-2019-2215-to-achieve-root/) [article] [CVE-2019-2215] cves: CVE-2019-2215 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impac",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://hernan.de/blog/2019/10/15/tailoring-cve-2019-2215-to-achieve-root/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://hernan.de/blog/2019/10/15/tailoring-cve-2019-2215-to-achieve-root/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "CVE-2019-2215"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "Tailoring CVE-2019-2215 for root access highlights a local privilege escalation vulnerability in Android.",
      "summary_zh": "调整CVE-2019-2215以获得root访问权限突出了Android中的本地权限提升漏洞。",
      "source_markdown": "[2019: \"Tailoring CVE-2019-2215 to Achieve Root\" by Grant Hernandez](https://hernan.de/blog/2019/10/15/tailoring-cve-2019-2215-to-achieve-root/) [article] [CVE-2019-2215]",
      "search_text": "tailoring cve-2019-2215 to achieve root tailoring cve-2019-2215 to achieve root grant hernandez cve-2019-2215  vulnerabilities lpe lpe primary article https://hernan.de/blog/2019/10/15/tailoring-cve-2019-2215-to-achieve-root/ lpe android cve-2019-2215  vulnerability analysis tailoring cve-2019-2215 for root access highlights a local privilege escalation vulnerability in android. 调整cve-2019-2215以获得root访问权限突出了android中的本地权限提升漏洞。 # tailoring cve-2019-2215 to achieve root record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: tailoring cve-2019-2215 to achieve root resource_label: primary resource_type: article resource_url: https://hernan.de/blog/2019/10/15/tailoring-cve-2019-2215-to-achieve-root/ parent_primary_url: https://hernan.de/blog/2019/10/15/tailoring-cve-2019-2215-to-achieve-root/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"tailoring cve-2019-2215 to achieve root\" by grant hernandez](https://hernan.de/blog/2019/10/15/tailoring-cve-2019-2215-to-achieve-root/) [article] [cve-2019-2215] cves: cve-2019-2215 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impac unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6266e9d7a8006bf4",
      "item_id": "c9b790089b45c593",
      "slug": "2019-vulnerabilities-lpe-from-zero-to-root-building-universal-android-rooting-with-a-type-confusion-vulnerabil",
      "year": 2019,
      "title": "From Zero to Root: Building Universal Android Rooting with a Type Confusion Vulnerability",
      "item_title": "From Zero to Root: Building Universal Android Rooting with a Type Confusion Vulnerability",
      "authors": [
        "Wang Yong"
      ],
      "cves": [
        "CVE-2018-9568"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://github.com/ThomasKing2014/slides/blob/master/Building%20universal%20Android%20rooting%20with%20a%20type%20confusion%20vulnerability.pdf",
      "primary_url": "https://github.com/ThomasKing2014/slides/blob/master/Building%20universal%20Android%20rooting%20with%20a%20type%20confusion%20vulnerability.pdf",
      "parent_primary_url": "https://github.com/ThomasKing2014/slides/blob/master/Building%20universal%20Android%20rooting%20with%20a%20type%20confusion%20vulnerability.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-from-zero-to-root-building-universal-android-rooting-with-a-type-confusion-vulnerabil.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# From Zero to Root: Building Universal Android Rooting with a Type Confusion Vulnerability record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: From Zero to Root: Building Universal Android Rooting with a Type Confusion Vulnerability resource_label: primary resource_type: slides resource_url: https://github.com/ThomasKing2014/slides/blob/master/Building%20universal%20Android%20rooting%20with%20a%20type%20confusion%20vulnerability.pdf parent_primary_url: https://github.com/ThomasKing2014/slides/blob/master/Building%20universal%20Android%20rooting%20with%20a%20type%20confusion%20vulnerability.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"From Zero to Root: Building Universal Android Rooting with a Type Confusion Vulnerability\" by Wang Yong](https://github.com/ThomasKing2014/slides/bl",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/ThomasKing2014/slides/blob/master/Building%20universal%20Android%20rooting%20with%20a%20type%20confusion%20vulnerability.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/ThomasKing2014/slides/blob/master/Building%20universal%20Android%20rooting%20with%20a%20type%20confusion%20vulnerability.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ThomasKing2014/slides/blob/master/Building%20universal%20Android%20rooting%20with%20a%20type%20confusion%20vulnerability.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "rooting",
        "Android",
        "CVE-2018-9568"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "Slides discuss building universal Android rooting techniques based on a type confusion vulnerability.",
      "summary_zh": "幻灯片讨论了基于类型混淆漏洞构建通用Android根权限技术。",
      "source_markdown": "[2019: \"From Zero to Root: Building Universal Android Rooting with a Type Confusion Vulnerability\" by Wang Yong](https://github.com/ThomasKing2014/slides/blob/master/Building%20universal%20Android%20rooting%20with%20a%20type%20confusion%20vulnerability.pdf) [slides] [CVE-2018-9568, WrongZone]",
      "search_text": "from zero to root: building universal android rooting with a type confusion vulnerability from zero to root: building universal android rooting with a type confusion vulnerability wang yong cve-2018-9568  vulnerabilities lpe lpe primary slides https://github.com/thomasking2014/slides/blob/master/building%20universal%20android%20rooting%20with%20a%20type%20confusion%20vulnerability.pdf rooting android cve-2018-9568  vulnerability analysis slides discuss building universal android rooting techniques based on a type confusion vulnerability. 幻灯片讨论了基于类型混淆漏洞构建通用android根权限技术。 # from zero to root: building universal android rooting with a type confusion vulnerability record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: from zero to root: building universal android rooting with a type confusion vulnerability resource_label: primary resource_type: slides resource_url: https://github.com/thomasking2014/slides/blob/master/building%20universal%20android%20rooting%20with%20a%20type%20confusion%20vulnerability.pdf parent_primary_url: https://github.com/thomasking2014/slides/blob/master/building%20universal%20android%20rooting%20with%20a%20type%20confusion%20vulnerability.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"from zero to root: building universal android rooting with a type confusion vulnerability\" by wang yong](https://github.com/thomasking2014/slides/bl yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "226b9bc354ee0069",
      "item_id": "38f1830b3af2be7a",
      "slug": "2019-vulnerabilities-lpe-karma-takes-a-look-at-offense-and-defense-wrongzone-from-exploitation-to-repair-prima",
      "year": 2019,
      "title": "KARMA takes a look at offense and defense: WrongZone from exploitation to repair",
      "item_title": "KARMA takes a look at offense and defense: WrongZone from exploitation to repair",
      "authors": [],
      "cves": [
        "CVE-2018-9568"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://mp.weixin.qq.com/s?__biz=MzA3NTQ3ODI0NA==&mid=2247485060&idx=1&sn=b3773b0478f7b5ee39fa1a6527b4f3ff",
      "primary_url": "https://mp.weixin.qq.com/s?__biz=MzA3NTQ3ODI0NA==&mid=2247485060&idx=1&sn=b3773b0478f7b5ee39fa1a6527b4f3ff",
      "parent_primary_url": "https://mp.weixin.qq.com/s?__biz=MzA3NTQ3ODI0NA==&mid=2247485060&idx=1&sn=b3773b0478f7b5ee39fa1a6527b4f3ff",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-karma-takes-a-look-at-offense-and-defense-wrongzone-from-exploitation-to-repair-prima.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KARMA takes a look at offense and defense: WrongZone from exploitation to repair record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: KARMA takes a look at offense and defense: WrongZone from exploitation to repair resource_label: primary resource_type: article resource_url: https://mp.weixin.qq.com/s?__biz=MzA3NTQ3ODI0NA==&mid=2247485060&idx=1&sn=b3773b0478f7b5ee39fa1a6527b4f3ff parent_primary_url: https://mp.weixin.qq.com/s?__biz=MzA3NTQ3ODI0NA==&mid=2247485060&idx=1&sn=b3773b0478f7b5ee39fa1a6527b4f3ff source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"KARMA takes a look at offense and defense: WrongZone from exploitation to repair\"](https://mp.weixin.qq.com/s?__biz=MzA3NTQ3ODI0NA==&mid=2247485060&idx=1&sn=b3773b0478f7b5ee39fa1a6527b4f3ff) [article] [CVE-2018-9568, WrongZone] cves: CVE-2",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://mp.weixin.qq.com/s?__biz=MzA3NTQ3ODI0NA==&mid=2247485060&idx=1&sn=b3773b0478f7b5ee39fa1a6527b4f3ff"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://mp.weixin.qq.com/s?__biz=MzA3NTQ3ODI0NA==&mid=2247485060&idx=1&sn=b3773b0478f7b5ee39fa1a6527b4f3ff"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "CVE-2018-9568"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "An article explores the exploitation and repair of the WrongZone vulnerability in Android.",
      "summary_zh": "一篇文章探讨了Android中WrongZone漏洞的利用和修复。",
      "source_markdown": "[2019: \"KARMA takes a look at offense and defense: WrongZone from exploitation to repair\"](https://mp.weixin.qq.com/s?__biz=MzA3NTQ3ODI0NA==&mid=2247485060&idx=1&sn=b3773b0478f7b5ee39fa1a6527b4f3ff) [article] [CVE-2018-9568, WrongZone]",
      "search_text": "karma takes a look at offense and defense: wrongzone from exploitation to repair karma takes a look at offense and defense: wrongzone from exploitation to repair  cve-2018-9568  vulnerabilities lpe lpe primary article https://mp.weixin.qq.com/s?__biz=mza3ntq3odi0na==&mid=2247485060&idx=1&sn=b3773b0478f7b5ee39fa1a6527b4f3ff lpe android cve-2018-9568  vulnerability analysis an article explores the exploitation and repair of the wrongzone vulnerability in android. 一篇文章探讨了android中wrongzone漏洞的利用和修复。 # karma takes a look at offense and defense: wrongzone from exploitation to repair record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: karma takes a look at offense and defense: wrongzone from exploitation to repair resource_label: primary resource_type: article resource_url: https://mp.weixin.qq.com/s?__biz=mza3ntq3odi0na==&mid=2247485060&idx=1&sn=b3773b0478f7b5ee39fa1a6527b4f3ff parent_primary_url: https://mp.weixin.qq.com/s?__biz=mza3ntq3odi0na==&mid=2247485060&idx=1&sn=b3773b0478f7b5ee39fa1a6527b4f3ff source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"karma takes a look at offense and defense: wrongzone from exploitation to repair\"](https://mp.weixin.qq.com/s?__biz=mza3ntq3odi0na==&mid=2247485060&idx=1&sn=b3773b0478f7b5ee39fa1a6527b4f3ff) [article] [cve-2018-9568, wrongzone] cves: cve-2 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7641472254509e6d",
      "item_id": "e638ffa67f7e1f82",
      "slug": "2019-vulnerabilities-lpe-android-binder-the-bridge-to-root-primary-66feba48",
      "year": 2019,
      "title": "Android Binder: The Bridge To Root",
      "item_title": "Android Binder: The Bridge To Root",
      "authors": [
        "Hongli Han",
        "Mingjian Zhou"
      ],
      "cves": [
        "CVE-2019-2025"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://conference.hitb.org/hitbsecconf2019ams/materials/D2T2%20-%20Binder%20-%20The%20Bridge%20to%20Root%20-%20Hongli%20Han%20&%20Mingjian%20Zhou.pdf",
      "primary_url": "https://conference.hitb.org/hitbsecconf2019ams/materials/D2T2%20-%20Binder%20-%20The%20Bridge%20to%20Root%20-%20Hongli%20Han%20&%20Mingjian%20Zhou.pdf",
      "parent_primary_url": "https://conference.hitb.org/hitbsecconf2019ams/materials/D2T2%20-%20Binder%20-%20The%20Bridge%20to%20Root%20-%20Hongli%20Han%20&%20Mingjian%20Zhou.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-android-binder-the-bridge-to-root-primary-66feba48.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Android Binder: The Bridge To Root record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Android Binder: The Bridge To Root resource_label: primary resource_type: slides resource_url: https://conference.hitb.org/hitbsecconf2019ams/materials/D2T2%20-%20Binder%20-%20The%20Bridge%20to%20Root%20-%20Hongli%20Han%20&%20Mingjian%20Zhou.pdf parent_primary_url: https://conference.hitb.org/hitbsecconf2019ams/materials/D2T2%20-%20Binder%20-%20The%20Bridge%20to%20Root%20-%20Hongli%20Han%20&%20Mingjian%20Zhou.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"Android Binder: The Bridge To Root\" by Hongli Han and Mingjian Zhou](https://conference.hitb.org/hitbsecconf2019ams/materials/D2T2%20-%20Binder%20-%20The%20Bridge%20to%20Root%20-%20Hongli%20Han%20&%20Mingjian%20Zhou.pdf) [slides] [CVE-2019-2025",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://conference.hitb.org/hitbsecconf2019ams/materials/D2T2%20-%20Binder%20-%20The%20Bridge%20to%20Root%20-%20Hongli%20Han%20&%20Mingjian%20Zhou.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://conference.hitb.org/hitbsecconf2019ams/materials/D2T2%20-%20Binder%20-%20The%20Bridge%20to%20Root%20-%20Hongli%20Han%20&%20Mingjian%20Zhou.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "CVE-2019-2025"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "Slides on CVE-2019-2025 detail the Android Binder vulnerability and its implications for root access.",
      "summary_zh": "关于CVE-2019-2025的幻灯片详细介绍了Android Binder漏洞及其对root访问的影响。",
      "source_markdown": "[2019: \"Android Binder: The Bridge To Root\" by Hongli Han and Mingjian Zhou](https://conference.hitb.org/hitbsecconf2019ams/materials/D2T2%20-%20Binder%20-%20The%20Bridge%20to%20Root%20-%20Hongli%20Han%20&%20Mingjian%20Zhou.pdf) [slides] [CVE-2019-2025]",
      "search_text": "android binder: the bridge to root android binder: the bridge to root hongli han mingjian zhou cve-2019-2025  vulnerabilities lpe lpe primary slides https://conference.hitb.org/hitbsecconf2019ams/materials/d2t2%20-%20binder%20-%20the%20bridge%20to%20root%20-%20hongli%20han%20&%20mingjian%20zhou.pdf lpe android cve-2019-2025  vulnerability analysis slides on cve-2019-2025 detail the android binder vulnerability and its implications for root access. 关于cve-2019-2025的幻灯片详细介绍了android binder漏洞及其对root访问的影响。 # android binder: the bridge to root record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: android binder: the bridge to root resource_label: primary resource_type: slides resource_url: https://conference.hitb.org/hitbsecconf2019ams/materials/d2t2%20-%20binder%20-%20the%20bridge%20to%20root%20-%20hongli%20han%20&%20mingjian%20zhou.pdf parent_primary_url: https://conference.hitb.org/hitbsecconf2019ams/materials/d2t2%20-%20binder%20-%20the%20bridge%20to%20root%20-%20hongli%20han%20&%20mingjian%20zhou.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"android binder: the bridge to root\" by hongli han and mingjian zhou](https://conference.hitb.org/hitbsecconf2019ams/materials/d2t2%20-%20binder%20-%20the%20bridge%20to%20root%20-%20hongli%20han%20&%20mingjian%20zhou.pdf) [slides] [cve-2019-2025 yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "711a17a3f8f61781",
      "item_id": "aae97e32b57ff911",
      "slug": "2019-vulnerabilities-lpe-the-waterdrop-in-android-a-binder-kernel-vulnerability-primary-cf6abdbd",
      "year": 2019,
      "title": "The ‘Waterdrop’ in Android: A Binder Kernel Vulnerability",
      "item_title": "The ‘Waterdrop’ in Android: A Binder Kernel Vulnerability",
      "authors": [
        "Hongli Han"
      ],
      "cves": [
        "CVE-2019-2025"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://blogs.360.cn/post/Binder_Kernel_Vul_EN.html",
      "primary_url": "http://blogs.360.cn/post/Binder_Kernel_Vul_EN.html",
      "parent_primary_url": "http://blogs.360.cn/post/Binder_Kernel_Vul_EN.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-the-waterdrop-in-android-a-binder-kernel-vulnerability-primary-cf6abdbd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The ‘Waterdrop’ in Android: A Binder Kernel Vulnerability record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The ‘Waterdrop’ in Android: A Binder Kernel Vulnerability resource_label: primary resource_type: article resource_url: http://blogs.360.cn/post/Binder_Kernel_Vul_EN.html parent_primary_url: http://blogs.360.cn/post/Binder_Kernel_Vul_EN.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"The ‘Waterdrop’ in Android: A Binder Kernel Vulnerability\" by Hongli Han](http://blogs.360.cn/post/Binder_Kernel_Vul_EN.html) [article] [CVE-2019-2025] cves: CVE-2019-2025 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: fal",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://blogs.360.cn/post/Binder_Kernel_Vul_EN.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://blogs.360.cn/post/Binder_Kernel_Vul_EN.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "CVE-2019-2025"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "The 'Waterdrop' vulnerability in Android's Binder highlights significant security risks.",
      "summary_zh": "Android Binder中的“水滴”漏洞突显了重大安全风险。",
      "source_markdown": "[2019: \"The ‘Waterdrop’ in Android: A Binder Kernel Vulnerability\" by Hongli Han](http://blogs.360.cn/post/Binder_Kernel_Vul_EN.html) [article] [CVE-2019-2025]",
      "search_text": "the ‘waterdrop’ in android: a binder kernel vulnerability the ‘waterdrop’ in android: a binder kernel vulnerability hongli han cve-2019-2025  vulnerabilities lpe lpe primary article http://blogs.360.cn/post/binder_kernel_vul_en.html lpe android cve-2019-2025  vulnerability analysis the 'waterdrop' vulnerability in android's binder highlights significant security risks. android binder中的“水滴”漏洞突显了重大安全风险。 # the ‘waterdrop’ in android: a binder kernel vulnerability record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the ‘waterdrop’ in android: a binder kernel vulnerability resource_label: primary resource_type: article resource_url: http://blogs.360.cn/post/binder_kernel_vul_en.html parent_primary_url: http://blogs.360.cn/post/binder_kernel_vul_en.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"the ‘waterdrop’ in android: a binder kernel vulnerability\" by hongli han](http://blogs.360.cn/post/binder_kernel_vul_en.html) [article] [cve-2019-2025] cves: cve-2019-2025 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: fal yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "1c83a5ef3405c9b0",
      "item_id": "dfa492f22c45e2c4",
      "slug": "2019-vulnerabilities-lpe-an-exercise-in-practical-container-escapology-primary-595093f8",
      "year": 2019,
      "title": "An Exercise in Practical Container Escapology",
      "item_title": "An Exercise in Practical Container Escapology",
      "authors": [
        "Nick Freeman"
      ],
      "cves": [
        "CVE-2017-1000112"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://capsule8.com/blog/practical-container-escape-exercise/",
      "primary_url": "https://capsule8.com/blog/practical-container-escape-exercise/",
      "parent_primary_url": "https://capsule8.com/blog/practical-container-escape-exercise/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-an-exercise-in-practical-container-escapology-primary-595093f8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An Exercise in Practical Container Escapology record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: An Exercise in Practical Container Escapology resource_label: primary resource_type: article resource_url: https://capsule8.com/blog/practical-container-escape-exercise/ parent_primary_url: https://capsule8.com/blog/practical-container-escape-exercise/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"An Exercise in Practical Container Escapology\" by Nick Freeman](https://capsule8.com/blog/practical-container-escape-exercise/) [article] [CVE-2017-1000112] cves: CVE-2017-1000112 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Produ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://capsule8.com/blog/practical-container-escape-exercise/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://capsule8.com/blog/practical-container-escape-exercise/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "container",
        "LPE",
        "CVE-2017-1000112"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "An exercise in container escapology discusses a vulnerability in the Linux kernel related to container security.",
      "summary_zh": "关于容器逃逸的练习讨论了与Linux内核相关的容器安全漏洞。",
      "source_markdown": "[2019: \"An Exercise in Practical Container Escapology\" by Nick Freeman](https://capsule8.com/blog/practical-container-escape-exercise/) [article] [CVE-2017-1000112]",
      "search_text": "an exercise in practical container escapology an exercise in practical container escapology nick freeman cve-2017-1000112  vulnerabilities lpe lpe primary article https://capsule8.com/blog/practical-container-escape-exercise/ container lpe cve-2017-1000112  vulnerability analysis an exercise in container escapology discusses a vulnerability in the linux kernel related to container security. 关于容器逃逸的练习讨论了与linux内核相关的容器安全漏洞。 # an exercise in practical container escapology record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: an exercise in practical container escapology resource_label: primary resource_type: article resource_url: https://capsule8.com/blog/practical-container-escape-exercise/ parent_primary_url: https://capsule8.com/blog/practical-container-escape-exercise/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"an exercise in practical container escapology\" by nick freeman](https://capsule8.com/blog/practical-container-escape-exercise/) [article] [cve-2017-1000112] cves: cve-2017-1000112 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: produ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "014b36e874c3390d",
      "item_id": "8b1ac566678d7563",
      "slug": "2019-vulnerabilities-lpe-taking-a-page-from-the-kernel-s-book-a-tlb-issue-in-mremap-primary-ab672d2a",
      "year": 2019,
      "title": "Taking a page from the kernel's book: A TLB issue in mremap()",
      "item_title": "Taking a page from the kernel's book: A TLB issue in mremap()",
      "authors": [
        "Jann Horn"
      ],
      "cves": [
        "CVE-2018-18281"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2019/01/taking-page-from-kernels-book-tlb-issue.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2019/01/taking-page-from-kernels-book-tlb-issue.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2019/01/taking-page-from-kernels-book-tlb-issue.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-taking-a-page-from-the-kernel-s-book-a-tlb-issue-in-mremap-primary-ab672d2a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Taking a page from the kernel's book: A TLB issue in mremap() record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Taking a page from the kernel's book: A TLB issue in mremap() resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2019/01/taking-page-from-kernels-book-tlb-issue.html parent_primary_url: https://googleprojectzero.blogspot.com/2019/01/taking-page-from-kernels-book-tlb-issue.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"Taking a page from the kernel's book: A TLB issue in mremap()\" by Jann Horn](https://googleprojectzero.blogspot.com/2019/01/taking-page-from-kernels-book-tlb-issue.html) [article] [CVE-2018-18281] cves: CVE-2018-18281 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2019/01/taking-page-from-kernels-book-tlb-issue.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2019/01/taking-page-from-kernels-book-tlb-issue.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "TLB",
        "LPE",
        "CVE-2018-18281"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "A TLB issue in mremap() is analyzed for its potential vulnerabilities in the Linux kernel.",
      "summary_zh": "对mremap()中的TLB问题进行了分析，以了解其在Linux内核中的潜在漏洞。",
      "source_markdown": "[2019: \"Taking a page from the kernel's book: A TLB issue in mremap()\" by Jann Horn](https://googleprojectzero.blogspot.com/2019/01/taking-page-from-kernels-book-tlb-issue.html) [article] [CVE-2018-18281]",
      "search_text": "taking a page from the kernel's book: a tlb issue in mremap() taking a page from the kernel's book: a tlb issue in mremap() jann horn cve-2018-18281  vulnerabilities lpe lpe primary article https://googleprojectzero.blogspot.com/2019/01/taking-page-from-kernels-book-tlb-issue.html tlb lpe cve-2018-18281  vulnerability analysis a tlb issue in mremap() is analyzed for its potential vulnerabilities in the linux kernel. 对mremap()中的tlb问题进行了分析，以了解其在linux内核中的潜在漏洞。 # taking a page from the kernel's book: a tlb issue in mremap() record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: taking a page from the kernel's book: a tlb issue in mremap() resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2019/01/taking-page-from-kernels-book-tlb-issue.html parent_primary_url: https://googleprojectzero.blogspot.com/2019/01/taking-page-from-kernels-book-tlb-issue.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"taking a page from the kernel's book: a tlb issue in mremap()\" by jann horn](https://googleprojectzero.blogspot.com/2019/01/taking-page-from-kernels-book-tlb-issue.html) [article] [cve-2018-18281] cves: cve-2018-18281 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3aa646e7fadf4edb",
      "item_id": "af07087d1980c3f9",
      "slug": "2019-vulnerabilities-lpe-cve-2018-18281-analysis-of-tlb-vulnerabilities-in-linux-kernel-primary-eae50e69",
      "year": 2019,
      "title": "CVE-2018-18281 - Analysis of TLB Vulnerabilities in Linux Kernel",
      "item_title": "CVE-2018-18281 - Analysis of TLB Vulnerabilities in Linux Kernel",
      "authors": [],
      "cves": [
        "CVE-2018-18281"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://xz.aliyun.com/t/4005",
      "primary_url": "https://xz.aliyun.com/t/4005",
      "parent_primary_url": "https://xz.aliyun.com/t/4005",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-cve-2018-18281-analysis-of-tlb-vulnerabilities-in-linux-kernel-primary-eae50e69.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2018-18281 - Analysis of TLB Vulnerabilities in Linux Kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2018-18281 - Analysis of TLB Vulnerabilities in Linux Kernel resource_label: primary resource_type: article resource_url: https://xz.aliyun.com/t/4005 parent_primary_url: https://xz.aliyun.com/t/4005 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"CVE-2018-18281 - Analysis of TLB Vulnerabilities in Linux Kernel\"](https://xz.aliyun.com/t/4005) [article] cves: CVE-2018-18281 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_po",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://xz.aliyun.com/t/4005"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://xz.aliyun.com/t/4005"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "TLB",
        "LPE",
        "CVE-2018-18281"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "Analysis of CVE-2018-18281 focuses on TLB vulnerabilities in the Linux kernel.",
      "summary_zh": "对CVE-2018-18281的分析集中在Linux内核中的TLB漏洞。",
      "source_markdown": "[2019: \"CVE-2018-18281 - Analysis of TLB Vulnerabilities in Linux Kernel\"](https://xz.aliyun.com/t/4005) [article]",
      "search_text": "cve-2018-18281 - analysis of tlb vulnerabilities in linux kernel cve-2018-18281 - analysis of tlb vulnerabilities in linux kernel  cve-2018-18281  vulnerabilities lpe lpe primary article https://xz.aliyun.com/t/4005 tlb lpe cve-2018-18281  vulnerability analysis analysis of cve-2018-18281 focuses on tlb vulnerabilities in the linux kernel. 对cve-2018-18281的分析集中在linux内核中的tlb漏洞。 # cve-2018-18281 - analysis of tlb vulnerabilities in linux kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2018-18281 - analysis of tlb vulnerabilities in linux kernel resource_label: primary resource_type: article resource_url: https://xz.aliyun.com/t/4005 parent_primary_url: https://xz.aliyun.com/t/4005 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"cve-2018-18281 - analysis of tlb vulnerabilities in linux kernel\"](https://xz.aliyun.com/t/4005) [article] cves: cve-2018-18281 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_po unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "53e560b72eb23977",
      "item_id": "cdc5b0dbf2812b8e",
      "slug": "2019-vulnerabilities-lpe-analysis-of-linux-xfrm-module-cross-border-read-write-escalation-vulnerability-cve-20",
      "year": 2019,
      "title": "Analysis of Linux xfrm Module Cross-Border Read-Write Escalation Vulnerability (CVE-2017-7184)",
      "item_title": "Analysis of Linux xfrm Module Cross-Border Read-Write Escalation Vulnerability (CVE-2017-7184)",
      "authors": [],
      "cves": [
        "CVE-2017-7184"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://p4nda.top/2019/02/16/CVE-2017-7184/",
      "primary_url": "http://p4nda.top/2019/02/16/CVE-2017-7184/",
      "parent_primary_url": "http://p4nda.top/2019/02/16/CVE-2017-7184/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-analysis-of-linux-xfrm-module-cross-border-read-write-escalation-vulnerability-cve-20.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Analysis of Linux xfrm Module Cross-Border Read-Write Escalation Vulnerability (CVE-2017-7184) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Analysis of Linux xfrm Module Cross-Border Read-Write Escalation Vulnerability (CVE-2017-7184) resource_label: primary resource_type: article resource_url: http://p4nda.top/2019/02/16/CVE-2017-7184/ parent_primary_url: http://p4nda.top/2019/02/16/CVE-2017-7184/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"Analysis of Linux xfrm Module Cross-Border Read-Write Escalation Vulnerability (CVE-2017-7184)\"](http://p4nda.top/2019/02/16/CVE-2017-7184/) [article] [CVE-2017-7184] cves: CVE-2017-7184 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendo",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://p4nda.top/2019/02/16/CVE-2017-7184/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://p4nda.top/2019/02/16/CVE-2017-7184/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2017-7184"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "The analysis of CVE-2017-7184 reveals a cross-border read-write escalation vulnerability in the Linux xfrm module.",
      "summary_zh": "对CVE-2017-7184的分析揭示了Linux xfrm模块中的跨边界读写提升漏洞。",
      "source_markdown": "[2019: \"Analysis of Linux xfrm Module Cross-Border Read-Write Escalation Vulnerability (CVE-2017-7184)\"](http://p4nda.top/2019/02/16/CVE-2017-7184/) [article] [CVE-2017-7184]",
      "search_text": "analysis of linux xfrm module cross-border read-write escalation vulnerability (cve-2017-7184) analysis of linux xfrm module cross-border read-write escalation vulnerability (cve-2017-7184)  cve-2017-7184  vulnerabilities lpe lpe primary article http://p4nda.top/2019/02/16/cve-2017-7184/ lpe cve-2017-7184  vulnerability analysis the analysis of cve-2017-7184 reveals a cross-border read-write escalation vulnerability in the linux xfrm module. 对cve-2017-7184的分析揭示了linux xfrm模块中的跨边界读写提升漏洞。 # analysis of linux xfrm module cross-border read-write escalation vulnerability (cve-2017-7184) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: analysis of linux xfrm module cross-border read-write escalation vulnerability (cve-2017-7184) resource_label: primary resource_type: article resource_url: http://p4nda.top/2019/02/16/cve-2017-7184/ parent_primary_url: http://p4nda.top/2019/02/16/cve-2017-7184/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"analysis of linux xfrm module cross-border read-write escalation vulnerability (cve-2017-7184)\"](http://p4nda.top/2019/02/16/cve-2017-7184/) [article] [cve-2017-7184] cves: cve-2017-7184 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendo unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "fdd287f2858da307",
      "item_id": "6e0c8b20e9883658",
      "slug": "2019-vulnerabilities-lpe-analysis-of-escalation-vulnerability-caused-primary-c82fcfd1",
      "year": 2019,
      "title": "Analysis of Escalation Vulnerability Caused",
      "item_title": "Analysis of Escalation Vulnerability Caused",
      "authors": [
        "Integer Extension of Linux ebpf Module (CVE-2017-16995)"
      ],
      "cves": [
        "CVE-2017-16995"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://p4nda.top/2019/01/18/CVE-2017-16995/",
      "primary_url": "http://p4nda.top/2019/01/18/CVE-2017-16995/",
      "parent_primary_url": "http://p4nda.top/2019/01/18/CVE-2017-16995/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-analysis-of-escalation-vulnerability-caused-primary-c82fcfd1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Analysis of Escalation Vulnerability Caused record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Analysis of Escalation Vulnerability Caused resource_label: primary resource_type: article resource_url: http://p4nda.top/2019/01/18/CVE-2017-16995/ parent_primary_url: http://p4nda.top/2019/01/18/CVE-2017-16995/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"Analysis of Escalation Vulnerability Caused by Integer Extension of Linux ebpf Module (CVE-2017-16995)\"](http://p4nda.top/2019/01/18/CVE-2017-16995/) [article] [CVE-2017-16995] cves: CVE-2017-16995 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Ap",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://p4nda.top/2019/01/18/CVE-2017-16995/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://p4nda.top/2019/01/18/CVE-2017-16995/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2017-16995"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "This article analyzes an escalation vulnerability in the Linux ebpf module.",
      "summary_zh": "本文分析了Linux ebpf模块中的提升权限漏洞。",
      "source_markdown": "[2019: \"Analysis of Escalation Vulnerability Caused by Integer Extension of Linux ebpf Module (CVE-2017-16995)\"](http://p4nda.top/2019/01/18/CVE-2017-16995/) [article] [CVE-2017-16995]",
      "search_text": "analysis of escalation vulnerability caused analysis of escalation vulnerability caused integer extension of linux ebpf module (cve-2017-16995) cve-2017-16995  vulnerabilities lpe lpe primary article http://p4nda.top/2019/01/18/cve-2017-16995/ lpe cve-2017-16995  vulnerability analysis this article analyzes an escalation vulnerability in the linux ebpf module. 本文分析了linux ebpf模块中的提升权限漏洞。 # analysis of escalation vulnerability caused record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: analysis of escalation vulnerability caused resource_label: primary resource_type: article resource_url: http://p4nda.top/2019/01/18/cve-2017-16995/ parent_primary_url: http://p4nda.top/2019/01/18/cve-2017-16995/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"analysis of escalation vulnerability caused by integer extension of linux ebpf module (cve-2017-16995)\"](http://p4nda.top/2019/01/18/cve-2017-16995/) [article] [cve-2017-16995] cves: cve-2017-16995 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use ap unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7add6c6cd995944c",
      "item_id": "964a2768fefa811b",
      "slug": "2019-vulnerabilities-lpe-linux-kernel-4-20-bpf-integer-overflow-vulnerability-analysis-primary-e7056240",
      "year": 2019,
      "title": "Linux kernel 4.20 BPF integer overflow vulnerability analysis",
      "item_title": "Linux kernel 4.20 BPF integer overflow vulnerability analysis",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://p4nda.top/2019/01/02/kernel-bpf-overflow/",
      "primary_url": "http://p4nda.top/2019/01/02/kernel-bpf-overflow/",
      "parent_primary_url": "http://p4nda.top/2019/01/02/kernel-bpf-overflow/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-linux-kernel-4-20-bpf-integer-overflow-vulnerability-analysis-primary-e7056240.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux kernel 4.20 BPF integer overflow vulnerability analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux kernel 4.20 BPF integer overflow vulnerability analysis resource_label: primary resource_type: article resource_url: http://p4nda.top/2019/01/02/kernel-bpf-overflow/ parent_primary_url: http://p4nda.top/2019/01/02/kernel-bpf-overflow/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"Linux kernel 4.20 BPF integer overflow vulnerability analysis\"](http://p4nda.top/2019/01/02/kernel-bpf-overflow/) [article] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://p4nda.top/2019/01/02/kernel-bpf-overflow/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://p4nda.top/2019/01/02/kernel-bpf-overflow/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "An analysis of the integer overflow vulnerability in Linux kernel 4.20 BPF.",
      "summary_zh": "对Linux内核4.20 BPF中的整数溢出漏洞进行了分析。",
      "source_markdown": "[2019: \"Linux kernel 4.20 BPF integer overflow vulnerability analysis\"](http://p4nda.top/2019/01/02/kernel-bpf-overflow/) [article]",
      "search_text": "linux kernel 4.20 bpf integer overflow vulnerability analysis linux kernel 4.20 bpf integer overflow vulnerability analysis    vulnerabilities lpe lpe primary article http://p4nda.top/2019/01/02/kernel-bpf-overflow/ lpe  vulnerability analysis an analysis of the integer overflow vulnerability in linux kernel 4.20 bpf. 对linux内核4.20 bpf中的整数溢出漏洞进行了分析。 # linux kernel 4.20 bpf integer overflow vulnerability analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel 4.20 bpf integer overflow vulnerability analysis resource_label: primary resource_type: article resource_url: http://p4nda.top/2019/01/02/kernel-bpf-overflow/ parent_primary_url: http://p4nda.top/2019/01/02/kernel-bpf-overflow/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"linux kernel 4.20 bpf integer overflow vulnerability analysis\"](http://p4nda.top/2019/01/02/kernel-bpf-overflow/) [article] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4a598e19cef882ac",
      "item_id": "e181bf8771ee81d7",
      "slug": "2019-vulnerabilities-lpe-attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks-primary-598597b3",
      "year": 2019,
      "title": "Attacking DRM subsystem to gain kernel privilege on Chromebooks",
      "item_title": "Attacking DRM subsystem to gain kernel privilege on Chromebooks",
      "authors": [
        "Di Shen"
      ],
      "cves": [
        "CVE-2019-16508"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks",
      "primary_url": "https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks",
      "parent_primary_url": "https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks-primary-598597b3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Attacking DRM subsystem to gain kernel privilege on Chromebooks record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Attacking DRM subsystem to gain kernel privilege on Chromebooks resource_label: primary resource_type: slides resource_url: https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks parent_primary_url: https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"Attacking DRM subsystem to gain kernel privilege on Chromebooks\" by Di Shen](https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks) [slides] [[video](https://www.youtube.com/watch?v=lBgtZvIxEwA)] [CVE-2019-16508] cves: CVE-2019-16508 android_impact_status: ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=lBgtZvIxEwA"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=lBgtZvIxEwA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2019-16508"
      ],
      "affected_area": "DRM subsystem",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "This presentation discusses exploiting the DRM subsystem for kernel privilege escalation on Chromebooks.",
      "summary_zh": "本演示讨论了如何利用DRM子系统在Chromebook上提升内核权限。",
      "source_markdown": "[2019: \"Attacking DRM subsystem to gain kernel privilege on Chromebooks\" by Di Shen](https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks) [slides] [[video](https://www.youtube.com/watch?v=lBgtZvIxEwA)] [CVE-2019-16508]",
      "search_text": "attacking drm subsystem to gain kernel privilege on chromebooks attacking drm subsystem to gain kernel privilege on chromebooks di shen cve-2019-16508  vulnerabilities lpe lpe primary slides https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks lpe cve-2019-16508 drm subsystem vulnerability analysis this presentation discusses exploiting the drm subsystem for kernel privilege escalation on chromebooks. 本演示讨论了如何利用drm子系统在chromebook上提升内核权限。 # attacking drm subsystem to gain kernel privilege on chromebooks record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: attacking drm subsystem to gain kernel privilege on chromebooks resource_label: primary resource_type: slides resource_url: https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks parent_primary_url: https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"attacking drm subsystem to gain kernel privilege on chromebooks\" by di shen](https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks) [slides] [[video](https://www.youtube.com/watch?v=lbgtzvixewa)] [cve-2019-16508] cves: cve-2019-16508 android_impact_status:  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "44ff5321a9877a98",
      "item_id": "e181bf8771ee81d7",
      "slug": "2019-vulnerabilities-lpe-attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks-video-26fe84f8",
      "year": 2019,
      "title": "Attacking DRM subsystem to gain kernel privilege on Chromebooks · video",
      "item_title": "Attacking DRM subsystem to gain kernel privilege on Chromebooks",
      "authors": [
        "Di Shen"
      ],
      "cves": [
        "CVE-2019-16508"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=lBgtZvIxEwA",
      "primary_url": "https://www.youtube.com/watch?v=lBgtZvIxEwA",
      "parent_primary_url": "https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2019-vulnerabilities-lpe-attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks-video-26fe84f8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Attacking DRM subsystem to gain kernel privilege on Chromebooks · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Attacking DRM subsystem to gain kernel privilege on Chromebooks resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=lBgtZvIxEwA parent_primary_url: https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"Attacking DRM subsystem to gain kernel privilege on Chromebooks\" by Di Shen](https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks) [slides] [[video](https://www.youtube.com/watch?v=lBgtZvIxEwA)] [CVE-2019-16508] cves: CVE-2019-16508 android_impact_status: unknown android_impact_reason: Linux kernel vu",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=lBgtZvIxEwA"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=lBgtZvIxEwA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2019-16508"
      ],
      "affected_area": "DRM subsystem",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "A video presentation on exploiting the DRM subsystem for kernel privilege escalation on Chromebooks.",
      "summary_zh": "关于如何利用DRM子系统在Chromebook上提升内核权限的视频演示。",
      "source_markdown": "[2019: \"Attacking DRM subsystem to gain kernel privilege on Chromebooks\" by Di Shen](https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks) [slides] [[video](https://www.youtube.com/watch?v=lBgtZvIxEwA)] [CVE-2019-16508]",
      "search_text": "attacking drm subsystem to gain kernel privilege on chromebooks · video attacking drm subsystem to gain kernel privilege on chromebooks di shen cve-2019-16508  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=lbgtzvixewa lpe cve-2019-16508 drm subsystem vulnerability analysis a video presentation on exploiting the drm subsystem for kernel privilege escalation on chromebooks. 关于如何利用drm子系统在chromebook上提升内核权限的视频演示。 # attacking drm subsystem to gain kernel privilege on chromebooks · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: attacking drm subsystem to gain kernel privilege on chromebooks resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=lbgtzvixewa parent_primary_url: https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2019: \"attacking drm subsystem to gain kernel privilege on chromebooks\" by di shen](https://speakerdeck.com/retme7/attacking-drm-subsystem-to-gain-kernel-privilege-on-chromebooks) [slides] [[video](https://www.youtube.com/watch?v=lbgtzvixewa)] [cve-2019-16508] cves: cve-2019-16508 android_impact_status: unknown android_impact_reason: linux kernel vu unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bbfa5c743b651fb9",
      "item_id": "74ce33e43946c40c",
      "slug": "2018-vulnerabilities-lpe-linux-kernel-4-20-bpf-integer-overflow-heap-overflow-vulnerability-and-its-exploitati",
      "year": 2018,
      "title": "Linux kernel 4.20 BPF integer overflow-heap overflow vulnerability and its exploitation",
      "item_title": "Linux kernel 4.20 BPF integer overflow-heap overflow vulnerability and its exploitation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.anquanke.com/post/id/166819",
      "primary_url": "https://www.anquanke.com/post/id/166819",
      "parent_primary_url": "https://www.anquanke.com/post/id/166819",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2018-vulnerabilities-lpe-linux-kernel-4-20-bpf-integer-overflow-heap-overflow-vulnerability-and-its-exploitati.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux kernel 4.20 BPF integer overflow-heap overflow vulnerability and its exploitation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux kernel 4.20 BPF integer overflow-heap overflow vulnerability and its exploitation resource_label: primary resource_type: article resource_url: https://www.anquanke.com/post/id/166819 parent_primary_url: https://www.anquanke.com/post/id/166819 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2018: \"Linux kernel 4.20 BPF integer overflow-heap overflow vulnerability and its exploitation\"](https://www.anquanke.com/post/id/166819) [article] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_rea",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.anquanke.com/post/id/166819"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.anquanke.com/post/id/166819"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "This article discusses the exploitation of a BPF integer overflow leading to heap overflow in Linux kernel 4.20.",
      "summary_zh": "本文讨论了Linux内核4.20中BPF整数溢出导致堆溢出的利用。",
      "source_markdown": "[2018: \"Linux kernel 4.20 BPF integer overflow-heap overflow vulnerability and its exploitation\"](https://www.anquanke.com/post/id/166819) [article]",
      "search_text": "linux kernel 4.20 bpf integer overflow-heap overflow vulnerability and its exploitation linux kernel 4.20 bpf integer overflow-heap overflow vulnerability and its exploitation    vulnerabilities lpe lpe primary article https://www.anquanke.com/post/id/166819 lpe  vulnerability analysis this article discusses the exploitation of a bpf integer overflow leading to heap overflow in linux kernel 4.20. 本文讨论了linux内核4.20中bpf整数溢出导致堆溢出的利用。 # linux kernel 4.20 bpf integer overflow-heap overflow vulnerability and its exploitation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel 4.20 bpf integer overflow-heap overflow vulnerability and its exploitation resource_label: primary resource_type: article resource_url: https://www.anquanke.com/post/id/166819 parent_primary_url: https://www.anquanke.com/post/id/166819 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2018: \"linux kernel 4.20 bpf integer overflow-heap overflow vulnerability and its exploitation\"](https://www.anquanke.com/post/id/166819) [article] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_rea unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "10e71ec5af14e519",
      "item_id": "f62a5dd6464aa447",
      "slug": "2018-vulnerabilities-lpe-cve-2017-11176-a-step-by-step-linux-kernel-exploitation-primary-69804c95",
      "year": 2018,
      "title": "CVE-2017-11176: A step-by-step Linux Kernel exploitation",
      "item_title": "CVE-2017-11176: A step-by-step Linux Kernel exploitation",
      "authors": [],
      "cves": [
        "CVE-2017-11176"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.lexfo.fr/",
      "primary_url": "https://blog.lexfo.fr/",
      "parent_primary_url": "https://blog.lexfo.fr/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2018-vulnerabilities-lpe-cve-2017-11176-a-step-by-step-linux-kernel-exploitation-primary-69804c95.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2017-11176: A step-by-step Linux Kernel exploitation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2017-11176: A step-by-step Linux Kernel exploitation resource_label: primary resource_type: article resource_url: https://blog.lexfo.fr/ parent_primary_url: https://blog.lexfo.fr/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2018: \"CVE-2017-11176: A step-by-step Linux Kernel exploitation](https://blog.lexfo.fr/) [article] [CVE-2017-11176] cves: CVE-2017-11176 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link:",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.lexfo.fr/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.lexfo.fr/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2017-11176"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "An article detailing the exploitation of CVE-2017-11176 in the Linux kernel.",
      "summary_zh": "一篇详细介绍Linux内核中CVE-2017-11176利用的文章。",
      "source_markdown": "[2018: \"CVE-2017-11176: A step-by-step Linux Kernel exploitation](https://blog.lexfo.fr/) [article] [CVE-2017-11176]",
      "search_text": "cve-2017-11176: a step-by-step linux kernel exploitation cve-2017-11176: a step-by-step linux kernel exploitation  cve-2017-11176  vulnerabilities lpe lpe primary article https://blog.lexfo.fr/ lpe cve-2017-11176  vulnerability analysis an article detailing the exploitation of cve-2017-11176 in the linux kernel. 一篇详细介绍linux内核中cve-2017-11176利用的文章。 # cve-2017-11176: a step-by-step linux kernel exploitation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2017-11176: a step-by-step linux kernel exploitation resource_label: primary resource_type: article resource_url: https://blog.lexfo.fr/ parent_primary_url: https://blog.lexfo.fr/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2018: \"cve-2017-11176: a step-by-step linux kernel exploitation](https://blog.lexfo.fr/) [article] [cve-2017-11176] cves: cve-2017-11176 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "8a7bb8be2f4a55c0",
      "item_id": "95b3787d412eaa92",
      "slug": "2018-vulnerabilities-lpe-a-cache-invalidation-bug-in-linux-memory-management-primary-3e88427d",
      "year": 2018,
      "title": "A cache invalidation bug in Linux memory management",
      "item_title": "A cache invalidation bug in Linux memory management",
      "authors": [
        "Jann Horn"
      ],
      "cves": [
        "CVE-2018-17182"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2018/09/a-cache-invalidation-bug-in-linux.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2018/09/a-cache-invalidation-bug-in-linux.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2018/09/a-cache-invalidation-bug-in-linux.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2018-vulnerabilities-lpe-a-cache-invalidation-bug-in-linux-memory-management-primary-3e88427d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A cache invalidation bug in Linux memory management record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: A cache invalidation bug in Linux memory management resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2018/09/a-cache-invalidation-bug-in-linux.html parent_primary_url: https://googleprojectzero.blogspot.com/2018/09/a-cache-invalidation-bug-in-linux.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2018: \"A cache invalidation bug in Linux memory management\" by Jann Horn](https://googleprojectzero.blogspot.com/2018/09/a-cache-invalidation-bug-in-linux.html) [article] [CVE-2018-17182] cves: CVE-2018-17182 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-ve",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2018/09/a-cache-invalidation-bug-in-linux.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2018/09/a-cache-invalidation-bug-in-linux.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2018-17182"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "This article analyzes a cache invalidation bug in Linux memory management leading to privilege escalation.",
      "summary_zh": "本文分析了Linux内存管理中的缓存失效漏洞，导致权限提升。",
      "source_markdown": "[2018: \"A cache invalidation bug in Linux memory management\" by Jann Horn](https://googleprojectzero.blogspot.com/2018/09/a-cache-invalidation-bug-in-linux.html) [article] [CVE-2018-17182]",
      "search_text": "a cache invalidation bug in linux memory management a cache invalidation bug in linux memory management jann horn cve-2018-17182  vulnerabilities lpe lpe primary article https://googleprojectzero.blogspot.com/2018/09/a-cache-invalidation-bug-in-linux.html lpe cve-2018-17182  vulnerability analysis this article analyzes a cache invalidation bug in linux memory management leading to privilege escalation. 本文分析了linux内存管理中的缓存失效漏洞，导致权限提升。 # a cache invalidation bug in linux memory management record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: a cache invalidation bug in linux memory management resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2018/09/a-cache-invalidation-bug-in-linux.html parent_primary_url: https://googleprojectzero.blogspot.com/2018/09/a-cache-invalidation-bug-in-linux.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2018: \"a cache invalidation bug in linux memory management\" by jann horn](https://googleprojectzero.blogspot.com/2018/09/a-cache-invalidation-bug-in-linux.html) [article] [cve-2018-17182] cves: cve-2018-17182 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-ve unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "86d21c6625644997",
      "item_id": "425aef0a4e94f811",
      "slug": "2018-vulnerabilities-lpe-dissecting-a-17-year-old-kernel-bug-primary-a6df53da",
      "year": 2018,
      "title": "Dissecting a 17-year-old kernel bug",
      "item_title": "Dissecting a 17-year-old kernel bug",
      "authors": [
        "Vitaly Nikolenko at beVX"
      ],
      "cves": [
        "CVE-2018-6554",
        "CVE-2018-6555"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://cyseclabs.com/slides/bevx-talk.pdf",
      "primary_url": "https://cyseclabs.com/slides/bevx-talk.pdf",
      "parent_primary_url": "https://cyseclabs.com/slides/bevx-talk.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2018-vulnerabilities-lpe-dissecting-a-17-year-old-kernel-bug-primary-a6df53da.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Dissecting a 17-year-old kernel bug record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Dissecting a 17-year-old kernel bug resource_label: primary resource_type: slides resource_url: https://cyseclabs.com/slides/bevx-talk.pdf parent_primary_url: https://cyseclabs.com/slides/bevx-talk.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2018: \"Dissecting a 17-year-old kernel bug\" by Vitaly Nikolenko at beVX](https://cyseclabs.com/slides/bevx-talk.pdf) [slides] [CVE-2018-6554, CVE-2018-6555] cves: CVE-2018-6554, CVE-2018-6555 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Lin",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://cyseclabs.com/slides/bevx-talk.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://cyseclabs.com/slides/bevx-talk.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2018-6554",
        "CVE-2018-6555"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "Slides dissecting a 17-year-old kernel bug that can lead to privilege escalation.",
      "summary_zh": "关于一个可能导致权限提升的17年历史内核漏洞的幻灯片。",
      "source_markdown": "[2018: \"Dissecting a 17-year-old kernel bug\" by Vitaly Nikolenko at beVX](https://cyseclabs.com/slides/bevx-talk.pdf) [slides] [CVE-2018-6554, CVE-2018-6555]",
      "search_text": "dissecting a 17-year-old kernel bug dissecting a 17-year-old kernel bug vitaly nikolenko at bevx cve-2018-6554 cve-2018-6555  vulnerabilities lpe lpe primary slides https://cyseclabs.com/slides/bevx-talk.pdf lpe cve-2018-6554 cve-2018-6555  vulnerability analysis slides dissecting a 17-year-old kernel bug that can lead to privilege escalation. 关于一个可能导致权限提升的17年历史内核漏洞的幻灯片。 # dissecting a 17-year-old kernel bug record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: dissecting a 17-year-old kernel bug resource_label: primary resource_type: slides resource_url: https://cyseclabs.com/slides/bevx-talk.pdf parent_primary_url: https://cyseclabs.com/slides/bevx-talk.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2018: \"dissecting a 17-year-old kernel bug\" by vitaly nikolenko at bevx](https://cyseclabs.com/slides/bevx-talk.pdf) [slides] [cve-2018-6554, cve-2018-6555] cves: cve-2018-6554, cve-2018-6555 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than lin unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6794db97f4b55db3",
      "item_id": "6337f76a13a55886",
      "slug": "2018-vulnerabilities-lpe-ssd-advisory-irda-linux-driver-uaf-primary-944bdf52",
      "year": 2018,
      "title": "SSD Advisory – IRDA Linux Driver UAF",
      "item_title": "SSD Advisory – IRDA Linux Driver UAF",
      "authors": [],
      "cves": [
        "CVE-2018-6554",
        "CVE-2018-6555"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blogs.securiteam.com/index.php/archives/3759",
      "primary_url": "https://blogs.securiteam.com/index.php/archives/3759",
      "parent_primary_url": "https://blogs.securiteam.com/index.php/archives/3759",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2018-vulnerabilities-lpe-ssd-advisory-irda-linux-driver-uaf-primary-944bdf52.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SSD Advisory – IRDA Linux Driver UAF record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: SSD Advisory – IRDA Linux Driver UAF resource_label: primary resource_type: article resource_url: https://blogs.securiteam.com/index.php/archives/3759 parent_primary_url: https://blogs.securiteam.com/index.php/archives/3759 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2018: \"SSD Advisory – IRDA Linux Driver UAF\"](https://blogs.securiteam.com/index.php/archives/3759) [article] [CVE-2018-6554, CVE-2018-6555] cves: CVE-2018-6554, CVE-2018-6555 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather t",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blogs.securiteam.com/index.php/archives/3759"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blogs.securiteam.com/index.php/archives/3759"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2018-6554",
        "CVE-2018-6555"
      ],
      "affected_area": "IRDA Linux Driver",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "An advisory on a use-after-free vulnerability in the IRDA Linux driver.",
      "summary_zh": "关于IRDA Linux驱动中的使用后释放漏洞的公告。",
      "source_markdown": "[2018: \"SSD Advisory – IRDA Linux Driver UAF\"](https://blogs.securiteam.com/index.php/archives/3759) [article] [CVE-2018-6554, CVE-2018-6555]",
      "search_text": "ssd advisory – irda linux driver uaf ssd advisory – irda linux driver uaf  cve-2018-6554 cve-2018-6555  vulnerabilities lpe lpe primary article https://blogs.securiteam.com/index.php/archives/3759 lpe cve-2018-6554 cve-2018-6555 irda linux driver vulnerability analysis an advisory on a use-after-free vulnerability in the irda linux driver. 关于irda linux驱动中的使用后释放漏洞的公告。 # ssd advisory – irda linux driver uaf record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: ssd advisory – irda linux driver uaf resource_label: primary resource_type: article resource_url: https://blogs.securiteam.com/index.php/archives/3759 parent_primary_url: https://blogs.securiteam.com/index.php/archives/3759 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2018: \"ssd advisory – irda linux driver uaf\"](https://blogs.securiteam.com/index.php/archives/3759) [article] [cve-2018-6554, cve-2018-6555] cves: cve-2018-6554, cve-2018-6555 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather t unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b3ad5bddf1ed5fc8",
      "item_id": "58bf5c2042f12981",
      "slug": "2018-vulnerabilities-lpe-integer-overflow-in-linux-s-create-elf-tables-primary-230f37be",
      "year": 2018,
      "title": "Integer overflow in Linux's create_elf_tables()",
      "item_title": "Integer overflow in Linux's create_elf_tables()",
      "authors": [],
      "cves": [
        "CVE-2018-14634"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "announcement",
      "resource_url": "https://www.openwall.com/lists/oss-security/2018/09/25/4",
      "primary_url": "https://www.openwall.com/lists/oss-security/2018/09/25/4",
      "parent_primary_url": "https://www.openwall.com/lists/oss-security/2018/09/25/4",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2018-vulnerabilities-lpe-integer-overflow-in-linux-s-create-elf-tables-primary-230f37be.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Integer overflow in Linux's create_elf_tables() record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Integer overflow in Linux's create_elf_tables() resource_label: primary resource_type: announcement resource_url: https://www.openwall.com/lists/oss-security/2018/09/25/4 parent_primary_url: https://www.openwall.com/lists/oss-security/2018/09/25/4 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2018: \"Integer overflow in Linux's create_elf_tables()\"](https://www.openwall.com/lists/oss-security/2018/09/25/4) [announcement] [CVE-2018-14634] cves: CVE-2018-14634 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use ",
      "link_types": [
        "announcement"
      ],
      "links": [
        {
          "label": "primary",
          "type": "announcement",
          "url": "https://www.openwall.com/lists/oss-security/2018/09/25/4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "announcement",
            "url": "https://www.openwall.com/lists/oss-security/2018/09/25/4"
          }
        ]
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2018-14634"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "Announcement of an integer overflow vulnerability in Linux's create_elf_tables().",
      "summary_zh": "关于Linux的create_elf_tables()中的整数溢出漏洞的公告。",
      "source_markdown": "[2018: \"Integer overflow in Linux's create_elf_tables()\"](https://www.openwall.com/lists/oss-security/2018/09/25/4) [announcement] [CVE-2018-14634]",
      "search_text": "integer overflow in linux's create_elf_tables() integer overflow in linux's create_elf_tables()  cve-2018-14634  vulnerabilities lpe lpe primary announcement https://www.openwall.com/lists/oss-security/2018/09/25/4 lpe cve-2018-14634  vulnerability analysis announcement of an integer overflow vulnerability in linux's create_elf_tables(). 关于linux的create_elf_tables()中的整数溢出漏洞的公告。 # integer overflow in linux's create_elf_tables() record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: integer overflow in linux's create_elf_tables() resource_label: primary resource_type: announcement resource_url: https://www.openwall.com/lists/oss-security/2018/09/25/4 parent_primary_url: https://www.openwall.com/lists/oss-security/2018/09/25/4 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2018: \"integer overflow in linux's create_elf_tables()\"](https://www.openwall.com/lists/oss-security/2018/09/25/4) [announcement] [cve-2018-14634] cves: cve-2018-14634 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "36e6f18fb63b5c69",
      "item_id": "1e15b34023d7b99e",
      "slug": "2018-vulnerabilities-lpe-mmap-vulnerabilities-linux-kernel-primary-ecbe7ca9",
      "year": 2018,
      "title": "MMap Vulnerabilities – Linux Kernel",
      "item_title": "MMap Vulnerabilities – Linux Kernel",
      "authors": [],
      "cves": [
        "CVE-2018-8781"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://research.checkpoint.com/mmap-vulnerabilities-linux-kernel/",
      "primary_url": "https://research.checkpoint.com/mmap-vulnerabilities-linux-kernel/",
      "parent_primary_url": "https://research.checkpoint.com/mmap-vulnerabilities-linux-kernel/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2018-vulnerabilities-lpe-mmap-vulnerabilities-linux-kernel-primary-ecbe7ca9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# MMap Vulnerabilities – Linux Kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: MMap Vulnerabilities – Linux Kernel resource_label: primary resource_type: article resource_url: https://research.checkpoint.com/mmap-vulnerabilities-linux-kernel/ parent_primary_url: https://research.checkpoint.com/mmap-vulnerabilities-linux-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2018: \"MMap Vulnerabilities – Linux Kernel\"](https://research.checkpoint.com/mmap-vulnerabilities-linux-kernel/) [article] [CVE-2018-8781] cves: CVE-2018-8781 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://research.checkpoint.com/mmap-vulnerabilities-linux-kernel/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://research.checkpoint.com/mmap-vulnerabilities-linux-kernel/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2018-8781"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "This article discusses mmap vulnerabilities in the Linux kernel.",
      "summary_zh": "本文讨论了Linux内核中的mmap漏洞。",
      "source_markdown": "[2018: \"MMap Vulnerabilities – Linux Kernel\"](https://research.checkpoint.com/mmap-vulnerabilities-linux-kernel/) [article] [CVE-2018-8781]",
      "search_text": "mmap vulnerabilities – linux kernel mmap vulnerabilities – linux kernel  cve-2018-8781  vulnerabilities lpe lpe primary article https://research.checkpoint.com/mmap-vulnerabilities-linux-kernel/ lpe cve-2018-8781  vulnerability analysis this article discusses mmap vulnerabilities in the linux kernel. 本文讨论了linux内核中的mmap漏洞。 # mmap vulnerabilities – linux kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: mmap vulnerabilities – linux kernel resource_label: primary resource_type: article resource_url: https://research.checkpoint.com/mmap-vulnerabilities-linux-kernel/ parent_primary_url: https://research.checkpoint.com/mmap-vulnerabilities-linux-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2018: \"mmap vulnerabilities – linux kernel\"](https://research.checkpoint.com/mmap-vulnerabilities-linux-kernel/) [article] [cve-2018-8781] cves: cve-2018-8781 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2b07e4677a09773c",
      "item_id": "e60cbca39176b098",
      "slug": "2018-vulnerabilities-lpe-ubuntu-kernel-ebpf-0day-analysis-primary-ddcebe8e",
      "year": 2018,
      "title": "Ubuntu kernel eBPF 0day analysis",
      "item_title": "Ubuntu kernel eBPF 0day analysis",
      "authors": [],
      "cves": [
        "CVE-2017-16995"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://security.tencent.com/index.php/blog/msg/124",
      "primary_url": "https://security.tencent.com/index.php/blog/msg/124",
      "parent_primary_url": "https://security.tencent.com/index.php/blog/msg/124",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2018-vulnerabilities-lpe-ubuntu-kernel-ebpf-0day-analysis-primary-ddcebe8e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Ubuntu kernel eBPF 0day analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Ubuntu kernel eBPF 0day analysis resource_label: primary resource_type: article resource_url: https://security.tencent.com/index.php/blog/msg/124 parent_primary_url: https://security.tencent.com/index.php/blog/msg/124 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2018: \"Ubuntu kernel eBPF 0day analysis\"](https://security.tencent.com/index.php/blog/msg/124) [article] [CVE-2017-16995] cves: CVE-2017-16995 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false h",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://security.tencent.com/index.php/blog/msg/124"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://security.tencent.com/index.php/blog/msg/124"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2017-16995"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "Analysis of a 0day vulnerability in the Ubuntu kernel related to eBPF.",
      "summary_zh": "对与eBPF相关的Ubuntu内核0day漏洞的分析。",
      "source_markdown": "[2018: \"Ubuntu kernel eBPF 0day analysis\"](https://security.tencent.com/index.php/blog/msg/124) [article] [CVE-2017-16995]",
      "search_text": "ubuntu kernel ebpf 0day analysis ubuntu kernel ebpf 0day analysis  cve-2017-16995  vulnerabilities lpe lpe primary article https://security.tencent.com/index.php/blog/msg/124 lpe cve-2017-16995  vulnerability analysis analysis of a 0day vulnerability in the ubuntu kernel related to ebpf. 对与ebpf相关的ubuntu内核0day漏洞的分析。 # ubuntu kernel ebpf 0day analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: ubuntu kernel ebpf 0day analysis resource_label: primary resource_type: article resource_url: https://security.tencent.com/index.php/blog/msg/124 parent_primary_url: https://security.tencent.com/index.php/blog/msg/124 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2018: \"ubuntu kernel ebpf 0day analysis\"](https://security.tencent.com/index.php/blog/msg/124) [article] [cve-2017-16995] cves: cve-2017-16995 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false h unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3ed4594902e36a7c",
      "item_id": "fb6c04888365d020",
      "slug": "2018-vulnerabilities-lpe-ebpf-and-analysis-of-the-get-rekt-linux-hardened-c-exploit-for-cve-2017-16995-primary",
      "year": 2018,
      "title": "eBPF and Analysis of the get-rekt-linux-hardened.c Exploit for CVE-2017-16995",
      "item_title": "eBPF and Analysis of the get-rekt-linux-hardened.c Exploit for CVE-2017-16995",
      "authors": [],
      "cves": [
        "CVE-2017-16995",
        "CVE-2017-16695"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ricklarabee.blogspot.com/2018/07/ebpf-and-analysis-of-get-rekt-linux.html",
      "primary_url": "https://ricklarabee.blogspot.com/2018/07/ebpf-and-analysis-of-get-rekt-linux.html",
      "parent_primary_url": "https://ricklarabee.blogspot.com/2018/07/ebpf-and-analysis-of-get-rekt-linux.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2018-vulnerabilities-lpe-ebpf-and-analysis-of-the-get-rekt-linux-hardened-c-exploit-for-cve-2017-16995-primary.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# eBPF and Analysis of the get-rekt-linux-hardened.c Exploit for CVE-2017-16995 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: eBPF and Analysis of the get-rekt-linux-hardened.c Exploit for CVE-2017-16995 resource_label: primary resource_type: article resource_url: https://ricklarabee.blogspot.com/2018/07/ebpf-and-analysis-of-get-rekt-linux.html parent_primary_url: https://ricklarabee.blogspot.com/2018/07/ebpf-and-analysis-of-get-rekt-linux.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2018: \"eBPF and Analysis of the get-rekt-linux-hardened.c Exploit for CVE-2017-16995\"](https://ricklarabee.blogspot.com/2018/07/ebpf-and-analysis-of-get-rekt-linux.html) [article] [CVE-2017-16695] cves: CVE-2017-16995, CVE-2017-16695 android_impact_status: unknown android_impact_reason: Linux kernel v",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ricklarabee.blogspot.com/2018/07/ebpf-and-analysis-of-get-rekt-linux.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ricklarabee.blogspot.com/2018/07/ebpf-and-analysis-of-get-rekt-linux.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2017-16995",
        "CVE-2017-16695"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "An article analyzing the exploit for CVE-2017-16995 related to eBPF.",
      "summary_zh": "分析与eBPF相关的CVE-2017-16995漏洞的利用。",
      "source_markdown": "[2018: \"eBPF and Analysis of the get-rekt-linux-hardened.c Exploit for CVE-2017-16995\"](https://ricklarabee.blogspot.com/2018/07/ebpf-and-analysis-of-get-rekt-linux.html) [article] [CVE-2017-16695]",
      "search_text": "ebpf and analysis of the get-rekt-linux-hardened.c exploit for cve-2017-16995 ebpf and analysis of the get-rekt-linux-hardened.c exploit for cve-2017-16995  cve-2017-16995 cve-2017-16695  vulnerabilities lpe lpe primary article https://ricklarabee.blogspot.com/2018/07/ebpf-and-analysis-of-get-rekt-linux.html lpe cve-2017-16995 cve-2017-16695  vulnerability analysis an article analyzing the exploit for cve-2017-16995 related to ebpf. 分析与ebpf相关的cve-2017-16995漏洞的利用。 # ebpf and analysis of the get-rekt-linux-hardened.c exploit for cve-2017-16995 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: ebpf and analysis of the get-rekt-linux-hardened.c exploit for cve-2017-16995 resource_label: primary resource_type: article resource_url: https://ricklarabee.blogspot.com/2018/07/ebpf-and-analysis-of-get-rekt-linux.html parent_primary_url: https://ricklarabee.blogspot.com/2018/07/ebpf-and-analysis-of-get-rekt-linux.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2018: \"ebpf and analysis of the get-rekt-linux-hardened.c exploit for cve-2017-16995\"](https://ricklarabee.blogspot.com/2018/07/ebpf-and-analysis-of-get-rekt-linux.html) [article] [cve-2017-16695] cves: cve-2017-16995, cve-2017-16695 android_impact_status: unknown android_impact_reason: linux kernel v unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "43a048af6213f2bc",
      "item_id": "63ba48ccb939f7cb",
      "slug": "2017-vulnerabilities-lpe-challenge-impossible-multiple-exploit-on-android-primary-b63b25e6",
      "year": 2017,
      "title": "Challenge Impossible -- Multiple Exploit On Android",
      "item_title": "Challenge Impossible -- Multiple Exploit On Android",
      "authors": [
        "Hanxiang Wen",
        "Xiaodong Wang"
      ],
      "cves": [
        "CVE-2017-0437"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://hitcon.org/2017/CMT/slide-files/d1_s4_r2.pdf",
      "primary_url": "https://hitcon.org/2017/CMT/slide-files/d1_s4_r2.pdf",
      "parent_primary_url": "https://hitcon.org/2017/CMT/slide-files/d1_s4_r2.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-challenge-impossible-multiple-exploit-on-android-primary-b63b25e6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Challenge Impossible -- Multiple Exploit On Android record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Challenge Impossible -- Multiple Exploit On Android resource_label: primary resource_type: slides resource_url: https://hitcon.org/2017/CMT/slide-files/d1_s4_r2.pdf parent_primary_url: https://hitcon.org/2017/CMT/slide-files/d1_s4_r2.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"Challenge Impossible -- Multiple Exploit On Android\" by Hanxiang Wen and Xiaodong Wang](https://hitcon.org/2017/CMT/slide-files/d1_s4_r2.pdf) [slides] [CVE-2017-0437] cves: CVE-2017-0437 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_lin",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://hitcon.org/2017/CMT/slide-files/d1_s4_r2.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://hitcon.org/2017/CMT/slide-files/d1_s4_r2.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2017-0437"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "Slides on exploiting multiple vulnerabilities on Android, including CVE-2017-0437.",
      "summary_zh": "关于在Android上利用多个漏洞（包括CVE-2017-0437）的幻灯片。",
      "source_markdown": "[2017: \"Challenge Impossible -- Multiple Exploit On Android\" by Hanxiang Wen and Xiaodong Wang](https://hitcon.org/2017/CMT/slide-files/d1_s4_r2.pdf) [slides] [CVE-2017-0437]",
      "search_text": "challenge impossible -- multiple exploit on android challenge impossible -- multiple exploit on android hanxiang wen xiaodong wang cve-2017-0437  vulnerabilities lpe lpe primary slides https://hitcon.org/2017/cmt/slide-files/d1_s4_r2.pdf lpe cve-2017-0437  vulnerability analysis slides on exploiting multiple vulnerabilities on android, including cve-2017-0437. 关于在android上利用多个漏洞（包括cve-2017-0437）的幻灯片。 # challenge impossible -- multiple exploit on android record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: challenge impossible -- multiple exploit on android resource_label: primary resource_type: slides resource_url: https://hitcon.org/2017/cmt/slide-files/d1_s4_r2.pdf parent_primary_url: https://hitcon.org/2017/cmt/slide-files/d1_s4_r2.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"challenge impossible -- multiple exploit on android\" by hanxiang wen and xiaodong wang](https://hitcon.org/2017/cmt/slide-files/d1_s4_r2.pdf) [slides] [cve-2017-0437] cves: cve-2017-0437 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_lin yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "ccd3d1007486b6d9",
      "item_id": "6dc8288667bdc1b8",
      "slug": "2017-vulnerabilities-lpe-cve-2017-1000112-exploiting-an-out-of-bounds-bug-in-the-linux-kernel-ufo-packets-prim",
      "year": 2017,
      "title": "CVE-2017-1000112: Exploiting an out-of-bounds bug in the Linux kernel UFO packets",
      "item_title": "CVE-2017-1000112: Exploiting an out-of-bounds bug in the Linux kernel UFO packets",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [
        "CVE-2017-1000112"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://xairy.io/articles/cve-2017-1000112",
      "primary_url": "https://xairy.io/articles/cve-2017-1000112",
      "parent_primary_url": "https://xairy.io/articles/cve-2017-1000112",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-cve-2017-1000112-exploiting-an-out-of-bounds-bug-in-the-linux-kernel-ufo-packets-prim.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2017-1000112: Exploiting an out-of-bounds bug in the Linux kernel UFO packets record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2017-1000112: Exploiting an out-of-bounds bug in the Linux kernel UFO packets resource_label: primary resource_type: article resource_url: https://xairy.io/articles/cve-2017-1000112 parent_primary_url: https://xairy.io/articles/cve-2017-1000112 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"CVE-2017-1000112: Exploiting an out-of-bounds bug in the Linux kernel UFO packets\" by Andrey Konovalov](https://xairy.io/articles/cve-2017-1000112) [article] [CVE-2017-1000112] cves: CVE-2017-1000112 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport re",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://xairy.io/articles/cve-2017-1000112"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://xairy.io/articles/cve-2017-1000112"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2017-1000112"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "An article detailing the exploitation of an out-of-bounds bug in Linux kernel UFO packets.",
      "summary_zh": "一篇详细介绍Linux内核UFO数据包中越界漏洞利用的文章。",
      "source_markdown": "[2017: \"CVE-2017-1000112: Exploiting an out-of-bounds bug in the Linux kernel UFO packets\" by Andrey Konovalov](https://xairy.io/articles/cve-2017-1000112) [article] [CVE-2017-1000112]",
      "search_text": "cve-2017-1000112: exploiting an out-of-bounds bug in the linux kernel ufo packets cve-2017-1000112: exploiting an out-of-bounds bug in the linux kernel ufo packets andrey konovalov cve-2017-1000112  vulnerabilities lpe lpe primary article https://xairy.io/articles/cve-2017-1000112 lpe cve-2017-1000112  vulnerability analysis an article detailing the exploitation of an out-of-bounds bug in linux kernel ufo packets. 一篇详细介绍linux内核ufo数据包中越界漏洞利用的文章。 # cve-2017-1000112: exploiting an out-of-bounds bug in the linux kernel ufo packets record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2017-1000112: exploiting an out-of-bounds bug in the linux kernel ufo packets resource_label: primary resource_type: article resource_url: https://xairy.io/articles/cve-2017-1000112 parent_primary_url: https://xairy.io/articles/cve-2017-1000112 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"cve-2017-1000112: exploiting an out-of-bounds bug in the linux kernel ufo packets\" by andrey konovalov](https://xairy.io/articles/cve-2017-1000112) [article] [cve-2017-1000112] cves: cve-2017-1000112 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport re unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9e2bb6b695d50cef",
      "item_id": "3f669d6661c94de1",
      "slug": "2017-vulnerabilities-lpe-linux-kernel-vulnerability-can-lead-to-privilege-escalation-analyzing-cve-2017-100011",
      "year": 2017,
      "title": "Linux Kernel Vulnerability Can Lead to Privilege Escalation: Analyzing CVE-2017-1000112",
      "item_title": "Linux Kernel Vulnerability Can Lead to Privilege Escalation: Analyzing CVE-2017-1000112",
      "authors": [
        "Krishs Patil"
      ],
      "cves": [
        "CVE-2017-1000112"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://securingtomorrow.mcafee.com/mcafee-labs/linux-kernel-vulnerability-can-lead-to-privilege-escalation-analyzing-cve-2017-1000112/",
      "primary_url": "https://securingtomorrow.mcafee.com/mcafee-labs/linux-kernel-vulnerability-can-lead-to-privilege-escalation-analyzing-cve-2017-1000112/",
      "parent_primary_url": "https://securingtomorrow.mcafee.com/mcafee-labs/linux-kernel-vulnerability-can-lead-to-privilege-escalation-analyzing-cve-2017-1000112/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-linux-kernel-vulnerability-can-lead-to-privilege-escalation-analyzing-cve-2017-100011.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Vulnerability Can Lead to Privilege Escalation: Analyzing CVE-2017-1000112 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux Kernel Vulnerability Can Lead to Privilege Escalation: Analyzing CVE-2017-1000112 resource_label: primary resource_type: article resource_url: https://securingtomorrow.mcafee.com/mcafee-labs/linux-kernel-vulnerability-can-lead-to-privilege-escalation-analyzing-cve-2017-1000112/ parent_primary_url: https://securingtomorrow.mcafee.com/mcafee-labs/linux-kernel-vulnerability-can-lead-to-privilege-escalation-analyzing-cve-2017-1000112/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"Linux Kernel Vulnerability Can Lead to Privilege Escalation: Analyzing CVE-2017-1000112\" by Krishs Patil](https://securingtomorrow.mcafee.com/mcafee-labs/linux-kernel-",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://securingtomorrow.mcafee.com/mcafee-labs/linux-kernel-vulnerability-can-lead-to-privilege-escalation-analyzing-cve-2017-1000112/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://securingtomorrow.mcafee.com/mcafee-labs/linux-kernel-vulnerability-can-lead-to-privilege-escalation-analyzing-cve-2017-1000112/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2017-1000112"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "Analysis of a Linux kernel vulnerability that can lead to privilege escalation, CVE-2017-1000112.",
      "summary_zh": "分析可能导致权限提升的Linux内核漏洞CVE-2017-1000112。",
      "source_markdown": "[2017: \"Linux Kernel Vulnerability Can Lead to Privilege Escalation: Analyzing CVE-2017-1000112\" by Krishs Patil](https://securingtomorrow.mcafee.com/mcafee-labs/linux-kernel-vulnerability-can-lead-to-privilege-escalation-analyzing-cve-2017-1000112/) [article] [CVE-2017-1000112]",
      "search_text": "linux kernel vulnerability can lead to privilege escalation: analyzing cve-2017-1000112 linux kernel vulnerability can lead to privilege escalation: analyzing cve-2017-1000112 krishs patil cve-2017-1000112  vulnerabilities lpe lpe primary article https://securingtomorrow.mcafee.com/mcafee-labs/linux-kernel-vulnerability-can-lead-to-privilege-escalation-analyzing-cve-2017-1000112/ lpe cve-2017-1000112  vulnerability analysis analysis of a linux kernel vulnerability that can lead to privilege escalation, cve-2017-1000112. 分析可能导致权限提升的linux内核漏洞cve-2017-1000112。 # linux kernel vulnerability can lead to privilege escalation: analyzing cve-2017-1000112 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel vulnerability can lead to privilege escalation: analyzing cve-2017-1000112 resource_label: primary resource_type: article resource_url: https://securingtomorrow.mcafee.com/mcafee-labs/linux-kernel-vulnerability-can-lead-to-privilege-escalation-analyzing-cve-2017-1000112/ parent_primary_url: https://securingtomorrow.mcafee.com/mcafee-labs/linux-kernel-vulnerability-can-lead-to-privilege-escalation-analyzing-cve-2017-1000112/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"linux kernel vulnerability can lead to privilege escalation: analyzing cve-2017-1000112\" by krishs patil](https://securingtomorrow.mcafee.com/mcafee-labs/linux-kernel- unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "73ccf1d7732c0d2b",
      "item_id": "52151476196de04a",
      "slug": "2017-vulnerabilities-lpe-adapting-the-poc-for-cve-2017-1000112-to-other-kernels-primary-eadaf4ab",
      "year": 2017,
      "title": "Adapting the POC for CVE-2017-1000112 to Other Kernels",
      "item_title": "Adapting the POC for CVE-2017-1000112 to Other Kernels",
      "authors": [],
      "cves": [
        "CVE-2017-1000112"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ricklarabee.blogspot.de/2017/12/adapting-poc-for-cve-2017-1000112-to.html",
      "primary_url": "https://ricklarabee.blogspot.de/2017/12/adapting-poc-for-cve-2017-1000112-to.html",
      "parent_primary_url": "https://ricklarabee.blogspot.de/2017/12/adapting-poc-for-cve-2017-1000112-to.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-adapting-the-poc-for-cve-2017-1000112-to-other-kernels-primary-eadaf4ab.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Adapting the POC for CVE-2017-1000112 to Other Kernels record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Adapting the POC for CVE-2017-1000112 to Other Kernels resource_label: primary resource_type: article resource_url: https://ricklarabee.blogspot.de/2017/12/adapting-poc-for-cve-2017-1000112-to.html parent_primary_url: https://ricklarabee.blogspot.de/2017/12/adapting-poc-for-cve-2017-1000112-to.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"Adapting the POC for CVE-2017-1000112 to Other Kernels\"](https://ricklarabee.blogspot.de/2017/12/adapting-poc-for-cve-2017-1000112-to.html) [article] [CVE-2017-1000112] cves: CVE-2017-1000112 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and ve",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ricklarabee.blogspot.de/2017/12/adapting-poc-for-cve-2017-1000112-to.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ricklarabee.blogspot.de/2017/12/adapting-poc-for-cve-2017-1000112-to.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://ricklarabee.blogspot.de/2017/12/adapting-poc-for-cve-2017-1000112-to.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2017-1000112"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "An article on adapting the proof of concept for CVE-2017-1000112 to other kernels.",
      "summary_zh": "关于将CVE-2017-1000112的概念证明适配到其他内核的文章。",
      "source_markdown": "[2017: \"Adapting the POC for CVE-2017-1000112 to Other Kernels\"](https://ricklarabee.blogspot.de/2017/12/adapting-poc-for-cve-2017-1000112-to.html) [article] [CVE-2017-1000112]",
      "search_text": "adapting the poc for cve-2017-1000112 to other kernels adapting the poc for cve-2017-1000112 to other kernels  cve-2017-1000112  vulnerabilities lpe lpe primary article https://ricklarabee.blogspot.de/2017/12/adapting-poc-for-cve-2017-1000112-to.html lpe cve-2017-1000112  vulnerability analysis an article on adapting the proof of concept for cve-2017-1000112 to other kernels. 关于将cve-2017-1000112的概念证明适配到其他内核的文章。 # adapting the poc for cve-2017-1000112 to other kernels record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: adapting the poc for cve-2017-1000112 to other kernels resource_label: primary resource_type: article resource_url: https://ricklarabee.blogspot.de/2017/12/adapting-poc-for-cve-2017-1000112-to.html parent_primary_url: https://ricklarabee.blogspot.de/2017/12/adapting-poc-for-cve-2017-1000112-to.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"adapting the poc for cve-2017-1000112 to other kernels\"](https://ricklarabee.blogspot.de/2017/12/adapting-poc-for-cve-2017-1000112-to.html) [article] [cve-2017-1000112] cves: cve-2017-1000112 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and ve unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "d26a0bcf7c5a4904",
      "item_id": "db1ae3bec0b2d8d1",
      "slug": "2017-vulnerabilities-lpe-the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel-primary-c4",
      "year": 2017,
      "title": "The Art of Exploiting Unconventional Use-after-free Bugs in Android Kernel",
      "item_title": "The Art of Exploiting Unconventional Use-after-free Bugs in Android Kernel",
      "authors": [
        "Di Shen"
      ],
      "cves": [
        "CVE-2017-0403",
        "CVE-2016-6787"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel",
      "primary_url": "https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel",
      "parent_primary_url": "https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel-primary-c4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Art of Exploiting Unconventional Use-after-free Bugs in Android Kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The Art of Exploiting Unconventional Use-after-free Bugs in Android Kernel resource_label: primary resource_type: slides resource_url: https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel parent_primary_url: https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"The Art of Exploiting Unconventional Use-after-free Bugs in Android Kernel\" by Di Shen](https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel) [slides] [CVE-2017-0403, CVE-2016-6787] [[video](https://ww",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=U2qvK1hJ6zg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=U2qvK1hJ6zg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2017-0403",
        "CVE-2016-6787"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "Slides on exploiting unconventional use-after-free bugs in the Android kernel.",
      "summary_zh": "关于在Android内核中利用非常规使用后释放漏洞的幻灯片。",
      "source_markdown": "[2017: \"The Art of Exploiting Unconventional Use-after-free Bugs in Android Kernel\" by Di Shen](https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel) [slides] [CVE-2017-0403, CVE-2016-6787] [[video](https://www.youtube.com/watch?v=U2qvK1hJ6zg)]",
      "search_text": "the art of exploiting unconventional use-after-free bugs in android kernel the art of exploiting unconventional use-after-free bugs in android kernel di shen cve-2017-0403 cve-2016-6787  vulnerabilities lpe lpe primary slides https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel lpe cve-2017-0403 cve-2016-6787  vulnerability analysis slides on exploiting unconventional use-after-free bugs in the android kernel. 关于在android内核中利用非常规使用后释放漏洞的幻灯片。 # the art of exploiting unconventional use-after-free bugs in android kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the art of exploiting unconventional use-after-free bugs in android kernel resource_label: primary resource_type: slides resource_url: https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel parent_primary_url: https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"the art of exploiting unconventional use-after-free bugs in android kernel\" by di shen](https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel) [slides] [cve-2017-0403, cve-2016-6787] [[video](https://ww yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   has-poc poc proof-of-concept"
    },
    {
      "id": "dba177b74ebc08b7",
      "item_id": "db1ae3bec0b2d8d1",
      "slug": "2017-vulnerabilities-lpe-the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel-video-d3ce",
      "year": 2017,
      "title": "The Art of Exploiting Unconventional Use-after-free Bugs in Android Kernel · video",
      "item_title": "The Art of Exploiting Unconventional Use-after-free Bugs in Android Kernel",
      "authors": [
        "Di Shen"
      ],
      "cves": [
        "CVE-2017-0403",
        "CVE-2016-6787"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=U2qvK1hJ6zg",
      "primary_url": "https://www.youtube.com/watch?v=U2qvK1hJ6zg",
      "parent_primary_url": "https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel-video-d3ce.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Art of Exploiting Unconventional Use-after-free Bugs in Android Kernel · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: The Art of Exploiting Unconventional Use-after-free Bugs in Android Kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=U2qvK1hJ6zg parent_primary_url: https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"The Art of Exploiting Unconventional Use-after-free Bugs in Android Kernel\" by Di Shen](https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel) [slides] [CVE-2017-0403, CVE-2016-6787] [[video](https://www.youtube.com/watch?v=U2qvK1hJ6zg)] cves: CVE-2017-0403, ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=U2qvK1hJ6zg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=U2qvK1hJ6zg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2017-0403",
        "CVE-2016-6787"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "A video presentation on exploiting unconventional use-after-free bugs in the Android kernel.",
      "summary_zh": "关于在Android内核中利用非常规使用后释放漏洞的视频演示。",
      "source_markdown": "[2017: \"The Art of Exploiting Unconventional Use-after-free Bugs in Android Kernel\" by Di Shen](https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel) [slides] [CVE-2017-0403, CVE-2016-6787] [[video](https://www.youtube.com/watch?v=U2qvK1hJ6zg)]",
      "search_text": "the art of exploiting unconventional use-after-free bugs in android kernel · video the art of exploiting unconventional use-after-free bugs in android kernel di shen cve-2017-0403 cve-2016-6787  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=u2qvk1hj6zg lpe cve-2017-0403 cve-2016-6787  vulnerability analysis a video presentation on exploiting unconventional use-after-free bugs in the android kernel. 关于在android内核中利用非常规使用后释放漏洞的视频演示。 # the art of exploiting unconventional use-after-free bugs in android kernel · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: the art of exploiting unconventional use-after-free bugs in android kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=u2qvk1hj6zg parent_primary_url: https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"the art of exploiting unconventional use-after-free bugs in android kernel\" by di shen](https://speakerdeck.com/retme7/the-art-of-exploiting-unconventional-use-after-free-bugs-in-android-kernel) [slides] [cve-2017-0403, cve-2016-6787] [[video](https://www.youtube.com/watch?v=u2qvk1hj6zg)] cves: cve-2017-0403,  yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   has-poc poc proof-of-concept"
    },
    {
      "id": "8cd36a6626d73c6c",
      "item_id": "bf707231952f7a02",
      "slug": "2017-vulnerabilities-lpe-exploiting-cve-2017-5123-with-full-protections-smep-smap-and-the-chrome-sandbox-prima",
      "year": 2017,
      "title": "Exploiting CVE-2017-5123 with full protections. SMEP, SMAP, and the Chrome Sandbox!",
      "item_title": "Exploiting CVE-2017-5123 with full protections. SMEP, SMAP, and the Chrome Sandbox!",
      "authors": [
        "Chris Salls"
      ],
      "cves": [
        "CVE-2017-5123"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://salls.github.io/Linux-Kernel-CVE-2017-5123/",
      "primary_url": "https://salls.github.io/Linux-Kernel-CVE-2017-5123/",
      "parent_primary_url": "https://salls.github.io/Linux-Kernel-CVE-2017-5123/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-exploiting-cve-2017-5123-with-full-protections-smep-smap-and-the-chrome-sandbox-prima.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting CVE-2017-5123 with full protections. SMEP, SMAP, and the Chrome Sandbox! record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting CVE-2017-5123 with full protections. SMEP, SMAP, and the Chrome Sandbox! resource_label: primary resource_type: article resource_url: https://salls.github.io/Linux-Kernel-CVE-2017-5123/ parent_primary_url: https://salls.github.io/Linux-Kernel-CVE-2017-5123/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"Exploiting CVE-2017-5123 with full protections. SMEP, SMAP, and the Chrome Sandbox!\" by Chris Salls](https://salls.github.io/Linux-Kernel-CVE-2017-5123/) [article] [CVE-2017-5123] cves: CVE-2017-5123 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://salls.github.io/Linux-Kernel-CVE-2017-5123/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://salls.github.io/Linux-Kernel-CVE-2017-5123/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://salls.github.io/Linux-Kernel-CVE-2017-5123/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2017-5123"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability analysis",
      "summary_en": "An article discussing the exploitation of CVE-2017-5123 with full protections.",
      "summary_zh": "讨论在全面保护下利用CVE-2017-5123的文章。",
      "source_markdown": "[2017: \"Exploiting CVE-2017-5123 with full protections. SMEP, SMAP, and the Chrome Sandbox!\" by Chris Salls](https://salls.github.io/Linux-Kernel-CVE-2017-5123/) [article] [CVE-2017-5123]",
      "search_text": "exploiting cve-2017-5123 with full protections. smep, smap, and the chrome sandbox! exploiting cve-2017-5123 with full protections. smep, smap, and the chrome sandbox! chris salls cve-2017-5123  vulnerabilities lpe lpe primary article https://salls.github.io/linux-kernel-cve-2017-5123/ lpe cve-2017-5123  vulnerability analysis an article discussing the exploitation of cve-2017-5123 with full protections. 讨论在全面保护下利用cve-2017-5123的文章。 # exploiting cve-2017-5123 with full protections. smep, smap, and the chrome sandbox! record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting cve-2017-5123 with full protections. smep, smap, and the chrome sandbox! resource_label: primary resource_type: article resource_url: https://salls.github.io/linux-kernel-cve-2017-5123/ parent_primary_url: https://salls.github.io/linux-kernel-cve-2017-5123/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"exploiting cve-2017-5123 with full protections. smep, smap, and the chrome sandbox!\" by chris salls](https://salls.github.io/linux-kernel-cve-2017-5123/) [article] [cve-2017-5123] cves: cve-2017-5123 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "a88bb6eb353f3569",
      "item_id": "d5e7d331c40666c3",
      "slug": "2017-vulnerabilities-lpe-exploiting-cve-2017-5123-primary-d66f98bb",
      "year": 2017,
      "title": "Exploiting CVE-2017-5123",
      "item_title": "Exploiting CVE-2017-5123",
      "authors": [
        "Federico Bento"
      ],
      "cves": [
        "CVE-2017-5123"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://reverse.put.as/2017/11/07/exploiting-cve-2017-5123/",
      "primary_url": "https://reverse.put.as/2017/11/07/exploiting-cve-2017-5123/",
      "parent_primary_url": "https://reverse.put.as/2017/11/07/exploiting-cve-2017-5123/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-exploiting-cve-2017-5123-primary-d66f98bb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting CVE-2017-5123 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting CVE-2017-5123 resource_label: primary resource_type: article resource_url: https://reverse.put.as/2017/11/07/exploiting-cve-2017-5123/ parent_primary_url: https://reverse.put.as/2017/11/07/exploiting-cve-2017-5123/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"Exploiting CVE-2017-5123\" by Federico Bento](https://reverse.put.as/2017/11/07/exploiting-cve-2017-5123/) [article] [CVE-2017-5123] cves: CVE-2017-5123 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://reverse.put.as/2017/11/07/exploiting-cve-2017-5123/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://reverse.put.as/2017/11/07/exploiting-cve-2017-5123/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2017-5123"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"Exploiting CVE-2017-5123\" (CVE-2017-5123); URL type: article.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「Exploiting CVE-2017-5123」（CVE-2017-5123）；URL 类型：article。",
      "source_markdown": "[2017: \"Exploiting CVE-2017-5123\" by Federico Bento](https://reverse.put.as/2017/11/07/exploiting-cve-2017-5123/) [article] [CVE-2017-5123]",
      "search_text": "exploiting cve-2017-5123 exploiting cve-2017-5123 federico bento cve-2017-5123  vulnerabilities lpe lpe primary article https://reverse.put.as/2017/11/07/exploiting-cve-2017-5123/ vulnerabilities lpe article cve-2017-5123  lpe 2017 linux kernel lpe resource \"exploiting cve-2017-5123\" (cve-2017-5123); url type: article. 2017 年 linux 内核lpe资料：「exploiting cve-2017-5123」（cve-2017-5123）；url 类型：article。 # exploiting cve-2017-5123 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting cve-2017-5123 resource_label: primary resource_type: article resource_url: https://reverse.put.as/2017/11/07/exploiting-cve-2017-5123/ parent_primary_url: https://reverse.put.as/2017/11/07/exploiting-cve-2017-5123/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"exploiting cve-2017-5123\" by federico bento](https://reverse.put.as/2017/11/07/exploiting-cve-2017-5123/) [article] [cve-2017-5123] cves: cve-2017-5123 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "e05dcfd7fb2c8753",
      "item_id": "f020b19ba641cec5",
      "slug": "2017-vulnerabilities-lpe-escaping-docker-container-using-waitid-cve-2017-5123-primary-faea05eb",
      "year": 2017,
      "title": "Escaping Docker container using waitid() – CVE-2017-5123",
      "item_title": "Escaping Docker container using waitid() – CVE-2017-5123",
      "authors": [
        "Daniel Shapira"
      ],
      "cves": [
        "CVE-2017-5123"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.twistlock.com/2017/12/27/escaping-docker-container-using-waitid-cve-2017-5123/",
      "primary_url": "https://www.twistlock.com/2017/12/27/escaping-docker-container-using-waitid-cve-2017-5123/",
      "parent_primary_url": "https://www.twistlock.com/2017/12/27/escaping-docker-container-using-waitid-cve-2017-5123/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-escaping-docker-container-using-waitid-cve-2017-5123-primary-faea05eb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Escaping Docker container using waitid() – CVE-2017-5123 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Escaping Docker container using waitid() – CVE-2017-5123 resource_label: primary resource_type: article resource_url: https://www.twistlock.com/2017/12/27/escaping-docker-container-using-waitid-cve-2017-5123/ parent_primary_url: https://www.twistlock.com/2017/12/27/escaping-docker-container-using-waitid-cve-2017-5123/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"Escaping Docker container using waitid() – CVE-2017-5123\" by Daniel Shapira](https://www.twistlock.com/2017/12/27/escaping-docker-container-using-waitid-cve-2017-5123/) [article] [CVE-2017-5123] cves: CVE-2017-5123 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.twistlock.com/2017/12/27/escaping-docker-container-using-waitid-cve-2017-5123/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.twistlock.com/2017/12/27/escaping-docker-container-using-waitid-cve-2017-5123/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2017-5123"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"Escaping Docker container using waitid() – CVE-2017-5123\" (CVE-2017-5123); URL type: article.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「Escaping Docker container using waitid() – CVE-2017-5123」（CVE-2017-5123）；URL 类型：article。",
      "source_markdown": "[2017: \"Escaping Docker container using waitid() – CVE-2017-5123\" by Daniel Shapira](https://www.twistlock.com/2017/12/27/escaping-docker-container-using-waitid-cve-2017-5123/) [article] [CVE-2017-5123]",
      "search_text": "escaping docker container using waitid() – cve-2017-5123 escaping docker container using waitid() – cve-2017-5123 daniel shapira cve-2017-5123  vulnerabilities lpe lpe primary article https://www.twistlock.com/2017/12/27/escaping-docker-container-using-waitid-cve-2017-5123/ vulnerabilities lpe article cve-2017-5123  lpe 2017 linux kernel lpe resource \"escaping docker container using waitid() – cve-2017-5123\" (cve-2017-5123); url type: article. 2017 年 linux 内核lpe资料：「escaping docker container using waitid() – cve-2017-5123」（cve-2017-5123）；url 类型：article。 # escaping docker container using waitid() – cve-2017-5123 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: escaping docker container using waitid() – cve-2017-5123 resource_label: primary resource_type: article resource_url: https://www.twistlock.com/2017/12/27/escaping-docker-container-using-waitid-cve-2017-5123/ parent_primary_url: https://www.twistlock.com/2017/12/27/escaping-docker-container-using-waitid-cve-2017-5123/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"escaping docker container using waitid() – cve-2017-5123\" by daniel shapira](https://www.twistlock.com/2017/12/27/escaping-docker-container-using-waitid-cve-2017-5123/) [article] [cve-2017-5123] cves: cve-2017-5123 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "113c6ebc8efc936a",
      "item_id": "982c14dc09e51cfd",
      "slug": "2017-vulnerabilities-lpe-lke-v4-13-x-waitid-lpe-primary-89d451c3",
      "year": 2017,
      "title": "LKE v4.13.x - waitid() LPE",
      "item_title": "LKE v4.13.x - waitid() LPE",
      "authors": [
        "HyeongChan Kim"
      ],
      "cves": [
        "CVE-2017-5123"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://kozistr.tech/sec-res/2017/10/29/LKE-CVE-2017-5123.html",
      "primary_url": "http://kozistr.tech/sec-res/2017/10/29/LKE-CVE-2017-5123.html",
      "parent_primary_url": "http://kozistr.tech/sec-res/2017/10/29/LKE-CVE-2017-5123.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-lke-v4-13-x-waitid-lpe-primary-89d451c3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# LKE v4.13.x - waitid() LPE record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: LKE v4.13.x - waitid() LPE resource_label: primary resource_type: article resource_url: http://kozistr.tech/sec-res/2017/10/29/LKE-CVE-2017-5123.html parent_primary_url: http://kozistr.tech/sec-res/2017/10/29/LKE-CVE-2017-5123.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"LKE v4.13.x - waitid() LPE\" by HyeongChan Kim](http://kozistr.tech/sec-res/2017/10/29/LKE-CVE-2017-5123.html) [article] [CVE-2017-5123] cves: CVE-2017-5123 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://kozistr.tech/sec-res/2017/10/29/LKE-CVE-2017-5123.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://kozistr.tech/sec-res/2017/10/29/LKE-CVE-2017-5123.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2017-5123"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"LKE v4.13.x - waitid() LPE\" (CVE-2017-5123); URL type: article.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「LKE v4.13.x - waitid() LPE」（CVE-2017-5123）；URL 类型：article。",
      "source_markdown": "[2017: \"LKE v4.13.x - waitid() LPE\" by HyeongChan Kim](http://kozistr.tech/sec-res/2017/10/29/LKE-CVE-2017-5123.html) [article] [CVE-2017-5123]",
      "search_text": "lke v4.13.x - waitid() lpe lke v4.13.x - waitid() lpe hyeongchan kim cve-2017-5123  vulnerabilities lpe lpe primary article http://kozistr.tech/sec-res/2017/10/29/lke-cve-2017-5123.html vulnerabilities lpe article cve-2017-5123  lpe 2017 linux kernel lpe resource \"lke v4.13.x - waitid() lpe\" (cve-2017-5123); url type: article. 2017 年 linux 内核lpe资料：「lke v4.13.x - waitid() lpe」（cve-2017-5123）；url 类型：article。 # lke v4.13.x - waitid() lpe record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: lke v4.13.x - waitid() lpe resource_label: primary resource_type: article resource_url: http://kozistr.tech/sec-res/2017/10/29/lke-cve-2017-5123.html parent_primary_url: http://kozistr.tech/sec-res/2017/10/29/lke-cve-2017-5123.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"lke v4.13.x - waitid() lpe\" by hyeongchan kim](http://kozistr.tech/sec-res/2017/10/29/lke-cve-2017-5123.html) [article] [cve-2017-5123] cves: cve-2017-5123 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a16e8c0d1b008d7c",
      "item_id": "5947f6ebbb027dcb",
      "slug": "2017-vulnerabilities-lpe-exploiting-on-cve-2016-6787-primary-937eccf0",
      "year": 2017,
      "title": "Exploiting on CVE-2016-6787",
      "item_title": "Exploiting on CVE-2016-6787",
      "authors": [],
      "cves": [
        "CVE-2016-6787"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://hardenedlinux.github.io/system-security/2017/10/16/Exploiting-on-CVE-2016-6787.html",
      "primary_url": "https://hardenedlinux.github.io/system-security/2017/10/16/Exploiting-on-CVE-2016-6787.html",
      "parent_primary_url": "https://hardenedlinux.github.io/system-security/2017/10/16/Exploiting-on-CVE-2016-6787.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-exploiting-on-cve-2016-6787-primary-937eccf0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting on CVE-2016-6787 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting on CVE-2016-6787 resource_label: primary resource_type: article resource_url: https://hardenedlinux.github.io/system-security/2017/10/16/Exploiting-on-CVE-2016-6787.html parent_primary_url: https://hardenedlinux.github.io/system-security/2017/10/16/Exploiting-on-CVE-2016-6787.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"Exploiting on CVE-2016-6787\"](https://hardenedlinux.github.io/system-security/2017/10/16/Exploiting-on-CVE-2016-6787.html) [article] [CVE-2016-6787] cves: CVE-2016-6787 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_re",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://hardenedlinux.github.io/system-security/2017/10/16/Exploiting-on-CVE-2016-6787.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://hardenedlinux.github.io/system-security/2017/10/16/Exploiting-on-CVE-2016-6787.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://hardenedlinux.github.io/system-security/2017/10/16/Exploiting-on-CVE-2016-6787.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2016-6787"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"Exploiting on CVE-2016-6787\" (CVE-2016-6787); URL type: article.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「Exploiting on CVE-2016-6787」（CVE-2016-6787）；URL 类型：article。",
      "source_markdown": "[2017: \"Exploiting on CVE-2016-6787\"](https://hardenedlinux.github.io/system-security/2017/10/16/Exploiting-on-CVE-2016-6787.html) [article] [CVE-2016-6787]",
      "search_text": "exploiting on cve-2016-6787 exploiting on cve-2016-6787  cve-2016-6787  vulnerabilities lpe lpe primary article https://hardenedlinux.github.io/system-security/2017/10/16/exploiting-on-cve-2016-6787.html vulnerabilities lpe article cve-2016-6787  lpe 2017 linux kernel lpe resource \"exploiting on cve-2016-6787\" (cve-2016-6787); url type: article. 2017 年 linux 内核lpe资料：「exploiting on cve-2016-6787」（cve-2016-6787）；url 类型：article。 # exploiting on cve-2016-6787 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting on cve-2016-6787 resource_label: primary resource_type: article resource_url: https://hardenedlinux.github.io/system-security/2017/10/16/exploiting-on-cve-2016-6787.html parent_primary_url: https://hardenedlinux.github.io/system-security/2017/10/16/exploiting-on-cve-2016-6787.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"exploiting on cve-2016-6787\"](https://hardenedlinux.github.io/system-security/2017/10/16/exploiting-on-cve-2016-6787.html) [article] [cve-2016-6787] cves: cve-2016-6787 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_re unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "0ee05cb8d1bd253b",
      "item_id": "08d8b09e8d9a2772",
      "slug": "2017-vulnerabilities-lpe-race-for-root-the-analysis-of-the-linux-kernel-race-condition-exploit-primary-ecdc569",
      "year": 2017,
      "title": "Race For Root: The Analysis Of The Linux Kernel Race Condition Exploit",
      "item_title": "Race For Root: The Analysis Of The Linux Kernel Race Condition Exploit",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [
        "CVE-2017-2636"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=g7Qm0NpPAz4",
      "primary_url": "https://www.youtube.com/watch?v=g7Qm0NpPAz4",
      "parent_primary_url": "https://www.youtube.com/watch?v=g7Qm0NpPAz4",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-race-for-root-the-analysis-of-the-linux-kernel-race-condition-exploit-primary-ecdc569.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Race For Root: The Analysis Of The Linux Kernel Race Condition Exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Race For Root: The Analysis Of The Linux Kernel Race Condition Exploit resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=g7Qm0NpPAz4 parent_primary_url: https://www.youtube.com/watch?v=g7Qm0NpPAz4 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"Race For Root: The Analysis Of The Linux Kernel Race Condition Exploit\" by Alexander Popov](https://www.youtube.com/watch?v=g7Qm0NpPAz4) [video] [CVE-2017-2636] cves: CVE-2017-2636 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_re",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=g7Qm0NpPAz4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=g7Qm0NpPAz4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "video",
        "CVE-2017-2636"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"Race For Root: The Analysis Of The Linux Kernel Race Condition Exploit\" (CVE-2017-2636); URL type: video.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「Race For Root: The Analysis Of The Linux Kernel Race Condition Exploit」（CVE-2017-2636）；URL 类型：video。",
      "source_markdown": "[2017: \"Race For Root: The Analysis Of The Linux Kernel Race Condition Exploit\" by Alexander Popov](https://www.youtube.com/watch?v=g7Qm0NpPAz4) [video] [CVE-2017-2636]",
      "search_text": "race for root: the analysis of the linux kernel race condition exploit race for root: the analysis of the linux kernel race condition exploit alexander popov cve-2017-2636  vulnerabilities lpe lpe primary video https://www.youtube.com/watch?v=g7qm0nppaz4 vulnerabilities lpe video cve-2017-2636  lpe 2017 linux kernel lpe resource \"race for root: the analysis of the linux kernel race condition exploit\" (cve-2017-2636); url type: video. 2017 年 linux 内核lpe资料：「race for root: the analysis of the linux kernel race condition exploit」（cve-2017-2636）；url 类型：video。 # race for root: the analysis of the linux kernel race condition exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: race for root: the analysis of the linux kernel race condition exploit resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=g7qm0nppaz4 parent_primary_url: https://www.youtube.com/watch?v=g7qm0nppaz4 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"race for root: the analysis of the linux kernel race condition exploit\" by alexander popov](https://www.youtube.com/watch?v=g7qm0nppaz4) [video] [cve-2017-2636] cves: cve-2017-2636 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_re unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "be16c04358001219",
      "item_id": "94d736c041d1782e",
      "slug": "2017-vulnerabilities-lpe-race-for-root-the-analysis-of-the-linux-kernel-race-condition-exploit-primary-058c7e9",
      "year": 2017,
      "title": "Race For Root: The Analysis Of The Linux Kernel Race Condition Exploit",
      "item_title": "Race For Root: The Analysis Of The Linux Kernel Race Condition Exploit",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [
        "CVE-2017-2636"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://program.sha2017.org/system/event_attachments/attachments/000/000/111/original/a13xp0p0v_race_for_root_SHA2017.pdf",
      "primary_url": "https://program.sha2017.org/system/event_attachments/attachments/000/000/111/original/a13xp0p0v_race_for_root_SHA2017.pdf",
      "parent_primary_url": "https://program.sha2017.org/system/event_attachments/attachments/000/000/111/original/a13xp0p0v_race_for_root_SHA2017.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-race-for-root-the-analysis-of-the-linux-kernel-race-condition-exploit-primary-058c7e9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Race For Root: The Analysis Of The Linux Kernel Race Condition Exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Race For Root: The Analysis Of The Linux Kernel Race Condition Exploit resource_label: primary resource_type: slides resource_url: https://program.sha2017.org/system/event_attachments/attachments/000/000/111/original/a13xp0p0v_race_for_root_SHA2017.pdf parent_primary_url: https://program.sha2017.org/system/event_attachments/attachments/000/000/111/original/a13xp0p0v_race_for_root_SHA2017.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"Race For Root: The Analysis Of The Linux Kernel Race Condition Exploit\" by Alexander Popov](https://program.sha2017.org/system/event_attachments/attachments/000/000/111/original/a13xp0p0v_race_for_root_SHA2017.pdf) [slides] [CVE-2",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://program.sha2017.org/system/event_attachments/attachments/000/000/111/original/a13xp0p0v_race_for_root_SHA2017.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://program.sha2017.org/system/event_attachments/attachments/000/000/111/original/a13xp0p0v_race_for_root_SHA2017.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "slides",
        "CVE-2017-2636"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"Race For Root: The Analysis Of The Linux Kernel Race Condition Exploit\" (CVE-2017-2636); URL type: slides.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「Race For Root: The Analysis Of The Linux Kernel Race Condition Exploit」（CVE-2017-2636）；URL 类型：slides。",
      "source_markdown": "[2017: \"Race For Root: The Analysis Of The Linux Kernel Race Condition Exploit\" by Alexander Popov](https://program.sha2017.org/system/event_attachments/attachments/000/000/111/original/a13xp0p0v_race_for_root_SHA2017.pdf) [slides] [CVE-2017-2636]",
      "search_text": "race for root: the analysis of the linux kernel race condition exploit race for root: the analysis of the linux kernel race condition exploit alexander popov cve-2017-2636  vulnerabilities lpe lpe primary slides https://program.sha2017.org/system/event_attachments/attachments/000/000/111/original/a13xp0p0v_race_for_root_sha2017.pdf vulnerabilities lpe slides cve-2017-2636  lpe 2017 linux kernel lpe resource \"race for root: the analysis of the linux kernel race condition exploit\" (cve-2017-2636); url type: slides. 2017 年 linux 内核lpe资料：「race for root: the analysis of the linux kernel race condition exploit」（cve-2017-2636）；url 类型：slides。 # race for root: the analysis of the linux kernel race condition exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: race for root: the analysis of the linux kernel race condition exploit resource_label: primary resource_type: slides resource_url: https://program.sha2017.org/system/event_attachments/attachments/000/000/111/original/a13xp0p0v_race_for_root_sha2017.pdf parent_primary_url: https://program.sha2017.org/system/event_attachments/attachments/000/000/111/original/a13xp0p0v_race_for_root_sha2017.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"race for root: the analysis of the linux kernel race condition exploit\" by alexander popov](https://program.sha2017.org/system/event_attachments/attachments/000/000/111/original/a13xp0p0v_race_for_root_sha2017.pdf) [slides] [cve-2 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "83383b606848ad2b",
      "item_id": "a064d6a0a6344e19",
      "slug": "2017-vulnerabilities-lpe-cve-2017-2636-exploit-the-race-condition-in-the-n-hdlc-linux-kernel-driver-bypassing-",
      "year": 2017,
      "title": "CVE-2017-2636: exploit the race condition in the n_hdlc Linux kernel driver bypassing SMEP",
      "item_title": "CVE-2017-2636: exploit the race condition in the n_hdlc Linux kernel driver bypassing SMEP",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [
        "CVE-2017-2636"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://a13xp0p0v.github.io/2017/03/24/CVE-2017-2636.html",
      "primary_url": "https://a13xp0p0v.github.io/2017/03/24/CVE-2017-2636.html",
      "parent_primary_url": "https://a13xp0p0v.github.io/2017/03/24/CVE-2017-2636.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-cve-2017-2636-exploit-the-race-condition-in-the-n-hdlc-linux-kernel-driver-bypassing-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2017-2636: exploit the race condition in the n_hdlc Linux kernel driver bypassing SMEP record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2017-2636: exploit the race condition in the n_hdlc Linux kernel driver bypassing SMEP resource_label: primary resource_type: article resource_url: https://a13xp0p0v.github.io/2017/03/24/CVE-2017-2636.html parent_primary_url: https://a13xp0p0v.github.io/2017/03/24/CVE-2017-2636.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"CVE-2017-2636: exploit the race condition in the n_hdlc Linux kernel driver bypassing SMEP\" by Alexander Popov](https://a13xp0p0v.github.io/2017/03/24/CVE-2017-2636.html) [article] [CVE-2017-2636] cves: CVE-2017-2636 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Andr",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://a13xp0p0v.github.io/2017/03/24/CVE-2017-2636.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://a13xp0p0v.github.io/2017/03/24/CVE-2017-2636.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://a13xp0p0v.github.io/2017/03/24/CVE-2017-2636.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2017-2636"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"CVE-2017-2636: exploit the race condition in the n_hdlc Linux kernel driver bypassing SMEP\" (CVE-2017-2636); URL type: article.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「CVE-2017-2636: exploit the race condition in the n_hdlc Linux kernel driver bypassing SMEP」（CVE-2017-2636）；URL 类型：article。",
      "source_markdown": "[2017: \"CVE-2017-2636: exploit the race condition in the n_hdlc Linux kernel driver bypassing SMEP\" by Alexander Popov](https://a13xp0p0v.github.io/2017/03/24/CVE-2017-2636.html) [article] [CVE-2017-2636]",
      "search_text": "cve-2017-2636: exploit the race condition in the n_hdlc linux kernel driver bypassing smep cve-2017-2636: exploit the race condition in the n_hdlc linux kernel driver bypassing smep alexander popov cve-2017-2636  vulnerabilities lpe lpe primary article https://a13xp0p0v.github.io/2017/03/24/cve-2017-2636.html vulnerabilities lpe article cve-2017-2636  lpe 2017 linux kernel lpe resource \"cve-2017-2636: exploit the race condition in the n_hdlc linux kernel driver bypassing smep\" (cve-2017-2636); url type: article. 2017 年 linux 内核lpe资料：「cve-2017-2636: exploit the race condition in the n_hdlc linux kernel driver bypassing smep」（cve-2017-2636）；url 类型：article。 # cve-2017-2636: exploit the race condition in the n_hdlc linux kernel driver bypassing smep record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2017-2636: exploit the race condition in the n_hdlc linux kernel driver bypassing smep resource_label: primary resource_type: article resource_url: https://a13xp0p0v.github.io/2017/03/24/cve-2017-2636.html parent_primary_url: https://a13xp0p0v.github.io/2017/03/24/cve-2017-2636.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"cve-2017-2636: exploit the race condition in the n_hdlc linux kernel driver bypassing smep\" by alexander popov](https://a13xp0p0v.github.io/2017/03/24/cve-2017-2636.html) [article] [cve-2017-2636] cves: cve-2017-2636 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; andr unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ad5ac0bacf1b96a2",
      "item_id": "30d42dfff537d342",
      "slug": "2017-vulnerabilities-lpe-cve-2017-2636-local-privilege-escalation-flaw-in-n-hdlc-primary-3c96a033",
      "year": 2017,
      "title": "CVE-2017-2636: local privilege escalation flaw in n_hdlc",
      "item_title": "CVE-2017-2636: local privilege escalation flaw in n_hdlc",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [
        "CVE-2017-2636"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "announcement",
      "resource_url": "http://seclists.org/oss-sec/2017/q1/569",
      "primary_url": "http://seclists.org/oss-sec/2017/q1/569",
      "parent_primary_url": "http://seclists.org/oss-sec/2017/q1/569",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-cve-2017-2636-local-privilege-escalation-flaw-in-n-hdlc-primary-3c96a033.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2017-2636: local privilege escalation flaw in n_hdlc record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2017-2636: local privilege escalation flaw in n_hdlc resource_label: primary resource_type: announcement resource_url: http://seclists.org/oss-sec/2017/q1/569 parent_primary_url: http://seclists.org/oss-sec/2017/q1/569 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"CVE-2017-2636: local privilege escalation flaw in n_hdlc\" by Alexander Popov](http://seclists.org/oss-sec/2017/q1/569) [announcement] [CVE-2017-2636] cves: CVE-2017-2636 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's",
      "link_types": [
        "announcement"
      ],
      "links": [
        {
          "label": "primary",
          "type": "announcement",
          "url": "http://seclists.org/oss-sec/2017/q1/569"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "announcement",
            "url": "http://seclists.org/oss-sec/2017/q1/569"
          }
        ]
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "announcement",
        "CVE-2017-2636"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"CVE-2017-2636: local privilege escalation flaw in n_hdlc\" (CVE-2017-2636); URL type: announcement.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「CVE-2017-2636: local privilege escalation flaw in n_hdlc」（CVE-2017-2636）；URL 类型：announcement。",
      "source_markdown": "[2017: \"CVE-2017-2636: local privilege escalation flaw in n_hdlc\" by Alexander Popov](http://seclists.org/oss-sec/2017/q1/569) [announcement] [CVE-2017-2636]",
      "search_text": "cve-2017-2636: local privilege escalation flaw in n_hdlc cve-2017-2636: local privilege escalation flaw in n_hdlc alexander popov cve-2017-2636  vulnerabilities lpe lpe primary announcement http://seclists.org/oss-sec/2017/q1/569 vulnerabilities lpe announcement cve-2017-2636  lpe 2017 linux kernel lpe resource \"cve-2017-2636: local privilege escalation flaw in n_hdlc\" (cve-2017-2636); url type: announcement. 2017 年 linux 内核lpe资料：「cve-2017-2636: local privilege escalation flaw in n_hdlc」（cve-2017-2636）；url 类型：announcement。 # cve-2017-2636: local privilege escalation flaw in n_hdlc record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2017-2636: local privilege escalation flaw in n_hdlc resource_label: primary resource_type: announcement resource_url: http://seclists.org/oss-sec/2017/q1/569 parent_primary_url: http://seclists.org/oss-sec/2017/q1/569 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"cve-2017-2636: local privilege escalation flaw in n_hdlc\" by alexander popov](http://seclists.org/oss-sec/2017/q1/569) [announcement] [cve-2017-2636] cves: cve-2017-2636 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3b4025bf7430ef7b",
      "item_id": "eb6b1bb355e96c2c",
      "slug": "2017-vulnerabilities-lpe-dirty-cow-primary-f3c73b6e",
      "year": 2017,
      "title": "Dirty COW",
      "item_title": "Dirty COW",
      "authors": [],
      "cves": [
        "CVE-2016-5195"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "summary",
      "resource_url": "https://dirtycow.ninja/",
      "primary_url": "https://dirtycow.ninja/",
      "parent_primary_url": "https://dirtycow.ninja/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-dirty-cow-primary-f3c73b6e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Dirty COW record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Dirty COW resource_label: primary resource_type: summary resource_url: https://dirtycow.ninja/ parent_primary_url: https://dirtycow.ninja/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"Dirty COW\"](https://dirtycow.ninja/) [summary] [[exploit](https://github.com/dirtycow/dirtycow.github.io/wiki/PoCs)] [CVE-2016-5195] cves: CVE-2016-5195 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/dirtycow/dirtycow.github.io/wiki/Po",
      "link_types": [
        "summary",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "summary",
          "url": "https://dirtycow.ninja/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/dirtycow/dirtycow.github.io/wiki/PoCs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/dirtycow/dirtycow.github.io/wiki/PoCs"
          }
        ],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "summary",
            "url": "https://dirtycow.ninja/"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/dirtycow/dirtycow.github.io/wiki/PoCs"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "summary",
        "CVE-2016-5195"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"Dirty COW\" (CVE-2016-5195); URL type: summary.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「Dirty COW」（CVE-2016-5195）；URL 类型：summary。",
      "source_markdown": "[2017: \"Dirty COW\"](https://dirtycow.ninja/) [summary] [[exploit](https://github.com/dirtycow/dirtycow.github.io/wiki/PoCs)] [CVE-2016-5195]",
      "search_text": "dirty cow dirty cow  cve-2016-5195  vulnerabilities lpe lpe primary summary https://dirtycow.ninja/ vulnerabilities lpe summary cve-2016-5195  lpe 2017 linux kernel lpe resource \"dirty cow\" (cve-2016-5195); url type: summary. 2017 年 linux 内核lpe资料：「dirty cow」（cve-2016-5195）；url 类型：summary。 # dirty cow record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: dirty cow resource_label: primary resource_type: summary resource_url: https://dirtycow.ninja/ parent_primary_url: https://dirtycow.ninja/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"dirty cow\"](https://dirtycow.ninja/) [summary] [[exploit](https://github.com/dirtycow/dirtycow.github.io/wiki/pocs)] [cve-2016-5195] cves: cve-2016-5195 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/dirtycow/dirtycow.github.io/wiki/po unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "808143fdc7d02400",
      "item_id": "eb6b1bb355e96c2c",
      "slug": "2017-vulnerabilities-lpe-dirty-cow-exploit-5dc2fb49",
      "year": 2017,
      "title": "Dirty COW · exploit",
      "item_title": "Dirty COW",
      "authors": [],
      "cves": [
        "CVE-2016-5195"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/dirtycow/dirtycow.github.io/wiki/PoCs",
      "primary_url": "https://github.com/dirtycow/dirtycow.github.io/wiki/PoCs",
      "parent_primary_url": "https://dirtycow.ninja/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-dirty-cow-exploit-5dc2fb49.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Dirty COW · exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Dirty COW resource_label: exploit resource_type: exploit resource_url: https://github.com/dirtycow/dirtycow.github.io/wiki/PoCs parent_primary_url: https://dirtycow.ninja/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"Dirty COW\"](https://dirtycow.ninja/) [summary] [[exploit](https://github.com/dirtycow/dirtycow.github.io/wiki/PoCs)] [CVE-2016-5195] cves: CVE-2016-5195 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://git",
      "link_types": [
        "summary",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "summary",
          "url": "https://dirtycow.ninja/"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/dirtycow/dirtycow.github.io/wiki/PoCs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/dirtycow/dirtycow.github.io/wiki/PoCs"
          }
        ],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "summary",
            "url": "https://dirtycow.ninja/"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/dirtycow/dirtycow.github.io/wiki/PoCs"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "exploit",
        "CVE-2016-5195"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"Dirty COW · exploit\" (CVE-2016-5195); URL type: exploit.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「Dirty COW · exploit」（CVE-2016-5195）；URL 类型：exploit。",
      "source_markdown": "[2017: \"Dirty COW\"](https://dirtycow.ninja/) [summary] [[exploit](https://github.com/dirtycow/dirtycow.github.io/wiki/PoCs)] [CVE-2016-5195]",
      "search_text": "dirty cow · exploit dirty cow  cve-2016-5195  vulnerabilities lpe lpe exploit exploit https://github.com/dirtycow/dirtycow.github.io/wiki/pocs vulnerabilities lpe exploit cve-2016-5195  lpe 2017 linux kernel lpe resource \"dirty cow · exploit\" (cve-2016-5195); url type: exploit. 2017 年 linux 内核lpe资料：「dirty cow · exploit」（cve-2016-5195）；url 类型：exploit。 # dirty cow · exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: dirty cow resource_label: exploit resource_type: exploit resource_url: https://github.com/dirtycow/dirtycow.github.io/wiki/pocs parent_primary_url: https://dirtycow.ninja/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"dirty cow\"](https://dirtycow.ninja/) [summary] [[exploit](https://github.com/dirtycow/dirtycow.github.io/wiki/pocs)] [cve-2016-5195] cves: cve-2016-5195 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://git unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "5811fe05d82bfee5",
      "item_id": "85cc5f40d44905b6",
      "slug": "2017-vulnerabilities-lpe-dirty-cow-and-why-lying-is-bad-even-if-you-are-the-linux-kernel-primary-5c7f749c",
      "year": 2017,
      "title": "Dirty COW and why lying is bad even if you are the Linux kernel",
      "item_title": "Dirty COW and why lying is bad even if you are the Linux kernel",
      "authors": [],
      "cves": [
        "CVE-2016-5195"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://chao-tic.github.io/blog/2017/05/24/dirty-cow",
      "primary_url": "https://chao-tic.github.io/blog/2017/05/24/dirty-cow",
      "parent_primary_url": "https://chao-tic.github.io/blog/2017/05/24/dirty-cow",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-dirty-cow-and-why-lying-is-bad-even-if-you-are-the-linux-kernel-primary-5c7f749c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Dirty COW and why lying is bad even if you are the Linux kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Dirty COW and why lying is bad even if you are the Linux kernel resource_label: primary resource_type: article resource_url: https://chao-tic.github.io/blog/2017/05/24/dirty-cow parent_primary_url: https://chao-tic.github.io/blog/2017/05/24/dirty-cow source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"Dirty COW and why lying is bad even if you are the Linux kernel\"](https://chao-tic.github.io/blog/2017/05/24/dirty-cow) [article] [CVE-2016-5195] cves: CVE-2016-5195 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Pro",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://chao-tic.github.io/blog/2017/05/24/dirty-cow"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://chao-tic.github.io/blog/2017/05/24/dirty-cow"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://chao-tic.github.io/blog/2017/05/24/dirty-cow"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2016-5195"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"Dirty COW and why lying is bad even if you are the Linux kernel\" (CVE-2016-5195); URL type: article.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「Dirty COW and why lying is bad even if you are the Linux kernel」（CVE-2016-5195）；URL 类型：article。",
      "source_markdown": "[2017: \"Dirty COW and why lying is bad even if you are the Linux kernel\"](https://chao-tic.github.io/blog/2017/05/24/dirty-cow) [article] [CVE-2016-5195]",
      "search_text": "dirty cow and why lying is bad even if you are the linux kernel dirty cow and why lying is bad even if you are the linux kernel  cve-2016-5195  vulnerabilities lpe lpe primary article https://chao-tic.github.io/blog/2017/05/24/dirty-cow vulnerabilities lpe article cve-2016-5195  lpe 2017 linux kernel lpe resource \"dirty cow and why lying is bad even if you are the linux kernel\" (cve-2016-5195); url type: article. 2017 年 linux 内核lpe资料：「dirty cow and why lying is bad even if you are the linux kernel」（cve-2016-5195）；url 类型：article。 # dirty cow and why lying is bad even if you are the linux kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: dirty cow and why lying is bad even if you are the linux kernel resource_label: primary resource_type: article resource_url: https://chao-tic.github.io/blog/2017/05/24/dirty-cow parent_primary_url: https://chao-tic.github.io/blog/2017/05/24/dirty-cow source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"dirty cow and why lying is bad even if you are the linux kernel\"](https://chao-tic.github.io/blog/2017/05/24/dirty-cow) [article] [cve-2016-5195] cves: cve-2016-5195 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: pro unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "1c5d44efcad2b600",
      "item_id": "15c58f8dc8793292",
      "slug": "2017-vulnerabilities-lpe-nday-2017-0103-arbitrary-kernel-write-in-sys-oabi-epoll-wait-primary-1b7b362a",
      "year": 2017,
      "title": "NDAY-2017-0103: Arbitrary kernel write in sys_oabi_epoll_wait",
      "item_title": "NDAY-2017-0103: Arbitrary kernel write in sys_oabi_epoll_wait",
      "authors": [
        "Zuk Avraham"
      ],
      "cves": [
        "CVE-2016-3857"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.zimperium.com/nday-2017-0103-arbitrary-kernel-write-in-sys_oabi_epoll_wait/",
      "primary_url": "https://blog.zimperium.com/nday-2017-0103-arbitrary-kernel-write-in-sys_oabi_epoll_wait/",
      "parent_primary_url": "https://blog.zimperium.com/nday-2017-0103-arbitrary-kernel-write-in-sys_oabi_epoll_wait/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-nday-2017-0103-arbitrary-kernel-write-in-sys-oabi-epoll-wait-primary-1b7b362a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# NDAY-2017-0103: Arbitrary kernel write in sys_oabi_epoll_wait record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: NDAY-2017-0103: Arbitrary kernel write in sys_oabi_epoll_wait resource_label: primary resource_type: article resource_url: https://blog.zimperium.com/nday-2017-0103-arbitrary-kernel-write-in-sys_oabi_epoll_wait/ parent_primary_url: https://blog.zimperium.com/nday-2017-0103-arbitrary-kernel-write-in-sys_oabi_epoll_wait/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"NDAY-2017-0103: Arbitrary kernel write in sys_oabi_epoll_wait\" by Zuk Avraham](https://blog.zimperium.com/nday-2017-0103-arbitrary-kernel-write-in-sys_oabi_epoll_wait/) [article] [CVE-2016-3857] cves: CVE-2016-3857 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; An",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.zimperium.com/nday-2017-0103-arbitrary-kernel-write-in-sys_oabi_epoll_wait/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.zimperium.com/nday-2017-0103-arbitrary-kernel-write-in-sys_oabi_epoll_wait/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2016-3857"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"NDAY-2017-0103: Arbitrary kernel write in sys_oabi_epoll_wait\" (CVE-2016-3857); URL type: article.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「NDAY-2017-0103: Arbitrary kernel write in sys_oabi_epoll_wait」（CVE-2016-3857）；URL 类型：article。",
      "source_markdown": "[2017: \"NDAY-2017-0103: Arbitrary kernel write in sys_oabi_epoll_wait\" by Zuk Avraham](https://blog.zimperium.com/nday-2017-0103-arbitrary-kernel-write-in-sys_oabi_epoll_wait/) [article] [CVE-2016-3857]",
      "search_text": "nday-2017-0103: arbitrary kernel write in sys_oabi_epoll_wait nday-2017-0103: arbitrary kernel write in sys_oabi_epoll_wait zuk avraham cve-2016-3857  vulnerabilities lpe lpe primary article https://blog.zimperium.com/nday-2017-0103-arbitrary-kernel-write-in-sys_oabi_epoll_wait/ vulnerabilities lpe article cve-2016-3857  lpe 2017 linux kernel lpe resource \"nday-2017-0103: arbitrary kernel write in sys_oabi_epoll_wait\" (cve-2016-3857); url type: article. 2017 年 linux 内核lpe资料：「nday-2017-0103: arbitrary kernel write in sys_oabi_epoll_wait」（cve-2016-3857）；url 类型：article。 # nday-2017-0103: arbitrary kernel write in sys_oabi_epoll_wait record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: nday-2017-0103: arbitrary kernel write in sys_oabi_epoll_wait resource_label: primary resource_type: article resource_url: https://blog.zimperium.com/nday-2017-0103-arbitrary-kernel-write-in-sys_oabi_epoll_wait/ parent_primary_url: https://blog.zimperium.com/nday-2017-0103-arbitrary-kernel-write-in-sys_oabi_epoll_wait/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"nday-2017-0103: arbitrary kernel write in sys_oabi_epoll_wait\" by zuk avraham](https://blog.zimperium.com/nday-2017-0103-arbitrary-kernel-write-in-sys_oabi_epoll_wait/) [article] [cve-2016-3857] cves: cve-2016-3857 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; an unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "764226523e2a0ae6",
      "item_id": "c7bf9ce09f9a6405",
      "slug": "2017-vulnerabilities-lpe-nday-2017-0106-elevation-of-privilege-in-nvidia-nvhost-vic-driver-primary-d5c0d902",
      "year": 2017,
      "title": "NDAY-2017-0106: Elevation of Privilege in NVIDIA nvhost-vic driver",
      "item_title": "NDAY-2017-0106: Elevation of Privilege in NVIDIA nvhost-vic driver",
      "authors": [
        "Zuk Avraham"
      ],
      "cves": [
        "CVE-2016-2434"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.zimperium.com/nday-2017-0106-elevation-of-privilege-in-nvidia-nvhost-vic-driver/",
      "primary_url": "https://blog.zimperium.com/nday-2017-0106-elevation-of-privilege-in-nvidia-nvhost-vic-driver/",
      "parent_primary_url": "https://blog.zimperium.com/nday-2017-0106-elevation-of-privilege-in-nvidia-nvhost-vic-driver/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-nday-2017-0106-elevation-of-privilege-in-nvidia-nvhost-vic-driver-primary-d5c0d902.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# NDAY-2017-0106: Elevation of Privilege in NVIDIA nvhost-vic driver record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: NDAY-2017-0106: Elevation of Privilege in NVIDIA nvhost-vic driver resource_label: primary resource_type: article resource_url: https://blog.zimperium.com/nday-2017-0106-elevation-of-privilege-in-nvidia-nvhost-vic-driver/ parent_primary_url: https://blog.zimperium.com/nday-2017-0106-elevation-of-privilege-in-nvidia-nvhost-vic-driver/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"NDAY-2017-0106: Elevation of Privilege in NVIDIA nvhost-vic driver\" by Zuk Avraham](https://blog.zimperium.com/nday-2017-0106-elevation-of-privilege-in-nvidia-nvhost-vic-driver/) [article] [CVE-2016-2434] cves: CVE-2016-2434 android_impact_status: unknown android_impact_reason: Linux kernel v",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.zimperium.com/nday-2017-0106-elevation-of-privilege-in-nvidia-nvhost-vic-driver/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.zimperium.com/nday-2017-0106-elevation-of-privilege-in-nvidia-nvhost-vic-driver/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2016-2434"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"NDAY-2017-0106: Elevation of Privilege in NVIDIA nvhost-vic driver\" (CVE-2016-2434); URL type: article.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「NDAY-2017-0106: Elevation of Privilege in NVIDIA nvhost-vic driver」（CVE-2016-2434）；URL 类型：article。",
      "source_markdown": "[2017: \"NDAY-2017-0106: Elevation of Privilege in NVIDIA nvhost-vic driver\" by Zuk Avraham](https://blog.zimperium.com/nday-2017-0106-elevation-of-privilege-in-nvidia-nvhost-vic-driver/) [article] [CVE-2016-2434]",
      "search_text": "nday-2017-0106: elevation of privilege in nvidia nvhost-vic driver nday-2017-0106: elevation of privilege in nvidia nvhost-vic driver zuk avraham cve-2016-2434  vulnerabilities lpe lpe primary article https://blog.zimperium.com/nday-2017-0106-elevation-of-privilege-in-nvidia-nvhost-vic-driver/ vulnerabilities lpe article cve-2016-2434  lpe 2017 linux kernel lpe resource \"nday-2017-0106: elevation of privilege in nvidia nvhost-vic driver\" (cve-2016-2434); url type: article. 2017 年 linux 内核lpe资料：「nday-2017-0106: elevation of privilege in nvidia nvhost-vic driver」（cve-2016-2434）；url 类型：article。 # nday-2017-0106: elevation of privilege in nvidia nvhost-vic driver record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: nday-2017-0106: elevation of privilege in nvidia nvhost-vic driver resource_label: primary resource_type: article resource_url: https://blog.zimperium.com/nday-2017-0106-elevation-of-privilege-in-nvidia-nvhost-vic-driver/ parent_primary_url: https://blog.zimperium.com/nday-2017-0106-elevation-of-privilege-in-nvidia-nvhost-vic-driver/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"nday-2017-0106: elevation of privilege in nvidia nvhost-vic driver\" by zuk avraham](https://blog.zimperium.com/nday-2017-0106-elevation-of-privilege-in-nvidia-nvhost-vic-driver/) [article] [cve-2016-2434] cves: cve-2016-2434 android_impact_status: unknown android_impact_reason: linux kernel v unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3546fb8f8411a6ca",
      "item_id": "ea960c480dae6d7e",
      "slug": "2017-vulnerabilities-lpe-pwn2own-2017-linux-kernel-privilege-escalation-analysis-primary-88b36d67",
      "year": 2017,
      "title": "PWN2OWN 2017 Linux kernel privilege escalation analysis",
      "item_title": "PWN2OWN 2017 Linux kernel privilege escalation analysis",
      "authors": [],
      "cves": [
        "CVE-2017-7184"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://zhuanlan.zhihu.com/p/26674557",
      "primary_url": "https://zhuanlan.zhihu.com/p/26674557",
      "parent_primary_url": "https://zhuanlan.zhihu.com/p/26674557",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-pwn2own-2017-linux-kernel-privilege-escalation-analysis-primary-88b36d67.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PWN2OWN 2017 Linux kernel privilege escalation analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: PWN2OWN 2017 Linux kernel privilege escalation analysis resource_label: primary resource_type: article resource_url: https://zhuanlan.zhihu.com/p/26674557 parent_primary_url: https://zhuanlan.zhihu.com/p/26674557 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"PWN2OWN 2017 Linux kernel privilege escalation analysis\"](https://zhuanlan.zhihu.com/p/26674557) [article] [CVE-2017-7184] cves: CVE-2017-7184 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_cod",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://zhuanlan.zhihu.com/p/26674557"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://zhuanlan.zhihu.com/p/26674557"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2017-7184"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"PWN2OWN 2017 Linux kernel privilege escalation analysis\" (CVE-2017-7184); URL type: article.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「PWN2OWN 2017 Linux kernel privilege escalation analysis」（CVE-2017-7184）；URL 类型：article。",
      "source_markdown": "[2017: \"PWN2OWN 2017 Linux kernel privilege escalation analysis\"](https://zhuanlan.zhihu.com/p/26674557) [article] [CVE-2017-7184]",
      "search_text": "pwn2own 2017 linux kernel privilege escalation analysis pwn2own 2017 linux kernel privilege escalation analysis  cve-2017-7184  vulnerabilities lpe lpe primary article https://zhuanlan.zhihu.com/p/26674557 vulnerabilities lpe article cve-2017-7184  lpe 2017 linux kernel lpe resource \"pwn2own 2017 linux kernel privilege escalation analysis\" (cve-2017-7184); url type: article. 2017 年 linux 内核lpe资料：「pwn2own 2017 linux kernel privilege escalation analysis」（cve-2017-7184）；url 类型：article。 # pwn2own 2017 linux kernel privilege escalation analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: pwn2own 2017 linux kernel privilege escalation analysis resource_label: primary resource_type: article resource_url: https://zhuanlan.zhihu.com/p/26674557 parent_primary_url: https://zhuanlan.zhihu.com/p/26674557 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"pwn2own 2017 linux kernel privilege escalation analysis\"](https://zhuanlan.zhihu.com/p/26674557) [article] [cve-2017-7184] cves: cve-2017-7184 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_cod unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "709d20895118cdf8",
      "item_id": "4aefea01ec78d654",
      "slug": "2017-vulnerabilities-lpe-exploiting-the-linux-kernel-via-packet-sockets-primary-4ab0707f",
      "year": 2017,
      "title": "Exploiting the Linux kernel via packet sockets",
      "item_title": "Exploiting the Linux kernel via packet sockets",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [
        "CVE-2017-7308"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2017/05/exploiting-linux-kernel-via-packet.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2017/05/exploiting-linux-kernel-via-packet.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2017/05/exploiting-linux-kernel-via-packet.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-exploiting-the-linux-kernel-via-packet-sockets-primary-4ab0707f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting the Linux kernel via packet sockets record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting the Linux kernel via packet sockets resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2017/05/exploiting-linux-kernel-via-packet.html parent_primary_url: https://googleprojectzero.blogspot.com/2017/05/exploiting-linux-kernel-via-packet.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"Exploiting the Linux kernel via packet sockets\" by Andrey Konovalov](https://googleprojectzero.blogspot.com/2017/05/exploiting-linux-kernel-via-packet.html) [article] [CVE-2017-7308] cves: CVE-2017-7308 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version a",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2017/05/exploiting-linux-kernel-via-packet.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2017/05/exploiting-linux-kernel-via-packet.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2017-7308"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"Exploiting the Linux kernel via packet sockets\" (CVE-2017-7308); URL type: article.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「Exploiting the Linux kernel via packet sockets」（CVE-2017-7308）；URL 类型：article。",
      "source_markdown": "[2017: \"Exploiting the Linux kernel via packet sockets\" by Andrey Konovalov](https://googleprojectzero.blogspot.com/2017/05/exploiting-linux-kernel-via-packet.html) [article] [CVE-2017-7308]",
      "search_text": "exploiting the linux kernel via packet sockets exploiting the linux kernel via packet sockets andrey konovalov cve-2017-7308  vulnerabilities lpe lpe primary article https://googleprojectzero.blogspot.com/2017/05/exploiting-linux-kernel-via-packet.html vulnerabilities lpe article cve-2017-7308  lpe 2017 linux kernel lpe resource \"exploiting the linux kernel via packet sockets\" (cve-2017-7308); url type: article. 2017 年 linux 内核lpe资料：「exploiting the linux kernel via packet sockets」（cve-2017-7308）；url 类型：article。 # exploiting the linux kernel via packet sockets record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting the linux kernel via packet sockets resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2017/05/exploiting-linux-kernel-via-packet.html parent_primary_url: https://googleprojectzero.blogspot.com/2017/05/exploiting-linux-kernel-via-packet.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"exploiting the linux kernel via packet sockets\" by andrey konovalov](https://googleprojectzero.blogspot.com/2017/05/exploiting-linux-kernel-via-packet.html) [article] [cve-2017-7308] cves: cve-2017-7308 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version a unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "31bf9195adbd6035",
      "item_id": "48f98f4ad7eeb1bf",
      "slug": "2017-vulnerabilities-lpe-solving-a-post-exploitation-issue-with-cve-2017-7308-primary-dd3a7b58",
      "year": 2017,
      "title": "Solving a post exploitation issue with CVE-2017-7308",
      "item_title": "Solving a post exploitation issue with CVE-2017-7308",
      "authors": [],
      "cves": [
        "CVE-2017-7308"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.coresecurity.com/core-labs/articles/solving-post-exploitation-issue-cve-2017-7308",
      "primary_url": "https://www.coresecurity.com/core-labs/articles/solving-post-exploitation-issue-cve-2017-7308",
      "parent_primary_url": "https://www.coresecurity.com/core-labs/articles/solving-post-exploitation-issue-cve-2017-7308",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-solving-a-post-exploitation-issue-with-cve-2017-7308-primary-dd3a7b58.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Solving a post exploitation issue with CVE-2017-7308 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Solving a post exploitation issue with CVE-2017-7308 resource_label: primary resource_type: article resource_url: https://www.coresecurity.com/core-labs/articles/solving-post-exploitation-issue-cve-2017-7308 parent_primary_url: https://www.coresecurity.com/core-labs/articles/solving-post-exploitation-issue-cve-2017-7308 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"Solving a post exploitation issue with CVE-2017-7308\"](https://www.coresecurity.com/core-labs/articles/solving-post-exploitation-issue-cve-2017-7308) [article] [CVE-2017-7308] cves: CVE-2017-7308 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact nee",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.coresecurity.com/core-labs/articles/solving-post-exploitation-issue-cve-2017-7308"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.coresecurity.com/core-labs/articles/solving-post-exploitation-issue-cve-2017-7308"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2017-7308"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"Solving a post exploitation issue with CVE-2017-7308\" (CVE-2017-7308); URL type: article.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「Solving a post exploitation issue with CVE-2017-7308」（CVE-2017-7308）；URL 类型：article。",
      "source_markdown": "[2017: \"Solving a post exploitation issue with CVE-2017-7308\"](https://www.coresecurity.com/core-labs/articles/solving-post-exploitation-issue-cve-2017-7308) [article] [CVE-2017-7308]",
      "search_text": "solving a post exploitation issue with cve-2017-7308 solving a post exploitation issue with cve-2017-7308  cve-2017-7308  vulnerabilities lpe lpe primary article https://www.coresecurity.com/core-labs/articles/solving-post-exploitation-issue-cve-2017-7308 vulnerabilities lpe article cve-2017-7308  lpe 2017 linux kernel lpe resource \"solving a post exploitation issue with cve-2017-7308\" (cve-2017-7308); url type: article. 2017 年 linux 内核lpe资料：「solving a post exploitation issue with cve-2017-7308」（cve-2017-7308）；url 类型：article。 # solving a post exploitation issue with cve-2017-7308 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: solving a post exploitation issue with cve-2017-7308 resource_label: primary resource_type: article resource_url: https://www.coresecurity.com/core-labs/articles/solving-post-exploitation-issue-cve-2017-7308 parent_primary_url: https://www.coresecurity.com/core-labs/articles/solving-post-exploitation-issue-cve-2017-7308 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"solving a post exploitation issue with cve-2017-7308\"](https://www.coresecurity.com/core-labs/articles/solving-post-exploitation-issue-cve-2017-7308) [article] [cve-2017-7308] cves: cve-2017-7308 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact nee unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "330fdf16a1378bd0",
      "item_id": "815a728d5c4b3075",
      "slug": "2017-vulnerabilities-lpe-nday-2017-0105-elevation-of-privilege-vulnerability-in-msm-thermal-drive-primary-60ff",
      "year": 2017,
      "title": "NDAY-2017-0105: Elevation of Privilege Vulnerability in MSM Thermal Drive",
      "item_title": "NDAY-2017-0105: Elevation of Privilege Vulnerability in MSM Thermal Drive",
      "authors": [
        "Zuk Avraham"
      ],
      "cves": [
        "CVE-2016-2411"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.zimperium.com/nday-2017-0105-elevation-of-privilege-vulnerability-in-msm-thermal-driver/",
      "primary_url": "https://blog.zimperium.com/nday-2017-0105-elevation-of-privilege-vulnerability-in-msm-thermal-driver/",
      "parent_primary_url": "https://blog.zimperium.com/nday-2017-0105-elevation-of-privilege-vulnerability-in-msm-thermal-driver/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-nday-2017-0105-elevation-of-privilege-vulnerability-in-msm-thermal-drive-primary-60ff.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# NDAY-2017-0105: Elevation of Privilege Vulnerability in MSM Thermal Drive record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: NDAY-2017-0105: Elevation of Privilege Vulnerability in MSM Thermal Drive resource_label: primary resource_type: article resource_url: https://blog.zimperium.com/nday-2017-0105-elevation-of-privilege-vulnerability-in-msm-thermal-driver/ parent_primary_url: https://blog.zimperium.com/nday-2017-0105-elevation-of-privilege-vulnerability-in-msm-thermal-driver/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"NDAY-2017-0105: Elevation of Privilege Vulnerability in MSM Thermal Drive\" by Zuk Avraham](https://blog.zimperium.com/nday-2017-0105-elevation-of-privilege-vulnerability-in-msm-thermal-driver/) [article] [CVE-2016-2411] cves: CVE-2016-2411 android_impact_status: ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.zimperium.com/nday-2017-0105-elevation-of-privilege-vulnerability-in-msm-thermal-driver/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.zimperium.com/nday-2017-0105-elevation-of-privilege-vulnerability-in-msm-thermal-driver/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions Qualcomm/Adreno Android SoC components",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2016-2411"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"NDAY-2017-0105: Elevation of Privilege Vulnerability in MSM Thermal Drive\" (CVE-2016-2411); URL type: article. Android impact: possible.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「NDAY-2017-0105: Elevation of Privilege Vulnerability in MSM Thermal Drive」（CVE-2016-2411）；URL 类型：article。 Android 影响：possible。",
      "source_markdown": "[2017: \"NDAY-2017-0105: Elevation of Privilege Vulnerability in MSM Thermal Drive\" by Zuk Avraham](https://blog.zimperium.com/nday-2017-0105-elevation-of-privilege-vulnerability-in-msm-thermal-driver/) [article] [CVE-2016-2411]",
      "search_text": "nday-2017-0105: elevation of privilege vulnerability in msm thermal drive nday-2017-0105: elevation of privilege vulnerability in msm thermal drive zuk avraham cve-2016-2411  vulnerabilities lpe lpe primary article https://blog.zimperium.com/nday-2017-0105-elevation-of-privilege-vulnerability-in-msm-thermal-driver/ vulnerabilities lpe article cve-2016-2411  lpe 2017 linux kernel lpe resource \"nday-2017-0105: elevation of privilege vulnerability in msm thermal drive\" (cve-2016-2411); url type: article. android impact: possible. 2017 年 linux 内核lpe资料：「nday-2017-0105: elevation of privilege vulnerability in msm thermal drive」（cve-2016-2411）；url 类型：article。 android 影响：possible。 # nday-2017-0105: elevation of privilege vulnerability in msm thermal drive record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: nday-2017-0105: elevation of privilege vulnerability in msm thermal drive resource_label: primary resource_type: article resource_url: https://blog.zimperium.com/nday-2017-0105-elevation-of-privilege-vulnerability-in-msm-thermal-driver/ parent_primary_url: https://blog.zimperium.com/nday-2017-0105-elevation-of-privilege-vulnerability-in-msm-thermal-driver/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"nday-2017-0105: elevation of privilege vulnerability in msm thermal drive\" by zuk avraham](https://blog.zimperium.com/nday-2017-0105-elevation-of-privilege-vulnerability-in-msm-thermal-driver/) [article] [cve-2016-2411] cves: cve-2016-2411 android_impact_status:  possible mentions qualcomm/adreno android soc components no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "611312f7d4ad7ecd",
      "item_id": "d835105433b5131c",
      "slug": "2017-vulnerabilities-lpe-nday-2017-0102-elevation-of-privilege-vulnerability-in-nvidia-video-driver-primary-0f",
      "year": 2017,
      "title": "NDAY-2017-0102: Elevation of Privilege Vulnerability in NVIDIA Video Driver",
      "item_title": "NDAY-2017-0102: Elevation of Privilege Vulnerability in NVIDIA Video Driver",
      "authors": [
        "Zuk Avraham"
      ],
      "cves": [
        "CVE-2016-2435"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.zimperium.com/nday-2017-0102-elevation-of-privilege-vulnerability-in-nvidia-video-driver/",
      "primary_url": "https://blog.zimperium.com/nday-2017-0102-elevation-of-privilege-vulnerability-in-nvidia-video-driver/",
      "parent_primary_url": "https://blog.zimperium.com/nday-2017-0102-elevation-of-privilege-vulnerability-in-nvidia-video-driver/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-nday-2017-0102-elevation-of-privilege-vulnerability-in-nvidia-video-driver-primary-0f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# NDAY-2017-0102: Elevation of Privilege Vulnerability in NVIDIA Video Driver record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: NDAY-2017-0102: Elevation of Privilege Vulnerability in NVIDIA Video Driver resource_label: primary resource_type: article resource_url: https://blog.zimperium.com/nday-2017-0102-elevation-of-privilege-vulnerability-in-nvidia-video-driver/ parent_primary_url: https://blog.zimperium.com/nday-2017-0102-elevation-of-privilege-vulnerability-in-nvidia-video-driver/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"NDAY-2017-0102: Elevation of Privilege Vulnerability in NVIDIA Video Driver\" by Zuk Avraham](https://blog.zimperium.com/nday-2017-0102-elevation-of-privilege-vulnerability-in-nvidia-video-driver/) [article] [CVE-2016-2435] cves: CVE-2016-2435 android_impact",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.zimperium.com/nday-2017-0102-elevation-of-privilege-vulnerability-in-nvidia-video-driver/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.zimperium.com/nday-2017-0102-elevation-of-privilege-vulnerability-in-nvidia-video-driver/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2016-2435"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"NDAY-2017-0102: Elevation of Privilege Vulnerability in NVIDIA Video Driver\" (CVE-2016-2435); URL type: article.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「NDAY-2017-0102: Elevation of Privilege Vulnerability in NVIDIA Video Driver」（CVE-2016-2435）；URL 类型：article。",
      "source_markdown": "[2017: \"NDAY-2017-0102: Elevation of Privilege Vulnerability in NVIDIA Video Driver\" by Zuk Avraham](https://blog.zimperium.com/nday-2017-0102-elevation-of-privilege-vulnerability-in-nvidia-video-driver/) [article] [CVE-2016-2435]",
      "search_text": "nday-2017-0102: elevation of privilege vulnerability in nvidia video driver nday-2017-0102: elevation of privilege vulnerability in nvidia video driver zuk avraham cve-2016-2435  vulnerabilities lpe lpe primary article https://blog.zimperium.com/nday-2017-0102-elevation-of-privilege-vulnerability-in-nvidia-video-driver/ vulnerabilities lpe article cve-2016-2435  lpe 2017 linux kernel lpe resource \"nday-2017-0102: elevation of privilege vulnerability in nvidia video driver\" (cve-2016-2435); url type: article. 2017 年 linux 内核lpe资料：「nday-2017-0102: elevation of privilege vulnerability in nvidia video driver」（cve-2016-2435）；url 类型：article。 # nday-2017-0102: elevation of privilege vulnerability in nvidia video driver record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: nday-2017-0102: elevation of privilege vulnerability in nvidia video driver resource_label: primary resource_type: article resource_url: https://blog.zimperium.com/nday-2017-0102-elevation-of-privilege-vulnerability-in-nvidia-video-driver/ parent_primary_url: https://blog.zimperium.com/nday-2017-0102-elevation-of-privilege-vulnerability-in-nvidia-video-driver/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"nday-2017-0102: elevation of privilege vulnerability in nvidia video driver\" by zuk avraham](https://blog.zimperium.com/nday-2017-0102-elevation-of-privilege-vulnerability-in-nvidia-video-driver/) [article] [cve-2016-2435] cves: cve-2016-2435 android_impact unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "03564a771653f468",
      "item_id": "1d6c833c561ac106",
      "slug": "2017-vulnerabilities-lpe-cve-2017-6074-exploiting-a-double-free-in-the-linux-kernel-dccp-sockets-primary-0654b",
      "year": 2017,
      "title": "CVE-2017-6074: Exploiting a double-free in the Linux kernel DCCP sockets",
      "item_title": "CVE-2017-6074: Exploiting a double-free in the Linux kernel DCCP sockets",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [
        "CVE-2017-6074"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://xairy.io/articles/cve-2017-6074",
      "primary_url": "https://xairy.io/articles/cve-2017-6074",
      "parent_primary_url": "https://xairy.io/articles/cve-2017-6074",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2017-vulnerabilities-lpe-cve-2017-6074-exploiting-a-double-free-in-the-linux-kernel-dccp-sockets-primary-0654b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2017-6074: Exploiting a double-free in the Linux kernel DCCP sockets record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2017-6074: Exploiting a double-free in the Linux kernel DCCP sockets resource_label: primary resource_type: article resource_url: https://xairy.io/articles/cve-2017-6074 parent_primary_url: https://xairy.io/articles/cve-2017-6074 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"CVE-2017-6074: Exploiting a double-free in the Linux kernel DCCP sockets\" by Andrey Konovalov](https://xairy.io/articles/cve-2017-6074) [article] [CVE-2017-6074] cves: CVE-2017-6074 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_rea",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://xairy.io/articles/cve-2017-6074"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://xairy.io/articles/cve-2017-6074"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2017-6074"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2017 Linux kernel LPE resource \"CVE-2017-6074: Exploiting a double-free in the Linux kernel DCCP sockets\" (CVE-2017-6074); URL type: article.",
      "summary_zh": "2017 年 Linux 内核LPE资料：「CVE-2017-6074: Exploiting a double-free in the Linux kernel DCCP sockets」（CVE-2017-6074）；URL 类型：article。",
      "source_markdown": "[2017: \"CVE-2017-6074: Exploiting a double-free in the Linux kernel DCCP sockets\" by Andrey Konovalov](https://xairy.io/articles/cve-2017-6074) [article] [CVE-2017-6074]",
      "search_text": "cve-2017-6074: exploiting a double-free in the linux kernel dccp sockets cve-2017-6074: exploiting a double-free in the linux kernel dccp sockets andrey konovalov cve-2017-6074  vulnerabilities lpe lpe primary article https://xairy.io/articles/cve-2017-6074 vulnerabilities lpe article cve-2017-6074  lpe 2017 linux kernel lpe resource \"cve-2017-6074: exploiting a double-free in the linux kernel dccp sockets\" (cve-2017-6074); url type: article. 2017 年 linux 内核lpe资料：「cve-2017-6074: exploiting a double-free in the linux kernel dccp sockets」（cve-2017-6074）；url 类型：article。 # cve-2017-6074: exploiting a double-free in the linux kernel dccp sockets record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2017-6074: exploiting a double-free in the linux kernel dccp sockets resource_label: primary resource_type: article resource_url: https://xairy.io/articles/cve-2017-6074 parent_primary_url: https://xairy.io/articles/cve-2017-6074 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2017: \"cve-2017-6074: exploiting a double-free in the linux kernel dccp sockets\" by andrey konovalov](https://xairy.io/articles/cve-2017-6074) [article] [cve-2017-6074] cves: cve-2017-6074 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_rea unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d1e2d373fad30a3e",
      "item_id": "6991ec6dbbeb2a46",
      "slug": "2016-vulnerabilities-lpe-cve-2016-8655-linux-af-packet-c-race-condition-local-root-primary-053022d9",
      "year": 2016,
      "title": "CVE-2016-8655 Linux af_packet.c race condition (local root)",
      "item_title": "CVE-2016-8655 Linux af_packet.c race condition (local root)",
      "authors": [
        "Philip Pettersson"
      ],
      "cves": [
        "CVE-2016-8655"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "announcement",
      "resource_url": "http://seclists.org/oss-sec/2016/q4/607",
      "primary_url": "http://seclists.org/oss-sec/2016/q4/607",
      "parent_primary_url": "http://seclists.org/oss-sec/2016/q4/607",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2016-vulnerabilities-lpe-cve-2016-8655-linux-af-packet-c-race-condition-local-root-primary-053022d9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2016-8655 Linux af_packet.c race condition (local root) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2016-8655 Linux af_packet.c race condition (local root) resource_label: primary resource_type: announcement resource_url: http://seclists.org/oss-sec/2016/q4/607 parent_primary_url: http://seclists.org/oss-sec/2016/q4/607 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"CVE-2016-8655 Linux af_packet.c race condition (local root)\" by Philip Pettersson](http://seclists.org/oss-sec/2016/q4/607) [announcement] [CVE-2016-8655] cves: CVE-2016-8655 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices ",
      "link_types": [
        "announcement"
      ],
      "links": [
        {
          "label": "primary",
          "type": "announcement",
          "url": "http://seclists.org/oss-sec/2016/q4/607"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "announcement",
            "url": "http://seclists.org/oss-sec/2016/q4/607"
          }
        ]
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "announcement",
        "CVE-2016-8655"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2016 Linux kernel LPE resource \"CVE-2016-8655 Linux af_packet.c race condition (local root)\" (CVE-2016-8655); URL type: announcement.",
      "summary_zh": "2016 年 Linux 内核LPE资料：「CVE-2016-8655 Linux af_packet.c race condition (local root)」（CVE-2016-8655）；URL 类型：announcement。",
      "source_markdown": "[2016: \"CVE-2016-8655 Linux af_packet.c race condition (local root)\" by Philip Pettersson](http://seclists.org/oss-sec/2016/q4/607) [announcement] [CVE-2016-8655]",
      "search_text": "cve-2016-8655 linux af_packet.c race condition (local root) cve-2016-8655 linux af_packet.c race condition (local root) philip pettersson cve-2016-8655  vulnerabilities lpe lpe primary announcement http://seclists.org/oss-sec/2016/q4/607 vulnerabilities lpe announcement cve-2016-8655  lpe 2016 linux kernel lpe resource \"cve-2016-8655 linux af_packet.c race condition (local root)\" (cve-2016-8655); url type: announcement. 2016 年 linux 内核lpe资料：「cve-2016-8655 linux af_packet.c race condition (local root)」（cve-2016-8655）；url 类型：announcement。 # cve-2016-8655 linux af_packet.c race condition (local root) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2016-8655 linux af_packet.c race condition (local root) resource_label: primary resource_type: announcement resource_url: http://seclists.org/oss-sec/2016/q4/607 parent_primary_url: http://seclists.org/oss-sec/2016/q4/607 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"cve-2016-8655 linux af_packet.c race condition (local root)\" by philip pettersson](http://seclists.org/oss-sec/2016/q4/607) [announcement] [cve-2016-8655] cves: cve-2016-8655 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "134b7d337abe72ef",
      "item_id": "2d37ffdde63107d9",
      "slug": "2016-vulnerabilities-lpe-rooting-every-android-from-extension-to-exploitation-primary-65a71634",
      "year": 2016,
      "title": "Rooting Every Android From Extension To Exploitation",
      "item_title": "Rooting Every Android From Extension To Exploitation",
      "authors": [
        "Di Shen",
        "James Fang at Black Hat"
      ],
      "cves": [
        "CVE-2015-0570",
        "CVE-2016-0820",
        "CVE-2016-2475",
        "CVE-2016-8453"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation",
      "primary_url": "https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation",
      "parent_primary_url": "https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2016-vulnerabilities-lpe-rooting-every-android-from-extension-to-exploitation-primary-65a71634.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Rooting Every Android From Extension To Exploitation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Rooting Every Android From Extension To Exploitation resource_label: primary resource_type: slides resource_url: https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation parent_primary_url: https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"Rooting Every Android From Extension To Exploitation\" by Di Shen and James Fang at Black Hat](https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation) [slides] [[article](https://www.blackhat.com/docs/eu-16/materials/eu-16-Shen-Rooting-Every-Android-From-Extension-To-Exploitation-wp.pdf)] [CVE-2015-0570, CVE-2016",
      "link_types": [
        "slides",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation"
        },
        {
          "label": "article",
          "type": "article",
          "url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Shen-Rooting-Every-Android-From-Extension-To-Exploitation-wp.pdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "article",
            "type": "article",
            "url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Shen-Rooting-Every-Android-From-Extension-To-Exploitation-wp.pdf"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "This resource discusses multiple vulnerabilities affecting Android devices, focusing on privilege escalation.",
      "summary_zh": "该资源讨论了影响Android设备的多个漏洞，重点是特权提升。",
      "source_markdown": "[2016: \"Rooting Every Android From Extension To Exploitation\" by Di Shen and James Fang at Black Hat](https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation) [slides] [[article](https://www.blackhat.com/docs/eu-16/materials/eu-16-Shen-Rooting-Every-Android-From-Extension-To-Exploitation-wp.pdf)] [CVE-2015-0570, CVE-2016-0820, CVE-2016-2475, CVE-2016-8453]",
      "search_text": "rooting every android from extension to exploitation rooting every android from extension to exploitation di shen james fang at black hat cve-2015-0570 cve-2016-0820 cve-2016-2475 cve-2016-8453  vulnerabilities lpe lpe primary slides https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation lpe android vulnerability  research this resource discusses multiple vulnerabilities affecting android devices, focusing on privilege escalation. 该资源讨论了影响android设备的多个漏洞，重点是特权提升。 # rooting every android from extension to exploitation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: rooting every android from extension to exploitation resource_label: primary resource_type: slides resource_url: https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation parent_primary_url: https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"rooting every android from extension to exploitation\" by di shen and james fang at black hat](https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation) [slides] [[article](https://www.blackhat.com/docs/eu-16/materials/eu-16-shen-rooting-every-android-from-extension-to-exploitation-wp.pdf)] [cve-2015-0570, cve-2016 yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   has-poc poc proof-of-concept"
    },
    {
      "id": "8327a28b89a3182b",
      "item_id": "2d37ffdde63107d9",
      "slug": "2016-vulnerabilities-lpe-rooting-every-android-from-extension-to-exploitation-article-6f957e18",
      "year": 2016,
      "title": "Rooting Every Android From Extension To Exploitation · article",
      "item_title": "Rooting Every Android From Extension To Exploitation",
      "authors": [
        "Di Shen",
        "James Fang at Black Hat"
      ],
      "cves": [
        "CVE-2015-0570",
        "CVE-2016-0820",
        "CVE-2016-2475",
        "CVE-2016-8453"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "article",
      "resource_type": "article",
      "resource_url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Shen-Rooting-Every-Android-From-Extension-To-Exploitation-wp.pdf",
      "primary_url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Shen-Rooting-Every-Android-From-Extension-To-Exploitation-wp.pdf",
      "parent_primary_url": "https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2016-vulnerabilities-lpe-rooting-every-android-from-extension-to-exploitation-article-6f957e18.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Rooting Every Android From Extension To Exploitation · article record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Rooting Every Android From Extension To Exploitation resource_label: article resource_type: article resource_url: https://www.blackhat.com/docs/eu-16/materials/eu-16-Shen-Rooting-Every-Android-From-Extension-To-Exploitation-wp.pdf parent_primary_url: https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"Rooting Every Android From Extension To Exploitation\" by Di Shen and James Fang at Black Hat](https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation) [slides] [[article](https://www.blackhat.com/docs/eu-16/materials/eu-16-Shen-Rooting-Every-Android-From-Extension-To-Ex",
      "link_types": [
        "slides",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation"
        },
        {
          "label": "article",
          "type": "article",
          "url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Shen-Rooting-Every-Android-From-Extension-To-Exploitation-wp.pdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "article",
            "type": "article",
            "url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Shen-Rooting-Every-Android-From-Extension-To-Exploitation-wp.pdf"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "An article detailing vulnerabilities in Android that allow for privilege escalation.",
      "summary_zh": "一篇详细介绍Android中允许特权提升的漏洞的文章。",
      "source_markdown": "[2016: \"Rooting Every Android From Extension To Exploitation\" by Di Shen and James Fang at Black Hat](https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation) [slides] [[article](https://www.blackhat.com/docs/eu-16/materials/eu-16-Shen-Rooting-Every-Android-From-Extension-To-Exploitation-wp.pdf)] [CVE-2015-0570, CVE-2016-0820, CVE-2016-2475, CVE-2016-8453]",
      "search_text": "rooting every android from extension to exploitation · article rooting every android from extension to exploitation di shen james fang at black hat cve-2015-0570 cve-2016-0820 cve-2016-2475 cve-2016-8453  vulnerabilities lpe lpe article article https://www.blackhat.com/docs/eu-16/materials/eu-16-shen-rooting-every-android-from-extension-to-exploitation-wp.pdf lpe android vulnerability  research an article detailing vulnerabilities in android that allow for privilege escalation. 一篇详细介绍android中允许特权提升的漏洞的文章。 # rooting every android from extension to exploitation · article record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: rooting every android from extension to exploitation resource_label: article resource_type: article resource_url: https://www.blackhat.com/docs/eu-16/materials/eu-16-shen-rooting-every-android-from-extension-to-exploitation-wp.pdf parent_primary_url: https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"rooting every android from extension to exploitation\" by di shen and james fang at black hat](https://speakerdeck.com/retme7/rooting-every-android-from-extension-to-exploitation) [slides] [[article](https://www.blackhat.com/docs/eu-16/materials/eu-16-shen-rooting-every-android-from-extension-to-ex yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   has-poc poc proof-of-concept"
    },
    {
      "id": "0fa2448c7adaa863",
      "item_id": "60acd4c4e1dafbfa",
      "slug": "2016-vulnerabilities-lpe-talk-is-cheap-show-me-the-code-primary-c8bf9a3c",
      "year": 2016,
      "title": "Talk is Cheap, Show Me the Code",
      "item_title": "Talk is Cheap, Show Me the Code",
      "authors": [
        "James Fang",
        "Di Shen",
        "Wen Niu"
      ],
      "cves": [
        "CVE-2015-1805"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://speakerdeck.com/retme7/talk-is-cheap-show-me-the-code",
      "primary_url": "https://speakerdeck.com/retme7/talk-is-cheap-show-me-the-code",
      "parent_primary_url": "https://speakerdeck.com/retme7/talk-is-cheap-show-me-the-code",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2016-vulnerabilities-lpe-talk-is-cheap-show-me-the-code-primary-c8bf9a3c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Talk is Cheap, Show Me the Code record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Talk is Cheap, Show Me the Code resource_label: primary resource_type: slides resource_url: https://speakerdeck.com/retme7/talk-is-cheap-show-me-the-code parent_primary_url: https://speakerdeck.com/retme7/talk-is-cheap-show-me-the-code source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"Talk is Cheap, Show Me the Code\" by James Fang, Di Shen and Wen Niu](https://speakerdeck.com/retme7/talk-is-cheap-show-me-the-code) [slides] [CVE-2015-1805] cves: CVE-2015-1805 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://speakerdeck.com/retme7/talk-is-cheap-show-me-the-code"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://speakerdeck.com/retme7/talk-is-cheap-show-me-the-code"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://speakerdeck.com/retme7/talk-is-cheap-show-me-the-code"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "Slides presenting a vulnerability in the Linux kernel that allows privilege escalation.",
      "summary_zh": "展示Linux内核中允许特权提升的漏洞的幻灯片。",
      "source_markdown": "[2016: \"Talk is Cheap, Show Me the Code\" by James Fang, Di Shen and Wen Niu](https://speakerdeck.com/retme7/talk-is-cheap-show-me-the-code) [slides] [CVE-2015-1805]",
      "search_text": "talk is cheap, show me the code talk is cheap, show me the code james fang di shen wen niu cve-2015-1805  vulnerabilities lpe lpe primary slides https://speakerdeck.com/retme7/talk-is-cheap-show-me-the-code lpe vulnerability  research slides presenting a vulnerability in the linux kernel that allows privilege escalation. 展示linux内核中允许特权提升的漏洞的幻灯片。 # talk is cheap, show me the code record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: talk is cheap, show me the code resource_label: primary resource_type: slides resource_url: https://speakerdeck.com/retme7/talk-is-cheap-show-me-the-code parent_primary_url: https://speakerdeck.com/retme7/talk-is-cheap-show-me-the-code source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"talk is cheap, show me the code\" by james fang, di shen and wen niu](https://speakerdeck.com/retme7/talk-is-cheap-show-me-the-code) [slides] [cve-2015-1805] cves: cve-2015-1805 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "cbaecaf8d02aec7f",
      "item_id": "93bc02c04aaf0973",
      "slug": "2016-vulnerabilities-lpe-cve-2016-3873-arbitrary-kernel-write-in-nexus-9-primary-e805a33f",
      "year": 2016,
      "title": "CVE-2016-3873: Arbitrary Kernel Write in Nexus 9",
      "item_title": "CVE-2016-3873: Arbitrary Kernel Write in Nexus 9",
      "authors": [
        "Sagi Kedmi"
      ],
      "cves": [
        "CVE-2016-3873"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://sagi.io/2016/09/cve-2016-3873-arbitrary-kernel-write-in-nexus-9/",
      "primary_url": "https://sagi.io/2016/09/cve-2016-3873-arbitrary-kernel-write-in-nexus-9/",
      "parent_primary_url": "https://sagi.io/2016/09/cve-2016-3873-arbitrary-kernel-write-in-nexus-9/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2016-vulnerabilities-lpe-cve-2016-3873-arbitrary-kernel-write-in-nexus-9-primary-e805a33f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2016-3873: Arbitrary Kernel Write in Nexus 9 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2016-3873: Arbitrary Kernel Write in Nexus 9 resource_label: primary resource_type: article resource_url: https://sagi.io/2016/09/cve-2016-3873-arbitrary-kernel-write-in-nexus-9/ parent_primary_url: https://sagi.io/2016/09/cve-2016-3873-arbitrary-kernel-write-in-nexus-9/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"CVE-2016-3873: Arbitrary Kernel Write in Nexus 9\" by Sagi Kedmi](https://sagi.io/2016/09/cve-2016-3873-arbitrary-kernel-write-in-nexus-9/) [article] [CVE-2016-3873] cves: CVE-2016-3873 android_impact_status: yes android_impact_reason: mentions Nexus devices ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_cod",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://sagi.io/2016/09/cve-2016-3873-arbitrary-kernel-write-in-nexus-9/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://sagi.io/2016/09/cve-2016-3873-arbitrary-kernel-write-in-nexus-9/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Nexus devices",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "An article on a specific arbitrary kernel write vulnerability in Nexus 9.",
      "summary_zh": "关于Nexus 9中一个特定的任意内核写入漏洞的文章。",
      "source_markdown": "[2016: \"CVE-2016-3873: Arbitrary Kernel Write in Nexus 9\" by Sagi Kedmi](https://sagi.io/2016/09/cve-2016-3873-arbitrary-kernel-write-in-nexus-9/) [article] [CVE-2016-3873]",
      "search_text": "cve-2016-3873: arbitrary kernel write in nexus 9 cve-2016-3873: arbitrary kernel write in nexus 9 sagi kedmi cve-2016-3873  vulnerabilities lpe lpe primary article https://sagi.io/2016/09/cve-2016-3873-arbitrary-kernel-write-in-nexus-9/ lpe vulnerability  research an article on a specific arbitrary kernel write vulnerability in nexus 9. 关于nexus 9中一个特定的任意内核写入漏洞的文章。 # cve-2016-3873: arbitrary kernel write in nexus 9 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2016-3873: arbitrary kernel write in nexus 9 resource_label: primary resource_type: article resource_url: https://sagi.io/2016/09/cve-2016-3873-arbitrary-kernel-write-in-nexus-9/ parent_primary_url: https://sagi.io/2016/09/cve-2016-3873-arbitrary-kernel-write-in-nexus-9/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"cve-2016-3873: arbitrary kernel write in nexus 9\" by sagi kedmi](https://sagi.io/2016/09/cve-2016-3873-arbitrary-kernel-write-in-nexus-9/) [article] [cve-2016-3873] cves: cve-2016-3873 android_impact_status: yes android_impact_reason: mentions nexus devices ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_cod yes mentions nexus devices no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "cffcca10eb737799",
      "item_id": "60074727f9517980",
      "slug": "2016-vulnerabilities-lpe-exploiting-recursion-in-the-linux-kernel-primary-a958661c",
      "year": 2016,
      "title": "Exploiting Recursion in the Linux Kernel",
      "item_title": "Exploiting Recursion in the Linux Kernel",
      "authors": [
        "Jann Horn"
      ],
      "cves": [
        "CVE-2016-1583"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.de/2016/06/exploiting-recursion-in-linux-kernel_20.html",
      "primary_url": "https://googleprojectzero.blogspot.de/2016/06/exploiting-recursion-in-linux-kernel_20.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.de/2016/06/exploiting-recursion-in-linux-kernel_20.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2016-vulnerabilities-lpe-exploiting-recursion-in-the-linux-kernel-primary-a958661c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting Recursion in the Linux Kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting Recursion in the Linux Kernel resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.de/2016/06/exploiting-recursion-in-linux-kernel_20.html parent_primary_url: https://googleprojectzero.blogspot.de/2016/06/exploiting-recursion-in-linux-kernel_20.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"Exploiting Recursion in the Linux Kernel\" by Jann Horn](https://googleprojectzero.blogspot.de/2016/06/exploiting-recursion-in-linux-kernel_20.html) [article] [CVE-2016-1583] cves: CVE-2016-1583 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-bac",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.de/2016/06/exploiting-recursion-in-linux-kernel_20.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.de/2016/06/exploiting-recursion-in-linux-kernel_20.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "This article explores the exploitation of recursion vulnerabilities in the Linux kernel.",
      "summary_zh": "本文探讨了Linux内核中递归漏洞的利用。",
      "source_markdown": "[2016: \"Exploiting Recursion in the Linux Kernel\" by Jann Horn](https://googleprojectzero.blogspot.de/2016/06/exploiting-recursion-in-linux-kernel_20.html) [article] [CVE-2016-1583]",
      "search_text": "exploiting recursion in the linux kernel exploiting recursion in the linux kernel jann horn cve-2016-1583  vulnerabilities lpe lpe primary article https://googleprojectzero.blogspot.de/2016/06/exploiting-recursion-in-linux-kernel_20.html lpe vulnerability  research this article explores the exploitation of recursion vulnerabilities in the linux kernel. 本文探讨了linux内核中递归漏洞的利用。 # exploiting recursion in the linux kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting recursion in the linux kernel resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.de/2016/06/exploiting-recursion-in-linux-kernel_20.html parent_primary_url: https://googleprojectzero.blogspot.de/2016/06/exploiting-recursion-in-linux-kernel_20.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"exploiting recursion in the linux kernel\" by jann horn](https://googleprojectzero.blogspot.de/2016/06/exploiting-recursion-in-linux-kernel_20.html) [article] [cve-2016-1583] cves: cve-2016-1583 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-bac unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "bdc134494a98fe24",
      "item_id": "9b2f9fe8d7ad8767",
      "slug": "2016-vulnerabilities-lpe-analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728-primary-15e84",
      "year": 2016,
      "title": "ANALYSIS AND EXPLOITATION OF A LINUX KERNEL VULNERABILITY (CVE-2016-0728)",
      "item_title": "ANALYSIS AND EXPLOITATION OF A LINUX KERNEL VULNERABILITY (CVE-2016-0728)",
      "authors": [
        "Perception Point Research Team"
      ],
      "cves": [
        "CVE-2016-0728"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://perception-point.io/2016/01/14/analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728/",
      "primary_url": "http://perception-point.io/2016/01/14/analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728/",
      "parent_primary_url": "http://perception-point.io/2016/01/14/analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2016-vulnerabilities-lpe-analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728-primary-15e84.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ANALYSIS AND EXPLOITATION OF A LINUX KERNEL VULNERABILITY (CVE-2016-0728) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: ANALYSIS AND EXPLOITATION OF A LINUX KERNEL VULNERABILITY (CVE-2016-0728) resource_label: primary resource_type: article resource_url: http://perception-point.io/2016/01/14/analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728/ parent_primary_url: http://perception-point.io/2016/01/14/analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"ANALYSIS AND EXPLOITATION OF A LINUX KERNEL VULNERABILITY (CVE-2016-0728)\" By Perception Point Research Team](http://perception-point.io/2016/01/14/analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728/) [article] [CVE-2016-072",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://perception-point.io/2016/01/14/analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://perception-point.io/2016/01/14/analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "Analysis of a Linux kernel vulnerability (CVE-2016-0728) and its exploitation.",
      "summary_zh": "对Linux内核漏洞（CVE-2016-0728）及其利用的分析。",
      "source_markdown": "[2016: \"ANALYSIS AND EXPLOITATION OF A LINUX KERNEL VULNERABILITY (CVE-2016-0728)\" By Perception Point Research Team](http://perception-point.io/2016/01/14/analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728/) [article] [CVE-2016-0728]",
      "search_text": "analysis and exploitation of a linux kernel vulnerability (cve-2016-0728) analysis and exploitation of a linux kernel vulnerability (cve-2016-0728) perception point research team cve-2016-0728  vulnerabilities lpe lpe primary article http://perception-point.io/2016/01/14/analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728/ lpe vulnerability  research analysis of a linux kernel vulnerability (cve-2016-0728) and its exploitation. 对linux内核漏洞（cve-2016-0728）及其利用的分析。 # analysis and exploitation of a linux kernel vulnerability (cve-2016-0728) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: analysis and exploitation of a linux kernel vulnerability (cve-2016-0728) resource_label: primary resource_type: article resource_url: http://perception-point.io/2016/01/14/analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728/ parent_primary_url: http://perception-point.io/2016/01/14/analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"analysis and exploitation of a linux kernel vulnerability (cve-2016-0728)\" by perception point research team](http://perception-point.io/2016/01/14/analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728/) [article] [cve-2016-072 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "b0d19e6e7737902c",
      "item_id": "474186dab48f8e04",
      "slug": "2016-vulnerabilities-lpe-cve20160728-exploit-code-explained-primary-32045dd6",
      "year": 2016,
      "title": "CVE20160728 Exploit Code Explained",
      "item_title": "CVE20160728 Exploit Code Explained",
      "authors": [
        "Shilong Zhao"
      ],
      "cves": [
        "CVE-2016-0728"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://dreamhack.it/linux/2016/01/25/cve-2016-0728-exploit-code-explained.html",
      "primary_url": "http://dreamhack.it/linux/2016/01/25/cve-2016-0728-exploit-code-explained.html",
      "parent_primary_url": "http://dreamhack.it/linux/2016/01/25/cve-2016-0728-exploit-code-explained.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2016-vulnerabilities-lpe-cve20160728-exploit-code-explained-primary-32045dd6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE20160728 Exploit Code Explained record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE20160728 Exploit Code Explained resource_label: primary resource_type: article resource_url: http://dreamhack.it/linux/2016/01/25/cve-2016-0728-exploit-code-explained.html parent_primary_url: http://dreamhack.it/linux/2016/01/25/cve-2016-0728-exploit-code-explained.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"CVE20160728 Exploit Code Explained\" by Shilong Zhao](http://dreamhack.it/linux/2016/01/25/cve-2016-0728-exploit-code-explained.html) [article] [CVE-2016-0728] cves: CVE-2016-0728 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reas",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://dreamhack.it/linux/2016/01/25/cve-2016-0728-exploit-code-explained.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://dreamhack.it/linux/2016/01/25/cve-2016-0728-exploit-code-explained.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "http://dreamhack.it/linux/2016/01/25/cve-2016-0728-exploit-code-explained.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Exploit"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "Explains the exploit code for a specific Linux kernel vulnerability (CVE-2016-0728).",
      "summary_zh": "解释了特定Linux内核漏洞（CVE-2016-0728）的利用代码。",
      "source_markdown": "[2016: \"CVE20160728 Exploit Code Explained\" by Shilong Zhao](http://dreamhack.it/linux/2016/01/25/cve-2016-0728-exploit-code-explained.html) [article] [CVE-2016-0728]",
      "search_text": "cve20160728 exploit code explained cve20160728 exploit code explained shilong zhao cve-2016-0728  vulnerabilities lpe lpe primary article http://dreamhack.it/linux/2016/01/25/cve-2016-0728-exploit-code-explained.html lpe exploit  research explains the exploit code for a specific linux kernel vulnerability (cve-2016-0728). 解释了特定linux内核漏洞（cve-2016-0728）的利用代码。 # cve20160728 exploit code explained record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve20160728 exploit code explained resource_label: primary resource_type: article resource_url: http://dreamhack.it/linux/2016/01/25/cve-2016-0728-exploit-code-explained.html parent_primary_url: http://dreamhack.it/linux/2016/01/25/cve-2016-0728-exploit-code-explained.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"cve20160728 exploit code explained\" by shilong zhao](http://dreamhack.it/linux/2016/01/25/cve-2016-0728-exploit-code-explained.html) [article] [cve-2016-0728] cves: cve-2016-0728 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reas unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "386e16522dd376f9",
      "item_id": "b0e759e2c54d8162",
      "slug": "2016-vulnerabilities-lpe-cve-2016-0728-vs-android-primary-e50c8f16",
      "year": 2016,
      "title": "CVE-2016-0728 vs Android",
      "item_title": "CVE-2016-0728 vs Android",
      "authors": [
        "Collin Mulliner"
      ],
      "cves": [
        "CVE-2016-0728"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.mulliner.org/blog/blosxom.cgi/security/CVE-2016-0728_vs_android.writeback?advanced_search=1",
      "primary_url": "https://www.mulliner.org/blog/blosxom.cgi/security/CVE-2016-0728_vs_android.writeback?advanced_search=1",
      "parent_primary_url": "https://www.mulliner.org/blog/blosxom.cgi/security/CVE-2016-0728_vs_android.writeback?advanced_search=1",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2016-vulnerabilities-lpe-cve-2016-0728-vs-android-primary-e50c8f16.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2016-0728 vs Android record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2016-0728 vs Android resource_label: primary resource_type: article resource_url: https://www.mulliner.org/blog/blosxom.cgi/security/CVE-2016-0728_vs_android.writeback?advanced_search=1 parent_primary_url: https://www.mulliner.org/blog/blosxom.cgi/security/CVE-2016-0728_vs_android.writeback?advanced_search=1 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"CVE-2016-0728 vs Android\" by Collin Mulliner](https://www.mulliner.org/blog/blosxom.cgi/security/CVE-2016-0728_vs_android.writeback?advanced_search=1) [article] [CVE-2016-0728] cves: CVE-2016-0728 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.mulliner.org/blog/blosxom.cgi/security/CVE-2016-0728_vs_android.writeback?advanced_search=1"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.mulliner.org/blog/blosxom.cgi/security/CVE-2016-0728_vs_android.writeback?advanced_search=1"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "Discusses the impact of a Linux kernel vulnerability (CVE-2016-0728) on Android devices.",
      "summary_zh": "讨论了Linux内核漏洞（CVE-2016-0728）对Android设备的影响。",
      "source_markdown": "[2016: \"CVE-2016-0728 vs Android\" by Collin Mulliner](https://www.mulliner.org/blog/blosxom.cgi/security/CVE-2016-0728_vs_android.writeback?advanced_search=1) [article] [CVE-2016-0728]",
      "search_text": "cve-2016-0728 vs android cve-2016-0728 vs android collin mulliner cve-2016-0728  vulnerabilities lpe lpe primary article https://www.mulliner.org/blog/blosxom.cgi/security/cve-2016-0728_vs_android.writeback?advanced_search=1 lpe android vulnerability  research discusses the impact of a linux kernel vulnerability (cve-2016-0728) on android devices. 讨论了linux内核漏洞（cve-2016-0728）对android设备的影响。 # cve-2016-0728 vs android record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2016-0728 vs android resource_label: primary resource_type: article resource_url: https://www.mulliner.org/blog/blosxom.cgi/security/cve-2016-0728_vs_android.writeback?advanced_search=1 parent_primary_url: https://www.mulliner.org/blog/blosxom.cgi/security/cve-2016-0728_vs_android.writeback?advanced_search=1 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"cve-2016-0728 vs android\" by collin mulliner](https://www.mulliner.org/blog/blosxom.cgi/security/cve-2016-0728_vs_android.writeback?advanced_search=1) [article] [cve-2016-0728] cves: cve-2016-0728 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "559ba613f45f1813",
      "item_id": "bee0e57d261dc818",
      "slug": "2016-vulnerabilities-lpe-notes-about-cve-2016-7117-primary-daf08c68",
      "year": 2016,
      "title": "Notes about CVE-2016-7117",
      "item_title": "Notes about CVE-2016-7117",
      "authors": [
        "Lizzie Dixon"
      ],
      "cves": [
        "CVE-2016-7117"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.lizzie.io/notes-about-cve-2016-7117.html",
      "primary_url": "https://blog.lizzie.io/notes-about-cve-2016-7117.html",
      "parent_primary_url": "https://blog.lizzie.io/notes-about-cve-2016-7117.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2016-vulnerabilities-lpe-notes-about-cve-2016-7117-primary-daf08c68.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Notes about CVE-2016-7117 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Notes about CVE-2016-7117 resource_label: primary resource_type: article resource_url: https://blog.lizzie.io/notes-about-cve-2016-7117.html parent_primary_url: https://blog.lizzie.io/notes-about-cve-2016-7117.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"Notes about CVE-2016-7117\" by Lizzie Dixon](https://blog.lizzie.io/notes-about-cve-2016-7117.html) [article] [CVE-2016-7117] cves: CVE-2016-7117 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false ha",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.lizzie.io/notes-about-cve-2016-7117.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.lizzie.io/notes-about-cve-2016-7117.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "Notes on a Linux kernel vulnerability (CVE-2016-7117) with unknown impact.",
      "summary_zh": "关于Linux内核漏洞（CVE-2016-7117）的笔记，影响未知。",
      "source_markdown": "[2016: \"Notes about CVE-2016-7117\" by Lizzie Dixon](https://blog.lizzie.io/notes-about-cve-2016-7117.html) [article] [CVE-2016-7117]",
      "search_text": "notes about cve-2016-7117 notes about cve-2016-7117 lizzie dixon cve-2016-7117  vulnerabilities lpe lpe primary article https://blog.lizzie.io/notes-about-cve-2016-7117.html lpe vulnerability  research notes on a linux kernel vulnerability (cve-2016-7117) with unknown impact. 关于linux内核漏洞（cve-2016-7117）的笔记，影响未知。 # notes about cve-2016-7117 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: notes about cve-2016-7117 resource_label: primary resource_type: article resource_url: https://blog.lizzie.io/notes-about-cve-2016-7117.html parent_primary_url: https://blog.lizzie.io/notes-about-cve-2016-7117.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"notes about cve-2016-7117\" by lizzie dixon](https://blog.lizzie.io/notes-about-cve-2016-7117.html) [article] [cve-2016-7117] cves: cve-2016-7117 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false ha unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "cd0bc2c3a8acd20b",
      "item_id": "72d4d63a1d20f9da",
      "slug": "2016-vulnerabilities-lpe-cve-2016-2384-exploiting-a-double-free-in-the-usb-midi-linux-kernel-driver-primary-e5",
      "year": 2016,
      "title": "CVE-2016-2384: exploiting a double-free in the usb-midi linux kernel driver",
      "item_title": "CVE-2016-2384: exploiting a double-free in the usb-midi linux kernel driver",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [
        "CVE-2016-2384"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://xairy.github.io/blog/2016/cve-2016-2384",
      "primary_url": "https://xairy.github.io/blog/2016/cve-2016-2384",
      "parent_primary_url": "https://xairy.github.io/blog/2016/cve-2016-2384",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2016-vulnerabilities-lpe-cve-2016-2384-exploiting-a-double-free-in-the-usb-midi-linux-kernel-driver-primary-e5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2016-2384: exploiting a double-free in the usb-midi linux kernel driver record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2016-2384: exploiting a double-free in the usb-midi linux kernel driver resource_label: primary resource_type: article resource_url: https://xairy.github.io/blog/2016/cve-2016-2384 parent_primary_url: https://xairy.github.io/blog/2016/cve-2016-2384 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"CVE-2016-2384: exploiting a double-free in the usb-midi linux kernel driver\" by Andrey Konovalov](https://xairy.github.io/blog/2016/cve-2016-2384) [article] [CVE-2016-2384] cves: CVE-2016-2384 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://xairy.github.io/blog/2016/cve-2016-2384"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://xairy.github.io/blog/2016/cve-2016-2384"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://xairy.github.io/blog/2016/cve-2016-2384"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Vulnerability"
      ],
      "affected_area": "usb-midi",
      "exploit_stage": "Research",
      "summary_en": "An article on exploiting a double-free vulnerability in the USB-MIDI Linux kernel driver.",
      "summary_zh": "关于利用USB-MIDI Linux内核驱动中的双重释放漏洞的文章。",
      "source_markdown": "[2016: \"CVE-2016-2384: exploiting a double-free in the usb-midi linux kernel driver\" by Andrey Konovalov](https://xairy.github.io/blog/2016/cve-2016-2384) [article] [CVE-2016-2384]",
      "search_text": "cve-2016-2384: exploiting a double-free in the usb-midi linux kernel driver cve-2016-2384: exploiting a double-free in the usb-midi linux kernel driver andrey konovalov cve-2016-2384  vulnerabilities lpe lpe primary article https://xairy.github.io/blog/2016/cve-2016-2384 lpe vulnerability usb-midi research an article on exploiting a double-free vulnerability in the usb-midi linux kernel driver. 关于利用usb-midi linux内核驱动中的双重释放漏洞的文章。 # cve-2016-2384: exploiting a double-free in the usb-midi linux kernel driver record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2016-2384: exploiting a double-free in the usb-midi linux kernel driver resource_label: primary resource_type: article resource_url: https://xairy.github.io/blog/2016/cve-2016-2384 parent_primary_url: https://xairy.github.io/blog/2016/cve-2016-2384 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"cve-2016-2384: exploiting a double-free in the usb-midi linux kernel driver\" by andrey konovalov](https://xairy.github.io/blog/2016/cve-2016-2384) [article] [cve-2016-2384] cves: cve-2016-2384 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "7cdea0832c3e9dde",
      "item_id": "b0bf7c34d3a89f75",
      "slug": "2016-vulnerabilities-lpe-cve-2016-6187-exploiting-linux-kernel-heap-off-by-one-primary-6022daa8",
      "year": 2016,
      "title": "CVE-2016-6187: Exploiting Linux kernel heap off-by-one",
      "item_title": "CVE-2016-6187: Exploiting Linux kernel heap off-by-one",
      "authors": [
        "Vitaly Nikolenko"
      ],
      "cves": [
        "CVE-2016-6187"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://cyseclabs.com/blog/cve-2016-6187-heap-off-by-one-exploit",
      "primary_url": "https://cyseclabs.com/blog/cve-2016-6187-heap-off-by-one-exploit",
      "parent_primary_url": "https://cyseclabs.com/blog/cve-2016-6187-heap-off-by-one-exploit",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2016-vulnerabilities-lpe-cve-2016-6187-exploiting-linux-kernel-heap-off-by-one-primary-6022daa8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2016-6187: Exploiting Linux kernel heap off-by-one record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2016-6187: Exploiting Linux kernel heap off-by-one resource_label: primary resource_type: article resource_url: https://cyseclabs.com/blog/cve-2016-6187-heap-off-by-one-exploit parent_primary_url: https://cyseclabs.com/blog/cve-2016-6187-heap-off-by-one-exploit source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"CVE-2016-6187: Exploiting Linux kernel heap off-by-one\" by Vitaly Nikolenko](https://cyseclabs.com/blog/cve-2016-6187-heap-off-by-one-exploit) [article] [CVE-2016-6187] cves: CVE-2016-6187 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_stat",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://cyseclabs.com/blog/cve-2016-6187-heap-off-by-one-exploit"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://cyseclabs.com/blog/cve-2016-6187-heap-off-by-one-exploit"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://cyseclabs.com/blog/cve-2016-6187-heap-off-by-one-exploit"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "Explores the exploitation of a heap off-by-one vulnerability in the Linux kernel.",
      "summary_zh": "探讨了Linux内核中堆越界漏洞的利用。",
      "source_markdown": "[2016: \"CVE-2016-6187: Exploiting Linux kernel heap off-by-one\" by Vitaly Nikolenko](https://cyseclabs.com/blog/cve-2016-6187-heap-off-by-one-exploit) [article] [CVE-2016-6187]",
      "search_text": "cve-2016-6187: exploiting linux kernel heap off-by-one cve-2016-6187: exploiting linux kernel heap off-by-one vitaly nikolenko cve-2016-6187  vulnerabilities lpe lpe primary article https://cyseclabs.com/blog/cve-2016-6187-heap-off-by-one-exploit lpe vulnerability  research explores the exploitation of a heap off-by-one vulnerability in the linux kernel. 探讨了linux内核中堆越界漏洞的利用。 # cve-2016-6187: exploiting linux kernel heap off-by-one record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2016-6187: exploiting linux kernel heap off-by-one resource_label: primary resource_type: article resource_url: https://cyseclabs.com/blog/cve-2016-6187-heap-off-by-one-exploit parent_primary_url: https://cyseclabs.com/blog/cve-2016-6187-heap-off-by-one-exploit source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"cve-2016-6187: exploiting linux kernel heap off-by-one\" by vitaly nikolenko](https://cyseclabs.com/blog/cve-2016-6187-heap-off-by-one-exploit) [article] [cve-2016-6187] cves: cve-2016-6187 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_stat unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "33f2409406423277",
      "item_id": "c2c6db498feb6af6",
      "slug": "2016-vulnerabilities-lpe-cve-2014-2851-group-info-uaf-exploitation-primary-82c983bc",
      "year": 2016,
      "title": "CVE-2014-2851 group_info UAF Exploitation",
      "item_title": "CVE-2014-2851 group_info UAF Exploitation",
      "authors": [
        "Vitaly Nikolenko"
      ],
      "cves": [
        "CVE-2014-2851"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://cyseclabs.com/page?n=02012016",
      "primary_url": "https://cyseclabs.com/page?n=02012016",
      "parent_primary_url": "https://cyseclabs.com/page?n=02012016",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2016-vulnerabilities-lpe-cve-2014-2851-group-info-uaf-exploitation-primary-82c983bc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2014-2851 group_info UAF Exploitation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2014-2851 group_info UAF Exploitation resource_label: primary resource_type: article resource_url: https://cyseclabs.com/page?n=02012016 parent_primary_url: https://cyseclabs.com/page?n=02012016 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"CVE-2014-2851 group_info UAF Exploitation\" by Vitaly Nikolenko](https://cyseclabs.com/page?n=02012016) [article] [CVE-2014-2851] cves: CVE-2014-2851 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: fals",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://cyseclabs.com/page?n=02012016"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://cyseclabs.com/page?n=02012016"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "Discusses the exploitation of a use-after-free vulnerability in the Linux kernel.",
      "summary_zh": "讨论了Linux内核中使用后释放漏洞的利用。",
      "source_markdown": "[2016: \"CVE-2014-2851 group_info UAF Exploitation\" by Vitaly Nikolenko](https://cyseclabs.com/page?n=02012016) [article] [CVE-2014-2851]",
      "search_text": "cve-2014-2851 group_info uaf exploitation cve-2014-2851 group_info uaf exploitation vitaly nikolenko cve-2014-2851  vulnerabilities lpe lpe primary article https://cyseclabs.com/page?n=02012016 lpe vulnerability  research discusses the exploitation of a use-after-free vulnerability in the linux kernel. 讨论了linux内核中使用后释放漏洞的利用。 # cve-2014-2851 group_info uaf exploitation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2014-2851 group_info uaf exploitation resource_label: primary resource_type: article resource_url: https://cyseclabs.com/page?n=02012016 parent_primary_url: https://cyseclabs.com/page?n=02012016 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"cve-2014-2851 group_info uaf exploitation\" by vitaly nikolenko](https://cyseclabs.com/page?n=02012016) [article] [cve-2014-2851] cves: cve-2014-2851 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: fals unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "88866ffe0c4a6814",
      "item_id": "418e79557bde2fb5",
      "slug": "2016-vulnerabilities-lpe-perf-from-profiling-to-kernel-exploiting-primary-bfa98cba",
      "year": 2016,
      "title": "Perf: From Profiling To Kernel Exploiting",
      "item_title": "Perf: From Profiling To Kernel Exploiting",
      "authors": [
        "Wish Wu at HITB Ams"
      ],
      "cves": [
        "CVE-2016-0819"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/D2T2-Wish-Wu-Perf-From-Profiling-to-Kernel-Exploiting.pdf",
      "primary_url": "https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/D2T2-Wish-Wu-Perf-From-Profiling-to-Kernel-Exploiting.pdf",
      "parent_primary_url": "https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/D2T2-Wish-Wu-Perf-From-Profiling-to-Kernel-Exploiting.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2016-vulnerabilities-lpe-perf-from-profiling-to-kernel-exploiting-primary-bfa98cba.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Perf: From Profiling To Kernel Exploiting record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Perf: From Profiling To Kernel Exploiting resource_label: primary resource_type: slides resource_url: https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/D2T2-Wish-Wu-Perf-From-Profiling-to-Kernel-Exploiting.pdf parent_primary_url: https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/D2T2-Wish-Wu-Perf-From-Profiling-to-Kernel-Exploiting.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"Perf: From Profiling To Kernel Exploiting\" by Wish Wu at HITB Ams](https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/D2T2-Wish-Wu-Perf-From-Profiling-to-Kernel-Exploiting.pdf) [slides] [[video](https://www.youtube.com/watch?v=37v14rMtALs)] [CVE",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/D2T2-Wish-Wu-Perf-From-Profiling-to-Kernel-Exploiting.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=37v14rMtALs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/D2T2-Wish-Wu-Perf-From-Profiling-to-Kernel-Exploiting.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=37v14rMtALs"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "Slides on exploiting the Linux kernel using performance profiling techniques.",
      "summary_zh": "关于使用性能分析技术利用Linux内核的幻灯片。",
      "source_markdown": "[2016: \"Perf: From Profiling To Kernel Exploiting\" by Wish Wu at HITB Ams](https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/D2T2-Wish-Wu-Perf-From-Profiling-to-Kernel-Exploiting.pdf) [slides] [[video](https://www.youtube.com/watch?v=37v14rMtALs)] [CVE-2016-0819]",
      "search_text": "perf: from profiling to kernel exploiting perf: from profiling to kernel exploiting wish wu at hitb ams cve-2016-0819  vulnerabilities lpe lpe primary slides https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/d2t2-wish-wu-perf-from-profiling-to-kernel-exploiting.pdf lpe vulnerability  research slides on exploiting the linux kernel using performance profiling techniques. 关于使用性能分析技术利用linux内核的幻灯片。 # perf: from profiling to kernel exploiting record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: perf: from profiling to kernel exploiting resource_label: primary resource_type: slides resource_url: https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/d2t2-wish-wu-perf-from-profiling-to-kernel-exploiting.pdf parent_primary_url: https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/d2t2-wish-wu-perf-from-profiling-to-kernel-exploiting.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"perf: from profiling to kernel exploiting\" by wish wu at hitb ams](https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/d2t2-wish-wu-perf-from-profiling-to-kernel-exploiting.pdf) [slides] [[video](https://www.youtube.com/watch?v=37v14rmtals)] [cve unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "8f4088a7861b53f4",
      "item_id": "418e79557bde2fb5",
      "slug": "2016-vulnerabilities-lpe-perf-from-profiling-to-kernel-exploiting-video-abbfd69d",
      "year": 2016,
      "title": "Perf: From Profiling To Kernel Exploiting · video",
      "item_title": "Perf: From Profiling To Kernel Exploiting",
      "authors": [
        "Wish Wu at HITB Ams"
      ],
      "cves": [
        "CVE-2016-0819"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=37v14rMtALs",
      "primary_url": "https://www.youtube.com/watch?v=37v14rMtALs",
      "parent_primary_url": "https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/D2T2-Wish-Wu-Perf-From-Profiling-to-Kernel-Exploiting.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2016-vulnerabilities-lpe-perf-from-profiling-to-kernel-exploiting-video-abbfd69d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Perf: From Profiling To Kernel Exploiting · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Perf: From Profiling To Kernel Exploiting resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=37v14rMtALs parent_primary_url: https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/D2T2-Wish-Wu-Perf-From-Profiling-to-Kernel-Exploiting.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"Perf: From Profiling To Kernel Exploiting\" by Wish Wu at HITB Ams](https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/D2T2-Wish-Wu-Perf-From-Profiling-to-Kernel-Exploiting.pdf) [slides] [[video](https://www.youtube.com/watch?v=37v14rMtALs)] [CVE-2016-0819] cves: CVE-2016-0819 android_impact_status: unknown android_impact_reaso",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/D2T2-Wish-Wu-Perf-From-Profiling-to-Kernel-Exploiting.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=37v14rMtALs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/D2T2-Wish-Wu-Perf-From-Profiling-to-Kernel-Exploiting.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=37v14rMtALs"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "A video presentation on exploiting the Linux kernel using performance profiling techniques.",
      "summary_zh": "关于使用性能分析技术利用Linux内核的视频演示。",
      "source_markdown": "[2016: \"Perf: From Profiling To Kernel Exploiting\" by Wish Wu at HITB Ams](https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/D2T2-Wish-Wu-Perf-From-Profiling-to-Kernel-Exploiting.pdf) [slides] [[video](https://www.youtube.com/watch?v=37v14rMtALs)] [CVE-2016-0819]",
      "search_text": "perf: from profiling to kernel exploiting · video perf: from profiling to kernel exploiting wish wu at hitb ams cve-2016-0819  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=37v14rmtals lpe vulnerability  research a video presentation on exploiting the linux kernel using performance profiling techniques. 关于使用性能分析技术利用linux内核的视频演示。 # perf: from profiling to kernel exploiting · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: perf: from profiling to kernel exploiting resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=37v14rmtals parent_primary_url: https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/d2t2-wish-wu-perf-from-profiling-to-kernel-exploiting.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"perf: from profiling to kernel exploiting\" by wish wu at hitb ams](https://conference.hitb.org/hitbsecconf2016ams/wp-content/uploads/2015/11/d2t2-wish-wu-perf-from-profiling-to-kernel-exploiting.pdf) [slides] [[video](https://www.youtube.com/watch?v=37v14rmtals)] [cve-2016-0819] cves: cve-2016-0819 android_impact_status: unknown android_impact_reaso unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "8388c1e9654c29f1",
      "item_id": "7257c4b3eb7cb3bc",
      "slug": "2016-vulnerabilities-lpe-quadrooter-new-vulnerabilities-affecting-over-900-million-android-devices-primary-900",
      "year": 2016,
      "title": "QUADROOTER: NEW VULNERABILITIES AFFECTING OVER 900 MILLION ANDROID DEVICES",
      "item_title": "QUADROOTER: NEW VULNERABILITIES AFFECTING OVER 900 MILLION ANDROID DEVICES",
      "authors": [],
      "cves": [
        "CVE-2016-2503",
        "CVE-2106-2504",
        "CVE-2016-2059",
        "CVE-2016-5340"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Donenfeld-Stumping-The-Mobile-Chipset-wp.pdf",
      "primary_url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Donenfeld-Stumping-The-Mobile-Chipset-wp.pdf",
      "parent_primary_url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Donenfeld-Stumping-The-Mobile-Chipset-wp.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2016-vulnerabilities-lpe-quadrooter-new-vulnerabilities-affecting-over-900-million-android-devices-primary-900.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# QUADROOTER: NEW VULNERABILITIES AFFECTING OVER 900 MILLION ANDROID DEVICES record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: QUADROOTER: NEW VULNERABILITIES AFFECTING OVER 900 MILLION ANDROID DEVICES resource_label: primary resource_type: article resource_url: https://www.blackhat.com/docs/eu-16/materials/eu-16-Donenfeld-Stumping-The-Mobile-Chipset-wp.pdf parent_primary_url: https://www.blackhat.com/docs/eu-16/materials/eu-16-Donenfeld-Stumping-The-Mobile-Chipset-wp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"QUADROOTER: NEW VULNERABILITIES AFFECTING OVER 900 MILLION ANDROID DEVICES\"](https://www.blackhat.com/docs/eu-16/materials/eu-16-Donenfeld-Stumping-The-Mobile-Chipset-wp.pdf) [article] [CVE-2016-2503, CVE-2106-2504, CVE-2016-2059, CVE-2016-5340] cves: CVE-2016-2503, CVE-",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Donenfeld-Stumping-The-Mobile-Chipset-wp.pdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.blackhat.com/docs/eu-16/materials/eu-16-Donenfeld-Stumping-The-Mobile-Chipset-wp.pdf"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "Discusses multiple vulnerabilities affecting over 900 million Android devices.",
      "summary_zh": "讨论了影响超过9亿台Android设备的多个漏洞。",
      "source_markdown": "[2016: \"QUADROOTER: NEW VULNERABILITIES AFFECTING OVER 900 MILLION ANDROID DEVICES\"](https://www.blackhat.com/docs/eu-16/materials/eu-16-Donenfeld-Stumping-The-Mobile-Chipset-wp.pdf) [article] [CVE-2016-2503, CVE-2106-2504, CVE-2016-2059, CVE-2016-5340]",
      "search_text": "quadrooter: new vulnerabilities affecting over 900 million android devices quadrooter: new vulnerabilities affecting over 900 million android devices  cve-2016-2503 cve-2106-2504 cve-2016-2059 cve-2016-5340  vulnerabilities lpe lpe primary article https://www.blackhat.com/docs/eu-16/materials/eu-16-donenfeld-stumping-the-mobile-chipset-wp.pdf lpe android vulnerability  research discusses multiple vulnerabilities affecting over 900 million android devices. 讨论了影响超过9亿台android设备的多个漏洞。 # quadrooter: new vulnerabilities affecting over 900 million android devices record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: quadrooter: new vulnerabilities affecting over 900 million android devices resource_label: primary resource_type: article resource_url: https://www.blackhat.com/docs/eu-16/materials/eu-16-donenfeld-stumping-the-mobile-chipset-wp.pdf parent_primary_url: https://www.blackhat.com/docs/eu-16/materials/eu-16-donenfeld-stumping-the-mobile-chipset-wp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"quadrooter: new vulnerabilities affecting over 900 million android devices\"](https://www.blackhat.com/docs/eu-16/materials/eu-16-donenfeld-stumping-the-mobile-chipset-wp.pdf) [article] [cve-2016-2503, cve-2106-2504, cve-2016-2059, cve-2016-5340] cves: cve-2016-2503, cve- yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "1146f2ddce5fe4de",
      "item_id": "27f7f19d8cf2b44a",
      "slug": "2016-vulnerabilities-lpe-stumping-the-mobile-chipset-new-0days-from-down-under-primary-a6b06be4",
      "year": 2016,
      "title": "STUMPING THE MOBILE CHIPSET: New 0days from down under",
      "item_title": "STUMPING THE MOBILE CHIPSET: New 0days from down under",
      "authors": [
        "Adam Donenfeld at DEF CON"
      ],
      "cves": [
        "CVE-2016-2503",
        "CVE-2106-2504",
        "CVE-2016-2059",
        "CVE-2016-5340"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://media.defcon.org/DEF%20CON%2024/DEF%20CON%2024%20presentations/DEF%20CON%2024%20-%20Adam-Donenfeld-Stumping-The-Mobile-Chipset.pdf",
      "primary_url": "https://media.defcon.org/DEF%20CON%2024/DEF%20CON%2024%20presentations/DEF%20CON%2024%20-%20Adam-Donenfeld-Stumping-The-Mobile-Chipset.pdf",
      "parent_primary_url": "https://media.defcon.org/DEF%20CON%2024/DEF%20CON%2024%20presentations/DEF%20CON%2024%20-%20Adam-Donenfeld-Stumping-The-Mobile-Chipset.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2016-vulnerabilities-lpe-stumping-the-mobile-chipset-new-0days-from-down-under-primary-a6b06be4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# STUMPING THE MOBILE CHIPSET: New 0days from down under record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: STUMPING THE MOBILE CHIPSET: New 0days from down under resource_label: primary resource_type: slides resource_url: https://media.defcon.org/DEF%20CON%2024/DEF%20CON%2024%20presentations/DEF%20CON%2024%20-%20Adam-Donenfeld-Stumping-The-Mobile-Chipset.pdf parent_primary_url: https://media.defcon.org/DEF%20CON%2024/DEF%20CON%2024%20presentations/DEF%20CON%2024%20-%20Adam-Donenfeld-Stumping-The-Mobile-Chipset.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"STUMPING THE MOBILE CHIPSET: New 0days from down under\" by Adam Donenfeld at DEF CON](https://media.defcon.org/DEF%20CON%2024/DEF%20CON%2024%20presentations/DEF%20CON%2024%20-%20Adam-Donenfeld-Stumping-The-Mobile-Chipset.pdf) [s",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://media.defcon.org/DEF%20CON%2024/DEF%20CON%2024%20presentations/DEF%20CON%2024%20-%20Adam-Donenfeld-Stumping-The-Mobile-Chipset.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://media.defcon.org/DEF%20CON%2024/DEF%20CON%2024%20presentations/DEF%20CON%2024%20-%20Adam-Donenfeld-Stumping-The-Mobile-Chipset.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "Slides on new vulnerabilities affecting mobile chipsets, impacting Android devices.",
      "summary_zh": "关于影响移动芯片组的新漏洞的幻灯片，影响Android设备。",
      "source_markdown": "[2016: \"STUMPING THE MOBILE CHIPSET: New 0days from down under\" by Adam Donenfeld at DEF CON](https://media.defcon.org/DEF%20CON%2024/DEF%20CON%2024%20presentations/DEF%20CON%2024%20-%20Adam-Donenfeld-Stumping-The-Mobile-Chipset.pdf) [slides] [CVE-2016-2503, CVE-2106-2504, CVE-2016-2059, CVE-2016-5340]",
      "search_text": "stumping the mobile chipset: new 0days from down under stumping the mobile chipset: new 0days from down under adam donenfeld at def con cve-2016-2503 cve-2106-2504 cve-2016-2059 cve-2016-5340  vulnerabilities lpe lpe primary slides https://media.defcon.org/def%20con%2024/def%20con%2024%20presentations/def%20con%2024%20-%20adam-donenfeld-stumping-the-mobile-chipset.pdf lpe android vulnerability  research slides on new vulnerabilities affecting mobile chipsets, impacting android devices. 关于影响移动芯片组的新漏洞的幻灯片，影响android设备。 # stumping the mobile chipset: new 0days from down under record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: stumping the mobile chipset: new 0days from down under resource_label: primary resource_type: slides resource_url: https://media.defcon.org/def%20con%2024/def%20con%2024%20presentations/def%20con%2024%20-%20adam-donenfeld-stumping-the-mobile-chipset.pdf parent_primary_url: https://media.defcon.org/def%20con%2024/def%20con%2024%20presentations/def%20con%2024%20-%20adam-donenfeld-stumping-the-mobile-chipset.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2016: \"stumping the mobile chipset: new 0days from down under\" by adam donenfeld at def con](https://media.defcon.org/def%20con%2024/def%20con%2024%20presentations/def%20con%2024%20-%20adam-donenfeld-stumping-the-mobile-chipset.pdf) [s unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2faca0d07b6ed810",
      "item_id": "ae36045e7a0de759",
      "slug": "2015-vulnerabilities-lpe-android-linux-kernel-privilege-escalation-vulnerability-and-exploit-cve-2014-4322-pri",
      "year": 2015,
      "title": "Android linux kernel privilege escalation vulnerability and exploit (CVE-2014-4322)",
      "item_title": "Android linux kernel privilege escalation vulnerability and exploit (CVE-2014-4322)",
      "authors": [
        "Gal Beniamini"
      ],
      "cves": [
        "CVE-2014-4322"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://bits-please.blogspot.de/2015/08/android-linux-kernel-privilege.html",
      "primary_url": "https://bits-please.blogspot.de/2015/08/android-linux-kernel-privilege.html",
      "parent_primary_url": "https://bits-please.blogspot.de/2015/08/android-linux-kernel-privilege.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2015-vulnerabilities-lpe-android-linux-kernel-privilege-escalation-vulnerability-and-exploit-cve-2014-4322-pri.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Android linux kernel privilege escalation vulnerability and exploit (CVE-2014-4322) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Android linux kernel privilege escalation vulnerability and exploit (CVE-2014-4322) resource_label: primary resource_type: article resource_url: https://bits-please.blogspot.de/2015/08/android-linux-kernel-privilege.html parent_primary_url: https://bits-please.blogspot.de/2015/08/android-linux-kernel-privilege.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"Android linux kernel privilege escalation vulnerability and exploit (CVE-2014-4322)\" by Gal Beniamini](https://bits-please.blogspot.de/2015/08/android-linux-kernel-privilege.html) [article] [CVE-2014-4322] cves: CVE-2014-4322 android_impact_status: yes android_impact_reason: mentions Android io",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://bits-please.blogspot.de/2015/08/android-linux-kernel-privilege.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://bits-please.blogspot.de/2015/08/android-linux-kernel-privilege.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "An article on a privilege escalation vulnerability in the Android Linux kernel.",
      "summary_zh": "关于Android Linux内核中的特权提升漏洞的文章。",
      "source_markdown": "[2015: \"Android linux kernel privilege escalation vulnerability and exploit (CVE-2014-4322)\" by Gal Beniamini](https://bits-please.blogspot.de/2015/08/android-linux-kernel-privilege.html) [article] [CVE-2014-4322]",
      "search_text": "android linux kernel privilege escalation vulnerability and exploit (cve-2014-4322) android linux kernel privilege escalation vulnerability and exploit (cve-2014-4322) gal beniamini cve-2014-4322  vulnerabilities lpe lpe primary article https://bits-please.blogspot.de/2015/08/android-linux-kernel-privilege.html lpe android vulnerability  research an article on a privilege escalation vulnerability in the android linux kernel. 关于android linux内核中的特权提升漏洞的文章。 # android linux kernel privilege escalation vulnerability and exploit (cve-2014-4322) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: android linux kernel privilege escalation vulnerability and exploit (cve-2014-4322) resource_label: primary resource_type: article resource_url: https://bits-please.blogspot.de/2015/08/android-linux-kernel-privilege.html parent_primary_url: https://bits-please.blogspot.de/2015/08/android-linux-kernel-privilege.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"android linux kernel privilege escalation vulnerability and exploit (cve-2014-4322)\" by gal beniamini](https://bits-please.blogspot.de/2015/08/android-linux-kernel-privilege.html) [article] [cve-2014-4322] cves: cve-2014-4322 android_impact_status: yes android_impact_reason: mentions android io yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "84ac4419a9a9aae5",
      "item_id": "e3a493b55542f00d",
      "slug": "2015-vulnerabilities-lpe-exploiting-badiret-vulnerability-primary-68c77958",
      "year": 2015,
      "title": "Exploiting \"BadIRET\" vulnerability",
      "item_title": "Exploiting \"BadIRET\" vulnerability",
      "authors": [
        "Rafal Wojtczuk"
      ],
      "cves": [
        "CVE-2014-9322"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://web.archive.org/web/20171118232027/https://blogs.bromium.com/exploiting-badiret-vulnerability-cve-2014-9322-linux-kernel-privilege-escalation/",
      "primary_url": "https://web.archive.org/web/20171118232027/https://blogs.bromium.com/exploiting-badiret-vulnerability-cve-2014-9322-linux-kernel-privilege-escalation/",
      "parent_primary_url": "https://web.archive.org/web/20171118232027/https://blogs.bromium.com/exploiting-badiret-vulnerability-cve-2014-9322-linux-kernel-privilege-escalation/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2015-vulnerabilities-lpe-exploiting-badiret-vulnerability-primary-68c77958.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting \"BadIRET\" vulnerability record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting \"BadIRET\" vulnerability resource_label: primary resource_type: article resource_url: https://web.archive.org/web/20171118232027/https://blogs.bromium.com/exploiting-badiret-vulnerability-cve-2014-9322-linux-kernel-privilege-escalation/ parent_primary_url: https://web.archive.org/web/20171118232027/https://blogs.bromium.com/exploiting-badiret-vulnerability-cve-2014-9322-linux-kernel-privilege-escalation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"Exploiting \"BadIRET\" vulnerability\" by Rafal Wojtczuk](https://web.archive.org/web/20171118232027/https://blogs.bromium.com/exploiting-badiret-vulnerability-cve-2014-9322-linux-kernel-privilege-escalation/) [article] [CVE-2014-9322] cves: CVE-",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://web.archive.org/web/20171118232027/https://blogs.bromium.com/exploiting-badiret-vulnerability-cve-2014-9322-linux-kernel-privilege-escalation/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://web.archive.org/web/20171118232027/https://blogs.bromium.com/exploiting-badiret-vulnerability-cve-2014-9322-linux-kernel-privilege-escalation/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "Explains the exploitation of the 'BadIRET' vulnerability in the Linux kernel.",
      "summary_zh": "解释了Linux内核中'BadIRET'漏洞的利用。",
      "source_markdown": "[2015: \"Exploiting \"BadIRET\" vulnerability\" by Rafal Wojtczuk](https://web.archive.org/web/20171118232027/https://blogs.bromium.com/exploiting-badiret-vulnerability-cve-2014-9322-linux-kernel-privilege-escalation/) [article] [CVE-2014-9322]",
      "search_text": "exploiting \"badiret\" vulnerability exploiting \"badiret\" vulnerability rafal wojtczuk cve-2014-9322  vulnerabilities lpe lpe primary article https://web.archive.org/web/20171118232027/https://blogs.bromium.com/exploiting-badiret-vulnerability-cve-2014-9322-linux-kernel-privilege-escalation/ lpe vulnerability  research explains the exploitation of the 'badiret' vulnerability in the linux kernel. 解释了linux内核中'badiret'漏洞的利用。 # exploiting \"badiret\" vulnerability record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting \"badiret\" vulnerability resource_label: primary resource_type: article resource_url: https://web.archive.org/web/20171118232027/https://blogs.bromium.com/exploiting-badiret-vulnerability-cve-2014-9322-linux-kernel-privilege-escalation/ parent_primary_url: https://web.archive.org/web/20171118232027/https://blogs.bromium.com/exploiting-badiret-vulnerability-cve-2014-9322-linux-kernel-privilege-escalation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"exploiting \"badiret\" vulnerability\" by rafal wojtczuk](https://web.archive.org/web/20171118232027/https://blogs.bromium.com/exploiting-badiret-vulnerability-cve-2014-9322-linux-kernel-privilege-escalation/) [article] [cve-2014-9322] cves: cve- unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "8598fc59fa29a8a7",
      "item_id": "b4e7b39289d59636",
      "slug": "2015-vulnerabilities-lpe-follow-up-on-exploiting-badiret-vulnerability-cve-2014-9322-primary-9ec0be9a",
      "year": 2015,
      "title": "Follow-up on Exploiting \"BadIRET\" vulnerability (CVE-2014-9322)",
      "item_title": "Follow-up on Exploiting \"BadIRET\" vulnerability (CVE-2014-9322)",
      "authors": [
        "Adam Zabrocki"
      ],
      "cves": [
        "CVE-2014-9322"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://blog.pi3.com.pl/?p=509",
      "primary_url": "http://blog.pi3.com.pl/?p=509",
      "parent_primary_url": "http://blog.pi3.com.pl/?p=509",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2015-vulnerabilities-lpe-follow-up-on-exploiting-badiret-vulnerability-cve-2014-9322-primary-9ec0be9a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Follow-up on Exploiting \"BadIRET\" vulnerability (CVE-2014-9322) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Follow-up on Exploiting \"BadIRET\" vulnerability (CVE-2014-9322) resource_label: primary resource_type: article resource_url: http://blog.pi3.com.pl/?p=509 parent_primary_url: http://blog.pi3.com.pl/?p=509 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"Follow-up on Exploiting \"BadIRET\" vulnerability (CVE-2014-9322)\" by Adam Zabrocki](http://blog.pi3.com.pl/?p=509) [article] [CVE-2014-9322] cves: CVE-2014-9322 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather th",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://blog.pi3.com.pl/?p=509"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://blog.pi3.com.pl/?p=509"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "Follow-up article on the 'BadIRET' vulnerability in the Linux kernel.",
      "summary_zh": "关于Linux内核中'BadIRET'漏洞的后续文章。",
      "source_markdown": "[2015: \"Follow-up on Exploiting \"BadIRET\" vulnerability (CVE-2014-9322)\" by Adam Zabrocki](http://blog.pi3.com.pl/?p=509) [article] [CVE-2014-9322]",
      "search_text": "follow-up on exploiting \"badiret\" vulnerability (cve-2014-9322) follow-up on exploiting \"badiret\" vulnerability (cve-2014-9322) adam zabrocki cve-2014-9322  vulnerabilities lpe lpe primary article http://blog.pi3.com.pl/?p=509 lpe vulnerability  research follow-up article on the 'badiret' vulnerability in the linux kernel. 关于linux内核中'badiret'漏洞的后续文章。 # follow-up on exploiting \"badiret\" vulnerability (cve-2014-9322) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: follow-up on exploiting \"badiret\" vulnerability (cve-2014-9322) resource_label: primary resource_type: article resource_url: http://blog.pi3.com.pl/?p=509 parent_primary_url: http://blog.pi3.com.pl/?p=509 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"follow-up on exploiting \"badiret\" vulnerability (cve-2014-9322)\" by adam zabrocki](http://blog.pi3.com.pl/?p=509) [article] [cve-2014-9322] cves: cve-2014-9322 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather th unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "96fcccdce3f2ef29",
      "item_id": "2c19badc1541863e",
      "slug": "2015-vulnerabilities-lpe-ah-universal-android-rooting-is-back-primary-edd6b654",
      "year": 2015,
      "title": "Ah! Universal Android Rooting Is Back",
      "item_title": "Ah! Universal Android Rooting Is Back",
      "authors": [
        "Wen Xu at Black Hat"
      ],
      "cves": [
        "CVE-2015-3636"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf",
      "primary_url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf",
      "parent_primary_url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2015-vulnerabilities-lpe-ah-universal-android-rooting-is-back-primary-edd6b654.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Ah! Universal Android Rooting Is Back record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Ah! Universal Android Rooting Is Back resource_label: primary resource_type: slides resource_url: https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf parent_primary_url: https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"Ah! Universal Android Rooting Is Back\" by Wen Xu at Black Hat](https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf) [slides] [[video](https://www.youtube.com/watch?v=HVP1c7Ct1nM)] [[paper](https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back-wp.pdf)] [CVE-2015-3636",
      "link_types": [
        "slides",
        "video",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=HVP1c7Ct1nM"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back-wp.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back-wp.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=HVP1c7Ct1nM"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "Android",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Research",
      "summary_en": "Discusses a universal Android rooting vulnerability and its implications.",
      "summary_zh": "讨论了一个通用Android根权限提升漏洞及其影响。",
      "source_markdown": "[2015: \"Ah! Universal Android Rooting Is Back\" by Wen Xu at Black Hat](https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf) [slides] [[video](https://www.youtube.com/watch?v=HVP1c7Ct1nM)] [[paper](https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back-wp.pdf)] [CVE-2015-3636]",
      "search_text": "ah! universal android rooting is back ah! universal android rooting is back wen xu at black hat cve-2015-3636  vulnerabilities lpe lpe primary slides https://www.blackhat.com/docs/us-15/materials/us-15-xu-ah-universal-android-rooting-is-back.pdf lpe android vulnerability  research discusses a universal android rooting vulnerability and its implications. 讨论了一个通用android根权限提升漏洞及其影响。 # ah! universal android rooting is back record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: ah! universal android rooting is back resource_label: primary resource_type: slides resource_url: https://www.blackhat.com/docs/us-15/materials/us-15-xu-ah-universal-android-rooting-is-back.pdf parent_primary_url: https://www.blackhat.com/docs/us-15/materials/us-15-xu-ah-universal-android-rooting-is-back.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"ah! universal android rooting is back\" by wen xu at black hat](https://www.blackhat.com/docs/us-15/materials/us-15-xu-ah-universal-android-rooting-is-back.pdf) [slides] [[video](https://www.youtube.com/watch?v=hvp1c7ct1nm)] [[paper](https://www.blackhat.com/docs/us-15/materials/us-15-xu-ah-universal-android-rooting-is-back-wp.pdf)] [cve-2015-3636 yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "0b850d398a81ed26",
      "item_id": "2c19badc1541863e",
      "slug": "2015-vulnerabilities-lpe-ah-universal-android-rooting-is-back-video-b41a74e9",
      "year": 2015,
      "title": "Ah! Universal Android Rooting Is Back · video",
      "item_title": "Ah! Universal Android Rooting Is Back",
      "authors": [
        "Wen Xu at Black Hat"
      ],
      "cves": [
        "CVE-2015-3636"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=HVP1c7Ct1nM",
      "primary_url": "https://www.youtube.com/watch?v=HVP1c7Ct1nM",
      "parent_primary_url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2015-vulnerabilities-lpe-ah-universal-android-rooting-is-back-video-b41a74e9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Ah! Universal Android Rooting Is Back · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Ah! Universal Android Rooting Is Back resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=HVP1c7Ct1nM parent_primary_url: https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"Ah! Universal Android Rooting Is Back\" by Wen Xu at Black Hat](https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf) [slides] [[video](https://www.youtube.com/watch?v=HVP1c7Ct1nM)] [[paper](https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back-wp.pdf)] [CVE-2015-3636] cves: CVE-2015-3636 android_impact_status: ye",
      "link_types": [
        "slides",
        "video",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=HVP1c7Ct1nM"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back-wp.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back-wp.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=HVP1c7Ct1nM"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "video",
        "CVE-2015-3636"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2015 Linux kernel LPE resource \"Ah! Universal Android Rooting Is Back · video\" (CVE-2015-3636); URL type: video. Android impact: yes.",
      "summary_zh": "2015 年 Linux 内核LPE资料：「Ah! Universal Android Rooting Is Back · video」（CVE-2015-3636）；URL 类型：video。 Android 影响：yes。",
      "source_markdown": "[2015: \"Ah! Universal Android Rooting Is Back\" by Wen Xu at Black Hat](https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf) [slides] [[video](https://www.youtube.com/watch?v=HVP1c7Ct1nM)] [[paper](https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back-wp.pdf)] [CVE-2015-3636]",
      "search_text": "ah! universal android rooting is back · video ah! universal android rooting is back wen xu at black hat cve-2015-3636  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=hvp1c7ct1nm vulnerabilities lpe video cve-2015-3636  lpe 2015 linux kernel lpe resource \"ah! universal android rooting is back · video\" (cve-2015-3636); url type: video. android impact: yes. 2015 年 linux 内核lpe资料：「ah! universal android rooting is back · video」（cve-2015-3636）；url 类型：video。 android 影响：yes。 # ah! universal android rooting is back · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: ah! universal android rooting is back resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=hvp1c7ct1nm parent_primary_url: https://www.blackhat.com/docs/us-15/materials/us-15-xu-ah-universal-android-rooting-is-back.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"ah! universal android rooting is back\" by wen xu at black hat](https://www.blackhat.com/docs/us-15/materials/us-15-xu-ah-universal-android-rooting-is-back.pdf) [slides] [[video](https://www.youtube.com/watch?v=hvp1c7ct1nm)] [[paper](https://www.blackhat.com/docs/us-15/materials/us-15-xu-ah-universal-android-rooting-is-back-wp.pdf)] [cve-2015-3636] cves: cve-2015-3636 android_impact_status: ye yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "7a94666e78d05ba7",
      "item_id": "2c19badc1541863e",
      "slug": "2015-vulnerabilities-lpe-ah-universal-android-rooting-is-back-paper-4e100583",
      "year": 2015,
      "title": "Ah! Universal Android Rooting Is Back · paper",
      "item_title": "Ah! Universal Android Rooting Is Back",
      "authors": [
        "Wen Xu at Black Hat"
      ],
      "cves": [
        "CVE-2015-3636"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "paper",
      "resource_type": "paper",
      "resource_url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back-wp.pdf",
      "primary_url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back-wp.pdf",
      "parent_primary_url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2015-vulnerabilities-lpe-ah-universal-android-rooting-is-back-paper-4e100583.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Ah! Universal Android Rooting Is Back · paper record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Ah! Universal Android Rooting Is Back resource_label: paper resource_type: paper resource_url: https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back-wp.pdf parent_primary_url: https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"Ah! Universal Android Rooting Is Back\" by Wen Xu at Black Hat](https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf) [slides] [[video](https://www.youtube.com/watch?v=HVP1c7Ct1nM)] [[paper](https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back-wp.pdf)] [CVE-2",
      "link_types": [
        "slides",
        "video",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=HVP1c7Ct1nM"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back-wp.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back-wp.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=HVP1c7Ct1nM"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "paper",
        "CVE-2015-3636"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2015 Linux kernel LPE resource \"Ah! Universal Android Rooting Is Back · paper\" (CVE-2015-3636); URL type: paper. Android impact: yes.",
      "summary_zh": "2015 年 Linux 内核LPE资料：「Ah! Universal Android Rooting Is Back · paper」（CVE-2015-3636）；URL 类型：paper。 Android 影响：yes。",
      "source_markdown": "[2015: \"Ah! Universal Android Rooting Is Back\" by Wen Xu at Black Hat](https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back.pdf) [slides] [[video](https://www.youtube.com/watch?v=HVP1c7Ct1nM)] [[paper](https://www.blackhat.com/docs/us-15/materials/us-15-Xu-Ah-Universal-Android-Rooting-Is-Back-wp.pdf)] [CVE-2015-3636]",
      "search_text": "ah! universal android rooting is back · paper ah! universal android rooting is back wen xu at black hat cve-2015-3636  vulnerabilities lpe lpe paper paper https://www.blackhat.com/docs/us-15/materials/us-15-xu-ah-universal-android-rooting-is-back-wp.pdf vulnerabilities lpe paper cve-2015-3636  lpe 2015 linux kernel lpe resource \"ah! universal android rooting is back · paper\" (cve-2015-3636); url type: paper. android impact: yes. 2015 年 linux 内核lpe资料：「ah! universal android rooting is back · paper」（cve-2015-3636）；url 类型：paper。 android 影响：yes。 # ah! universal android rooting is back · paper record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: ah! universal android rooting is back resource_label: paper resource_type: paper resource_url: https://www.blackhat.com/docs/us-15/materials/us-15-xu-ah-universal-android-rooting-is-back-wp.pdf parent_primary_url: https://www.blackhat.com/docs/us-15/materials/us-15-xu-ah-universal-android-rooting-is-back.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"ah! universal android rooting is back\" by wen xu at black hat](https://www.blackhat.com/docs/us-15/materials/us-15-xu-ah-universal-android-rooting-is-back.pdf) [slides] [[video](https://www.youtube.com/watch?v=hvp1c7ct1nm)] [[paper](https://www.blackhat.com/docs/us-15/materials/us-15-xu-ah-universal-android-rooting-is-back-wp.pdf)] [cve-2 yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "397cb58b0153d10b",
      "item_id": "9357abb1405f678b",
      "slug": "2015-vulnerabilities-lpe-when-is-something-overflowing-primary-0a85efa5",
      "year": 2015,
      "title": "When is something overflowing",
      "item_title": "When is something overflowing",
      "authors": [
        "Keen Team"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.slideshare.net/PeterHlavaty/overflow-48573748",
      "primary_url": "https://www.slideshare.net/PeterHlavaty/overflow-48573748",
      "parent_primary_url": "https://www.slideshare.net/PeterHlavaty/overflow-48573748",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2015-vulnerabilities-lpe-when-is-something-overflowing-primary-0a85efa5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# When is something overflowing record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: When is something overflowing resource_label: primary resource_type: slides resource_url: https://www.slideshare.net/PeterHlavaty/overflow-48573748 parent_primary_url: https://www.slideshare.net/PeterHlavaty/overflow-48573748 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"When is something overflowing\" by Keen Team](https://www.slideshare.net/PeterHlavaty/overflow-48573748) [slides] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_expl",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.slideshare.net/PeterHlavaty/overflow-48573748"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.slideshare.net/PeterHlavaty/overflow-48573748"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2015 Linux kernel LPE resource \"When is something overflowing\"; URL type: slides.",
      "summary_zh": "2015 年 Linux 内核LPE资料：「When is something overflowing」；URL 类型：slides。",
      "source_markdown": "[2015: \"When is something overflowing\" by Keen Team](https://www.slideshare.net/PeterHlavaty/overflow-48573748) [slides]",
      "search_text": "when is something overflowing when is something overflowing keen team   vulnerabilities lpe lpe primary slides https://www.slideshare.net/peterhlavaty/overflow-48573748 vulnerabilities lpe slides  lpe 2015 linux kernel lpe resource \"when is something overflowing\"; url type: slides. 2015 年 linux 内核lpe资料：「when is something overflowing」；url 类型：slides。 # when is something overflowing record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: when is something overflowing resource_label: primary resource_type: slides resource_url: https://www.slideshare.net/peterhlavaty/overflow-48573748 parent_primary_url: https://www.slideshare.net/peterhlavaty/overflow-48573748 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"when is something overflowing\" by keen team](https://www.slideshare.net/peterhlavaty/overflow-48573748) [slides] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_expl unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "389fd5f799d762af",
      "item_id": "fe902b946e2bf9c9",
      "slug": "2015-vulnerabilities-lpe-exploiting-the-dram-rowhammer-bug-to-gain-kernel-privileges-primary-90a78e10",
      "year": 2015,
      "title": "Exploiting the DRAM rowhammer bug to gain kernel privileges",
      "item_title": "Exploiting the DRAM rowhammer bug to gain kernel privileges",
      "authors": [
        "Mark Seaborn",
        "Thomas Dullien"
      ],
      "cves": [],
      "tags": [
        "Rowhammer"
      ],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.de/2015/03/exploiting-dram-rowhammer-bug-to-gain.html",
      "primary_url": "https://googleprojectzero.blogspot.de/2015/03/exploiting-dram-rowhammer-bug-to-gain.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.de/2015/03/exploiting-dram-rowhammer-bug-to-gain.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2015-vulnerabilities-lpe-exploiting-the-dram-rowhammer-bug-to-gain-kernel-privileges-primary-90a78e10.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting the DRAM rowhammer bug to gain kernel privileges record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting the DRAM rowhammer bug to gain kernel privileges resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.de/2015/03/exploiting-dram-rowhammer-bug-to-gain.html parent_primary_url: https://googleprojectzero.blogspot.de/2015/03/exploiting-dram-rowhammer-bug-to-gain.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"Exploiting the DRAM rowhammer bug to gain kernel privileges\" by Mark Seaborn and Thomas Dullien](https://googleprojectzero.blogspot.de/2015/03/exploiting-dram-rowhammer-bug-to-gain.html) [article] [Rowhammer] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; A",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.de/2015/03/exploiting-dram-rowhammer-bug-to-gain.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.de/2015/03/exploiting-dram-rowhammer-bug-to-gain.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "Rowhammer"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2015 Linux kernel LPE resource \"Exploiting the DRAM rowhammer bug to gain kernel privileges\"; URL type: article.",
      "summary_zh": "2015 年 Linux 内核LPE资料：「Exploiting the DRAM rowhammer bug to gain kernel privileges」；URL 类型：article。",
      "source_markdown": "[2015: \"Exploiting the DRAM rowhammer bug to gain kernel privileges\" by Mark Seaborn and Thomas Dullien](https://googleprojectzero.blogspot.de/2015/03/exploiting-dram-rowhammer-bug-to-gain.html) [article] [Rowhammer]",
      "search_text": "exploiting the dram rowhammer bug to gain kernel privileges exploiting the dram rowhammer bug to gain kernel privileges mark seaborn thomas dullien  rowhammer vulnerabilities lpe lpe primary article https://googleprojectzero.blogspot.de/2015/03/exploiting-dram-rowhammer-bug-to-gain.html vulnerabilities lpe article rowhammer  lpe 2015 linux kernel lpe resource \"exploiting the dram rowhammer bug to gain kernel privileges\"; url type: article. 2015 年 linux 内核lpe资料：「exploiting the dram rowhammer bug to gain kernel privileges」；url 类型：article。 # exploiting the dram rowhammer bug to gain kernel privileges record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting the dram rowhammer bug to gain kernel privileges resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.de/2015/03/exploiting-dram-rowhammer-bug-to-gain.html parent_primary_url: https://googleprojectzero.blogspot.de/2015/03/exploiting-dram-rowhammer-bug-to-gain.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"exploiting the dram rowhammer bug to gain kernel privileges\" by mark seaborn and thomas dullien](https://googleprojectzero.blogspot.de/2015/03/exploiting-dram-rowhammer-bug-to-gain.html) [article] [rowhammer] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; a unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "d961405fa14e00c1",
      "item_id": "c4056dd40dc21842",
      "slug": "2015-vulnerabilities-lpe-cve-2014-4943-pppol2tp-dos-analysis-primary-98f501c3",
      "year": 2015,
      "title": "CVE-2014-4943 - PPPoL2TP DoS Analysis",
      "item_title": "CVE-2014-4943 - PPPoL2TP DoS Analysis",
      "authors": [
        "Vitaly Nikolenko"
      ],
      "cves": [
        "CVE-2014-4943"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://cyseclabs.com/page?n=01102015",
      "primary_url": "https://cyseclabs.com/page?n=01102015",
      "parent_primary_url": "https://cyseclabs.com/page?n=01102015",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2015-vulnerabilities-lpe-cve-2014-4943-pppol2tp-dos-analysis-primary-98f501c3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2014-4943 - PPPoL2TP DoS Analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2014-4943 - PPPoL2TP DoS Analysis resource_label: primary resource_type: article resource_url: https://cyseclabs.com/page?n=01102015 parent_primary_url: https://cyseclabs.com/page?n=01102015 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"CVE-2014-4943 - PPPoL2TP DoS Analysis\" by Vitaly Nikolenko](https://cyseclabs.com/page?n=01102015) [article] [CVE-2014-4943] cves: CVE-2014-4943 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploi",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://cyseclabs.com/page?n=01102015"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://cyseclabs.com/page?n=01102015"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2014-4943"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2015 Linux kernel LPE resource \"CVE-2014-4943 - PPPoL2TP DoS Analysis\" (CVE-2014-4943); URL type: article.",
      "summary_zh": "2015 年 Linux 内核LPE资料：「CVE-2014-4943 - PPPoL2TP DoS Analysis」（CVE-2014-4943）；URL 类型：article。",
      "source_markdown": "[2015: \"CVE-2014-4943 - PPPoL2TP DoS Analysis\" by Vitaly Nikolenko](https://cyseclabs.com/page?n=01102015) [article] [CVE-2014-4943]",
      "search_text": "cve-2014-4943 - pppol2tp dos analysis cve-2014-4943 - pppol2tp dos analysis vitaly nikolenko cve-2014-4943  vulnerabilities lpe lpe primary article https://cyseclabs.com/page?n=01102015 vulnerabilities lpe article cve-2014-4943  lpe 2015 linux kernel lpe resource \"cve-2014-4943 - pppol2tp dos analysis\" (cve-2014-4943); url type: article. 2015 年 linux 内核lpe资料：「cve-2014-4943 - pppol2tp dos analysis」（cve-2014-4943）；url 类型：article。 # cve-2014-4943 - pppol2tp dos analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2014-4943 - pppol2tp dos analysis resource_label: primary resource_type: article resource_url: https://cyseclabs.com/page?n=01102015 parent_primary_url: https://cyseclabs.com/page?n=01102015 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"cve-2014-4943 - pppol2tp dos analysis\" by vitaly nikolenko](https://cyseclabs.com/page?n=01102015) [article] [cve-2014-4943] cves: cve-2014-4943 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploi unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e206cc6cf8ac2bd9",
      "item_id": "adb36980cc656294",
      "slug": "2015-vulnerabilities-lpe-cve-2015-0568-use-after-free-vulnerability-in-the-camera-driver-of-qualcomm-msm-7x30-",
      "year": 2015,
      "title": "CVE-2015-0568: Use-After-Free Vulnerability in the Camera Driver of Qualcomm MSM 7x30",
      "item_title": "CVE-2015-0568: Use-After-Free Vulnerability in the Camera Driver of Qualcomm MSM 7x30",
      "authors": [],
      "cves": [
        "CVE-2015-0568"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://c0reteam.org/2015/11/18/cve-20150568",
      "primary_url": "http://c0reteam.org/2015/11/18/cve-20150568",
      "parent_primary_url": "http://c0reteam.org/2015/11/18/cve-20150568",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2015-vulnerabilities-lpe-cve-2015-0568-use-after-free-vulnerability-in-the-camera-driver-of-qualcomm-msm-7x30-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2015-0568: Use-After-Free Vulnerability in the Camera Driver of Qualcomm MSM 7x30 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2015-0568: Use-After-Free Vulnerability in the Camera Driver of Qualcomm MSM 7x30 resource_label: primary resource_type: article resource_url: http://c0reteam.org/2015/11/18/cve-20150568 parent_primary_url: http://c0reteam.org/2015/11/18/cve-20150568 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"CVE-2015-0568: Use-After-Free Vulnerability in the Camera Driver of Qualcomm MSM 7x30\"](http://c0reteam.org/2015/11/18/cve-20150568) [article] [CVE-2015-0568] cves: CVE-2015-0568 android_impact_status: possible android_impact_reason: mentions Qualcomm/Adreno Android SoC components ios_impact_status: no ios_impact_reason: Production iOS devices use Apple",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://c0reteam.org/2015/11/18/cve-20150568"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://c0reteam.org/2015/11/18/cve-20150568"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions Qualcomm/Adreno Android SoC components",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2015-0568"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2015 Linux kernel LPE resource \"CVE-2015-0568: Use-After-Free Vulnerability in the Camera Driver of Qualcomm MSM 7x30\" (CVE-2015-0568); URL type: article. Android impact: possible.",
      "summary_zh": "2015 年 Linux 内核LPE资料：「CVE-2015-0568: Use-After-Free Vulnerability in the Camera Driver of Qualcomm MSM 7x30」（CVE-2015-0568）；URL 类型：article。 Android 影响：possible。",
      "source_markdown": "[2015: \"CVE-2015-0568: Use-After-Free Vulnerability in the Camera Driver of Qualcomm MSM 7x30\"](http://c0reteam.org/2015/11/18/cve-20150568) [article] [CVE-2015-0568]",
      "search_text": "cve-2015-0568: use-after-free vulnerability in the camera driver of qualcomm msm 7x30 cve-2015-0568: use-after-free vulnerability in the camera driver of qualcomm msm 7x30  cve-2015-0568  vulnerabilities lpe lpe primary article http://c0reteam.org/2015/11/18/cve-20150568 vulnerabilities lpe article cve-2015-0568  lpe 2015 linux kernel lpe resource \"cve-2015-0568: use-after-free vulnerability in the camera driver of qualcomm msm 7x30\" (cve-2015-0568); url type: article. android impact: possible. 2015 年 linux 内核lpe资料：「cve-2015-0568: use-after-free vulnerability in the camera driver of qualcomm msm 7x30」（cve-2015-0568）；url 类型：article。 android 影响：possible。 # cve-2015-0568: use-after-free vulnerability in the camera driver of qualcomm msm 7x30 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2015-0568: use-after-free vulnerability in the camera driver of qualcomm msm 7x30 resource_label: primary resource_type: article resource_url: http://c0reteam.org/2015/11/18/cve-20150568 parent_primary_url: http://c0reteam.org/2015/11/18/cve-20150568 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2015: \"cve-2015-0568: use-after-free vulnerability in the camera driver of qualcomm msm 7x30\"](http://c0reteam.org/2015/11/18/cve-20150568) [article] [cve-2015-0568] cves: cve-2015-0568 android_impact_status: possible android_impact_reason: mentions qualcomm/adreno android soc components ios_impact_status: no ios_impact_reason: production ios devices use apple possible mentions qualcomm/adreno android soc components no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "399f3a36f4602f12",
      "item_id": "1d05ccd27e6c4cce",
      "slug": "2014-vulnerabilities-lpe-exploiting-cve-2014-0196-a-walk-through-of-the-linux-pty-race-condition-poc-primary-c",
      "year": 2014,
      "title": "Exploiting CVE-2014-0196 a walk-through of the Linux pty race condition PoC",
      "item_title": "Exploiting CVE-2014-0196 a walk-through of the Linux pty race condition PoC",
      "authors": [
        "Samuel Gross"
      ],
      "cves": [
        "CVE-2014-0196"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://blog.includesecurity.com/2014/06/exploit-walkthrough-cve-2014-0196-pty-kernel-race-condition.html",
      "primary_url": "http://blog.includesecurity.com/2014/06/exploit-walkthrough-cve-2014-0196-pty-kernel-race-condition.html",
      "parent_primary_url": "http://blog.includesecurity.com/2014/06/exploit-walkthrough-cve-2014-0196-pty-kernel-race-condition.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2014-vulnerabilities-lpe-exploiting-cve-2014-0196-a-walk-through-of-the-linux-pty-race-condition-poc-primary-c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting CVE-2014-0196 a walk-through of the Linux pty race condition PoC record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting CVE-2014-0196 a walk-through of the Linux pty race condition PoC resource_label: primary resource_type: article resource_url: http://blog.includesecurity.com/2014/06/exploit-walkthrough-cve-2014-0196-pty-kernel-race-condition.html parent_primary_url: http://blog.includesecurity.com/2014/06/exploit-walkthrough-cve-2014-0196-pty-kernel-race-condition.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2014: \"Exploiting CVE-2014-0196 a walk-through of the Linux pty race condition PoC\" by Samuel Gross](http://blog.includesecurity.com/2014/06/exploit-walkthrough-cve-2014-0196-pty-kernel-race-condition.html) [article] [CVE-2014-0196] cves: CVE-2014-0196 android",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://blog.includesecurity.com/2014/06/exploit-walkthrough-cve-2014-0196-pty-kernel-race-condition.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://blog.includesecurity.com/2014/06/exploit-walkthrough-cve-2014-0196-pty-kernel-race-condition.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "http://blog.includesecurity.com/2014/06/exploit-walkthrough-cve-2014-0196-pty-kernel-race-condition.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2014-0196"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2014 Linux kernel LPE resource \"Exploiting CVE-2014-0196 a walk-through of the Linux pty race condition PoC\" (CVE-2014-0196); URL type: article.",
      "summary_zh": "2014 年 Linux 内核LPE资料：「Exploiting CVE-2014-0196 a walk-through of the Linux pty race condition PoC」（CVE-2014-0196）；URL 类型：article。",
      "source_markdown": "[2014: \"Exploiting CVE-2014-0196 a walk-through of the Linux pty race condition PoC\" by Samuel Gross](http://blog.includesecurity.com/2014/06/exploit-walkthrough-cve-2014-0196-pty-kernel-race-condition.html) [article] [CVE-2014-0196]",
      "search_text": "exploiting cve-2014-0196 a walk-through of the linux pty race condition poc exploiting cve-2014-0196 a walk-through of the linux pty race condition poc samuel gross cve-2014-0196  vulnerabilities lpe lpe primary article http://blog.includesecurity.com/2014/06/exploit-walkthrough-cve-2014-0196-pty-kernel-race-condition.html vulnerabilities lpe article cve-2014-0196  lpe 2014 linux kernel lpe resource \"exploiting cve-2014-0196 a walk-through of the linux pty race condition poc\" (cve-2014-0196); url type: article. 2014 年 linux 内核lpe资料：「exploiting cve-2014-0196 a walk-through of the linux pty race condition poc」（cve-2014-0196）；url 类型：article。 # exploiting cve-2014-0196 a walk-through of the linux pty race condition poc record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting cve-2014-0196 a walk-through of the linux pty race condition poc resource_label: primary resource_type: article resource_url: http://blog.includesecurity.com/2014/06/exploit-walkthrough-cve-2014-0196-pty-kernel-race-condition.html parent_primary_url: http://blog.includesecurity.com/2014/06/exploit-walkthrough-cve-2014-0196-pty-kernel-race-condition.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2014: \"exploiting cve-2014-0196 a walk-through of the linux pty race condition poc\" by samuel gross](http://blog.includesecurity.com/2014/06/exploit-walkthrough-cve-2014-0196-pty-kernel-race-condition.html) [article] [cve-2014-0196] cves: cve-2014-0196 android unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "29662621634d0bd4",
      "item_id": "622a68d6c4c3314e",
      "slug": "2014-vulnerabilities-lpe-cve-2014-4014-linux-kernel-local-privilege-escalation-exploitation-primary-eb890294",
      "year": 2014,
      "title": "CVE-2014-4014: Linux Kernel Local Privilege Escalation \"exploitation\"",
      "item_title": "CVE-2014-4014: Linux Kernel Local Privilege Escalation \"exploitation\"",
      "authors": [
        "Vitaly Nikolenko"
      ],
      "cves": [
        "CVE-2014-4014"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://cyseclabs.com/blog/cve-2014-4014-local-privilege-escalation",
      "primary_url": "https://cyseclabs.com/blog/cve-2014-4014-local-privilege-escalation",
      "parent_primary_url": "https://cyseclabs.com/blog/cve-2014-4014-local-privilege-escalation",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2014-vulnerabilities-lpe-cve-2014-4014-linux-kernel-local-privilege-escalation-exploitation-primary-eb890294.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2014-4014: Linux Kernel Local Privilege Escalation \"exploitation\" record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2014-4014: Linux Kernel Local Privilege Escalation \"exploitation\" resource_label: primary resource_type: article resource_url: https://cyseclabs.com/blog/cve-2014-4014-local-privilege-escalation parent_primary_url: https://cyseclabs.com/blog/cve-2014-4014-local-privilege-escalation source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2014: \"CVE-2014-4014: Linux Kernel Local Privilege Escalation \"exploitation\"\" by Vitaly Nikolenko](https://cyseclabs.com/blog/cve-2014-4014-local-privilege-escalation) [article] [CVE-2014-4014] cves: CVE-2014-4014 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kern",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://cyseclabs.com/blog/cve-2014-4014-local-privilege-escalation"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://cyseclabs.com/blog/cve-2014-4014-local-privilege-escalation"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2014-4014"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2014 Linux kernel LPE resource \"CVE-2014-4014: Linux Kernel Local Privilege Escalation \"exploitation\"\" (CVE-2014-4014); URL type: article.",
      "summary_zh": "2014 年 Linux 内核LPE资料：「CVE-2014-4014: Linux Kernel Local Privilege Escalation \"exploitation\"」（CVE-2014-4014）；URL 类型：article。",
      "source_markdown": "[2014: \"CVE-2014-4014: Linux Kernel Local Privilege Escalation \"exploitation\"\" by Vitaly Nikolenko](https://cyseclabs.com/blog/cve-2014-4014-local-privilege-escalation) [article] [CVE-2014-4014]",
      "search_text": "cve-2014-4014: linux kernel local privilege escalation \"exploitation\" cve-2014-4014: linux kernel local privilege escalation \"exploitation\" vitaly nikolenko cve-2014-4014  vulnerabilities lpe lpe primary article https://cyseclabs.com/blog/cve-2014-4014-local-privilege-escalation vulnerabilities lpe article cve-2014-4014  lpe 2014 linux kernel lpe resource \"cve-2014-4014: linux kernel local privilege escalation \"exploitation\"\" (cve-2014-4014); url type: article. 2014 年 linux 内核lpe资料：「cve-2014-4014: linux kernel local privilege escalation \"exploitation\"」（cve-2014-4014）；url 类型：article。 # cve-2014-4014: linux kernel local privilege escalation \"exploitation\" record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2014-4014: linux kernel local privilege escalation \"exploitation\" resource_label: primary resource_type: article resource_url: https://cyseclabs.com/blog/cve-2014-4014-local-privilege-escalation parent_primary_url: https://cyseclabs.com/blog/cve-2014-4014-local-privilege-escalation source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2014: \"cve-2014-4014: linux kernel local privilege escalation \"exploitation\"\" by vitaly nikolenko](https://cyseclabs.com/blog/cve-2014-4014-local-privilege-escalation) [article] [cve-2014-4014] cves: cve-2014-4014 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kern unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9ee3dda7dfbd9c7d",
      "item_id": "4d6482ddc52b61dc",
      "slug": "2014-vulnerabilities-lpe-cve-2014-4699-linux-kernel-ptrace-sysret-vulnerability-analysis-primary-18d9523d",
      "year": 2014,
      "title": "CVE-2014-4699: Linux Kernel ptrace/sysret vulnerability analysis",
      "item_title": "CVE-2014-4699: Linux Kernel ptrace/sysret vulnerability analysis",
      "authors": [
        "Vitaly Nikolenko"
      ],
      "cves": [
        "CVE-2014-4699"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://cyseclabs.com/blog/cve-2014-4699-linux-kernel-ptrace-sysret-analysis",
      "primary_url": "https://cyseclabs.com/blog/cve-2014-4699-linux-kernel-ptrace-sysret-analysis",
      "parent_primary_url": "https://cyseclabs.com/blog/cve-2014-4699-linux-kernel-ptrace-sysret-analysis",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2014-vulnerabilities-lpe-cve-2014-4699-linux-kernel-ptrace-sysret-vulnerability-analysis-primary-18d9523d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2014-4699: Linux Kernel ptrace/sysret vulnerability analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2014-4699: Linux Kernel ptrace/sysret vulnerability analysis resource_label: primary resource_type: article resource_url: https://cyseclabs.com/blog/cve-2014-4699-linux-kernel-ptrace-sysret-analysis parent_primary_url: https://cyseclabs.com/blog/cve-2014-4699-linux-kernel-ptrace-sysret-analysis source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2014: \"CVE-2014-4699: Linux Kernel ptrace/sysret vulnerability analysis\" by Vitaly Nikolenko](https://cyseclabs.com/blog/cve-2014-4699-linux-kernel-ptrace-sysret-analysis) [article] [CVE-2014-4699] cves: CVE-2014-4699 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impac",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://cyseclabs.com/blog/cve-2014-4699-linux-kernel-ptrace-sysret-analysis"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://cyseclabs.com/blog/cve-2014-4699-linux-kernel-ptrace-sysret-analysis"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2014-4699"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2014 Linux kernel LPE resource \"CVE-2014-4699: Linux Kernel ptrace/sysret vulnerability analysis\" (CVE-2014-4699); URL type: article.",
      "summary_zh": "2014 年 Linux 内核LPE资料：「CVE-2014-4699: Linux Kernel ptrace/sysret vulnerability analysis」（CVE-2014-4699）；URL 类型：article。",
      "source_markdown": "[2014: \"CVE-2014-4699: Linux Kernel ptrace/sysret vulnerability analysis\" by Vitaly Nikolenko](https://cyseclabs.com/blog/cve-2014-4699-linux-kernel-ptrace-sysret-analysis) [article] [CVE-2014-4699]",
      "search_text": "cve-2014-4699: linux kernel ptrace/sysret vulnerability analysis cve-2014-4699: linux kernel ptrace/sysret vulnerability analysis vitaly nikolenko cve-2014-4699  vulnerabilities lpe lpe primary article https://cyseclabs.com/blog/cve-2014-4699-linux-kernel-ptrace-sysret-analysis vulnerabilities lpe article cve-2014-4699  lpe 2014 linux kernel lpe resource \"cve-2014-4699: linux kernel ptrace/sysret vulnerability analysis\" (cve-2014-4699); url type: article. 2014 年 linux 内核lpe资料：「cve-2014-4699: linux kernel ptrace/sysret vulnerability analysis」（cve-2014-4699）；url 类型：article。 # cve-2014-4699: linux kernel ptrace/sysret vulnerability analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2014-4699: linux kernel ptrace/sysret vulnerability analysis resource_label: primary resource_type: article resource_url: https://cyseclabs.com/blog/cve-2014-4699-linux-kernel-ptrace-sysret-analysis parent_primary_url: https://cyseclabs.com/blog/cve-2014-4699-linux-kernel-ptrace-sysret-analysis source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2014: \"cve-2014-4699: linux kernel ptrace/sysret vulnerability analysis\" by vitaly nikolenko](https://cyseclabs.com/blog/cve-2014-4699-linux-kernel-ptrace-sysret-analysis) [article] [cve-2014-4699] cves: cve-2014-4699 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impac unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "571328c2bac2dad3",
      "item_id": "4bcb23691d83de47",
      "slug": "2014-vulnerabilities-lpe-how-to-exploit-the-x32-recvmmsg-kernel-vulnerability-cve-2014-0038-primary-292b4f74",
      "year": 2014,
      "title": "How to exploit the x32 recvmmsg() kernel vulnerability CVE 2014-0038",
      "item_title": "How to exploit the x32 recvmmsg() kernel vulnerability CVE 2014-0038",
      "authors": [
        "Samuel Gross"
      ],
      "cves": [
        "CVE-2014-0038"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://blog.includesecurity.com/2014/03/exploit-CVE-2014-0038-x32-recvmmsg-kernel-vulnerablity.html",
      "primary_url": "http://blog.includesecurity.com/2014/03/exploit-CVE-2014-0038-x32-recvmmsg-kernel-vulnerablity.html",
      "parent_primary_url": "http://blog.includesecurity.com/2014/03/exploit-CVE-2014-0038-x32-recvmmsg-kernel-vulnerablity.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2014-vulnerabilities-lpe-how-to-exploit-the-x32-recvmmsg-kernel-vulnerability-cve-2014-0038-primary-292b4f74.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# How to exploit the x32 recvmmsg() kernel vulnerability CVE 2014-0038 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: How to exploit the x32 recvmmsg() kernel vulnerability CVE 2014-0038 resource_label: primary resource_type: article resource_url: http://blog.includesecurity.com/2014/03/exploit-CVE-2014-0038-x32-recvmmsg-kernel-vulnerablity.html parent_primary_url: http://blog.includesecurity.com/2014/03/exploit-CVE-2014-0038-x32-recvmmsg-kernel-vulnerablity.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2014: \"How to exploit the x32 recvmmsg() kernel vulnerability CVE 2014-0038\" by Samuel Gross](http://blog.includesecurity.com/2014/03/exploit-CVE-2014-0038-x32-recvmmsg-kernel-vulnerablity.html) [article] [CVE-2014-0038] cves: CVE-2014-0038 android_impact_status: unknown android_impa",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://blog.includesecurity.com/2014/03/exploit-CVE-2014-0038-x32-recvmmsg-kernel-vulnerablity.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://blog.includesecurity.com/2014/03/exploit-CVE-2014-0038-x32-recvmmsg-kernel-vulnerablity.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "http://blog.includesecurity.com/2014/03/exploit-CVE-2014-0038-x32-recvmmsg-kernel-vulnerablity.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2014-0038"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2014 Linux kernel LPE resource \"How to exploit the x32 recvmmsg() kernel vulnerability CVE 2014-0038\" (CVE-2014-0038); URL type: article.",
      "summary_zh": "2014 年 Linux 内核LPE资料：「How to exploit the x32 recvmmsg() kernel vulnerability CVE 2014-0038」（CVE-2014-0038）；URL 类型：article。",
      "source_markdown": "[2014: \"How to exploit the x32 recvmmsg() kernel vulnerability CVE 2014-0038\" by Samuel Gross](http://blog.includesecurity.com/2014/03/exploit-CVE-2014-0038-x32-recvmmsg-kernel-vulnerablity.html) [article] [CVE-2014-0038]",
      "search_text": "how to exploit the x32 recvmmsg() kernel vulnerability cve 2014-0038 how to exploit the x32 recvmmsg() kernel vulnerability cve 2014-0038 samuel gross cve-2014-0038  vulnerabilities lpe lpe primary article http://blog.includesecurity.com/2014/03/exploit-cve-2014-0038-x32-recvmmsg-kernel-vulnerablity.html vulnerabilities lpe article cve-2014-0038  lpe 2014 linux kernel lpe resource \"how to exploit the x32 recvmmsg() kernel vulnerability cve 2014-0038\" (cve-2014-0038); url type: article. 2014 年 linux 内核lpe资料：「how to exploit the x32 recvmmsg() kernel vulnerability cve 2014-0038」（cve-2014-0038）；url 类型：article。 # how to exploit the x32 recvmmsg() kernel vulnerability cve 2014-0038 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: how to exploit the x32 recvmmsg() kernel vulnerability cve 2014-0038 resource_label: primary resource_type: article resource_url: http://blog.includesecurity.com/2014/03/exploit-cve-2014-0038-x32-recvmmsg-kernel-vulnerablity.html parent_primary_url: http://blog.includesecurity.com/2014/03/exploit-cve-2014-0038-x32-recvmmsg-kernel-vulnerablity.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2014: \"how to exploit the x32 recvmmsg() kernel vulnerability cve 2014-0038\" by samuel gross](http://blog.includesecurity.com/2014/03/exploit-cve-2014-0038-x32-recvmmsg-kernel-vulnerablity.html) [article] [cve-2014-0038] cves: cve-2014-0038 android_impact_status: unknown android_impa unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "0fc4c8d17a6cfbe3",
      "item_id": "85fdf6cb5ec37101",
      "slug": "2014-vulnerabilities-lpe-exploiting-the-futex-bug-and-uncovering-towelroot-primary-24b304e5",
      "year": 2014,
      "title": "Exploiting the Futex Bug and uncovering Towelroot",
      "item_title": "Exploiting the Futex Bug and uncovering Towelroot",
      "authors": [],
      "cves": [
        "CVE-2014-3153"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://tinyhack.com/2014/07/07/exploiting-the-futex-bug-and-uncovering-towelroot/",
      "primary_url": "http://tinyhack.com/2014/07/07/exploiting-the-futex-bug-and-uncovering-towelroot/",
      "parent_primary_url": "http://tinyhack.com/2014/07/07/exploiting-the-futex-bug-and-uncovering-towelroot/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2014-vulnerabilities-lpe-exploiting-the-futex-bug-and-uncovering-towelroot-primary-24b304e5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting the Futex Bug and uncovering Towelroot record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting the Futex Bug and uncovering Towelroot resource_label: primary resource_type: article resource_url: http://tinyhack.com/2014/07/07/exploiting-the-futex-bug-and-uncovering-towelroot/ parent_primary_url: http://tinyhack.com/2014/07/07/exploiting-the-futex-bug-and-uncovering-towelroot/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2014: \"Exploiting the Futex Bug and uncovering Towelroot\"](http://tinyhack.com/2014/07/07/exploiting-the-futex-bug-and-uncovering-towelroot/) [article] [CVE-2014-3153] cves: CVE-2014-3153 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://tinyhack.com/2014/07/07/exploiting-the-futex-bug-and-uncovering-towelroot/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://tinyhack.com/2014/07/07/exploiting-the-futex-bug-and-uncovering-towelroot/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2014-3153"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2014 Linux kernel LPE resource \"Exploiting the Futex Bug and uncovering Towelroot\" (CVE-2014-3153); URL type: article.",
      "summary_zh": "2014 年 Linux 内核LPE资料：「Exploiting the Futex Bug and uncovering Towelroot」（CVE-2014-3153）；URL 类型：article。",
      "source_markdown": "[2014: \"Exploiting the Futex Bug and uncovering Towelroot\"](http://tinyhack.com/2014/07/07/exploiting-the-futex-bug-and-uncovering-towelroot/) [article] [CVE-2014-3153]",
      "search_text": "exploiting the futex bug and uncovering towelroot exploiting the futex bug and uncovering towelroot  cve-2014-3153  vulnerabilities lpe lpe primary article http://tinyhack.com/2014/07/07/exploiting-the-futex-bug-and-uncovering-towelroot/ vulnerabilities lpe article cve-2014-3153  lpe 2014 linux kernel lpe resource \"exploiting the futex bug and uncovering towelroot\" (cve-2014-3153); url type: article. 2014 年 linux 内核lpe资料：「exploiting the futex bug and uncovering towelroot」（cve-2014-3153）；url 类型：article。 # exploiting the futex bug and uncovering towelroot record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting the futex bug and uncovering towelroot resource_label: primary resource_type: article resource_url: http://tinyhack.com/2014/07/07/exploiting-the-futex-bug-and-uncovering-towelroot/ parent_primary_url: http://tinyhack.com/2014/07/07/exploiting-the-futex-bug-and-uncovering-towelroot/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2014: \"exploiting the futex bug and uncovering towelroot\"](http://tinyhack.com/2014/07/07/exploiting-the-futex-bug-and-uncovering-towelroot/) [article] [cve-2014-3153] cves: cve-2014-3153 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "ef1de5a2953a7be3",
      "item_id": "e66be4e3f62fe5e0",
      "slug": "2014-vulnerabilities-lpe-cve-2014-3153-exploit-primary-5ef6a6fe",
      "year": 2014,
      "title": "CVE-2014-3153 Exploit",
      "item_title": "CVE-2014-3153 Exploit",
      "authors": [
        "Joel Eriksson"
      ],
      "cves": [
        "CVE-2014-3153"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://www.clevcode.org/cve-2014-3153-exploit/",
      "primary_url": "http://www.clevcode.org/cve-2014-3153-exploit/",
      "parent_primary_url": "http://www.clevcode.org/cve-2014-3153-exploit/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2014-vulnerabilities-lpe-cve-2014-3153-exploit-primary-5ef6a6fe.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2014-3153 Exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2014-3153 Exploit resource_label: primary resource_type: article resource_url: http://www.clevcode.org/cve-2014-3153-exploit/ parent_primary_url: http://www.clevcode.org/cve-2014-3153-exploit/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2014: \"CVE-2014-3153 Exploit\" by Joel Eriksson](http://www.clevcode.org/cve-2014-3153-exploit/) [article] [CVE-2014-3153] cves: CVE-2014-3153 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: ht",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://www.clevcode.org/cve-2014-3153-exploit/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://www.clevcode.org/cve-2014-3153-exploit/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "http://www.clevcode.org/cve-2014-3153-exploit/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2014-3153"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2014 Linux kernel LPE resource \"CVE-2014-3153 Exploit\" (CVE-2014-3153); URL type: article.",
      "summary_zh": "2014 年 Linux 内核LPE资料：「CVE-2014-3153 Exploit」（CVE-2014-3153）；URL 类型：article。",
      "source_markdown": "[2014: \"CVE-2014-3153 Exploit\" by Joel Eriksson](http://www.clevcode.org/cve-2014-3153-exploit/) [article] [CVE-2014-3153]",
      "search_text": "cve-2014-3153 exploit cve-2014-3153 exploit joel eriksson cve-2014-3153  vulnerabilities lpe lpe primary article http://www.clevcode.org/cve-2014-3153-exploit/ vulnerabilities lpe article cve-2014-3153  lpe 2014 linux kernel lpe resource \"cve-2014-3153 exploit\" (cve-2014-3153); url type: article. 2014 年 linux 内核lpe资料：「cve-2014-3153 exploit」（cve-2014-3153）；url 类型：article。 # cve-2014-3153 exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2014-3153 exploit resource_label: primary resource_type: article resource_url: http://www.clevcode.org/cve-2014-3153-exploit/ parent_primary_url: http://www.clevcode.org/cve-2014-3153-exploit/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2014: \"cve-2014-3153 exploit\" by joel eriksson](http://www.clevcode.org/cve-2014-3153-exploit/) [article] [cve-2014-3153] cves: cve-2014-3153 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: ht unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "69177acc62faa7cf",
      "item_id": "47aaa55cb1a5ea51",
      "slug": "2013-vulnerabilities-lpe-privilege-escalation-kernel-exploit-primary-4ab8dce2",
      "year": 2013,
      "title": "Privilege Escalation Kernel Exploit",
      "item_title": "Privilege Escalation Kernel Exploit",
      "authors": [
        "Julius Plenz"
      ],
      "cves": [
        "CVE-2013-1763"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.plenz.com/2013-02/privilege-escalation-kernel-exploit.html",
      "primary_url": "https://blog.plenz.com/2013-02/privilege-escalation-kernel-exploit.html",
      "parent_primary_url": "https://blog.plenz.com/2013-02/privilege-escalation-kernel-exploit.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2013-vulnerabilities-lpe-privilege-escalation-kernel-exploit-primary-4ab8dce2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Privilege Escalation Kernel Exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Privilege Escalation Kernel Exploit resource_label: primary resource_type: article resource_url: https://blog.plenz.com/2013-02/privilege-escalation-kernel-exploit.html parent_primary_url: https://blog.plenz.com/2013-02/privilege-escalation-kernel-exploit.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2013: \"Privilege Escalation Kernel Exploit\" by Julius Plenz](https://blog.plenz.com/2013-02/privilege-escalation-kernel-exploit.html) [article] [CVE-2013-1763] cves: CVE-2013-1763 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.plenz.com/2013-02/privilege-escalation-kernel-exploit.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.plenz.com/2013-02/privilege-escalation-kernel-exploit.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://blog.plenz.com/2013-02/privilege-escalation-kernel-exploit.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2013-1763"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2013 Linux kernel LPE resource \"Privilege Escalation Kernel Exploit\" (CVE-2013-1763); URL type: article.",
      "summary_zh": "2013 年 Linux 内核LPE资料：「Privilege Escalation Kernel Exploit」（CVE-2013-1763）；URL 类型：article。",
      "source_markdown": "[2013: \"Privilege Escalation Kernel Exploit\" by Julius Plenz](https://blog.plenz.com/2013-02/privilege-escalation-kernel-exploit.html) [article] [CVE-2013-1763]",
      "search_text": "privilege escalation kernel exploit privilege escalation kernel exploit julius plenz cve-2013-1763  vulnerabilities lpe lpe primary article https://blog.plenz.com/2013-02/privilege-escalation-kernel-exploit.html vulnerabilities lpe article cve-2013-1763  lpe 2013 linux kernel lpe resource \"privilege escalation kernel exploit\" (cve-2013-1763); url type: article. 2013 年 linux 内核lpe资料：「privilege escalation kernel exploit」（cve-2013-1763）；url 类型：article。 # privilege escalation kernel exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: privilege escalation kernel exploit resource_label: primary resource_type: article resource_url: https://blog.plenz.com/2013-02/privilege-escalation-kernel-exploit.html parent_primary_url: https://blog.plenz.com/2013-02/privilege-escalation-kernel-exploit.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2013: \"privilege escalation kernel exploit\" by julius plenz](https://blog.plenz.com/2013-02/privilege-escalation-kernel-exploit.html) [article] [cve-2013-1763] cves: cve-2013-1763 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "022b459cde967004",
      "item_id": "7c2617619390d693",
      "slug": "2013-vulnerabilities-lpe-a-closer-look-at-a-recent-privilege-escalation-bug-in-linux-cve-2013-2094-primary-3dd",
      "year": 2013,
      "title": "A closer look at a recent privilege escalation bug in Linux (CVE-2013-2094)",
      "item_title": "A closer look at a recent privilege escalation bug in Linux (CVE-2013-2094)",
      "authors": [
        "Joe Damato"
      ],
      "cves": [
        "CVE-2013-2094"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://timetobleed.com/a-closer-look-at-a-recent-privilege-escalation-bug-in-linux-cve-2013-2094/",
      "primary_url": "http://timetobleed.com/a-closer-look-at-a-recent-privilege-escalation-bug-in-linux-cve-2013-2094/",
      "parent_primary_url": "http://timetobleed.com/a-closer-look-at-a-recent-privilege-escalation-bug-in-linux-cve-2013-2094/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2013-vulnerabilities-lpe-a-closer-look-at-a-recent-privilege-escalation-bug-in-linux-cve-2013-2094-primary-3dd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A closer look at a recent privilege escalation bug in Linux (CVE-2013-2094) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: A closer look at a recent privilege escalation bug in Linux (CVE-2013-2094) resource_label: primary resource_type: article resource_url: http://timetobleed.com/a-closer-look-at-a-recent-privilege-escalation-bug-in-linux-cve-2013-2094/ parent_primary_url: http://timetobleed.com/a-closer-look-at-a-recent-privilege-escalation-bug-in-linux-cve-2013-2094/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2013: \"A closer look at a recent privilege escalation bug in Linux (CVE-2013-2094)\" by Joe Damato](http://timetobleed.com/a-closer-look-at-a-recent-privilege-escalation-bug-in-linux-cve-2013-2094/) [article] [CVE-2013-2094] cves: CVE-2013-2094 android_impact_status: unknown",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://timetobleed.com/a-closer-look-at-a-recent-privilege-escalation-bug-in-linux-cve-2013-2094/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://timetobleed.com/a-closer-look-at-a-recent-privilege-escalation-bug-in-linux-cve-2013-2094/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2013-2094"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2013 Linux kernel LPE resource \"A closer look at a recent privilege escalation bug in Linux (CVE-2013-2094)\" (CVE-2013-2094); URL type: article.",
      "summary_zh": "2013 年 Linux 内核LPE资料：「A closer look at a recent privilege escalation bug in Linux (CVE-2013-2094)」（CVE-2013-2094）；URL 类型：article。",
      "source_markdown": "[2013: \"A closer look at a recent privilege escalation bug in Linux (CVE-2013-2094)\" by Joe Damato](http://timetobleed.com/a-closer-look-at-a-recent-privilege-escalation-bug-in-linux-cve-2013-2094/) [article] [CVE-2013-2094]",
      "search_text": "a closer look at a recent privilege escalation bug in linux (cve-2013-2094) a closer look at a recent privilege escalation bug in linux (cve-2013-2094) joe damato cve-2013-2094  vulnerabilities lpe lpe primary article http://timetobleed.com/a-closer-look-at-a-recent-privilege-escalation-bug-in-linux-cve-2013-2094/ vulnerabilities lpe article cve-2013-2094  lpe 2013 linux kernel lpe resource \"a closer look at a recent privilege escalation bug in linux (cve-2013-2094)\" (cve-2013-2094); url type: article. 2013 年 linux 内核lpe资料：「a closer look at a recent privilege escalation bug in linux (cve-2013-2094)」（cve-2013-2094）；url 类型：article。 # a closer look at a recent privilege escalation bug in linux (cve-2013-2094) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: a closer look at a recent privilege escalation bug in linux (cve-2013-2094) resource_label: primary resource_type: article resource_url: http://timetobleed.com/a-closer-look-at-a-recent-privilege-escalation-bug-in-linux-cve-2013-2094/ parent_primary_url: http://timetobleed.com/a-closer-look-at-a-recent-privilege-escalation-bug-in-linux-cve-2013-2094/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2013: \"a closer look at a recent privilege escalation bug in linux (cve-2013-2094)\" by joe damato](http://timetobleed.com/a-closer-look-at-a-recent-privilege-escalation-bug-in-linux-cve-2013-2094/) [article] [cve-2013-2094] cves: cve-2013-2094 android_impact_status: unknown unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f8691f8da5396a58",
      "item_id": "ec5aae968c56be7a",
      "slug": "2012-vulnerabilities-lpe-linux-local-privilege-escalation-via-suid-proc-pid-mem-write-primary-b2ed4468",
      "year": 2012,
      "title": "Linux Local Privilege Escalation via SUID /proc/pid/mem Write",
      "item_title": "Linux Local Privilege Escalation via SUID /proc/pid/mem Write",
      "authors": [
        "Jason Donenfeld"
      ],
      "cves": [
        "CVE-2012-0056"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://git.zx2c4.com/CVE-2012-0056/about/",
      "primary_url": "https://git.zx2c4.com/CVE-2012-0056/about/",
      "parent_primary_url": "https://git.zx2c4.com/CVE-2012-0056/about/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2012-vulnerabilities-lpe-linux-local-privilege-escalation-via-suid-proc-pid-mem-write-primary-b2ed4468.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Local Privilege Escalation via SUID /proc/pid/mem Write record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux Local Privilege Escalation via SUID /proc/pid/mem Write resource_label: primary resource_type: article resource_url: https://git.zx2c4.com/CVE-2012-0056/about/ parent_primary_url: https://git.zx2c4.com/CVE-2012-0056/about/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2012: \"Linux Local Privilege Escalation via SUID /proc/pid/mem Write\" by Jason Donenfeld](https://git.zx2c4.com/CVE-2012-0056/about/) [article] [CVE-2012-0056] cves: CVE-2012-0056 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devic",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://git.zx2c4.com/CVE-2012-0056/about/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://git.zx2c4.com/CVE-2012-0056/about/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2012-0056"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2012 Linux kernel LPE resource \"Linux Local Privilege Escalation via SUID /proc/pid/mem Write\" (CVE-2012-0056); URL type: article.",
      "summary_zh": "2012 年 Linux 内核LPE资料：「Linux Local Privilege Escalation via SUID /proc/pid/mem Write」（CVE-2012-0056）；URL 类型：article。",
      "source_markdown": "[2012: \"Linux Local Privilege Escalation via SUID /proc/pid/mem Write\" by Jason Donenfeld](https://git.zx2c4.com/CVE-2012-0056/about/) [article] [CVE-2012-0056]",
      "search_text": "linux local privilege escalation via suid /proc/pid/mem write linux local privilege escalation via suid /proc/pid/mem write jason donenfeld cve-2012-0056  vulnerabilities lpe lpe primary article https://git.zx2c4.com/cve-2012-0056/about/ vulnerabilities lpe article cve-2012-0056  lpe 2012 linux kernel lpe resource \"linux local privilege escalation via suid /proc/pid/mem write\" (cve-2012-0056); url type: article. 2012 年 linux 内核lpe资料：「linux local privilege escalation via suid /proc/pid/mem write」（cve-2012-0056）；url 类型：article。 # linux local privilege escalation via suid /proc/pid/mem write record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux local privilege escalation via suid /proc/pid/mem write resource_label: primary resource_type: article resource_url: https://git.zx2c4.com/cve-2012-0056/about/ parent_primary_url: https://git.zx2c4.com/cve-2012-0056/about/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2012: \"linux local privilege escalation via suid /proc/pid/mem write\" by jason donenfeld](https://git.zx2c4.com/cve-2012-0056/about/) [article] [cve-2012-0056] cves: cve-2012-0056 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devic unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "cff9b1ae71b93f34",
      "item_id": "9ef0b01c8574fd91",
      "slug": "2011-vulnerabilities-lpe-kernel-exploitation-via-uninitialized-stack-primary-32a50675",
      "year": 2011,
      "title": "Kernel Exploitation Via Uninitialized Stack",
      "item_title": "Kernel Exploitation Via Uninitialized Stack",
      "authors": [
        "Kees Cook at DEF CON"
      ],
      "cves": [
        "CVE-2010-2963"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.defcon.org/images/defcon-19/dc-19-presentations/Cook/DEFCON-19-Cook-Kernel-Exploitation.pdf",
      "primary_url": "https://www.defcon.org/images/defcon-19/dc-19-presentations/Cook/DEFCON-19-Cook-Kernel-Exploitation.pdf",
      "parent_primary_url": "https://www.defcon.org/images/defcon-19/dc-19-presentations/Cook/DEFCON-19-Cook-Kernel-Exploitation.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2011-vulnerabilities-lpe-kernel-exploitation-via-uninitialized-stack-primary-32a50675.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Exploitation Via Uninitialized Stack record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Kernel Exploitation Via Uninitialized Stack resource_label: primary resource_type: slides resource_url: https://www.defcon.org/images/defcon-19/dc-19-presentations/Cook/DEFCON-19-Cook-Kernel-Exploitation.pdf parent_primary_url: https://www.defcon.org/images/defcon-19/dc-19-presentations/Cook/DEFCON-19-Cook-Kernel-Exploitation.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2011: \"Kernel Exploitation Via Uninitialized Stack\" by Kees Cook at DEF CON](https://www.defcon.org/images/defcon-19/dc-19-presentations/Cook/DEFCON-19-Cook-Kernel-Exploitation.pdf) [slides] [[video](https://www.youtube.com/watch?v=jg-wnwnkbsy)] [CVE-2010-2963] cves: CVE-2010-2963 android_impact_status: unknown android_impact",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.defcon.org/images/defcon-19/dc-19-presentations/Cook/DEFCON-19-Cook-Kernel-Exploitation.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=jg-wnwnkbsy"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.defcon.org/images/defcon-19/dc-19-presentations/Cook/DEFCON-19-Cook-Kernel-Exploitation.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=jg-wnwnkbsy"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "slides",
        "CVE-2010-2963"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2011 Linux kernel LPE resource \"Kernel Exploitation Via Uninitialized Stack\" (CVE-2010-2963); URL type: slides.",
      "summary_zh": "2011 年 Linux 内核LPE资料：「Kernel Exploitation Via Uninitialized Stack」（CVE-2010-2963）；URL 类型：slides。",
      "source_markdown": "[2011: \"Kernel Exploitation Via Uninitialized Stack\" by Kees Cook at DEF CON](https://www.defcon.org/images/defcon-19/dc-19-presentations/Cook/DEFCON-19-Cook-Kernel-Exploitation.pdf) [slides] [[video](https://www.youtube.com/watch?v=jg-wnwnkbsy)] [CVE-2010-2963]",
      "search_text": "kernel exploitation via uninitialized stack kernel exploitation via uninitialized stack kees cook at def con cve-2010-2963  vulnerabilities lpe lpe primary slides https://www.defcon.org/images/defcon-19/dc-19-presentations/cook/defcon-19-cook-kernel-exploitation.pdf vulnerabilities lpe slides cve-2010-2963  lpe 2011 linux kernel lpe resource \"kernel exploitation via uninitialized stack\" (cve-2010-2963); url type: slides. 2011 年 linux 内核lpe资料：「kernel exploitation via uninitialized stack」（cve-2010-2963）；url 类型：slides。 # kernel exploitation via uninitialized stack record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: kernel exploitation via uninitialized stack resource_label: primary resource_type: slides resource_url: https://www.defcon.org/images/defcon-19/dc-19-presentations/cook/defcon-19-cook-kernel-exploitation.pdf parent_primary_url: https://www.defcon.org/images/defcon-19/dc-19-presentations/cook/defcon-19-cook-kernel-exploitation.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2011: \"kernel exploitation via uninitialized stack\" by kees cook at def con](https://www.defcon.org/images/defcon-19/dc-19-presentations/cook/defcon-19-cook-kernel-exploitation.pdf) [slides] [[video](https://www.youtube.com/watch?v=jg-wnwnkbsy)] [cve-2010-2963] cves: cve-2010-2963 android_impact_status: unknown android_impact unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "f38c96811391d82f",
      "item_id": "9ef0b01c8574fd91",
      "slug": "2011-vulnerabilities-lpe-kernel-exploitation-via-uninitialized-stack-video-79487748",
      "year": 2011,
      "title": "Kernel Exploitation Via Uninitialized Stack · video",
      "item_title": "Kernel Exploitation Via Uninitialized Stack",
      "authors": [
        "Kees Cook at DEF CON"
      ],
      "cves": [
        "CVE-2010-2963"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=jg-wnwnkbsy",
      "primary_url": "https://www.youtube.com/watch?v=jg-wnwnkbsy",
      "parent_primary_url": "https://www.defcon.org/images/defcon-19/dc-19-presentations/Cook/DEFCON-19-Cook-Kernel-Exploitation.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2011-vulnerabilities-lpe-kernel-exploitation-via-uninitialized-stack-video-79487748.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Exploitation Via Uninitialized Stack · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Kernel Exploitation Via Uninitialized Stack resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=jg-wnwnkbsy parent_primary_url: https://www.defcon.org/images/defcon-19/dc-19-presentations/Cook/DEFCON-19-Cook-Kernel-Exploitation.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2011: \"Kernel Exploitation Via Uninitialized Stack\" by Kees Cook at DEF CON](https://www.defcon.org/images/defcon-19/dc-19-presentations/Cook/DEFCON-19-Cook-Kernel-Exploitation.pdf) [slides] [[video](https://www.youtube.com/watch?v=jg-wnwnkbsy)] [CVE-2010-2963] cves: CVE-2010-2963 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Andr",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.defcon.org/images/defcon-19/dc-19-presentations/Cook/DEFCON-19-Cook-Kernel-Exploitation.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=jg-wnwnkbsy"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.defcon.org/images/defcon-19/dc-19-presentations/Cook/DEFCON-19-Cook-Kernel-Exploitation.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=jg-wnwnkbsy"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "video",
        "CVE-2010-2963"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2011 Linux kernel LPE resource \"Kernel Exploitation Via Uninitialized Stack · video\" (CVE-2010-2963); URL type: video.",
      "summary_zh": "2011 年 Linux 内核LPE资料：「Kernel Exploitation Via Uninitialized Stack · video」（CVE-2010-2963）；URL 类型：video。",
      "source_markdown": "[2011: \"Kernel Exploitation Via Uninitialized Stack\" by Kees Cook at DEF CON](https://www.defcon.org/images/defcon-19/dc-19-presentations/Cook/DEFCON-19-Cook-Kernel-Exploitation.pdf) [slides] [[video](https://www.youtube.com/watch?v=jg-wnwnkbsy)] [CVE-2010-2963]",
      "search_text": "kernel exploitation via uninitialized stack · video kernel exploitation via uninitialized stack kees cook at def con cve-2010-2963  vulnerabilities lpe lpe video video https://www.youtube.com/watch?v=jg-wnwnkbsy vulnerabilities lpe video cve-2010-2963  lpe 2011 linux kernel lpe resource \"kernel exploitation via uninitialized stack · video\" (cve-2010-2963); url type: video. 2011 年 linux 内核lpe资料：「kernel exploitation via uninitialized stack · video」（cve-2010-2963）；url 类型：video。 # kernel exploitation via uninitialized stack · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: kernel exploitation via uninitialized stack resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=jg-wnwnkbsy parent_primary_url: https://www.defcon.org/images/defcon-19/dc-19-presentations/cook/defcon-19-cook-kernel-exploitation.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2011: \"kernel exploitation via uninitialized stack\" by kees cook at def con](https://www.defcon.org/images/defcon-19/dc-19-presentations/cook/defcon-19-cook-kernel-exploitation.pdf) [slides] [[video](https://www.youtube.com/watch?v=jg-wnwnkbsy)] [cve-2010-2963] cves: cve-2010-2963 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; andr unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "d61f36d095d54dfd",
      "item_id": "99b1f8e3a9b33f82",
      "slug": "2010-vulnerabilities-lpe-cve-2010-2963-v4l-compat-exploit-primary-c98b3a3f",
      "year": 2010,
      "title": "CVE-2010-2963 v4l compat exploit",
      "item_title": "CVE-2010-2963 v4l compat exploit",
      "authors": [
        "Kees Cook"
      ],
      "cves": [
        "CVE-2010-2963"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://outflux.net/blog/archives/2010/10/19/cve-2010-2963-v4l-compat-exploit/",
      "primary_url": "https://outflux.net/blog/archives/2010/10/19/cve-2010-2963-v4l-compat-exploit/",
      "parent_primary_url": "https://outflux.net/blog/archives/2010/10/19/cve-2010-2963-v4l-compat-exploit/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2010-vulnerabilities-lpe-cve-2010-2963-v4l-compat-exploit-primary-c98b3a3f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2010-2963 v4l compat exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2010-2963 v4l compat exploit resource_label: primary resource_type: article resource_url: https://outflux.net/blog/archives/2010/10/19/cve-2010-2963-v4l-compat-exploit/ parent_primary_url: https://outflux.net/blog/archives/2010/10/19/cve-2010-2963-v4l-compat-exploit/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"CVE-2010-2963 v4l compat exploit\" by Kees Cook](https://outflux.net/blog/archives/2010/10/19/cve-2010-2963-v4l-compat-exploit/) [article] [CVE-2010-2963] cves: CVE-2010-2963 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Produ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://outflux.net/blog/archives/2010/10/19/cve-2010-2963-v4l-compat-exploit/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://outflux.net/blog/archives/2010/10/19/cve-2010-2963-v4l-compat-exploit/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://outflux.net/blog/archives/2010/10/19/cve-2010-2963-v4l-compat-exploit/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2010-2963"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2010 Linux kernel LPE resource \"CVE-2010-2963 v4l compat exploit\" (CVE-2010-2963); URL type: article.",
      "summary_zh": "2010 年 Linux 内核LPE资料：「CVE-2010-2963 v4l compat exploit」（CVE-2010-2963）；URL 类型：article。",
      "source_markdown": "[2010: \"CVE-2010-2963 v4l compat exploit\" by Kees Cook](https://outflux.net/blog/archives/2010/10/19/cve-2010-2963-v4l-compat-exploit/) [article] [CVE-2010-2963]",
      "search_text": "cve-2010-2963 v4l compat exploit cve-2010-2963 v4l compat exploit kees cook cve-2010-2963  vulnerabilities lpe lpe primary article https://outflux.net/blog/archives/2010/10/19/cve-2010-2963-v4l-compat-exploit/ vulnerabilities lpe article cve-2010-2963  lpe 2010 linux kernel lpe resource \"cve-2010-2963 v4l compat exploit\" (cve-2010-2963); url type: article. 2010 年 linux 内核lpe资料：「cve-2010-2963 v4l compat exploit」（cve-2010-2963）；url 类型：article。 # cve-2010-2963 v4l compat exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2010-2963 v4l compat exploit resource_label: primary resource_type: article resource_url: https://outflux.net/blog/archives/2010/10/19/cve-2010-2963-v4l-compat-exploit/ parent_primary_url: https://outflux.net/blog/archives/2010/10/19/cve-2010-2963-v4l-compat-exploit/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"cve-2010-2963 v4l compat exploit\" by kees cook](https://outflux.net/blog/archives/2010/10/19/cve-2010-2963-v4l-compat-exploit/) [article] [cve-2010-2963] cves: cve-2010-2963 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: produ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "f03a6e874d1be3db",
      "item_id": "e031689f6afe89ed",
      "slug": "2010-vulnerabilities-lpe-exploiting-large-memory-management-vulnerabilities-in-xorg-server-running-on-linux-pr",
      "year": 2010,
      "title": "Exploiting large memory management vulnerabilities in Xorg server running on Linux",
      "item_title": "Exploiting large memory management vulnerabilities in Xorg server running on Linux",
      "authors": [
        "Rafal Wojtczuk"
      ],
      "cves": [
        "CVE-2010-2240"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://invisiblethingslab.com/resources/misc-2010/xorg-large-memory-attacks.pdf",
      "primary_url": "http://invisiblethingslab.com/resources/misc-2010/xorg-large-memory-attacks.pdf",
      "parent_primary_url": "http://invisiblethingslab.com/resources/misc-2010/xorg-large-memory-attacks.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2010-vulnerabilities-lpe-exploiting-large-memory-management-vulnerabilities-in-xorg-server-running-on-linux-pr.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting large memory management vulnerabilities in Xorg server running on Linux record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Exploiting large memory management vulnerabilities in Xorg server running on Linux resource_label: primary resource_type: article resource_url: http://invisiblethingslab.com/resources/misc-2010/xorg-large-memory-attacks.pdf parent_primary_url: http://invisiblethingslab.com/resources/misc-2010/xorg-large-memory-attacks.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"Exploiting large memory management vulnerabilities in Xorg server running on Linux\" by Rafal Wojtczuk](http://invisiblethingslab.com/resources/misc-2010/xorg-large-memory-attacks.pdf) [article] [CVE-2010-2240] cves: CVE-2010-2240 android_impact_status: unknown android_impact_reason: Linux",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://invisiblethingslab.com/resources/misc-2010/xorg-large-memory-attacks.pdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://invisiblethingslab.com/resources/misc-2010/xorg-large-memory-attacks.pdf"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2010-2240"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2010 Linux kernel LPE resource \"Exploiting large memory management vulnerabilities in Xorg server running on Linux\" (CVE-2010-2240); URL type: article.",
      "summary_zh": "2010 年 Linux 内核LPE资料：「Exploiting large memory management vulnerabilities in Xorg server running on Linux」（CVE-2010-2240）；URL 类型：article。",
      "source_markdown": "[2010: \"Exploiting large memory management vulnerabilities in Xorg server running on Linux\" by Rafal Wojtczuk](http://invisiblethingslab.com/resources/misc-2010/xorg-large-memory-attacks.pdf) [article] [CVE-2010-2240]",
      "search_text": "exploiting large memory management vulnerabilities in xorg server running on linux exploiting large memory management vulnerabilities in xorg server running on linux rafal wojtczuk cve-2010-2240  vulnerabilities lpe lpe primary article http://invisiblethingslab.com/resources/misc-2010/xorg-large-memory-attacks.pdf vulnerabilities lpe article cve-2010-2240  lpe 2010 linux kernel lpe resource \"exploiting large memory management vulnerabilities in xorg server running on linux\" (cve-2010-2240); url type: article. 2010 年 linux 内核lpe资料：「exploiting large memory management vulnerabilities in xorg server running on linux」（cve-2010-2240）；url 类型：article。 # exploiting large memory management vulnerabilities in xorg server running on linux record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: exploiting large memory management vulnerabilities in xorg server running on linux resource_label: primary resource_type: article resource_url: http://invisiblethingslab.com/resources/misc-2010/xorg-large-memory-attacks.pdf parent_primary_url: http://invisiblethingslab.com/resources/misc-2010/xorg-large-memory-attacks.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"exploiting large memory management vulnerabilities in xorg server running on linux\" by rafal wojtczuk](http://invisiblethingslab.com/resources/misc-2010/xorg-large-memory-attacks.pdf) [article] [cve-2010-2240] cves: cve-2010-2240 android_impact_status: unknown android_impact_reason: linux unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "28a203c527a11c24",
      "item_id": "24ffc2e5df385eb9",
      "slug": "2010-vulnerabilities-lpe-cve-2007-4573-the-anatomy-of-a-kernel-exploit-primary-6c77f882",
      "year": 2010,
      "title": "CVE-2007-4573: The Anatomy of a Kernel Exploit",
      "item_title": "CVE-2007-4573: The Anatomy of a Kernel Exploit",
      "authors": [
        "Nelson Elhage"
      ],
      "cves": [
        "CVE-2007-4573"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.nelhage.com/2010/02/cve-2007-4573-the-anatomy-of-a-kernel-exploit/",
      "primary_url": "https://blog.nelhage.com/2010/02/cve-2007-4573-the-anatomy-of-a-kernel-exploit/",
      "parent_primary_url": "https://blog.nelhage.com/2010/02/cve-2007-4573-the-anatomy-of-a-kernel-exploit/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2010-vulnerabilities-lpe-cve-2007-4573-the-anatomy-of-a-kernel-exploit-primary-6c77f882.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2007-4573: The Anatomy of a Kernel Exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2007-4573: The Anatomy of a Kernel Exploit resource_label: primary resource_type: article resource_url: https://blog.nelhage.com/2010/02/cve-2007-4573-the-anatomy-of-a-kernel-exploit/ parent_primary_url: https://blog.nelhage.com/2010/02/cve-2007-4573-the-anatomy-of-a-kernel-exploit/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"CVE-2007-4573: The Anatomy of a Kernel Exploit\" by Nelson Elhage](https://blog.nelhage.com/2010/02/cve-2007-4573-the-anatomy-of-a-kernel-exploit/) [article] [CVE-2007-4573] cves: CVE-2007-4573 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport revie",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.nelhage.com/2010/02/cve-2007-4573-the-anatomy-of-a-kernel-exploit/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.nelhage.com/2010/02/cve-2007-4573-the-anatomy-of-a-kernel-exploit/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://blog.nelhage.com/2010/02/cve-2007-4573-the-anatomy-of-a-kernel-exploit/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "LPE",
        "article",
        "CVE-2007-4573"
      ],
      "affected_area": "",
      "exploit_stage": "LPE",
      "summary_en": "2010 Linux kernel LPE resource \"CVE-2007-4573: The Anatomy of a Kernel Exploit\" (CVE-2007-4573); URL type: article.",
      "summary_zh": "2010 年 Linux 内核LPE资料：「CVE-2007-4573: The Anatomy of a Kernel Exploit」（CVE-2007-4573）；URL 类型：article。",
      "source_markdown": "[2010: \"CVE-2007-4573: The Anatomy of a Kernel Exploit\" by Nelson Elhage](https://blog.nelhage.com/2010/02/cve-2007-4573-the-anatomy-of-a-kernel-exploit/) [article] [CVE-2007-4573]",
      "search_text": "cve-2007-4573: the anatomy of a kernel exploit cve-2007-4573: the anatomy of a kernel exploit nelson elhage cve-2007-4573  vulnerabilities lpe lpe primary article https://blog.nelhage.com/2010/02/cve-2007-4573-the-anatomy-of-a-kernel-exploit/ vulnerabilities lpe article cve-2007-4573  lpe 2010 linux kernel lpe resource \"cve-2007-4573: the anatomy of a kernel exploit\" (cve-2007-4573); url type: article. 2010 年 linux 内核lpe资料：「cve-2007-4573: the anatomy of a kernel exploit」（cve-2007-4573）；url 类型：article。 # cve-2007-4573: the anatomy of a kernel exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2007-4573: the anatomy of a kernel exploit resource_label: primary resource_type: article resource_url: https://blog.nelhage.com/2010/02/cve-2007-4573-the-anatomy-of-a-kernel-exploit/ parent_primary_url: https://blog.nelhage.com/2010/02/cve-2007-4573-the-anatomy-of-a-kernel-exploit/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"cve-2007-4573: the anatomy of a kernel exploit\" by nelson elhage](https://blog.nelhage.com/2010/02/cve-2007-4573-the-anatomy-of-a-kernel-exploit/) [article] [cve-2007-4573] cves: cve-2007-4573 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport revie unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "43e1247a5832bf00",
      "item_id": "89dc68faffb2da89",
      "slug": "2010-vulnerabilities-lpe-linux-kernel-can-slub-overflow-primary-98e4dd0a",
      "year": 2010,
      "title": "Linux Kernel CAN SLUB Overflow",
      "item_title": "Linux Kernel CAN SLUB Overflow",
      "authors": [
        "Jon Oberheide"
      ],
      "cves": [
        "CVE-2010-2959"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://jon.oberheide.org/blog/2010/09/10/linux-kernel-can-slub-overflow/",
      "primary_url": "https://jon.oberheide.org/blog/2010/09/10/linux-kernel-can-slub-overflow/",
      "parent_primary_url": "https://jon.oberheide.org/blog/2010/09/10/linux-kernel-can-slub-overflow/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2010-vulnerabilities-lpe-linux-kernel-can-slub-overflow-primary-98e4dd0a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel CAN SLUB Overflow record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux Kernel CAN SLUB Overflow resource_label: primary resource_type: article resource_url: https://jon.oberheide.org/blog/2010/09/10/linux-kernel-can-slub-overflow/ parent_primary_url: https://jon.oberheide.org/blog/2010/09/10/linux-kernel-can-slub-overflow/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"Linux Kernel CAN SLUB Overflow\" by Jon Oberheide](https://jon.oberheide.org/blog/2010/09/10/linux-kernel-can-slub-overflow/) [article] [CVE-2010-2959] cves: CVE-2010-2959 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://jon.oberheide.org/blog/2010/09/10/linux-kernel-can-slub-overflow/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://jon.oberheide.org/blog/2010/09/10/linux-kernel-can-slub-overflow/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2010-2959"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The Linux Kernel CAN SLUB Overflow vulnerability allows local privilege escalation.",
      "summary_zh": "Linux内核CAN SLUB溢出漏洞允许本地权限提升。",
      "source_markdown": "[2010: \"Linux Kernel CAN SLUB Overflow\" by Jon Oberheide](https://jon.oberheide.org/blog/2010/09/10/linux-kernel-can-slub-overflow/) [article] [CVE-2010-2959]",
      "search_text": "linux kernel can slub overflow linux kernel can slub overflow jon oberheide cve-2010-2959  vulnerabilities lpe lpe primary article https://jon.oberheide.org/blog/2010/09/10/linux-kernel-can-slub-overflow/ lpe cve-2010-2959  vulnerability the linux kernel can slub overflow vulnerability allows local privilege escalation. linux内核can slub溢出漏洞允许本地权限提升。 # linux kernel can slub overflow record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel can slub overflow resource_label: primary resource_type: article resource_url: https://jon.oberheide.org/blog/2010/09/10/linux-kernel-can-slub-overflow/ parent_primary_url: https://jon.oberheide.org/blog/2010/09/10/linux-kernel-can-slub-overflow/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"linux kernel can slub overflow\" by jon oberheide](https://jon.oberheide.org/blog/2010/09/10/linux-kernel-can-slub-overflow/) [article] [cve-2010-2959] cves: cve-2010-2959 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a6329ec23fd09e90",
      "item_id": "35ebf45b0ee79ec9",
      "slug": "2010-vulnerabilities-lpe-af-can-linux-kernel-overflow-primary-dc0646ac",
      "year": 2010,
      "title": "af_can linux kernel overflow",
      "item_title": "af_can linux kernel overflow",
      "authors": [
        "Ben Hawkes"
      ],
      "cves": [
        "CVE-2010-2959"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://inertiawar.com/af_can/",
      "primary_url": "http://inertiawar.com/af_can/",
      "parent_primary_url": "http://inertiawar.com/af_can/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2010-vulnerabilities-lpe-af-can-linux-kernel-overflow-primary-dc0646ac.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# af_can linux kernel overflow record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: af_can linux kernel overflow resource_label: primary resource_type: article resource_url: http://inertiawar.com/af_can/ parent_primary_url: http://inertiawar.com/af_can/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"af_can linux kernel overflow\" by Ben Hawkes](http://inertiawar.com/af_can/) [article] [CVE-2010-2959] cves: CVE-2010-2959 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://inertiawar.com/af_can/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://inertiawar.com/af_can/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2010-2959"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The af_can linux kernel overflow vulnerability can lead to local privilege escalation.",
      "summary_zh": "af_can Linux内核溢出漏洞可能导致本地权限提升。",
      "source_markdown": "[2010: \"af_can linux kernel overflow\" by Ben Hawkes](http://inertiawar.com/af_can/) [article] [CVE-2010-2959]",
      "search_text": "af_can linux kernel overflow af_can linux kernel overflow ben hawkes cve-2010-2959  vulnerabilities lpe lpe primary article http://inertiawar.com/af_can/ lpe cve-2010-2959  vulnerability the af_can linux kernel overflow vulnerability can lead to local privilege escalation. af_can linux内核溢出漏洞可能导致本地权限提升。 # af_can linux kernel overflow record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: af_can linux kernel overflow resource_label: primary resource_type: article resource_url: http://inertiawar.com/af_can/ parent_primary_url: http://inertiawar.com/af_can/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"af_can linux kernel overflow\" by ben hawkes](http://inertiawar.com/af_can/) [article] [cve-2010-2959] cves: cve-2010-2959 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article]  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "76f72ce500f9b819",
      "item_id": "e95730f512f47bea",
      "slug": "2010-vulnerabilities-lpe-linux-compat-vulns-part-1-primary-372577be",
      "year": 2010,
      "title": "linux compat vulns (part 1)",
      "item_title": "linux compat vulns (part 1)",
      "authors": [
        "Ben Hawkes"
      ],
      "cves": [
        "CVE-2010-3081"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://inertiawar.com/compat1/",
      "primary_url": "http://inertiawar.com/compat1/",
      "parent_primary_url": "http://inertiawar.com/compat1/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2010-vulnerabilities-lpe-linux-compat-vulns-part-1-primary-372577be.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# linux compat vulns (part 1) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: linux compat vulns (part 1) resource_label: primary resource_type: article resource_url: http://inertiawar.com/compat1/ parent_primary_url: http://inertiawar.com/compat1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"linux compat vulns (part 1)\" by Ben Hawkes](http://inertiawar.com/compat1/) [article] [CVE-2010-3081] cves: CVE-2010-3081 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://inertiawar.com/compat1/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://inertiawar.com/compat1/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2010-3081"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The linux compat vulnerabilities part 1 discusses local privilege escalation issues.",
      "summary_zh": "Linux兼容性漏洞第一部分讨论了本地权限提升问题。",
      "source_markdown": "[2010: \"linux compat vulns (part 1)\" by Ben Hawkes](http://inertiawar.com/compat1/) [article] [CVE-2010-3081]",
      "search_text": "linux compat vulns (part 1) linux compat vulns (part 1) ben hawkes cve-2010-3081  vulnerabilities lpe lpe primary article http://inertiawar.com/compat1/ lpe cve-2010-3081  vulnerability the linux compat vulnerabilities part 1 discusses local privilege escalation issues. linux兼容性漏洞第一部分讨论了本地权限提升问题。 # linux compat vulns (part 1) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux compat vulns (part 1) resource_label: primary resource_type: article resource_url: http://inertiawar.com/compat1/ parent_primary_url: http://inertiawar.com/compat1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"linux compat vulns (part 1)\" by ben hawkes](http://inertiawar.com/compat1/) [article] [cve-2010-3081] cves: cve-2010-3081 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article]  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1cd9c9ea7c152d3d",
      "item_id": "318cf03cc229943f",
      "slug": "2010-vulnerabilities-lpe-linux-compat-vulns-part-2-primary-8b3a1b6d",
      "year": 2010,
      "title": "linux compat vulns (part 2)",
      "item_title": "linux compat vulns (part 2)",
      "authors": [
        "Ben Hawkes"
      ],
      "cves": [
        "CVE-2010-3301"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://inertiawar.com/compat2/",
      "primary_url": "http://inertiawar.com/compat2/",
      "parent_primary_url": "http://inertiawar.com/compat2/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2010-vulnerabilities-lpe-linux-compat-vulns-part-2-primary-8b3a1b6d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# linux compat vulns (part 2) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: linux compat vulns (part 2) resource_label: primary resource_type: article resource_url: http://inertiawar.com/compat2/ parent_primary_url: http://inertiawar.com/compat2/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"linux compat vulns (part 2)\" by Ben Hawkes](http://inertiawar.com/compat2/) [article] [CVE-2010-3301] cves: CVE-2010-3301 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://inertiawar.com/compat2/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://inertiawar.com/compat2/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2010-3301"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The linux compat vulnerabilities part 2 continues the discussion on local privilege escalation.",
      "summary_zh": "Linux兼容性漏洞第二部分继续讨论本地权限提升。",
      "source_markdown": "[2010: \"linux compat vulns (part 2)\" by Ben Hawkes](http://inertiawar.com/compat2/) [article] [CVE-2010-3301]",
      "search_text": "linux compat vulns (part 2) linux compat vulns (part 2) ben hawkes cve-2010-3301  vulnerabilities lpe lpe primary article http://inertiawar.com/compat2/ lpe cve-2010-3301  vulnerability the linux compat vulnerabilities part 2 continues the discussion on local privilege escalation. linux兼容性漏洞第二部分继续讨论本地权限提升。 # linux compat vulns (part 2) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux compat vulns (part 2) resource_label: primary resource_type: article resource_url: http://inertiawar.com/compat2/ parent_primary_url: http://inertiawar.com/compat2/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"linux compat vulns (part 2)\" by ben hawkes](http://inertiawar.com/compat2/) [article] [cve-2010-3301] cves: cve-2010-3301 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article]  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9a662531c543174e",
      "item_id": "c68ed3ce2d13e992",
      "slug": "2010-vulnerabilities-lpe-some-notes-on-cve-2010-3081-exploitability-primary-9eff5e0a",
      "year": 2010,
      "title": "Some Notes on CVE-2010-3081 Exploitability",
      "item_title": "Some Notes on CVE-2010-3081 Exploitability",
      "authors": [],
      "cves": [
        "CVE-2010-3081"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.nelhage.com/2010/11/exploiting-cve-2010-3081/",
      "primary_url": "https://blog.nelhage.com/2010/11/exploiting-cve-2010-3081/",
      "parent_primary_url": "https://blog.nelhage.com/2010/11/exploiting-cve-2010-3081/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2010-vulnerabilities-lpe-some-notes-on-cve-2010-3081-exploitability-primary-9eff5e0a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Some Notes on CVE-2010-3081 Exploitability record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Some Notes on CVE-2010-3081 Exploitability resource_label: primary resource_type: article resource_url: https://blog.nelhage.com/2010/11/exploiting-cve-2010-3081/ parent_primary_url: https://blog.nelhage.com/2010/11/exploiting-cve-2010-3081/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"Some Notes on CVE-2010-3081 Exploitability\"](https://blog.nelhage.com/2010/11/exploiting-cve-2010-3081/) [article] [CVE-2010-3081] cves: CVE-2010-3081 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel ra",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.nelhage.com/2010/11/exploiting-cve-2010-3081/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.nelhage.com/2010/11/exploiting-cve-2010-3081/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2010-3081"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Notes on CVE-2010-3081 highlight its exploitability for local privilege escalation.",
      "summary_zh": "关于CVE-2010-3081的笔记强调了其本地权限提升的可利用性。",
      "source_markdown": "[2010: \"Some Notes on CVE-2010-3081 Exploitability\"](https://blog.nelhage.com/2010/11/exploiting-cve-2010-3081/) [article] [CVE-2010-3081]",
      "search_text": "some notes on cve-2010-3081 exploitability some notes on cve-2010-3081 exploitability  cve-2010-3081  vulnerabilities lpe lpe primary article https://blog.nelhage.com/2010/11/exploiting-cve-2010-3081/ lpe cve-2010-3081  vulnerability notes on cve-2010-3081 highlight its exploitability for local privilege escalation. 关于cve-2010-3081的笔记强调了其本地权限提升的可利用性。 # some notes on cve-2010-3081 exploitability record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: some notes on cve-2010-3081 exploitability resource_label: primary resource_type: article resource_url: https://blog.nelhage.com/2010/11/exploiting-cve-2010-3081/ parent_primary_url: https://blog.nelhage.com/2010/11/exploiting-cve-2010-3081/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"some notes on cve-2010-3081 exploitability\"](https://blog.nelhage.com/2010/11/exploiting-cve-2010-3081/) [article] [cve-2010-3081] cves: cve-2010-3081 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel ra unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "4b9987de49d37531",
      "item_id": "67f3a5ae519d72ca",
      "slug": "2010-vulnerabilities-lpe-anatomy-of-an-exploit-cve-2010-3081-primary-e8546559",
      "year": 2010,
      "title": "Anatomy of an exploit: CVE-2010-3081",
      "item_title": "Anatomy of an exploit: CVE-2010-3081",
      "authors": [],
      "cves": [
        "CVE-2010-3081"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blogs.oracle.com/ksplice/anatomy-of-an-exploit%3a-cve-2010-3081",
      "primary_url": "https://blogs.oracle.com/ksplice/anatomy-of-an-exploit%3a-cve-2010-3081",
      "parent_primary_url": "https://blogs.oracle.com/ksplice/anatomy-of-an-exploit%3a-cve-2010-3081",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2010-vulnerabilities-lpe-anatomy-of-an-exploit-cve-2010-3081-primary-e8546559.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Anatomy of an exploit: CVE-2010-3081 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Anatomy of an exploit: CVE-2010-3081 resource_label: primary resource_type: article resource_url: https://blogs.oracle.com/ksplice/anatomy-of-an-exploit%3a-cve-2010-3081 parent_primary_url: https://blogs.oracle.com/ksplice/anatomy-of-an-exploit%3a-cve-2010-3081 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"Anatomy of an exploit: CVE-2010-3081\"](https://blogs.oracle.com/ksplice/anatomy-of-an-exploit%3a-cve-2010-3081) [article] [CVE-2010-3081] cves: CVE-2010-3081 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blogs.oracle.com/ksplice/anatomy-of-an-exploit%3a-cve-2010-3081"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blogs.oracle.com/ksplice/anatomy-of-an-exploit%3a-cve-2010-3081"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://blogs.oracle.com/ksplice/anatomy-of-an-exploit%3a-cve-2010-3081"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2010-3081"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Anatomy of an exploit for CVE-2010-3081 provides insights into local privilege escalation.",
      "summary_zh": "CVE-2010-3081的漏洞剖析提供了本地权限提升的见解。",
      "source_markdown": "[2010: \"Anatomy of an exploit: CVE-2010-3081\"](https://blogs.oracle.com/ksplice/anatomy-of-an-exploit%3a-cve-2010-3081) [article] [CVE-2010-3081]",
      "search_text": "anatomy of an exploit: cve-2010-3081 anatomy of an exploit: cve-2010-3081  cve-2010-3081  vulnerabilities lpe lpe primary article https://blogs.oracle.com/ksplice/anatomy-of-an-exploit%3a-cve-2010-3081 lpe cve-2010-3081  vulnerability anatomy of an exploit for cve-2010-3081 provides insights into local privilege escalation. cve-2010-3081的漏洞剖析提供了本地权限提升的见解。 # anatomy of an exploit: cve-2010-3081 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: anatomy of an exploit: cve-2010-3081 resource_label: primary resource_type: article resource_url: https://blogs.oracle.com/ksplice/anatomy-of-an-exploit%3a-cve-2010-3081 parent_primary_url: https://blogs.oracle.com/ksplice/anatomy-of-an-exploit%3a-cve-2010-3081 source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"anatomy of an exploit: cve-2010-3081\"](https://blogs.oracle.com/ksplice/anatomy-of-an-exploit%3a-cve-2010-3081) [article] [cve-2010-3081] cves: cve-2010-3081 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "0f07d2707eb28391",
      "item_id": "2717f1c4b9ec5d60",
      "slug": "2010-vulnerabilities-lpe-cve-2010-4258-turning-denial-of-service-into-privilege-escalation-primary-7f33087e",
      "year": 2010,
      "title": "CVE-2010-4258: Turning denial-of-service into privilege escalation",
      "item_title": "CVE-2010-4258: Turning denial-of-service into privilege escalation",
      "authors": [
        "Nelson Elhage"
      ],
      "cves": [
        "CVE-2010-4258"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.nelhage.com/2010/12/cve-2010-4258-from-dos-to-privesc/",
      "primary_url": "https://blog.nelhage.com/2010/12/cve-2010-4258-from-dos-to-privesc/",
      "parent_primary_url": "https://blog.nelhage.com/2010/12/cve-2010-4258-from-dos-to-privesc/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2010-vulnerabilities-lpe-cve-2010-4258-turning-denial-of-service-into-privilege-escalation-primary-7f33087e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2010-4258: Turning denial-of-service into privilege escalation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2010-4258: Turning denial-of-service into privilege escalation resource_label: primary resource_type: article resource_url: https://blog.nelhage.com/2010/12/cve-2010-4258-from-dos-to-privesc/ parent_primary_url: https://blog.nelhage.com/2010/12/cve-2010-4258-from-dos-to-privesc/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"CVE-2010-4258: Turning denial-of-service into privilege escalation\" by Nelson Elhage](https://blog.nelhage.com/2010/12/cve-2010-4258-from-dos-to-privesc/) [article] [CVE-2010-4258] cves: CVE-2010-4258 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version a",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.nelhage.com/2010/12/cve-2010-4258-from-dos-to-privesc/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.nelhage.com/2010/12/cve-2010-4258-from-dos-to-privesc/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2010-4258"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2010-4258 discusses turning denial-of-service into local privilege escalation.",
      "summary_zh": "CVE-2010-4258讨论了如何将拒绝服务转变为本地权限提升。",
      "source_markdown": "[2010: \"CVE-2010-4258: Turning denial-of-service into privilege escalation\" by Nelson Elhage](https://blog.nelhage.com/2010/12/cve-2010-4258-from-dos-to-privesc/) [article] [CVE-2010-4258]",
      "search_text": "cve-2010-4258: turning denial-of-service into privilege escalation cve-2010-4258: turning denial-of-service into privilege escalation nelson elhage cve-2010-4258  vulnerabilities lpe lpe primary article https://blog.nelhage.com/2010/12/cve-2010-4258-from-dos-to-privesc/ lpe cve-2010-4258  vulnerability cve-2010-4258 discusses turning denial-of-service into local privilege escalation. cve-2010-4258讨论了如何将拒绝服务转变为本地权限提升。 # cve-2010-4258: turning denial-of-service into privilege escalation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2010-4258: turning denial-of-service into privilege escalation resource_label: primary resource_type: article resource_url: https://blog.nelhage.com/2010/12/cve-2010-4258-from-dos-to-privesc/ parent_primary_url: https://blog.nelhage.com/2010/12/cve-2010-4258-from-dos-to-privesc/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2010: \"cve-2010-4258: turning denial-of-service into privilege escalation\" by nelson elhage](https://blog.nelhage.com/2010/12/cve-2010-4258-from-dos-to-privesc/) [article] [cve-2010-4258] cves: cve-2010-4258 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version a unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c6fe5e2db597bc29",
      "item_id": "ec3d1a95ecbad644",
      "slug": "2009-vulnerabilities-lpe-linux-null-pointer-dereference-due-to-incorrect-proto-ops-initializations-cve-2009-26",
      "year": 2009,
      "title": "Linux NULL pointer dereference due to incorrect proto_ops initializations (CVE-2009-2692)",
      "item_title": "Linux NULL pointer dereference due to incorrect proto_ops initializations (CVE-2009-2692)",
      "authors": [],
      "cves": [
        "CVE-2009-2692"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://blog.cr0.org/2009/08/linux-null-pointer-dereference-due-to.html",
      "primary_url": "http://blog.cr0.org/2009/08/linux-null-pointer-dereference-due-to.html",
      "parent_primary_url": "http://blog.cr0.org/2009/08/linux-null-pointer-dereference-due-to.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2009-vulnerabilities-lpe-linux-null-pointer-dereference-due-to-incorrect-proto-ops-initializations-cve-2009-26.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux NULL pointer dereference due to incorrect proto_ops initializations (CVE-2009-2692) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux NULL pointer dereference due to incorrect proto_ops initializations (CVE-2009-2692) resource_label: primary resource_type: article resource_url: http://blog.cr0.org/2009/08/linux-null-pointer-dereference-due-to.html parent_primary_url: http://blog.cr0.org/2009/08/linux-null-pointer-dereference-due-to.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2009: \"Linux NULL pointer dereference due to incorrect proto_ops initializations (CVE-2009-2692)\"](http://blog.cr0.org/2009/08/linux-null-pointer-dereference-due-to.html) [article] [CVE-2009-2692] cves: CVE-2009-2692 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/ex",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://blog.cr0.org/2009/08/linux-null-pointer-dereference-due-to.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://blog.cr0.org/2009/08/linux-null-pointer-dereference-due-to.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2009-2692"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2009-2692 involves a NULL pointer dereference leading to local privilege escalation.",
      "summary_zh": "CVE-2009-2692涉及空指针解引用导致本地权限提升。",
      "source_markdown": "[2009: \"Linux NULL pointer dereference due to incorrect proto_ops initializations (CVE-2009-2692)\"](http://blog.cr0.org/2009/08/linux-null-pointer-dereference-due-to.html) [article] [CVE-2009-2692]",
      "search_text": "linux null pointer dereference due to incorrect proto_ops initializations (cve-2009-2692) linux null pointer dereference due to incorrect proto_ops initializations (cve-2009-2692)  cve-2009-2692  vulnerabilities lpe lpe primary article http://blog.cr0.org/2009/08/linux-null-pointer-dereference-due-to.html lpe cve-2009-2692  vulnerability cve-2009-2692 involves a null pointer dereference leading to local privilege escalation. cve-2009-2692涉及空指针解引用导致本地权限提升。 # linux null pointer dereference due to incorrect proto_ops initializations (cve-2009-2692) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux null pointer dereference due to incorrect proto_ops initializations (cve-2009-2692) resource_label: primary resource_type: article resource_url: http://blog.cr0.org/2009/08/linux-null-pointer-dereference-due-to.html parent_primary_url: http://blog.cr0.org/2009/08/linux-null-pointer-dereference-due-to.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2009: \"linux null pointer dereference due to incorrect proto_ops initializations (cve-2009-2692)\"](http://blog.cr0.org/2009/08/linux-null-pointer-dereference-due-to.html) [article] [cve-2009-2692] cves: cve-2009-2692 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/ex unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "8894426fbfc2da1e",
      "item_id": "6970e54371d7acc5",
      "slug": "2009-vulnerabilities-lpe-even-when-one-byte-matters-primary-95eefa4d",
      "year": 2009,
      "title": "Even when one byte matters",
      "item_title": "Even when one byte matters",
      "authors": [],
      "cves": [
        "CVE-2009-1046"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://kernelbof.blogspot.de/2009/07/even-when-one-byte-matters.html",
      "primary_url": "https://kernelbof.blogspot.de/2009/07/even-when-one-byte-matters.html",
      "parent_primary_url": "https://kernelbof.blogspot.de/2009/07/even-when-one-byte-matters.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2009-vulnerabilities-lpe-even-when-one-byte-matters-primary-95eefa4d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Even when one byte matters record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Even when one byte matters resource_label: primary resource_type: article resource_url: https://kernelbof.blogspot.de/2009/07/even-when-one-byte-matters.html parent_primary_url: https://kernelbof.blogspot.de/2009/07/even-when-one-byte-matters.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2009: \"Even when one byte matters\"](https://kernelbof.blogspot.de/2009/07/even-when-one-byte-matters.html) [article] [CVE-2009-1046] cves: CVE-2009-1046 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kernelbof.blogspot.de/2009/07/even-when-one-byte-matters.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kernelbof.blogspot.de/2009/07/even-when-one-byte-matters.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2009-1046"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2009-1046 highlights a vulnerability where even one byte can matter for local privilege escalation.",
      "summary_zh": "CVE-2009-1046强调了一个字节对本地权限提升的重要性。",
      "source_markdown": "[2009: \"Even when one byte matters\"](https://kernelbof.blogspot.de/2009/07/even-when-one-byte-matters.html) [article] [CVE-2009-1046]",
      "search_text": "even when one byte matters even when one byte matters  cve-2009-1046  vulnerabilities lpe lpe primary article https://kernelbof.blogspot.de/2009/07/even-when-one-byte-matters.html lpe cve-2009-1046  vulnerability cve-2009-1046 highlights a vulnerability where even one byte can matter for local privilege escalation. cve-2009-1046强调了一个字节对本地权限提升的重要性。 # even when one byte matters record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: even when one byte matters resource_label: primary resource_type: article resource_url: https://kernelbof.blogspot.de/2009/07/even-when-one-byte-matters.html parent_primary_url: https://kernelbof.blogspot.de/2009/07/even-when-one-byte-matters.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2009: \"even when one byte matters\"](https://kernelbof.blogspot.de/2009/07/even-when-one-byte-matters.html) [article] [cve-2009-1046] cves: cve-2009-1046 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "852b9bcd6ac00f66",
      "item_id": "c2e573cee9e405de",
      "slug": "2009-vulnerabilities-lpe-cve-2008-0009-cve-2008-0010-linux-kernel-vmsplice-2-privilege-escalation-primary-e05d",
      "year": 2009,
      "title": "CVE-2008-0009/CVE-2008-0010: Linux kernel vmsplice(2) Privilege Escalation",
      "item_title": "CVE-2008-0009/CVE-2008-0010: Linux kernel vmsplice(2) Privilege Escalation",
      "authors": [],
      "cves": [
        "CVE-2008-0009",
        "CVE-2008-0010"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://xorl.wordpress.com/2009/08/10/cve-2008-0600cve-2008-0010-linux-kernel-vmsplice2-privilege-escalation/",
      "primary_url": "https://xorl.wordpress.com/2009/08/10/cve-2008-0600cve-2008-0010-linux-kernel-vmsplice2-privilege-escalation/",
      "parent_primary_url": "https://xorl.wordpress.com/2009/08/10/cve-2008-0600cve-2008-0010-linux-kernel-vmsplice2-privilege-escalation/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2009-vulnerabilities-lpe-cve-2008-0009-cve-2008-0010-linux-kernel-vmsplice-2-privilege-escalation-primary-e05d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2008-0009/CVE-2008-0010: Linux kernel vmsplice(2) Privilege Escalation record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: CVE-2008-0009/CVE-2008-0010: Linux kernel vmsplice(2) Privilege Escalation resource_label: primary resource_type: article resource_url: https://xorl.wordpress.com/2009/08/10/cve-2008-0600cve-2008-0010-linux-kernel-vmsplice2-privilege-escalation/ parent_primary_url: https://xorl.wordpress.com/2009/08/10/cve-2008-0600cve-2008-0010-linux-kernel-vmsplice2-privilege-escalation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2009: \"CVE-2008-0009/CVE-2008-0010: Linux kernel vmsplice(2) Privilege Escalation\"](https://xorl.wordpress.com/2009/08/10/cve-2008-0600cve-2008-0010-linux-kernel-vmsplice2-privilege-escalation/) [article] [CVE-2008-0009, CVE-2008-0010] cves: CVE-2008-0",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://xorl.wordpress.com/2009/08/10/cve-2008-0600cve-2008-0010-linux-kernel-vmsplice2-privilege-escalation/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://xorl.wordpress.com/2009/08/10/cve-2008-0600cve-2008-0010-linux-kernel-vmsplice2-privilege-escalation/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2008-0009",
        "CVE-2008-0010"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2008-0009 and CVE-2008-0010 discuss privilege escalation via vmsplice.",
      "summary_zh": "CVE-2008-0009和CVE-2008-0010讨论了通过vmsplice实现权限提升。",
      "source_markdown": "[2009: \"CVE-2008-0009/CVE-2008-0010: Linux kernel vmsplice(2) Privilege Escalation\"](https://xorl.wordpress.com/2009/08/10/cve-2008-0600cve-2008-0010-linux-kernel-vmsplice2-privilege-escalation/) [article] [CVE-2008-0009, CVE-2008-0010]",
      "search_text": "cve-2008-0009/cve-2008-0010: linux kernel vmsplice(2) privilege escalation cve-2008-0009/cve-2008-0010: linux kernel vmsplice(2) privilege escalation  cve-2008-0009 cve-2008-0010  vulnerabilities lpe lpe primary article https://xorl.wordpress.com/2009/08/10/cve-2008-0600cve-2008-0010-linux-kernel-vmsplice2-privilege-escalation/ lpe cve-2008-0009 cve-2008-0010  vulnerability cve-2008-0009 and cve-2008-0010 discuss privilege escalation via vmsplice. cve-2008-0009和cve-2008-0010讨论了通过vmsplice实现权限提升。 # cve-2008-0009/cve-2008-0010: linux kernel vmsplice(2) privilege escalation record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: cve-2008-0009/cve-2008-0010: linux kernel vmsplice(2) privilege escalation resource_label: primary resource_type: article resource_url: https://xorl.wordpress.com/2009/08/10/cve-2008-0600cve-2008-0010-linux-kernel-vmsplice2-privilege-escalation/ parent_primary_url: https://xorl.wordpress.com/2009/08/10/cve-2008-0600cve-2008-0010-linux-kernel-vmsplice2-privilege-escalation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2009: \"cve-2008-0009/cve-2008-0010: linux kernel vmsplice(2) privilege escalation\"](https://xorl.wordpress.com/2009/08/10/cve-2008-0600cve-2008-0010-linux-kernel-vmsplice2-privilege-escalation/) [article] [cve-2008-0009, cve-2008-0010] cves: cve-2008-0 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ba85c5fb4bf6958a",
      "item_id": "7901b706bb000876",
      "slug": "2008-vulnerabilities-lpe-vmsplice-the-making-of-a-local-root-exploit-primary-b51dca37",
      "year": 2008,
      "title": "vmsplice(): the making of a local root exploit",
      "item_title": "vmsplice(): the making of a local root exploit",
      "authors": [
        "Jonathan Corbet"
      ],
      "cves": [
        "CVE-2008-0600"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://lwn.net/Articles/268783/",
      "primary_url": "https://lwn.net/Articles/268783/",
      "parent_primary_url": "https://lwn.net/Articles/268783/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2008-vulnerabilities-lpe-vmsplice-the-making-of-a-local-root-exploit-primary-b51dca37.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# vmsplice(): the making of a local root exploit record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: vmsplice(): the making of a local root exploit resource_label: primary resource_type: article resource_url: https://lwn.net/Articles/268783/ parent_primary_url: https://lwn.net/Articles/268783/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2008: \"vmsplice(): the making of a local root exploit\" by Jonathan Corbet](https://lwn.net/Articles/268783/) [article] [CVE-2008-0600] cves: CVE-2008-0600 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://lwn.net/Articles/268783/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://lwn.net/Articles/268783/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2008-0600"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The vmsplice vulnerability (CVE-2008-0600) discusses local root exploit techniques.",
      "summary_zh": "vmsplice漏洞（CVE-2008-0600）讨论了本地根权限提升技术。",
      "source_markdown": "[2008: \"vmsplice(): the making of a local root exploit\" by Jonathan Corbet](https://lwn.net/Articles/268783/) [article] [CVE-2008-0600]",
      "search_text": "vmsplice(): the making of a local root exploit vmsplice(): the making of a local root exploit jonathan corbet cve-2008-0600  vulnerabilities lpe lpe primary article https://lwn.net/articles/268783/ lpe cve-2008-0600  vulnerability the vmsplice vulnerability (cve-2008-0600) discusses local root exploit techniques. vmsplice漏洞（cve-2008-0600）讨论了本地根权限提升技术。 # vmsplice(): the making of a local root exploit record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: vmsplice(): the making of a local root exploit resource_label: primary resource_type: article resource_url: https://lwn.net/articles/268783/ parent_primary_url: https://lwn.net/articles/268783/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2008: \"vmsplice(): the making of a local root exploit\" by jonathan corbet](https://lwn.net/articles/268783/) [article] [cve-2008-0600] cves: cve-2008-0600 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5b52107793d3794f",
      "item_id": "d847616ff869aec3",
      "slug": "2004-vulnerabilities-lpe-linux-kernel-do-mremap-vma-limit-local-privilege-escalation-vulnerability-primary-361",
      "year": 2004,
      "title": "Linux kernel do_mremap VMA limit local privilege escalation vulnerability",
      "item_title": "Linux kernel do_mremap VMA limit local privilege escalation vulnerability",
      "authors": [],
      "cves": [
        "CVE-2004-0077"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "LPE",
      "section_path": "Vulnerabilities / LPE",
      "category": "LPE",
      "vulnerability_class": "LPE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt",
      "primary_url": "http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt",
      "parent_primary_url": "http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#lpe",
      "raw_path": "/raw/2004-vulnerabilities-lpe-linux-kernel-do-mremap-vma-limit-local-privilege-escalation-vulnerability-primary-361.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux kernel do_mremap VMA limit local privilege escalation vulnerability record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: LPE category: LPE item_title: Linux kernel do_mremap VMA limit local privilege escalation vulnerability resource_label: primary resource_type: article resource_url: http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt parent_primary_url: http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2004: \"Linux kernel do_mremap VMA limit local privilege escalation vulnerability\"](http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt) [article] [CVE-2004-0077] cves: CVE-2004-0077 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LPE",
        "CVE-2004-0077"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2004-0077 addresses a local privilege escalation vulnerability in do_mremap.",
      "summary_zh": "CVE-2004-0077涉及do_mremap中的本地权限提升漏洞。",
      "source_markdown": "[2004: \"Linux kernel do_mremap VMA limit local privilege escalation vulnerability\"](http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt) [article] [CVE-2004-0077]",
      "search_text": "linux kernel do_mremap vma limit local privilege escalation vulnerability linux kernel do_mremap vma limit local privilege escalation vulnerability  cve-2004-0077  vulnerabilities lpe lpe primary article http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt lpe cve-2004-0077  vulnerability cve-2004-0077 addresses a local privilege escalation vulnerability in do_mremap. cve-2004-0077涉及do_mremap中的本地权限提升漏洞。 # linux kernel do_mremap vma limit local privilege escalation vulnerability record_kind: linux-kernel-resource-url section: vulnerabilities subsection: lpe category: lpe item_title: linux kernel do_mremap vma limit local privilege escalation vulnerability resource_label: primary resource_type: article resource_url: http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt parent_primary_url: http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt source_section_url: https://github.com/xairy/linux-kernel-exploitation#lpe source_item: [2004: \"linux kernel do_mremap vma limit local privilege escalation vulnerability\"](http://isec.pl/vulnerabilities/isec-0014-mremap-unmap.txt) [article] [cve-2004-0077] cves: cve-2004-0077 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a7b85a34acccf071",
      "item_id": "215594620cc83a34",
      "slug": "2025-vulnerabilities-rce-eternal-tux-crafting-a-linux-kernel-ksmbd-0-click-rce-exploit-from-n-days-primary-a19",
      "year": 2025,
      "title": "Eternal-Tux: Crafting a Linux Kernel KSMBD 0-Click RCE Exploit from N-Days",
      "item_title": "Eternal-Tux: Crafting a Linux Kernel KSMBD 0-Click RCE Exploit from N-Days",
      "authors": [
        "William Liu"
      ],
      "cves": [
        "CVE-2023-52440",
        "CVE-2023-4130"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "RCE",
      "section_path": "Vulnerabilities / RCE",
      "category": "RCE",
      "vulnerability_class": "RCE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.willsroot.io/2025/09/ksmbd-0-click.html",
      "primary_url": "https://www.willsroot.io/2025/09/ksmbd-0-click.html",
      "parent_primary_url": "https://www.willsroot.io/2025/09/ksmbd-0-click.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#rce",
      "raw_path": "/raw/2025-vulnerabilities-rce-eternal-tux-crafting-a-linux-kernel-ksmbd-0-click-rce-exploit-from-n-days-primary-a19.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Eternal-Tux: Crafting a Linux Kernel KSMBD 0-Click RCE Exploit from N-Days record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: RCE category: RCE item_title: Eternal-Tux: Crafting a Linux Kernel KSMBD 0-Click RCE Exploit from N-Days resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2025/09/ksmbd-0-click.html parent_primary_url: https://www.willsroot.io/2025/09/ksmbd-0-click.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2025: \"Eternal-Tux: Crafting a Linux Kernel KSMBD 0-Click RCE Exploit from N-Days\" by William Liu](https://www.willsroot.io/2025/09/ksmbd-0-click.html) [article] [CVE-2023-52440] [CVE-2023-4130] cves: CVE-2023-52440, CVE-2023-4130 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-ve",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.willsroot.io/2025/09/ksmbd-0-click.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.willsroot.io/2025/09/ksmbd-0-click.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "CVE-2023-52440",
        "CVE-2023-4130"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Eternal-Tux discusses crafting a Linux Kernel KSMBD 0-click RCE exploit.",
      "summary_zh": "Eternal-Tux讨论了如何制作Linux内核KSMBD 0点击RCE漏洞。",
      "source_markdown": "[2025: \"Eternal-Tux: Crafting a Linux Kernel KSMBD 0-Click RCE Exploit from N-Days\" by William Liu](https://www.willsroot.io/2025/09/ksmbd-0-click.html) [article] [CVE-2023-52440] [CVE-2023-4130]",
      "search_text": "eternal-tux: crafting a linux kernel ksmbd 0-click rce exploit from n-days eternal-tux: crafting a linux kernel ksmbd 0-click rce exploit from n-days william liu cve-2023-52440 cve-2023-4130  vulnerabilities rce rce primary article https://www.willsroot.io/2025/09/ksmbd-0-click.html rce cve-2023-52440 cve-2023-4130  vulnerability eternal-tux discusses crafting a linux kernel ksmbd 0-click rce exploit. eternal-tux讨论了如何制作linux内核ksmbd 0点击rce漏洞。 # eternal-tux: crafting a linux kernel ksmbd 0-click rce exploit from n-days record_kind: linux-kernel-resource-url section: vulnerabilities subsection: rce category: rce item_title: eternal-tux: crafting a linux kernel ksmbd 0-click rce exploit from n-days resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2025/09/ksmbd-0-click.html parent_primary_url: https://www.willsroot.io/2025/09/ksmbd-0-click.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2025: \"eternal-tux: crafting a linux kernel ksmbd 0-click rce exploit from n-days\" by william liu](https://www.willsroot.io/2025/09/ksmbd-0-click.html) [article] [cve-2023-52440] [cve-2023-4130] cves: cve-2023-52440, cve-2023-4130 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-ve unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7c1875521e5bfea0",
      "item_id": "e2ede9f6c1df2588",
      "slug": "2024-vulnerabilities-rce-listen-up-sonos-over-the-air-remote-kernel-exploitation-and-covert-wiretap-primary-e5",
      "year": 2024,
      "title": "Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap",
      "item_title": "Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap",
      "authors": [
        "Robert Herrera",
        "Alex Plaskett"
      ],
      "cves": [
        "CVE-2023-50809",
        "CVE-2024-20018"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "RCE",
      "section_path": "Vulnerabilities / RCE",
      "category": "RCE",
      "vulnerability_class": "RCE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf",
      "primary_url": "https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf",
      "parent_primary_url": "https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#rce",
      "raw_path": "/raw/2024-vulnerabilities-rce-listen-up-sonos-over-the-air-remote-kernel-exploitation-and-covert-wiretap-primary-e5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: RCE category: RCE item_title: Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap resource_label: primary resource_type: article resource_url: https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf parent_primary_url: https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2024: \"Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap\" by Robert Herrera and Alex Plaskett](https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf) [article] [[slides](https://i.blackhat.com/BH-US-24/Presentations/US-24-Herrera-Listen-Up-Sonos-Over-The-Air-Exploitation-and-Covert-Wiretap-Thu",
      "link_types": [
        "article",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://i.blackhat.com/BH-US-24/Presentations/US-24-Herrera-Listen-Up-Sonos-Over-The-Air-Exploitation-and-Covert-Wiretap-Thursday.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=piw0CZ46-Q0"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://i.blackhat.com/BH-US-24/Presentations/US-24-Herrera-Listen-Up-Sonos-Over-The-Air-Exploitation-and-Covert-Wiretap-Thursday.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=piw0CZ46-Q0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "CVE-2023-50809",
        "CVE-2024-20018"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Listen Up details remote kernel exploitation and covert wiretap vulnerabilities.",
      "summary_zh": "Listen Up详细介绍了远程内核利用和隐秘窃听漏洞。",
      "source_markdown": "[2024: \"Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap\" by Robert Herrera and Alex Plaskett](https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf) [article] [[slides](https://i.blackhat.com/BH-US-24/Presentations/US-24-Herrera-Listen-Up-Sonos-Over-The-Air-Exploitation-and-Covert-Wiretap-Thursday.pdf)] [[video](https://www.youtube.com/watch?v=piw0CZ46-Q0)] [CVE-2023-50809] [CVE-2024-20018]",
      "search_text": "listen up: sonos over-the-air remote kernel exploitation and covert wiretap listen up: sonos over-the-air remote kernel exploitation and covert wiretap robert herrera alex plaskett cve-2023-50809 cve-2024-20018  vulnerabilities rce rce primary article https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf rce cve-2023-50809 cve-2024-20018  vulnerability listen up details remote kernel exploitation and covert wiretap vulnerabilities. listen up详细介绍了远程内核利用和隐秘窃听漏洞。 # listen up: sonos over-the-air remote kernel exploitation and covert wiretap record_kind: linux-kernel-resource-url section: vulnerabilities subsection: rce category: rce item_title: listen up: sonos over-the-air remote kernel exploitation and covert wiretap resource_label: primary resource_type: article resource_url: https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf parent_primary_url: https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2024: \"listen up: sonos over-the-air remote kernel exploitation and covert wiretap\" by robert herrera and alex plaskett](https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf) [article] [[slides](https://i.blackhat.com/bh-us-24/presentations/us-24-herrera-listen-up-sonos-over-the-air-exploitation-and-covert-wiretap-thu unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "019bcc4c8ec79168",
      "item_id": "e2ede9f6c1df2588",
      "slug": "2024-vulnerabilities-rce-listen-up-sonos-over-the-air-remote-kernel-exploitation-and-covert-wiretap-slides-27c",
      "year": 2024,
      "title": "Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap · slides",
      "item_title": "Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap",
      "authors": [
        "Robert Herrera",
        "Alex Plaskett"
      ],
      "cves": [
        "CVE-2023-50809",
        "CVE-2024-20018"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "RCE",
      "section_path": "Vulnerabilities / RCE",
      "category": "RCE",
      "vulnerability_class": "RCE",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/BH-US-24/Presentations/US-24-Herrera-Listen-Up-Sonos-Over-The-Air-Exploitation-and-Covert-Wiretap-Thursday.pdf",
      "primary_url": "https://i.blackhat.com/BH-US-24/Presentations/US-24-Herrera-Listen-Up-Sonos-Over-The-Air-Exploitation-and-Covert-Wiretap-Thursday.pdf",
      "parent_primary_url": "https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#rce",
      "raw_path": "/raw/2024-vulnerabilities-rce-listen-up-sonos-over-the-air-remote-kernel-exploitation-and-covert-wiretap-slides-27c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap · slides record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: RCE category: RCE item_title: Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap resource_label: slides resource_type: slides resource_url: https://i.blackhat.com/BH-US-24/Presentations/US-24-Herrera-Listen-Up-Sonos-Over-The-Air-Exploitation-and-Covert-Wiretap-Thursday.pdf parent_primary_url: https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2024: \"Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap\" by Robert Herrera and Alex Plaskett](https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf) [article] [[slides](https://i.blackhat.com/BH-US-24/Presentations/US-24",
      "link_types": [
        "article",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://i.blackhat.com/BH-US-24/Presentations/US-24-Herrera-Listen-Up-Sonos-Over-The-Air-Exploitation-and-Covert-Wiretap-Thursday.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=piw0CZ46-Q0"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://i.blackhat.com/BH-US-24/Presentations/US-24-Herrera-Listen-Up-Sonos-Over-The-Air-Exploitation-and-Covert-Wiretap-Thursday.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=piw0CZ46-Q0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "CVE-2023-50809",
        "CVE-2024-20018"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Slides from Listen Up provide insights into remote kernel exploitation techniques.",
      "summary_zh": "Listen Up的幻灯片提供了远程内核利用技术的见解。",
      "source_markdown": "[2024: \"Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap\" by Robert Herrera and Alex Plaskett](https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf) [article] [[slides](https://i.blackhat.com/BH-US-24/Presentations/US-24-Herrera-Listen-Up-Sonos-Over-The-Air-Exploitation-and-Covert-Wiretap-Thursday.pdf)] [[video](https://www.youtube.com/watch?v=piw0CZ46-Q0)] [CVE-2023-50809] [CVE-2024-20018]",
      "search_text": "listen up: sonos over-the-air remote kernel exploitation and covert wiretap · slides listen up: sonos over-the-air remote kernel exploitation and covert wiretap robert herrera alex plaskett cve-2023-50809 cve-2024-20018  vulnerabilities rce rce slides slides https://i.blackhat.com/bh-us-24/presentations/us-24-herrera-listen-up-sonos-over-the-air-exploitation-and-covert-wiretap-thursday.pdf rce cve-2023-50809 cve-2024-20018  vulnerability slides from listen up provide insights into remote kernel exploitation techniques. listen up的幻灯片提供了远程内核利用技术的见解。 # listen up: sonos over-the-air remote kernel exploitation and covert wiretap · slides record_kind: linux-kernel-resource-url section: vulnerabilities subsection: rce category: rce item_title: listen up: sonos over-the-air remote kernel exploitation and covert wiretap resource_label: slides resource_type: slides resource_url: https://i.blackhat.com/bh-us-24/presentations/us-24-herrera-listen-up-sonos-over-the-air-exploitation-and-covert-wiretap-thursday.pdf parent_primary_url: https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2024: \"listen up: sonos over-the-air remote kernel exploitation and covert wiretap\" by robert herrera and alex plaskett](https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf) [article] [[slides](https://i.blackhat.com/bh-us-24/presentations/us-24 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "5d68f004cd914f7e",
      "item_id": "e2ede9f6c1df2588",
      "slug": "2024-vulnerabilities-rce-listen-up-sonos-over-the-air-remote-kernel-exploitation-and-covert-wiretap-video-c251",
      "year": 2024,
      "title": "Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap · video",
      "item_title": "Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap",
      "authors": [
        "Robert Herrera",
        "Alex Plaskett"
      ],
      "cves": [
        "CVE-2023-50809",
        "CVE-2024-20018"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "RCE",
      "section_path": "Vulnerabilities / RCE",
      "category": "RCE",
      "vulnerability_class": "RCE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=piw0CZ46-Q0",
      "primary_url": "https://www.youtube.com/watch?v=piw0CZ46-Q0",
      "parent_primary_url": "https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#rce",
      "raw_path": "/raw/2024-vulnerabilities-rce-listen-up-sonos-over-the-air-remote-kernel-exploitation-and-covert-wiretap-video-c251.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: RCE category: RCE item_title: Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=piw0CZ46-Q0 parent_primary_url: https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2024: \"Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap\" by Robert Herrera and Alex Plaskett](https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf) [article] [[slides](https://i.blackhat.com/BH-US-24/Presentations/US-24-Herrera-Listen-Up-Sonos-Over-The-Air-Exploitation-and-Covert-Wiretap-Thursday.pdf)] [[video]",
      "link_types": [
        "article",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://i.blackhat.com/BH-US-24/Presentations/US-24-Herrera-Listen-Up-Sonos-Over-The-Air-Exploitation-and-Covert-Wiretap-Thursday.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=piw0CZ46-Q0"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://i.blackhat.com/BH-US-24/Presentations/US-24-Herrera-Listen-Up-Sonos-Over-The-Air-Exploitation-and-Covert-Wiretap-Thursday.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=piw0CZ46-Q0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "CVE-2023-50809",
        "CVE-2024-20018"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The video on Listen Up discusses remote kernel exploitation and covert wiretap methods.",
      "summary_zh": "关于Listen Up的视频讨论了远程内核利用和隐秘窃听方法。",
      "source_markdown": "[2024: \"Listen Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap\" by Robert Herrera and Alex Plaskett](https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf) [article] [[slides](https://i.blackhat.com/BH-US-24/Presentations/US-24-Herrera-Listen-Up-Sonos-Over-The-Air-Exploitation-and-Covert-Wiretap-Thursday.pdf)] [[video](https://www.youtube.com/watch?v=piw0CZ46-Q0)] [CVE-2023-50809] [CVE-2024-20018]",
      "search_text": "listen up: sonos over-the-air remote kernel exploitation and covert wiretap · video listen up: sonos over-the-air remote kernel exploitation and covert wiretap robert herrera alex plaskett cve-2023-50809 cve-2024-20018  vulnerabilities rce rce video video https://www.youtube.com/watch?v=piw0cz46-q0 rce cve-2023-50809 cve-2024-20018  vulnerability the video on listen up discusses remote kernel exploitation and covert wiretap methods. 关于listen up的视频讨论了远程内核利用和隐秘窃听方法。 # listen up: sonos over-the-air remote kernel exploitation and covert wiretap · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: rce category: rce item_title: listen up: sonos over-the-air remote kernel exploitation and covert wiretap resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=piw0cz46-q0 parent_primary_url: https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2024: \"listen up: sonos over-the-air remote kernel exploitation and covert wiretap\" by robert herrera and alex plaskett](https://www.nccgroup.com/media/uzbp3ttw/bhus24_sonos_whitepaper.pdf) [article] [[slides](https://i.blackhat.com/bh-us-24/presentations/us-24-herrera-listen-up-sonos-over-the-air-exploitation-and-covert-wiretap-thursday.pdf)] [[video] unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "98e6db914674a740",
      "item_id": "8ca4b9aa1449378b",
      "slug": "2023-vulnerabilities-rce-abusing-linux-in-kernel-smb-server-to-gain-kernel-remote-code-execution-primary-19559",
      "year": 2023,
      "title": "Abusing Linux In-Kernel SMB Server to Gain Kernel Remote Code Execution",
      "item_title": "Abusing Linux In-Kernel SMB Server to Gain Kernel Remote Code Execution",
      "authors": [
        "Guillaume Teissier",
        "Quentin Minster"
      ],
      "cves": [
        "CVE-2022-47943",
        "CVE-2023-2593"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "RCE",
      "section_path": "Vulnerabilities / RCE",
      "category": "RCE",
      "vulnerability_class": "RCE",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=XT6jLBbzwFM",
      "primary_url": "https://www.youtube.com/watch?v=XT6jLBbzwFM",
      "parent_primary_url": "https://www.youtube.com/watch?v=XT6jLBbzwFM",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#rce",
      "raw_path": "/raw/2023-vulnerabilities-rce-abusing-linux-in-kernel-smb-server-to-gain-kernel-remote-code-execution-primary-19559.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Abusing Linux In-Kernel SMB Server to Gain Kernel Remote Code Execution record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: RCE category: RCE item_title: Abusing Linux In-Kernel SMB Server to Gain Kernel Remote Code Execution resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=XT6jLBbzwFM parent_primary_url: https://www.youtube.com/watch?v=XT6jLBbzwFM source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2023: \"Abusing Linux In-Kernel SMB Server to Gain Kernel Remote Code Execution\" by Guillaume Teissier and Quentin Minster](https://www.youtube.com/watch?v=XT6jLBbzwFM) [video] [CVE-2022-47943] [CVE-2023-2593] cves: CVE-2022-47943, CVE-2023-2593 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and ",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=XT6jLBbzwFM"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=XT6jLBbzwFM"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "CVE-2022-47943",
        "CVE-2023-2593"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Abusing Linux In-Kernel SMB Server discusses gaining kernel remote code execution.",
      "summary_zh": "利用Linux内核SMB服务器讨论了如何获得内核远程代码执行。",
      "source_markdown": "[2023: \"Abusing Linux In-Kernel SMB Server to Gain Kernel Remote Code Execution\" by Guillaume Teissier and Quentin Minster](https://www.youtube.com/watch?v=XT6jLBbzwFM) [video] [CVE-2022-47943] [CVE-2023-2593]",
      "search_text": "abusing linux in-kernel smb server to gain kernel remote code execution abusing linux in-kernel smb server to gain kernel remote code execution guillaume teissier quentin minster cve-2022-47943 cve-2023-2593  vulnerabilities rce rce primary video https://www.youtube.com/watch?v=xt6jlbbzwfm rce cve-2022-47943 cve-2023-2593  vulnerability abusing linux in-kernel smb server discusses gaining kernel remote code execution. 利用linux内核smb服务器讨论了如何获得内核远程代码执行。 # abusing linux in-kernel smb server to gain kernel remote code execution record_kind: linux-kernel-resource-url section: vulnerabilities subsection: rce category: rce item_title: abusing linux in-kernel smb server to gain kernel remote code execution resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=xt6jlbbzwfm parent_primary_url: https://www.youtube.com/watch?v=xt6jlbbzwfm source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2023: \"abusing linux in-kernel smb server to gain kernel remote code execution\" by guillaume teissier and quentin minster](https://www.youtube.com/watch?v=xt6jlbbzwfm) [video] [cve-2022-47943] [cve-2023-2593] cves: cve-2022-47943, cve-2023-2593 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "295c9b115765dcb6",
      "item_id": "ddd1c26235ef88b3",
      "slug": "2022-vulnerabilities-rce-writing-a-linux-kernel-remote-in-2022-primary-ba11372f",
      "year": 2022,
      "title": "Writing a Linux Kernel Remote in 2022",
      "item_title": "Writing a Linux Kernel Remote in 2022",
      "authors": [
        "Samuel Page"
      ],
      "cves": [
        "CVE-2022-0435"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "RCE",
      "section_path": "Vulnerabilities / RCE",
      "category": "RCE",
      "vulnerability_class": "RCE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/",
      "primary_url": "https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/",
      "parent_primary_url": "https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#rce",
      "raw_path": "/raw/2022-vulnerabilities-rce-writing-a-linux-kernel-remote-in-2022-primary-ba11372f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Writing a Linux Kernel Remote in 2022 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: RCE category: RCE item_title: Writing a Linux Kernel Remote in 2022 resource_label: primary resource_type: article resource_url: https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/ parent_primary_url: https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2022: \"Writing a Linux Kernel Remote in 2022\" by Samuel Page](https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/) [article] [[slides](https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Erybody%20Gettin%20TIPC%20-%20Demystifying%20Remote%20Linux%20Kernel%20Exploitation%20-%20Sam%20Page.pdf)] [CVE-2022-0435] cves: CVE-2022-0435 android_impact_status: unknown android_imp",
      "link_types": [
        "article",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Erybody%20Gettin%20TIPC%20-%20Demystifying%20Remote%20Linux%20Kernel%20Exploitation%20-%20Sam%20Page.pdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Erybody%20Gettin%20TIPC%20-%20Demystifying%20Remote%20Linux%20Kernel%20Exploitation%20-%20Sam%20Page.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "CVE-2022-0435"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Writing a Linux Kernel Remote in 2022 provides insights into remote code execution vulnerabilities.",
      "summary_zh": "2022年编写Linux内核远程程序提供了远程代码执行漏洞的见解。",
      "source_markdown": "[2022: \"Writing a Linux Kernel Remote in 2022\" by Samuel Page](https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/) [article] [[slides](https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Erybody%20Gettin%20TIPC%20-%20Demystifying%20Remote%20Linux%20Kernel%20Exploitation%20-%20Sam%20Page.pdf)] [CVE-2022-0435]",
      "search_text": "writing a linux kernel remote in 2022 writing a linux kernel remote in 2022 samuel page cve-2022-0435  vulnerabilities rce rce primary article https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/ rce cve-2022-0435  vulnerability writing a linux kernel remote in 2022 provides insights into remote code execution vulnerabilities. 2022年编写linux内核远程程序提供了远程代码执行漏洞的见解。 # writing a linux kernel remote in 2022 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: rce category: rce item_title: writing a linux kernel remote in 2022 resource_label: primary resource_type: article resource_url: https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/ parent_primary_url: https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2022: \"writing a linux kernel remote in 2022\" by samuel page](https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/) [article] [[slides](https://conference.hitb.org/hitbsecconf2022sin/materials/d1t1%20-%20erybody%20gettin%20tipc%20-%20demystifying%20remote%20linux%20kernel%20exploitation%20-%20sam%20page.pdf)] [cve-2022-0435] cves: cve-2022-0435 android_impact_status: unknown android_imp unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "cd2d3606dd9c353e",
      "item_id": "ddd1c26235ef88b3",
      "slug": "2022-vulnerabilities-rce-writing-a-linux-kernel-remote-in-2022-slides-9d10d797",
      "year": 2022,
      "title": "Writing a Linux Kernel Remote in 2022 · slides",
      "item_title": "Writing a Linux Kernel Remote in 2022",
      "authors": [
        "Samuel Page"
      ],
      "cves": [
        "CVE-2022-0435"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "RCE",
      "section_path": "Vulnerabilities / RCE",
      "category": "RCE",
      "vulnerability_class": "RCE",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Erybody%20Gettin%20TIPC%20-%20Demystifying%20Remote%20Linux%20Kernel%20Exploitation%20-%20Sam%20Page.pdf",
      "primary_url": "https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Erybody%20Gettin%20TIPC%20-%20Demystifying%20Remote%20Linux%20Kernel%20Exploitation%20-%20Sam%20Page.pdf",
      "parent_primary_url": "https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#rce",
      "raw_path": "/raw/2022-vulnerabilities-rce-writing-a-linux-kernel-remote-in-2022-slides-9d10d797.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Writing a Linux Kernel Remote in 2022 · slides record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: RCE category: RCE item_title: Writing a Linux Kernel Remote in 2022 resource_label: slides resource_type: slides resource_url: https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Erybody%20Gettin%20TIPC%20-%20Demystifying%20Remote%20Linux%20Kernel%20Exploitation%20-%20Sam%20Page.pdf parent_primary_url: https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2022: \"Writing a Linux Kernel Remote in 2022\" by Samuel Page](https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/) [article] [[slides](https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Erybody%20Gettin%20TIPC%20-%20Demystifying%20Remote%20Linux%20Kernel%20Expl",
      "link_types": [
        "article",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Erybody%20Gettin%20TIPC%20-%20Demystifying%20Remote%20Linux%20Kernel%20Exploitation%20-%20Sam%20Page.pdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Erybody%20Gettin%20TIPC%20-%20Demystifying%20Remote%20Linux%20Kernel%20Exploitation%20-%20Sam%20Page.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "CVE-2022-0435"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Slides from Writing a Linux Kernel Remote in 2022 discuss remote code execution techniques.",
      "summary_zh": "2022年编写Linux内核远程程序的幻灯片讨论了远程代码执行技术。",
      "source_markdown": "[2022: \"Writing a Linux Kernel Remote in 2022\" by Samuel Page](https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/) [article] [[slides](https://conference.hitb.org/hitbsecconf2022sin/materials/D1T1%20-%20Erybody%20Gettin%20TIPC%20-%20Demystifying%20Remote%20Linux%20Kernel%20Exploitation%20-%20Sam%20Page.pdf)] [CVE-2022-0435]",
      "search_text": "writing a linux kernel remote in 2022 · slides writing a linux kernel remote in 2022 samuel page cve-2022-0435  vulnerabilities rce rce slides slides https://conference.hitb.org/hitbsecconf2022sin/materials/d1t1%20-%20erybody%20gettin%20tipc%20-%20demystifying%20remote%20linux%20kernel%20exploitation%20-%20sam%20page.pdf rce cve-2022-0435  vulnerability slides from writing a linux kernel remote in 2022 discuss remote code execution techniques. 2022年编写linux内核远程程序的幻灯片讨论了远程代码执行技术。 # writing a linux kernel remote in 2022 · slides record_kind: linux-kernel-resource-url section: vulnerabilities subsection: rce category: rce item_title: writing a linux kernel remote in 2022 resource_label: slides resource_type: slides resource_url: https://conference.hitb.org/hitbsecconf2022sin/materials/d1t1%20-%20erybody%20gettin%20tipc%20-%20demystifying%20remote%20linux%20kernel%20exploitation%20-%20sam%20page.pdf parent_primary_url: https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2022: \"writing a linux kernel remote in 2022\" by samuel page](https://blog.immunityinc.com/p/writing-a-linux-kernel-remote-in-2022/) [article] [[slides](https://conference.hitb.org/hitbsecconf2022sin/materials/d1t1%20-%20erybody%20gettin%20tipc%20-%20demystifying%20remote%20linux%20kernel%20expl unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "9109d415c67d19ff",
      "item_id": "0c51d0266d345ded",
      "slug": "2022-vulnerabilities-rce-zenith-pwn2own-tp-link-ac1750-smart-wi-fi-router-remote-code-execution-vulnerability-",
      "year": 2022,
      "title": "Zenith: Pwn2Own TP-Link AC1750 Smart Wi-Fi Router Remote Code Execution Vulnerability",
      "item_title": "Zenith: Pwn2Own TP-Link AC1750 Smart Wi-Fi Router Remote Code Execution Vulnerability",
      "authors": [
        "Axel Souchet"
      ],
      "cves": [
        "CVE-2022-24354"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "RCE",
      "section_path": "Vulnerabilities / RCE",
      "category": "RCE",
      "vulnerability_class": "RCE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/0vercl0k/zenith",
      "primary_url": "https://github.com/0vercl0k/zenith",
      "parent_primary_url": "https://github.com/0vercl0k/zenith",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#rce",
      "raw_path": "/raw/2022-vulnerabilities-rce-zenith-pwn2own-tp-link-ac1750-smart-wi-fi-router-remote-code-execution-vulnerability-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Zenith: Pwn2Own TP-Link AC1750 Smart Wi-Fi Router Remote Code Execution Vulnerability record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: RCE category: RCE item_title: Zenith: Pwn2Own TP-Link AC1750 Smart Wi-Fi Router Remote Code Execution Vulnerability resource_label: primary resource_type: article resource_url: https://github.com/0vercl0k/zenith parent_primary_url: https://github.com/0vercl0k/zenith source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2022: \"Zenith: Pwn2Own TP-Link AC1750 Smart Wi-Fi Router Remote Code Execution Vulnerability\" by Axel Souchet](https://github.com/0vercl0k/zenith) [article] [CVE-2022-24354] cves: CVE-2022-24354 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_sta",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/0vercl0k/zenith"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/0vercl0k/zenith"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/0vercl0k/zenith"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "CVE-2022-24354"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Zenith discusses a remote code execution vulnerability in TP-Link AC1750 routers.",
      "summary_zh": "Zenith讨论了TP-Link AC1750路由器中的远程代码执行漏洞。",
      "source_markdown": "[2022: \"Zenith: Pwn2Own TP-Link AC1750 Smart Wi-Fi Router Remote Code Execution Vulnerability\" by Axel Souchet](https://github.com/0vercl0k/zenith) [article] [CVE-2022-24354]",
      "search_text": "zenith: pwn2own tp-link ac1750 smart wi-fi router remote code execution vulnerability zenith: pwn2own tp-link ac1750 smart wi-fi router remote code execution vulnerability axel souchet cve-2022-24354  vulnerabilities rce rce primary article https://github.com/0vercl0k/zenith rce cve-2022-24354  vulnerability zenith discusses a remote code execution vulnerability in tp-link ac1750 routers. zenith讨论了tp-link ac1750路由器中的远程代码执行漏洞。 # zenith: pwn2own tp-link ac1750 smart wi-fi router remote code execution vulnerability record_kind: linux-kernel-resource-url section: vulnerabilities subsection: rce category: rce item_title: zenith: pwn2own tp-link ac1750 smart wi-fi router remote code execution vulnerability resource_label: primary resource_type: article resource_url: https://github.com/0vercl0k/zenith parent_primary_url: https://github.com/0vercl0k/zenith source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2022: \"zenith: pwn2own tp-link ac1750 smart wi-fi router remote code execution vulnerability\" by axel souchet](https://github.com/0vercl0k/zenith) [article] [cve-2022-24354] cves: cve-2022-24354 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_sta unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "326d6867726de646",
      "item_id": "18333216639fd824",
      "slug": "2021-vulnerabilities-rce-bleedingtooth-linux-bluetooth-zero-click-remote-code-execution-primary-2a5a9d74",
      "year": 2021,
      "title": "BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution",
      "item_title": "BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution",
      "authors": [
        "Andy Nguyen"
      ],
      "cves": [
        "CVE-2020-12352",
        "CVE-2020-12351",
        "CVE-2020-24490"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "RCE",
      "section_path": "Vulnerabilities / RCE",
      "category": "RCE",
      "vulnerability_class": "RCE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup",
      "primary_url": "https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup",
      "parent_primary_url": "https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#rce",
      "raw_path": "/raw/2021-vulnerabilities-rce-bleedingtooth-linux-bluetooth-zero-click-remote-code-execution-primary-2a5a9d74.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: RCE category: RCE item_title: BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution resource_label: primary resource_type: article resource_url: https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup parent_primary_url: https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2021: \"BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution\" by Andy Nguyen](https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup): [BadChoice](https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq), [BadKarma](https://github.com/google/security-research/security/advisories/GHS",
      "link_types": [
        "article",
        "advisory"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup"
        },
        {
          "label": "BadChoice",
          "type": "advisory",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq"
        },
        {
          "label": "BadKarma",
          "type": "advisory",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq"
        },
        {
          "label": "BadVibes",
          "type": "advisory",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "BadChoice",
            "type": "advisory",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq"
          },
          {
            "label": "BadKarma",
            "type": "advisory",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq"
          },
          {
            "label": "BadVibes",
            "type": "advisory",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649"
          }
        ]
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup",
        "https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq",
        "https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq",
        "https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "Bluetooth",
        "Vulnerability"
      ],
      "affected_area": "Bluetooth",
      "exploit_stage": "Vulnerability",
      "summary_en": "BleedingTooth exposes Linux Bluetooth to zero-click remote code execution vulnerabilities.",
      "summary_zh": "BleedingTooth使Linux蓝牙面临零点击远程代码执行漏洞。",
      "source_markdown": "[2021: \"BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution\" by Andy Nguyen](https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup): [BadChoice](https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq), [BadKarma](https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq), [BadVibes](https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649) [article] [CVE-2020-12352, CVE-2020-12351, CVE-2020-24490]",
      "search_text": "bleedingtooth: linux bluetooth zero-click remote code execution bleedingtooth: linux bluetooth zero-click remote code execution andy nguyen cve-2020-12352 cve-2020-12351 cve-2020-24490  vulnerabilities rce rce primary article https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup rce bluetooth vulnerability bluetooth vulnerability bleedingtooth exposes linux bluetooth to zero-click remote code execution vulnerabilities. bleedingtooth使linux蓝牙面临零点击远程代码执行漏洞。 # bleedingtooth: linux bluetooth zero-click remote code execution record_kind: linux-kernel-resource-url section: vulnerabilities subsection: rce category: rce item_title: bleedingtooth: linux bluetooth zero-click remote code execution resource_label: primary resource_type: article resource_url: https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup parent_primary_url: https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2021: \"bleedingtooth: linux bluetooth zero-click remote code execution\" by andy nguyen](https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup): [badchoice](https://github.com/google/security-research/security/advisories/ghsa-7mh3-gq28-gfrq), [badkarma](https://github.com/google/security-research/security/advisories/ghs unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "8c9f97950347eb45",
      "item_id": "18333216639fd824",
      "slug": "2021-vulnerabilities-rce-bleedingtooth-linux-bluetooth-zero-click-remote-code-execution-badchoice-7cff16bb",
      "year": 2021,
      "title": "BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution · BadChoice",
      "item_title": "BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution",
      "authors": [
        "Andy Nguyen"
      ],
      "cves": [
        "CVE-2020-12352",
        "CVE-2020-12351",
        "CVE-2020-24490"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "RCE",
      "section_path": "Vulnerabilities / RCE",
      "category": "RCE",
      "vulnerability_class": "RCE",
      "resource_label": "BadChoice",
      "resource_type": "advisory",
      "resource_url": "https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq",
      "primary_url": "https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq",
      "parent_primary_url": "https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#rce",
      "raw_path": "/raw/2021-vulnerabilities-rce-bleedingtooth-linux-bluetooth-zero-click-remote-code-execution-badchoice-7cff16bb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution · BadChoice record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: RCE category: RCE item_title: BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution resource_label: BadChoice resource_type: advisory resource_url: https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq parent_primary_url: https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2021: \"BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution\" by Andy Nguyen](https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup): [BadChoice](https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq), [BadKarma](https://github.com/google/security-research/",
      "link_types": [
        "article",
        "advisory"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup"
        },
        {
          "label": "BadChoice",
          "type": "advisory",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq"
        },
        {
          "label": "BadKarma",
          "type": "advisory",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq"
        },
        {
          "label": "BadVibes",
          "type": "advisory",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "BadChoice",
            "type": "advisory",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq"
          },
          {
            "label": "BadKarma",
            "type": "advisory",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq"
          },
          {
            "label": "BadVibes",
            "type": "advisory",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649"
          }
        ]
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup",
        "https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq",
        "https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq",
        "https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "CVE-2020-12352"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "BleedingTooth vulnerabilities in Linux Bluetooth can lead to zero-click remote code execution.",
      "summary_zh": "Linux蓝牙中的BleedingTooth漏洞可能导致零点击远程代码执行。",
      "source_markdown": "[2021: \"BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution\" by Andy Nguyen](https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup): [BadChoice](https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq), [BadKarma](https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq), [BadVibes](https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649) [article] [CVE-2020-12352, CVE-2020-12351, CVE-2020-24490]",
      "search_text": "bleedingtooth: linux bluetooth zero-click remote code execution · badchoice bleedingtooth: linux bluetooth zero-click remote code execution andy nguyen cve-2020-12352 cve-2020-12351 cve-2020-24490  vulnerabilities rce rce badchoice advisory https://github.com/google/security-research/security/advisories/ghsa-7mh3-gq28-gfrq rce cve-2020-12352  exploit bleedingtooth vulnerabilities in linux bluetooth can lead to zero-click remote code execution. linux蓝牙中的bleedingtooth漏洞可能导致零点击远程代码执行。 # bleedingtooth: linux bluetooth zero-click remote code execution · badchoice record_kind: linux-kernel-resource-url section: vulnerabilities subsection: rce category: rce item_title: bleedingtooth: linux bluetooth zero-click remote code execution resource_label: badchoice resource_type: advisory resource_url: https://github.com/google/security-research/security/advisories/ghsa-7mh3-gq28-gfrq parent_primary_url: https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2021: \"bleedingtooth: linux bluetooth zero-click remote code execution\" by andy nguyen](https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup): [badchoice](https://github.com/google/security-research/security/advisories/ghsa-7mh3-gq28-gfrq), [badkarma](https://github.com/google/security-research/ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "573d6207e904c606",
      "item_id": "18333216639fd824",
      "slug": "2021-vulnerabilities-rce-bleedingtooth-linux-bluetooth-zero-click-remote-code-execution-badkarma-de3565ee",
      "year": 2021,
      "title": "BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution · BadKarma",
      "item_title": "BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution",
      "authors": [
        "Andy Nguyen"
      ],
      "cves": [
        "CVE-2020-12352",
        "CVE-2020-12351",
        "CVE-2020-24490"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "RCE",
      "section_path": "Vulnerabilities / RCE",
      "category": "RCE",
      "vulnerability_class": "RCE",
      "resource_label": "BadKarma",
      "resource_type": "advisory",
      "resource_url": "https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq",
      "primary_url": "https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq",
      "parent_primary_url": "https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#rce",
      "raw_path": "/raw/2021-vulnerabilities-rce-bleedingtooth-linux-bluetooth-zero-click-remote-code-execution-badkarma-de3565ee.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution · BadKarma record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: RCE category: RCE item_title: BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution resource_label: BadKarma resource_type: advisory resource_url: https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq parent_primary_url: https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2021: \"BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution\" by Andy Nguyen](https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup): [BadChoice](https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq), [BadKarma](https://github.com/google/security-research/se",
      "link_types": [
        "article",
        "advisory"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup"
        },
        {
          "label": "BadChoice",
          "type": "advisory",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq"
        },
        {
          "label": "BadKarma",
          "type": "advisory",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq"
        },
        {
          "label": "BadVibes",
          "type": "advisory",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "BadChoice",
            "type": "advisory",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq"
          },
          {
            "label": "BadKarma",
            "type": "advisory",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq"
          },
          {
            "label": "BadVibes",
            "type": "advisory",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649"
          }
        ]
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup",
        "https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq",
        "https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq",
        "https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "CVE-2020-12352"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "BleedingTooth vulnerabilities in Linux Bluetooth can lead to zero-click remote code execution.",
      "summary_zh": "Linux蓝牙中的BleedingTooth漏洞可能导致零点击远程代码执行。",
      "source_markdown": "[2021: \"BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution\" by Andy Nguyen](https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup): [BadChoice](https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq), [BadKarma](https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq), [BadVibes](https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649) [article] [CVE-2020-12352, CVE-2020-12351, CVE-2020-24490]",
      "search_text": "bleedingtooth: linux bluetooth zero-click remote code execution · badkarma bleedingtooth: linux bluetooth zero-click remote code execution andy nguyen cve-2020-12352 cve-2020-12351 cve-2020-24490  vulnerabilities rce rce badkarma advisory https://github.com/google/security-research/security/advisories/ghsa-h637-c88j-47wq rce cve-2020-12352  exploit bleedingtooth vulnerabilities in linux bluetooth can lead to zero-click remote code execution. linux蓝牙中的bleedingtooth漏洞可能导致零点击远程代码执行。 # bleedingtooth: linux bluetooth zero-click remote code execution · badkarma record_kind: linux-kernel-resource-url section: vulnerabilities subsection: rce category: rce item_title: bleedingtooth: linux bluetooth zero-click remote code execution resource_label: badkarma resource_type: advisory resource_url: https://github.com/google/security-research/security/advisories/ghsa-h637-c88j-47wq parent_primary_url: https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2021: \"bleedingtooth: linux bluetooth zero-click remote code execution\" by andy nguyen](https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup): [badchoice](https://github.com/google/security-research/security/advisories/ghsa-7mh3-gq28-gfrq), [badkarma](https://github.com/google/security-research/se unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3dd0a4a6da3b951a",
      "item_id": "18333216639fd824",
      "slug": "2021-vulnerabilities-rce-bleedingtooth-linux-bluetooth-zero-click-remote-code-execution-badvibes-59936a05",
      "year": 2021,
      "title": "BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution · BadVibes",
      "item_title": "BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution",
      "authors": [
        "Andy Nguyen"
      ],
      "cves": [
        "CVE-2020-12352",
        "CVE-2020-12351",
        "CVE-2020-24490"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "RCE",
      "section_path": "Vulnerabilities / RCE",
      "category": "RCE",
      "vulnerability_class": "RCE",
      "resource_label": "BadVibes",
      "resource_type": "advisory",
      "resource_url": "https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649",
      "primary_url": "https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649",
      "parent_primary_url": "https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#rce",
      "raw_path": "/raw/2021-vulnerabilities-rce-bleedingtooth-linux-bluetooth-zero-click-remote-code-execution-badvibes-59936a05.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution · BadVibes record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: RCE category: RCE item_title: BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution resource_label: BadVibes resource_type: advisory resource_url: https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649 parent_primary_url: https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2021: \"BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution\" by Andy Nguyen](https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup): [BadChoice](https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq), [BadKarma](https://github.com/google/security-research/se",
      "link_types": [
        "article",
        "advisory"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup"
        },
        {
          "label": "BadChoice",
          "type": "advisory",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq"
        },
        {
          "label": "BadKarma",
          "type": "advisory",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq"
        },
        {
          "label": "BadVibes",
          "type": "advisory",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "BadChoice",
            "type": "advisory",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq"
          },
          {
            "label": "BadKarma",
            "type": "advisory",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq"
          },
          {
            "label": "BadVibes",
            "type": "advisory",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649"
          }
        ]
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup",
        "https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq",
        "https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq",
        "https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "CVE-2020-12352"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "BleedingTooth vulnerabilities in Linux Bluetooth can lead to zero-click remote code execution.",
      "summary_zh": "Linux蓝牙中的BleedingTooth漏洞可能导致零点击远程代码执行。",
      "source_markdown": "[2021: \"BleedingTooth: Linux Bluetooth Zero-Click Remote Code Execution\" by Andy Nguyen](https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup): [BadChoice](https://github.com/google/security-research/security/advisories/GHSA-7mh3-gq28-gfrq), [BadKarma](https://github.com/google/security-research/security/advisories/GHSA-h637-c88j-47wq), [BadVibes](https://github.com/google/security-research/security/advisories/GHSA-ccx2-w2r4-x649) [article] [CVE-2020-12352, CVE-2020-12351, CVE-2020-24490]",
      "search_text": "bleedingtooth: linux bluetooth zero-click remote code execution · badvibes bleedingtooth: linux bluetooth zero-click remote code execution andy nguyen cve-2020-12352 cve-2020-12351 cve-2020-24490  vulnerabilities rce rce badvibes advisory https://github.com/google/security-research/security/advisories/ghsa-ccx2-w2r4-x649 rce cve-2020-12352  exploit bleedingtooth vulnerabilities in linux bluetooth can lead to zero-click remote code execution. linux蓝牙中的bleedingtooth漏洞可能导致零点击远程代码执行。 # bleedingtooth: linux bluetooth zero-click remote code execution · badvibes record_kind: linux-kernel-resource-url section: vulnerabilities subsection: rce category: rce item_title: bleedingtooth: linux bluetooth zero-click remote code execution resource_label: badvibes resource_type: advisory resource_url: https://github.com/google/security-research/security/advisories/ghsa-ccx2-w2r4-x649 parent_primary_url: https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2021: \"bleedingtooth: linux bluetooth zero-click remote code execution\" by andy nguyen](https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup): [badchoice](https://github.com/google/security-research/security/advisories/ghsa-7mh3-gq28-gfrq), [badkarma](https://github.com/google/security-research/se unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "5c7c32267f6dcaa0",
      "item_id": "58f4c5d2e1b72df6",
      "slug": "2017-vulnerabilities-rce-over-the-air-exploiting-broadcom-s-wi-fi-stack-part-2-primary-c5afb18d",
      "year": 2017,
      "title": "Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2)",
      "item_title": "Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2)",
      "authors": [
        "Gal Beniamini"
      ],
      "cves": [
        "CVE-2017-0569"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "RCE",
      "section_path": "Vulnerabilities / RCE",
      "category": "RCE",
      "vulnerability_class": "RCE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2017/04/over-air-exploiting-broadcoms-wi-fi_11.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2017/04/over-air-exploiting-broadcoms-wi-fi_11.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2017/04/over-air-exploiting-broadcoms-wi-fi_11.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#rce",
      "raw_path": "/raw/2017-vulnerabilities-rce-over-the-air-exploiting-broadcom-s-wi-fi-stack-part-2-primary-c5afb18d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: RCE category: RCE item_title: Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2) resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2017/04/over-air-exploiting-broadcoms-wi-fi_11.html parent_primary_url: https://googleprojectzero.blogspot.com/2017/04/over-air-exploiting-broadcoms-wi-fi_11.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2017: \"Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2)\" by Gal Beniamini](https://googleprojectzero.blogspot.com/2017/04/over-air-exploiting-broadcoms-wi-fi_11.html) [article] [CVE-2017-0569] cves: CVE-2017-0569 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android p",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2017/04/over-air-exploiting-broadcoms-wi-fi_11.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2017/04/over-air-exploiting-broadcoms-wi-fi_11.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "Wi-Fi",
        "Vulnerability"
      ],
      "affected_area": "Wi-Fi",
      "exploit_stage": "Vulnerability",
      "summary_en": "Exploiting Broadcom's Wi-Fi stack reveals remote code execution vulnerabilities.",
      "summary_zh": "利用博通的Wi-Fi堆栈揭示了远程代码执行漏洞。",
      "source_markdown": "[2017: \"Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2)\" by Gal Beniamini](https://googleprojectzero.blogspot.com/2017/04/over-air-exploiting-broadcoms-wi-fi_11.html) [article] [CVE-2017-0569]",
      "search_text": "over the air: exploiting broadcom’s wi-fi stack (part 2) over the air: exploiting broadcom’s wi-fi stack (part 2) gal beniamini cve-2017-0569  vulnerabilities rce rce primary article https://googleprojectzero.blogspot.com/2017/04/over-air-exploiting-broadcoms-wi-fi_11.html rce wi-fi vulnerability wi-fi vulnerability exploiting broadcom's wi-fi stack reveals remote code execution vulnerabilities. 利用博通的wi-fi堆栈揭示了远程代码执行漏洞。 # over the air: exploiting broadcom’s wi-fi stack (part 2) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: rce category: rce item_title: over the air: exploiting broadcom’s wi-fi stack (part 2) resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2017/04/over-air-exploiting-broadcoms-wi-fi_11.html parent_primary_url: https://googleprojectzero.blogspot.com/2017/04/over-air-exploiting-broadcoms-wi-fi_11.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2017: \"over the air: exploiting broadcom’s wi-fi stack (part 2)\" by gal beniamini](https://googleprojectzero.blogspot.com/2017/04/over-air-exploiting-broadcoms-wi-fi_11.html) [article] [cve-2017-0569] cves: cve-2017-0569 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android p unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "412c5e5b6bda506e",
      "item_id": "f3d18586a536498b",
      "slug": "2017-vulnerabilities-rce-blueborn-the-dangers-of-bluetooth-implementations-unveiling-zero-day-vulnerabilities-",
      "year": 2017,
      "title": "BlueBorn: The dangers of Bluetooth implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth stacks",
      "item_title": "BlueBorn: The dangers of Bluetooth implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth stacks",
      "authors": [],
      "cves": [
        "CVE-2017-1000251"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "RCE",
      "section_path": "Vulnerabilities / RCE",
      "category": "RCE",
      "vulnerability_class": "RCE",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "http://go.armis.com/hubfs/BlueBorne%20Technical%20White%20Paper.pdf?t=1505222709963",
      "primary_url": "http://go.armis.com/hubfs/BlueBorne%20Technical%20White%20Paper.pdf?t=1505222709963",
      "parent_primary_url": "http://go.armis.com/hubfs/BlueBorne%20Technical%20White%20Paper.pdf?t=1505222709963",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#rce",
      "raw_path": "/raw/2017-vulnerabilities-rce-blueborn-the-dangers-of-bluetooth-implementations-unveiling-zero-day-vulnerabilities-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BlueBorn: The dangers of Bluetooth implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth stacks record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: RCE category: RCE item_title: BlueBorn: The dangers of Bluetooth implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth stacks resource_label: primary resource_type: paper resource_url: http://go.armis.com/hubfs/BlueBorne%20Technical%20White%20Paper.pdf?t=1505222709963 parent_primary_url: http://go.armis.com/hubfs/BlueBorne%20Technical%20White%20Paper.pdf?t=1505222709963 source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2017: \"BlueBorn: The dangers of Bluetooth implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth stacks\"](http://go.armis.com/hubfs/BlueBorne%20Technical%",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "http://go.armis.com/hubfs/BlueBorne%20Technical%20White%20Paper.pdf?t=1505222709963"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "http://go.armis.com/hubfs/BlueBorne%20Technical%20White%20Paper.pdf?t=1505222709963"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "Bluetooth",
        "Vulnerability"
      ],
      "affected_area": "Bluetooth",
      "exploit_stage": "Vulnerability",
      "summary_en": "BlueBorn uncovers critical zero-day vulnerabilities in modern Bluetooth stacks.",
      "summary_zh": "BlueBorn揭示了现代蓝牙堆栈中的关键零日漏洞。",
      "source_markdown": "[2017: \"BlueBorn: The dangers of Bluetooth implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth stacks\"](http://go.armis.com/hubfs/BlueBorne%20Technical%20White%20Paper.pdf?t=1505222709963) [paper] [CVE-2017-1000251]",
      "search_text": "blueborn: the dangers of bluetooth implementations: unveiling zero day vulnerabilities and security flaws in modern bluetooth stacks blueborn: the dangers of bluetooth implementations: unveiling zero day vulnerabilities and security flaws in modern bluetooth stacks  cve-2017-1000251  vulnerabilities rce rce primary paper http://go.armis.com/hubfs/blueborne%20technical%20white%20paper.pdf?t=1505222709963 rce bluetooth vulnerability bluetooth vulnerability blueborn uncovers critical zero-day vulnerabilities in modern bluetooth stacks. blueborn揭示了现代蓝牙堆栈中的关键零日漏洞。 # blueborn: the dangers of bluetooth implementations: unveiling zero day vulnerabilities and security flaws in modern bluetooth stacks record_kind: linux-kernel-resource-url section: vulnerabilities subsection: rce category: rce item_title: blueborn: the dangers of bluetooth implementations: unveiling zero day vulnerabilities and security flaws in modern bluetooth stacks resource_label: primary resource_type: paper resource_url: http://go.armis.com/hubfs/blueborne%20technical%20white%20paper.pdf?t=1505222709963 parent_primary_url: http://go.armis.com/hubfs/blueborne%20technical%20white%20paper.pdf?t=1505222709963 source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2017: \"blueborn: the dangers of bluetooth implementations: unveiling zero day vulnerabilities and security flaws in modern bluetooth stacks\"](http://go.armis.com/hubfs/blueborne%20technical% unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ece660ef61fc7997",
      "item_id": "36d0df7ddb951f66",
      "slug": "2016-vulnerabilities-rce-cve-publication-cve-2016-8633-primary-b4185a3a",
      "year": 2016,
      "title": "CVE Publication: CVE 2016-8633",
      "item_title": "CVE Publication: CVE 2016-8633",
      "authors": [
        "Eyal Itkin"
      ],
      "cves": [
        "CVE-2016-8633"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "RCE",
      "section_path": "Vulnerabilities / RCE",
      "category": "RCE",
      "vulnerability_class": "RCE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://eyalitkin.wordpress.com/2016/11/06/cve-publication-cve-2016-8633/",
      "primary_url": "https://eyalitkin.wordpress.com/2016/11/06/cve-publication-cve-2016-8633/",
      "parent_primary_url": "https://eyalitkin.wordpress.com/2016/11/06/cve-publication-cve-2016-8633/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#rce",
      "raw_path": "/raw/2016-vulnerabilities-rce-cve-publication-cve-2016-8633-primary-b4185a3a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE Publication: CVE 2016-8633 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: RCE category: RCE item_title: CVE Publication: CVE 2016-8633 resource_label: primary resource_type: article resource_url: https://eyalitkin.wordpress.com/2016/11/06/cve-publication-cve-2016-8633/ parent_primary_url: https://eyalitkin.wordpress.com/2016/11/06/cve-publication-cve-2016-8633/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2016: \"CVE Publication: CVE 2016-8633\" by Eyal Itkin](https://eyalitkin.wordpress.com/2016/11/06/cve-publication-cve-2016-8633/) [article] [CVE-2016-8633] cves: CVE-2016-8633 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices us",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://eyalitkin.wordpress.com/2016/11/06/cve-publication-cve-2016-8633/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://eyalitkin.wordpress.com/2016/11/06/cve-publication-cve-2016-8633/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "CVE-2016-8633 is a documented remote code execution vulnerability in Linux.",
      "summary_zh": "CVE-2016-8633是Linux中的一个已记录的远程代码执行漏洞。",
      "source_markdown": "[2016: \"CVE Publication: CVE 2016-8633\" by Eyal Itkin](https://eyalitkin.wordpress.com/2016/11/06/cve-publication-cve-2016-8633/) [article] [CVE-2016-8633]",
      "search_text": "cve publication: cve 2016-8633 cve publication: cve 2016-8633 eyal itkin cve-2016-8633  vulnerabilities rce rce primary article https://eyalitkin.wordpress.com/2016/11/06/cve-publication-cve-2016-8633/ rce vulnerability  vulnerability cve-2016-8633 is a documented remote code execution vulnerability in linux. cve-2016-8633是linux中的一个已记录的远程代码执行漏洞。 # cve publication: cve 2016-8633 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: rce category: rce item_title: cve publication: cve 2016-8633 resource_label: primary resource_type: article resource_url: https://eyalitkin.wordpress.com/2016/11/06/cve-publication-cve-2016-8633/ parent_primary_url: https://eyalitkin.wordpress.com/2016/11/06/cve-publication-cve-2016-8633/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2016: \"cve publication: cve 2016-8633\" by eyal itkin](https://eyalitkin.wordpress.com/2016/11/06/cve-publication-cve-2016-8633/) [article] [cve-2016-8633] cves: cve-2016-8633 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices us unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4377295d068d5ef4",
      "item_id": "439af2d066e19c8c",
      "slug": "2011-vulnerabilities-rce-owned-over-amateur-radio-remote-kernel-exploitation-in-2011-at-def-con-primary-44679a",
      "year": 2011,
      "title": "Owned Over Amateur Radio: Remote Kernel Exploitation in 2011\" at DEF CON",
      "item_title": "Owned Over Amateur Radio: Remote Kernel Exploitation in 2011\" at DEF CON",
      "authors": [],
      "cves": [
        "CVE-2011-1493"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "RCE",
      "section_path": "Vulnerabilities / RCE",
      "category": "RCE",
      "vulnerability_class": "RCE",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "http://cs.dartmouth.edu/~sergey/cs258/2012/Dan-Rosenberg-lecture.pdf",
      "primary_url": "http://cs.dartmouth.edu/~sergey/cs258/2012/Dan-Rosenberg-lecture.pdf",
      "parent_primary_url": "http://cs.dartmouth.edu/~sergey/cs258/2012/Dan-Rosenberg-lecture.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#rce",
      "raw_path": "/raw/2011-vulnerabilities-rce-owned-over-amateur-radio-remote-kernel-exploitation-in-2011-at-def-con-primary-44679a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Owned Over Amateur Radio: Remote Kernel Exploitation in 2011\" at DEF CON record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: RCE category: RCE item_title: Owned Over Amateur Radio: Remote Kernel Exploitation in 2011\" at DEF CON resource_label: primary resource_type: slides resource_url: http://cs.dartmouth.edu/~sergey/cs258/2012/Dan-Rosenberg-lecture.pdf parent_primary_url: http://cs.dartmouth.edu/~sergey/cs258/2012/Dan-Rosenberg-lecture.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2011: \"Owned Over Amateur Radio: Remote Kernel Exploitation in 2011\" at DEF CON](http://cs.dartmouth.edu/~sergey/cs258/2012/Dan-Rosenberg-lecture.pdf) [slides] [[video](https://www.youtube.com/watch?v=kBjD0HITQZA)] [CVE-2011-1493] cves: CVE-2011-1493 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "http://cs.dartmouth.edu/~sergey/cs258/2012/Dan-Rosenberg-lecture.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=kBjD0HITQZA"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "http://cs.dartmouth.edu/~sergey/cs258/2012/Dan-Rosenberg-lecture.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=kBjD0HITQZA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "Kernel",
        "Vulnerability"
      ],
      "affected_area": "Kernel",
      "exploit_stage": "Vulnerability",
      "summary_en": "A presentation on remote kernel exploitation techniques from DEF CON 2011.",
      "summary_zh": "2011年DEF CON上的远程内核利用技术演示。",
      "source_markdown": "[2011: \"Owned Over Amateur Radio: Remote Kernel Exploitation in 2011\" at DEF CON](http://cs.dartmouth.edu/~sergey/cs258/2012/Dan-Rosenberg-lecture.pdf) [slides] [[video](https://www.youtube.com/watch?v=kBjD0HITQZA)] [CVE-2011-1493]",
      "search_text": "owned over amateur radio: remote kernel exploitation in 2011\" at def con owned over amateur radio: remote kernel exploitation in 2011\" at def con  cve-2011-1493  vulnerabilities rce rce primary slides http://cs.dartmouth.edu/~sergey/cs258/2012/dan-rosenberg-lecture.pdf rce kernel vulnerability kernel vulnerability a presentation on remote kernel exploitation techniques from def con 2011. 2011年def con上的远程内核利用技术演示。 # owned over amateur radio: remote kernel exploitation in 2011\" at def con record_kind: linux-kernel-resource-url section: vulnerabilities subsection: rce category: rce item_title: owned over amateur radio: remote kernel exploitation in 2011\" at def con resource_label: primary resource_type: slides resource_url: http://cs.dartmouth.edu/~sergey/cs258/2012/dan-rosenberg-lecture.pdf parent_primary_url: http://cs.dartmouth.edu/~sergey/cs258/2012/dan-rosenberg-lecture.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2011: \"owned over amateur radio: remote kernel exploitation in 2011\" at def con](http://cs.dartmouth.edu/~sergey/cs258/2012/dan-rosenberg-lecture.pdf) [slides] [[video](https://www.youtube.com/watch?v=kbjd0hitqza)] [cve-2011-1493] cves: cve-2011-1493 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d6c816c6aa36c9e9",
      "item_id": "439af2d066e19c8c",
      "slug": "2011-vulnerabilities-rce-owned-over-amateur-radio-remote-kernel-exploitation-in-2011-at-def-con-video-8e379396",
      "year": 2011,
      "title": "Owned Over Amateur Radio: Remote Kernel Exploitation in 2011\" at DEF CON · video",
      "item_title": "Owned Over Amateur Radio: Remote Kernel Exploitation in 2011\" at DEF CON",
      "authors": [],
      "cves": [
        "CVE-2011-1493"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "RCE",
      "section_path": "Vulnerabilities / RCE",
      "category": "RCE",
      "vulnerability_class": "RCE",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=kBjD0HITQZA",
      "primary_url": "https://www.youtube.com/watch?v=kBjD0HITQZA",
      "parent_primary_url": "http://cs.dartmouth.edu/~sergey/cs258/2012/Dan-Rosenberg-lecture.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#rce",
      "raw_path": "/raw/2011-vulnerabilities-rce-owned-over-amateur-radio-remote-kernel-exploitation-in-2011-at-def-con-video-8e379396.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Owned Over Amateur Radio: Remote Kernel Exploitation in 2011\" at DEF CON · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: RCE category: RCE item_title: Owned Over Amateur Radio: Remote Kernel Exploitation in 2011\" at DEF CON resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=kBjD0HITQZA parent_primary_url: http://cs.dartmouth.edu/~sergey/cs258/2012/Dan-Rosenberg-lecture.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2011: \"Owned Over Amateur Radio: Remote Kernel Exploitation in 2011\" at DEF CON](http://cs.dartmouth.edu/~sergey/cs258/2012/Dan-Rosenberg-lecture.pdf) [slides] [[video](https://www.youtube.com/watch?v=kBjD0HITQZA)] [CVE-2011-1493] cves: CVE-2011-1493 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android prod",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "http://cs.dartmouth.edu/~sergey/cs258/2012/Dan-Rosenberg-lecture.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=kBjD0HITQZA"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "http://cs.dartmouth.edu/~sergey/cs258/2012/Dan-Rosenberg-lecture.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=kBjD0HITQZA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "Kernel",
        "Vulnerability"
      ],
      "affected_area": "Kernel",
      "exploit_stage": "Vulnerability",
      "summary_en": "A video presentation on remote kernel exploitation techniques from DEF CON 2011.",
      "summary_zh": "2011年DEF CON上的远程内核利用技术视频演示。",
      "source_markdown": "[2011: \"Owned Over Amateur Radio: Remote Kernel Exploitation in 2011\" at DEF CON](http://cs.dartmouth.edu/~sergey/cs258/2012/Dan-Rosenberg-lecture.pdf) [slides] [[video](https://www.youtube.com/watch?v=kBjD0HITQZA)] [CVE-2011-1493]",
      "search_text": "owned over amateur radio: remote kernel exploitation in 2011\" at def con · video owned over amateur radio: remote kernel exploitation in 2011\" at def con  cve-2011-1493  vulnerabilities rce rce video video https://www.youtube.com/watch?v=kbjd0hitqza rce kernel vulnerability kernel vulnerability a video presentation on remote kernel exploitation techniques from def con 2011. 2011年def con上的远程内核利用技术视频演示。 # owned over amateur radio: remote kernel exploitation in 2011\" at def con · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: rce category: rce item_title: owned over amateur radio: remote kernel exploitation in 2011\" at def con resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=kbjd0hitqza parent_primary_url: http://cs.dartmouth.edu/~sergey/cs258/2012/dan-rosenberg-lecture.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2011: \"owned over amateur radio: remote kernel exploitation in 2011\" at def con](http://cs.dartmouth.edu/~sergey/cs258/2012/dan-rosenberg-lecture.pdf) [slides] [[video](https://www.youtube.com/watch?v=kbjd0hitqza)] [cve-2011-1493] cves: cve-2011-1493 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android prod unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "49a7f5fbf9cd215f",
      "item_id": "63b867c445bd7f5d",
      "slug": "2009-vulnerabilities-rce-when-a-potential-d-o-s-means-a-one-shot-remote-kernel-exploit-the-sctp-story-primary-",
      "year": 2009,
      "title": "When a \"potential D.o.S.\" means a one-shot remote kernel exploit: the SCTP story",
      "item_title": "When a \"potential D.o.S.\" means a one-shot remote kernel exploit: the SCTP story",
      "authors": [],
      "cves": [
        "CVE-2009-0065"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "RCE",
      "section_path": "Vulnerabilities / RCE",
      "category": "RCE",
      "vulnerability_class": "RCE",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://kernelbof.blogspot.de/2009/04/kernel-memory-corruptions-are-not-just.html",
      "primary_url": "https://kernelbof.blogspot.de/2009/04/kernel-memory-corruptions-are-not-just.html",
      "parent_primary_url": "https://kernelbof.blogspot.de/2009/04/kernel-memory-corruptions-are-not-just.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#rce",
      "raw_path": "/raw/2009-vulnerabilities-rce-when-a-potential-d-o-s-means-a-one-shot-remote-kernel-exploit-the-sctp-story-primary-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# When a \"potential D.o.S.\" means a one-shot remote kernel exploit: the SCTP story record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: RCE category: RCE item_title: When a \"potential D.o.S.\" means a one-shot remote kernel exploit: the SCTP story resource_label: primary resource_type: article resource_url: https://kernelbof.blogspot.de/2009/04/kernel-memory-corruptions-are-not-just.html parent_primary_url: https://kernelbof.blogspot.de/2009/04/kernel-memory-corruptions-are-not-just.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2009: \"When a \"potential D.o.S.\" means a one-shot remote kernel exploit: the SCTP story\"](https://kernelbof.blogspot.de/2009/04/kernel-memory-corruptions-are-not-just.html) [article] [CVE-2009-0065] cves: CVE-2009-0065 android_impact_status: unknown android_impact_reason: Linux kernel vulnerabil",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kernelbof.blogspot.de/2009/04/kernel-memory-corruptions-are-not-just.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kernelbof.blogspot.de/2009/04/kernel-memory-corruptions-are-not-just.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "Kernel",
        "Vulnerability"
      ],
      "affected_area": "Kernel",
      "exploit_stage": "Vulnerability",
      "summary_en": "CVE-2009-0065 highlights a one-shot remote kernel exploit vulnerability.",
      "summary_zh": "CVE-2009-0065突出了一个一次性远程内核利用漏洞。",
      "source_markdown": "[2009: \"When a \"potential D.o.S.\" means a one-shot remote kernel exploit: the SCTP story\"](https://kernelbof.blogspot.de/2009/04/kernel-memory-corruptions-are-not-just.html) [article] [CVE-2009-0065]",
      "search_text": "when a \"potential d.o.s.\" means a one-shot remote kernel exploit: the sctp story when a \"potential d.o.s.\" means a one-shot remote kernel exploit: the sctp story  cve-2009-0065  vulnerabilities rce rce primary article https://kernelbof.blogspot.de/2009/04/kernel-memory-corruptions-are-not-just.html rce kernel vulnerability kernel vulnerability cve-2009-0065 highlights a one-shot remote kernel exploit vulnerability. cve-2009-0065突出了一个一次性远程内核利用漏洞。 # when a \"potential d.o.s.\" means a one-shot remote kernel exploit: the sctp story record_kind: linux-kernel-resource-url section: vulnerabilities subsection: rce category: rce item_title: when a \"potential d.o.s.\" means a one-shot remote kernel exploit: the sctp story resource_label: primary resource_type: article resource_url: https://kernelbof.blogspot.de/2009/04/kernel-memory-corruptions-are-not-just.html parent_primary_url: https://kernelbof.blogspot.de/2009/04/kernel-memory-corruptions-are-not-just.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#rce source_item: [2009: \"when a \"potential d.o.s.\" means a one-shot remote kernel exploit: the sctp story\"](https://kernelbof.blogspot.de/2009/04/kernel-memory-corruptions-are-not-just.html) [article] [cve-2009-0065] cves: cve-2009-0065 android_impact_status: unknown android_impact_reason: linux kernel vulnerabil unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9b6656c813670e46",
      "item_id": "cefedc7f6081b25c",
      "slug": "2026-vulnerabilities-other-the-epoll-uaf-primary-af98cd07",
      "year": 2026,
      "title": "The epoll uaf",
      "item_title": "The epoll uaf",
      "authors": [
        "Guy Beck"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://guysrd.github.io/epoll-uaf",
      "primary_url": "https://guysrd.github.io/epoll-uaf",
      "parent_primary_url": "https://guysrd.github.io/epoll-uaf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2026-vulnerabilities-other-the-epoll-uaf-primary-af98cd07.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The epoll uaf record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: The epoll uaf resource_label: primary resource_type: article resource_url: https://guysrd.github.io/epoll-uaf parent_primary_url: https://guysrd.github.io/epoll-uaf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2026: \"The epoll uaf\" by Guy Beck](https://guysrd.github.io/epoll-uaf) [article] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://guysrd.github.io/epoll-uaf context_links: - [article] p",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://guysrd.github.io/epoll-uaf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://guysrd.github.io/epoll-uaf"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://guysrd.github.io/epoll-uaf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerability",
        "Use-After-Free"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "The epoll uaf vulnerability presents a significant security risk in Linux.",
      "summary_zh": "epoll uaf漏洞在Linux中构成了重大安全风险。",
      "source_markdown": "[2026: \"The epoll uaf\" by Guy Beck](https://guysrd.github.io/epoll-uaf) [article] [CVE-UNKNOWN]",
      "search_text": "the epoll uaf the epoll uaf guy beck cve-unknown  vulnerabilities other other primary article https://guysrd.github.io/epoll-uaf vulnerability use-after-free  vulnerability the epoll uaf vulnerability presents a significant security risk in linux. epoll uaf漏洞在linux中构成了重大安全风险。 # the epoll uaf record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: the epoll uaf resource_label: primary resource_type: article resource_url: https://guysrd.github.io/epoll-uaf parent_primary_url: https://guysrd.github.io/epoll-uaf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2026: \"the epoll uaf\" by guy beck](https://guysrd.github.io/epoll-uaf) [article] [cve-unknown] cves: cve-unknown android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://guysrd.github.io/epoll-uaf context_links: - [article] p unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "13c18575afbcf36c",
      "item_id": "04d7a1880b826ef2",
      "slug": "2026-vulnerabilities-other-unix-gc-remastered-primary-0b6dfaee",
      "year": 2026,
      "title": "Unix GC Remastered",
      "item_title": "Unix GC Remastered",
      "authors": [
        "Moe Acherir"
      ],
      "cves": [
        "CVE-2025-40214"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://mohandacherir.github.io/Qdiv7/posts/unix_new_gc/",
      "primary_url": "https://mohandacherir.github.io/Qdiv7/posts/unix_new_gc/",
      "parent_primary_url": "https://mohandacherir.github.io/Qdiv7/posts/unix_new_gc/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2026-vulnerabilities-other-unix-gc-remastered-primary-0b6dfaee.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Unix GC Remastered record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Unix GC Remastered resource_label: primary resource_type: article resource_url: https://mohandacherir.github.io/Qdiv7/posts/unix_new_gc/ parent_primary_url: https://mohandacherir.github.io/Qdiv7/posts/unix_new_gc/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2026: \"Unix GC Remastered\" by Moe Acherir](https://mohandacherir.github.io/Qdiv7/posts/unix_new_gc/) [article] [CVE-2025-40214] cves: CVE-2025-40214 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_expl",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://mohandacherir.github.io/Qdiv7/posts/unix_new_gc/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://mohandacherir.github.io/Qdiv7/posts/unix_new_gc/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://mohandacherir.github.io/Qdiv7/posts/unix_new_gc/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "Unix GC Remastered introduces a new vulnerability in the Unix environment.",
      "summary_zh": "Unix GC Remastered在Unix环境中引入了一个新漏洞。",
      "source_markdown": "[2026: \"Unix GC Remastered\" by Moe Acherir](https://mohandacherir.github.io/Qdiv7/posts/unix_new_gc/) [article] [CVE-2025-40214]",
      "search_text": "unix gc remastered unix gc remastered moe acherir cve-2025-40214  vulnerabilities other other primary article https://mohandacherir.github.io/qdiv7/posts/unix_new_gc/ vulnerability  vulnerability unix gc remastered introduces a new vulnerability in the unix environment. unix gc remastered在unix环境中引入了一个新漏洞。 # unix gc remastered record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: unix gc remastered resource_label: primary resource_type: article resource_url: https://mohandacherir.github.io/qdiv7/posts/unix_new_gc/ parent_primary_url: https://mohandacherir.github.io/qdiv7/posts/unix_new_gc/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2026: \"unix gc remastered\" by moe acherir](https://mohandacherir.github.io/qdiv7/posts/unix_new_gc/) [article] [cve-2025-40214] cves: cve-2025-40214 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_expl unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3628b2f676dcb5b0",
      "item_id": "ef2f62c9eb059e58",
      "slug": "2026-vulnerabilities-other-discovery-validation-in-the-linux-kernel-part-1-can-use-after-free-race-primary-bc0",
      "year": 2026,
      "title": "Discovery & Validation in the Linux Kernel (Part 1): CAN Use-After-Free Race",
      "item_title": "Discovery & Validation in the Linux Kernel (Part 1): CAN Use-After-Free Race",
      "authors": [
        "Samuel Page"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-1-can-use-after-free-race",
      "primary_url": "https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-1-can-use-after-free-race",
      "parent_primary_url": "https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-1-can-use-after-free-race",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2026-vulnerabilities-other-discovery-validation-in-the-linux-kernel-part-1-can-use-after-free-race-primary-bc0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Discovery & Validation in the Linux Kernel (Part 1): CAN Use-After-Free Race record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Discovery & Validation in the Linux Kernel (Part 1): CAN Use-After-Free Race resource_label: primary resource_type: article resource_url: https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-1-can-use-after-free-race parent_primary_url: https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-1-can-use-after-free-race source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2026: \"Discovery & Validation in the Linux Kernel (Part 1): CAN Use-After-Free Race\" by Samuel Page](https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-1-can-use-after-free-race) [article] cves: none android_impact_status: unknown android_impact_reason: Lin",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-1-can-use-after-free-race"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-1-can-use-after-free-race"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerability",
        "Use-After-Free"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "A blog post discussing a use-after-free race condition in the Linux kernel.",
      "summary_zh": "一篇博客文章讨论了Linux内核中的使用后释放竞争条件。",
      "source_markdown": "[2026: \"Discovery & Validation in the Linux Kernel (Part 1): CAN Use-After-Free Race\" by Samuel Page](https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-1-can-use-after-free-race) [article]",
      "search_text": "discovery & validation in the linux kernel (part 1): can use-after-free race discovery & validation in the linux kernel (part 1): can use-after-free race samuel page   vulnerabilities other other primary article https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-1-can-use-after-free-race vulnerability use-after-free  vulnerability a blog post discussing a use-after-free race condition in the linux kernel. 一篇博客文章讨论了linux内核中的使用后释放竞争条件。 # discovery & validation in the linux kernel (part 1): can use-after-free race record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: discovery & validation in the linux kernel (part 1): can use-after-free race resource_label: primary resource_type: article resource_url: https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-1-can-use-after-free-race parent_primary_url: https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-1-can-use-after-free-race source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2026: \"discovery & validation in the linux kernel (part 1): can use-after-free race\" by samuel page](https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-1-can-use-after-free-race) [article] cves: none android_impact_status: unknown android_impact_reason: lin unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6f98d04c1d74e5db",
      "item_id": "50a25033d46889c5",
      "slug": "2026-vulnerabilities-other-discovery-validation-in-the-linux-kernel-part-2-fuse-page-cache-overflow-primary-f1",
      "year": 2026,
      "title": "Discovery & Validation in the Linux Kernel (Part 2): FUSE Page Cache Overflow",
      "item_title": "Discovery & Validation in the Linux Kernel (Part 2): FUSE Page Cache Overflow",
      "authors": [
        "Samuel Page"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-2-fuse-page-cache-overflow",
      "primary_url": "https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-2-fuse-page-cache-overflow",
      "parent_primary_url": "https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-2-fuse-page-cache-overflow",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2026-vulnerabilities-other-discovery-validation-in-the-linux-kernel-part-2-fuse-page-cache-overflow-primary-f1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Discovery & Validation in the Linux Kernel (Part 2): FUSE Page Cache Overflow record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Discovery & Validation in the Linux Kernel (Part 2): FUSE Page Cache Overflow resource_label: primary resource_type: article resource_url: https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-2-fuse-page-cache-overflow parent_primary_url: https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-2-fuse-page-cache-overflow source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2026: \"Discovery & Validation in the Linux Kernel (Part 2): FUSE Page Cache Overflow\" by Samuel Page](https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-2-fuse-page-cache-overflow) [article] cves: none android_impact_status: unknown android_impact_reaso",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-2-fuse-page-cache-overflow"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-2-fuse-page-cache-overflow"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerability",
        "Overflow"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "A blog post on a FUSE page cache overflow vulnerability in the Linux kernel.",
      "summary_zh": "一篇关于Linux内核中FUSE页面缓存溢出漏洞的博客文章。",
      "source_markdown": "[2026: \"Discovery & Validation in the Linux Kernel (Part 2): FUSE Page Cache Overflow\" by Samuel Page](https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-2-fuse-page-cache-overflow) [article]",
      "search_text": "discovery & validation in the linux kernel (part 2): fuse page cache overflow discovery & validation in the linux kernel (part 2): fuse page cache overflow samuel page   vulnerabilities other other primary article https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-2-fuse-page-cache-overflow vulnerability overflow  vulnerability a blog post on a fuse page cache overflow vulnerability in the linux kernel. 一篇关于linux内核中fuse页面缓存溢出漏洞的博客文章。 # discovery & validation in the linux kernel (part 2): fuse page cache overflow record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: discovery & validation in the linux kernel (part 2): fuse page cache overflow resource_label: primary resource_type: article resource_url: https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-2-fuse-page-cache-overflow parent_primary_url: https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-2-fuse-page-cache-overflow source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2026: \"discovery & validation in the linux kernel (part 2): fuse page cache overflow\" by samuel page](https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-2-fuse-page-cache-overflow) [article] cves: none android_impact_status: unknown android_impact_reaso unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1f5b79c5d56ae6f2",
      "item_id": "5c4fecf6ec12a71e",
      "slug": "2026-vulnerabilities-other-my-first-cve-cve-2026-23275-io-uring-resize-and-taskrun-race-condition-primary-b6af",
      "year": 2026,
      "title": "My First CVE - CVE-2026-23275 - io uring resize and taskrun race condition",
      "item_title": "My First CVE - CVE-2026-23275 - io uring resize and taskrun race condition",
      "authors": [],
      "cves": [
        "CVE-2026-23275"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://naup.mygo.tw/2026/03/23/My-First-CVE-CVE-2026-23275/",
      "primary_url": "https://naup.mygo.tw/2026/03/23/My-First-CVE-CVE-2026-23275/",
      "parent_primary_url": "https://naup.mygo.tw/2026/03/23/My-First-CVE-CVE-2026-23275/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2026-vulnerabilities-other-my-first-cve-cve-2026-23275-io-uring-resize-and-taskrun-race-condition-primary-b6af.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# My First CVE - CVE-2026-23275 - io uring resize and taskrun race condition record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: My First CVE - CVE-2026-23275 - io uring resize and taskrun race condition resource_label: primary resource_type: article resource_url: https://naup.mygo.tw/2026/03/23/My-First-CVE-CVE-2026-23275/ parent_primary_url: https://naup.mygo.tw/2026/03/23/My-First-CVE-CVE-2026-23275/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2026: \"My First CVE - CVE-2026-23275 - io uring resize and taskrun race condition\"](https://naup.mygo.tw/2026/03/23/My-First-CVE-CVE-2026-23275/) [article] [CVE-2026-23275] cves: CVE-2026-23275 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and ven",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://naup.mygo.tw/2026/03/23/My-First-CVE-CVE-2026-23275/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://naup.mygo.tw/2026/03/23/My-First-CVE-CVE-2026-23275/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerability",
        "Race Condition"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "CVE-2026-23275 addresses a race condition in io uring resize and taskrun.",
      "summary_zh": "CVE-2026-23275涉及io uring调整大小和taskrun中的竞争条件。",
      "source_markdown": "[2026: \"My First CVE - CVE-2026-23275 - io uring resize and taskrun race condition\"](https://naup.mygo.tw/2026/03/23/My-First-CVE-CVE-2026-23275/) [article] [CVE-2026-23275]",
      "search_text": "my first cve - cve-2026-23275 - io uring resize and taskrun race condition my first cve - cve-2026-23275 - io uring resize and taskrun race condition  cve-2026-23275  vulnerabilities other other primary article https://naup.mygo.tw/2026/03/23/my-first-cve-cve-2026-23275/ vulnerability race condition  vulnerability cve-2026-23275 addresses a race condition in io uring resize and taskrun. cve-2026-23275涉及io uring调整大小和taskrun中的竞争条件。 # my first cve - cve-2026-23275 - io uring resize and taskrun race condition record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: my first cve - cve-2026-23275 - io uring resize and taskrun race condition resource_label: primary resource_type: article resource_url: https://naup.mygo.tw/2026/03/23/my-first-cve-cve-2026-23275/ parent_primary_url: https://naup.mygo.tw/2026/03/23/my-first-cve-cve-2026-23275/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2026: \"my first cve - cve-2026-23275 - io uring resize and taskrun race condition\"](https://naup.mygo.tw/2026/03/23/my-first-cve-cve-2026-23275/) [article] [cve-2026-23275] cves: cve-2026-23275 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and ven unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "8fe9e5e9b158dac3",
      "item_id": "903bcdae216f6d7e",
      "slug": "2026-vulnerabilities-other-ttlm-parsing-in-wifi-mac8021-one-byte-look-past-over-the-air-primary-57cea606",
      "year": 2026,
      "title": "TTLM Parsing in WiFi/mac8021 one‑byte look past (over-the-air)",
      "item_title": "TTLM Parsing in WiFi/mac8021 one‑byte look past (over-the-air)",
      "authors": [
        "Ruikai Peng"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://bugs.pwno.io/0032",
      "primary_url": "https://bugs.pwno.io/0032",
      "parent_primary_url": "https://bugs.pwno.io/0032",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2026-vulnerabilities-other-ttlm-parsing-in-wifi-mac8021-one-byte-look-past-over-the-air-primary-57cea606.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TTLM Parsing in WiFi/mac8021 one‑byte look past (over-the-air) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: TTLM Parsing in WiFi/mac8021 one‑byte look past (over-the-air) resource_label: primary resource_type: article resource_url: https://bugs.pwno.io/0032 parent_primary_url: https://bugs.pwno.io/0032 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2026: \"TTLM Parsing in WiFi/mac8021 one‑byte look past (over-the-air)\" by Ruikai Peng](https://bugs.pwno.io/0032) [article] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_c",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://bugs.pwno.io/0032"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://bugs.pwno.io/0032"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "TTLM parsing vulnerability in WiFi/mac8021 could lead to security issues.",
      "summary_zh": "WiFi/mac8021中的TTLM解析漏洞可能导致安全问题。",
      "source_markdown": "[2026: \"TTLM Parsing in WiFi/mac8021 one‑byte look past (over-the-air)\" by Ruikai Peng](https://bugs.pwno.io/0032) [article] [CVE-UNKNOWN]",
      "search_text": "ttlm parsing in wifi/mac8021 one‑byte look past (over-the-air) ttlm parsing in wifi/mac8021 one‑byte look past (over-the-air) ruikai peng cve-unknown  vulnerabilities other other primary article https://bugs.pwno.io/0032 vulnerability  vulnerability ttlm parsing vulnerability in wifi/mac8021 could lead to security issues. wifi/mac8021中的ttlm解析漏洞可能导致安全问题。 # ttlm parsing in wifi/mac8021 one‑byte look past (over-the-air) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: ttlm parsing in wifi/mac8021 one‑byte look past (over-the-air) resource_label: primary resource_type: article resource_url: https://bugs.pwno.io/0032 parent_primary_url: https://bugs.pwno.io/0032 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2026: \"ttlm parsing in wifi/mac8021 one‑byte look past (over-the-air)\" by ruikai peng](https://bugs.pwno.io/0032) [article] [cve-unknown] cves: cve-unknown android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_c unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "763322ce645c806f",
      "item_id": "3c832edef77ae73a",
      "slug": "2025-vulnerabilities-other-glitching-google-s-tv-streamer-from-adb-to-root-primary-aa4d2f6b",
      "year": 2025,
      "title": "Glitching Google's TV Streamer From Adb To Root",
      "item_title": "Glitching Google's TV Streamer From Adb To Root",
      "authors": [
        "Niek Timmers"
      ],
      "cves": [],
      "tags": [
        "NO-CVE"
      ],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://hardwear.io/netherlands-2025/presentation/Glitching-Googles-TV-Streamer-from-adb-to-root.pdf",
      "primary_url": "https://hardwear.io/netherlands-2025/presentation/Glitching-Googles-TV-Streamer-from-adb-to-root.pdf",
      "parent_primary_url": "https://hardwear.io/netherlands-2025/presentation/Glitching-Googles-TV-Streamer-from-adb-to-root.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-glitching-google-s-tv-streamer-from-adb-to-root-primary-aa4d2f6b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Glitching Google's TV Streamer From Adb To Root record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Glitching Google's TV Streamer From Adb To Root resource_label: primary resource_type: slides resource_url: https://hardwear.io/netherlands-2025/presentation/Glitching-Googles-TV-Streamer-from-adb-to-root.pdf parent_primary_url: https://hardwear.io/netherlands-2025/presentation/Glitching-Googles-TV-Streamer-from-adb-to-root.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Glitching Google's TV Streamer From Adb To Root\" by Niek Timmers](https://hardwear.io/netherlands-2025/presentation/Glitching-Googles-TV-Streamer-from-adb-to-root.pdf) [slides] [[video](https://www.youtube.com/watch?v=-w5mpXTnNJA)] [NO-CVE] cves: none android_impact_status: unknown android_impact_reason: Linux ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://hardwear.io/netherlands-2025/presentation/Glitching-Googles-TV-Streamer-from-adb-to-root.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=-w5mpXTnNJA"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://hardwear.io/netherlands-2025/presentation/Glitching-Googles-TV-Streamer-from-adb-to-root.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=-w5mpXTnNJA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerability",
        "ADB"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "A presentation on exploiting Google's TV streamer vulnerabilities from ADB to root.",
      "summary_zh": "关于从ADB到root利用Google TV流媒体漏洞的演示。",
      "source_markdown": "[2025: \"Glitching Google's TV Streamer From Adb To Root\" by Niek Timmers](https://hardwear.io/netherlands-2025/presentation/Glitching-Googles-TV-Streamer-from-adb-to-root.pdf) [slides] [[video](https://www.youtube.com/watch?v=-w5mpXTnNJA)] [NO-CVE]",
      "search_text": "glitching google's tv streamer from adb to root glitching google's tv streamer from adb to root niek timmers  no-cve vulnerabilities other other primary slides https://hardwear.io/netherlands-2025/presentation/glitching-googles-tv-streamer-from-adb-to-root.pdf vulnerability adb  vulnerability a presentation on exploiting google's tv streamer vulnerabilities from adb to root. 关于从adb到root利用google tv流媒体漏洞的演示。 # glitching google's tv streamer from adb to root record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: glitching google's tv streamer from adb to root resource_label: primary resource_type: slides resource_url: https://hardwear.io/netherlands-2025/presentation/glitching-googles-tv-streamer-from-adb-to-root.pdf parent_primary_url: https://hardwear.io/netherlands-2025/presentation/glitching-googles-tv-streamer-from-adb-to-root.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"glitching google's tv streamer from adb to root\" by niek timmers](https://hardwear.io/netherlands-2025/presentation/glitching-googles-tv-streamer-from-adb-to-root.pdf) [slides] [[video](https://www.youtube.com/watch?v=-w5mpxtnnja)] [no-cve] cves: none android_impact_status: unknown android_impact_reason: linux  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ce9a049720c3dc1e",
      "item_id": "3c832edef77ae73a",
      "slug": "2025-vulnerabilities-other-glitching-google-s-tv-streamer-from-adb-to-root-video-2f2e94c6",
      "year": 2025,
      "title": "Glitching Google's TV Streamer From Adb To Root · video",
      "item_title": "Glitching Google's TV Streamer From Adb To Root",
      "authors": [
        "Niek Timmers"
      ],
      "cves": [],
      "tags": [
        "NO-CVE"
      ],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=-w5mpXTnNJA",
      "primary_url": "https://www.youtube.com/watch?v=-w5mpXTnNJA",
      "parent_primary_url": "https://hardwear.io/netherlands-2025/presentation/Glitching-Googles-TV-Streamer-from-adb-to-root.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-glitching-google-s-tv-streamer-from-adb-to-root-video-2f2e94c6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Glitching Google's TV Streamer From Adb To Root · video record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Glitching Google's TV Streamer From Adb To Root resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=-w5mpXTnNJA parent_primary_url: https://hardwear.io/netherlands-2025/presentation/Glitching-Googles-TV-Streamer-from-adb-to-root.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Glitching Google's TV Streamer From Adb To Root\" by Niek Timmers](https://hardwear.io/netherlands-2025/presentation/Glitching-Googles-TV-Streamer-from-adb-to-root.pdf) [slides] [[video](https://www.youtube.com/watch?v=-w5mpXTnNJA)] [NO-CVE] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android producti",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://hardwear.io/netherlands-2025/presentation/Glitching-Googles-TV-Streamer-from-adb-to-root.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=-w5mpXTnNJA"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://hardwear.io/netherlands-2025/presentation/Glitching-Googles-TV-Streamer-from-adb-to-root.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=-w5mpXTnNJA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerability",
        "ADB"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "A video presentation on exploiting Google's TV streamer vulnerabilities from ADB to root.",
      "summary_zh": "关于从ADB到root利用Google TV流媒体漏洞的视频演示。",
      "source_markdown": "[2025: \"Glitching Google's TV Streamer From Adb To Root\" by Niek Timmers](https://hardwear.io/netherlands-2025/presentation/Glitching-Googles-TV-Streamer-from-adb-to-root.pdf) [slides] [[video](https://www.youtube.com/watch?v=-w5mpXTnNJA)] [NO-CVE]",
      "search_text": "glitching google's tv streamer from adb to root · video glitching google's tv streamer from adb to root niek timmers  no-cve vulnerabilities other other video video https://www.youtube.com/watch?v=-w5mpxtnnja vulnerability adb  vulnerability a video presentation on exploiting google's tv streamer vulnerabilities from adb to root. 关于从adb到root利用google tv流媒体漏洞的视频演示。 # glitching google's tv streamer from adb to root · video record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: glitching google's tv streamer from adb to root resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=-w5mpxtnnja parent_primary_url: https://hardwear.io/netherlands-2025/presentation/glitching-googles-tv-streamer-from-adb-to-root.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"glitching google's tv streamer from adb to root\" by niek timmers](https://hardwear.io/netherlands-2025/presentation/glitching-googles-tv-streamer-from-adb-to-root.pdf) [slides] [[video](https://www.youtube.com/watch?v=-w5mpxtnnja)] [no-cve] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android producti unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "48b0409614b04c52",
      "item_id": "b41510d6746ad97c",
      "slug": "2025-vulnerabilities-other-mediatek-more-like-media-rekt-amirite-primary-dbe856e7",
      "year": 2025,
      "title": "mediatek? more like media-rekt, amirite.",
      "item_title": "mediatek? more like media-rekt, amirite.",
      "authors": [
        "hypr"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.coffinsec.com/0days/2025/12/15/more-like-mediarekt-amirite.html",
      "primary_url": "https://blog.coffinsec.com/0days/2025/12/15/more-like-mediarekt-amirite.html",
      "parent_primary_url": "https://blog.coffinsec.com/0days/2025/12/15/more-like-mediarekt-amirite.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-mediatek-more-like-media-rekt-amirite-primary-dbe856e7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# mediatek? more like media-rekt, amirite. record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: mediatek? more like media-rekt, amirite. resource_label: primary resource_type: article resource_url: https://blog.coffinsec.com/0days/2025/12/15/more-like-mediarekt-amirite.html parent_primary_url: https://blog.coffinsec.com/0days/2025/12/15/more-like-mediarekt-amirite.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"mediatek? more like media-rekt, amirite.\" by hypr](https://blog.coffinsec.com/0days/2025/12/15/more-like-mediarekt-amirite.html) [article] cves: none android_impact_status: possible android_impact_reason: mentions mobile SoC/GPU components used by Android devices ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.coffinsec.com/0days/2025/12/15/more-like-mediarekt-amirite.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.coffinsec.com/0days/2025/12/15/more-like-mediarekt-amirite.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions mobile SoC/GPU components used by Android devices",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "A blog post discussing vulnerabilities related to MediaTek devices.",
      "summary_zh": "一篇讨论与MediaTek设备相关漏洞的博客文章。",
      "source_markdown": "[2025: \"mediatek? more like media-rekt, amirite.\" by hypr](https://blog.coffinsec.com/0days/2025/12/15/more-like-mediarekt-amirite.html) [article]",
      "search_text": "mediatek? more like media-rekt, amirite. mediatek? more like media-rekt, amirite. hypr   vulnerabilities other other primary article https://blog.coffinsec.com/0days/2025/12/15/more-like-mediarekt-amirite.html vulnerability  vulnerability a blog post discussing vulnerabilities related to mediatek devices. 一篇讨论与mediatek设备相关漏洞的博客文章。 # mediatek? more like media-rekt, amirite. record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: mediatek? more like media-rekt, amirite. resource_label: primary resource_type: article resource_url: https://blog.coffinsec.com/0days/2025/12/15/more-like-mediarekt-amirite.html parent_primary_url: https://blog.coffinsec.com/0days/2025/12/15/more-like-mediarekt-amirite.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"mediatek? more like media-rekt, amirite.\" by hypr](https://blog.coffinsec.com/0days/2025/12/15/more-like-mediarekt-amirite.html) [article] cves: none android_impact_status: possible android_impact_reason: mentions mobile soc/gpu components used by android devices ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has possible mentions mobile soc/gpu components used by android devices no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "eae0739c33b410bf",
      "item_id": "1845bf540e733aa1",
      "slug": "2025-vulnerabilities-other-dissecting-a-1-day-vulnerability-in-linux-s-xfrm-subsystem-primary-1077cdfe",
      "year": 2025,
      "title": "Dissecting a 1-Day Vulnerability in Linux's XFRM Subsystem",
      "item_title": "Dissecting a 1-Day Vulnerability in Linux's XFRM Subsystem",
      "authors": [
        "Shreyas Penkar"
      ],
      "cves": [
        "CVE-2025-39965"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://streypaws.github.io/posts/Dissecting-a-1-Day-Vulnerability-in-Linux-XFRM-Subsystem/",
      "primary_url": "https://streypaws.github.io/posts/Dissecting-a-1-Day-Vulnerability-in-Linux-XFRM-Subsystem/",
      "parent_primary_url": "https://streypaws.github.io/posts/Dissecting-a-1-Day-Vulnerability-in-Linux-XFRM-Subsystem/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-dissecting-a-1-day-vulnerability-in-linux-s-xfrm-subsystem-primary-1077cdfe.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Dissecting a 1-Day Vulnerability in Linux's XFRM Subsystem record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Dissecting a 1-Day Vulnerability in Linux's XFRM Subsystem resource_label: primary resource_type: article resource_url: https://streypaws.github.io/posts/Dissecting-a-1-Day-Vulnerability-in-Linux-XFRM-Subsystem/ parent_primary_url: https://streypaws.github.io/posts/Dissecting-a-1-Day-Vulnerability-in-Linux-XFRM-Subsystem/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Dissecting a 1-Day Vulnerability in Linux's XFRM Subsystem\" by Shreyas Penkar](https://streypaws.github.io/posts/Dissecting-a-1-Day-Vulnerability-in-Linux-XFRM-Subsystem/) [article] [CVE-2025-39965] [[trigger](https://github.com/Shreyas-Penkar/CVE-2025-39965)] cves: CVE-2025-39965 android_impact_status: un",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://streypaws.github.io/posts/Dissecting-a-1-Day-Vulnerability-in-Linux-XFRM-Subsystem/"
        },
        {
          "label": "trigger",
          "type": "code",
          "url": "https://github.com/Shreyas-Penkar/CVE-2025-39965"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://streypaws.github.io/posts/Dissecting-a-1-Day-Vulnerability-in-Linux-XFRM-Subsystem/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "trigger",
            "type": "code",
            "url": "https://github.com/Shreyas-Penkar/CVE-2025-39965"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://streypaws.github.io/posts/Dissecting-a-1-Day-Vulnerability-in-Linux-XFRM-Subsystem/",
        "https://github.com/Shreyas-Penkar/CVE-2025-39965"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerability"
      ],
      "affected_area": "XFRM",
      "exploit_stage": "Vulnerability",
      "summary_en": "CVE-2025-39965 is a one-day vulnerability in Linux's XFRM subsystem.",
      "summary_zh": "CVE-2025-39965是Linux的XFRM子系统中的一天漏洞。",
      "source_markdown": "[2025: \"Dissecting a 1-Day Vulnerability in Linux's XFRM Subsystem\" by Shreyas Penkar](https://streypaws.github.io/posts/Dissecting-a-1-Day-Vulnerability-in-Linux-XFRM-Subsystem/) [article] [CVE-2025-39965] [[trigger](https://github.com/Shreyas-Penkar/CVE-2025-39965)]",
      "search_text": "dissecting a 1-day vulnerability in linux's xfrm subsystem dissecting a 1-day vulnerability in linux's xfrm subsystem shreyas penkar cve-2025-39965  vulnerabilities other other primary article https://streypaws.github.io/posts/dissecting-a-1-day-vulnerability-in-linux-xfrm-subsystem/ vulnerability xfrm vulnerability cve-2025-39965 is a one-day vulnerability in linux's xfrm subsystem. cve-2025-39965是linux的xfrm子系统中的一天漏洞。 # dissecting a 1-day vulnerability in linux's xfrm subsystem record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: dissecting a 1-day vulnerability in linux's xfrm subsystem resource_label: primary resource_type: article resource_url: https://streypaws.github.io/posts/dissecting-a-1-day-vulnerability-in-linux-xfrm-subsystem/ parent_primary_url: https://streypaws.github.io/posts/dissecting-a-1-day-vulnerability-in-linux-xfrm-subsystem/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"dissecting a 1-day vulnerability in linux's xfrm subsystem\" by shreyas penkar](https://streypaws.github.io/posts/dissecting-a-1-day-vulnerability-in-linux-xfrm-subsystem/) [article] [cve-2025-39965] [[trigger](https://github.com/shreyas-penkar/cve-2025-39965)] cves: cve-2025-39965 android_impact_status: un unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "342a2d6b74af0adc",
      "item_id": "1845bf540e733aa1",
      "slug": "2025-vulnerabilities-other-dissecting-a-1-day-vulnerability-in-linux-s-xfrm-subsystem-trigger-0d2e2bfb",
      "year": 2025,
      "title": "Dissecting a 1-Day Vulnerability in Linux's XFRM Subsystem · trigger",
      "item_title": "Dissecting a 1-Day Vulnerability in Linux's XFRM Subsystem",
      "authors": [
        "Shreyas Penkar"
      ],
      "cves": [
        "CVE-2025-39965"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "trigger",
      "resource_type": "code",
      "resource_url": "https://github.com/Shreyas-Penkar/CVE-2025-39965",
      "primary_url": "https://github.com/Shreyas-Penkar/CVE-2025-39965",
      "parent_primary_url": "https://streypaws.github.io/posts/Dissecting-a-1-Day-Vulnerability-in-Linux-XFRM-Subsystem/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-dissecting-a-1-day-vulnerability-in-linux-s-xfrm-subsystem-trigger-0d2e2bfb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Dissecting a 1-Day Vulnerability in Linux's XFRM Subsystem · trigger record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Dissecting a 1-Day Vulnerability in Linux's XFRM Subsystem resource_label: trigger resource_type: code resource_url: https://github.com/Shreyas-Penkar/CVE-2025-39965 parent_primary_url: https://streypaws.github.io/posts/Dissecting-a-1-Day-Vulnerability-in-Linux-XFRM-Subsystem/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Dissecting a 1-Day Vulnerability in Linux's XFRM Subsystem\" by Shreyas Penkar](https://streypaws.github.io/posts/Dissecting-a-1-Day-Vulnerability-in-Linux-XFRM-Subsystem/) [article] [CVE-2025-39965] [[trigger](https://github.com/Shreyas-Penkar/CVE-2025-39965)] cves: CVE-2025-39965 android_impact_status: unknown android_impact_reason: Linux k",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://streypaws.github.io/posts/Dissecting-a-1-Day-Vulnerability-in-Linux-XFRM-Subsystem/"
        },
        {
          "label": "trigger",
          "type": "code",
          "url": "https://github.com/Shreyas-Penkar/CVE-2025-39965"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://streypaws.github.io/posts/Dissecting-a-1-Day-Vulnerability-in-Linux-XFRM-Subsystem/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "trigger",
            "type": "code",
            "url": "https://github.com/Shreyas-Penkar/CVE-2025-39965"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://streypaws.github.io/posts/Dissecting-a-1-Day-Vulnerability-in-Linux-XFRM-Subsystem/",
        "https://github.com/Shreyas-Penkar/CVE-2025-39965"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerability"
      ],
      "affected_area": "XFRM",
      "exploit_stage": "Vulnerability",
      "summary_en": "A trigger code related to CVE-2025-39965 in Linux's XFRM subsystem.",
      "summary_zh": "与Linux的XFRM子系统中的CVE-2025-39965相关的触发代码。",
      "source_markdown": "[2025: \"Dissecting a 1-Day Vulnerability in Linux's XFRM Subsystem\" by Shreyas Penkar](https://streypaws.github.io/posts/Dissecting-a-1-Day-Vulnerability-in-Linux-XFRM-Subsystem/) [article] [CVE-2025-39965] [[trigger](https://github.com/Shreyas-Penkar/CVE-2025-39965)]",
      "search_text": "dissecting a 1-day vulnerability in linux's xfrm subsystem · trigger dissecting a 1-day vulnerability in linux's xfrm subsystem shreyas penkar cve-2025-39965  vulnerabilities other other trigger code https://github.com/shreyas-penkar/cve-2025-39965 vulnerability xfrm vulnerability a trigger code related to cve-2025-39965 in linux's xfrm subsystem. 与linux的xfrm子系统中的cve-2025-39965相关的触发代码。 # dissecting a 1-day vulnerability in linux's xfrm subsystem · trigger record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: dissecting a 1-day vulnerability in linux's xfrm subsystem resource_label: trigger resource_type: code resource_url: https://github.com/shreyas-penkar/cve-2025-39965 parent_primary_url: https://streypaws.github.io/posts/dissecting-a-1-day-vulnerability-in-linux-xfrm-subsystem/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"dissecting a 1-day vulnerability in linux's xfrm subsystem\" by shreyas penkar](https://streypaws.github.io/posts/dissecting-a-1-day-vulnerability-in-linux-xfrm-subsystem/) [article] [cve-2025-39965] [[trigger](https://github.com/shreyas-penkar/cve-2025-39965)] cves: cve-2025-39965 android_impact_status: unknown android_impact_reason: linux k unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "d9f97cba6d85f041",
      "item_id": "99565929c2aed275",
      "slug": "2025-vulnerabilities-other-a-quick-note-on-cve-2025-38617-primary-8c702c5f",
      "year": 2025,
      "title": "A Quick Note on CVE-2025-38617",
      "item_title": "A Quick Note on CVE-2025-38617",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2025-38617"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/08/27/a-quick-note-on-CVE-2025-38617.html",
      "primary_url": "https://u1f383.github.io/linux/2025/08/27/a-quick-note-on-CVE-2025-38617.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/08/27/a-quick-note-on-CVE-2025-38617.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-a-quick-note-on-cve-2025-38617-primary-8c702c5f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Quick Note on CVE-2025-38617 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: A Quick Note on CVE-2025-38617 resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/08/27/a-quick-note-on-CVE-2025-38617.html parent_primary_url: https://u1f383.github.io/linux/2025/08/27/a-quick-note-on-CVE-2025-38617.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"A Quick Note on CVE-2025-38617\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/08/27/a-quick-note-on-CVE-2025-38617.html) [article] [CVE-2025-38617] cves: CVE-2025-38617 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Pr",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/08/27/a-quick-note-on-CVE-2025-38617.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/08/27/a-quick-note-on-CVE-2025-38617.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/08/27/a-quick-note-on-CVE-2025-38617.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "CVE-2025-38617 is a documented vulnerability in Linux.",
      "summary_zh": "CVE-2025-38617是Linux中的一个已记录的漏洞。",
      "source_markdown": "[2025: \"A Quick Note on CVE-2025-38617\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/08/27/a-quick-note-on-CVE-2025-38617.html) [article] [CVE-2025-38617]",
      "search_text": "a quick note on cve-2025-38617 a quick note on cve-2025-38617 pumpkin chang cve-2025-38617  vulnerabilities other other primary article https://u1f383.github.io/linux/2025/08/27/a-quick-note-on-cve-2025-38617.html vulnerability  vulnerability cve-2025-38617 is a documented vulnerability in linux. cve-2025-38617是linux中的一个已记录的漏洞。 # a quick note on cve-2025-38617 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: a quick note on cve-2025-38617 resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/08/27/a-quick-note-on-cve-2025-38617.html parent_primary_url: https://u1f383.github.io/linux/2025/08/27/a-quick-note-on-cve-2025-38617.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"a quick note on cve-2025-38617\" by pumpkin chang](https://u1f383.github.io/linux/2025/08/27/a-quick-note-on-cve-2025-38617.html) [article] [cve-2025-38617] cves: cve-2025-38617 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: pr unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "92bdb28637dda437",
      "item_id": "e135da0e0305652c",
      "slug": "2025-vulnerabilities-other-fast-faulty-a-use-after-free-in-kgsl-fault-handling-primary-cc5277df",
      "year": 2025,
      "title": "Fast & Faulty - A Use After Free in KGSL Fault Handling",
      "item_title": "Fast & Faulty - A Use After Free in KGSL Fault Handling",
      "authors": [
        "Shreyas Penkar"
      ],
      "cves": [
        "CVE-2024-38399"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://streypaws.github.io/posts/Fast-and-Faulty-A-Use-After-Free-in-KGSL-Fault-Handling/",
      "primary_url": "https://streypaws.github.io/posts/Fast-and-Faulty-A-Use-After-Free-in-KGSL-Fault-Handling/",
      "parent_primary_url": "https://streypaws.github.io/posts/Fast-and-Faulty-A-Use-After-Free-in-KGSL-Fault-Handling/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-fast-faulty-a-use-after-free-in-kgsl-fault-handling-primary-cc5277df.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fast & Faulty - A Use After Free in KGSL Fault Handling record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Fast & Faulty - A Use After Free in KGSL Fault Handling resource_label: primary resource_type: article resource_url: https://streypaws.github.io/posts/Fast-and-Faulty-A-Use-After-Free-in-KGSL-Fault-Handling/ parent_primary_url: https://streypaws.github.io/posts/Fast-and-Faulty-A-Use-After-Free-in-KGSL-Fault-Handling/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Fast & Faulty - A Use After Free in KGSL Fault Handling\" by Shreyas Penkar](https://streypaws.github.io/posts/Fast-and-Faulty-A-Use-After-Free-in-KGSL-Fault-Handling/) [article] [CVE-2024-38399] cves: CVE-2024-38399 android_impact_status: possible android_impact_reason: mentions KGSL/Adreno graphics driver ios_imp",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://streypaws.github.io/posts/Fast-and-Faulty-A-Use-After-Free-in-KGSL-Fault-Handling/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://streypaws.github.io/posts/Fast-and-Faulty-A-Use-After-Free-in-KGSL-Fault-Handling/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://streypaws.github.io/posts/Fast-and-Faulty-A-Use-After-Free-in-KGSL-Fault-Handling/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions KGSL/Adreno graphics driver",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerability",
        "Use-After-Free"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "CVE-2024-38399 highlights a use-after-free vulnerability in KGSL fault handling.",
      "summary_zh": "CVE-2024-38399突出了KGSL故障处理中的使用后释放漏洞。",
      "source_markdown": "[2025: \"Fast & Faulty - A Use After Free in KGSL Fault Handling\" by Shreyas Penkar](https://streypaws.github.io/posts/Fast-and-Faulty-A-Use-After-Free-in-KGSL-Fault-Handling/) [article] [CVE-2024-38399]",
      "search_text": "fast & faulty - a use after free in kgsl fault handling fast & faulty - a use after free in kgsl fault handling shreyas penkar cve-2024-38399  vulnerabilities other other primary article https://streypaws.github.io/posts/fast-and-faulty-a-use-after-free-in-kgsl-fault-handling/ vulnerability use-after-free  vulnerability cve-2024-38399 highlights a use-after-free vulnerability in kgsl fault handling. cve-2024-38399突出了kgsl故障处理中的使用后释放漏洞。 # fast & faulty - a use after free in kgsl fault handling record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: fast & faulty - a use after free in kgsl fault handling resource_label: primary resource_type: article resource_url: https://streypaws.github.io/posts/fast-and-faulty-a-use-after-free-in-kgsl-fault-handling/ parent_primary_url: https://streypaws.github.io/posts/fast-and-faulty-a-use-after-free-in-kgsl-fault-handling/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"fast & faulty - a use after free in kgsl fault handling\" by shreyas penkar](https://streypaws.github.io/posts/fast-and-faulty-a-use-after-free-in-kgsl-fault-handling/) [article] [cve-2024-38399] cves: cve-2024-38399 android_impact_status: possible android_impact_reason: mentions kgsl/adreno graphics driver ios_imp possible mentions kgsl/adreno graphics driver no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "d8fbea63cc56cc32",
      "item_id": "e75749cddfa3bdb2",
      "slug": "2025-vulnerabilities-other-race-against-time-in-the-kernel-s-clockwork-primary-1eb1b064",
      "year": 2025,
      "title": "Race Against Time in the Kernel’s Clockwork",
      "item_title": "Race Against Time in the Kernel’s Clockwork",
      "authors": [
        "Shreyas Penkar"
      ],
      "cves": [
        "CVE-2025-38352"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://streypaws.github.io/posts/Race-Against-Time-in-the-Kernel-Clockwork/",
      "primary_url": "https://streypaws.github.io/posts/Race-Against-Time-in-the-Kernel-Clockwork/",
      "parent_primary_url": "https://streypaws.github.io/posts/Race-Against-Time-in-the-Kernel-Clockwork/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-race-against-time-in-the-kernel-s-clockwork-primary-1eb1b064.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Race Against Time in the Kernel’s Clockwork record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Race Against Time in the Kernel’s Clockwork resource_label: primary resource_type: article resource_url: https://streypaws.github.io/posts/Race-Against-Time-in-the-Kernel-Clockwork/ parent_primary_url: https://streypaws.github.io/posts/Race-Against-Time-in-the-Kernel-Clockwork/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Race Against Time in the Kernel’s Clockwork\" by Shreyas Penkar](https://streypaws.github.io/posts/Race-Against-Time-in-the-Kernel-Clockwork/) [article] [CVE-2025-38352] cves: CVE-2025-38352 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_im",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://streypaws.github.io/posts/Race-Against-Time-in-the-Kernel-Clockwork/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://streypaws.github.io/posts/Race-Against-Time-in-the-Kernel-Clockwork/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://streypaws.github.io/posts/Race-Against-Time-in-the-Kernel-Clockwork/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "race_condition",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses a race condition vulnerability in the Linux kernel's clock subsystem.",
      "summary_zh": "本文讨论了Linux内核时钟子系统中的竞争条件漏洞。",
      "source_markdown": "[2025: \"Race Against Time in the Kernel’s Clockwork\" by Shreyas Penkar](https://streypaws.github.io/posts/Race-Against-Time-in-the-Kernel-Clockwork/) [article] [CVE-2025-38352]",
      "search_text": "race against time in the kernel’s clockwork race against time in the kernel’s clockwork shreyas penkar cve-2025-38352  vulnerabilities other other primary article https://streypaws.github.io/posts/race-against-time-in-the-kernel-clockwork/ race_condition kernel  vulnerability this article discusses a race condition vulnerability in the linux kernel's clock subsystem. 本文讨论了linux内核时钟子系统中的竞争条件漏洞。 # race against time in the kernel’s clockwork record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: race against time in the kernel’s clockwork resource_label: primary resource_type: article resource_url: https://streypaws.github.io/posts/race-against-time-in-the-kernel-clockwork/ parent_primary_url: https://streypaws.github.io/posts/race-against-time-in-the-kernel-clockwork/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"race against time in the kernel’s clockwork\" by shreyas penkar](https://streypaws.github.io/posts/race-against-time-in-the-kernel-clockwork/) [article] [cve-2025-38352] cves: cve-2025-38352 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_im unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "7c62b1c48a94c6b2",
      "item_id": "9d2300a06aeb5a9d",
      "slug": "2025-vulnerabilities-other-analysis-of-cve-2025-37756-an-uaf-vulnerability-in-linux-ktls-primary-f3b57eb8",
      "year": 2025,
      "title": "Analysis of CVE-2025-37756, an UAF Vulnerability in Linux KTLS",
      "item_title": "Analysis of CVE-2025-37756, an UAF Vulnerability in Linux KTLS",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2025-37756"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/09/03/analysis-of-CVE-2025-37756-an-uaf-vulnerability-in-linux-ktls.html",
      "primary_url": "https://u1f383.github.io/linux/2025/09/03/analysis-of-CVE-2025-37756-an-uaf-vulnerability-in-linux-ktls.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/09/03/analysis-of-CVE-2025-37756-an-uaf-vulnerability-in-linux-ktls.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-analysis-of-cve-2025-37756-an-uaf-vulnerability-in-linux-ktls-primary-f3b57eb8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Analysis of CVE-2025-37756, an UAF Vulnerability in Linux KTLS record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Analysis of CVE-2025-37756, an UAF Vulnerability in Linux KTLS resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/09/03/analysis-of-CVE-2025-37756-an-uaf-vulnerability-in-linux-ktls.html parent_primary_url: https://u1f383.github.io/linux/2025/09/03/analysis-of-CVE-2025-37756-an-uaf-vulnerability-in-linux-ktls.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Analysis of CVE-2025-37756, an UAF Vulnerability in Linux KTLS\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/09/03/analysis-of-CVE-2025-37756-an-uaf-vulnerability-in-linux-ktls.html) [article] [CVE-2025-37756] cves: CVE-2025-37756 android_impact_status: un",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/09/03/analysis-of-CVE-2025-37756-an-uaf-vulnerability-in-linux-ktls.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/09/03/analysis-of-CVE-2025-37756-an-uaf-vulnerability-in-linux-ktls.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/09/03/analysis-of-CVE-2025-37756-an-uaf-vulnerability-in-linux-ktls.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "use_after_free",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An analysis of a use-after-free vulnerability in Linux KTLS is presented in this article.",
      "summary_zh": "本文分析了Linux KTLS中的使用后释放漏洞。",
      "source_markdown": "[2025: \"Analysis of CVE-2025-37756, an UAF Vulnerability in Linux KTLS\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/09/03/analysis-of-CVE-2025-37756-an-uaf-vulnerability-in-linux-ktls.html) [article] [CVE-2025-37756]",
      "search_text": "analysis of cve-2025-37756, an uaf vulnerability in linux ktls analysis of cve-2025-37756, an uaf vulnerability in linux ktls pumpkin chang cve-2025-37756  vulnerabilities other other primary article https://u1f383.github.io/linux/2025/09/03/analysis-of-cve-2025-37756-an-uaf-vulnerability-in-linux-ktls.html use_after_free kernel  vulnerability an analysis of a use-after-free vulnerability in linux ktls is presented in this article. 本文分析了linux ktls中的使用后释放漏洞。 # analysis of cve-2025-37756, an uaf vulnerability in linux ktls record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: analysis of cve-2025-37756, an uaf vulnerability in linux ktls resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/09/03/analysis-of-cve-2025-37756-an-uaf-vulnerability-in-linux-ktls.html parent_primary_url: https://u1f383.github.io/linux/2025/09/03/analysis-of-cve-2025-37756-an-uaf-vulnerability-in-linux-ktls.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"analysis of cve-2025-37756, an uaf vulnerability in linux ktls\" by pumpkin chang](https://u1f383.github.io/linux/2025/09/03/analysis-of-cve-2025-37756-an-uaf-vulnerability-in-linux-ktls.html) [article] [cve-2025-37756] cves: cve-2025-37756 android_impact_status: un unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "bcc0fba2ee5200a0",
      "item_id": "487bd31eb01e1815",
      "slug": "2025-vulnerabilities-other-zdi-25-310-remote-null-deref-in-linux-ksmbd-primary-845bdeac",
      "year": 2025,
      "title": "ZDI-25-310: Remote NULL Deref in Linux KSMBD",
      "item_title": "ZDI-25-310: Remote NULL Deref in Linux KSMBD",
      "authors": [
        "Slava Moskvin"
      ],
      "cves": [
        "CVE-2025-22037"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://slavamoskvin.com/zdi-25-310-remote-null-deref-in-linux-ksmbd/",
      "primary_url": "https://slavamoskvin.com/zdi-25-310-remote-null-deref-in-linux-ksmbd/",
      "parent_primary_url": "https://slavamoskvin.com/zdi-25-310-remote-null-deref-in-linux-ksmbd/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-zdi-25-310-remote-null-deref-in-linux-ksmbd-primary-845bdeac.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ZDI-25-310: Remote NULL Deref in Linux KSMBD record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: ZDI-25-310: Remote NULL Deref in Linux KSMBD resource_label: primary resource_type: article resource_url: https://slavamoskvin.com/zdi-25-310-remote-null-deref-in-linux-ksmbd/ parent_primary_url: https://slavamoskvin.com/zdi-25-310-remote-null-deref-in-linux-ksmbd/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"ZDI-25-310: Remote NULL Deref in Linux KSMBD\" by Slava Moskvin](https://slavamoskvin.com/zdi-25-310-remote-null-deref-in-linux-ksmbd/) [article] [CVE-2025-22037] cves: CVE-2025-22037 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://slavamoskvin.com/zdi-25-310-remote-null-deref-in-linux-ksmbd/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://slavamoskvin.com/zdi-25-310-remote-null-deref-in-linux-ksmbd/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "null_deref",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article covers a remote NULL dereference vulnerability in Linux KSMBD.",
      "summary_zh": "本文介绍了Linux KSMBD中的远程NULL解引用漏洞。",
      "source_markdown": "[2025: \"ZDI-25-310: Remote NULL Deref in Linux KSMBD\" by Slava Moskvin](https://slavamoskvin.com/zdi-25-310-remote-null-deref-in-linux-ksmbd/) [article] [CVE-2025-22037]",
      "search_text": "zdi-25-310: remote null deref in linux ksmbd zdi-25-310: remote null deref in linux ksmbd slava moskvin cve-2025-22037  vulnerabilities other other primary article https://slavamoskvin.com/zdi-25-310-remote-null-deref-in-linux-ksmbd/ null_deref kernel  vulnerability this article covers a remote null dereference vulnerability in linux ksmbd. 本文介绍了linux ksmbd中的远程null解引用漏洞。 # zdi-25-310: remote null deref in linux ksmbd record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: zdi-25-310: remote null deref in linux ksmbd resource_label: primary resource_type: article resource_url: https://slavamoskvin.com/zdi-25-310-remote-null-deref-in-linux-ksmbd/ parent_primary_url: https://slavamoskvin.com/zdi-25-310-remote-null-deref-in-linux-ksmbd/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"zdi-25-310: remote null deref in linux ksmbd\" by slava moskvin](https://slavamoskvin.com/zdi-25-310-remote-null-deref-in-linux-ksmbd/) [article] [cve-2025-22037] cves: cve-2025-22037 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "49a1971f47a520d6",
      "item_id": "f80f4e2f6f6094a8",
      "slug": "2025-vulnerabilities-other-cve-2024-36904-use-after-free-vulnerability-in-the-tcp-subsystem-of-the-linux-kerne",
      "year": 2025,
      "title": "CVE-2024-36904 - Use-after-free vulnerability in the TCP subsystem of the Linux kernel",
      "item_title": "CVE-2024-36904 - Use-after-free vulnerability in the TCP subsystem of the Linux kernel",
      "authors": [],
      "cves": [
        "CVE-2024-36904"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/alleleintel/research/tree/master/CVE-2024-36904/",
      "primary_url": "https://github.com/alleleintel/research/tree/master/CVE-2024-36904/",
      "parent_primary_url": "https://github.com/alleleintel/research/tree/master/CVE-2024-36904/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-cve-2024-36904-use-after-free-vulnerability-in-the-tcp-subsystem-of-the-linux-kerne.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2024-36904 - Use-after-free vulnerability in the TCP subsystem of the Linux kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: CVE-2024-36904 - Use-after-free vulnerability in the TCP subsystem of the Linux kernel resource_label: primary resource_type: article resource_url: https://github.com/alleleintel/research/tree/master/CVE-2024-36904/ parent_primary_url: https://github.com/alleleintel/research/tree/master/CVE-2024-36904/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"CVE-2024-36904 - Use-after-free vulnerability in the TCP subsystem of the Linux kernel\"](https://github.com/alleleintel/research/tree/master/CVE-2024-36904/) [article] [CVE-2024-36904] cves: CVE-2024-36904 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entr",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/alleleintel/research/tree/master/CVE-2024-36904/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/alleleintel/research/tree/master/CVE-2024-36904/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/alleleintel/research/tree/master/CVE-2024-36904/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "use_after_free",
        "tcp"
      ],
      "affected_area": "TCP subsystem",
      "exploit_stage": "vulnerability",
      "summary_en": "The article discusses a use-after-free vulnerability in the TCP subsystem of the Linux kernel.",
      "summary_zh": "本文讨论了Linux内核TCP子系统中的使用后释放漏洞。",
      "source_markdown": "[2025: \"CVE-2024-36904 - Use-after-free vulnerability in the TCP subsystem of the Linux kernel\"](https://github.com/alleleintel/research/tree/master/CVE-2024-36904/) [article] [CVE-2024-36904]",
      "search_text": "cve-2024-36904 - use-after-free vulnerability in the tcp subsystem of the linux kernel cve-2024-36904 - use-after-free vulnerability in the tcp subsystem of the linux kernel  cve-2024-36904  vulnerabilities other other primary article https://github.com/alleleintel/research/tree/master/cve-2024-36904/ use_after_free tcp tcp subsystem vulnerability the article discusses a use-after-free vulnerability in the tcp subsystem of the linux kernel. 本文讨论了linux内核tcp子系统中的使用后释放漏洞。 # cve-2024-36904 - use-after-free vulnerability in the tcp subsystem of the linux kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cve-2024-36904 - use-after-free vulnerability in the tcp subsystem of the linux kernel resource_label: primary resource_type: article resource_url: https://github.com/alleleintel/research/tree/master/cve-2024-36904/ parent_primary_url: https://github.com/alleleintel/research/tree/master/cve-2024-36904/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"cve-2024-36904 - use-after-free vulnerability in the tcp subsystem of the linux kernel\"](https://github.com/alleleintel/research/tree/master/cve-2024-36904/) [article] [cve-2024-36904] cves: cve-2024-36904 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entr unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "92a803230ae7248a",
      "item_id": "5cfa15eaec0d03cc",
      "slug": "2025-vulnerabilities-other-simply-analyzing-two-n-gsm-vulnerabilities-primary-12bfe240",
      "year": 2025,
      "title": "Simply Analyzing Two N_GSM Vulnerabilities",
      "item_title": "Simply Analyzing Two N_GSM Vulnerabilities",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2024-36016"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/03/31/simply-analyzing-two-n_gsm-vulnerabilities.html",
      "primary_url": "https://u1f383.github.io/linux/2025/03/31/simply-analyzing-two-n_gsm-vulnerabilities.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/03/31/simply-analyzing-two-n_gsm-vulnerabilities.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-simply-analyzing-two-n-gsm-vulnerabilities-primary-12bfe240.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Simply Analyzing Two N_GSM Vulnerabilities record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Simply Analyzing Two N_GSM Vulnerabilities resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/03/31/simply-analyzing-two-n_gsm-vulnerabilities.html parent_primary_url: https://u1f383.github.io/linux/2025/03/31/simply-analyzing-two-n_gsm-vulnerabilities.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Simply Analyzing Two N_GSM Vulnerabilities\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/03/31/simply-analyzing-two-n_gsm-vulnerabilities.html) [article] [CVE-2024-36016] cves: CVE-2024-36016 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/03/31/simply-analyzing-two-n_gsm-vulnerabilities.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/03/31/simply-analyzing-two-n_gsm-vulnerabilities.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/03/31/simply-analyzing-two-n_gsm-vulnerabilities.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability_analysis",
        "n_gsm"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article analyzes two vulnerabilities in the N_GSM subsystem of the Linux kernel.",
      "summary_zh": "本文分析了Linux内核N_GSM子系统中的两个漏洞。",
      "source_markdown": "[2025: \"Simply Analyzing Two N_GSM Vulnerabilities\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/03/31/simply-analyzing-two-n_gsm-vulnerabilities.html) [article] [CVE-2024-36016]",
      "search_text": "simply analyzing two n_gsm vulnerabilities simply analyzing two n_gsm vulnerabilities pumpkin chang cve-2024-36016  vulnerabilities other other primary article https://u1f383.github.io/linux/2025/03/31/simply-analyzing-two-n_gsm-vulnerabilities.html vulnerability_analysis n_gsm  vulnerability this article analyzes two vulnerabilities in the n_gsm subsystem of the linux kernel. 本文分析了linux内核n_gsm子系统中的两个漏洞。 # simply analyzing two n_gsm vulnerabilities record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: simply analyzing two n_gsm vulnerabilities resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/03/31/simply-analyzing-two-n_gsm-vulnerabilities.html parent_primary_url: https://u1f383.github.io/linux/2025/03/31/simply-analyzing-two-n_gsm-vulnerabilities.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"simply analyzing two n_gsm vulnerabilities\" by pumpkin chang](https://u1f383.github.io/linux/2025/03/31/simply-analyzing-two-n_gsm-vulnerabilities.html) [article] [cve-2024-36016] cves: cve-2024-36016 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3563cdffacc10c67",
      "item_id": "1780608bdc2b2aa1",
      "slug": "2025-vulnerabilities-other-a-quick-note-on-two-mempolicy-vulnerabilities-primary-84bd8399",
      "year": 2025,
      "title": "A Quick Note On Two mempolicy Vulnerabilities",
      "item_title": "A Quick Note On Two mempolicy Vulnerabilities",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2022-49080",
        "CVE-2023-4611"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/03/30/a-quick-note-on-two-mempolicy-vulnerabilites.html",
      "primary_url": "https://u1f383.github.io/linux/2025/03/30/a-quick-note-on-two-mempolicy-vulnerabilites.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/03/30/a-quick-note-on-two-mempolicy-vulnerabilites.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-a-quick-note-on-two-mempolicy-vulnerabilities-primary-84bd8399.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Quick Note On Two mempolicy Vulnerabilities record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: A Quick Note On Two mempolicy Vulnerabilities resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/03/30/a-quick-note-on-two-mempolicy-vulnerabilites.html parent_primary_url: https://u1f383.github.io/linux/2025/03/30/a-quick-note-on-two-mempolicy-vulnerabilites.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"A Quick Note On Two mempolicy Vulnerabilities\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/03/30/a-quick-note-on-two-mempolicy-vulnerabilites.html) [article] [CVE-2022-49080] [CVE-2023-4611] cves: CVE-2022-49080, CVE-2023-4611 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/03/30/a-quick-note-on-two-mempolicy-vulnerabilites.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/03/30/a-quick-note-on-two-mempolicy-vulnerabilites.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/03/30/a-quick-note-on-two-mempolicy-vulnerabilites.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory_policy",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "A quick note on two vulnerabilities related to memory policies in the Linux kernel is provided.",
      "summary_zh": "本文简要介绍了与Linux内核内存策略相关的两个漏洞。",
      "source_markdown": "[2025: \"A Quick Note On Two mempolicy Vulnerabilities\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/03/30/a-quick-note-on-two-mempolicy-vulnerabilites.html) [article] [CVE-2022-49080] [CVE-2023-4611]",
      "search_text": "a quick note on two mempolicy vulnerabilities a quick note on two mempolicy vulnerabilities pumpkin chang cve-2022-49080 cve-2023-4611  vulnerabilities other other primary article https://u1f383.github.io/linux/2025/03/30/a-quick-note-on-two-mempolicy-vulnerabilites.html memory_policy vulnerability  vulnerability a quick note on two vulnerabilities related to memory policies in the linux kernel is provided. 本文简要介绍了与linux内核内存策略相关的两个漏洞。 # a quick note on two mempolicy vulnerabilities record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: a quick note on two mempolicy vulnerabilities resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/03/30/a-quick-note-on-two-mempolicy-vulnerabilites.html parent_primary_url: https://u1f383.github.io/linux/2025/03/30/a-quick-note-on-two-mempolicy-vulnerabilites.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"a quick note on two mempolicy vulnerabilities\" by pumpkin chang](https://u1f383.github.io/linux/2025/03/30/a-quick-note-on-two-mempolicy-vulnerabilites.html) [article] [cve-2022-49080] [cve-2023-4611] cves: cve-2022-49080, cve-2023-4611 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry;  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "8c4dbebecd3e76bc",
      "item_id": "a77bc705a62ebf37",
      "slug": "2025-vulnerabilities-other-the-evolution-of-dirty-cow-primary-b5778222",
      "year": 2025,
      "title": "The Evolution of Dirty COW",
      "item_title": "The Evolution of Dirty COW",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2016-5195",
        "CVE-2017-1000405",
        "CVE-2022-2590"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/03/27/the-evolution-of-COW-1.html",
      "primary_url": "https://u1f383.github.io/linux/2025/03/27/the-evolution-of-COW-1.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/03/27/the-evolution-of-COW-1.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-the-evolution-of-dirty-cow-primary-b5778222.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Evolution of Dirty COW record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: The Evolution of Dirty COW resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/03/27/the-evolution-of-COW-1.html parent_primary_url: https://u1f383.github.io/linux/2025/03/27/the-evolution-of-COW-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"The Evolution of Dirty COW\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/03/27/the-evolution-of-COW-1.html) [article] [[part 2](https://u1f383.github.io/linux/2025/03/29/the-evolution-of-COW-2.html)] [CVE-2016-5195] [CVE-2017-1000405] [CVE-2022-2590] cves: CVE-2016-5195, CVE-2017-1000405, CVE-2022-2590 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Androi",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/03/27/the-evolution-of-COW-1.html"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/03/29/the-evolution-of-COW-2.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/03/27/the-evolution-of-COW-1.html"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/03/29/the-evolution-of-COW-2.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/03/27/the-evolution-of-COW-1.html",
        "https://u1f383.github.io/linux/2025/03/29/the-evolution-of-COW-2.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "dirty_cow",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The evolution of the Dirty COW vulnerability is explored in this article.",
      "summary_zh": "本文探讨了Dirty COW漏洞的发展历程。",
      "source_markdown": "[2025: \"The Evolution of Dirty COW\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/03/27/the-evolution-of-COW-1.html) [article] [[part 2](https://u1f383.github.io/linux/2025/03/29/the-evolution-of-COW-2.html)] [CVE-2016-5195] [CVE-2017-1000405] [CVE-2022-2590]",
      "search_text": "the evolution of dirty cow the evolution of dirty cow pumpkin chang cve-2016-5195 cve-2017-1000405 cve-2022-2590  vulnerabilities other other primary article https://u1f383.github.io/linux/2025/03/27/the-evolution-of-cow-1.html dirty_cow vulnerability  vulnerability the evolution of the dirty cow vulnerability is explored in this article. 本文探讨了dirty cow漏洞的发展历程。 # the evolution of dirty cow record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: the evolution of dirty cow resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/03/27/the-evolution-of-cow-1.html parent_primary_url: https://u1f383.github.io/linux/2025/03/27/the-evolution-of-cow-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"the evolution of dirty cow\" by pumpkin chang](https://u1f383.github.io/linux/2025/03/27/the-evolution-of-cow-1.html) [article] [[part 2](https://u1f383.github.io/linux/2025/03/29/the-evolution-of-cow-2.html)] [cve-2016-5195] [cve-2017-1000405] [cve-2022-2590] cves: cve-2016-5195, cve-2017-1000405, cve-2022-2590 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; androi unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "61d51d798f7c4add",
      "item_id": "a77bc705a62ebf37",
      "slug": "2025-vulnerabilities-other-the-evolution-of-dirty-cow-part-2-4a605558",
      "year": 2025,
      "title": "The Evolution of Dirty COW · part 2",
      "item_title": "The Evolution of Dirty COW",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2016-5195",
        "CVE-2017-1000405",
        "CVE-2022-2590"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "part 2",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/03/29/the-evolution-of-COW-2.html",
      "primary_url": "https://u1f383.github.io/linux/2025/03/29/the-evolution-of-COW-2.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/03/27/the-evolution-of-COW-1.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-the-evolution-of-dirty-cow-part-2-4a605558.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Evolution of Dirty COW · part 2 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: The Evolution of Dirty COW resource_label: part 2 resource_type: article resource_url: https://u1f383.github.io/linux/2025/03/29/the-evolution-of-COW-2.html parent_primary_url: https://u1f383.github.io/linux/2025/03/27/the-evolution-of-COW-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"The Evolution of Dirty COW\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/03/27/the-evolution-of-COW-1.html) [article] [[part 2](https://u1f383.github.io/linux/2025/03/29/the-evolution-of-COW-2.html)] [CVE-2016-5195] [CVE-2017-1000405] [CVE-2022-2590] cves: CVE-2016-5195, CVE-2017-1000405, CVE-2022-2590 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/03/27/the-evolution-of-COW-1.html"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/03/29/the-evolution-of-COW-2.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/03/27/the-evolution-of-COW-1.html"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/03/29/the-evolution-of-COW-2.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/03/27/the-evolution-of-COW-1.html",
        "https://u1f383.github.io/linux/2025/03/29/the-evolution-of-COW-2.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "dirty_cow",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article continues the exploration of the Dirty COW vulnerability's evolution.",
      "summary_zh": "本文继续探讨Dirty COW漏洞的发展历程。",
      "source_markdown": "[2025: \"The Evolution of Dirty COW\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/03/27/the-evolution-of-COW-1.html) [article] [[part 2](https://u1f383.github.io/linux/2025/03/29/the-evolution-of-COW-2.html)] [CVE-2016-5195] [CVE-2017-1000405] [CVE-2022-2590]",
      "search_text": "the evolution of dirty cow · part 2 the evolution of dirty cow pumpkin chang cve-2016-5195 cve-2017-1000405 cve-2022-2590  vulnerabilities other other part 2 article https://u1f383.github.io/linux/2025/03/29/the-evolution-of-cow-2.html dirty_cow vulnerability  vulnerability this article continues the exploration of the dirty cow vulnerability's evolution. 本文继续探讨dirty cow漏洞的发展历程。 # the evolution of dirty cow · part 2 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: the evolution of dirty cow resource_label: part 2 resource_type: article resource_url: https://u1f383.github.io/linux/2025/03/29/the-evolution-of-cow-2.html parent_primary_url: https://u1f383.github.io/linux/2025/03/27/the-evolution-of-cow-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"the evolution of dirty cow\" by pumpkin chang](https://u1f383.github.io/linux/2025/03/27/the-evolution-of-cow-1.html) [article] [[part 2](https://u1f383.github.io/linux/2025/03/29/the-evolution-of-cow-2.html)] [cve-2016-5195] [cve-2017-1000405] [cve-2022-2590] cves: cve-2016-5195, cve-2017-1000405, cve-2022-2590 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "4265b85e65d9a1e6",
      "item_id": "087b9d68904a941d",
      "slug": "2025-vulnerabilities-other-a-quick-note-on-cve-2024-53104-primary-1a53c468",
      "year": 2025,
      "title": "A Quick Note on CVE-2024-53104",
      "item_title": "A Quick Note on CVE-2024-53104",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2024-53104"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/03/23/a-quick-note-on-CVE-2024-53104.html",
      "primary_url": "https://u1f383.github.io/linux/2025/03/23/a-quick-note-on-CVE-2024-53104.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/03/23/a-quick-note-on-CVE-2024-53104.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-a-quick-note-on-cve-2024-53104-primary-1a53c468.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Quick Note on CVE-2024-53104 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: A Quick Note on CVE-2024-53104 resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/03/23/a-quick-note-on-CVE-2024-53104.html parent_primary_url: https://u1f383.github.io/linux/2025/03/23/a-quick-note-on-CVE-2024-53104.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"A Quick Note on CVE-2024-53104\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/03/23/a-quick-note-on-CVE-2024-53104.html) [article] [CVE-2024-53104] cves: CVE-2024-53104 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Pr",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/03/23/a-quick-note-on-CVE-2024-53104.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/03/23/a-quick-note-on-CVE-2024-53104.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/03/23/a-quick-note-on-CVE-2024-53104.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "cve"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "A quick note on CVE-2024-53104 is presented in this article.",
      "summary_zh": "本文简要介绍了CVE-2024-53104。",
      "source_markdown": "[2025: \"A Quick Note on CVE-2024-53104\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/03/23/a-quick-note-on-CVE-2024-53104.html) [article] [CVE-2024-53104]",
      "search_text": "a quick note on cve-2024-53104 a quick note on cve-2024-53104 pumpkin chang cve-2024-53104  vulnerabilities other other primary article https://u1f383.github.io/linux/2025/03/23/a-quick-note-on-cve-2024-53104.html vulnerability cve  vulnerability a quick note on cve-2024-53104 is presented in this article. 本文简要介绍了cve-2024-53104。 # a quick note on cve-2024-53104 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: a quick note on cve-2024-53104 resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/03/23/a-quick-note-on-cve-2024-53104.html parent_primary_url: https://u1f383.github.io/linux/2025/03/23/a-quick-note-on-cve-2024-53104.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"a quick note on cve-2024-53104\" by pumpkin chang](https://u1f383.github.io/linux/2025/03/23/a-quick-note-on-cve-2024-53104.html) [article] [cve-2024-53104] cves: cve-2024-53104 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: pr unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "9244eb05b6828bb4",
      "item_id": "20a2fbef2af3dd9f",
      "slug": "2025-vulnerabilities-other-a-series-of-io-uring-pbuf-vulnerabilities-primary-50c4d67e",
      "year": 2025,
      "title": "A Series of io_uring pbuf Vulnerabilities",
      "item_title": "A Series of io_uring pbuf Vulnerabilities",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2024-0582",
        "CVE-2024-35880",
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/03/02/a-series-of-io_uring-pbuf-vulnerabilities.html",
      "primary_url": "https://u1f383.github.io/linux/2025/03/02/a-series-of-io_uring-pbuf-vulnerabilities.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/03/02/a-series-of-io_uring-pbuf-vulnerabilities.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-a-series-of-io-uring-pbuf-vulnerabilities-primary-50c4d67e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Series of io_uring pbuf Vulnerabilities record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: A Series of io_uring pbuf Vulnerabilities resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/03/02/a-series-of-io_uring-pbuf-vulnerabilities.html parent_primary_url: https://u1f383.github.io/linux/2025/03/02/a-series-of-io_uring-pbuf-vulnerabilities.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"A Series of io_uring pbuf Vulnerabilities\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/03/02/a-series-of-io_uring-pbuf-vulnerabilities.html) [article] [CVE-2024-0582] [CVE-2024-35880] [CVE-UNKNOWN] cves: CVE-2024-0582, CVE-2024-35880, CVE-UNKNOWN android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit e",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/03/02/a-series-of-io_uring-pbuf-vulnerabilities.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/03/02/a-series-of-io_uring-pbuf-vulnerabilities.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/03/02/a-series-of-io_uring-pbuf-vulnerabilities.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "io_uring",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses a series of vulnerabilities related to io_uring pbuf in the Linux kernel.",
      "summary_zh": "本文讨论了与Linux内核io_uring pbuf相关的一系列漏洞。",
      "source_markdown": "[2025: \"A Series of io_uring pbuf Vulnerabilities\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/03/02/a-series-of-io_uring-pbuf-vulnerabilities.html) [article] [CVE-2024-0582] [CVE-2024-35880] [CVE-UNKNOWN]",
      "search_text": "a series of io_uring pbuf vulnerabilities a series of io_uring pbuf vulnerabilities pumpkin chang cve-2024-0582 cve-2024-35880 cve-unknown  vulnerabilities other other primary article https://u1f383.github.io/linux/2025/03/02/a-series-of-io_uring-pbuf-vulnerabilities.html io_uring vulnerability  vulnerability this article discusses a series of vulnerabilities related to io_uring pbuf in the linux kernel. 本文讨论了与linux内核io_uring pbuf相关的一系列漏洞。 # a series of io_uring pbuf vulnerabilities record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: a series of io_uring pbuf vulnerabilities resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/03/02/a-series-of-io_uring-pbuf-vulnerabilities.html parent_primary_url: https://u1f383.github.io/linux/2025/03/02/a-series-of-io_uring-pbuf-vulnerabilities.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"a series of io_uring pbuf vulnerabilities\" by pumpkin chang](https://u1f383.github.io/linux/2025/03/02/a-series-of-io_uring-pbuf-vulnerabilities.html) [article] [cve-2024-0582] [cve-2024-35880] [cve-unknown] cves: cve-2024-0582, cve-2024-35880, cve-unknown android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit e unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "cf29d4541cea2bdf",
      "item_id": "48a747aefceabd72",
      "slug": "2025-vulnerabilities-other-the-io-uring-promotion-in-kernelctf-and-two-vulnerabilities-analysis-primary-7f295d",
      "year": 2025,
      "title": "The io_uring Promotion in kernelCTF And Two Vulnerabilities Analysis",
      "item_title": "The io_uring Promotion in kernelCTF And Two Vulnerabilities Analysis",
      "authors": [],
      "cves": [
        "CVE-UNKNOWN",
        "CVE-2023-52926"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/02/28/the-io_uring-promotion-in-kernelCTF-and-two-vulnerabilities-analysis.html",
      "primary_url": "https://u1f383.github.io/linux/2025/02/28/the-io_uring-promotion-in-kernelCTF-and-two-vulnerabilities-analysis.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/02/28/the-io_uring-promotion-in-kernelCTF-and-two-vulnerabilities-analysis.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-the-io-uring-promotion-in-kernelctf-and-two-vulnerabilities-analysis-primary-7f295d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The io_uring Promotion in kernelCTF And Two Vulnerabilities Analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: The io_uring Promotion in kernelCTF And Two Vulnerabilities Analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/02/28/the-io_uring-promotion-in-kernelCTF-and-two-vulnerabilities-analysis.html parent_primary_url: https://u1f383.github.io/linux/2025/02/28/the-io_uring-promotion-in-kernelCTF-and-two-vulnerabilities-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: The io_uring Promotion in kernelCTF And Two Vulnerabilities Analysis](https://u1f383.github.io/linux/2025/02/28/the-io_uring-promotion-in-kernelCTF-and-two-vulnerabilities-analysis.html) [article] [CVE-UNKNOWN] [CVE-2023-52926] cves: CVE-UN",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/02/28/the-io_uring-promotion-in-kernelCTF-and-two-vulnerabilities-analysis.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/02/28/the-io_uring-promotion-in-kernelCTF-and-two-vulnerabilities-analysis.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/02/28/the-io_uring-promotion-in-kernelCTF-and-two-vulnerabilities-analysis.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "io_uring",
        "kernel_ctf"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The article analyzes vulnerabilities related to io_uring in the context of kernelCTF.",
      "summary_zh": "本文分析了与io_uring相关的漏洞在kernelCTF中的情况。",
      "source_markdown": "[2025: The io_uring Promotion in kernelCTF And Two Vulnerabilities Analysis](https://u1f383.github.io/linux/2025/02/28/the-io_uring-promotion-in-kernelCTF-and-two-vulnerabilities-analysis.html) [article] [CVE-UNKNOWN] [CVE-2023-52926]",
      "search_text": "the io_uring promotion in kernelctf and two vulnerabilities analysis the io_uring promotion in kernelctf and two vulnerabilities analysis  cve-unknown cve-2023-52926  vulnerabilities other other primary article https://u1f383.github.io/linux/2025/02/28/the-io_uring-promotion-in-kernelctf-and-two-vulnerabilities-analysis.html io_uring kernel_ctf  vulnerability the article analyzes vulnerabilities related to io_uring in the context of kernelctf. 本文分析了与io_uring相关的漏洞在kernelctf中的情况。 # the io_uring promotion in kernelctf and two vulnerabilities analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: the io_uring promotion in kernelctf and two vulnerabilities analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/02/28/the-io_uring-promotion-in-kernelctf-and-two-vulnerabilities-analysis.html parent_primary_url: https://u1f383.github.io/linux/2025/02/28/the-io_uring-promotion-in-kernelctf-and-two-vulnerabilities-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: the io_uring promotion in kernelctf and two vulnerabilities analysis](https://u1f383.github.io/linux/2025/02/28/the-io_uring-promotion-in-kernelctf-and-two-vulnerabilities-analysis.html) [article] [cve-unknown] [cve-2023-52926] cves: cve-un unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "056aadc46e7aff08",
      "item_id": "e90834b677f90e38",
      "slug": "2025-vulnerabilities-other-linux-kernel-some-vsock-vulnerabilities-analysis-primary-69a1492d",
      "year": 2025,
      "title": "Linux Kernel Some Vsock Vulnerabilities Analysis",
      "item_title": "Linux Kernel Some Vsock Vulnerabilities Analysis",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2025-21669",
        "CVE-2025-21670",
        "CVE-2025-21666"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/02/24/linux-kernel-some-vsock-vulnerabilities-analysis.html",
      "primary_url": "https://u1f383.github.io/linux/2025/02/24/linux-kernel-some-vsock-vulnerabilities-analysis.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/02/24/linux-kernel-some-vsock-vulnerabilities-analysis.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-linux-kernel-some-vsock-vulnerabilities-analysis-primary-69a1492d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Some Vsock Vulnerabilities Analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Linux Kernel Some Vsock Vulnerabilities Analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/02/24/linux-kernel-some-vsock-vulnerabilities-analysis.html parent_primary_url: https://u1f383.github.io/linux/2025/02/24/linux-kernel-some-vsock-vulnerabilities-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Linux Kernel Some Vsock Vulnerabilities Analysis\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/02/24/linux-kernel-some-vsock-vulnerabilities-analysis.html) [article] [CVE-2025-21669] [CVE-2025-21670] [CVE-2025-21666] cves: CVE-2025-21669, CVE-2025-21670, CVE-2025-21666 android_impact_status: unknown android_i",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/02/24/linux-kernel-some-vsock-vulnerabilities-analysis.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/02/24/linux-kernel-some-vsock-vulnerabilities-analysis.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/02/24/linux-kernel-some-vsock-vulnerabilities-analysis.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vsock",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An analysis of several Vsock vulnerabilities in the Linux kernel is provided in this article.",
      "summary_zh": "本文提供了对Linux内核中多个Vsock漏洞的分析。",
      "source_markdown": "[2025: \"Linux Kernel Some Vsock Vulnerabilities Analysis\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/02/24/linux-kernel-some-vsock-vulnerabilities-analysis.html) [article] [CVE-2025-21669] [CVE-2025-21670] [CVE-2025-21666]",
      "search_text": "linux kernel some vsock vulnerabilities analysis linux kernel some vsock vulnerabilities analysis pumpkin chang cve-2025-21669 cve-2025-21670 cve-2025-21666  vulnerabilities other other primary article https://u1f383.github.io/linux/2025/02/24/linux-kernel-some-vsock-vulnerabilities-analysis.html vsock vulnerability  vulnerability an analysis of several vsock vulnerabilities in the linux kernel is provided in this article. 本文提供了对linux内核中多个vsock漏洞的分析。 # linux kernel some vsock vulnerabilities analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: linux kernel some vsock vulnerabilities analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/02/24/linux-kernel-some-vsock-vulnerabilities-analysis.html parent_primary_url: https://u1f383.github.io/linux/2025/02/24/linux-kernel-some-vsock-vulnerabilities-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"linux kernel some vsock vulnerabilities analysis\" by pumpkin chang](https://u1f383.github.io/linux/2025/02/24/linux-kernel-some-vsock-vulnerabilities-analysis.html) [article] [cve-2025-21669] [cve-2025-21670] [cve-2025-21666] cves: cve-2025-21669, cve-2025-21670, cve-2025-21666 android_impact_status: unknown android_i unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3605f7c64ce6ff22",
      "item_id": "886e3f1320fe9fae",
      "slug": "2025-vulnerabilities-other-from-zero-to-emo-my-journey-of-many-failures-in-kernelctf-primary-f7bb77b5",
      "year": 2025,
      "title": "From Zero to Emo – My Journey of Many Failures in kernelCTF",
      "item_title": "From Zero to Emo – My Journey of Many Failures in kernelCTF",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2024-56770",
        "CVE-2025-21703",
        "CVE-2025-21700"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/02/21/from-zero-to-emo-my-journey-of-many-failures-in-kernelCTF.html",
      "primary_url": "https://u1f383.github.io/linux/2025/02/21/from-zero-to-emo-my-journey-of-many-failures-in-kernelCTF.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/02/21/from-zero-to-emo-my-journey-of-many-failures-in-kernelCTF.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-from-zero-to-emo-my-journey-of-many-failures-in-kernelctf-primary-f7bb77b5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# From Zero to Emo – My Journey of Many Failures in kernelCTF record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: From Zero to Emo – My Journey of Many Failures in kernelCTF resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/02/21/from-zero-to-emo-my-journey-of-many-failures-in-kernelCTF.html parent_primary_url: https://u1f383.github.io/linux/2025/02/21/from-zero-to-emo-my-journey-of-many-failures-in-kernelCTF.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"From Zero to Emo – My Journey of Many Failures in kernelCTF\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/02/21/from-zero-to-emo-my-journey-of-many-failures-in-kernelCTF.html) [article] [CVE-2024-56770] [CVE-2025-21703] [CVE-2025-21700] cves: CVE-2024-56770, CVE-2025-21",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/02/21/from-zero-to-emo-my-journey-of-many-failures-in-kernelCTF.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/02/21/from-zero-to-emo-my-journey-of-many-failures-in-kernelCTF.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/02/21/from-zero-to-emo-my-journey-of-many-failures-in-kernelCTF.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_ctf",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article recounts the author's experiences with various vulnerabilities in kernelCTF.",
      "summary_zh": "本文讲述了作者在kernelCTF中与各种漏洞的经历。",
      "source_markdown": "[2025: \"From Zero to Emo – My Journey of Many Failures in kernelCTF\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/02/21/from-zero-to-emo-my-journey-of-many-failures-in-kernelCTF.html) [article] [CVE-2024-56770] [CVE-2025-21703] [CVE-2025-21700]",
      "search_text": "from zero to emo – my journey of many failures in kernelctf from zero to emo – my journey of many failures in kernelctf pumpkin chang cve-2024-56770 cve-2025-21703 cve-2025-21700  vulnerabilities other other primary article https://u1f383.github.io/linux/2025/02/21/from-zero-to-emo-my-journey-of-many-failures-in-kernelctf.html kernel_ctf vulnerability  vulnerability this article recounts the author's experiences with various vulnerabilities in kernelctf. 本文讲述了作者在kernelctf中与各种漏洞的经历。 # from zero to emo – my journey of many failures in kernelctf record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: from zero to emo – my journey of many failures in kernelctf resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/02/21/from-zero-to-emo-my-journey-of-many-failures-in-kernelctf.html parent_primary_url: https://u1f383.github.io/linux/2025/02/21/from-zero-to-emo-my-journey-of-many-failures-in-kernelctf.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"from zero to emo – my journey of many failures in kernelctf\" by pumpkin chang](https://u1f383.github.io/linux/2025/02/21/from-zero-to-emo-my-journey-of-many-failures-in-kernelctf.html) [article] [cve-2024-56770] [cve-2025-21703] [cve-2025-21700] cves: cve-2024-56770, cve-2025-21 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "e6cc63249ccfe286",
      "item_id": "7ac85b50dda71418",
      "slug": "2025-vulnerabilities-other-a-1-day-a-day-in-the-lunar-new-year-primary-e06ac466",
      "year": 2025,
      "title": "A 1-day a Day in the Lunar New Year",
      "item_title": "A 1-day a Day in the Lunar New Year",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/01/27/a-1-day-a-day-in-the-lunar-new-year.html",
      "primary_url": "https://u1f383.github.io/linux/2025/01/27/a-1-day-a-day-in-the-lunar-new-year.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/01/27/a-1-day-a-day-in-the-lunar-new-year.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-a-1-day-a-day-in-the-lunar-new-year-primary-e06ac466.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A 1-day a Day in the Lunar New Year record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: A 1-day a Day in the Lunar New Year resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/01/27/a-1-day-a-day-in-the-lunar-new-year.html parent_primary_url: https://u1f383.github.io/linux/2025/01/27/a-1-day-a-day-in-the-lunar-new-year.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"A 1-day a Day in the Lunar New Year\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/01/27/a-1-day-a-day-in-the-lunar-new-year.html) [article] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/01/27/a-1-day-a-day-in-the-lunar-new-year.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/01/27/a-1-day-a-day-in-the-lunar-new-year.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/01/27/a-1-day-a-day-in-the-lunar-new-year.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "unknown_vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "A brief article discussing an unknown vulnerability related to the Lunar New Year is presented.",
      "summary_zh": "本文简要讨论了与农历新年相关的未知漏洞。",
      "source_markdown": "[2025: \"A 1-day a Day in the Lunar New Year\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/01/27/a-1-day-a-day-in-the-lunar-new-year.html) [article] [CVE-UNKNOWN]",
      "search_text": "a 1-day a day in the lunar new year a 1-day a day in the lunar new year pumpkin chang cve-unknown  vulnerabilities other other primary article https://u1f383.github.io/linux/2025/01/27/a-1-day-a-day-in-the-lunar-new-year.html unknown_vulnerability  vulnerability a brief article discussing an unknown vulnerability related to the lunar new year is presented. 本文简要讨论了与农历新年相关的未知漏洞。 # a 1-day a day in the lunar new year record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: a 1-day a day in the lunar new year resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/01/27/a-1-day-a-day-in-the-lunar-new-year.html parent_primary_url: https://u1f383.github.io/linux/2025/01/27/a-1-day-a-day-in-the-lunar-new-year.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"a 1-day a day in the lunar new year\" by pumpkin chang](https://u1f383.github.io/linux/2025/01/27/a-1-day-a-day-in-the-lunar-new-year.html) [article] [cve-unknown] cves: cve-unknown android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status:  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "d04baf8878ce2815",
      "item_id": "37f846caa4a6b886",
      "slug": "2025-vulnerabilities-other-memory-related-cves-exploited-in-kernelctf-primary-af81547c",
      "year": 2025,
      "title": "Memory-related CVEs Exploited in kernelCTF",
      "item_title": "Memory-related CVEs Exploited in kernelCTF",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2024-50066",
        "CVE-2023-3269"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/01/12/memory-related-cves-exploited-in-kernelctf.html",
      "primary_url": "https://u1f383.github.io/linux/2025/01/12/memory-related-cves-exploited-in-kernelctf.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/01/12/memory-related-cves-exploited-in-kernelctf.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-memory-related-cves-exploited-in-kernelctf-primary-af81547c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Memory-related CVEs Exploited in kernelCTF record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Memory-related CVEs Exploited in kernelCTF resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/01/12/memory-related-cves-exploited-in-kernelctf.html parent_primary_url: https://u1f383.github.io/linux/2025/01/12/memory-related-cves-exploited-in-kernelctf.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Memory-related CVEs Exploited in kernelCTF\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/01/12/memory-related-cves-exploited-in-kernelctf.html) [article] [CVE-2024-50066] [CVE-2023-3269] cves: CVE-2024-50066, CVE-2023-3269 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android product",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/01/12/memory-related-cves-exploited-in-kernelctf.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/01/12/memory-related-cves-exploited-in-kernelctf.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/01/12/memory-related-cves-exploited-in-kernelctf.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory",
        "cve"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses memory-related CVEs exploited in kernelCTF.",
      "summary_zh": "本文讨论了在kernelCTF中利用的与内存相关的CVE。",
      "source_markdown": "[2025: \"Memory-related CVEs Exploited in kernelCTF\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/01/12/memory-related-cves-exploited-in-kernelctf.html) [article] [CVE-2024-50066] [CVE-2023-3269]",
      "search_text": "memory-related cves exploited in kernelctf memory-related cves exploited in kernelctf pumpkin chang cve-2024-50066 cve-2023-3269  vulnerabilities other other primary article https://u1f383.github.io/linux/2025/01/12/memory-related-cves-exploited-in-kernelctf.html memory cve  vulnerability this article discusses memory-related cves exploited in kernelctf. 本文讨论了在kernelctf中利用的与内存相关的cve。 # memory-related cves exploited in kernelctf record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: memory-related cves exploited in kernelctf resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/01/12/memory-related-cves-exploited-in-kernelctf.html parent_primary_url: https://u1f383.github.io/linux/2025/01/12/memory-related-cves-exploited-in-kernelctf.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"memory-related cves exploited in kernelctf\" by pumpkin chang](https://u1f383.github.io/linux/2025/01/12/memory-related-cves-exploited-in-kernelctf.html) [article] [cve-2024-50066] [cve-2023-3269] cves: cve-2024-50066, cve-2023-3269 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android product unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "21703eed2d86a62f",
      "item_id": "37f03983d31270a1",
      "slug": "2025-vulnerabilities-other-two-network-related-vunlnerabilities-analysis-primary-7c835ca0",
      "year": 2025,
      "title": "Two Network-related vunlnerabilities Analysis",
      "item_title": "Two Network-related vunlnerabilities Analysis",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2023-6932",
        "CVE-2023-0461"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/01/08/two-network-related-vulnerabilities-analysis.html",
      "primary_url": "https://u1f383.github.io/linux/2025/01/08/two-network-related-vulnerabilities-analysis.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/01/08/two-network-related-vulnerabilities-analysis.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-two-network-related-vunlnerabilities-analysis-primary-7c835ca0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Two Network-related vunlnerabilities Analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Two Network-related vunlnerabilities Analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/01/08/two-network-related-vulnerabilities-analysis.html parent_primary_url: https://u1f383.github.io/linux/2025/01/08/two-network-related-vulnerabilities-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Two Network-related vunlnerabilities Analysis\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/01/08/two-network-related-vulnerabilities-analysis.html) [article] [CVE-2023-6932] [CVE-2023-0461] cves: CVE-2023-6932, CVE-2023-0461 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; An",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/01/08/two-network-related-vulnerabilities-analysis.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/01/08/two-network-related-vulnerabilities-analysis.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/01/08/two-network-related-vulnerabilities-analysis.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "network",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An analysis of two network-related vulnerabilities in the Linux kernel is provided in this article.",
      "summary_zh": "本文提供了对Linux内核中两个网络相关漏洞的分析。",
      "source_markdown": "[2025: \"Two Network-related vunlnerabilities Analysis\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/01/08/two-network-related-vulnerabilities-analysis.html) [article] [CVE-2023-6932] [CVE-2023-0461]",
      "search_text": "two network-related vunlnerabilities analysis two network-related vunlnerabilities analysis pumpkin chang cve-2023-6932 cve-2023-0461  vulnerabilities other other primary article https://u1f383.github.io/linux/2025/01/08/two-network-related-vulnerabilities-analysis.html network vulnerability  vulnerability an analysis of two network-related vulnerabilities in the linux kernel is provided in this article. 本文提供了对linux内核中两个网络相关漏洞的分析。 # two network-related vunlnerabilities analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: two network-related vunlnerabilities analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/01/08/two-network-related-vulnerabilities-analysis.html parent_primary_url: https://u1f383.github.io/linux/2025/01/08/two-network-related-vulnerabilities-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"two network-related vunlnerabilities analysis\" by pumpkin chang](https://u1f383.github.io/linux/2025/01/08/two-network-related-vulnerabilities-analysis.html) [article] [cve-2023-6932] [cve-2023-0461] cves: cve-2023-6932, cve-2023-0461 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; an unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "defb539f123bd6d3",
      "item_id": "bc2c679ba638896b",
      "slug": "2025-vulnerabilities-other-cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist-primar",
      "year": 2025,
      "title": "Cellebrite zero-day exploit used to target phone of Serbian student activist",
      "item_title": "Cellebrite zero-day exploit used to target phone of Serbian student activist",
      "authors": [],
      "cves": [
        "CVE-2024-53104",
        "CVE-2024-53197",
        "CVE-2024-50302"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/",
      "primary_url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/",
      "parent_primary_url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist-primar.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Cellebrite zero-day exploit used to target phone of Serbian student activist record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Cellebrite zero-day exploit used to target phone of Serbian student activist resource_label: primary resource_type: article resource_url: https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ parent_primary_url: https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Cellebrite zero-day exploit used to target phone of Serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
        },
        {
          "label": "note 1",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197"
        },
        {
          "label": "note 2",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083"
        },
        {
          "label": "note 3",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428"
        },
        {
          "label": "note 4",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584"
        },
        {
          "label": "note 5",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434"
        },
        {
          "label": "note 6",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222"
        },
        {
          "label": "note 7",
          "type": "article",
          "url": "https://infosec.exchange/@twiddles/114343055353217091"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
          },
          {
            "label": "note 1",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197"
          },
          {
            "label": "note 2",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083"
          },
          {
            "label": "note 3",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428"
          },
          {
            "label": "note 4",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584"
          },
          {
            "label": "note 5",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434"
          },
          {
            "label": "note 6",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222"
          },
          {
            "label": "note 7",
            "type": "article",
            "url": "https://infosec.exchange/@twiddles/114343055353217091"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "zero_day",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "This article discusses a zero-day exploit targeting a Serbian student activist's phone.",
      "summary_zh": "本文讨论了针对塞尔维亚学生活动家手机的零日漏洞利用。",
      "source_markdown": "[2025: \"Cellebrite zero-day exploit used to target phone of Serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [CVE-2024-53104] [CVE-2024-53197] [CVE-2024-50302] [[note 1](https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197)] [[note 2](https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083)] [[note 3](https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428)] [[note 4](https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584)] [[note 5](https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434)] [[note 6](https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222)] [[note 7](https://infosec.exchange/@twiddles/114343055353217091)]",
      "search_text": "cellebrite zero-day exploit used to target phone of serbian student activist cellebrite zero-day exploit used to target phone of serbian student activist  cve-2024-53104 cve-2024-53197 cve-2024-50302  vulnerabilities other other primary article https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ zero_day exploit  exploit this article discusses a zero-day exploit targeting a serbian student activist's phone. 本文讨论了针对塞尔维亚学生活动家手机的零日漏洞利用。 # cellebrite zero-day exploit used to target phone of serbian student activist record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cellebrite zero-day exploit used to target phone of serbian student activist resource_label: primary resource_type: article resource_url: https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ parent_primary_url: https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"cellebrite zero-day exploit used to target phone of serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/)  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "8214e55345d5e020",
      "item_id": "bc2c679ba638896b",
      "slug": "2025-vulnerabilities-other-cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist-note-1",
      "year": 2025,
      "title": "Cellebrite zero-day exploit used to target phone of Serbian student activist · note 1",
      "item_title": "Cellebrite zero-day exploit used to target phone of Serbian student activist",
      "authors": [],
      "cves": [
        "CVE-2024-53104",
        "CVE-2024-53197",
        "CVE-2024-50302"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "note 1",
      "resource_type": "article",
      "resource_url": "https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197",
      "primary_url": "https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197",
      "parent_primary_url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist-note-1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Cellebrite zero-day exploit used to target phone of Serbian student activist · note 1 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Cellebrite zero-day exploit used to target phone of Serbian student activist resource_label: note 1 resource_type: article resource_url: https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197 parent_primary_url: https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Cellebrite zero-day exploit used to target phone of Serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [CVE-2024-53104] [CVE-2024-53197] [CVE-2024",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
        },
        {
          "label": "note 1",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197"
        },
        {
          "label": "note 2",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083"
        },
        {
          "label": "note 3",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428"
        },
        {
          "label": "note 4",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584"
        },
        {
          "label": "note 5",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434"
        },
        {
          "label": "note 6",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222"
        },
        {
          "label": "note 7",
          "type": "article",
          "url": "https://infosec.exchange/@twiddles/114343055353217091"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
          },
          {
            "label": "note 1",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197"
          },
          {
            "label": "note 2",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083"
          },
          {
            "label": "note 3",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428"
          },
          {
            "label": "note 4",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584"
          },
          {
            "label": "note 5",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434"
          },
          {
            "label": "note 6",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222"
          },
          {
            "label": "note 7",
            "type": "article",
            "url": "https://infosec.exchange/@twiddles/114343055353217091"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "zero_day",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "A note related to the zero-day exploit targeting a Serbian student activist's phone is included.",
      "summary_zh": "本文包含了与针对塞尔维亚学生活动家手机的零日漏洞利用相关的注释。",
      "source_markdown": "[2025: \"Cellebrite zero-day exploit used to target phone of Serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [CVE-2024-53104] [CVE-2024-53197] [CVE-2024-50302] [[note 1](https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197)] [[note 2](https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083)] [[note 3](https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428)] [[note 4](https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584)] [[note 5](https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434)] [[note 6](https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222)] [[note 7](https://infosec.exchange/@twiddles/114343055353217091)]",
      "search_text": "cellebrite zero-day exploit used to target phone of serbian student activist · note 1 cellebrite zero-day exploit used to target phone of serbian student activist  cve-2024-53104 cve-2024-53197 cve-2024-50302  vulnerabilities other other note 1 article https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197 zero_day exploit  exploit a note related to the zero-day exploit targeting a serbian student activist's phone is included. 本文包含了与针对塞尔维亚学生活动家手机的零日漏洞利用相关的注释。 # cellebrite zero-day exploit used to target phone of serbian student activist · note 1 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cellebrite zero-day exploit used to target phone of serbian student activist resource_label: note 1 resource_type: article resource_url: https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197 parent_primary_url: https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"cellebrite zero-day exploit used to target phone of serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [cve-2024-53104] [cve-2024-53197] [cve-2024 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "c1fe3454893e07f2",
      "item_id": "bc2c679ba638896b",
      "slug": "2025-vulnerabilities-other-cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist-note-2",
      "year": 2025,
      "title": "Cellebrite zero-day exploit used to target phone of Serbian student activist · note 2",
      "item_title": "Cellebrite zero-day exploit used to target phone of Serbian student activist",
      "authors": [],
      "cves": [
        "CVE-2024-53104",
        "CVE-2024-53197",
        "CVE-2024-50302"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "note 2",
      "resource_type": "article",
      "resource_url": "https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083",
      "primary_url": "https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083",
      "parent_primary_url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist-note-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Cellebrite zero-day exploit used to target phone of Serbian student activist · note 2 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Cellebrite zero-day exploit used to target phone of Serbian student activist resource_label: note 2 resource_type: article resource_url: https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083 parent_primary_url: https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Cellebrite zero-day exploit used to target phone of Serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [CVE-2024-53104] [CVE-2024-53197] [CVE-2024",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
        },
        {
          "label": "note 1",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197"
        },
        {
          "label": "note 2",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083"
        },
        {
          "label": "note 3",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428"
        },
        {
          "label": "note 4",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584"
        },
        {
          "label": "note 5",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434"
        },
        {
          "label": "note 6",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222"
        },
        {
          "label": "note 7",
          "type": "article",
          "url": "https://infosec.exchange/@twiddles/114343055353217091"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
          },
          {
            "label": "note 1",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197"
          },
          {
            "label": "note 2",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083"
          },
          {
            "label": "note 3",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428"
          },
          {
            "label": "note 4",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584"
          },
          {
            "label": "note 5",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434"
          },
          {
            "label": "note 6",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222"
          },
          {
            "label": "note 7",
            "type": "article",
            "url": "https://infosec.exchange/@twiddles/114343055353217091"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "zero_day",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Another note regarding the zero-day exploit targeting a Serbian student activist's phone is presented.",
      "summary_zh": "本文介绍了另一个与针对塞尔维亚学生活动家手机的零日漏洞利用相关的注释。",
      "source_markdown": "[2025: \"Cellebrite zero-day exploit used to target phone of Serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [CVE-2024-53104] [CVE-2024-53197] [CVE-2024-50302] [[note 1](https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197)] [[note 2](https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083)] [[note 3](https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428)] [[note 4](https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584)] [[note 5](https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434)] [[note 6](https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222)] [[note 7](https://infosec.exchange/@twiddles/114343055353217091)]",
      "search_text": "cellebrite zero-day exploit used to target phone of serbian student activist · note 2 cellebrite zero-day exploit used to target phone of serbian student activist  cve-2024-53104 cve-2024-53197 cve-2024-50302  vulnerabilities other other note 2 article https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083 zero_day exploit  exploit another note regarding the zero-day exploit targeting a serbian student activist's phone is presented. 本文介绍了另一个与针对塞尔维亚学生活动家手机的零日漏洞利用相关的注释。 # cellebrite zero-day exploit used to target phone of serbian student activist · note 2 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cellebrite zero-day exploit used to target phone of serbian student activist resource_label: note 2 resource_type: article resource_url: https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083 parent_primary_url: https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"cellebrite zero-day exploit used to target phone of serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [cve-2024-53104] [cve-2024-53197] [cve-2024 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "92810833a66661e5",
      "item_id": "bc2c679ba638896b",
      "slug": "2025-vulnerabilities-other-cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist-note-3",
      "year": 2025,
      "title": "Cellebrite zero-day exploit used to target phone of Serbian student activist · note 3",
      "item_title": "Cellebrite zero-day exploit used to target phone of Serbian student activist",
      "authors": [],
      "cves": [
        "CVE-2024-53104",
        "CVE-2024-53197",
        "CVE-2024-50302"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "note 3",
      "resource_type": "article",
      "resource_url": "https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428",
      "primary_url": "https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428",
      "parent_primary_url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist-note-3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Cellebrite zero-day exploit used to target phone of Serbian student activist · note 3 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Cellebrite zero-day exploit used to target phone of Serbian student activist resource_label: note 3 resource_type: article resource_url: https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428 parent_primary_url: https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Cellebrite zero-day exploit used to target phone of Serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [CVE-2024-53104] [CVE-2024-53197] [CVE-2024",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
        },
        {
          "label": "note 1",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197"
        },
        {
          "label": "note 2",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083"
        },
        {
          "label": "note 3",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428"
        },
        {
          "label": "note 4",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584"
        },
        {
          "label": "note 5",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434"
        },
        {
          "label": "note 6",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222"
        },
        {
          "label": "note 7",
          "type": "article",
          "url": "https://infosec.exchange/@twiddles/114343055353217091"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
          },
          {
            "label": "note 1",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197"
          },
          {
            "label": "note 2",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083"
          },
          {
            "label": "note 3",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428"
          },
          {
            "label": "note 4",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584"
          },
          {
            "label": "note 5",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434"
          },
          {
            "label": "note 6",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222"
          },
          {
            "label": "note 7",
            "type": "article",
            "url": "https://infosec.exchange/@twiddles/114343055353217091"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "zero_day",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "A third note related to the zero-day exploit targeting a Serbian student activist's phone is provided.",
      "summary_zh": "本文提供了与针对塞尔维亚学生活动家手机的零日漏洞利用相关的第三个注释。",
      "source_markdown": "[2025: \"Cellebrite zero-day exploit used to target phone of Serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [CVE-2024-53104] [CVE-2024-53197] [CVE-2024-50302] [[note 1](https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197)] [[note 2](https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083)] [[note 3](https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428)] [[note 4](https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584)] [[note 5](https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434)] [[note 6](https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222)] [[note 7](https://infosec.exchange/@twiddles/114343055353217091)]",
      "search_text": "cellebrite zero-day exploit used to target phone of serbian student activist · note 3 cellebrite zero-day exploit used to target phone of serbian student activist  cve-2024-53104 cve-2024-53197 cve-2024-50302  vulnerabilities other other note 3 article https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428 zero_day exploit  exploit a third note related to the zero-day exploit targeting a serbian student activist's phone is provided. 本文提供了与针对塞尔维亚学生活动家手机的零日漏洞利用相关的第三个注释。 # cellebrite zero-day exploit used to target phone of serbian student activist · note 3 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cellebrite zero-day exploit used to target phone of serbian student activist resource_label: note 3 resource_type: article resource_url: https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428 parent_primary_url: https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"cellebrite zero-day exploit used to target phone of serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [cve-2024-53104] [cve-2024-53197] [cve-2024 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "6ef643dfd3e84295",
      "item_id": "bc2c679ba638896b",
      "slug": "2025-vulnerabilities-other-cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist-note-4",
      "year": 2025,
      "title": "Cellebrite zero-day exploit used to target phone of Serbian student activist · note 4",
      "item_title": "Cellebrite zero-day exploit used to target phone of Serbian student activist",
      "authors": [],
      "cves": [
        "CVE-2024-53104",
        "CVE-2024-53197",
        "CVE-2024-50302"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "note 4",
      "resource_type": "article",
      "resource_url": "https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584",
      "primary_url": "https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584",
      "parent_primary_url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist-note-4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Cellebrite zero-day exploit used to target phone of Serbian student activist · note 4 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Cellebrite zero-day exploit used to target phone of Serbian student activist resource_label: note 4 resource_type: article resource_url: https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584 parent_primary_url: https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Cellebrite zero-day exploit used to target phone of Serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [CVE-2024-53104] [CVE-2024-53197] [CVE-2024",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
        },
        {
          "label": "note 1",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197"
        },
        {
          "label": "note 2",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083"
        },
        {
          "label": "note 3",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428"
        },
        {
          "label": "note 4",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584"
        },
        {
          "label": "note 5",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434"
        },
        {
          "label": "note 6",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222"
        },
        {
          "label": "note 7",
          "type": "article",
          "url": "https://infosec.exchange/@twiddles/114343055353217091"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
          },
          {
            "label": "note 1",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197"
          },
          {
            "label": "note 2",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083"
          },
          {
            "label": "note 3",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428"
          },
          {
            "label": "note 4",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584"
          },
          {
            "label": "note 5",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434"
          },
          {
            "label": "note 6",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222"
          },
          {
            "label": "note 7",
            "type": "article",
            "url": "https://infosec.exchange/@twiddles/114343055353217091"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "Other",
        "article",
        "CVE-2024-53104",
        "CVE-2024-53197",
        "CVE-2024-50302"
      ],
      "affected_area": "",
      "exploit_stage": "Other",
      "summary_en": "2025 Linux kernel Other resource \"Cellebrite zero-day exploit used to target phone of Serbian student activist · note 4\" (CVE-2024-53104, CVE-2024-53197, CVE-2024-50302); URL type: article.",
      "summary_zh": "2025 年 Linux 内核Other资料：「Cellebrite zero-day exploit used to target phone of Serbian student activist · note 4」（CVE-2024-53104、CVE-2024-53197、CVE-2024-50302）；URL 类型：article。",
      "source_markdown": "[2025: \"Cellebrite zero-day exploit used to target phone of Serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [CVE-2024-53104] [CVE-2024-53197] [CVE-2024-50302] [[note 1](https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197)] [[note 2](https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083)] [[note 3](https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428)] [[note 4](https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584)] [[note 5](https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434)] [[note 6](https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222)] [[note 7](https://infosec.exchange/@twiddles/114343055353217091)]",
      "search_text": "cellebrite zero-day exploit used to target phone of serbian student activist · note 4 cellebrite zero-day exploit used to target phone of serbian student activist  cve-2024-53104 cve-2024-53197 cve-2024-50302  vulnerabilities other other note 4 article https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584 vulnerabilities other article cve-2024-53104 cve-2024-53197 cve-2024-50302  other 2025 linux kernel other resource \"cellebrite zero-day exploit used to target phone of serbian student activist · note 4\" (cve-2024-53104, cve-2024-53197, cve-2024-50302); url type: article. 2025 年 linux 内核other资料：「cellebrite zero-day exploit used to target phone of serbian student activist · note 4」（cve-2024-53104、cve-2024-53197、cve-2024-50302）；url 类型：article。 # cellebrite zero-day exploit used to target phone of serbian student activist · note 4 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cellebrite zero-day exploit used to target phone of serbian student activist resource_label: note 4 resource_type: article resource_url: https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584 parent_primary_url: https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"cellebrite zero-day exploit used to target phone of serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [cve-2024-53104] [cve-2024-53197] [cve-2024 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "2ed74cb116b1b60c",
      "item_id": "bc2c679ba638896b",
      "slug": "2025-vulnerabilities-other-cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist-note-5",
      "year": 2025,
      "title": "Cellebrite zero-day exploit used to target phone of Serbian student activist · note 5",
      "item_title": "Cellebrite zero-day exploit used to target phone of Serbian student activist",
      "authors": [],
      "cves": [
        "CVE-2024-53104",
        "CVE-2024-53197",
        "CVE-2024-50302"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "note 5",
      "resource_type": "article",
      "resource_url": "https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434",
      "primary_url": "https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434",
      "parent_primary_url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist-note-5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Cellebrite zero-day exploit used to target phone of Serbian student activist · note 5 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Cellebrite zero-day exploit used to target phone of Serbian student activist resource_label: note 5 resource_type: article resource_url: https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434 parent_primary_url: https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Cellebrite zero-day exploit used to target phone of Serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [CVE-2024-53104] [CVE-2024-53197] [CVE-2024",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
        },
        {
          "label": "note 1",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197"
        },
        {
          "label": "note 2",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083"
        },
        {
          "label": "note 3",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428"
        },
        {
          "label": "note 4",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584"
        },
        {
          "label": "note 5",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434"
        },
        {
          "label": "note 6",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222"
        },
        {
          "label": "note 7",
          "type": "article",
          "url": "https://infosec.exchange/@twiddles/114343055353217091"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
          },
          {
            "label": "note 1",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197"
          },
          {
            "label": "note 2",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083"
          },
          {
            "label": "note 3",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428"
          },
          {
            "label": "note 4",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584"
          },
          {
            "label": "note 5",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434"
          },
          {
            "label": "note 6",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222"
          },
          {
            "label": "note 7",
            "type": "article",
            "url": "https://infosec.exchange/@twiddles/114343055353217091"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "Other",
        "article",
        "CVE-2024-53104",
        "CVE-2024-53197",
        "CVE-2024-50302"
      ],
      "affected_area": "",
      "exploit_stage": "Other",
      "summary_en": "2025 Linux kernel Other resource \"Cellebrite zero-day exploit used to target phone of Serbian student activist · note 5\" (CVE-2024-53104, CVE-2024-53197, CVE-2024-50302); URL type: article.",
      "summary_zh": "2025 年 Linux 内核Other资料：「Cellebrite zero-day exploit used to target phone of Serbian student activist · note 5」（CVE-2024-53104、CVE-2024-53197、CVE-2024-50302）；URL 类型：article。",
      "source_markdown": "[2025: \"Cellebrite zero-day exploit used to target phone of Serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [CVE-2024-53104] [CVE-2024-53197] [CVE-2024-50302] [[note 1](https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197)] [[note 2](https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083)] [[note 3](https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428)] [[note 4](https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584)] [[note 5](https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434)] [[note 6](https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222)] [[note 7](https://infosec.exchange/@twiddles/114343055353217091)]",
      "search_text": "cellebrite zero-day exploit used to target phone of serbian student activist · note 5 cellebrite zero-day exploit used to target phone of serbian student activist  cve-2024-53104 cve-2024-53197 cve-2024-50302  vulnerabilities other other note 5 article https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434 vulnerabilities other article cve-2024-53104 cve-2024-53197 cve-2024-50302  other 2025 linux kernel other resource \"cellebrite zero-day exploit used to target phone of serbian student activist · note 5\" (cve-2024-53104, cve-2024-53197, cve-2024-50302); url type: article. 2025 年 linux 内核other资料：「cellebrite zero-day exploit used to target phone of serbian student activist · note 5」（cve-2024-53104、cve-2024-53197、cve-2024-50302）；url 类型：article。 # cellebrite zero-day exploit used to target phone of serbian student activist · note 5 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cellebrite zero-day exploit used to target phone of serbian student activist resource_label: note 5 resource_type: article resource_url: https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434 parent_primary_url: https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"cellebrite zero-day exploit used to target phone of serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [cve-2024-53104] [cve-2024-53197] [cve-2024 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "74b1c681f8a58605",
      "item_id": "bc2c679ba638896b",
      "slug": "2025-vulnerabilities-other-cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist-note-6",
      "year": 2025,
      "title": "Cellebrite zero-day exploit used to target phone of Serbian student activist · note 6",
      "item_title": "Cellebrite zero-day exploit used to target phone of Serbian student activist",
      "authors": [],
      "cves": [
        "CVE-2024-53104",
        "CVE-2024-53197",
        "CVE-2024-50302"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "note 6",
      "resource_type": "article",
      "resource_url": "https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222",
      "primary_url": "https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222",
      "parent_primary_url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist-note-6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Cellebrite zero-day exploit used to target phone of Serbian student activist · note 6 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Cellebrite zero-day exploit used to target phone of Serbian student activist resource_label: note 6 resource_type: article resource_url: https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222 parent_primary_url: https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Cellebrite zero-day exploit used to target phone of Serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [CVE-2024-53104] [CVE-2024-53197] [CVE-2024",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
        },
        {
          "label": "note 1",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197"
        },
        {
          "label": "note 2",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083"
        },
        {
          "label": "note 3",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428"
        },
        {
          "label": "note 4",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584"
        },
        {
          "label": "note 5",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434"
        },
        {
          "label": "note 6",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222"
        },
        {
          "label": "note 7",
          "type": "article",
          "url": "https://infosec.exchange/@twiddles/114343055353217091"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
          },
          {
            "label": "note 1",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197"
          },
          {
            "label": "note 2",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083"
          },
          {
            "label": "note 3",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428"
          },
          {
            "label": "note 4",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584"
          },
          {
            "label": "note 5",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434"
          },
          {
            "label": "note 6",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222"
          },
          {
            "label": "note 7",
            "type": "article",
            "url": "https://infosec.exchange/@twiddles/114343055353217091"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "Other",
        "article",
        "CVE-2024-53104",
        "CVE-2024-53197",
        "CVE-2024-50302"
      ],
      "affected_area": "",
      "exploit_stage": "Other",
      "summary_en": "2025 Linux kernel Other resource \"Cellebrite zero-day exploit used to target phone of Serbian student activist · note 6\" (CVE-2024-53104, CVE-2024-53197, CVE-2024-50302); URL type: article.",
      "summary_zh": "2025 年 Linux 内核Other资料：「Cellebrite zero-day exploit used to target phone of Serbian student activist · note 6」（CVE-2024-53104、CVE-2024-53197、CVE-2024-50302）；URL 类型：article。",
      "source_markdown": "[2025: \"Cellebrite zero-day exploit used to target phone of Serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [CVE-2024-53104] [CVE-2024-53197] [CVE-2024-50302] [[note 1](https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197)] [[note 2](https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083)] [[note 3](https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428)] [[note 4](https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584)] [[note 5](https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434)] [[note 6](https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222)] [[note 7](https://infosec.exchange/@twiddles/114343055353217091)]",
      "search_text": "cellebrite zero-day exploit used to target phone of serbian student activist · note 6 cellebrite zero-day exploit used to target phone of serbian student activist  cve-2024-53104 cve-2024-53197 cve-2024-50302  vulnerabilities other other note 6 article https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222 vulnerabilities other article cve-2024-53104 cve-2024-53197 cve-2024-50302  other 2025 linux kernel other resource \"cellebrite zero-day exploit used to target phone of serbian student activist · note 6\" (cve-2024-53104, cve-2024-53197, cve-2024-50302); url type: article. 2025 年 linux 内核other资料：「cellebrite zero-day exploit used to target phone of serbian student activist · note 6」（cve-2024-53104、cve-2024-53197、cve-2024-50302）；url 类型：article。 # cellebrite zero-day exploit used to target phone of serbian student activist · note 6 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cellebrite zero-day exploit used to target phone of serbian student activist resource_label: note 6 resource_type: article resource_url: https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222 parent_primary_url: https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"cellebrite zero-day exploit used to target phone of serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [cve-2024-53104] [cve-2024-53197] [cve-2024 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "3a63af1bec6121dd",
      "item_id": "bc2c679ba638896b",
      "slug": "2025-vulnerabilities-other-cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist-note-7",
      "year": 2025,
      "title": "Cellebrite zero-day exploit used to target phone of Serbian student activist · note 7",
      "item_title": "Cellebrite zero-day exploit used to target phone of Serbian student activist",
      "authors": [],
      "cves": [
        "CVE-2024-53104",
        "CVE-2024-53197",
        "CVE-2024-50302"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "note 7",
      "resource_type": "article",
      "resource_url": "https://infosec.exchange/@twiddles/114343055353217091",
      "primary_url": "https://infosec.exchange/@twiddles/114343055353217091",
      "parent_primary_url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist-note-7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Cellebrite zero-day exploit used to target phone of Serbian student activist · note 7 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Cellebrite zero-day exploit used to target phone of Serbian student activist resource_label: note 7 resource_type: article resource_url: https://infosec.exchange/@twiddles/114343055353217091 parent_primary_url: https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Cellebrite zero-day exploit used to target phone of Serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [CVE-2024-53104] [CVE-2024-53197] [CVE-2024-50302] [[",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
        },
        {
          "label": "note 1",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197"
        },
        {
          "label": "note 2",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083"
        },
        {
          "label": "note 3",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428"
        },
        {
          "label": "note 4",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584"
        },
        {
          "label": "note 5",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434"
        },
        {
          "label": "note 6",
          "type": "article",
          "url": "https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222"
        },
        {
          "label": "note 7",
          "type": "article",
          "url": "https://infosec.exchange/@twiddles/114343055353217091"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
          },
          {
            "label": "note 1",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197"
          },
          {
            "label": "note 2",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083"
          },
          {
            "label": "note 3",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428"
          },
          {
            "label": "note 4",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584"
          },
          {
            "label": "note 5",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434"
          },
          {
            "label": "note 6",
            "type": "article",
            "url": "https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222"
          },
          {
            "label": "note 7",
            "type": "article",
            "url": "https://infosec.exchange/@twiddles/114343055353217091"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerabilities",
        "Other",
        "article",
        "CVE-2024-53104",
        "CVE-2024-53197",
        "CVE-2024-50302"
      ],
      "affected_area": "",
      "exploit_stage": "Other",
      "summary_en": "2025 Linux kernel Other resource \"Cellebrite zero-day exploit used to target phone of Serbian student activist · note 7\" (CVE-2024-53104, CVE-2024-53197, CVE-2024-50302); URL type: article.",
      "summary_zh": "2025 年 Linux 内核Other资料：「Cellebrite zero-day exploit used to target phone of Serbian student activist · note 7」（CVE-2024-53104、CVE-2024-53197、CVE-2024-50302）；URL 类型：article。",
      "source_markdown": "[2025: \"Cellebrite zero-day exploit used to target phone of Serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [CVE-2024-53104] [CVE-2024-53197] [CVE-2024-50302] [[note 1](https://infosec.exchange/@zhuowei@notnow.dev/114130367739741197)] [[note 2](https://infosec.exchange/@zhuowei@notnow.dev/114323100736073083)] [[note 3](https://infosec.exchange/@zhuowei@notnow.dev/114329166341368428)] [[note 4](https://infosec.exchange/@zhuowei@notnow.dev/114405047904139584)] [[note 5](https://infosec.exchange/@zhuowei@notnow.dev/114453583508015434)] [[note 6](https://infosec.exchange/@zhuowei@notnow.dev/114531934296778222)] [[note 7](https://infosec.exchange/@twiddles/114343055353217091)]",
      "search_text": "cellebrite zero-day exploit used to target phone of serbian student activist · note 7 cellebrite zero-day exploit used to target phone of serbian student activist  cve-2024-53104 cve-2024-53197 cve-2024-50302  vulnerabilities other other note 7 article https://infosec.exchange/@twiddles/114343055353217091 vulnerabilities other article cve-2024-53104 cve-2024-53197 cve-2024-50302  other 2025 linux kernel other resource \"cellebrite zero-day exploit used to target phone of serbian student activist · note 7\" (cve-2024-53104, cve-2024-53197, cve-2024-50302); url type: article. 2025 年 linux 内核other资料：「cellebrite zero-day exploit used to target phone of serbian student activist · note 7」（cve-2024-53104、cve-2024-53197、cve-2024-50302）；url 类型：article。 # cellebrite zero-day exploit used to target phone of serbian student activist · note 7 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cellebrite zero-day exploit used to target phone of serbian student activist resource_label: note 7 resource_type: article resource_url: https://infosec.exchange/@twiddles/114343055353217091 parent_primary_url: https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"cellebrite zero-day exploit used to target phone of serbian student activist\"](https://securitylab.amnesty.org/latest/2025/02/cellebrite-zero-day-exploit-used-to-target-phone-of-serbian-student-activist/) [article] [cve-2024-53104] [cve-2024-53197] [cve-2024-50302] [[ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "c740a303e015e990",
      "item_id": "8bf2d048df23890b",
      "slug": "2025-vulnerabilities-other-accidentally-uncovering-a-seven-years-old-vulnerability-in-the-linux-kernel-primary",
      "year": 2025,
      "title": "Accidentally uncovering a seven years old vulnerability in the Linux kernel",
      "item_title": "Accidentally uncovering a seven years old vulnerability in the Linux kernel",
      "authors": [
        "Anderson Nascimento"
      ],
      "cves": [
        "CVE-2024-36904"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://allelesecurity.com/accidentally-uncovering-a-seven-years-old-vulnerability-in-the-linux-kernel/",
      "primary_url": "https://allelesecurity.com/accidentally-uncovering-a-seven-years-old-vulnerability-in-the-linux-kernel/",
      "parent_primary_url": "https://allelesecurity.com/accidentally-uncovering-a-seven-years-old-vulnerability-in-the-linux-kernel/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-accidentally-uncovering-a-seven-years-old-vulnerability-in-the-linux-kernel-primary.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Accidentally uncovering a seven years old vulnerability in the Linux kernel record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Accidentally uncovering a seven years old vulnerability in the Linux kernel resource_label: primary resource_type: article resource_url: https://allelesecurity.com/accidentally-uncovering-a-seven-years-old-vulnerability-in-the-linux-kernel/ parent_primary_url: https://allelesecurity.com/accidentally-uncovering-a-seven-years-old-vulnerability-in-the-linux-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Accidentally uncovering a seven years old vulnerability in the Linux kernel\" by Anderson Nascimento](https://allelesecurity.com/accidentally-uncovering-a-seven-years-old-vulnerability-in-the-linux-kernel/) [article] [CVE-2024-36904] cves: CVE-2024-3",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://allelesecurity.com/accidentally-uncovering-a-seven-years-old-vulnerability-in-the-linux-kernel/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://allelesecurity.com/accidentally-uncovering-a-seven-years-old-vulnerability-in-the-linux-kernel/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "linux_kernel"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "A seven-year-old vulnerability in the Linux kernel was uncovered accidentally.",
      "summary_zh": "在Linux内核中意外发现了一个七年的漏洞。",
      "source_markdown": "[2025: \"Accidentally uncovering a seven years old vulnerability in the Linux kernel\" by Anderson Nascimento](https://allelesecurity.com/accidentally-uncovering-a-seven-years-old-vulnerability-in-the-linux-kernel/) [article] [CVE-2024-36904]",
      "search_text": "accidentally uncovering a seven years old vulnerability in the linux kernel accidentally uncovering a seven years old vulnerability in the linux kernel anderson nascimento cve-2024-36904  vulnerabilities other other primary article https://allelesecurity.com/accidentally-uncovering-a-seven-years-old-vulnerability-in-the-linux-kernel/ vulnerability linux_kernel  discovery a seven-year-old vulnerability in the linux kernel was uncovered accidentally. 在linux内核中意外发现了一个七年的漏洞。 # accidentally uncovering a seven years old vulnerability in the linux kernel record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: accidentally uncovering a seven years old vulnerability in the linux kernel resource_label: primary resource_type: article resource_url: https://allelesecurity.com/accidentally-uncovering-a-seven-years-old-vulnerability-in-the-linux-kernel/ parent_primary_url: https://allelesecurity.com/accidentally-uncovering-a-seven-years-old-vulnerability-in-the-linux-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"accidentally uncovering a seven years old vulnerability in the linux kernel\" by anderson nascimento](https://allelesecurity.com/accidentally-uncovering-a-seven-years-old-vulnerability-in-the-linux-kernel/) [article] [cve-2024-36904] cves: cve-2024-3 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "eaf8a1b2ec669740",
      "item_id": "7691e57b43eb88eb",
      "slug": "2025-vulnerabilities-other-linux-kernel-out-of-bounds-write-in-ksmbd-vfs-stream-write-primary-7548e79d",
      "year": 2025,
      "title": "Linux Kernel: Out of bounds Write in ksmbd_vfs_stream_write",
      "item_title": "Linux Kernel: Out of bounds Write in ksmbd_vfs_stream_write",
      "authors": [
        "Jordy Zomer"
      ],
      "cves": [
        "CVE-2024-56626"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/google/security-research/security/advisories/GHSA-qmm2-xfcw-4r29",
      "primary_url": "https://github.com/google/security-research/security/advisories/GHSA-qmm2-xfcw-4r29",
      "parent_primary_url": "https://github.com/google/security-research/security/advisories/GHSA-qmm2-xfcw-4r29",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-linux-kernel-out-of-bounds-write-in-ksmbd-vfs-stream-write-primary-7548e79d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel: Out of bounds Write in ksmbd_vfs_stream_write record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Linux Kernel: Out of bounds Write in ksmbd_vfs_stream_write resource_label: primary resource_type: article resource_url: https://github.com/google/security-research/security/advisories/GHSA-qmm2-xfcw-4r29 parent_primary_url: https://github.com/google/security-research/security/advisories/GHSA-qmm2-xfcw-4r29 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Linux Kernel: Out of bounds Write in ksmbd_vfs_stream_write\" by Jordy Zomer](https://github.com/google/security-research/security/advisories/GHSA-qmm2-xfcw-4r29) [article] [CVE-2024-56626] cves: CVE-2024-56626 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android product",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-qmm2-xfcw-4r29"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-qmm2-xfcw-4r29"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/security-research/security/advisories/GHSA-qmm2-xfcw-4r29"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "linux_kernel"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "An out-of-bounds write vulnerability was identified in the ksmbd_vfs_stream_write function of the Linux kernel.",
      "summary_zh": "在Linux内核的ksmbd_vfs_stream_write函数中发现了越界写漏洞。",
      "source_markdown": "[2025: \"Linux Kernel: Out of bounds Write in ksmbd_vfs_stream_write\" by Jordy Zomer](https://github.com/google/security-research/security/advisories/GHSA-qmm2-xfcw-4r29) [article] [CVE-2024-56626]",
      "search_text": "linux kernel: out of bounds write in ksmbd_vfs_stream_write linux kernel: out of bounds write in ksmbd_vfs_stream_write jordy zomer cve-2024-56626  vulnerabilities other other primary article https://github.com/google/security-research/security/advisories/ghsa-qmm2-xfcw-4r29 vulnerability linux_kernel  discovery an out-of-bounds write vulnerability was identified in the ksmbd_vfs_stream_write function of the linux kernel. 在linux内核的ksmbd_vfs_stream_write函数中发现了越界写漏洞。 # linux kernel: out of bounds write in ksmbd_vfs_stream_write record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: linux kernel: out of bounds write in ksmbd_vfs_stream_write resource_label: primary resource_type: article resource_url: https://github.com/google/security-research/security/advisories/ghsa-qmm2-xfcw-4r29 parent_primary_url: https://github.com/google/security-research/security/advisories/ghsa-qmm2-xfcw-4r29 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"linux kernel: out of bounds write in ksmbd_vfs_stream_write\" by jordy zomer](https://github.com/google/security-research/security/advisories/ghsa-qmm2-xfcw-4r29) [article] [cve-2024-56626] cves: cve-2024-56626 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android product unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "784234d7915219d5",
      "item_id": "7149f318177623f8",
      "slug": "2025-vulnerabilities-other-linux-kernel-out-of-bounds-read-in-ksmbd-vfs-stream-read-primary-e548a6c7",
      "year": 2025,
      "title": "Linux Kernel: Out of bounds Read in ksmbd_vfs_stream_read",
      "item_title": "Linux Kernel: Out of bounds Read in ksmbd_vfs_stream_read",
      "authors": [
        "Jordy Zomer"
      ],
      "cves": [
        "CVE-2024-56627"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/google/security-research/security/advisories/GHSA-gqrv-6fcf-hvv8",
      "primary_url": "https://github.com/google/security-research/security/advisories/GHSA-gqrv-6fcf-hvv8",
      "parent_primary_url": "https://github.com/google/security-research/security/advisories/GHSA-gqrv-6fcf-hvv8",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-linux-kernel-out-of-bounds-read-in-ksmbd-vfs-stream-read-primary-e548a6c7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel: Out of bounds Read in ksmbd_vfs_stream_read record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Linux Kernel: Out of bounds Read in ksmbd_vfs_stream_read resource_label: primary resource_type: article resource_url: https://github.com/google/security-research/security/advisories/GHSA-gqrv-6fcf-hvv8 parent_primary_url: https://github.com/google/security-research/security/advisories/GHSA-gqrv-6fcf-hvv8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Linux Kernel: Out of bounds Read in ksmbd_vfs_stream_read\" by Jordy Zomer](https://github.com/google/security-research/security/advisories/GHSA-gqrv-6fcf-hvv8) [article] [CVE-2024-56627] cves: CVE-2024-56627 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production im",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-gqrv-6fcf-hvv8"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-gqrv-6fcf-hvv8"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/security-research/security/advisories/GHSA-gqrv-6fcf-hvv8"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "linux_kernel"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "An out-of-bounds read vulnerability was found in the ksmbd_vfs_stream_read function of the Linux kernel.",
      "summary_zh": "在Linux内核的ksmbd_vfs_stream_read函数中发现了越界读漏洞。",
      "source_markdown": "[2025: \"Linux Kernel: Out of bounds Read in ksmbd_vfs_stream_read\" by Jordy Zomer](https://github.com/google/security-research/security/advisories/GHSA-gqrv-6fcf-hvv8) [article] [CVE-2024-56627]",
      "search_text": "linux kernel: out of bounds read in ksmbd_vfs_stream_read linux kernel: out of bounds read in ksmbd_vfs_stream_read jordy zomer cve-2024-56627  vulnerabilities other other primary article https://github.com/google/security-research/security/advisories/ghsa-gqrv-6fcf-hvv8 vulnerability linux_kernel  discovery an out-of-bounds read vulnerability was found in the ksmbd_vfs_stream_read function of the linux kernel. 在linux内核的ksmbd_vfs_stream_read函数中发现了越界读漏洞。 # linux kernel: out of bounds read in ksmbd_vfs_stream_read record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: linux kernel: out of bounds read in ksmbd_vfs_stream_read resource_label: primary resource_type: article resource_url: https://github.com/google/security-research/security/advisories/ghsa-gqrv-6fcf-hvv8 parent_primary_url: https://github.com/google/security-research/security/advisories/ghsa-gqrv-6fcf-hvv8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"linux kernel: out of bounds read in ksmbd_vfs_stream_read\" by jordy zomer](https://github.com/google/security-research/security/advisories/ghsa-gqrv-6fcf-hvv8) [article] [cve-2024-56627] cves: cve-2024-56627 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production im unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ecb8e5f88294a4b1",
      "item_id": "b58be4807b89dee6",
      "slug": "2025-vulnerabilities-other-linux-kernel-integer-overflow-in-ebpf-xsk-map-delete-elem-leads-to-out-of-bounds-pr",
      "year": 2025,
      "title": "Linux Kernel: Integer Overflow in eBPF XSK map_delete_elem Leads to Out-of-Bounds",
      "item_title": "Linux Kernel: Integer Overflow in eBPF XSK map_delete_elem Leads to Out-of-Bounds",
      "authors": [
        "Jordy Zomer"
      ],
      "cves": [
        "CVE-2024-56614"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/google/security-research/security/advisories/GHSA-cqc2-6j63-6qrx",
      "primary_url": "https://github.com/google/security-research/security/advisories/GHSA-cqc2-6j63-6qrx",
      "parent_primary_url": "https://github.com/google/security-research/security/advisories/GHSA-cqc2-6j63-6qrx",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-linux-kernel-integer-overflow-in-ebpf-xsk-map-delete-elem-leads-to-out-of-bounds-pr.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel: Integer Overflow in eBPF XSK map_delete_elem Leads to Out-of-Bounds record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Linux Kernel: Integer Overflow in eBPF XSK map_delete_elem Leads to Out-of-Bounds resource_label: primary resource_type: article resource_url: https://github.com/google/security-research/security/advisories/GHSA-cqc2-6j63-6qrx parent_primary_url: https://github.com/google/security-research/security/advisories/GHSA-cqc2-6j63-6qrx source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Linux Kernel: Integer Overflow in eBPF XSK map_delete_elem Leads to Out-of-Bounds\" by Jordy Zomer](https://github.com/google/security-research/security/advisories/GHSA-cqc2-6j63-6qrx) [article] [CVE-2024-56614] cves: CVE-2024-56614 android_impact_status: unknown android_impact",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-cqc2-6j63-6qrx"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-cqc2-6j63-6qrx"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/security-research/security/advisories/GHSA-cqc2-6j63-6qrx"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "linux_kernel"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "An integer overflow vulnerability in eBPF's XSK map_delete_elem leads to out-of-bounds access in the Linux kernel.",
      "summary_zh": "Linux内核中eBPF的XSK map_delete_elem中的整数溢出导致越界访问。",
      "source_markdown": "[2025: \"Linux Kernel: Integer Overflow in eBPF XSK map_delete_elem Leads to Out-of-Bounds\" by Jordy Zomer](https://github.com/google/security-research/security/advisories/GHSA-cqc2-6j63-6qrx) [article] [CVE-2024-56614]",
      "search_text": "linux kernel: integer overflow in ebpf xsk map_delete_elem leads to out-of-bounds linux kernel: integer overflow in ebpf xsk map_delete_elem leads to out-of-bounds jordy zomer cve-2024-56614  vulnerabilities other other primary article https://github.com/google/security-research/security/advisories/ghsa-cqc2-6j63-6qrx vulnerability linux_kernel  discovery an integer overflow vulnerability in ebpf's xsk map_delete_elem leads to out-of-bounds access in the linux kernel. linux内核中ebpf的xsk map_delete_elem中的整数溢出导致越界访问。 # linux kernel: integer overflow in ebpf xsk map_delete_elem leads to out-of-bounds record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: linux kernel: integer overflow in ebpf xsk map_delete_elem leads to out-of-bounds resource_label: primary resource_type: article resource_url: https://github.com/google/security-research/security/advisories/ghsa-cqc2-6j63-6qrx parent_primary_url: https://github.com/google/security-research/security/advisories/ghsa-cqc2-6j63-6qrx source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"linux kernel: integer overflow in ebpf xsk map_delete_elem leads to out-of-bounds\" by jordy zomer](https://github.com/google/security-research/security/advisories/ghsa-cqc2-6j63-6qrx) [article] [cve-2024-56614] cves: cve-2024-56614 android_impact_status: unknown android_impact unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "0a4397f89490f605",
      "item_id": "cc24b4a76c313b2e",
      "slug": "2025-vulnerabilities-other-integer-overflow-in-ebpf-devmap-map-delete-elem-leads-to-out-of-bounds-primary-6820",
      "year": 2025,
      "title": "Integer Overflow in eBPF DEVMAP map_delete_elem Leads to Out-of-Bounds",
      "item_title": "Integer Overflow in eBPF DEVMAP map_delete_elem Leads to Out-of-Bounds",
      "authors": [
        "Jordy Zomer"
      ],
      "cves": [
        "CVE-2024-56615"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/google/security-research/security/advisories/GHSA-fphp-6498-x998",
      "primary_url": "https://github.com/google/security-research/security/advisories/GHSA-fphp-6498-x998",
      "parent_primary_url": "https://github.com/google/security-research/security/advisories/GHSA-fphp-6498-x998",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-integer-overflow-in-ebpf-devmap-map-delete-elem-leads-to-out-of-bounds-primary-6820.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Integer Overflow in eBPF DEVMAP map_delete_elem Leads to Out-of-Bounds record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Integer Overflow in eBPF DEVMAP map_delete_elem Leads to Out-of-Bounds resource_label: primary resource_type: article resource_url: https://github.com/google/security-research/security/advisories/GHSA-fphp-6498-x998 parent_primary_url: https://github.com/google/security-research/security/advisories/GHSA-fphp-6498-x998 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Integer Overflow in eBPF DEVMAP map_delete_elem Leads to Out-of-Bounds\" by Jordy Zomer](https://github.com/google/security-research/security/advisories/GHSA-fphp-6498-x998) [article] [CVE-2024-56615] cves: CVE-2024-56615 android_impact_status: unknown android_impact_reason: Linux kernel vulnerabili",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-fphp-6498-x998"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-fphp-6498-x998"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/security-research/security/advisories/GHSA-fphp-6498-x998"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "linux_kernel"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "An integer overflow vulnerability in eBPF's DEVMAP map_delete_elem results in out-of-bounds access in the Linux kernel.",
      "summary_zh": "Linux内核中eBPF的DEVMAP map_delete_elem中的整数溢出导致越界访问。",
      "source_markdown": "[2025: \"Integer Overflow in eBPF DEVMAP map_delete_elem Leads to Out-of-Bounds\" by Jordy Zomer](https://github.com/google/security-research/security/advisories/GHSA-fphp-6498-x998) [article] [CVE-2024-56615]",
      "search_text": "integer overflow in ebpf devmap map_delete_elem leads to out-of-bounds integer overflow in ebpf devmap map_delete_elem leads to out-of-bounds jordy zomer cve-2024-56615  vulnerabilities other other primary article https://github.com/google/security-research/security/advisories/ghsa-fphp-6498-x998 vulnerability linux_kernel  discovery an integer overflow vulnerability in ebpf's devmap map_delete_elem results in out-of-bounds access in the linux kernel. linux内核中ebpf的devmap map_delete_elem中的整数溢出导致越界访问。 # integer overflow in ebpf devmap map_delete_elem leads to out-of-bounds record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: integer overflow in ebpf devmap map_delete_elem leads to out-of-bounds resource_label: primary resource_type: article resource_url: https://github.com/google/security-research/security/advisories/ghsa-fphp-6498-x998 parent_primary_url: https://github.com/google/security-research/security/advisories/ghsa-fphp-6498-x998 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"integer overflow in ebpf devmap map_delete_elem leads to out-of-bounds\" by jordy zomer](https://github.com/google/security-research/security/advisories/ghsa-fphp-6498-x998) [article] [cve-2024-56615] cves: cve-2024-56615 android_impact_status: unknown android_impact_reason: linux kernel vulnerabili unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "04bf4aad2f759605",
      "item_id": "8d177fc204a8e27b",
      "slug": "2025-vulnerabilities-other-some-casual-notes-for-cve-2024-26921-primary-397bb66a",
      "year": 2025,
      "title": "Some Casual Notes for CVE-2024-26921",
      "item_title": "Some Casual Notes for CVE-2024-26921",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2024-26921"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/01/04/some-casual-notes-for-cve-2024-26921.html",
      "primary_url": "https://u1f383.github.io/linux/2025/01/04/some-casual-notes-for-cve-2024-26921.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/01/04/some-casual-notes-for-cve-2024-26921.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2025-vulnerabilities-other-some-casual-notes-for-cve-2024-26921-primary-397bb66a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Some Casual Notes for CVE-2024-26921 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Some Casual Notes for CVE-2024-26921 resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/01/04/some-casual-notes-for-cve-2024-26921.html parent_primary_url: https://u1f383.github.io/linux/2025/01/04/some-casual-notes-for-cve-2024-26921.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"Some Casual Notes for CVE-2024-26921\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/01/04/some-casual-notes-for-cve-2024-26921.html) [article] [CVE-2024-26921] cves: CVE-2024-26921 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_imp",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/01/04/some-casual-notes-for-cve-2024-26921.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/01/04/some-casual-notes-for-cve-2024-26921.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/01/04/some-casual-notes-for-cve-2024-26921.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "linux_kernel"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "Casual notes discuss the implications of CVE-2024-26921 in the Linux kernel.",
      "summary_zh": "随笔讨论了Linux内核中CVE-2024-26921的影响。",
      "source_markdown": "[2025: \"Some Casual Notes for CVE-2024-26921\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/01/04/some-casual-notes-for-cve-2024-26921.html) [article] [CVE-2024-26921]",
      "search_text": "some casual notes for cve-2024-26921 some casual notes for cve-2024-26921 pumpkin chang cve-2024-26921  vulnerabilities other other primary article https://u1f383.github.io/linux/2025/01/04/some-casual-notes-for-cve-2024-26921.html vulnerability linux_kernel  discovery casual notes discuss the implications of cve-2024-26921 in the linux kernel. 随笔讨论了linux内核中cve-2024-26921的影响。 # some casual notes for cve-2024-26921 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: some casual notes for cve-2024-26921 resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/01/04/some-casual-notes-for-cve-2024-26921.html parent_primary_url: https://u1f383.github.io/linux/2025/01/04/some-casual-notes-for-cve-2024-26921.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2025: \"some casual notes for cve-2024-26921\" by pumpkin chang](https://u1f383.github.io/linux/2025/01/04/some-casual-notes-for-cve-2024-26921.html) [article] [cve-2024-26921] cves: cve-2024-26921 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_imp unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3da3bbe627df6cbd",
      "item_id": "b72334c9c6d0c1b2",
      "slug": "2024-vulnerabilities-other-linux-kernel-icmpv6-cve-2023-6200-primary-c6974eaf",
      "year": 2024,
      "title": "Linux Kernel ICMPv6 & CVE-2023-6200",
      "item_title": "Linux Kernel ICMPv6 & CVE-2023-6200",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2023-6200"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2024/12/04/linux-kernel-icmpv6-and-cve-2023-6200.html",
      "primary_url": "https://u1f383.github.io/linux/2024/12/04/linux-kernel-icmpv6-and-cve-2023-6200.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2024/12/04/linux-kernel-icmpv6-and-cve-2023-6200.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-linux-kernel-icmpv6-cve-2023-6200-primary-c6974eaf.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel ICMPv6 & CVE-2023-6200 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Linux Kernel ICMPv6 & CVE-2023-6200 resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/12/04/linux-kernel-icmpv6-and-cve-2023-6200.html parent_primary_url: https://u1f383.github.io/linux/2024/12/04/linux-kernel-icmpv6-and-cve-2023-6200.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"Linux Kernel ICMPv6 & CVE-2023-6200\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/12/04/linux-kernel-icmpv6-and-cve-2023-6200.html) [article] [CVE-2023-6200] cves: CVE-2023-6200 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impac",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/12/04/linux-kernel-icmpv6-and-cve-2023-6200.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/12/04/linux-kernel-icmpv6-and-cve-2023-6200.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2024/12/04/linux-kernel-icmpv6-and-cve-2023-6200.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "linux_kernel"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "An analysis of the Linux kernel's ICMPv6 vulnerability CVE-2023-6200 is presented.",
      "summary_zh": "对Linux内核的ICMPv6漏洞CVE-2023-6200进行了分析。",
      "source_markdown": "[2024: \"Linux Kernel ICMPv6 & CVE-2023-6200\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/12/04/linux-kernel-icmpv6-and-cve-2023-6200.html) [article] [CVE-2023-6200]",
      "search_text": "linux kernel icmpv6 & cve-2023-6200 linux kernel icmpv6 & cve-2023-6200 pumpkin chang cve-2023-6200  vulnerabilities other other primary article https://u1f383.github.io/linux/2024/12/04/linux-kernel-icmpv6-and-cve-2023-6200.html vulnerability linux_kernel  discovery an analysis of the linux kernel's icmpv6 vulnerability cve-2023-6200 is presented. 对linux内核的icmpv6漏洞cve-2023-6200进行了分析。 # linux kernel icmpv6 & cve-2023-6200 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: linux kernel icmpv6 & cve-2023-6200 resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/12/04/linux-kernel-icmpv6-and-cve-2023-6200.html parent_primary_url: https://u1f383.github.io/linux/2024/12/04/linux-kernel-icmpv6-and-cve-2023-6200.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"linux kernel icmpv6 & cve-2023-6200\" by pumpkin chang](https://u1f383.github.io/linux/2024/12/04/linux-kernel-icmpv6-and-cve-2023-6200.html) [article] [cve-2023-6200] cves: cve-2023-6200 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impac unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "81026f723503f081",
      "item_id": "2ebeb127116e587d",
      "slug": "2024-vulnerabilities-other-linux-kernel-perf-cve-2023-5717-quick-analysis-primary-38664ef1",
      "year": 2024,
      "title": "Linux Kernel Perf CVE-2023-5717 Quick Analysis",
      "item_title": "Linux Kernel Perf CVE-2023-5717 Quick Analysis",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2023-5717"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html",
      "primary_url": "https://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-linux-kernel-perf-cve-2023-5717-quick-analysis-primary-38664ef1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Perf CVE-2023-5717 Quick Analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Linux Kernel Perf CVE-2023-5717 Quick Analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html parent_primary_url: https://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"Linux Kernel Perf CVE-2023-5717 Quick Analysis\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html) [article] [CVE-2023-5717] cves: CVE-2023-5717 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impac",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "linux_kernel"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "A quick analysis of the Linux kernel Perf vulnerability CVE-2023-5717 is provided.",
      "summary_zh": "提供了对Linux内核Perf漏洞CVE-2023-5717的快速分析。",
      "source_markdown": "[2024: \"Linux Kernel Perf CVE-2023-5717 Quick Analysis\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html) [article] [CVE-2023-5717]",
      "search_text": "linux kernel perf cve-2023-5717 quick analysis linux kernel perf cve-2023-5717 quick analysis pumpkin chang cve-2023-5717  vulnerabilities other other primary article https://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html vulnerability linux_kernel  discovery a quick analysis of the linux kernel perf vulnerability cve-2023-5717 is provided. 提供了对linux内核perf漏洞cve-2023-5717的快速分析。 # linux kernel perf cve-2023-5717 quick analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: linux kernel perf cve-2023-5717 quick analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html parent_primary_url: https://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"linux kernel perf cve-2023-5717 quick analysis\" by pumpkin chang](https://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html) [article] [cve-2023-5717] cves: cve-2023-5717 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impac unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3d3467d9b09155d5",
      "item_id": "4ad946079f1997e2",
      "slug": "2024-vulnerabilities-other-a-quick-note-for-perf-cve-2024-46713-primary-260bd6a1",
      "year": 2024,
      "title": "A Quick Note for Perf CVE-2024-46713",
      "item_title": "A Quick Note for Perf CVE-2024-46713",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2024-46713"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2024/11/15/a-quick-note-for-perf-cve-2024-46713.html",
      "primary_url": "https://u1f383.github.io/linux/2024/11/15/a-quick-note-for-perf-cve-2024-46713.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2024/11/15/a-quick-note-for-perf-cve-2024-46713.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-a-quick-note-for-perf-cve-2024-46713-primary-260bd6a1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Quick Note for Perf CVE-2024-46713 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: A Quick Note for Perf CVE-2024-46713 resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/11/15/a-quick-note-for-perf-cve-2024-46713.html parent_primary_url: https://u1f383.github.io/linux/2024/11/15/a-quick-note-for-perf-cve-2024-46713.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"A Quick Note for Perf CVE-2024-46713\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/11/15/a-quick-note-for-perf-cve-2024-46713.html) [article] [CVE-2024-46713] cves: CVE-2024-46713 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_imp",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/11/15/a-quick-note-for-perf-cve-2024-46713.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/11/15/a-quick-note-for-perf-cve-2024-46713.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2024/11/15/a-quick-note-for-perf-cve-2024-46713.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "linux_kernel"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "A brief note discusses the Perf vulnerability CVE-2024-46713 in the Linux kernel.",
      "summary_zh": "简要说明了Linux内核中Perf漏洞CVE-2024-46713。",
      "source_markdown": "[2024: \"A Quick Note for Perf CVE-2024-46713\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/11/15/a-quick-note-for-perf-cve-2024-46713.html) [article] [CVE-2024-46713]",
      "search_text": "a quick note for perf cve-2024-46713 a quick note for perf cve-2024-46713 pumpkin chang cve-2024-46713  vulnerabilities other other primary article https://u1f383.github.io/linux/2024/11/15/a-quick-note-for-perf-cve-2024-46713.html vulnerability linux_kernel  discovery a brief note discusses the perf vulnerability cve-2024-46713 in the linux kernel. 简要说明了linux内核中perf漏洞cve-2024-46713。 # a quick note for perf cve-2024-46713 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: a quick note for perf cve-2024-46713 resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/11/15/a-quick-note-for-perf-cve-2024-46713.html parent_primary_url: https://u1f383.github.io/linux/2024/11/15/a-quick-note-for-perf-cve-2024-46713.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"a quick note for perf cve-2024-46713\" by pumpkin chang](https://u1f383.github.io/linux/2024/11/15/a-quick-note-for-perf-cve-2024-46713.html) [article] [cve-2024-46713] cves: cve-2024-46713 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_imp unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "52a8c0976ef5d8cc",
      "item_id": "f55d1df3c7151792",
      "slug": "2024-vulnerabilities-other-linux-kernel-perf-cve-2023-6931-analysis-primary-38f044f2",
      "year": 2024,
      "title": "Linux Kernel Perf CVE-2023-6931 Analysis",
      "item_title": "Linux Kernel Perf CVE-2023-6931 Analysis",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2023-6931"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2024/11/14/linux-kernel-perf-cve-2023-6931-analysis.html",
      "primary_url": "https://u1f383.github.io/linux/2024/11/14/linux-kernel-perf-cve-2023-6931-analysis.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2024/11/14/linux-kernel-perf-cve-2023-6931-analysis.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-linux-kernel-perf-cve-2023-6931-analysis-primary-38f044f2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Perf CVE-2023-6931 Analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Linux Kernel Perf CVE-2023-6931 Analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/11/14/linux-kernel-perf-cve-2023-6931-analysis.html parent_primary_url: https://u1f383.github.io/linux/2024/11/14/linux-kernel-perf-cve-2023-6931-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"Linux Kernel Perf CVE-2023-6931 Analysis\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/11/14/linux-kernel-perf-cve-2023-6931-analysis.html) [article] [CVE-2023-6931] cves: CVE-2023-6931 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-ba",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/11/14/linux-kernel-perf-cve-2023-6931-analysis.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/11/14/linux-kernel-perf-cve-2023-6931-analysis.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2024/11/14/linux-kernel-perf-cve-2023-6931-analysis.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "linux_kernel"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "An analysis of the Linux kernel Perf vulnerability CVE-2023-6931 is shared.",
      "summary_zh": "分享了对Linux内核Perf漏洞CVE-2023-6931的分析。",
      "source_markdown": "[2024: \"Linux Kernel Perf CVE-2023-6931 Analysis\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/11/14/linux-kernel-perf-cve-2023-6931-analysis.html) [article] [CVE-2023-6931]",
      "search_text": "linux kernel perf cve-2023-6931 analysis linux kernel perf cve-2023-6931 analysis pumpkin chang cve-2023-6931  vulnerabilities other other primary article https://u1f383.github.io/linux/2024/11/14/linux-kernel-perf-cve-2023-6931-analysis.html vulnerability linux_kernel  discovery an analysis of the linux kernel perf vulnerability cve-2023-6931 is shared. 分享了对linux内核perf漏洞cve-2023-6931的分析。 # linux kernel perf cve-2023-6931 analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: linux kernel perf cve-2023-6931 analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/11/14/linux-kernel-perf-cve-2023-6931-analysis.html parent_primary_url: https://u1f383.github.io/linux/2024/11/14/linux-kernel-perf-cve-2023-6931-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"linux kernel perf cve-2023-6931 analysis\" by pumpkin chang](https://u1f383.github.io/linux/2024/11/14/linux-kernel-perf-cve-2023-6931-analysis.html) [article] [cve-2023-6931] cves: cve-2023-6931 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-ba unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "38539738e81bd039",
      "item_id": "790e5efaabd2c6c5",
      "slug": "2024-vulnerabilities-other-linux-kernel-vsock-1-day-analysis-primary-82242ba9",
      "year": 2024,
      "title": "Linux Kernel Vsock 1-day Analysis",
      "item_title": "Linux Kernel Vsock 1-day Analysis",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-UNKNOWN"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2024/11/12/linux-kernel-vsock-1-day-analysis.html",
      "primary_url": "https://u1f383.github.io/linux/2024/11/12/linux-kernel-vsock-1-day-analysis.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2024/11/12/linux-kernel-vsock-1-day-analysis.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-linux-kernel-vsock-1-day-analysis-primary-82242ba9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Vsock 1-day Analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Linux Kernel Vsock 1-day Analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/11/12/linux-kernel-vsock-1-day-analysis.html parent_primary_url: https://u1f383.github.io/linux/2024/11/12/linux-kernel-vsock-1-day-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"Linux Kernel Vsock 1-day Analysis\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/11/12/linux-kernel-vsock-1-day-analysis.html) [article] [CVE-UNKNOWN] cves: CVE-UNKNOWN android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impac",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/11/12/linux-kernel-vsock-1-day-analysis.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/11/12/linux-kernel-vsock-1-day-analysis.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2024/11/12/linux-kernel-vsock-1-day-analysis.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "linux_kernel"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "A one-day analysis of a Linux kernel Vsock vulnerability is presented.",
      "summary_zh": "对Linux内核Vsock漏洞进行了为期一天的分析。",
      "source_markdown": "[2024: \"Linux Kernel Vsock 1-day Analysis\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/11/12/linux-kernel-vsock-1-day-analysis.html) [article] [CVE-UNKNOWN]",
      "search_text": "linux kernel vsock 1-day analysis linux kernel vsock 1-day analysis pumpkin chang cve-unknown  vulnerabilities other other primary article https://u1f383.github.io/linux/2024/11/12/linux-kernel-vsock-1-day-analysis.html vulnerability linux_kernel  discovery a one-day analysis of a linux kernel vsock vulnerability is presented. 对linux内核vsock漏洞进行了为期一天的分析。 # linux kernel vsock 1-day analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: linux kernel vsock 1-day analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/11/12/linux-kernel-vsock-1-day-analysis.html parent_primary_url: https://u1f383.github.io/linux/2024/11/12/linux-kernel-vsock-1-day-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"linux kernel vsock 1-day analysis\" by pumpkin chang](https://u1f383.github.io/linux/2024/11/12/linux-kernel-vsock-1-day-analysis.html) [article] [cve-unknown] cves: cve-unknown android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impac unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "5d5bfc45ffe5f5c5",
      "item_id": "ddabc644bf1348aa",
      "slug": "2024-vulnerabilities-other-three-linux-net-sched-1-day-analysis-primary-e5eae127",
      "year": 2024,
      "title": "Three Linux net/sched 1-day Analysis",
      "item_title": "Three Linux net/sched 1-day Analysis",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2024-36974",
        "CVE-2023-0590"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2024/09/05/three-linux-net_sched-1-day-analysis.html",
      "primary_url": "https://u1f383.github.io/linux/2024/09/05/three-linux-net_sched-1-day-analysis.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2024/09/05/three-linux-net_sched-1-day-analysis.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-three-linux-net-sched-1-day-analysis-primary-e5eae127.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Three Linux net/sched 1-day Analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Three Linux net/sched 1-day Analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/09/05/three-linux-net_sched-1-day-analysis.html parent_primary_url: https://u1f383.github.io/linux/2024/09/05/three-linux-net_sched-1-day-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"Three Linux net/sched 1-day Analysis\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/09/05/three-linux-net_sched-1-day-analysis.html) [article] [CVE-2024-36974] [CVE-2023-0590] cves: CVE-2024-36974, CVE-2023-0590 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/09/05/three-linux-net_sched-1-day-analysis.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/09/05/three-linux-net_sched-1-day-analysis.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2024/09/05/three-linux-net_sched-1-day-analysis.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "linux_kernel"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "A one-day analysis of three Linux net/sched vulnerabilities is discussed.",
      "summary_zh": "讨论了三个Linux net/sched漏洞的为期一天的分析。",
      "source_markdown": "[2024: \"Three Linux net/sched 1-day Analysis\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/09/05/three-linux-net_sched-1-day-analysis.html) [article] [CVE-2024-36974] [CVE-2023-0590]",
      "search_text": "three linux net/sched 1-day analysis three linux net/sched 1-day analysis pumpkin chang cve-2024-36974 cve-2023-0590  vulnerabilities other other primary article https://u1f383.github.io/linux/2024/09/05/three-linux-net_sched-1-day-analysis.html vulnerability linux_kernel  discovery a one-day analysis of three linux net/sched vulnerabilities is discussed. 讨论了三个linux net/sched漏洞的为期一天的分析。 # three linux net/sched 1-day analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: three linux net/sched 1-day analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/09/05/three-linux-net_sched-1-day-analysis.html parent_primary_url: https://u1f383.github.io/linux/2024/09/05/three-linux-net_sched-1-day-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"three linux net/sched 1-day analysis\" by pumpkin chang](https://u1f383.github.io/linux/2024/09/05/three-linux-net_sched-1-day-analysis.html) [article] [cve-2024-36974] [cve-2023-0590] cves: cve-2024-36974, cve-2023-0590 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "d24b302b5331b28e",
      "item_id": "18506cc47391fa1b",
      "slug": "2024-vulnerabilities-other-two-linux-net-sched-1-day-analysis-primary-dfe70560",
      "year": 2024,
      "title": "Two Linux net/sched 1-day Analysis",
      "item_title": "Two Linux net/sched 1-day Analysis",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2024-36978"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2024/08/31/two-linux-net_sched-1-day-analysis.html",
      "primary_url": "https://u1f383.github.io/linux/2024/08/31/two-linux-net_sched-1-day-analysis.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2024/08/31/two-linux-net_sched-1-day-analysis.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-two-linux-net-sched-1-day-analysis-primary-dfe70560.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Two Linux net/sched 1-day Analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Two Linux net/sched 1-day Analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/08/31/two-linux-net_sched-1-day-analysis.html parent_primary_url: https://u1f383.github.io/linux/2024/08/31/two-linux-net_sched-1-day-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"Two Linux net/sched 1-day Analysis\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/08/31/two-linux-net_sched-1-day-analysis.html) [article] [CVE-2024-36978] cves: CVE-2024-36978 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/08/31/two-linux-net_sched-1-day-analysis.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/08/31/two-linux-net_sched-1-day-analysis.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2024/08/31/two-linux-net_sched-1-day-analysis.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "linux_kernel"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "A two-day analysis of Linux net/sched vulnerabilities is provided.",
      "summary_zh": "提供了对Linux net/sched漏洞的为期两天的分析。",
      "source_markdown": "[2024: \"Two Linux net/sched 1-day Analysis\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/08/31/two-linux-net_sched-1-day-analysis.html) [article] [CVE-2024-36978]",
      "search_text": "two linux net/sched 1-day analysis two linux net/sched 1-day analysis pumpkin chang cve-2024-36978  vulnerabilities other other primary article https://u1f383.github.io/linux/2024/08/31/two-linux-net_sched-1-day-analysis.html vulnerability linux_kernel  discovery a two-day analysis of linux net/sched vulnerabilities is provided. 提供了对linux net/sched漏洞的为期两天的分析。 # two linux net/sched 1-day analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: two linux net/sched 1-day analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/08/31/two-linux-net_sched-1-day-analysis.html parent_primary_url: https://u1f383.github.io/linux/2024/08/31/two-linux-net_sched-1-day-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"two linux net/sched 1-day analysis\" by pumpkin chang](https://u1f383.github.io/linux/2024/08/31/two-linux-net_sched-1-day-analysis.html) [article] [cve-2024-36978] cves: cve-2024-36978 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status:  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "49ebe5a8f6f7cad2",
      "item_id": "546a2559bdb857ae",
      "slug": "2024-vulnerabilities-other-cve-2024-41010-linux-net-sched-uaf-1-day-analysis-primary-19a9feb0",
      "year": 2024,
      "title": "CVE-2024-41010 - Linux net/sched UAF 1-day Analysis",
      "item_title": "CVE-2024-41010 - Linux net/sched UAF 1-day Analysis",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2024-41010"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2024/07/29/cve-2024-41010-linux-net_sched-uaf-1-day-analysis.html",
      "primary_url": "https://u1f383.github.io/linux/2024/07/29/cve-2024-41010-linux-net_sched-uaf-1-day-analysis.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2024/07/29/cve-2024-41010-linux-net_sched-uaf-1-day-analysis.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-cve-2024-41010-linux-net-sched-uaf-1-day-analysis-primary-19a9feb0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2024-41010 - Linux net/sched UAF 1-day Analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: CVE-2024-41010 - Linux net/sched UAF 1-day Analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/07/29/cve-2024-41010-linux-net_sched-uaf-1-day-analysis.html parent_primary_url: https://u1f383.github.io/linux/2024/07/29/cve-2024-41010-linux-net_sched-uaf-1-day-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"CVE-2024-41010 - Linux net/sched UAF 1-day Analysis\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/07/29/cve-2024-41010-linux-net_sched-uaf-1-day-analysis.html) [article] [CVE-2024-41010] cves: CVE-2024-41010 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/07/29/cve-2024-41010-linux-net_sched-uaf-1-day-analysis.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/07/29/cve-2024-41010-linux-net_sched-uaf-1-day-analysis.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2024/07/29/cve-2024-41010-linux-net_sched-uaf-1-day-analysis.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "linux_kernel"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "An analysis of the Linux net/sched UAF vulnerability CVE-2024-41010 is shared.",
      "summary_zh": "分享了对Linux net/sched UAF漏洞CVE-2024-41010的分析。",
      "source_markdown": "[2024: \"CVE-2024-41010 - Linux net/sched UAF 1-day Analysis\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/07/29/cve-2024-41010-linux-net_sched-uaf-1-day-analysis.html) [article] [CVE-2024-41010]",
      "search_text": "cve-2024-41010 - linux net/sched uaf 1-day analysis cve-2024-41010 - linux net/sched uaf 1-day analysis pumpkin chang cve-2024-41010  vulnerabilities other other primary article https://u1f383.github.io/linux/2024/07/29/cve-2024-41010-linux-net_sched-uaf-1-day-analysis.html vulnerability linux_kernel  discovery an analysis of the linux net/sched uaf vulnerability cve-2024-41010 is shared. 分享了对linux net/sched uaf漏洞cve-2024-41010的分析。 # cve-2024-41010 - linux net/sched uaf 1-day analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cve-2024-41010 - linux net/sched uaf 1-day analysis resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/07/29/cve-2024-41010-linux-net_sched-uaf-1-day-analysis.html parent_primary_url: https://u1f383.github.io/linux/2024/07/29/cve-2024-41010-linux-net_sched-uaf-1-day-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"cve-2024-41010 - linux net/sched uaf 1-day analysis\" by pumpkin chang](https://u1f383.github.io/linux/2024/07/29/cve-2024-41010-linux-net_sched-uaf-1-day-analysis.html) [article] [cve-2024-41010] cves: cve-2024-41010 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "98625b7958ee6310",
      "item_id": "3b20bb459935ccff",
      "slug": "2024-vulnerabilities-other-linux-ebpf-design-and-vulnerability-case-study-primary-661420eb",
      "year": 2024,
      "title": "Linux eBPF Design and Vulnerability Case Study",
      "item_title": "Linux eBPF Design and Vulnerability Case Study",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2024-41009",
        "CVE-2022-23222",
        "CVE-2023-52447"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2024/07/12/linux-eBPF-design-and-vulnerability-case-study-part-1.html",
      "primary_url": "https://u1f383.github.io/linux/2024/07/12/linux-eBPF-design-and-vulnerability-case-study-part-1.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2024/07/12/linux-eBPF-design-and-vulnerability-case-study-part-1.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-linux-ebpf-design-and-vulnerability-case-study-primary-661420eb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux eBPF Design and Vulnerability Case Study record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Linux eBPF Design and Vulnerability Case Study resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/07/12/linux-eBPF-design-and-vulnerability-case-study-part-1.html parent_primary_url: https://u1f383.github.io/linux/2024/07/12/linux-eBPF-design-and-vulnerability-case-study-part-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"Linux eBPF Design and Vulnerability Case Study\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/07/12/linux-eBPF-design-and-vulnerability-case-study-part-1.html) [article] [[part 2](https://u1f383.github.io/linux/2024/07/20/linux-eBPF-design-and-vulnerability-case-study-part-2.html)] [CVE-2024-41009] [CVE-",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/07/12/linux-eBPF-design-and-vulnerability-case-study-part-1.html"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/07/20/linux-eBPF-design-and-vulnerability-case-study-part-2.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/07/12/linux-eBPF-design-and-vulnerability-case-study-part-1.html"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/07/20/linux-eBPF-design-and-vulnerability-case-study-part-2.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2024/07/12/linux-eBPF-design-and-vulnerability-case-study-part-1.html",
        "https://u1f383.github.io/linux/2024/07/20/linux-eBPF-design-and-vulnerability-case-study-part-2.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "linux_kernel"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "A case study on Linux eBPF design and vulnerabilities is presented.",
      "summary_zh": "提供了关于Linux eBPF设计和漏洞的案例研究。",
      "source_markdown": "[2024: \"Linux eBPF Design and Vulnerability Case Study\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/07/12/linux-eBPF-design-and-vulnerability-case-study-part-1.html) [article] [[part 2](https://u1f383.github.io/linux/2024/07/20/linux-eBPF-design-and-vulnerability-case-study-part-2.html)] [CVE-2024-41009] [CVE-2022-23222] [CVE-2023-52447]",
      "search_text": "linux ebpf design and vulnerability case study linux ebpf design and vulnerability case study pumpkin chang cve-2024-41009 cve-2022-23222 cve-2023-52447  vulnerabilities other other primary article https://u1f383.github.io/linux/2024/07/12/linux-ebpf-design-and-vulnerability-case-study-part-1.html vulnerability linux_kernel  discovery a case study on linux ebpf design and vulnerabilities is presented. 提供了关于linux ebpf设计和漏洞的案例研究。 # linux ebpf design and vulnerability case study record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: linux ebpf design and vulnerability case study resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/07/12/linux-ebpf-design-and-vulnerability-case-study-part-1.html parent_primary_url: https://u1f383.github.io/linux/2024/07/12/linux-ebpf-design-and-vulnerability-case-study-part-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"linux ebpf design and vulnerability case study\" by pumpkin chang](https://u1f383.github.io/linux/2024/07/12/linux-ebpf-design-and-vulnerability-case-study-part-1.html) [article] [[part 2](https://u1f383.github.io/linux/2024/07/20/linux-ebpf-design-and-vulnerability-case-study-part-2.html)] [cve-2024-41009] [cve- unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "cf686b7a0c51b0f3",
      "item_id": "3b20bb459935ccff",
      "slug": "2024-vulnerabilities-other-linux-ebpf-design-and-vulnerability-case-study-part-2-1c7b257f",
      "year": 2024,
      "title": "Linux eBPF Design and Vulnerability Case Study · part 2",
      "item_title": "Linux eBPF Design and Vulnerability Case Study",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [
        "CVE-2024-41009",
        "CVE-2022-23222",
        "CVE-2023-52447"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "part 2",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2024/07/20/linux-eBPF-design-and-vulnerability-case-study-part-2.html",
      "primary_url": "https://u1f383.github.io/linux/2024/07/20/linux-eBPF-design-and-vulnerability-case-study-part-2.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2024/07/12/linux-eBPF-design-and-vulnerability-case-study-part-1.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-linux-ebpf-design-and-vulnerability-case-study-part-2-1c7b257f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux eBPF Design and Vulnerability Case Study · part 2 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Linux eBPF Design and Vulnerability Case Study resource_label: part 2 resource_type: article resource_url: https://u1f383.github.io/linux/2024/07/20/linux-eBPF-design-and-vulnerability-case-study-part-2.html parent_primary_url: https://u1f383.github.io/linux/2024/07/12/linux-eBPF-design-and-vulnerability-case-study-part-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"Linux eBPF Design and Vulnerability Case Study\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/07/12/linux-eBPF-design-and-vulnerability-case-study-part-1.html) [article] [[part 2](https://u1f383.github.io/linux/2024/07/20/linux-eBPF-design-and-vulnerability-case-study-part-2.html)] [CVE-2024-4100",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/07/12/linux-eBPF-design-and-vulnerability-case-study-part-1.html"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/07/20/linux-eBPF-design-and-vulnerability-case-study-part-2.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/07/12/linux-eBPF-design-and-vulnerability-case-study-part-1.html"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/07/20/linux-eBPF-design-and-vulnerability-case-study-part-2.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2024/07/12/linux-eBPF-design-and-vulnerability-case-study-part-1.html",
        "https://u1f383.github.io/linux/2024/07/20/linux-eBPF-design-and-vulnerability-case-study-part-2.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "linux_kernel"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "The second part of the Linux eBPF design and vulnerability case study is discussed.",
      "summary_zh": "讨论了Linux eBPF设计和漏洞案例研究的第二部分。",
      "source_markdown": "[2024: \"Linux eBPF Design and Vulnerability Case Study\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/07/12/linux-eBPF-design-and-vulnerability-case-study-part-1.html) [article] [[part 2](https://u1f383.github.io/linux/2024/07/20/linux-eBPF-design-and-vulnerability-case-study-part-2.html)] [CVE-2024-41009] [CVE-2022-23222] [CVE-2023-52447]",
      "search_text": "linux ebpf design and vulnerability case study · part 2 linux ebpf design and vulnerability case study pumpkin chang cve-2024-41009 cve-2022-23222 cve-2023-52447  vulnerabilities other other part 2 article https://u1f383.github.io/linux/2024/07/20/linux-ebpf-design-and-vulnerability-case-study-part-2.html vulnerability linux_kernel  discovery the second part of the linux ebpf design and vulnerability case study is discussed. 讨论了linux ebpf设计和漏洞案例研究的第二部分。 # linux ebpf design and vulnerability case study · part 2 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: linux ebpf design and vulnerability case study resource_label: part 2 resource_type: article resource_url: https://u1f383.github.io/linux/2024/07/20/linux-ebpf-design-and-vulnerability-case-study-part-2.html parent_primary_url: https://u1f383.github.io/linux/2024/07/12/linux-ebpf-design-and-vulnerability-case-study-part-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"linux ebpf design and vulnerability case study\" by pumpkin chang](https://u1f383.github.io/linux/2024/07/12/linux-ebpf-design-and-vulnerability-case-study-part-1.html) [article] [[part 2](https://u1f383.github.io/linux/2024/07/20/linux-ebpf-design-and-vulnerability-case-study-part-2.html)] [cve-2024-4100 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "9f1bcfce3d5b0f63",
      "item_id": "e17fe7add5a3dbf3",
      "slug": "2024-vulnerabilities-other-linux-kernel-toctou-in-exec-system-primary-dc10aa82",
      "year": 2024,
      "title": "Linux Kernel: TOCTOU in Exec System",
      "item_title": "Linux Kernel: TOCTOU in Exec System",
      "authors": [
        "Marco Vanotti"
      ],
      "cves": [
        "CVE-2024-43882"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/google/security-research/security/advisories/GHSA-c45w-xwww-rfgg",
      "primary_url": "https://github.com/google/security-research/security/advisories/GHSA-c45w-xwww-rfgg",
      "parent_primary_url": "https://github.com/google/security-research/security/advisories/GHSA-c45w-xwww-rfgg",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-linux-kernel-toctou-in-exec-system-primary-dc10aa82.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel: TOCTOU in Exec System record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Linux Kernel: TOCTOU in Exec System resource_label: primary resource_type: article resource_url: https://github.com/google/security-research/security/advisories/GHSA-c45w-xwww-rfgg parent_primary_url: https://github.com/google/security-research/security/advisories/GHSA-c45w-xwww-rfgg source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"Linux Kernel: TOCTOU in Exec System\" by Marco Vanotti](https://github.com/google/security-research/security/advisories/GHSA-c45w-xwww-rfgg) [article] [CVE-2024-43882] cves: CVE-2024-43882 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-c45w-xwww-rfgg"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-c45w-xwww-rfgg"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/security-research/security/advisories/GHSA-c45w-xwww-rfgg"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "TOCTOU",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses a TOCTOU vulnerability in the Linux kernel's exec system.",
      "summary_zh": "本文讨论了Linux内核exec系统中的TOCTOU漏洞。",
      "source_markdown": "[2024: \"Linux Kernel: TOCTOU in Exec System\" by Marco Vanotti](https://github.com/google/security-research/security/advisories/GHSA-c45w-xwww-rfgg) [article] [CVE-2024-43882]",
      "search_text": "linux kernel: toctou in exec system linux kernel: toctou in exec system marco vanotti cve-2024-43882  vulnerabilities other other primary article https://github.com/google/security-research/security/advisories/ghsa-c45w-xwww-rfgg toctou vulnerability  vulnerability this article discusses a toctou vulnerability in the linux kernel's exec system. 本文讨论了linux内核exec系统中的toctou漏洞。 # linux kernel: toctou in exec system record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: linux kernel: toctou in exec system resource_label: primary resource_type: article resource_url: https://github.com/google/security-research/security/advisories/ghsa-c45w-xwww-rfgg parent_primary_url: https://github.com/google/security-research/security/advisories/ghsa-c45w-xwww-rfgg source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"linux kernel: toctou in exec system\" by marco vanotti](https://github.com/google/security-research/security/advisories/ghsa-c45w-xwww-rfgg) [article] [cve-2024-43882] cves: cve-2024-43882 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6cd941e2daa7b994",
      "item_id": "fca477000983e76f",
      "slug": "2024-vulnerabilities-other-cve-2024-26926-analysis-primary-3f2bce66",
      "year": 2024,
      "title": "CVE-2024-26926 Analysis",
      "item_title": "CVE-2024-26926 Analysis",
      "authors": [
        "Maher Azzouzi"
      ],
      "cves": [
        "CVE-2024-26926"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/MaherAzzouzi/LinuxKernel-nday/blob/main/CVE-2024-26926/CVE_2024_26926_Analysis.pdf",
      "primary_url": "https://github.com/MaherAzzouzi/LinuxKernel-nday/blob/main/CVE-2024-26926/CVE_2024_26926_Analysis.pdf",
      "parent_primary_url": "https://github.com/MaherAzzouzi/LinuxKernel-nday/blob/main/CVE-2024-26926/CVE_2024_26926_Analysis.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-cve-2024-26926-analysis-primary-3f2bce66.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2024-26926 Analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: CVE-2024-26926 Analysis resource_label: primary resource_type: article resource_url: https://github.com/MaherAzzouzi/LinuxKernel-nday/blob/main/CVE-2024-26926/CVE_2024_26926_Analysis.pdf parent_primary_url: https://github.com/MaherAzzouzi/LinuxKernel-nday/blob/main/CVE-2024-26926/CVE_2024_26926_Analysis.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"CVE-2024-26926 Analysis\" by Maher Azzouzi](https://github.com/MaherAzzouzi/LinuxKernel-nday/blob/main/CVE-2024-26926/CVE_2024_26926_Analysis.pdf) [article] [CVE-2024-26926] cves: CVE-2024-26926 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/MaherAzzouzi/LinuxKernel-nday/blob/main/CVE-2024-26926/CVE_2024_26926_Analysis.pdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/MaherAzzouzi/LinuxKernel-nday/blob/main/CVE-2024-26926/CVE_2024_26926_Analysis.pdf"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/MaherAzzouzi/LinuxKernel-nday/blob/main/CVE-2024-26926/CVE_2024_26926_Analysis.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE-2024-26926",
        "analysis"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An analysis of CVE-2024-26926, detailing its impact and implications.",
      "summary_zh": "对CVE-2024-26926的分析，详细说明其影响和含义。",
      "source_markdown": "[2024: \"CVE-2024-26926 Analysis\" by Maher Azzouzi](https://github.com/MaherAzzouzi/LinuxKernel-nday/blob/main/CVE-2024-26926/CVE_2024_26926_Analysis.pdf) [article] [CVE-2024-26926]",
      "search_text": "cve-2024-26926 analysis cve-2024-26926 analysis maher azzouzi cve-2024-26926  vulnerabilities other other primary article https://github.com/maherazzouzi/linuxkernel-nday/blob/main/cve-2024-26926/cve_2024_26926_analysis.pdf cve-2024-26926 analysis  vulnerability an analysis of cve-2024-26926, detailing its impact and implications. 对cve-2024-26926的分析，详细说明其影响和含义。 # cve-2024-26926 analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cve-2024-26926 analysis resource_label: primary resource_type: article resource_url: https://github.com/maherazzouzi/linuxkernel-nday/blob/main/cve-2024-26926/cve_2024_26926_analysis.pdf parent_primary_url: https://github.com/maherazzouzi/linuxkernel-nday/blob/main/cve-2024-26926/cve_2024_26926_analysis.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"cve-2024-26926 analysis\" by maher azzouzi](https://github.com/maherazzouzi/linuxkernel-nday/blob/main/cve-2024-26926/cve_2024_26926_analysis.pdf) [article] [cve-2024-26926] cves: cve-2024-26926 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "92b89a7f6818fd5d",
      "item_id": "8e8bbda83ea3f932",
      "slug": "2024-vulnerabilities-other-cve-2024-44068-samsung-m2m1shot-scaler0-device-driver-page-use-after-free-in-androi",
      "year": 2024,
      "title": "CVE-2024-44068: Samsung m2m1shot_scaler0 device driver page use-after-free in Android",
      "item_title": "CVE-2024-44068: Samsung m2m1shot_scaler0 device driver page use-after-free in Android",
      "authors": [],
      "cves": [
        "CVE-2024-44068"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2024/CVE-2024-44068.html",
      "primary_url": "https://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2024/CVE-2024-44068.html",
      "parent_primary_url": "https://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2024/CVE-2024-44068.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-cve-2024-44068-samsung-m2m1shot-scaler0-device-driver-page-use-after-free-in-androi.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2024-44068: Samsung m2m1shot_scaler0 device driver page use-after-free in Android record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: CVE-2024-44068: Samsung m2m1shot_scaler0 device driver page use-after-free in Android resource_label: primary resource_type: article resource_url: https://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2024/CVE-2024-44068.html parent_primary_url: https://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2024/CVE-2024-44068.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"CVE-2024-44068: Samsung m2m1shot_scaler0 device driver page use-after-free in Android\"](https://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2024/CVE-2024-44068.html) [article] [CVE-2024-44068] cves: CVE-2024-44068 android_impact_status: yes and",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2024/CVE-2024-44068.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2024/CVE-2024-44068.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2024/CVE-2024-44068.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "use-after-free",
        "Android"
      ],
      "affected_area": "device driver",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2024-44068 describes a use-after-free vulnerability in a Samsung device driver for Android.",
      "summary_zh": "CVE-2024-44068描述了Android中Samsung设备驱动程序的使用后释放漏洞。",
      "source_markdown": "[2024: \"CVE-2024-44068: Samsung m2m1shot_scaler0 device driver page use-after-free in Android\"](https://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2024/CVE-2024-44068.html) [article] [CVE-2024-44068]",
      "search_text": "cve-2024-44068: samsung m2m1shot_scaler0 device driver page use-after-free in android cve-2024-44068: samsung m2m1shot_scaler0 device driver page use-after-free in android  cve-2024-44068  vulnerabilities other other primary article https://googleprojectzero.github.io/0days-in-the-wild//0day-rcas/2024/cve-2024-44068.html use-after-free android device driver vulnerability cve-2024-44068 describes a use-after-free vulnerability in a samsung device driver for android. cve-2024-44068描述了android中samsung设备驱动程序的使用后释放漏洞。 # cve-2024-44068: samsung m2m1shot_scaler0 device driver page use-after-free in android record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cve-2024-44068: samsung m2m1shot_scaler0 device driver page use-after-free in android resource_label: primary resource_type: article resource_url: https://googleprojectzero.github.io/0days-in-the-wild//0day-rcas/2024/cve-2024-44068.html parent_primary_url: https://googleprojectzero.github.io/0days-in-the-wild//0day-rcas/2024/cve-2024-44068.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"cve-2024-44068: samsung m2m1shot_scaler0 device driver page use-after-free in android\"](https://googleprojectzero.github.io/0days-in-the-wild//0day-rcas/2024/cve-2024-44068.html) [article] [cve-2024-44068] cves: cve-2024-44068 android_impact_status: yes and yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "9ff1acccf8869163",
      "item_id": "21c4069d40512004",
      "slug": "2024-vulnerabilities-other-deep-dive-into-rcu-race-condition-analysis-of-tcp-ao-uaf-cve-2024-27394-primary-68f",
      "year": 2024,
      "title": "Deep Dive into RCU Race Condition: Analysis of TCP-AO UAF (CVE-2024–27394)",
      "item_title": "Deep Dive into RCU Race Condition: Analysis of TCP-AO UAF (CVE-2024–27394)",
      "authors": [],
      "cves": [
        "CVE-2024-27394"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.theori.io/deep-dive-into-rcu-race-condition-analysis-of-tcp-ao-uaf-cve-2024-27394-f40508b84c42",
      "primary_url": "https://blog.theori.io/deep-dive-into-rcu-race-condition-analysis-of-tcp-ao-uaf-cve-2024-27394-f40508b84c42",
      "parent_primary_url": "https://blog.theori.io/deep-dive-into-rcu-race-condition-analysis-of-tcp-ao-uaf-cve-2024-27394-f40508b84c42",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-deep-dive-into-rcu-race-condition-analysis-of-tcp-ao-uaf-cve-2024-27394-primary-68f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Deep Dive into RCU Race Condition: Analysis of TCP-AO UAF (CVE-2024–27394) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Deep Dive into RCU Race Condition: Analysis of TCP-AO UAF (CVE-2024–27394) resource_label: primary resource_type: article resource_url: https://blog.theori.io/deep-dive-into-rcu-race-condition-analysis-of-tcp-ao-uaf-cve-2024-27394-f40508b84c42 parent_primary_url: https://blog.theori.io/deep-dive-into-rcu-race-condition-analysis-of-tcp-ao-uaf-cve-2024-27394-f40508b84c42 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"Deep Dive into RCU Race Condition: Analysis of TCP-AO UAF (CVE-2024–27394)\"](https://blog.theori.io/deep-dive-into-rcu-race-condition-analysis-of-tcp-ao-uaf-cve-2024-27394-f40508b84c42) [article] [CVE-2024-27394] cves: CVE-2024-27394 android_i",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.theori.io/deep-dive-into-rcu-race-condition-analysis-of-tcp-ao-uaf-cve-2024-27394-f40508b84c42"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.theori.io/deep-dive-into-rcu-race-condition-analysis-of-tcp-ao-uaf-cve-2024-27394-f40508b84c42"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "race condition",
        "use-after-free"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article provides an in-depth analysis of a race condition leading to a use-after-free vulnerability in TCP-AO.",
      "summary_zh": "本文深入分析了导致TCP-AO中使用后释放漏洞的竞争条件。",
      "source_markdown": "[2024: \"Deep Dive into RCU Race Condition: Analysis of TCP-AO UAF (CVE-2024–27394)\"](https://blog.theori.io/deep-dive-into-rcu-race-condition-analysis-of-tcp-ao-uaf-cve-2024-27394-f40508b84c42) [article] [CVE-2024-27394]",
      "search_text": "deep dive into rcu race condition: analysis of tcp-ao uaf (cve-2024–27394) deep dive into rcu race condition: analysis of tcp-ao uaf (cve-2024–27394)  cve-2024-27394  vulnerabilities other other primary article https://blog.theori.io/deep-dive-into-rcu-race-condition-analysis-of-tcp-ao-uaf-cve-2024-27394-f40508b84c42 race condition use-after-free  vulnerability this article provides an in-depth analysis of a race condition leading to a use-after-free vulnerability in tcp-ao. 本文深入分析了导致tcp-ao中使用后释放漏洞的竞争条件。 # deep dive into rcu race condition: analysis of tcp-ao uaf (cve-2024–27394) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: deep dive into rcu race condition: analysis of tcp-ao uaf (cve-2024–27394) resource_label: primary resource_type: article resource_url: https://blog.theori.io/deep-dive-into-rcu-race-condition-analysis-of-tcp-ao-uaf-cve-2024-27394-f40508b84c42 parent_primary_url: https://blog.theori.io/deep-dive-into-rcu-race-condition-analysis-of-tcp-ao-uaf-cve-2024-27394-f40508b84c42 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"deep dive into rcu race condition: analysis of tcp-ao uaf (cve-2024–27394)\"](https://blog.theori.io/deep-dive-into-rcu-race-condition-analysis-of-tcp-ao-uaf-cve-2024-27394-f40508b84c42) [article] [cve-2024-27394] cves: cve-2024-27394 android_i unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3cf393bad714510b",
      "item_id": "0c1e5c315a892bfd",
      "slug": "2024-vulnerabilities-other-zdi-24-821-a-remote-uaf-in-the-kernel-s-net-tipc-primary-875f9a24",
      "year": 2024,
      "title": "ZDI-24-821: A Remote UAF in The Kernel's net/tipc",
      "item_title": "ZDI-24-821: A Remote UAF in The Kernel's net/tipc",
      "authors": [
        "Sam Page"
      ],
      "cves": [
        "CVE-2024-36886"
      ],
      "tags": [
        "ZDI-24-821"
      ],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://sam4k.com/zdi-24-821-a-remote-use-after-free-in-the-kernels-net-tipc/",
      "primary_url": "https://sam4k.com/zdi-24-821-a-remote-use-after-free-in-the-kernels-net-tipc/",
      "parent_primary_url": "https://sam4k.com/zdi-24-821-a-remote-use-after-free-in-the-kernels-net-tipc/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-zdi-24-821-a-remote-uaf-in-the-kernel-s-net-tipc-primary-875f9a24.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ZDI-24-821: A Remote UAF in The Kernel's net/tipc record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: ZDI-24-821: A Remote UAF in The Kernel's net/tipc resource_label: primary resource_type: article resource_url: https://sam4k.com/zdi-24-821-a-remote-use-after-free-in-the-kernels-net-tipc/ parent_primary_url: https://sam4k.com/zdi-24-821-a-remote-use-after-free-in-the-kernels-net-tipc/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"ZDI-24-821: A Remote UAF in The Kernel's net/tipc\" by Sam Page](https://sam4k.com/zdi-24-821-a-remote-use-after-free-in-the-kernels-net-tipc/) [article] [ZDI-24-821] [CVE-2024-36886] cves: CVE-2024-36886 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and ve",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://sam4k.com/zdi-24-821-a-remote-use-after-free-in-the-kernels-net-tipc/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://sam4k.com/zdi-24-821-a-remote-use-after-free-in-the-kernels-net-tipc/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "remote",
        "use-after-free"
      ],
      "affected_area": "net/tipc",
      "exploit_stage": "vulnerability",
      "summary_en": "ZDI-24-821 highlights a remote use-after-free vulnerability in the Linux kernel's net/tipc subsystem.",
      "summary_zh": "ZDI-24-821强调了Linux内核net/tipc子系统中的远程使用后释放漏洞。",
      "source_markdown": "[2024: \"ZDI-24-821: A Remote UAF in The Kernel's net/tipc\" by Sam Page](https://sam4k.com/zdi-24-821-a-remote-use-after-free-in-the-kernels-net-tipc/) [article] [ZDI-24-821] [CVE-2024-36886]",
      "search_text": "zdi-24-821: a remote uaf in the kernel's net/tipc zdi-24-821: a remote uaf in the kernel's net/tipc sam page cve-2024-36886 zdi-24-821 vulnerabilities other other primary article https://sam4k.com/zdi-24-821-a-remote-use-after-free-in-the-kernels-net-tipc/ remote use-after-free net/tipc vulnerability zdi-24-821 highlights a remote use-after-free vulnerability in the linux kernel's net/tipc subsystem. zdi-24-821强调了linux内核net/tipc子系统中的远程使用后释放漏洞。 # zdi-24-821: a remote uaf in the kernel's net/tipc record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: zdi-24-821: a remote uaf in the kernel's net/tipc resource_label: primary resource_type: article resource_url: https://sam4k.com/zdi-24-821-a-remote-use-after-free-in-the-kernels-net-tipc/ parent_primary_url: https://sam4k.com/zdi-24-821-a-remote-use-after-free-in-the-kernels-net-tipc/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"zdi-24-821: a remote uaf in the kernel's net/tipc\" by sam page](https://sam4k.com/zdi-24-821-a-remote-use-after-free-in-the-kernels-net-tipc/) [article] [zdi-24-821] [cve-2024-36886] cves: cve-2024-36886 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and ve unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "80094f6e6c1af452",
      "item_id": "dd11e7a5ab586c8f",
      "slug": "2024-vulnerabilities-other-race-condition-in-9p-file-system-primary-01595ac7",
      "year": 2024,
      "title": "Race condition in 9p file system",
      "item_title": "Race condition in 9p file system",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://r00tkitsmm.github.io/fuzzing/2024/05/29/Race-into-9p.html",
      "primary_url": "https://r00tkitsmm.github.io/fuzzing/2024/05/29/Race-into-9p.html",
      "parent_primary_url": "https://r00tkitsmm.github.io/fuzzing/2024/05/29/Race-into-9p.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-race-condition-in-9p-file-system-primary-01595ac7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Race condition in 9p file system record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Race condition in 9p file system resource_label: primary resource_type: article resource_url: https://r00tkitsmm.github.io/fuzzing/2024/05/29/Race-into-9p.html parent_primary_url: https://r00tkitsmm.github.io/fuzzing/2024/05/29/Race-into-9p.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"Race condition in 9p file system\"](https://r00tkitsmm.github.io/fuzzing/2024/05/29/Race-into-9p.html) [article] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: t",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://r00tkitsmm.github.io/fuzzing/2024/05/29/Race-into-9p.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://r00tkitsmm.github.io/fuzzing/2024/05/29/Race-into-9p.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://r00tkitsmm.github.io/fuzzing/2024/05/29/Race-into-9p.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "race condition",
        "file system"
      ],
      "affected_area": "9p file system",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses a race condition vulnerability found in the 9p file system.",
      "summary_zh": "本文讨论了在9p文件系统中发现的竞争条件漏洞。",
      "source_markdown": "[2024: \"Race condition in 9p file system\"](https://r00tkitsmm.github.io/fuzzing/2024/05/29/Race-into-9p.html) [article]",
      "search_text": "race condition in 9p file system race condition in 9p file system    vulnerabilities other other primary article https://r00tkitsmm.github.io/fuzzing/2024/05/29/race-into-9p.html race condition file system 9p file system vulnerability this article discusses a race condition vulnerability found in the 9p file system. 本文讨论了在9p文件系统中发现的竞争条件漏洞。 # race condition in 9p file system record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: race condition in 9p file system resource_label: primary resource_type: article resource_url: https://r00tkitsmm.github.io/fuzzing/2024/05/29/race-into-9p.html parent_primary_url: https://r00tkitsmm.github.io/fuzzing/2024/05/29/race-into-9p.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"race condition in 9p file system\"](https://r00tkitsmm.github.io/fuzzing/2024/05/29/race-into-9p.html) [article] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: t unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "bb1e49e4af97fef4",
      "item_id": "377ba20d2f7b8549",
      "slug": "2024-vulnerabilities-other-notes-about-zdi-24-195-in-ksmbd-primary-566ff5b5",
      "year": 2024,
      "title": "Notes about ZDI-24-195 in ksmbd",
      "item_title": "Notes about ZDI-24-195 in ksmbd",
      "authors": [],
      "cves": [],
      "tags": [
        "ZDI-24-195"
      ],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "thread",
      "resource_url": "https://twitter.com/Shiftreduce/status/1773385937893896206",
      "primary_url": "https://twitter.com/Shiftreduce/status/1773385937893896206",
      "parent_primary_url": "https://twitter.com/Shiftreduce/status/1773385937893896206",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-notes-about-zdi-24-195-in-ksmbd-primary-566ff5b5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Notes about ZDI-24-195 in ksmbd record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Notes about ZDI-24-195 in ksmbd resource_label: primary resource_type: thread resource_url: https://twitter.com/Shiftreduce/status/1773385937893896206 parent_primary_url: https://twitter.com/Shiftreduce/status/1773385937893896206 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"Notes about ZDI-24-195 in ksmbd\"](https://twitter.com/Shiftreduce/status/1773385937893896206) [thread] [ZDI-24-195] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc:",
      "link_types": [
        "thread"
      ],
      "links": [
        {
          "label": "primary",
          "type": "thread",
          "url": "https://twitter.com/Shiftreduce/status/1773385937893896206"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "thread",
            "url": "https://twitter.com/Shiftreduce/status/1773385937893896206"
          }
        ]
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "ksmbd",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "Notes on ZDI-24-195 discuss vulnerabilities in the ksmbd subsystem.",
      "summary_zh": "关于ZDI-24-195的笔记讨论了ksmbd子系统中的漏洞。",
      "source_markdown": "[2024: \"Notes about ZDI-24-195 in ksmbd\"](https://twitter.com/Shiftreduce/status/1773385937893896206) [thread] [ZDI-24-195]",
      "search_text": "notes about zdi-24-195 in ksmbd notes about zdi-24-195 in ksmbd   zdi-24-195 vulnerabilities other other primary thread https://twitter.com/shiftreduce/status/1773385937893896206 ksmbd vulnerability  vulnerability notes on zdi-24-195 discuss vulnerabilities in the ksmbd subsystem. 关于zdi-24-195的笔记讨论了ksmbd子系统中的漏洞。 # notes about zdi-24-195 in ksmbd record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: notes about zdi-24-195 in ksmbd resource_label: primary resource_type: thread resource_url: https://twitter.com/shiftreduce/status/1773385937893896206 parent_primary_url: https://twitter.com/shiftreduce/status/1773385937893896206 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"notes about zdi-24-195 in ksmbd\"](https://twitter.com/shiftreduce/status/1773385937893896206) [thread] [zdi-24-195] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e1f18767062d5204",
      "item_id": "558ed3bef640edac",
      "slug": "2024-vulnerabilities-other-powervr-gpu-gpu-firmware-may-overwrite-arbitrary-kernel-pages-primary-56681d71",
      "year": 2024,
      "title": "PowerVR GPU - GPU Firmware may overwrite arbitrary kernel pages",
      "item_title": "PowerVR GPU - GPU Firmware may overwrite arbitrary kernel pages",
      "authors": [
        "RGXCreateFreeList"
      ],
      "cves": [],
      "tags": [
        "report"
      ],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://bugs.chromium.org/p/apvi/issues/detail?id=140",
      "primary_url": "https://bugs.chromium.org/p/apvi/issues/detail?id=140",
      "parent_primary_url": "https://bugs.chromium.org/p/apvi/issues/detail?id=140",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-powervr-gpu-gpu-firmware-may-overwrite-arbitrary-kernel-pages-primary-56681d71.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PowerVR GPU - GPU Firmware may overwrite arbitrary kernel pages record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: PowerVR GPU - GPU Firmware may overwrite arbitrary kernel pages resource_label: primary resource_type: article resource_url: https://bugs.chromium.org/p/apvi/issues/detail?id=140 parent_primary_url: https://bugs.chromium.org/p/apvi/issues/detail?id=140 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"PowerVR GPU - GPU Firmware may overwrite arbitrary kernel pages by RGXCreateFreeList\"](https://bugs.chromium.org/p/apvi/issues/detail?id=140) [report] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason:",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://bugs.chromium.org/p/apvi/issues/detail?id=140"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://bugs.chromium.org/p/apvi/issues/detail?id=140"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "PowerVR",
        "firmware"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This report discusses potential vulnerabilities in PowerVR GPU firmware that could overwrite kernel pages.",
      "summary_zh": "本报告讨论了PowerVR GPU固件中可能导致覆盖内核页面的漏洞。",
      "source_markdown": "[2024: \"PowerVR GPU - GPU Firmware may overwrite arbitrary kernel pages by RGXCreateFreeList\"](https://bugs.chromium.org/p/apvi/issues/detail?id=140) [report]",
      "search_text": "powervr gpu - gpu firmware may overwrite arbitrary kernel pages powervr gpu - gpu firmware may overwrite arbitrary kernel pages rgxcreatefreelist  report vulnerabilities other other primary article https://bugs.chromium.org/p/apvi/issues/detail?id=140 powervr firmware  vulnerability this report discusses potential vulnerabilities in powervr gpu firmware that could overwrite kernel pages. 本报告讨论了powervr gpu固件中可能导致覆盖内核页面的漏洞。 # powervr gpu - gpu firmware may overwrite arbitrary kernel pages record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: powervr gpu - gpu firmware may overwrite arbitrary kernel pages resource_label: primary resource_type: article resource_url: https://bugs.chromium.org/p/apvi/issues/detail?id=140 parent_primary_url: https://bugs.chromium.org/p/apvi/issues/detail?id=140 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"powervr gpu - gpu firmware may overwrite arbitrary kernel pages by rgxcreatefreelist\"](https://bugs.chromium.org/p/apvi/issues/detail?id=140) [report] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d0fe247619c5da0b",
      "item_id": "0fe419dc6c6a6fe8",
      "slug": "2024-vulnerabilities-other-powervr-gpu-uaf-race-conditon-primary-320d460f",
      "year": 2024,
      "title": "PowerVR GPU - UAF race conditon",
      "item_title": "PowerVR GPU - UAF race conditon",
      "authors": [
        "DevmemIntPFNotify",
        "DevmemIntCtxRelease"
      ],
      "cves": [],
      "tags": [
        "report"
      ],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://bugs.chromium.org/p/apvi/issues/detail?id=141",
      "primary_url": "https://bugs.chromium.org/p/apvi/issues/detail?id=141",
      "parent_primary_url": "https://bugs.chromium.org/p/apvi/issues/detail?id=141",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2024-vulnerabilities-other-powervr-gpu-uaf-race-conditon-primary-320d460f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PowerVR GPU - UAF race conditon record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: PowerVR GPU - UAF race conditon resource_label: primary resource_type: article resource_url: https://bugs.chromium.org/p/apvi/issues/detail?id=141 parent_primary_url: https://bugs.chromium.org/p/apvi/issues/detail?id=141 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"PowerVR GPU - UAF race conditon by DevmemIntPFNotify and DevmemIntCtxRelease\"](https://bugs.chromium.org/p/apvi/issues/detail?id=141) [report] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_co",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://bugs.chromium.org/p/apvi/issues/detail?id=141"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://bugs.chromium.org/p/apvi/issues/detail?id=141"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "use-after-free",
        "PowerVR"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The report details a use-after-free race condition in PowerVR GPU components.",
      "summary_zh": "该报告详细介绍了PowerVR GPU组件中的使用后释放竞争条件。",
      "source_markdown": "[2024: \"PowerVR GPU - UAF race conditon by DevmemIntPFNotify and DevmemIntCtxRelease\"](https://bugs.chromium.org/p/apvi/issues/detail?id=141) [report]",
      "search_text": "powervr gpu - uaf race conditon powervr gpu - uaf race conditon devmemintpfnotify devmemintctxrelease  report vulnerabilities other other primary article https://bugs.chromium.org/p/apvi/issues/detail?id=141 use-after-free powervr  vulnerability the report details a use-after-free race condition in powervr gpu components. 该报告详细介绍了powervr gpu组件中的使用后释放竞争条件。 # powervr gpu - uaf race conditon record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: powervr gpu - uaf race conditon resource_label: primary resource_type: article resource_url: https://bugs.chromium.org/p/apvi/issues/detail?id=141 parent_primary_url: https://bugs.chromium.org/p/apvi/issues/detail?id=141 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2024: \"powervr gpu - uaf race conditon by devmemintpfnotify and devmemintctxrelease\"](https://bugs.chromium.org/p/apvi/issues/detail?id=141) [report] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_co unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d60793fa4339e9a3",
      "item_id": "53c8372b39520f88",
      "slug": "2023-vulnerabilities-other-ubuntu-shiftfs-unbalanced-unlock-exploitation-attempt-primary-e4066669",
      "year": 2023,
      "title": "Ubuntu Shiftfs: Unbalanced Unlock Exploitation Attempt",
      "item_title": "Ubuntu Shiftfs: Unbalanced Unlock Exploitation Attempt",
      "authors": [
        "Jean-Baptiste Cayrou"
      ],
      "cves": [
        "CVE-2023-2612"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.synacktiv.com/sites/default/files/2023-11/ubuntu_shiftfs.pdf",
      "primary_url": "https://www.synacktiv.com/sites/default/files/2023-11/ubuntu_shiftfs.pdf",
      "parent_primary_url": "https://www.synacktiv.com/sites/default/files/2023-11/ubuntu_shiftfs.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2023-vulnerabilities-other-ubuntu-shiftfs-unbalanced-unlock-exploitation-attempt-primary-e4066669.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Ubuntu Shiftfs: Unbalanced Unlock Exploitation Attempt record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Ubuntu Shiftfs: Unbalanced Unlock Exploitation Attempt resource_label: primary resource_type: slides resource_url: https://www.synacktiv.com/sites/default/files/2023-11/ubuntu_shiftfs.pdf parent_primary_url: https://www.synacktiv.com/sites/default/files/2023-11/ubuntu_shiftfs.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2023: \"Ubuntu Shiftfs: Unbalanced Unlock Exploitation Attempt\" by Jean-Baptiste Cayrou](https://www.synacktiv.com/sites/default/files/2023-11/ubuntu_shiftfs.pdf) [slides] [CVE-2023-2612] cves: CVE-2023-2612 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.synacktiv.com/sites/default/files/2023-11/ubuntu_shiftfs.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.synacktiv.com/sites/default/files/2023-11/ubuntu_shiftfs.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "unbalanced unlock",
        "Ubuntu"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This presentation discusses an unbalanced unlock exploitation attempt in Ubuntu's Shiftfs.",
      "summary_zh": "本演示讨论了Ubuntu Shiftfs中的不平衡解锁利用尝试。",
      "source_markdown": "[2023: \"Ubuntu Shiftfs: Unbalanced Unlock Exploitation Attempt\" by Jean-Baptiste Cayrou](https://www.synacktiv.com/sites/default/files/2023-11/ubuntu_shiftfs.pdf) [slides] [CVE-2023-2612]",
      "search_text": "ubuntu shiftfs: unbalanced unlock exploitation attempt ubuntu shiftfs: unbalanced unlock exploitation attempt jean-baptiste cayrou cve-2023-2612  vulnerabilities other other primary slides https://www.synacktiv.com/sites/default/files/2023-11/ubuntu_shiftfs.pdf unbalanced unlock ubuntu  vulnerability this presentation discusses an unbalanced unlock exploitation attempt in ubuntu's shiftfs. 本演示讨论了ubuntu shiftfs中的不平衡解锁利用尝试。 # ubuntu shiftfs: unbalanced unlock exploitation attempt record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: ubuntu shiftfs: unbalanced unlock exploitation attempt resource_label: primary resource_type: slides resource_url: https://www.synacktiv.com/sites/default/files/2023-11/ubuntu_shiftfs.pdf parent_primary_url: https://www.synacktiv.com/sites/default/files/2023-11/ubuntu_shiftfs.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2023: \"ubuntu shiftfs: unbalanced unlock exploitation attempt\" by jean-baptiste cayrou](https://www.synacktiv.com/sites/default/files/2023-11/ubuntu_shiftfs.pdf) [slides] [cve-2023-2612] cves: cve-2023-2612 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor- unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "09a442a2e5d46b9d",
      "item_id": "b1cafe59e420c497",
      "slug": "2023-vulnerabilities-other-attacking-npus-of-multiple-platforms-primary-e362137b",
      "year": 2023,
      "title": "Attacking NPUs of Multiple Platforms",
      "item_title": "Attacking NPUs of Multiple Platforms",
      "authors": [],
      "cves": [
        "CVE-2022-22265",
        "CVE-2020-28343",
        "CVE-2023-42483",
        "CVE-2023-45864"
      ],
      "tags": [
        "SVE-2021-20204"
      ],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/EU-23/Presentations/EU-23-Zhang-Attacking-NPUs-of-Multiple-Platforms.pdf",
      "primary_url": "https://i.blackhat.com/EU-23/Presentations/EU-23-Zhang-Attacking-NPUs-of-Multiple-Platforms.pdf",
      "parent_primary_url": "https://i.blackhat.com/EU-23/Presentations/EU-23-Zhang-Attacking-NPUs-of-Multiple-Platforms.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2023-vulnerabilities-other-attacking-npus-of-multiple-platforms-primary-e362137b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Attacking NPUs of Multiple Platforms record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Attacking NPUs of Multiple Platforms resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/EU-23/Presentations/EU-23-Zhang-Attacking-NPUs-of-Multiple-Platforms.pdf parent_primary_url: https://i.blackhat.com/EU-23/Presentations/EU-23-Zhang-Attacking-NPUs-of-Multiple-Platforms.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2023: \"Attacking NPUs of Multiple Platforms\"](https://i.blackhat.com/EU-23/Presentations/EU-23-Zhang-Attacking-NPUs-of-Multiple-Platforms.pdf) [slides] [CVE-2022-22265] [CVE-2020-28343] [SVE-2021-20204] [CVE-2023-42483] [CVE-2023-45864] cves: CVE-2022-22265, CVE-2020-28343, CVE-2023-42483, CVE-2023-45864 android_impact_status: unknown android_impact",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/EU-23/Presentations/EU-23-Zhang-Attacking-NPUs-of-Multiple-Platforms.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/EU-23/Presentations/EU-23-Zhang-Attacking-NPUs-of-Multiple-Platforms.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "NPU",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The slides cover vulnerabilities related to NPUs across multiple platforms.",
      "summary_zh": "这些幻灯片涵盖了多个平台上与NPU相关的漏洞。",
      "source_markdown": "[2023: \"Attacking NPUs of Multiple Platforms\"](https://i.blackhat.com/EU-23/Presentations/EU-23-Zhang-Attacking-NPUs-of-Multiple-Platforms.pdf) [slides] [CVE-2022-22265] [CVE-2020-28343] [SVE-2021-20204] [CVE-2023-42483] [CVE-2023-45864]",
      "search_text": "attacking npus of multiple platforms attacking npus of multiple platforms  cve-2022-22265 cve-2020-28343 cve-2023-42483 cve-2023-45864 sve-2021-20204 vulnerabilities other other primary slides https://i.blackhat.com/eu-23/presentations/eu-23-zhang-attacking-npus-of-multiple-platforms.pdf npu vulnerability  vulnerability the slides cover vulnerabilities related to npus across multiple platforms. 这些幻灯片涵盖了多个平台上与npu相关的漏洞。 # attacking npus of multiple platforms record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: attacking npus of multiple platforms resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/eu-23/presentations/eu-23-zhang-attacking-npus-of-multiple-platforms.pdf parent_primary_url: https://i.blackhat.com/eu-23/presentations/eu-23-zhang-attacking-npus-of-multiple-platforms.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2023: \"attacking npus of multiple platforms\"](https://i.blackhat.com/eu-23/presentations/eu-23-zhang-attacking-npus-of-multiple-platforms.pdf) [slides] [cve-2022-22265] [cve-2020-28343] [sve-2021-20204] [cve-2023-42483] [cve-2023-45864] cves: cve-2022-22265, cve-2020-28343, cve-2023-42483, cve-2023-45864 android_impact_status: unknown android_impact unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6315c9dce3ebd16e",
      "item_id": "384b71259a0bffc4",
      "slug": "2023-vulnerabilities-other-deep-dive-qualcomm-msm-linux-kernel-arm-mali-gpu-0-day-exploit-attacks-of-october-2",
      "year": 2023,
      "title": "Deep Dive: Qualcomm MSM Linux Kernel & ARM Mali GPU 0-day Exploit Attacks of October 2023",
      "item_title": "Deep Dive: Qualcomm MSM Linux Kernel & ARM Mali GPU 0-day Exploit Attacks of October 2023",
      "authors": [
        "Alisa Esage"
      ],
      "cves": [
        "CVE-2023-33063",
        "CVE-2023-33106",
        "CVE-2023-33107",
        "CVE-2022-22071",
        "CVE-2023-4211"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://zerodayengineering.com/insights/qualcomm-msm-arm-mali-0days.html",
      "primary_url": "https://zerodayengineering.com/insights/qualcomm-msm-arm-mali-0days.html",
      "parent_primary_url": "https://zerodayengineering.com/insights/qualcomm-msm-arm-mali-0days.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2023-vulnerabilities-other-deep-dive-qualcomm-msm-linux-kernel-arm-mali-gpu-0-day-exploit-attacks-of-october-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Deep Dive: Qualcomm MSM Linux Kernel & ARM Mali GPU 0-day Exploit Attacks of October 2023 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Deep Dive: Qualcomm MSM Linux Kernel & ARM Mali GPU 0-day Exploit Attacks of October 2023 resource_label: primary resource_type: article resource_url: https://zerodayengineering.com/insights/qualcomm-msm-arm-mali-0days.html parent_primary_url: https://zerodayengineering.com/insights/qualcomm-msm-arm-mali-0days.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2023: \"Deep Dive: Qualcomm MSM Linux Kernel & ARM Mali GPU 0-day Exploit Attacks of October 2023\" by Alisa Esage](https://zerodayengineering.com/insights/qualcomm-msm-arm-mali-0days.html) [article] [CVE-2023-33063] [CVE-2023-33106] [CVE-2023-33107] [CVE-2022-22071] [CVE-2023-4211] cves: CV",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://zerodayengineering.com/insights/qualcomm-msm-arm-mali-0days.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://zerodayengineering.com/insights/qualcomm-msm-arm-mali-0days.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions Qualcomm/Adreno Android SoC components",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "0-day",
        "Qualcomm",
        "ARM"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article provides insights into recent 0-day exploit attacks targeting Qualcomm MSM Linux Kernel and ARM Mali GPU.",
      "summary_zh": "本文提供了针对Qualcomm MSM Linux内核和ARM Mali GPU的最新0-day攻击的见解。",
      "source_markdown": "[2023: \"Deep Dive: Qualcomm MSM Linux Kernel & ARM Mali GPU 0-day Exploit Attacks of October 2023\" by Alisa Esage](https://zerodayengineering.com/insights/qualcomm-msm-arm-mali-0days.html) [article] [CVE-2023-33063] [CVE-2023-33106] [CVE-2023-33107] [CVE-2022-22071] [CVE-2023-4211]",
      "search_text": "deep dive: qualcomm msm linux kernel & arm mali gpu 0-day exploit attacks of october 2023 deep dive: qualcomm msm linux kernel & arm mali gpu 0-day exploit attacks of october 2023 alisa esage cve-2023-33063 cve-2023-33106 cve-2023-33107 cve-2022-22071 cve-2023-4211  vulnerabilities other other primary article https://zerodayengineering.com/insights/qualcomm-msm-arm-mali-0days.html 0-day qualcomm arm  vulnerability this article provides insights into recent 0-day exploit attacks targeting qualcomm msm linux kernel and arm mali gpu. 本文提供了针对qualcomm msm linux内核和arm mali gpu的最新0-day攻击的见解。 # deep dive: qualcomm msm linux kernel & arm mali gpu 0-day exploit attacks of october 2023 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: deep dive: qualcomm msm linux kernel & arm mali gpu 0-day exploit attacks of october 2023 resource_label: primary resource_type: article resource_url: https://zerodayengineering.com/insights/qualcomm-msm-arm-mali-0days.html parent_primary_url: https://zerodayengineering.com/insights/qualcomm-msm-arm-mali-0days.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2023: \"deep dive: qualcomm msm linux kernel & arm mali gpu 0-day exploit attacks of october 2023\" by alisa esage](https://zerodayengineering.com/insights/qualcomm-msm-arm-mali-0days.html) [article] [cve-2023-33063] [cve-2023-33106] [cve-2023-33107] [cve-2022-22071] [cve-2023-4211] cves: cv possible mentions qualcomm/adreno android soc components no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "7d92d0b12f6af7ee",
      "item_id": "5780f4be6091f33e",
      "slug": "2023-vulnerabilities-other-unleashing-ksmbd-remote-exploitation-of-the-linux-kernel-zdi-23-979-zdi-23-980-prim",
      "year": 2023,
      "title": "Unleashing ksmbd: remote exploitation of the Linux kernel (ZDI-23-979, ZDI-23-980)",
      "item_title": "Unleashing ksmbd: remote exploitation of the Linux kernel (ZDI-23-979, ZDI-23-980)",
      "authors": [
        "notselwyn"
      ],
      "cves": [
        "CVE-2023-3866",
        "CVE-2023-3865"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://pwning.tech/ksmbd/",
      "primary_url": "https://pwning.tech/ksmbd/",
      "parent_primary_url": "https://pwning.tech/ksmbd/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2023-vulnerabilities-other-unleashing-ksmbd-remote-exploitation-of-the-linux-kernel-zdi-23-979-zdi-23-980-prim.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Unleashing ksmbd: remote exploitation of the Linux kernel (ZDI-23-979, ZDI-23-980) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Unleashing ksmbd: remote exploitation of the Linux kernel (ZDI-23-979, ZDI-23-980) resource_label: primary resource_type: article resource_url: https://pwning.tech/ksmbd/ parent_primary_url: https://pwning.tech/ksmbd/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2023: \"Unleashing ksmbd: remote exploitation of the Linux kernel (ZDI-23-979, ZDI-23-980)\" by notselwyn](https://pwning.tech/ksmbd/) [article] [CVE-2023-3866] [CVE-2023-3865] [[exploits](https://github.com/Notselwyn/exploits)] cves: CVE-2023-3866, CVE-2023-3865 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://pwning.tech/ksmbd/"
        },
        {
          "label": "exploits",
          "type": "exploit",
          "url": "https://github.com/Notselwyn/exploits"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://pwning.tech/ksmbd/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploits",
            "type": "exploit",
            "url": "https://github.com/Notselwyn/exploits"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Notselwyn/exploits"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "remote",
        "ksmbd"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The article discusses remote exploitation techniques for the Linux kernel via ksmbd.",
      "summary_zh": "本文讨论了通过ksmbd对Linux内核的远程利用技术。",
      "source_markdown": "[2023: \"Unleashing ksmbd: remote exploitation of the Linux kernel (ZDI-23-979, ZDI-23-980)\" by notselwyn](https://pwning.tech/ksmbd/) [article] [CVE-2023-3866] [CVE-2023-3865] [[exploits](https://github.com/Notselwyn/exploits)]",
      "search_text": "unleashing ksmbd: remote exploitation of the linux kernel (zdi-23-979, zdi-23-980) unleashing ksmbd: remote exploitation of the linux kernel (zdi-23-979, zdi-23-980) notselwyn cve-2023-3866 cve-2023-3865  vulnerabilities other other primary article https://pwning.tech/ksmbd/ remote ksmbd  vulnerability the article discusses remote exploitation techniques for the linux kernel via ksmbd. 本文讨论了通过ksmbd对linux内核的远程利用技术。 # unleashing ksmbd: remote exploitation of the linux kernel (zdi-23-979, zdi-23-980) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: unleashing ksmbd: remote exploitation of the linux kernel (zdi-23-979, zdi-23-980) resource_label: primary resource_type: article resource_url: https://pwning.tech/ksmbd/ parent_primary_url: https://pwning.tech/ksmbd/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2023: \"unleashing ksmbd: remote exploitation of the linux kernel (zdi-23-979, zdi-23-980)\" by notselwyn](https://pwning.tech/ksmbd/) [article] [cve-2023-3866] [cve-2023-3865] [[exploits](https://github.com/notselwyn/exploits)] cves: cve-2023-3866, cve-2023-3865 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "415de0785ac48965",
      "item_id": "5780f4be6091f33e",
      "slug": "2023-vulnerabilities-other-unleashing-ksmbd-remote-exploitation-of-the-linux-kernel-zdi-23-979-zdi-23-980-expl",
      "year": 2023,
      "title": "Unleashing ksmbd: remote exploitation of the Linux kernel (ZDI-23-979, ZDI-23-980) · exploits",
      "item_title": "Unleashing ksmbd: remote exploitation of the Linux kernel (ZDI-23-979, ZDI-23-980)",
      "authors": [
        "notselwyn"
      ],
      "cves": [
        "CVE-2023-3866",
        "CVE-2023-3865"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "exploits",
      "resource_type": "exploit",
      "resource_url": "https://github.com/Notselwyn/exploits",
      "primary_url": "https://github.com/Notselwyn/exploits",
      "parent_primary_url": "https://pwning.tech/ksmbd/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2023-vulnerabilities-other-unleashing-ksmbd-remote-exploitation-of-the-linux-kernel-zdi-23-979-zdi-23-980-expl.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Unleashing ksmbd: remote exploitation of the Linux kernel (ZDI-23-979, ZDI-23-980) · exploits record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Unleashing ksmbd: remote exploitation of the Linux kernel (ZDI-23-979, ZDI-23-980) resource_label: exploits resource_type: exploit resource_url: https://github.com/Notselwyn/exploits parent_primary_url: https://pwning.tech/ksmbd/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2023: \"Unleashing ksmbd: remote exploitation of the Linux kernel (ZDI-23-979, ZDI-23-980)\" by notselwyn](https://pwning.tech/ksmbd/) [article] [CVE-2023-3866] [CVE-2023-3865] [[exploits](https://github.com/Notselwyn/exploits)] cves: CVE-2023-3866, CVE-2023-3865 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android product",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://pwning.tech/ksmbd/"
        },
        {
          "label": "exploits",
          "type": "exploit",
          "url": "https://github.com/Notselwyn/exploits"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://pwning.tech/ksmbd/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploits",
            "type": "exploit",
            "url": "https://github.com/Notselwyn/exploits"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Notselwyn/exploits"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploits",
        "ksmbd"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "This resource provides exploits related to the ksmbd vulnerabilities discussed in previous articles.",
      "summary_zh": "该资源提供了与之前文章中讨论的ksmbd漏洞相关的利用代码。",
      "source_markdown": "[2023: \"Unleashing ksmbd: remote exploitation of the Linux kernel (ZDI-23-979, ZDI-23-980)\" by notselwyn](https://pwning.tech/ksmbd/) [article] [CVE-2023-3866] [CVE-2023-3865] [[exploits](https://github.com/Notselwyn/exploits)]",
      "search_text": "unleashing ksmbd: remote exploitation of the linux kernel (zdi-23-979, zdi-23-980) · exploits unleashing ksmbd: remote exploitation of the linux kernel (zdi-23-979, zdi-23-980) notselwyn cve-2023-3866 cve-2023-3865  vulnerabilities other other exploits exploit https://github.com/notselwyn/exploits exploits ksmbd  exploit this resource provides exploits related to the ksmbd vulnerabilities discussed in previous articles. 该资源提供了与之前文章中讨论的ksmbd漏洞相关的利用代码。 # unleashing ksmbd: remote exploitation of the linux kernel (zdi-23-979, zdi-23-980) · exploits record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: unleashing ksmbd: remote exploitation of the linux kernel (zdi-23-979, zdi-23-980) resource_label: exploits resource_type: exploit resource_url: https://github.com/notselwyn/exploits parent_primary_url: https://pwning.tech/ksmbd/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2023: \"unleashing ksmbd: remote exploitation of the linux kernel (zdi-23-979, zdi-23-980)\" by notselwyn](https://pwning.tech/ksmbd/) [article] [cve-2023-3866] [cve-2023-3865] [[exploits](https://github.com/notselwyn/exploits)] cves: cve-2023-3866, cve-2023-3865 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android product unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "d1a901f69faf8e97",
      "item_id": "7aef6cfdbc69d6fa",
      "slug": "2023-vulnerabilities-other-cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver-primary-2d449e70",
      "year": 2023,
      "title": "CVE-2023-4273: a vulnerability in the Linux exFAT driver",
      "item_title": "CVE-2023-4273: a vulnerability in the Linux exFAT driver",
      "authors": [
        "Maxim Suhanov"
      ],
      "cves": [
        "CVE-2023-4273"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://dfir.ru/2023/08/23/cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver/",
      "primary_url": "https://dfir.ru/2023/08/23/cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver/",
      "parent_primary_url": "https://dfir.ru/2023/08/23/cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2023-vulnerabilities-other-cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver-primary-2d449e70.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2023-4273: a vulnerability in the Linux exFAT driver record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: CVE-2023-4273: a vulnerability in the Linux exFAT driver resource_label: primary resource_type: article resource_url: https://dfir.ru/2023/08/23/cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver/ parent_primary_url: https://dfir.ru/2023/08/23/cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2023: \"CVE-2023-4273: a vulnerability in the Linux exFAT driver\" by Maxim Suhanov](https://dfir.ru/2023/08/23/cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver/) [article] [CVE-2023-4273] cves: CVE-2023-4273 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impac",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://dfir.ru/2023/08/23/cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://dfir.ru/2023/08/23/cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE-2023-4273",
        "exFAT"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "CVE-2023-4273 highlights a vulnerability in the Linux exFAT driver.",
      "summary_zh": "CVE-2023-4273强调了Linux exFAT驱动程序中的漏洞。",
      "source_markdown": "[2023: \"CVE-2023-4273: a vulnerability in the Linux exFAT driver\" by Maxim Suhanov](https://dfir.ru/2023/08/23/cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver/) [article] [CVE-2023-4273]",
      "search_text": "cve-2023-4273: a vulnerability in the linux exfat driver cve-2023-4273: a vulnerability in the linux exfat driver maxim suhanov cve-2023-4273  vulnerabilities other other primary article https://dfir.ru/2023/08/23/cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver/ cve-2023-4273 exfat  vulnerability cve-2023-4273 highlights a vulnerability in the linux exfat driver. cve-2023-4273强调了linux exfat驱动程序中的漏洞。 # cve-2023-4273: a vulnerability in the linux exfat driver record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cve-2023-4273: a vulnerability in the linux exfat driver resource_label: primary resource_type: article resource_url: https://dfir.ru/2023/08/23/cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver/ parent_primary_url: https://dfir.ru/2023/08/23/cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2023: \"cve-2023-4273: a vulnerability in the linux exfat driver\" by maxim suhanov](https://dfir.ru/2023/08/23/cve-2023-4273-a-vulnerability-in-the-linux-exfat-driver/) [article] [cve-2023-4273] cves: cve-2023-4273 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impac unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "dd03b1b31f83705e",
      "item_id": "e611c2f05a898940",
      "slug": "2023-vulnerabilities-other-linux-ipv6-route-of-death-0day-primary-2ae5ee30",
      "year": 2023,
      "title": "Linux IPv6 'Route of Death' 0day",
      "item_title": "Linux IPv6 'Route of Death' 0day",
      "authors": [
        "Max VA"
      ],
      "cves": [
        "CVE-2023-2156"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.interruptlabs.co.uk/articles/linux-ipv6-route-of-death",
      "primary_url": "https://www.interruptlabs.co.uk/articles/linux-ipv6-route-of-death",
      "parent_primary_url": "https://www.interruptlabs.co.uk/articles/linux-ipv6-route-of-death",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2023-vulnerabilities-other-linux-ipv6-route-of-death-0day-primary-2ae5ee30.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux IPv6 'Route of Death' 0day record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Linux IPv6 'Route of Death' 0day resource_label: primary resource_type: article resource_url: https://www.interruptlabs.co.uk/articles/linux-ipv6-route-of-death parent_primary_url: https://www.interruptlabs.co.uk/articles/linux-ipv6-route-of-death source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2023: \"Linux IPv6 'Route of Death' 0day\" by Max VA](https://www.interruptlabs.co.uk/articles/linux-ipv6-route-of-death) [article] [CVE-2023-2156] cves: CVE-2023-2156 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.interruptlabs.co.uk/articles/linux-ipv6-route-of-death"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.interruptlabs.co.uk/articles/linux-ipv6-route-of-death"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "IPv6",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses the Linux IPv6 'Route of Death' vulnerability.",
      "summary_zh": "本文讨论了Linux IPv6的“死亡路线”漏洞。",
      "source_markdown": "[2023: \"Linux IPv6 'Route of Death' 0day\" by Max VA](https://www.interruptlabs.co.uk/articles/linux-ipv6-route-of-death) [article] [CVE-2023-2156]",
      "search_text": "linux ipv6 'route of death' 0day linux ipv6 'route of death' 0day max va cve-2023-2156  vulnerabilities other other primary article https://www.interruptlabs.co.uk/articles/linux-ipv6-route-of-death ipv6 vulnerability  vulnerability this article discusses the linux ipv6 'route of death' vulnerability. 本文讨论了linux ipv6的“死亡路线”漏洞。 # linux ipv6 'route of death' 0day record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: linux ipv6 'route of death' 0day resource_label: primary resource_type: article resource_url: https://www.interruptlabs.co.uk/articles/linux-ipv6-route-of-death parent_primary_url: https://www.interruptlabs.co.uk/articles/linux-ipv6-route-of-death source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2023: \"linux ipv6 'route of death' 0day\" by max va](https://www.interruptlabs.co.uk/articles/linux-ipv6-route-of-death) [article] [cve-2023-2156] cves: cve-2023-2156 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7d2cf2dd3d388be9",
      "item_id": "a2ca84227707daed",
      "slug": "2022-vulnerabilities-other-linux-kernel-infoleak-in-bluetooth-l2cap-handling-primary-30428cd4",
      "year": 2022,
      "title": "Linux Kernel: Infoleak in Bluetooth L2CAP Handling",
      "item_title": "Linux Kernel: Infoleak in Bluetooth L2CAP Handling",
      "authors": [],
      "cves": [
        "CVE-2022-42895"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "advisory",
      "resource_url": "https://github.com/google/security-research/security/advisories/GHSA-vccx-8h74-2357",
      "primary_url": "https://github.com/google/security-research/security/advisories/GHSA-vccx-8h74-2357",
      "parent_primary_url": "https://github.com/google/security-research/security/advisories/GHSA-vccx-8h74-2357",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2022-vulnerabilities-other-linux-kernel-infoleak-in-bluetooth-l2cap-handling-primary-30428cd4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel: Infoleak in Bluetooth L2CAP Handling record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Linux Kernel: Infoleak in Bluetooth L2CAP Handling resource_label: primary resource_type: advisory resource_url: https://github.com/google/security-research/security/advisories/GHSA-vccx-8h74-2357 parent_primary_url: https://github.com/google/security-research/security/advisories/GHSA-vccx-8h74-2357 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"Linux Kernel: Infoleak in Bluetooth L2CAP Handling\"](https://github.com/google/security-research/security/advisories/GHSA-vccx-8h74-2357) [advisory] [CVE-2022-42895] cves: CVE-2022-42895 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vend",
      "link_types": [
        "advisory"
      ],
      "links": [
        {
          "label": "primary",
          "type": "advisory",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-vccx-8h74-2357"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "advisory",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-vccx-8h74-2357"
          }
        ]
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/security-research/security/advisories/GHSA-vccx-8h74-2357"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "infoleak",
        "Bluetooth"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This code resource details an infoleak vulnerability in Bluetooth L2CAP handling in the Linux kernel.",
      "summary_zh": "该代码资源详细介绍了Linux内核中Bluetooth L2CAP处理的泄露漏洞。",
      "source_markdown": "[2022: \"Linux Kernel: Infoleak in Bluetooth L2CAP Handling\"](https://github.com/google/security-research/security/advisories/GHSA-vccx-8h74-2357) [advisory] [CVE-2022-42895]",
      "search_text": "linux kernel: infoleak in bluetooth l2cap handling linux kernel: infoleak in bluetooth l2cap handling  cve-2022-42895  vulnerabilities other other primary advisory https://github.com/google/security-research/security/advisories/ghsa-vccx-8h74-2357 infoleak bluetooth  vulnerability this code resource details an infoleak vulnerability in bluetooth l2cap handling in the linux kernel. 该代码资源详细介绍了linux内核中bluetooth l2cap处理的泄露漏洞。 # linux kernel: infoleak in bluetooth l2cap handling record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: linux kernel: infoleak in bluetooth l2cap handling resource_label: primary resource_type: advisory resource_url: https://github.com/google/security-research/security/advisories/ghsa-vccx-8h74-2357 parent_primary_url: https://github.com/google/security-research/security/advisories/ghsa-vccx-8h74-2357 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"linux kernel: infoleak in bluetooth l2cap handling\"](https://github.com/google/security-research/security/advisories/ghsa-vccx-8h74-2357) [advisory] [cve-2022-42895] cves: cve-2022-42895 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vend unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "847703298a9045c0",
      "item_id": "1b690d4fe33aa208",
      "slug": "2022-vulnerabilities-other-linux-kernel-uaf-in-bluetooth-l2cap-handshake-primary-caafce63",
      "year": 2022,
      "title": "Linux Kernel: UAF in Bluetooth L2CAP Handshake",
      "item_title": "Linux Kernel: UAF in Bluetooth L2CAP Handshake",
      "authors": [],
      "cves": [
        "CVE-2022-42896"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "advisory",
      "resource_url": "https://github.com/google/security-research/security/advisories/GHSA-pf87-6c9q-jvm4",
      "primary_url": "https://github.com/google/security-research/security/advisories/GHSA-pf87-6c9q-jvm4",
      "parent_primary_url": "https://github.com/google/security-research/security/advisories/GHSA-pf87-6c9q-jvm4",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2022-vulnerabilities-other-linux-kernel-uaf-in-bluetooth-l2cap-handshake-primary-caafce63.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel: UAF in Bluetooth L2CAP Handshake record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Linux Kernel: UAF in Bluetooth L2CAP Handshake resource_label: primary resource_type: advisory resource_url: https://github.com/google/security-research/security/advisories/GHSA-pf87-6c9q-jvm4 parent_primary_url: https://github.com/google/security-research/security/advisories/GHSA-pf87-6c9q-jvm4 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"Linux Kernel: UAF in Bluetooth L2CAP Handshake\"](https://github.com/google/security-research/security/advisories/GHSA-pf87-6c9q-jvm4) [advisory] [CVE-2022-42896] cves: CVE-2022-42896 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport ",
      "link_types": [
        "advisory"
      ],
      "links": [
        {
          "label": "primary",
          "type": "advisory",
          "url": "https://github.com/google/security-research/security/advisories/GHSA-pf87-6c9q-jvm4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "advisory",
            "url": "https://github.com/google/security-research/security/advisories/GHSA-pf87-6c9q-jvm4"
          }
        ]
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/security-research/security/advisories/GHSA-pf87-6c9q-jvm4"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "use-after-free",
        "Bluetooth"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This code resource discusses a use-after-free vulnerability in Bluetooth L2CAP handshake.",
      "summary_zh": "该代码资源讨论了Bluetooth L2CAP握手中的使用后释放漏洞。",
      "source_markdown": "[2022: \"Linux Kernel: UAF in Bluetooth L2CAP Handshake\"](https://github.com/google/security-research/security/advisories/GHSA-pf87-6c9q-jvm4) [advisory] [CVE-2022-42896]",
      "search_text": "linux kernel: uaf in bluetooth l2cap handshake linux kernel: uaf in bluetooth l2cap handshake  cve-2022-42896  vulnerabilities other other primary advisory https://github.com/google/security-research/security/advisories/ghsa-pf87-6c9q-jvm4 use-after-free bluetooth  vulnerability this code resource discusses a use-after-free vulnerability in bluetooth l2cap handshake. 该代码资源讨论了bluetooth l2cap握手中的使用后释放漏洞。 # linux kernel: uaf in bluetooth l2cap handshake record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: linux kernel: uaf in bluetooth l2cap handshake resource_label: primary resource_type: advisory resource_url: https://github.com/google/security-research/security/advisories/ghsa-pf87-6c9q-jvm4 parent_primary_url: https://github.com/google/security-research/security/advisories/ghsa-pf87-6c9q-jvm4 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"linux kernel: uaf in bluetooth l2cap handshake\"](https://github.com/google/security-research/security/advisories/ghsa-pf87-6c9q-jvm4) [advisory] [cve-2022-42896] cves: cve-2022-42896 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "53878d2a8bdbbcec",
      "item_id": "40834d50c33d77ab",
      "slug": "2022-vulnerabilities-other-vulnerability-details-for-cve-2022-41218-primary-dfbb5995",
      "year": 2022,
      "title": "Vulnerability Details for CVE-2022-41218",
      "item_title": "Vulnerability Details for CVE-2022-41218",
      "authors": [],
      "cves": [
        "CVE-2022-41218"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/V4bel/CVE-2022-41218",
      "primary_url": "https://github.com/V4bel/CVE-2022-41218",
      "parent_primary_url": "https://github.com/V4bel/CVE-2022-41218",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2022-vulnerabilities-other-vulnerability-details-for-cve-2022-41218-primary-dfbb5995.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Vulnerability Details for CVE-2022-41218 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Vulnerability Details for CVE-2022-41218 resource_label: primary resource_type: article resource_url: https://github.com/V4bel/CVE-2022-41218 parent_primary_url: https://github.com/V4bel/CVE-2022-41218 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"Vulnerability Details for CVE-2022-41218\"](https://github.com/V4bel/CVE-2022-41218) [article] [CVE-2022-41218] cves: CVE-2022-41218 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_expl",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/V4bel/CVE-2022-41218"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/V4bel/CVE-2022-41218"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/V4bel/CVE-2022-41218"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE-2022-41218",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article provides details on the vulnerability CVE-2022-41218.",
      "summary_zh": "本文提供了关于CVE-2022-41218漏洞的详细信息。",
      "source_markdown": "[2022: \"Vulnerability Details for CVE-2022-41218\"](https://github.com/V4bel/CVE-2022-41218) [article] [CVE-2022-41218]",
      "search_text": "vulnerability details for cve-2022-41218 vulnerability details for cve-2022-41218  cve-2022-41218  vulnerabilities other other primary article https://github.com/v4bel/cve-2022-41218 cve-2022-41218 vulnerability  vulnerability this article provides details on the vulnerability cve-2022-41218. 本文提供了关于cve-2022-41218漏洞的详细信息。 # vulnerability details for cve-2022-41218 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: vulnerability details for cve-2022-41218 resource_label: primary resource_type: article resource_url: https://github.com/v4bel/cve-2022-41218 parent_primary_url: https://github.com/v4bel/cve-2022-41218 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"vulnerability details for cve-2022-41218\"](https://github.com/v4bel/cve-2022-41218) [article] [cve-2022-41218] cves: cve-2022-41218 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_expl unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ffff396adc733275",
      "item_id": "de53d4df01edee41",
      "slug": "2022-vulnerabilities-other-racing-cats-to-the-exit-a-boring-linux-kernel-use-after-free-primary-b50d3b37",
      "year": 2022,
      "title": "Racing Cats to the Exit: A Boring Linux Kernel Use-After-Free",
      "item_title": "Racing Cats to the Exit: A Boring Linux Kernel Use-After-Free",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://accessvector.net/2022/linux-itimers-uaf",
      "primary_url": "https://accessvector.net/2022/linux-itimers-uaf",
      "parent_primary_url": "https://accessvector.net/2022/linux-itimers-uaf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2022-vulnerabilities-other-racing-cats-to-the-exit-a-boring-linux-kernel-use-after-free-primary-b50d3b37.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Racing Cats to the Exit: A Boring Linux Kernel Use-After-Free record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Racing Cats to the Exit: A Boring Linux Kernel Use-After-Free resource_label: primary resource_type: article resource_url: https://accessvector.net/2022/linux-itimers-uaf parent_primary_url: https://accessvector.net/2022/linux-itimers-uaf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"Racing Cats to the Exit: A Boring Linux Kernel Use-After-Free\"](https://accessvector.net/2022/linux-itimers-uaf) [article] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kern",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://accessvector.net/2022/linux-itimers-uaf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://accessvector.net/2022/linux-itimers-uaf"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "use-after-free"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses a use-after-free vulnerability in the Linux kernel.",
      "summary_zh": "本文讨论了Linux内核中的使用后释放漏洞。",
      "source_markdown": "[2022: \"Racing Cats to the Exit: A Boring Linux Kernel Use-After-Free\"](https://accessvector.net/2022/linux-itimers-uaf) [article]",
      "search_text": "racing cats to the exit: a boring linux kernel use-after-free racing cats to the exit: a boring linux kernel use-after-free    vulnerabilities other other primary article https://accessvector.net/2022/linux-itimers-uaf use-after-free  vulnerability this article discusses a use-after-free vulnerability in the linux kernel. 本文讨论了linux内核中的使用后释放漏洞。 # racing cats to the exit: a boring linux kernel use-after-free record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: racing cats to the exit: a boring linux kernel use-after-free resource_label: primary resource_type: article resource_url: https://accessvector.net/2022/linux-itimers-uaf parent_primary_url: https://accessvector.net/2022/linux-itimers-uaf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"racing cats to the exit: a boring linux kernel use-after-free\"](https://accessvector.net/2022/linux-itimers-uaf) [article] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kern unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4df5f0a3b5252809",
      "item_id": "198f71f189ef041b",
      "slug": "2022-vulnerabilities-other-android-universal-root-exploiting-xpu-drivers-primary-2cfbfab5",
      "year": 2022,
      "title": "Android Universal Root: Exploiting xPU Drivers",
      "item_title": "Android Universal Root: Exploiting xPU Drivers",
      "authors": [],
      "cves": [
        "CVE-2022-20122",
        "CVE-2021-39815"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Jin-Android-Universal-Root.pdf",
      "primary_url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Jin-Android-Universal-Root.pdf",
      "parent_primary_url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Jin-Android-Universal-Root.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2022-vulnerabilities-other-android-universal-root-exploiting-xpu-drivers-primary-2cfbfab5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Android Universal Root: Exploiting xPU Drivers record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Android Universal Root: Exploiting xPU Drivers resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/USA-22/Wednesday/US-22-Jin-Android-Universal-Root.pdf parent_primary_url: https://i.blackhat.com/USA-22/Wednesday/US-22-Jin-Android-Universal-Root.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"Android Universal Root: Exploiting xPU Drivers\"](https://i.blackhat.com/USA-22/Wednesday/US-22-Jin-Android-Universal-Root.pdf) [slides] [CVE-2022-20122] [CVE-2021-39815] cves: CVE-2022-20122, CVE-2021-39815 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel r",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Jin-Android-Universal-Root.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Jin-Android-Universal-Root.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Android",
        "Root",
        "xPU",
        "Exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "This resource discusses exploiting xPU drivers for Android universal root access.",
      "summary_zh": "该资源讨论了利用xPU驱动程序实现Android通用root访问。",
      "source_markdown": "[2022: \"Android Universal Root: Exploiting xPU Drivers\"](https://i.blackhat.com/USA-22/Wednesday/US-22-Jin-Android-Universal-Root.pdf) [slides] [CVE-2022-20122] [CVE-2021-39815]",
      "search_text": "android universal root: exploiting xpu drivers android universal root: exploiting xpu drivers  cve-2022-20122 cve-2021-39815  vulnerabilities other other primary slides https://i.blackhat.com/usa-22/wednesday/us-22-jin-android-universal-root.pdf android root xpu exploitation  vulnerability this resource discusses exploiting xpu drivers for android universal root access. 该资源讨论了利用xpu驱动程序实现android通用root访问。 # android universal root: exploiting xpu drivers record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: android universal root: exploiting xpu drivers resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/usa-22/wednesday/us-22-jin-android-universal-root.pdf parent_primary_url: https://i.blackhat.com/usa-22/wednesday/us-22-jin-android-universal-root.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"android universal root: exploiting xpu drivers\"](https://i.blackhat.com/usa-22/wednesday/us-22-jin-android-universal-root.pdf) [slides] [cve-2022-20122] [cve-2021-39815] cves: cve-2022-20122, cve-2021-39815 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel r yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "0792c11d29010b0c",
      "item_id": "e6620f84e00d9e72",
      "slug": "2022-vulnerabilities-other-the-quantum-state-of-linux-kernel-garbage-collection-cve-2021-0920-part-i-primary-0",
      "year": 2022,
      "title": "The quantum state of Linux kernel garbage collection CVE-2021-0920 (Part I)",
      "item_title": "The quantum state of Linux kernel garbage collection CVE-2021-0920 (Part I)",
      "authors": [
        "Xingyu Jin"
      ],
      "cves": [
        "CVE-2021-0920"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2022/08/the-quantum-state-of-linux-kernel.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2022/08/the-quantum-state-of-linux-kernel.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2022/08/the-quantum-state-of-linux-kernel.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2022-vulnerabilities-other-the-quantum-state-of-linux-kernel-garbage-collection-cve-2021-0920-part-i-primary-0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The quantum state of Linux kernel garbage collection CVE-2021-0920 (Part I) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: The quantum state of Linux kernel garbage collection CVE-2021-0920 (Part I) resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2022/08/the-quantum-state-of-linux-kernel.html parent_primary_url: https://googleprojectzero.blogspot.com/2022/08/the-quantum-state-of-linux-kernel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"The quantum state of Linux kernel garbage collection CVE-2021-0920 (Part I)\" by Xingyu Jin](https://googleprojectzero.blogspot.com/2022/08/the-quantum-state-of-linux-kernel.html) [article] [CVE-2021-0920] cves: CVE-2021-0920 android_impact_status: unknown android_impact_reason: Linux ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2022/08/the-quantum-state-of-linux-kernel.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2022/08/the-quantum-state-of-linux-kernel.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Garbage Collection",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "An analysis of the Linux kernel garbage collection vulnerability CVE-2021-0920.",
      "summary_zh": "对Linux内核垃圾收集漏洞CVE-2021-0920的分析。",
      "source_markdown": "[2022: \"The quantum state of Linux kernel garbage collection CVE-2021-0920 (Part I)\" by Xingyu Jin](https://googleprojectzero.blogspot.com/2022/08/the-quantum-state-of-linux-kernel.html) [article] [CVE-2021-0920]",
      "search_text": "the quantum state of linux kernel garbage collection cve-2021-0920 (part i) the quantum state of linux kernel garbage collection cve-2021-0920 (part i) xingyu jin cve-2021-0920  vulnerabilities other other primary article https://googleprojectzero.blogspot.com/2022/08/the-quantum-state-of-linux-kernel.html garbage collection vulnerability  vulnerability an analysis of the linux kernel garbage collection vulnerability cve-2021-0920. 对linux内核垃圾收集漏洞cve-2021-0920的分析。 # the quantum state of linux kernel garbage collection cve-2021-0920 (part i) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: the quantum state of linux kernel garbage collection cve-2021-0920 (part i) resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2022/08/the-quantum-state-of-linux-kernel.html parent_primary_url: https://googleprojectzero.blogspot.com/2022/08/the-quantum-state-of-linux-kernel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"the quantum state of linux kernel garbage collection cve-2021-0920 (part i)\" by xingyu jin](https://googleprojectzero.blogspot.com/2022/08/the-quantum-state-of-linux-kernel.html) [article] [cve-2021-0920] cves: cve-2021-0920 android_impact_status: unknown android_impact_reason: linux  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "fee97e4d8bf0a138",
      "item_id": "3faeb443df77c4b2",
      "slug": "2022-vulnerabilities-other-finding-bugs-in-the-linux-kernel-bluetooth-subsystem-primary-1f5e94df",
      "year": 2022,
      "title": "Finding bugs in the Linux Kernel Bluetooth Subsystem",
      "item_title": "Finding bugs in the Linux Kernel Bluetooth Subsystem",
      "authors": [
        "Itay Iellin"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html",
      "primary_url": "https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html",
      "parent_primary_url": "https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2022-vulnerabilities-other-finding-bugs-in-the-linux-kernel-bluetooth-subsystem-primary-1f5e94df.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Finding bugs in the Linux Kernel Bluetooth Subsystem record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Finding bugs in the Linux Kernel Bluetooth Subsystem resource_label: primary resource_type: article resource_url: https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html parent_primary_url: https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"Finding bugs in the Linux Kernel Bluetooth Subsystem\" by Itay Iellin](https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html) [article] [[part 2](https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-2.html)] cves: none android_impact_status: unkn",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-2.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-2.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Bluetooth",
        "Bug Finding"
      ],
      "affected_area": "Bluetooth Subsystem",
      "exploit_stage": "Vulnerability",
      "summary_en": "This article explores bug finding techniques in the Linux Kernel Bluetooth subsystem.",
      "summary_zh": "本文探讨了在Linux内核蓝牙子系统中发现漏洞的技术。",
      "source_markdown": "[2022: \"Finding bugs in the Linux Kernel Bluetooth Subsystem\" by Itay Iellin](https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html) [article] [[part 2](https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-2.html)]",
      "search_text": "finding bugs in the linux kernel bluetooth subsystem finding bugs in the linux kernel bluetooth subsystem itay iellin   vulnerabilities other other primary article https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html bluetooth bug finding bluetooth subsystem vulnerability this article explores bug finding techniques in the linux kernel bluetooth subsystem. 本文探讨了在linux内核蓝牙子系统中发现漏洞的技术。 # finding bugs in the linux kernel bluetooth subsystem record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: finding bugs in the linux kernel bluetooth subsystem resource_label: primary resource_type: article resource_url: https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html parent_primary_url: https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"finding bugs in the linux kernel bluetooth subsystem\" by itay iellin](https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html) [article] [[part 2](https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-2.html)] cves: none android_impact_status: unkn unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c048fa5ef7d82272",
      "item_id": "3faeb443df77c4b2",
      "slug": "2022-vulnerabilities-other-finding-bugs-in-the-linux-kernel-bluetooth-subsystem-part-2-f12a0587",
      "year": 2022,
      "title": "Finding bugs in the Linux Kernel Bluetooth Subsystem · part 2",
      "item_title": "Finding bugs in the Linux Kernel Bluetooth Subsystem",
      "authors": [
        "Itay Iellin"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "part 2",
      "resource_type": "article",
      "resource_url": "https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-2.html",
      "primary_url": "https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-2.html",
      "parent_primary_url": "https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2022-vulnerabilities-other-finding-bugs-in-the-linux-kernel-bluetooth-subsystem-part-2-f12a0587.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Finding bugs in the Linux Kernel Bluetooth Subsystem · part 2 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Finding bugs in the Linux Kernel Bluetooth Subsystem resource_label: part 2 resource_type: article resource_url: https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-2.html parent_primary_url: https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"Finding bugs in the Linux Kernel Bluetooth Subsystem\" by Itay Iellin](https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html) [article] [[part 2](https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-2.html)] cves: none android_impact_stat",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-2.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-2.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Bluetooth",
        "Bug Finding"
      ],
      "affected_area": "Bluetooth Subsystem",
      "exploit_stage": "Vulnerability",
      "summary_en": "Continues the exploration of bug finding techniques in the Linux Kernel Bluetooth subsystem.",
      "summary_zh": "继续探讨在Linux内核蓝牙子系统中发现漏洞的技术。",
      "source_markdown": "[2022: \"Finding bugs in the Linux Kernel Bluetooth Subsystem\" by Itay Iellin](https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html) [article] [[part 2](https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-2.html)]",
      "search_text": "finding bugs in the linux kernel bluetooth subsystem · part 2 finding bugs in the linux kernel bluetooth subsystem itay iellin   vulnerabilities other other part 2 article https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-2.html bluetooth bug finding bluetooth subsystem vulnerability continues the exploration of bug finding techniques in the linux kernel bluetooth subsystem. 继续探讨在linux内核蓝牙子系统中发现漏洞的技术。 # finding bugs in the linux kernel bluetooth subsystem · part 2 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: finding bugs in the linux kernel bluetooth subsystem resource_label: part 2 resource_type: article resource_url: https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-2.html parent_primary_url: https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"finding bugs in the linux kernel bluetooth subsystem\" by itay iellin](https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-1.html) [article] [[part 2](https://itayie.me/linux/2022/07/29/finding-bugs-in-the-linux-kernel-bt-subsystem-part-2.html)] cves: none android_impact_stat unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a5e586c398750564",
      "item_id": "fde78d6e6ca77366",
      "slug": "2022-vulnerabilities-other-cve-2022-0435-a-remote-stack-overflow-in-the-linux-primary-37c290db",
      "year": 2022,
      "title": "CVE-2022-0435: A Remote Stack Overflow in The Linux",
      "item_title": "CVE-2022-0435: A Remote Stack Overflow in The Linux",
      "authors": [
        "Samuel Page"
      ],
      "cves": [
        "CVE-2022-0435"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.immunityinc.com/p/a-remote-stack-overflow-in-the-linux-kernel/",
      "primary_url": "https://blog.immunityinc.com/p/a-remote-stack-overflow-in-the-linux-kernel/",
      "parent_primary_url": "https://blog.immunityinc.com/p/a-remote-stack-overflow-in-the-linux-kernel/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2022-vulnerabilities-other-cve-2022-0435-a-remote-stack-overflow-in-the-linux-primary-37c290db.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2022-0435: A Remote Stack Overflow in The Linux record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: CVE-2022-0435: A Remote Stack Overflow in The Linux resource_label: primary resource_type: article resource_url: https://blog.immunityinc.com/p/a-remote-stack-overflow-in-the-linux-kernel/ parent_primary_url: https://blog.immunityinc.com/p/a-remote-stack-overflow-in-the-linux-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"CVE-2022-0435: A Remote Stack Overflow in The Linux\" by Samuel Page](https://blog.immunityinc.com/p/a-remote-stack-overflow-in-the-linux-kernel/) [article] [CVE-2022-0435] cves: CVE-2022-0435 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backpor",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.immunityinc.com/p/a-remote-stack-overflow-in-the-linux-kernel/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.immunityinc.com/p/a-remote-stack-overflow-in-the-linux-kernel/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Stack Overflow",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "Discusses a remote stack overflow vulnerability in the Linux kernel identified as CVE-2022-0435.",
      "summary_zh": "讨论了Linux内核中的远程栈溢出漏洞CVE-2022-0435。",
      "source_markdown": "[2022: \"CVE-2022-0435: A Remote Stack Overflow in The Linux\" by Samuel Page](https://blog.immunityinc.com/p/a-remote-stack-overflow-in-the-linux-kernel/) [article] [CVE-2022-0435]",
      "search_text": "cve-2022-0435: a remote stack overflow in the linux cve-2022-0435: a remote stack overflow in the linux samuel page cve-2022-0435  vulnerabilities other other primary article https://blog.immunityinc.com/p/a-remote-stack-overflow-in-the-linux-kernel/ stack overflow vulnerability  vulnerability discusses a remote stack overflow vulnerability in the linux kernel identified as cve-2022-0435. 讨论了linux内核中的远程栈溢出漏洞cve-2022-0435。 # cve-2022-0435: a remote stack overflow in the linux record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cve-2022-0435: a remote stack overflow in the linux resource_label: primary resource_type: article resource_url: https://blog.immunityinc.com/p/a-remote-stack-overflow-in-the-linux-kernel/ parent_primary_url: https://blog.immunityinc.com/p/a-remote-stack-overflow-in-the-linux-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"cve-2022-0435: a remote stack overflow in the linux\" by samuel page](https://blog.immunityinc.com/p/a-remote-stack-overflow-in-the-linux-kernel/) [article] [cve-2022-0435] cves: cve-2022-0435 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backpor unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "71f96dd88136d67e",
      "item_id": "709dd673ff17c37c",
      "slug": "2022-vulnerabilities-other-cve-2021-45608-netusb-rce-flaw-in-millions-of-end-user-routers-primary-fc50f2c7",
      "year": 2022,
      "title": "CVE-2021-45608 | NetUSB RCE Flaw in Millions of End User Routers",
      "item_title": "CVE-2021-45608 | NetUSB RCE Flaw in Millions of End User Routers",
      "authors": [
        "Max Van Amernngen"
      ],
      "cves": [
        "CVE-2021-45608"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.sentinelone.com/labs/cve-2021-45608-netusb-rce-flaw-in-millions-of-end-user-routers/",
      "primary_url": "https://www.sentinelone.com/labs/cve-2021-45608-netusb-rce-flaw-in-millions-of-end-user-routers/",
      "parent_primary_url": "https://www.sentinelone.com/labs/cve-2021-45608-netusb-rce-flaw-in-millions-of-end-user-routers/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2022-vulnerabilities-other-cve-2021-45608-netusb-rce-flaw-in-millions-of-end-user-routers-primary-fc50f2c7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2021-45608 | NetUSB RCE Flaw in Millions of End User Routers record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: CVE-2021-45608 | NetUSB RCE Flaw in Millions of End User Routers resource_label: primary resource_type: article resource_url: https://www.sentinelone.com/labs/cve-2021-45608-netusb-rce-flaw-in-millions-of-end-user-routers/ parent_primary_url: https://www.sentinelone.com/labs/cve-2021-45608-netusb-rce-flaw-in-millions-of-end-user-routers/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"CVE-2021-45608 | NetUSB RCE Flaw in Millions of End User Routers\" by Max Van Amernngen](https://www.sentinelone.com/labs/cve-2021-45608-netusb-rce-flaw-in-millions-of-end-user-routers/) [article] [CVE-2021-45608] cves: CVE-2021-45608 android_impact_status: unknown android_impact_reaso",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.sentinelone.com/labs/cve-2021-45608-netusb-rce-flaw-in-millions-of-end-user-routers/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.sentinelone.com/labs/cve-2021-45608-netusb-rce-flaw-in-millions-of-end-user-routers/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RCE",
        "NetUSB",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "Analyzes the NetUSB RCE flaw affecting millions of routers, identified as CVE-2021-45608.",
      "summary_zh": "分析影响数百万路由器的NetUSB RCE漏洞CVE-2021-45608。",
      "source_markdown": "[2022: \"CVE-2021-45608 | NetUSB RCE Flaw in Millions of End User Routers\" by Max Van Amernngen](https://www.sentinelone.com/labs/cve-2021-45608-netusb-rce-flaw-in-millions-of-end-user-routers/) [article] [CVE-2021-45608]",
      "search_text": "cve-2021-45608 | netusb rce flaw in millions of end user routers cve-2021-45608 | netusb rce flaw in millions of end user routers max van amernngen cve-2021-45608  vulnerabilities other other primary article https://www.sentinelone.com/labs/cve-2021-45608-netusb-rce-flaw-in-millions-of-end-user-routers/ rce netusb vulnerability  vulnerability analyzes the netusb rce flaw affecting millions of routers, identified as cve-2021-45608. 分析影响数百万路由器的netusb rce漏洞cve-2021-45608。 # cve-2021-45608 | netusb rce flaw in millions of end user routers record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cve-2021-45608 | netusb rce flaw in millions of end user routers resource_label: primary resource_type: article resource_url: https://www.sentinelone.com/labs/cve-2021-45608-netusb-rce-flaw-in-millions-of-end-user-routers/ parent_primary_url: https://www.sentinelone.com/labs/cve-2021-45608-netusb-rce-flaw-in-millions-of-end-user-routers/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2022: \"cve-2021-45608 | netusb rce flaw in millions of end user routers\" by max van amernngen](https://www.sentinelone.com/labs/cve-2021-45608-netusb-rce-flaw-in-millions-of-end-user-routers/) [article] [cve-2021-45608] cves: cve-2021-45608 android_impact_status: unknown android_impact_reaso unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9cc3adfdbb0120fb",
      "item_id": "2856584762c58225",
      "slug": "2021-vulnerabilities-other-cve-2021-1048-refcount-increment-on-mid-destruction-file-primary-2f7c3977",
      "year": 2021,
      "title": "CVE-2021-1048: refcount increment on mid-destruction file",
      "item_title": "CVE-2021-1048: refcount increment on mid-destruction file",
      "authors": [
        "Jann Horn"
      ],
      "cves": [
        "CVE-2021-1048"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1048.html",
      "primary_url": "https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1048.html",
      "parent_primary_url": "https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1048.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2021-vulnerabilities-other-cve-2021-1048-refcount-increment-on-mid-destruction-file-primary-2f7c3977.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2021-1048: refcount increment on mid-destruction file record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: CVE-2021-1048: refcount increment on mid-destruction file resource_label: primary resource_type: article resource_url: https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1048.html parent_primary_url: https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1048.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2021: \"CVE-2021-1048: refcount increment on mid-destruction file\" by Jann Horn](https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1048.html) [article] [CVE-2021-1048] cves: CVE-2021-1048 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android produ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1048.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1048.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1048.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Refcount",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "Examines the refcount increment vulnerability on mid-destruction files, CVE-2021-1048.",
      "summary_zh": "检查中销毁文件上的引用计数增加漏洞CVE-2021-1048。",
      "source_markdown": "[2021: \"CVE-2021-1048: refcount increment on mid-destruction file\" by Jann Horn](https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1048.html) [article] [CVE-2021-1048]",
      "search_text": "cve-2021-1048: refcount increment on mid-destruction file cve-2021-1048: refcount increment on mid-destruction file jann horn cve-2021-1048  vulnerabilities other other primary article https://googleprojectzero.github.io/0days-in-the-wild/0day-rcas/2021/cve-2021-1048.html refcount vulnerability  vulnerability examines the refcount increment vulnerability on mid-destruction files, cve-2021-1048. 检查中销毁文件上的引用计数增加漏洞cve-2021-1048。 # cve-2021-1048: refcount increment on mid-destruction file record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cve-2021-1048: refcount increment on mid-destruction file resource_label: primary resource_type: article resource_url: https://googleprojectzero.github.io/0days-in-the-wild/0day-rcas/2021/cve-2021-1048.html parent_primary_url: https://googleprojectzero.github.io/0days-in-the-wild/0day-rcas/2021/cve-2021-1048.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2021: \"cve-2021-1048: refcount increment on mid-destruction file\" by jann horn](https://googleprojectzero.github.io/0days-in-the-wild/0day-rcas/2021/cve-2021-1048.html) [article] [cve-2021-1048] cves: cve-2021-1048 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android produ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "8895147b856df75f",
      "item_id": "7ac68ea9a8299528",
      "slug": "2021-vulnerabilities-other-achieving-linux-kernel-code-execution-through-a-malicious-usb-device-primary-718b50",
      "year": 2021,
      "title": "Achieving Linux Kernel Code Execution Through a Malicious USB Device",
      "item_title": "Achieving Linux Kernel Code Execution Through a Malicious USB Device",
      "authors": [
        "Martijn Bogaard",
        "Dana Geist"
      ],
      "cves": [
        "CVE-2016-2384"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/EU-21/Thursday/EU-21-Bogaard-Geist-Achieving-Linux-Kernel-Code-Execution-Through-A-Malicious-USB-Device.pdf",
      "primary_url": "https://i.blackhat.com/EU-21/Thursday/EU-21-Bogaard-Geist-Achieving-Linux-Kernel-Code-Execution-Through-A-Malicious-USB-Device.pdf",
      "parent_primary_url": "https://i.blackhat.com/EU-21/Thursday/EU-21-Bogaard-Geist-Achieving-Linux-Kernel-Code-Execution-Through-A-Malicious-USB-Device.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2021-vulnerabilities-other-achieving-linux-kernel-code-execution-through-a-malicious-usb-device-primary-718b50.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Achieving Linux Kernel Code Execution Through a Malicious USB Device record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Achieving Linux Kernel Code Execution Through a Malicious USB Device resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/EU-21/Thursday/EU-21-Bogaard-Geist-Achieving-Linux-Kernel-Code-Execution-Through-A-Malicious-USB-Device.pdf parent_primary_url: https://i.blackhat.com/EU-21/Thursday/EU-21-Bogaard-Geist-Achieving-Linux-Kernel-Code-Execution-Through-A-Malicious-USB-Device.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2021: \"Achieving Linux Kernel Code Execution Through a Malicious USB Device\" by Martijn Bogaard and Dana Geist](https://i.blackhat.com/EU-21/Thursday/EU-21-Bogaard-Geist-Achieving-Linux-Kernel-Code-Execution-Through-A",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/EU-21/Thursday/EU-21-Bogaard-Geist-Achieving-Linux-Kernel-Code-Execution-Through-A-Malicious-USB-Device.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/EU-21/Thursday/EU-21-Bogaard-Geist-Achieving-Linux-Kernel-Code-Execution-Through-A-Malicious-USB-Device.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://i.blackhat.com/EU-21/Thursday/EU-21-Bogaard-Geist-Achieving-Linux-Kernel-Code-Execution-Through-A-Malicious-USB-Device.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "USB",
        "Code Execution",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "Explores achieving Linux kernel code execution via a malicious USB device, related to CVE-2016-2384.",
      "summary_zh": "探讨通过恶意USB设备实现Linux内核代码执行，涉及CVE-2016-2384。",
      "source_markdown": "[2021: \"Achieving Linux Kernel Code Execution Through a Malicious USB Device\" by Martijn Bogaard and Dana Geist](https://i.blackhat.com/EU-21/Thursday/EU-21-Bogaard-Geist-Achieving-Linux-Kernel-Code-Execution-Through-A-Malicious-USB-Device.pdf) [slides] [CVE-2016-2384]",
      "search_text": "achieving linux kernel code execution through a malicious usb device achieving linux kernel code execution through a malicious usb device martijn bogaard dana geist cve-2016-2384  vulnerabilities other other primary slides https://i.blackhat.com/eu-21/thursday/eu-21-bogaard-geist-achieving-linux-kernel-code-execution-through-a-malicious-usb-device.pdf usb code execution vulnerability  vulnerability explores achieving linux kernel code execution via a malicious usb device, related to cve-2016-2384. 探讨通过恶意usb设备实现linux内核代码执行，涉及cve-2016-2384。 # achieving linux kernel code execution through a malicious usb device record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: achieving linux kernel code execution through a malicious usb device resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/eu-21/thursday/eu-21-bogaard-geist-achieving-linux-kernel-code-execution-through-a-malicious-usb-device.pdf parent_primary_url: https://i.blackhat.com/eu-21/thursday/eu-21-bogaard-geist-achieving-linux-kernel-code-execution-through-a-malicious-usb-device.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2021: \"achieving linux kernel code execution through a malicious usb device\" by martijn bogaard and dana geist](https://i.blackhat.com/eu-21/thursday/eu-21-bogaard-geist-achieving-linux-kernel-code-execution-through-a unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "eabbd3df1679c72e",
      "item_id": "470a4622b2daf960",
      "slug": "2021-vulnerabilities-other-slub-overflow-cve-2021-42327-primary-8067eb44",
      "year": 2021,
      "title": "SLUB overflow CVE-2021-42327",
      "item_title": "SLUB overflow CVE-2021-42327",
      "authors": [],
      "cves": [
        "CVE-2021-42327"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://docfate111.github.io/blog/securityresearch/2021/11/08/SLUBoverflow.html",
      "primary_url": "https://docfate111.github.io/blog/securityresearch/2021/11/08/SLUBoverflow.html",
      "parent_primary_url": "https://docfate111.github.io/blog/securityresearch/2021/11/08/SLUBoverflow.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2021-vulnerabilities-other-slub-overflow-cve-2021-42327-primary-8067eb44.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SLUB overflow CVE-2021-42327 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: SLUB overflow CVE-2021-42327 resource_label: primary resource_type: article resource_url: https://docfate111.github.io/blog/securityresearch/2021/11/08/SLUBoverflow.html parent_primary_url: https://docfate111.github.io/blog/securityresearch/2021/11/08/SLUBoverflow.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2021: \"SLUB overflow CVE-2021-42327\"](https://docfate111.github.io/blog/securityresearch/2021/11/08/SLUBoverflow.html) [article] [CVE-2021-42327] cves: CVE-2021-42327 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devi",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://docfate111.github.io/blog/securityresearch/2021/11/08/SLUBoverflow.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://docfate111.github.io/blog/securityresearch/2021/11/08/SLUBoverflow.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://docfate111.github.io/blog/securityresearch/2021/11/08/SLUBoverflow.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "SLUB",
        "Overflow",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "Discusses the SLUB overflow vulnerability identified as CVE-2021-42327.",
      "summary_zh": "讨论了识别为CVE-2021-42327的SLUB溢出漏洞。",
      "source_markdown": "[2021: \"SLUB overflow CVE-2021-42327\"](https://docfate111.github.io/blog/securityresearch/2021/11/08/SLUBoverflow.html) [article] [CVE-2021-42327]",
      "search_text": "slub overflow cve-2021-42327 slub overflow cve-2021-42327  cve-2021-42327  vulnerabilities other other primary article https://docfate111.github.io/blog/securityresearch/2021/11/08/sluboverflow.html slub overflow vulnerability  vulnerability discusses the slub overflow vulnerability identified as cve-2021-42327. 讨论了识别为cve-2021-42327的slub溢出漏洞。 # slub overflow cve-2021-42327 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: slub overflow cve-2021-42327 resource_label: primary resource_type: article resource_url: https://docfate111.github.io/blog/securityresearch/2021/11/08/sluboverflow.html parent_primary_url: https://docfate111.github.io/blog/securityresearch/2021/11/08/sluboverflow.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2021: \"slub overflow cve-2021-42327\"](https://docfate111.github.io/blog/securityresearch/2021/11/08/sluboverflow.html) [article] [cve-2021-42327] cves: cve-2021-42327 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devi unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6c4261faed26fe33",
      "item_id": "0b2bb7f4767a68e5",
      "slug": "2021-vulnerabilities-other-cve-2021-44733-fuzzing-and-exploitation-of-a-use-after-free-in-the-linux-kernel-tee",
      "year": 2021,
      "title": "CVE-2021-44733: Fuzzing and exploitation of a use-after-free in the Linux kernel TEE subsystem",
      "item_title": "CVE-2021-44733: Fuzzing and exploitation of a use-after-free in the Linux kernel TEE subsystem",
      "authors": [
        "pjlantz"
      ],
      "cves": [
        "CVE-2021-44733"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/pjlantz/optee-qemu",
      "primary_url": "https://github.com/pjlantz/optee-qemu",
      "parent_primary_url": "https://github.com/pjlantz/optee-qemu",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2021-vulnerabilities-other-cve-2021-44733-fuzzing-and-exploitation-of-a-use-after-free-in-the-linux-kernel-tee.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2021-44733: Fuzzing and exploitation of a use-after-free in the Linux kernel TEE subsystem record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: CVE-2021-44733: Fuzzing and exploitation of a use-after-free in the Linux kernel TEE subsystem resource_label: primary resource_type: article resource_url: https://github.com/pjlantz/optee-qemu parent_primary_url: https://github.com/pjlantz/optee-qemu source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2021: \"CVE-2021-44733: Fuzzing and exploitation of a use-after-free in the Linux kernel TEE subsystem\" by pjlantz](https://github.com/pjlantz/optee-qemu) [article] [[poc](https://github.com/pjlantz/optee_examples/tree/master/exploit/host)] [CVE-2021-44733] cves: CVE-2021-44733 android_impact_status: unknown android_impact_reason: Linux kernel vulne",
      "link_types": [
        "article",
        "poc"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/pjlantz/optee-qemu"
        },
        {
          "label": "poc",
          "type": "poc",
          "url": "https://github.com/pjlantz/optee_examples/tree/master/exploit/host"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/pjlantz/optee-qemu"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [
          {
            "label": "poc",
            "type": "poc",
            "url": "https://github.com/pjlantz/optee_examples/tree/master/exploit/host"
          }
        ],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/pjlantz/optee-qemu",
        "https://github.com/pjlantz/optee_examples/tree/master/exploit/host"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Fuzzing",
        "Use-After-Free",
        "Vulnerability"
      ],
      "affected_area": "TEE Subsystem",
      "exploit_stage": "Vulnerability",
      "summary_en": "Covers fuzzing and exploitation of a use-after-free vulnerability in the Linux kernel TEE subsystem, CVE-2021-44733.",
      "summary_zh": "涵盖了Linux内核TEE子系统中的使用后释放漏洞CVE-2021-44733的模糊测试和利用。",
      "source_markdown": "[2021: \"CVE-2021-44733: Fuzzing and exploitation of a use-after-free in the Linux kernel TEE subsystem\" by pjlantz](https://github.com/pjlantz/optee-qemu) [article] [[poc](https://github.com/pjlantz/optee_examples/tree/master/exploit/host)] [CVE-2021-44733]",
      "search_text": "cve-2021-44733: fuzzing and exploitation of a use-after-free in the linux kernel tee subsystem cve-2021-44733: fuzzing and exploitation of a use-after-free in the linux kernel tee subsystem pjlantz cve-2021-44733  vulnerabilities other other primary article https://github.com/pjlantz/optee-qemu fuzzing use-after-free vulnerability tee subsystem vulnerability covers fuzzing and exploitation of a use-after-free vulnerability in the linux kernel tee subsystem, cve-2021-44733. 涵盖了linux内核tee子系统中的使用后释放漏洞cve-2021-44733的模糊测试和利用。 # cve-2021-44733: fuzzing and exploitation of a use-after-free in the linux kernel tee subsystem record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cve-2021-44733: fuzzing and exploitation of a use-after-free in the linux kernel tee subsystem resource_label: primary resource_type: article resource_url: https://github.com/pjlantz/optee-qemu parent_primary_url: https://github.com/pjlantz/optee-qemu source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2021: \"cve-2021-44733: fuzzing and exploitation of a use-after-free in the linux kernel tee subsystem\" by pjlantz](https://github.com/pjlantz/optee-qemu) [article] [[poc](https://github.com/pjlantz/optee_examples/tree/master/exploit/host)] [cve-2021-44733] cves: cve-2021-44733 android_impact_status: unknown android_impact_reason: linux kernel vulne unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "92d9a77283d7e3d0",
      "item_id": "0b2bb7f4767a68e5",
      "slug": "2021-vulnerabilities-other-cve-2021-44733-fuzzing-and-exploitation-of-a-use-after-free-in-the-linux-kernel-tee-2",
      "year": 2021,
      "title": "CVE-2021-44733: Fuzzing and exploitation of a use-after-free in the Linux kernel TEE subsystem · poc",
      "item_title": "CVE-2021-44733: Fuzzing and exploitation of a use-after-free in the Linux kernel TEE subsystem",
      "authors": [
        "pjlantz"
      ],
      "cves": [
        "CVE-2021-44733"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "poc",
      "resource_type": "poc",
      "resource_url": "https://github.com/pjlantz/optee_examples/tree/master/exploit/host",
      "primary_url": "https://github.com/pjlantz/optee_examples/tree/master/exploit/host",
      "parent_primary_url": "https://github.com/pjlantz/optee-qemu",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2021-vulnerabilities-other-cve-2021-44733-fuzzing-and-exploitation-of-a-use-after-free-in-the-linux-kernel-tee-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2021-44733: Fuzzing and exploitation of a use-after-free in the Linux kernel TEE subsystem · poc record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: CVE-2021-44733: Fuzzing and exploitation of a use-after-free in the Linux kernel TEE subsystem resource_label: poc resource_type: poc resource_url: https://github.com/pjlantz/optee_examples/tree/master/exploit/host parent_primary_url: https://github.com/pjlantz/optee-qemu source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2021: \"CVE-2021-44733: Fuzzing and exploitation of a use-after-free in the Linux kernel TEE subsystem\" by pjlantz](https://github.com/pjlantz/optee-qemu) [article] [[poc](https://github.com/pjlantz/optee_examples/tree/master/exploit/host)] [CVE-2021-44733] cves: CVE-2021-44733 android_impact_status: unknown android_impact",
      "link_types": [
        "article",
        "poc"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/pjlantz/optee-qemu"
        },
        {
          "label": "poc",
          "type": "poc",
          "url": "https://github.com/pjlantz/optee_examples/tree/master/exploit/host"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/pjlantz/optee-qemu"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [
          {
            "label": "poc",
            "type": "poc",
            "url": "https://github.com/pjlantz/optee_examples/tree/master/exploit/host"
          }
        ],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/pjlantz/optee-qemu",
        "https://github.com/pjlantz/optee_examples/tree/master/exploit/host"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Fuzzing",
        "Use-After-Free",
        "PoC"
      ],
      "affected_area": "TEE Subsystem",
      "exploit_stage": "Vulnerability",
      "summary_en": "Provides a proof of concept for the use-after-free vulnerability in the Linux kernel TEE subsystem, CVE-2021-44733.",
      "summary_zh": "提供了Linux内核TEE子系统中使用后释放漏洞CVE-2021-44733的概念证明。",
      "source_markdown": "[2021: \"CVE-2021-44733: Fuzzing and exploitation of a use-after-free in the Linux kernel TEE subsystem\" by pjlantz](https://github.com/pjlantz/optee-qemu) [article] [[poc](https://github.com/pjlantz/optee_examples/tree/master/exploit/host)] [CVE-2021-44733]",
      "search_text": "cve-2021-44733: fuzzing and exploitation of a use-after-free in the linux kernel tee subsystem · poc cve-2021-44733: fuzzing and exploitation of a use-after-free in the linux kernel tee subsystem pjlantz cve-2021-44733  vulnerabilities other other poc poc https://github.com/pjlantz/optee_examples/tree/master/exploit/host fuzzing use-after-free poc tee subsystem vulnerability provides a proof of concept for the use-after-free vulnerability in the linux kernel tee subsystem, cve-2021-44733. 提供了linux内核tee子系统中使用后释放漏洞cve-2021-44733的概念证明。 # cve-2021-44733: fuzzing and exploitation of a use-after-free in the linux kernel tee subsystem · poc record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cve-2021-44733: fuzzing and exploitation of a use-after-free in the linux kernel tee subsystem resource_label: poc resource_type: poc resource_url: https://github.com/pjlantz/optee_examples/tree/master/exploit/host parent_primary_url: https://github.com/pjlantz/optee-qemu source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2021: \"cve-2021-44733: fuzzing and exploitation of a use-after-free in the linux kernel tee subsystem\" by pjlantz](https://github.com/pjlantz/optee-qemu) [article] [[poc](https://github.com/pjlantz/optee_examples/tree/master/exploit/host)] [cve-2021-44733] cves: cve-2021-44733 android_impact_status: unknown android_impact unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "e1198003b620bfe9",
      "item_id": "3c70bdf3d06e8fb3",
      "slug": "2021-vulnerabilities-other-cve-2021-43267-remote-linux-kernel-heap-overflow-tipc-module-allows-arbitrary-code-",
      "year": 2021,
      "title": "CVE-2021-43267: Remote Linux Kernel Heap Overflow | TIPC Module Allows Arbitrary Code Execution",
      "item_title": "CVE-2021-43267: Remote Linux Kernel Heap Overflow | TIPC Module Allows Arbitrary Code Execution",
      "authors": [
        "Max Van Amerongen"
      ],
      "cves": [
        "CVE-2021-43267"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.sentinelone.com/labs/tipc-remote-linux-kernel-heap-overflow-allows-arbitrary-code-execution/",
      "primary_url": "https://www.sentinelone.com/labs/tipc-remote-linux-kernel-heap-overflow-allows-arbitrary-code-execution/",
      "parent_primary_url": "https://www.sentinelone.com/labs/tipc-remote-linux-kernel-heap-overflow-allows-arbitrary-code-execution/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2021-vulnerabilities-other-cve-2021-43267-remote-linux-kernel-heap-overflow-tipc-module-allows-arbitrary-code-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2021-43267: Remote Linux Kernel Heap Overflow | TIPC Module Allows Arbitrary Code Execution record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: CVE-2021-43267: Remote Linux Kernel Heap Overflow | TIPC Module Allows Arbitrary Code Execution resource_label: primary resource_type: article resource_url: https://www.sentinelone.com/labs/tipc-remote-linux-kernel-heap-overflow-allows-arbitrary-code-execution/ parent_primary_url: https://www.sentinelone.com/labs/tipc-remote-linux-kernel-heap-overflow-allows-arbitrary-code-execution/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2021: \"CVE-2021-43267: Remote Linux Kernel Heap Overflow | TIPC Module Allows Arbitrary Code Execution\" by Max Van Amerongen](https://www.sentinelone.com/labs/tipc-remote-linux-kernel-heap-overflow-allows-arbitrary",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.sentinelone.com/labs/tipc-remote-linux-kernel-heap-overflow-allows-arbitrary-code-execution/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.sentinelone.com/labs/tipc-remote-linux-kernel-heap-overflow-allows-arbitrary-code-execution/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://www.sentinelone.com/labs/tipc-remote-linux-kernel-heap-overflow-allows-arbitrary-code-execution/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Heap Overflow",
        "TIPC",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "Analyzes a remote heap overflow vulnerability in the Linux kernel TIPC module, CVE-2021-43267.",
      "summary_zh": "分析了Linux内核TIPC模块中的远程堆溢出漏洞CVE-2021-43267。",
      "source_markdown": "[2021: \"CVE-2021-43267: Remote Linux Kernel Heap Overflow | TIPC Module Allows Arbitrary Code Execution\" by Max Van Amerongen](https://www.sentinelone.com/labs/tipc-remote-linux-kernel-heap-overflow-allows-arbitrary-code-execution/) [article] [CVE-2021-43267]",
      "search_text": "cve-2021-43267: remote linux kernel heap overflow | tipc module allows arbitrary code execution cve-2021-43267: remote linux kernel heap overflow | tipc module allows arbitrary code execution max van amerongen cve-2021-43267  vulnerabilities other other primary article https://www.sentinelone.com/labs/tipc-remote-linux-kernel-heap-overflow-allows-arbitrary-code-execution/ heap overflow tipc vulnerability  vulnerability analyzes a remote heap overflow vulnerability in the linux kernel tipc module, cve-2021-43267. 分析了linux内核tipc模块中的远程堆溢出漏洞cve-2021-43267。 # cve-2021-43267: remote linux kernel heap overflow | tipc module allows arbitrary code execution record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cve-2021-43267: remote linux kernel heap overflow | tipc module allows arbitrary code execution resource_label: primary resource_type: article resource_url: https://www.sentinelone.com/labs/tipc-remote-linux-kernel-heap-overflow-allows-arbitrary-code-execution/ parent_primary_url: https://www.sentinelone.com/labs/tipc-remote-linux-kernel-heap-overflow-allows-arbitrary-code-execution/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2021: \"cve-2021-43267: remote linux kernel heap overflow | tipc module allows arbitrary code execution\" by max van amerongen](https://www.sentinelone.com/labs/tipc-remote-linux-kernel-heap-overflow-allows-arbitrary unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "1dfe8498910c03ff",
      "item_id": "704fd94e89fbc440",
      "slug": "2021-vulnerabilities-other-an-epyc-escape-case-study-of-a-kvm-breakout-primary-a9b08d76",
      "year": 2021,
      "title": "An EPYC escape: Case-study of a KVM breakout",
      "item_title": "An EPYC escape: Case-study of a KVM breakout",
      "authors": [
        "Felix Wilhelm"
      ],
      "cves": [
        "CVE-2021-29657"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2021/06/an-epyc-escape-case-study-of-kvm.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2021/06/an-epyc-escape-case-study-of-kvm.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2021/06/an-epyc-escape-case-study-of-kvm.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2021-vulnerabilities-other-an-epyc-escape-case-study-of-a-kvm-breakout-primary-a9b08d76.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An EPYC escape: Case-study of a KVM breakout record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: An EPYC escape: Case-study of a KVM breakout resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2021/06/an-epyc-escape-case-study-of-kvm.html parent_primary_url: https://googleprojectzero.blogspot.com/2021/06/an-epyc-escape-case-study-of-kvm.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2021: \"An EPYC escape: Case-study of a KVM breakout\" by Felix Wilhelm](https://googleprojectzero.blogspot.com/2021/06/an-epyc-escape-case-study-of-kvm.html) [article] [CVE-2021-29657] cves: CVE-2021-29657 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vend",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2021/06/an-epyc-escape-case-study-of-kvm.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2021/06/an-epyc-escape-case-study-of-kvm.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KVM",
        "Breakout",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "Examines a KVM breakout case study related to CVE-2021-29657.",
      "summary_zh": "研究与CVE-2021-29657相关的KVM突破案例。",
      "source_markdown": "[2021: \"An EPYC escape: Case-study of a KVM breakout\" by Felix Wilhelm](https://googleprojectzero.blogspot.com/2021/06/an-epyc-escape-case-study-of-kvm.html) [article] [CVE-2021-29657]",
      "search_text": "an epyc escape: case-study of a kvm breakout an epyc escape: case-study of a kvm breakout felix wilhelm cve-2021-29657  vulnerabilities other other primary article https://googleprojectzero.blogspot.com/2021/06/an-epyc-escape-case-study-of-kvm.html kvm breakout vulnerability  vulnerability examines a kvm breakout case study related to cve-2021-29657. 研究与cve-2021-29657相关的kvm突破案例。 # an epyc escape: case-study of a kvm breakout record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: an epyc escape: case-study of a kvm breakout resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2021/06/an-epyc-escape-case-study-of-kvm.html parent_primary_url: https://googleprojectzero.blogspot.com/2021/06/an-epyc-escape-case-study-of-kvm.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2021: \"an epyc escape: case-study of a kvm breakout\" by felix wilhelm](https://googleprojectzero.blogspot.com/2021/06/an-epyc-escape-case-study-of-kvm.html) [article] [cve-2021-29657] cves: cve-2021-29657 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vend unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7fd964b6ae539866",
      "item_id": "176e29b99ce37f1e",
      "slug": "2021-vulnerabilities-other-cve-2021-1905-qualcomm-adreno-gpu-memory-mapping-use-after-free-primary-2ff6e511",
      "year": 2021,
      "title": "CVE-2021-1905: Qualcomm Adreno GPU memory mapping use-after-free",
      "item_title": "CVE-2021-1905: Qualcomm Adreno GPU memory mapping use-after-free",
      "authors": [
        "Ben Hawkes"
      ],
      "cves": [
        "CVE-2021-1905"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1905.html",
      "primary_url": "https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1905.html",
      "parent_primary_url": "https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1905.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2021-vulnerabilities-other-cve-2021-1905-qualcomm-adreno-gpu-memory-mapping-use-after-free-primary-2ff6e511.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2021-1905: Qualcomm Adreno GPU memory mapping use-after-free record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: CVE-2021-1905: Qualcomm Adreno GPU memory mapping use-after-free resource_label: primary resource_type: article resource_url: https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1905.html parent_primary_url: https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1905.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2021: \"CVE-2021-1905: Qualcomm Adreno GPU memory mapping use-after-free\" by Ben Hawkes](https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1905.html) [article] [CVE-2021-1905] cves: CVE-2021-1905 android_impact_status: possible android_impact_reason: mentions Qualcomm/Adreno Android",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1905.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1905.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1905.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions Qualcomm/Adreno Android SoC components",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Use-After-Free",
        "GPU",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "Discusses a use-after-free vulnerability in Qualcomm Adreno GPU memory mapping, CVE-2021-1905.",
      "summary_zh": "讨论了Qualcomm Adreno GPU内存映射中的使用后释放漏洞CVE-2021-1905。",
      "source_markdown": "[2021: \"CVE-2021-1905: Qualcomm Adreno GPU memory mapping use-after-free\" by Ben Hawkes](https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1905.html) [article] [CVE-2021-1905]",
      "search_text": "cve-2021-1905: qualcomm adreno gpu memory mapping use-after-free cve-2021-1905: qualcomm adreno gpu memory mapping use-after-free ben hawkes cve-2021-1905  vulnerabilities other other primary article https://googleprojectzero.github.io/0days-in-the-wild/0day-rcas/2021/cve-2021-1905.html use-after-free gpu vulnerability  vulnerability discusses a use-after-free vulnerability in qualcomm adreno gpu memory mapping, cve-2021-1905. 讨论了qualcomm adreno gpu内存映射中的使用后释放漏洞cve-2021-1905。 # cve-2021-1905: qualcomm adreno gpu memory mapping use-after-free record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cve-2021-1905: qualcomm adreno gpu memory mapping use-after-free resource_label: primary resource_type: article resource_url: https://googleprojectzero.github.io/0days-in-the-wild/0day-rcas/2021/cve-2021-1905.html parent_primary_url: https://googleprojectzero.github.io/0days-in-the-wild/0day-rcas/2021/cve-2021-1905.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2021: \"cve-2021-1905: qualcomm adreno gpu memory mapping use-after-free\" by ben hawkes](https://googleprojectzero.github.io/0days-in-the-wild/0day-rcas/2021/cve-2021-1905.html) [article] [cve-2021-1905] cves: cve-2021-1905 android_impact_status: possible android_impact_reason: mentions qualcomm/adreno android possible mentions qualcomm/adreno android soc components no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "b5180db6e73c59ec",
      "item_id": "5d6dd7e0d953723b",
      "slug": "2021-vulnerabilities-other-a-foray-into-linux-kernel-exploitation-on-android-primary-39c92207",
      "year": 2021,
      "title": "A foray into Linux kernel exploitation on Android",
      "item_title": "A foray into Linux kernel exploitation on Android",
      "authors": [
        "Ayaz Mammadov"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://mcyoloswagham.github.io/linux/",
      "primary_url": "https://mcyoloswagham.github.io/linux/",
      "parent_primary_url": "https://mcyoloswagham.github.io/linux/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2021-vulnerabilities-other-a-foray-into-linux-kernel-exploitation-on-android-primary-39c92207.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A foray into Linux kernel exploitation on Android record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: A foray into Linux kernel exploitation on Android resource_label: primary resource_type: article resource_url: https://mcyoloswagham.github.io/linux/ parent_primary_url: https://mcyoloswagham.github.io/linux/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2021: \"A foray into Linux kernel exploitation on Android\" by Ayaz Mammadov](https://mcyoloswagham.github.io/linux/) [article] cves: none android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://mcyoloswagham.github.io/linux/ context_links: - [articl",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://mcyoloswagham.github.io/linux/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://mcyoloswagham.github.io/linux/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://mcyoloswagham.github.io/linux/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Android",
        "Exploitation",
        "Kernel"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "Explores Linux kernel exploitation techniques specifically for Android environments.",
      "summary_zh": "探讨专门针对Android环境的Linux内核利用技术。",
      "source_markdown": "[2021: \"A foray into Linux kernel exploitation on Android\" by Ayaz Mammadov](https://mcyoloswagham.github.io/linux/) [article]",
      "search_text": "a foray into linux kernel exploitation on android a foray into linux kernel exploitation on android ayaz mammadov   vulnerabilities other other primary article https://mcyoloswagham.github.io/linux/ android exploitation kernel  vulnerability explores linux kernel exploitation techniques specifically for android environments. 探讨专门针对android环境的linux内核利用技术。 # a foray into linux kernel exploitation on android record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: a foray into linux kernel exploitation on android resource_label: primary resource_type: article resource_url: https://mcyoloswagham.github.io/linux/ parent_primary_url: https://mcyoloswagham.github.io/linux/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2021: \"a foray into linux kernel exploitation on android\" by ayaz mammadov](https://mcyoloswagham.github.io/linux/) [article] cves: none android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://mcyoloswagham.github.io/linux/ context_links: - [articl yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "3156f5bbbe23000a",
      "item_id": "fda4cbf6eb2f77e1",
      "slug": "2020-vulnerabilities-other-cve-2020-16119-primary-13b5088b",
      "year": 2020,
      "title": "CVE-2020-16119",
      "item_title": "CVE-2020-16119",
      "authors": [],
      "cves": [
        "CVE-2020-16119"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/HadarManor/Public-Vulnerabilities/blob/master/CVE-2020-16119/CVE-2020-16119.md",
      "primary_url": "https://github.com/HadarManor/Public-Vulnerabilities/blob/master/CVE-2020-16119/CVE-2020-16119.md",
      "parent_primary_url": "https://github.com/HadarManor/Public-Vulnerabilities/blob/master/CVE-2020-16119/CVE-2020-16119.md",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2020-vulnerabilities-other-cve-2020-16119-primary-13b5088b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2020-16119 record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: CVE-2020-16119 resource_label: primary resource_type: article resource_url: https://github.com/HadarManor/Public-Vulnerabilities/blob/master/CVE-2020-16119/CVE-2020-16119.md parent_primary_url: https://github.com/HadarManor/Public-Vulnerabilities/blob/master/CVE-2020-16119/CVE-2020-16119.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2020: \"CVE-2020-16119\"](https://github.com/HadarManor/Public-Vulnerabilities/blob/master/CVE-2020-16119/CVE-2020-16119.md) [article] [CVE-2020-16119] cves: CVE-2020-16119 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Product",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/HadarManor/Public-Vulnerabilities/blob/master/CVE-2020-16119/CVE-2020-16119.md"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/HadarManor/Public-Vulnerabilities/blob/master/CVE-2020-16119/CVE-2020-16119.md"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/HadarManor/Public-Vulnerabilities/blob/master/CVE-2020-16119/CVE-2020-16119.md"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "Analyzes the vulnerability CVE-2020-16119 in the Linux kernel.",
      "summary_zh": "分析Linux内核中的漏洞CVE-2020-16119。",
      "source_markdown": "[2020: \"CVE-2020-16119\"](https://github.com/HadarManor/Public-Vulnerabilities/blob/master/CVE-2020-16119/CVE-2020-16119.md) [article] [CVE-2020-16119]",
      "search_text": "cve-2020-16119 cve-2020-16119  cve-2020-16119  vulnerabilities other other primary article https://github.com/hadarmanor/public-vulnerabilities/blob/master/cve-2020-16119/cve-2020-16119.md vulnerability  vulnerability analyzes the vulnerability cve-2020-16119 in the linux kernel. 分析linux内核中的漏洞cve-2020-16119。 # cve-2020-16119 record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cve-2020-16119 resource_label: primary resource_type: article resource_url: https://github.com/hadarmanor/public-vulnerabilities/blob/master/cve-2020-16119/cve-2020-16119.md parent_primary_url: https://github.com/hadarmanor/public-vulnerabilities/blob/master/cve-2020-16119/cve-2020-16119.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2020: \"cve-2020-16119\"](https://github.com/hadarmanor/public-vulnerabilities/blob/master/cve-2020-16119/cve-2020-16119.md) [article] [cve-2020-16119] cves: cve-2020-16119 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: product unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "962a11de726c8de1",
      "item_id": "78ac82935e077caa",
      "slug": "2020-vulnerabilities-other-the-short-story-of-1-linux-kernel-use-after-free-bug-and-2-cves-cve-2020-14356-and-",
      "year": 2020,
      "title": "The short story of 1 Linux Kernel Use-After-Free bug and 2 CVEs (CVE-2020-14356 and CVE-2020-25220)",
      "item_title": "The short story of 1 Linux Kernel Use-After-Free bug and 2 CVEs (CVE-2020-14356 and CVE-2020-25220)",
      "authors": [
        "Adam Zabrocki"
      ],
      "cves": [
        "CVE-2020-14356",
        "CVE-2020-25220"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://blog.pi3.com.pl/?p=720",
      "primary_url": "http://blog.pi3.com.pl/?p=720",
      "parent_primary_url": "http://blog.pi3.com.pl/?p=720",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2020-vulnerabilities-other-the-short-story-of-1-linux-kernel-use-after-free-bug-and-2-cves-cve-2020-14356-and-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The short story of 1 Linux Kernel Use-After-Free bug and 2 CVEs (CVE-2020-14356 and CVE-2020-25220) record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: The short story of 1 Linux Kernel Use-After-Free bug and 2 CVEs (CVE-2020-14356 and CVE-2020-25220) resource_label: primary resource_type: article resource_url: http://blog.pi3.com.pl/?p=720 parent_primary_url: http://blog.pi3.com.pl/?p=720 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2020: \"The short story of 1 Linux Kernel Use-After-Free bug and 2 CVEs (CVE-2020-14356 and CVE-2020-25220)\" by Adam Zabrocki](http://blog.pi3.com.pl/?p=720) [article] [CVE-2020-14356, CVE-2020-25220] cves: CVE-2020-14356, CVE-2020-25220 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impa",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://blog.pi3.com.pl/?p=720"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://blog.pi3.com.pl/?p=720"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Use-After-Free",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "Discusses two CVEs related to a Linux kernel use-after-free bug.",
      "summary_zh": "讨论与Linux内核使用后释放漏洞相关的两个CVE。",
      "source_markdown": "[2020: \"The short story of 1 Linux Kernel Use-After-Free bug and 2 CVEs (CVE-2020-14356 and CVE-2020-25220)\" by Adam Zabrocki](http://blog.pi3.com.pl/?p=720) [article] [CVE-2020-14356, CVE-2020-25220]",
      "search_text": "the short story of 1 linux kernel use-after-free bug and 2 cves (cve-2020-14356 and cve-2020-25220) the short story of 1 linux kernel use-after-free bug and 2 cves (cve-2020-14356 and cve-2020-25220) adam zabrocki cve-2020-14356 cve-2020-25220  vulnerabilities other other primary article http://blog.pi3.com.pl/?p=720 use-after-free vulnerability  vulnerability discusses two cves related to a linux kernel use-after-free bug. 讨论与linux内核使用后释放漏洞相关的两个cve。 # the short story of 1 linux kernel use-after-free bug and 2 cves (cve-2020-14356 and cve-2020-25220) record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: the short story of 1 linux kernel use-after-free bug and 2 cves (cve-2020-14356 and cve-2020-25220) resource_label: primary resource_type: article resource_url: http://blog.pi3.com.pl/?p=720 parent_primary_url: http://blog.pi3.com.pl/?p=720 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2020: \"the short story of 1 linux kernel use-after-free bug and 2 cves (cve-2020-14356 and cve-2020-25220)\" by adam zabrocki](http://blog.pi3.com.pl/?p=720) [article] [cve-2020-14356, cve-2020-25220] cves: cve-2020-14356, cve-2020-25220 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impa unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "8d83bfc305a1594d",
      "item_id": "8360cfd170c63dac",
      "slug": "2020-vulnerabilities-other-curiosity-around-exec-id-and-some-problems-associated-with-it-primary-4c354f28",
      "year": 2020,
      "title": "Curiosity around 'exec_id' and some problems associated with it",
      "item_title": "Curiosity around 'exec_id' and some problems associated with it",
      "authors": [
        "Adam Zabrocki"
      ],
      "cves": [],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.openwall.com/lists/kernel-hardening/2020/03/25/1",
      "primary_url": "https://www.openwall.com/lists/kernel-hardening/2020/03/25/1",
      "parent_primary_url": "https://www.openwall.com/lists/kernel-hardening/2020/03/25/1",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2020-vulnerabilities-other-curiosity-around-exec-id-and-some-problems-associated-with-it-primary-4c354f28.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Curiosity around 'exec_id' and some problems associated with it record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Curiosity around 'exec_id' and some problems associated with it resource_label: primary resource_type: article resource_url: https://www.openwall.com/lists/kernel-hardening/2020/03/25/1 parent_primary_url: https://www.openwall.com/lists/kernel-hardening/2020/03/25/1 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2020: \"Curiosity around 'exec_id' and some problems associated with it\" by Adam Zabrocki](https://www.openwall.com/lists/kernel-hardening/2020/03/25/1) [article] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.openwall.com/lists/kernel-hardening/2020/03/25/1"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.openwall.com/lists/kernel-hardening/2020/03/25/1"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exec_id",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "Explores issues related to 'exec_id' in the Linux kernel.",
      "summary_zh": "探讨与Linux内核中的'exec_id'相关的问题。",
      "source_markdown": "[2020: \"Curiosity around 'exec_id' and some problems associated with it\" by Adam Zabrocki](https://www.openwall.com/lists/kernel-hardening/2020/03/25/1) [article]",
      "search_text": "curiosity around 'exec_id' and some problems associated with it curiosity around 'exec_id' and some problems associated with it adam zabrocki   vulnerabilities other other primary article https://www.openwall.com/lists/kernel-hardening/2020/03/25/1 exec_id vulnerability  vulnerability explores issues related to 'exec_id' in the linux kernel. 探讨与linux内核中的'exec_id'相关的问题。 # curiosity around 'exec_id' and some problems associated with it record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: curiosity around 'exec_id' and some problems associated with it resource_label: primary resource_type: article resource_url: https://www.openwall.com/lists/kernel-hardening/2020/03/25/1 parent_primary_url: https://www.openwall.com/lists/kernel-hardening/2020/03/25/1 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2020: \"curiosity around 'exec_id' and some problems associated with it\" by adam zabrocki](https://www.openwall.com/lists/kernel-hardening/2020/03/25/1) [article] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c40e191ef12e3d30",
      "item_id": "4fc8c84f7438b09a",
      "slug": "2020-vulnerabilities-other-the-never-ending-problems-of-local-aslr-holes-in-linux-primary-526741d7",
      "year": 2020,
      "title": "The never ending problems of local ASLR holes in Linux",
      "item_title": "The never ending problems of local ASLR holes in Linux",
      "authors": [],
      "cves": [
        "CVE-2019-11190"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.blazeinfosec.com/the-never-ending-problems-of-local-aslr-holes-in-linux/",
      "primary_url": "https://blog.blazeinfosec.com/the-never-ending-problems-of-local-aslr-holes-in-linux/",
      "parent_primary_url": "https://blog.blazeinfosec.com/the-never-ending-problems-of-local-aslr-holes-in-linux/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2020-vulnerabilities-other-the-never-ending-problems-of-local-aslr-holes-in-linux-primary-526741d7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The never ending problems of local ASLR holes in Linux record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: The never ending problems of local ASLR holes in Linux resource_label: primary resource_type: article resource_url: https://blog.blazeinfosec.com/the-never-ending-problems-of-local-aslr-holes-in-linux/ parent_primary_url: https://blog.blazeinfosec.com/the-never-ending-problems-of-local-aslr-holes-in-linux/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2020: \"The never ending problems of local ASLR holes in Linux\"](https://blog.blazeinfosec.com/the-never-ending-problems-of-local-aslr-holes-in-linux/) [article] [CVE-2019-11190] cves: CVE-2019-11190 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.blazeinfosec.com/the-never-ending-problems-of-local-aslr-holes-in-linux/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.blazeinfosec.com/the-never-ending-problems-of-local-aslr-holes-in-linux/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "ASLR",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "Examines local ASLR holes in Linux and their implications, related to CVE-2019-11190.",
      "summary_zh": "检查Linux中的本地ASLR漏洞及其影响，涉及CVE-2019-11190。",
      "source_markdown": "[2020: \"The never ending problems of local ASLR holes in Linux\"](https://blog.blazeinfosec.com/the-never-ending-problems-of-local-aslr-holes-in-linux/) [article] [CVE-2019-11190]",
      "search_text": "the never ending problems of local aslr holes in linux the never ending problems of local aslr holes in linux  cve-2019-11190  vulnerabilities other other primary article https://blog.blazeinfosec.com/the-never-ending-problems-of-local-aslr-holes-in-linux/ aslr vulnerability  vulnerability examines local aslr holes in linux and their implications, related to cve-2019-11190. 检查linux中的本地aslr漏洞及其影响，涉及cve-2019-11190。 # the never ending problems of local aslr holes in linux record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: the never ending problems of local aslr holes in linux resource_label: primary resource_type: article resource_url: https://blog.blazeinfosec.com/the-never-ending-problems-of-local-aslr-holes-in-linux/ parent_primary_url: https://blog.blazeinfosec.com/the-never-ending-problems-of-local-aslr-holes-in-linux/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2020: \"the never ending problems of local aslr holes in linux\"](https://blog.blazeinfosec.com/the-never-ending-problems-of-local-aslr-holes-in-linux/) [article] [cve-2019-11190] cves: cve-2019-11190 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel- unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "8c166ae7ccc83360",
      "item_id": "32e5844c96cfd33c",
      "slug": "2019-vulnerabilities-other-binder-secctx-patch-analysis-primary-39ac9a72",
      "year": 2019,
      "title": "Binder Secctx Patch Analysis",
      "item_title": "Binder Secctx Patch Analysis",
      "authors": [
        "Jean-Baptiste Cayrou"
      ],
      "cves": [
        "CVE-2019-2023"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.synacktiv.com/publications/binder-secctx-patch-analysis.html",
      "primary_url": "https://www.synacktiv.com/publications/binder-secctx-patch-analysis.html",
      "parent_primary_url": "https://www.synacktiv.com/publications/binder-secctx-patch-analysis.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2019-vulnerabilities-other-binder-secctx-patch-analysis-primary-39ac9a72.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Binder Secctx Patch Analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Binder Secctx Patch Analysis resource_label: primary resource_type: article resource_url: https://www.synacktiv.com/publications/binder-secctx-patch-analysis.html parent_primary_url: https://www.synacktiv.com/publications/binder-secctx-patch-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2019: \"Binder Secctx Patch Analysis\" by Jean-Baptiste Cayrou](https://www.synacktiv.com/publications/binder-secctx-patch-analysis.html) [article] [CVE-2019-2023] cves: CVE-2019-2023 android_impact_status: possible android_impact_reason: mentions Binder, a core Android IPC driver ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: fa",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.synacktiv.com/publications/binder-secctx-patch-analysis.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.synacktiv.com/publications/binder-secctx-patch-analysis.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://www.synacktiv.com/publications/binder-secctx-patch-analysis.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions Binder, a core Android IPC driver",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Binder",
        "Patch Analysis",
        "Vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "Vulnerability",
      "summary_en": "Analyzes the Binder Secctx patch and its associated vulnerabilities, CVE-2019-2023.",
      "summary_zh": "分析Binder Secctx补丁及其相关漏洞CVE-2019-2023。",
      "source_markdown": "[2019: \"Binder Secctx Patch Analysis\" by Jean-Baptiste Cayrou](https://www.synacktiv.com/publications/binder-secctx-patch-analysis.html) [article] [CVE-2019-2023]",
      "search_text": "binder secctx patch analysis binder secctx patch analysis jean-baptiste cayrou cve-2019-2023  vulnerabilities other other primary article https://www.synacktiv.com/publications/binder-secctx-patch-analysis.html binder patch analysis vulnerability  vulnerability analyzes the binder secctx patch and its associated vulnerabilities, cve-2019-2023. 分析binder secctx补丁及其相关漏洞cve-2019-2023。 # binder secctx patch analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: binder secctx patch analysis resource_label: primary resource_type: article resource_url: https://www.synacktiv.com/publications/binder-secctx-patch-analysis.html parent_primary_url: https://www.synacktiv.com/publications/binder-secctx-patch-analysis.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2019: \"binder secctx patch analysis\" by jean-baptiste cayrou](https://www.synacktiv.com/publications/binder-secctx-patch-analysis.html) [article] [cve-2019-2023] cves: cve-2019-2023 android_impact_status: possible android_impact_reason: mentions binder, a core android ipc driver ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: fa possible mentions binder, a core android ipc driver no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "615332659c55d545",
      "item_id": "ac196ee2b4d9ad88",
      "slug": "2019-vulnerabilities-other-reverse-engineering-broadcom-wireless-chipsets-primary-5b7dc6c6",
      "year": 2019,
      "title": "Reverse-engineering Broadcom wireless chipsets",
      "item_title": "Reverse-engineering Broadcom wireless chipsets",
      "authors": [
        "Hugues Anguelkov"
      ],
      "cves": [
        "CVE-2019-9503",
        "CVE-2019-9500"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.quarkslab.com/reverse-engineering-broadcom-wireless-chipsets.html",
      "primary_url": "https://blog.quarkslab.com/reverse-engineering-broadcom-wireless-chipsets.html",
      "parent_primary_url": "https://blog.quarkslab.com/reverse-engineering-broadcom-wireless-chipsets.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2019-vulnerabilities-other-reverse-engineering-broadcom-wireless-chipsets-primary-5b7dc6c6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Reverse-engineering Broadcom wireless chipsets record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Reverse-engineering Broadcom wireless chipsets resource_label: primary resource_type: article resource_url: https://blog.quarkslab.com/reverse-engineering-broadcom-wireless-chipsets.html parent_primary_url: https://blog.quarkslab.com/reverse-engineering-broadcom-wireless-chipsets.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2019: \"Reverse-engineering Broadcom wireless chipsets\" by Hugues Anguelkov](https://blog.quarkslab.com/reverse-engineering-broadcom-wireless-chipsets.html) [article] [CVE-2019-9503, CVE-2019-9500] cves: CVE-2019-9503, CVE-2019-9500 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kern",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.quarkslab.com/reverse-engineering-broadcom-wireless-chipsets.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.quarkslab.com/reverse-engineering-broadcom-wireless-chipsets.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "wireless",
        "Broadcom"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article discusses vulnerabilities in Broadcom wireless chipsets and their implications.",
      "summary_zh": "本文讨论了Broadcom无线芯片组的漏洞及其影响。",
      "source_markdown": "[2019: \"Reverse-engineering Broadcom wireless chipsets\" by Hugues Anguelkov](https://blog.quarkslab.com/reverse-engineering-broadcom-wireless-chipsets.html) [article] [CVE-2019-9503, CVE-2019-9500]",
      "search_text": "reverse-engineering broadcom wireless chipsets reverse-engineering broadcom wireless chipsets hugues anguelkov cve-2019-9503 cve-2019-9500  vulnerabilities other other primary article https://blog.quarkslab.com/reverse-engineering-broadcom-wireless-chipsets.html vulnerability wireless broadcom  vulnerability this article discusses vulnerabilities in broadcom wireless chipsets and their implications. 本文讨论了broadcom无线芯片组的漏洞及其影响。 # reverse-engineering broadcom wireless chipsets record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: reverse-engineering broadcom wireless chipsets resource_label: primary resource_type: article resource_url: https://blog.quarkslab.com/reverse-engineering-broadcom-wireless-chipsets.html parent_primary_url: https://blog.quarkslab.com/reverse-engineering-broadcom-wireless-chipsets.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2019: \"reverse-engineering broadcom wireless chipsets\" by hugues anguelkov](https://blog.quarkslab.com/reverse-engineering-broadcom-wireless-chipsets.html) [article] [cve-2019-9503, cve-2019-9500] cves: cve-2019-9503, cve-2019-9500 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kern unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6e89a0f2703a9995",
      "item_id": "c34c6edbd6362e17",
      "slug": "2019-vulnerabilities-other-cve-2019-2000-android-kernel-binder-vulnerability-analysis-primary-08ab220e",
      "year": 2019,
      "title": "CVE-2019-2000 - Android kernel binder vulnerability analysis",
      "item_title": "CVE-2019-2000 - Android kernel binder vulnerability analysis",
      "authors": [],
      "cves": [
        "CVE-2019-2000"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://xz.aliyun.com/t/4494",
      "primary_url": "https://xz.aliyun.com/t/4494",
      "parent_primary_url": "https://xz.aliyun.com/t/4494",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2019-vulnerabilities-other-cve-2019-2000-android-kernel-binder-vulnerability-analysis-primary-08ab220e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2019-2000 - Android kernel binder vulnerability analysis record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: CVE-2019-2000 - Android kernel binder vulnerability analysis resource_label: primary resource_type: article resource_url: https://xz.aliyun.com/t/4494 parent_primary_url: https://xz.aliyun.com/t/4494 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2019: \"CVE-2019-2000 - Android kernel binder vulnerability analysis\"](https://xz.aliyun.com/t/4494) [article] [CVE-2019-2000] cves: CVE-2019-2000 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://xz",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://xz.aliyun.com/t/4494"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://xz.aliyun.com/t/4494"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "Android",
        "binder"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "An analysis of the Android kernel binder vulnerability CVE-2019-2000 is presented in this article.",
      "summary_zh": "本文介绍了Android内核绑定器漏洞CVE-2019-2000的分析。",
      "source_markdown": "[2019: \"CVE-2019-2000 - Android kernel binder vulnerability analysis\"](https://xz.aliyun.com/t/4494) [article] [CVE-2019-2000]",
      "search_text": "cve-2019-2000 - android kernel binder vulnerability analysis cve-2019-2000 - android kernel binder vulnerability analysis  cve-2019-2000  vulnerabilities other other primary article https://xz.aliyun.com/t/4494 vulnerability android binder  vulnerability an analysis of the android kernel binder vulnerability cve-2019-2000 is presented in this article. 本文介绍了android内核绑定器漏洞cve-2019-2000的分析。 # cve-2019-2000 - android kernel binder vulnerability analysis record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cve-2019-2000 - android kernel binder vulnerability analysis resource_label: primary resource_type: article resource_url: https://xz.aliyun.com/t/4494 parent_primary_url: https://xz.aliyun.com/t/4494 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2019: \"cve-2019-2000 - android kernel binder vulnerability analysis\"](https://xz.aliyun.com/t/4494) [article] [cve-2019-2000] cves: cve-2019-2000 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://xz yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "13e99bbf9190ed02",
      "item_id": "1aa7bf3715872214",
      "slug": "2019-vulnerabilities-other-linux-virtual-address-0-is-mappable-via-privileged-write-to-proc-mem-primary-954852",
      "year": 2019,
      "title": "Linux: virtual address 0 is mappable via privileged write() to /proc/\\*/mem",
      "item_title": "Linux: virtual address 0 is mappable via privileged write() to /proc/\\*/mem",
      "authors": [],
      "cves": [
        "CVE-2019-9213"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1792&desc=2",
      "primary_url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1792&desc=2",
      "parent_primary_url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1792&desc=2",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2019-vulnerabilities-other-linux-virtual-address-0-is-mappable-via-privileged-write-to-proc-mem-primary-954852.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux: virtual address 0 is mappable via privileged write() to /proc/\\*/mem record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Linux: virtual address 0 is mappable via privileged write() to /proc/\\*/mem resource_label: primary resource_type: article resource_url: https://bugs.chromium.org/p/project-zero/issues/detail?id=1792&desc=2 parent_primary_url: https://bugs.chromium.org/p/project-zero/issues/detail?id=1792&desc=2 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2019: \"Linux: virtual address 0 is mappable via privileged write() to /proc/\\*/mem\"](https://bugs.chromium.org/p/project-zero/issues/detail?id=1792&desc=2) [article] [CVE-2019-9213] cves: CVE-2019-9213 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1792&desc=2"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1792&desc=2"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "memory",
        "Linux"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article reveals that virtual address 0 can be mapped via privileged write to /proc/*/mem in Linux.",
      "summary_zh": "本文揭示了在Linux中可以通过特权写入/proc/*/mem映射虚拟地址0。",
      "source_markdown": "[2019: \"Linux: virtual address 0 is mappable via privileged write() to /proc/\\*/mem\"](https://bugs.chromium.org/p/project-zero/issues/detail?id=1792&desc=2) [article] [CVE-2019-9213]",
      "search_text": "linux: virtual address 0 is mappable via privileged write() to /proc/\\*/mem linux: virtual address 0 is mappable via privileged write() to /proc/\\*/mem  cve-2019-9213  vulnerabilities other other primary article https://bugs.chromium.org/p/project-zero/issues/detail?id=1792&desc=2 vulnerability memory linux  vulnerability this article reveals that virtual address 0 can be mapped via privileged write to /proc/*/mem in linux. 本文揭示了在linux中可以通过特权写入/proc/*/mem映射虚拟地址0。 # linux: virtual address 0 is mappable via privileged write() to /proc/\\*/mem record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: linux: virtual address 0 is mappable via privileged write() to /proc/\\*/mem resource_label: primary resource_type: article resource_url: https://bugs.chromium.org/p/project-zero/issues/detail?id=1792&desc=2 parent_primary_url: https://bugs.chromium.org/p/project-zero/issues/detail?id=1792&desc=2 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2019: \"linux: virtual address 0 is mappable via privileged write() to /proc/\\*/mem\"](https://bugs.chromium.org/p/project-zero/issues/detail?id=1792&desc=2) [article] [cve-2019-9213] cves: cve-2019-9213 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "401c67b2a83b9db1",
      "item_id": "e07845d9c5199974",
      "slug": "2019-vulnerabilities-other-cve-2019-9213-analysis-of-linux-kernel-user-space-0-virtual-address-mapping-vulnera",
      "year": 2019,
      "title": "CVE-2019-9213 - Analysis of Linux Kernel User Space 0 Virtual Address Mapping Vulnerability",
      "item_title": "CVE-2019-9213 - Analysis of Linux Kernel User Space 0 Virtual Address Mapping Vulnerability",
      "authors": [],
      "cves": [
        "CVE-2019-9213"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://cert.360.cn/report/detail?id=58e8387ec4c79693354d4797871536ea",
      "primary_url": "https://cert.360.cn/report/detail?id=58e8387ec4c79693354d4797871536ea",
      "parent_primary_url": "https://cert.360.cn/report/detail?id=58e8387ec4c79693354d4797871536ea",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2019-vulnerabilities-other-cve-2019-9213-analysis-of-linux-kernel-user-space-0-virtual-address-mapping-vulnera.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2019-9213 - Analysis of Linux Kernel User Space 0 Virtual Address Mapping Vulnerability record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: CVE-2019-9213 - Analysis of Linux Kernel User Space 0 Virtual Address Mapping Vulnerability resource_label: primary resource_type: article resource_url: https://cert.360.cn/report/detail?id=58e8387ec4c79693354d4797871536ea parent_primary_url: https://cert.360.cn/report/detail?id=58e8387ec4c79693354d4797871536ea source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2019: \"CVE-2019-9213 - Analysis of Linux Kernel User Space 0 Virtual Address Mapping Vulnerability\"](https://cert.360.cn/report/detail?id=58e8387ec4c79693354d4797871536ea) [article] [CVE-2019-9213] cves: CVE-2019-9213 android_impact_status: unknown android_impact_reason: Linux kernel vulnera",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://cert.360.cn/report/detail?id=58e8387ec4c79693354d4797871536ea"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://cert.360.cn/report/detail?id=58e8387ec4c79693354d4797871536ea"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "Linux",
        "user space"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The article analyzes the Linux kernel user space 0 virtual address mapping vulnerability CVE-2019-9213.",
      "summary_zh": "本文分析了Linux内核用户空间0虚拟地址映射漏洞CVE-2019-9213。",
      "source_markdown": "[2019: \"CVE-2019-9213 - Analysis of Linux Kernel User Space 0 Virtual Address Mapping Vulnerability\"](https://cert.360.cn/report/detail?id=58e8387ec4c79693354d4797871536ea) [article] [CVE-2019-9213]",
      "search_text": "cve-2019-9213 - analysis of linux kernel user space 0 virtual address mapping vulnerability cve-2019-9213 - analysis of linux kernel user space 0 virtual address mapping vulnerability  cve-2019-9213  vulnerabilities other other primary article https://cert.360.cn/report/detail?id=58e8387ec4c79693354d4797871536ea vulnerability linux user space  vulnerability the article analyzes the linux kernel user space 0 virtual address mapping vulnerability cve-2019-9213. 本文分析了linux内核用户空间0虚拟地址映射漏洞cve-2019-9213。 # cve-2019-9213 - analysis of linux kernel user space 0 virtual address mapping vulnerability record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: cve-2019-9213 - analysis of linux kernel user space 0 virtual address mapping vulnerability resource_label: primary resource_type: article resource_url: https://cert.360.cn/report/detail?id=58e8387ec4c79693354d4797871536ea parent_primary_url: https://cert.360.cn/report/detail?id=58e8387ec4c79693354d4797871536ea source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2019: \"cve-2019-9213 - analysis of linux kernel user space 0 virtual address mapping vulnerability\"](https://cert.360.cn/report/detail?id=58e8387ec4c79693354d4797871536ea) [article] [cve-2019-9213] cves: cve-2019-9213 android_impact_status: unknown android_impact_reason: linux kernel vulnera unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "67cc719c277e8237",
      "item_id": "66a71390a5ed7484",
      "slug": "2018-vulnerabilities-other-iommu-resistant-dma-attacks-primary-6c76d4b5",
      "year": 2018,
      "title": "IOMMU-resistant DMA attacks",
      "item_title": "IOMMU-resistant DMA attacks",
      "authors": [
        "Gil Kupfer"
      ],
      "cves": [],
      "tags": [
        "thesis"
      ],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "http://www.cs.technion.ac.il/users/wwwb/cgi-bin/tr-get.cgi/2018/MSC/MSC-2018-21.pdf",
      "primary_url": "http://www.cs.technion.ac.il/users/wwwb/cgi-bin/tr-get.cgi/2018/MSC/MSC-2018-21.pdf",
      "parent_primary_url": "http://www.cs.technion.ac.il/users/wwwb/cgi-bin/tr-get.cgi/2018/MSC/MSC-2018-21.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2018-vulnerabilities-other-iommu-resistant-dma-attacks-primary-6c76d4b5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# IOMMU-resistant DMA attacks record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: IOMMU-resistant DMA attacks resource_label: primary resource_type: paper resource_url: http://www.cs.technion.ac.il/users/wwwb/cgi-bin/tr-get.cgi/2018/MSC/MSC-2018-21.pdf parent_primary_url: http://www.cs.technion.ac.il/users/wwwb/cgi-bin/tr-get.cgi/2018/MSC/MSC-2018-21.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2018: \"IOMMU-resistant DMA attacks\" by Gil Kupfer](http://www.cs.technion.ac.il/users/wwwb/cgi-bin/tr-get.cgi/2018/MSC/MSC-2018-21.pdf) [thesis] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "http://www.cs.technion.ac.il/users/wwwb/cgi-bin/tr-get.cgi/2018/MSC/MSC-2018-21.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "http://www.cs.technion.ac.il/users/wwwb/cgi-bin/tr-get.cgi/2018/MSC/MSC-2018-21.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "thesis",
        "DMA",
        "IOMMU"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This thesis discusses IOMMU-resistant DMA attacks and their implications for system security.",
      "summary_zh": "本文讨论了IOMMU抗DMA攻击及其对系统安全的影响。",
      "source_markdown": "[2018: \"IOMMU-resistant DMA attacks\" by Gil Kupfer](http://www.cs.technion.ac.il/users/wwwb/cgi-bin/tr-get.cgi/2018/MSC/MSC-2018-21.pdf) [thesis]",
      "search_text": "iommu-resistant dma attacks iommu-resistant dma attacks gil kupfer  thesis vulnerabilities other other primary paper http://www.cs.technion.ac.il/users/wwwb/cgi-bin/tr-get.cgi/2018/msc/msc-2018-21.pdf thesis dma iommu  vulnerability this thesis discusses iommu-resistant dma attacks and their implications for system security. 本文讨论了iommu抗dma攻击及其对系统安全的影响。 # iommu-resistant dma attacks record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: iommu-resistant dma attacks resource_label: primary resource_type: paper resource_url: http://www.cs.technion.ac.il/users/wwwb/cgi-bin/tr-get.cgi/2018/msc/msc-2018-21.pdf parent_primary_url: http://www.cs.technion.ac.il/users/wwwb/cgi-bin/tr-get.cgi/2018/msc/msc-2018-21.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2018: \"iommu-resistant dma attacks\" by gil kupfer](http://www.cs.technion.ac.il/users/wwwb/cgi-bin/tr-get.cgi/2018/msc/msc-2018-21.pdf) [thesis] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5f7969cd8d10b9e0",
      "item_id": "a3ad901421a53e34",
      "slug": "2017-vulnerabilities-other-initroot-bypassing-nexus-6-secure-boot-through-kernel-command-line-injection-primar",
      "year": 2017,
      "title": "initroot: Bypassing Nexus 6 Secure Boot through Kernel Command-line Injection",
      "item_title": "initroot: Bypassing Nexus 6 Secure Boot through Kernel Command-line Injection",
      "authors": [],
      "cves": [
        "CVE-2017-1000363"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://alephsecurity.com/2017/05/23/nexus6-initroot/#anecdote-a-linux-kernel-out-of-bounds-write-cve-2017-1000363",
      "primary_url": "https://alephsecurity.com/2017/05/23/nexus6-initroot/#anecdote-a-linux-kernel-out-of-bounds-write-cve-2017-1000363",
      "parent_primary_url": "https://alephsecurity.com/2017/05/23/nexus6-initroot/#anecdote-a-linux-kernel-out-of-bounds-write-cve-2017-1000363",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2017-vulnerabilities-other-initroot-bypassing-nexus-6-secure-boot-through-kernel-command-line-injection-primar.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# initroot: Bypassing Nexus 6 Secure Boot through Kernel Command-line Injection record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: initroot: Bypassing Nexus 6 Secure Boot through Kernel Command-line Injection resource_label: primary resource_type: article resource_url: https://alephsecurity.com/2017/05/23/nexus6-initroot/#anecdote-a-linux-kernel-out-of-bounds-write-cve-2017-1000363 parent_primary_url: https://alephsecurity.com/2017/05/23/nexus6-initroot/#anecdote-a-linux-kernel-out-of-bounds-write-cve-2017-1000363 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2017: \"initroot: Bypassing Nexus 6 Secure Boot through Kernel Command-line Injection\"](https://alephsecurity.com/2017/05/23/nexus6-initroot/#anecdote-a-linux-kernel-out-of-bounds-write-cve-2017-1000363) [article] [CVE-2017-1000363",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://alephsecurity.com/2017/05/23/nexus6-initroot/#anecdote-a-linux-kernel-out-of-bounds-write-cve-2017-1000363"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://alephsecurity.com/2017/05/23/nexus6-initroot/#anecdote-a-linux-kernel-out-of-bounds-write-cve-2017-1000363"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Nexus devices",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "Secure Boot",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The article explores a method to bypass Nexus 6 Secure Boot through kernel command-line injection.",
      "summary_zh": "本文探讨了通过内核命令行注入绕过Nexus 6安全启动的方法。",
      "source_markdown": "[2017: \"initroot: Bypassing Nexus 6 Secure Boot through Kernel Command-line Injection\"](https://alephsecurity.com/2017/05/23/nexus6-initroot/#anecdote-a-linux-kernel-out-of-bounds-write-cve-2017-1000363) [article] [CVE-2017-1000363]",
      "search_text": "initroot: bypassing nexus 6 secure boot through kernel command-line injection initroot: bypassing nexus 6 secure boot through kernel command-line injection  cve-2017-1000363  vulnerabilities other other primary article https://alephsecurity.com/2017/05/23/nexus6-initroot/#anecdote-a-linux-kernel-out-of-bounds-write-cve-2017-1000363 vulnerability secure boot android  vulnerability the article explores a method to bypass nexus 6 secure boot through kernel command-line injection. 本文探讨了通过内核命令行注入绕过nexus 6安全启动的方法。 # initroot: bypassing nexus 6 secure boot through kernel command-line injection record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: initroot: bypassing nexus 6 secure boot through kernel command-line injection resource_label: primary resource_type: article resource_url: https://alephsecurity.com/2017/05/23/nexus6-initroot/#anecdote-a-linux-kernel-out-of-bounds-write-cve-2017-1000363 parent_primary_url: https://alephsecurity.com/2017/05/23/nexus6-initroot/#anecdote-a-linux-kernel-out-of-bounds-write-cve-2017-1000363 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2017: \"initroot: bypassing nexus 6 secure boot through kernel command-line injection\"](https://alephsecurity.com/2017/05/23/nexus6-initroot/#anecdote-a-linux-kernel-out-of-bounds-write-cve-2017-1000363) [article] [cve-2017-1000363 yes mentions nexus devices no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "08903675b40cc148",
      "item_id": "4fdb46f3df83edbc",
      "slug": "2016-vulnerabilities-other-motorola-android-bootloader-kernel-cmdline-injection-secure-boot-bypass-primary-911",
      "year": 2016,
      "title": "Motorola Android Bootloader Kernel Cmdline Injection Secure Boot Bypass",
      "item_title": "Motorola Android Bootloader Kernel Cmdline Injection Secure Boot Bypass",
      "authors": [],
      "cves": [
        "CVE-2016-10277"
      ],
      "tags": [],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://alephsecurity.com/vulns/aleph-2017011",
      "primary_url": "https://alephsecurity.com/vulns/aleph-2017011",
      "parent_primary_url": "https://alephsecurity.com/vulns/aleph-2017011",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2016-vulnerabilities-other-motorola-android-bootloader-kernel-cmdline-injection-secure-boot-bypass-primary-911.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Motorola Android Bootloader Kernel Cmdline Injection Secure Boot Bypass record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Motorola Android Bootloader Kernel Cmdline Injection Secure Boot Bypass resource_label: primary resource_type: article resource_url: https://alephsecurity.com/vulns/aleph-2017011 parent_primary_url: https://alephsecurity.com/vulns/aleph-2017011 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2016: \"Motorola Android Bootloader Kernel Cmdline Injection Secure Boot Bypass\"](https://alephsecurity.com/vulns/aleph-2017011) [article] [CVE-2016-10277] cves: CVE-2016-10277 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://alephsecurity.com/vulns/aleph-2017011"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://alephsecurity.com/vulns/aleph-2017011"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "Secure Boot",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "This article details a secure boot bypass vulnerability in the Motorola Android Bootloader.",
      "summary_zh": "本文详细介绍了Motorola Android引导加载程序中的安全启动绕过漏洞。",
      "source_markdown": "[2016: \"Motorola Android Bootloader Kernel Cmdline Injection Secure Boot Bypass\"](https://alephsecurity.com/vulns/aleph-2017011) [article] [CVE-2016-10277]",
      "search_text": "motorola android bootloader kernel cmdline injection secure boot bypass motorola android bootloader kernel cmdline injection secure boot bypass  cve-2016-10277  vulnerabilities other other primary article https://alephsecurity.com/vulns/aleph-2017011 vulnerability secure boot android  vulnerability this article details a secure boot bypass vulnerability in the motorola android bootloader. 本文详细介绍了motorola android引导加载程序中的安全启动绕过漏洞。 # motorola android bootloader kernel cmdline injection secure boot bypass record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: motorola android bootloader kernel cmdline injection secure boot bypass resource_label: primary resource_type: article resource_url: https://alephsecurity.com/vulns/aleph-2017011 parent_primary_url: https://alephsecurity.com/vulns/aleph-2017011 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2016: \"motorola android bootloader kernel cmdline injection secure boot bypass\"](https://alephsecurity.com/vulns/aleph-2017011) [article] [cve-2016-10277] cves: cve-2016-10277 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false  yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "93b23c117eefe65f",
      "item_id": "dd6907fe7b475176",
      "slug": "2015-vulnerabilities-other-vulnerability-in-the-linux-crypto-api-that-allows-unprivileged-users-to-load-arbitr",
      "year": 2015,
      "title": "Vulnerability in the Linux Crypto API that allows unprivileged users to load arbitrary kernel modules",
      "item_title": "Vulnerability in the Linux Crypto API that allows unprivileged users to load arbitrary kernel modules",
      "authors": [
        "Mathias Krause"
      ],
      "cves": [],
      "tags": [
        "annnouncement"
      ],
      "section": "Vulnerabilities",
      "subsection": "Other",
      "section_path": "Vulnerabilities / Other",
      "category": "Other",
      "vulnerability_class": "Other",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://plus.google.com/+MathiasKrause/posts/PqFCo4bfrWu",
      "primary_url": "https://plus.google.com/+MathiasKrause/posts/PqFCo4bfrWu",
      "parent_primary_url": "https://plus.google.com/+MathiasKrause/posts/PqFCo4bfrWu",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other",
      "raw_path": "/raw/2015-vulnerabilities-other-vulnerability-in-the-linux-crypto-api-that-allows-unprivileged-users-to-load-arbitr.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Vulnerability in the Linux Crypto API that allows unprivileged users to load arbitrary kernel modules record_kind: linux-kernel-resource-url section: Vulnerabilities subsection: Other category: Other item_title: Vulnerability in the Linux Crypto API that allows unprivileged users to load arbitrary kernel modules resource_label: primary resource_type: article resource_url: https://plus.google.com/+MathiasKrause/posts/PqFCo4bfrWu parent_primary_url: https://plus.google.com/+MathiasKrause/posts/PqFCo4bfrWu source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2015: \"Vulnerability in the Linux Crypto API that allows unprivileged users to load arbitrary kernel modules\" by Mathias Krause](https://plus.google.com/+MathiasKrause/posts/PqFCo4bfrWu) [annnouncement] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exp",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://plus.google.com/+MathiasKrause/posts/PqFCo4bfrWu"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://plus.google.com/+MathiasKrause/posts/PqFCo4bfrWu"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "announcement",
        "vulnerability",
        "Crypto API"
      ],
      "affected_area": "",
      "exploit_stage": "vulnerability",
      "summary_en": "The announcement highlights a vulnerability in the Linux Crypto API that allows unprivileged users to load kernel modules.",
      "summary_zh": "该公告强调了Linux Crypto API中的一个漏洞，允许非特权用户加载内核模块。",
      "source_markdown": "[2015: \"Vulnerability in the Linux Crypto API that allows unprivileged users to load arbitrary kernel modules\" by Mathias Krause](https://plus.google.com/+MathiasKrause/posts/PqFCo4bfrWu) [annnouncement]",
      "search_text": "vulnerability in the linux crypto api that allows unprivileged users to load arbitrary kernel modules vulnerability in the linux crypto api that allows unprivileged users to load arbitrary kernel modules mathias krause  annnouncement vulnerabilities other other primary article https://plus.google.com/+mathiaskrause/posts/pqfco4bfrwu announcement vulnerability crypto api  vulnerability the announcement highlights a vulnerability in the linux crypto api that allows unprivileged users to load kernel modules. 该公告强调了linux crypto api中的一个漏洞，允许非特权用户加载内核模块。 # vulnerability in the linux crypto api that allows unprivileged users to load arbitrary kernel modules record_kind: linux-kernel-resource-url section: vulnerabilities subsection: other category: other item_title: vulnerability in the linux crypto api that allows unprivileged users to load arbitrary kernel modules resource_label: primary resource_type: article resource_url: https://plus.google.com/+mathiaskrause/posts/pqfco4bfrwu parent_primary_url: https://plus.google.com/+mathiaskrause/posts/pqfco4bfrwu source_section_url: https://github.com/xairy/linux-kernel-exploitation#other source_item: [2015: \"vulnerability in the linux crypto api that allows unprivileged users to load arbitrary kernel modules\" by mathias krause](https://plus.google.com/+mathiaskrause/posts/pqfco4bfrwu) [annnouncement] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exp unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "0441d667cd7a59f1",
      "item_id": "33c019c0c4997f8b",
      "slug": "2026-finding-bugs-stepstone-llm-based-gpu-kernel-driver-fuzzing-via-user-space-libraries-primary-c8390b15",
      "year": 2026,
      "title": "StepStone: LLM-Based GPU Kernel Driver Fuzzing via User-Space Libraries",
      "item_title": "StepStone: LLM-Based GPU Kernel Driver Fuzzing via User-Space Libraries",
      "authors": [
        "Xiaochen Zou et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland26_gpu_fuzzing.pdf",
      "primary_url": "https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland26_gpu_fuzzing.pdf",
      "parent_primary_url": "https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland26_gpu_fuzzing.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2026-finding-bugs-stepstone-llm-based-gpu-kernel-driver-fuzzing-via-user-space-libraries-primary-c8390b15.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# StepStone: LLM-Based GPU Kernel Driver Fuzzing via User-Space Libraries record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: StepStone: LLM-Based GPU Kernel Driver Fuzzing via User-Space Libraries resource_label: primary resource_type: paper resource_url: https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland26_gpu_fuzzing.pdf parent_primary_url: https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland26_gpu_fuzzing.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2026: \"StepStone: LLM-Based GPU Kernel Driver Fuzzing via User-Space Libraries\" by Xiaochen Zou et. al](https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland26_gpu_fuzzing.pdf) [paper] [[code](https://github.com/seclab-ucr/StepStone)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to re",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland26_gpu_fuzzing.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/seclab-ucr/StepStone"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland26_gpu_fuzzing.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/seclab-ucr/StepStone"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/seclab-ucr/StepStone"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "GPU",
        "driver"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This paper presents a method for fuzzing GPU kernel drivers using user-space libraries.",
      "summary_zh": "本文提出了一种使用用户空间库对GPU内核驱动进行模糊测试的方法。",
      "source_markdown": "[2026: \"StepStone: LLM-Based GPU Kernel Driver Fuzzing via User-Space Libraries\" by Xiaochen Zou et. al](https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland26_gpu_fuzzing.pdf) [paper] [[code](https://github.com/seclab-ucr/StepStone)]",
      "search_text": "stepstone: llm-based gpu kernel driver fuzzing via user-space libraries stepstone: llm-based gpu kernel driver fuzzing via user-space libraries xiaochen zou et. al   finding bugs  finding bugs primary paper https://www.cs.ucr.edu/%7ezhiyunq/pub/oakland26_gpu_fuzzing.pdf fuzzing gpu driver  finding bugs this paper presents a method for fuzzing gpu kernel drivers using user-space libraries. 本文提出了一种使用用户空间库对gpu内核驱动进行模糊测试的方法。 # stepstone: llm-based gpu kernel driver fuzzing via user-space libraries record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: stepstone: llm-based gpu kernel driver fuzzing via user-space libraries resource_label: primary resource_type: paper resource_url: https://www.cs.ucr.edu/%7ezhiyunq/pub/oakland26_gpu_fuzzing.pdf parent_primary_url: https://www.cs.ucr.edu/%7ezhiyunq/pub/oakland26_gpu_fuzzing.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2026: \"stepstone: llm-based gpu kernel driver fuzzing via user-space libraries\" by xiaochen zou et. al](https://www.cs.ucr.edu/%7ezhiyunq/pub/oakland26_gpu_fuzzing.pdf) [paper] [[code](https://github.com/seclab-ucr/stepstone)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to re no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "c0a7880dbe1e8fe7",
      "item_id": "33c019c0c4997f8b",
      "slug": "2026-finding-bugs-stepstone-llm-based-gpu-kernel-driver-fuzzing-via-user-space-libraries-code-1329d20a",
      "year": 2026,
      "title": "StepStone: LLM-Based GPU Kernel Driver Fuzzing via User-Space Libraries · code",
      "item_title": "StepStone: LLM-Based GPU Kernel Driver Fuzzing via User-Space Libraries",
      "authors": [
        "Xiaochen Zou et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/seclab-ucr/StepStone",
      "primary_url": "https://github.com/seclab-ucr/StepStone",
      "parent_primary_url": "https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland26_gpu_fuzzing.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2026-finding-bugs-stepstone-llm-based-gpu-kernel-driver-fuzzing-via-user-space-libraries-code-1329d20a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# StepStone: LLM-Based GPU Kernel Driver Fuzzing via User-Space Libraries · code record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: StepStone: LLM-Based GPU Kernel Driver Fuzzing via User-Space Libraries resource_label: code resource_type: code resource_url: https://github.com/seclab-ucr/StepStone parent_primary_url: https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland26_gpu_fuzzing.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2026: \"StepStone: LLM-Based GPU Kernel Driver Fuzzing via User-Space Libraries\" by Xiaochen Zou et. al](https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland26_gpu_fuzzing.pdf) [paper] [[code](https://github.com/seclab-ucr/StepStone)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android device",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland26_gpu_fuzzing.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/seclab-ucr/StepStone"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland26_gpu_fuzzing.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/seclab-ucr/StepStone"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/seclab-ucr/StepStone"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "GPU",
        "driver"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "The code repository provides tools for fuzzing GPU kernel drivers via user-space libraries.",
      "summary_zh": "该代码库提供了通过用户空间库对GPU内核驱动进行模糊测试的工具。",
      "source_markdown": "[2026: \"StepStone: LLM-Based GPU Kernel Driver Fuzzing via User-Space Libraries\" by Xiaochen Zou et. al](https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland26_gpu_fuzzing.pdf) [paper] [[code](https://github.com/seclab-ucr/StepStone)]",
      "search_text": "stepstone: llm-based gpu kernel driver fuzzing via user-space libraries · code stepstone: llm-based gpu kernel driver fuzzing via user-space libraries xiaochen zou et. al   finding bugs  finding bugs code code https://github.com/seclab-ucr/stepstone fuzzing gpu driver  finding bugs the code repository provides tools for fuzzing gpu kernel drivers via user-space libraries. 该代码库提供了通过用户空间库对gpu内核驱动进行模糊测试的工具。 # stepstone: llm-based gpu kernel driver fuzzing via user-space libraries · code record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: stepstone: llm-based gpu kernel driver fuzzing via user-space libraries resource_label: code resource_type: code resource_url: https://github.com/seclab-ucr/stepstone parent_primary_url: https://www.cs.ucr.edu/%7ezhiyunq/pub/oakland26_gpu_fuzzing.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2026: \"stepstone: llm-based gpu kernel driver fuzzing via user-space libraries\" by xiaochen zou et. al](https://www.cs.ucr.edu/%7ezhiyunq/pub/oakland26_gpu_fuzzing.pdf) [paper] [[code](https://github.com/seclab-ucr/stepstone)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android device no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6be959c8a599177e",
      "item_id": "ad549c9072495a76",
      "slug": "2026-finding-bugs-discovery-validation-in-the-linux-kernel-part-3-local-vs-frontier-models-primary-95ed9b05",
      "year": 2026,
      "title": "Discovery & Validation in the Linux Kernel (Part 3): Local vs Frontier Models",
      "item_title": "Discovery & Validation in the Linux Kernel (Part 3): Local vs Frontier Models",
      "authors": [
        "Samuel Page"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-3-local-vs-frontier-models/",
      "primary_url": "https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-3-local-vs-frontier-models/",
      "parent_primary_url": "https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-3-local-vs-frontier-models/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2026-finding-bugs-discovery-validation-in-the-linux-kernel-part-3-local-vs-frontier-models-primary-95ed9b05.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Discovery & Validation in the Linux Kernel (Part 3): Local vs Frontier Models record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Discovery & Validation in the Linux Kernel (Part 3): Local vs Frontier Models resource_label: primary resource_type: article resource_url: https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-3-local-vs-frontier-models/ parent_primary_url: https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-3-local-vs-frontier-models/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2026: \"Discovery & Validation in the Linux Kernel (Part 3): Local vs Frontier Models\" by Samuel Page](https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-3-local-vs-frontier-models/) [article] cves: none android_impact_status: no android_impa",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-3-local-vs-frontier-models/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-3-local-vs-frontier-models/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "finding bugs",
        "validation",
        "Linux"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This article discusses discovery and validation techniques in the Linux kernel, focusing on local vs frontier models.",
      "summary_zh": "本文讨论了Linux内核中的发现和验证技术，重点是局部模型与边界模型。",
      "source_markdown": "[2026: \"Discovery & Validation in the Linux Kernel (Part 3): Local vs Frontier Models\" by Samuel Page](https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-3-local-vs-frontier-models/) [article]",
      "search_text": "discovery & validation in the linux kernel (part 3): local vs frontier models discovery & validation in the linux kernel (part 3): local vs frontier models samuel page   finding bugs  finding bugs primary article https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-3-local-vs-frontier-models/ finding bugs validation linux  finding bugs this article discusses discovery and validation techniques in the linux kernel, focusing on local vs frontier models. 本文讨论了linux内核中的发现和验证技术，重点是局部模型与边界模型。 # discovery & validation in the linux kernel (part 3): local vs frontier models record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: discovery & validation in the linux kernel (part 3): local vs frontier models resource_label: primary resource_type: article resource_url: https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-3-local-vs-frontier-models/ parent_primary_url: https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-3-local-vs-frontier-models/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2026: \"discovery & validation in the linux kernel (part 3): local vs frontier models\" by samuel page](https://bynar.io/blog/discovery-validation-in-the-linux-kernel-part-3-local-vs-frontier-models/) [article] cves: none android_impact_status: no android_impa no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "768ac9b863fe3ecb",
      "item_id": "6f2426fe458997db",
      "slug": "2026-finding-bugs-memory-safety-in-linux-device-drivers-enhancing-security-with-formal-verification-primary-15",
      "year": 2026,
      "title": "Memory Safety in Linux Device Drivers: Enhancing Security with Formal Verification",
      "item_title": "Memory Safety in Linux Device Drivers: Enhancing Security with Formal Verification",
      "authors": [
        "Janislley O. Sousa et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://ssvlab.github.io/lucasccordeiro/papers/icce2026.pdf",
      "primary_url": "https://ssvlab.github.io/lucasccordeiro/papers/icce2026.pdf",
      "parent_primary_url": "https://ssvlab.github.io/lucasccordeiro/papers/icce2026.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2026-finding-bugs-memory-safety-in-linux-device-drivers-enhancing-security-with-formal-verification-primary-15.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Memory Safety in Linux Device Drivers: Enhancing Security with Formal Verification record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Memory Safety in Linux Device Drivers: Enhancing Security with Formal Verification resource_label: primary resource_type: paper resource_url: https://ssvlab.github.io/lucasccordeiro/papers/icce2026.pdf parent_primary_url: https://ssvlab.github.io/lucasccordeiro/papers/icce2026.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2026: \"Memory Safety in Linux Device Drivers: Enhancing Security with Formal Verification\" by Janislley O. Sousa et. al](https://ssvlab.github.io/lucasccordeiro/papers/icce2026.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices.",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://ssvlab.github.io/lucasccordeiro/papers/icce2026.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://ssvlab.github.io/lucasccordeiro/papers/icce2026.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://ssvlab.github.io/lucasccordeiro/papers/icce2026.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "finding bugs",
        "memory safety",
        "verification"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "The paper discusses enhancing security in Linux device drivers through formal verification for memory safety.",
      "summary_zh": "本文讨论了通过形式验证增强Linux设备驱动程序的内存安全性。",
      "source_markdown": "[2026: \"Memory Safety in Linux Device Drivers: Enhancing Security with Formal Verification\" by Janislley O. Sousa et. al](https://ssvlab.github.io/lucasccordeiro/papers/icce2026.pdf) [paper]",
      "search_text": "memory safety in linux device drivers: enhancing security with formal verification memory safety in linux device drivers: enhancing security with formal verification janislley o. sousa et. al   finding bugs  finding bugs primary paper https://ssvlab.github.io/lucasccordeiro/papers/icce2026.pdf finding bugs memory safety verification  finding bugs the paper discusses enhancing security in linux device drivers through formal verification for memory safety. 本文讨论了通过形式验证增强linux设备驱动程序的内存安全性。 # memory safety in linux device drivers: enhancing security with formal verification record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: memory safety in linux device drivers: enhancing security with formal verification resource_label: primary resource_type: paper resource_url: https://ssvlab.github.io/lucasccordeiro/papers/icce2026.pdf parent_primary_url: https://ssvlab.github.io/lucasccordeiro/papers/icce2026.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2026: \"memory safety in linux device drivers: enhancing security with formal verification\" by janislley o. sousa et. al](https://ssvlab.github.io/lucasccordeiro/papers/icce2026.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "5a4282c21291d655",
      "item_id": "106f250725897ac9",
      "slug": "2026-finding-bugs-reproducing-a-syzbot-bug-in-5-minutes-now-with-virtme-ng-primary-1c45c4ac",
      "year": 2026,
      "title": "Reproducing a syzbot Bug in 5 Minutes — Now with virtme-ng!",
      "item_title": "Reproducing a syzbot Bug in 5 Minutes — Now with virtme-ng!",
      "authors": [
        "Roman Storozhenko"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://fosdem.org/2026/events/attachments/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf",
      "primary_url": "https://fosdem.org/2026/events/attachments/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf",
      "parent_primary_url": "https://fosdem.org/2026/events/attachments/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2026-finding-bugs-reproducing-a-syzbot-bug-in-5-minutes-now-with-virtme-ng-primary-1c45c4ac.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Reproducing a syzbot Bug in 5 Minutes — Now with virtme-ng! record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Reproducing a syzbot Bug in 5 Minutes — Now with virtme-ng! resource_label: primary resource_type: slides resource_url: https://fosdem.org/2026/events/attachments/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf parent_primary_url: https://fosdem.org/2026/events/attachments/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2026: \"Reproducing a syzbot Bug in 5 Minutes — Now with virtme-ng!\" by Roman Storozhenko](https://fosdem.org/2026/events/attachments/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf) [slides] [[video](https://f",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://fosdem.org/2026/events/attachments/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://fosdem.org/2026/schedule/event/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://fosdem.org/2026/events/attachments/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://fosdem.org/2026/schedule/event/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "finding bugs",
        "syzbot",
        "reproduction"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "The slides demonstrate how to reproduce a syzbot bug quickly using virtme-ng.",
      "summary_zh": "这些幻灯片展示了如何使用virtme-ng快速重现syzbot错误。",
      "source_markdown": "[2026: \"Reproducing a syzbot Bug in 5 Minutes — Now with virtme-ng!\" by Roman Storozhenko](https://fosdem.org/2026/events/attachments/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf) [slides] [[video](https://fosdem.org/2026/schedule/event/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/)]",
      "search_text": "reproducing a syzbot bug in 5 minutes — now with virtme-ng! reproducing a syzbot bug in 5 minutes — now with virtme-ng! roman storozhenko   finding bugs  finding bugs primary slides https://fosdem.org/2026/events/attachments/99ulyw-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf finding bugs syzbot reproduction  finding bugs the slides demonstrate how to reproduce a syzbot bug quickly using virtme-ng. 这些幻灯片展示了如何使用virtme-ng快速重现syzbot错误。 # reproducing a syzbot bug in 5 minutes — now with virtme-ng! record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: reproducing a syzbot bug in 5 minutes — now with virtme-ng! resource_label: primary resource_type: slides resource_url: https://fosdem.org/2026/events/attachments/99ulyw-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf parent_primary_url: https://fosdem.org/2026/events/attachments/99ulyw-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2026: \"reproducing a syzbot bug in 5 minutes — now with virtme-ng!\" by roman storozhenko](https://fosdem.org/2026/events/attachments/99ulyw-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf) [slides] [[video](https://f no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2a920994ae31b9d1",
      "item_id": "106f250725897ac9",
      "slug": "2026-finding-bugs-reproducing-a-syzbot-bug-in-5-minutes-now-with-virtme-ng-video-40724151",
      "year": 2026,
      "title": "Reproducing a syzbot Bug in 5 Minutes — Now with virtme-ng! · video",
      "item_title": "Reproducing a syzbot Bug in 5 Minutes — Now with virtme-ng!",
      "authors": [
        "Roman Storozhenko"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://fosdem.org/2026/schedule/event/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/",
      "primary_url": "https://fosdem.org/2026/schedule/event/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/",
      "parent_primary_url": "https://fosdem.org/2026/events/attachments/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2026-finding-bugs-reproducing-a-syzbot-bug-in-5-minutes-now-with-virtme-ng-video-40724151.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Reproducing a syzbot Bug in 5 Minutes — Now with virtme-ng! · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Reproducing a syzbot Bug in 5 Minutes — Now with virtme-ng! resource_label: video resource_type: video resource_url: https://fosdem.org/2026/schedule/event/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/ parent_primary_url: https://fosdem.org/2026/events/attachments/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2026: \"Reproducing a syzbot Bug in 5 Minutes — Now with virtme-ng!\" by Roman Storozhenko](https://fosdem.org/2026/events/attachments/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf) [slides] [[video](https://fosdem.org/2026/schedule/event/99",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://fosdem.org/2026/events/attachments/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://fosdem.org/2026/schedule/event/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://fosdem.org/2026/events/attachments/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://fosdem.org/2026/schedule/event/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "finding bugs",
        "syzbot",
        "reproduction"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This video illustrates the process of reproducing a syzbot bug using virtme-ng.",
      "summary_zh": "该视频说明了如何使用virtme-ng重现syzbot错误的过程。",
      "source_markdown": "[2026: \"Reproducing a syzbot Bug in 5 Minutes — Now with virtme-ng!\" by Roman Storozhenko](https://fosdem.org/2026/events/attachments/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf) [slides] [[video](https://fosdem.org/2026/schedule/event/99ULYW-repro-linux-kernel-bug-5-min-virtme-ng/)]",
      "search_text": "reproducing a syzbot bug in 5 minutes — now with virtme-ng! · video reproducing a syzbot bug in 5 minutes — now with virtme-ng! roman storozhenko   finding bugs  finding bugs video video https://fosdem.org/2026/schedule/event/99ulyw-repro-linux-kernel-bug-5-min-virtme-ng/ finding bugs syzbot reproduction  finding bugs this video illustrates the process of reproducing a syzbot bug using virtme-ng. 该视频说明了如何使用virtme-ng重现syzbot错误的过程。 # reproducing a syzbot bug in 5 minutes — now with virtme-ng! · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: reproducing a syzbot bug in 5 minutes — now with virtme-ng! resource_label: video resource_type: video resource_url: https://fosdem.org/2026/schedule/event/99ulyw-repro-linux-kernel-bug-5-min-virtme-ng/ parent_primary_url: https://fosdem.org/2026/events/attachments/99ulyw-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2026: \"reproducing a syzbot bug in 5 minutes — now with virtme-ng!\" by roman storozhenko](https://fosdem.org/2026/events/attachments/99ulyw-repro-linux-kernel-bug-5-min-virtme-ng/slides/267615/syzboot_flzqxsg.pdf) [slides] [[video](https://fosdem.org/2026/schedule/event/99 no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "51461516193b19b9",
      "item_id": "310dcd068bca5a28",
      "slug": "2025-finding-bugs-head-first-reporting-of-linux-kernel-cves-practical-use-of-the-kernel-fuzzer-primary-1f47d7e",
      "year": 2025,
      "title": "Head First Reporting of Linux Kernel CVEs: Practical Use of the Kernel Fuzzer",
      "item_title": "Head First Reporting of Linux Kernel CVEs: Practical Use of the Kernel Fuzzer",
      "authors": [
        "Yunseong Kim"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://static.sched.com/hosted_files/sosscdjapan2024/7a/Head%20First%20Reporting%20of%20Linux%20Kernel%20CVEs%20-%20sosscj24.pdf",
      "primary_url": "https://static.sched.com/hosted_files/sosscdjapan2024/7a/Head%20First%20Reporting%20of%20Linux%20Kernel%20CVEs%20-%20sosscj24.pdf",
      "parent_primary_url": "https://static.sched.com/hosted_files/sosscdjapan2024/7a/Head%20First%20Reporting%20of%20Linux%20Kernel%20CVEs%20-%20sosscj24.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-head-first-reporting-of-linux-kernel-cves-practical-use-of-the-kernel-fuzzer-primary-1f47d7e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Head First Reporting of Linux Kernel CVEs: Practical Use of the Kernel Fuzzer record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Head First Reporting of Linux Kernel CVEs: Practical Use of the Kernel Fuzzer resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/sosscdjapan2024/7a/Head%20First%20Reporting%20of%20Linux%20Kernel%20CVEs%20-%20sosscj24.pdf parent_primary_url: https://static.sched.com/hosted_files/sosscdjapan2024/7a/Head%20First%20Reporting%20of%20Linux%20Kernel%20CVEs%20-%20sosscj24.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"Head First Reporting of Linux Kernel CVEs: Practical Use of the Kernel Fuzzer\" by Yunseong Kim](https://static.sched.com/hosted_files/sosscdjapan2024/7a/Head%20First%20Reporting%20of%2",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/sosscdjapan2024/7a/Head%20First%20Reporting%20of%20Linux%20Kernel%20CVEs%20-%20sosscj24.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=DHpHvV7wYdA"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/sosscdjapan2024/7a/Head%20First%20Reporting%20of%20Linux%20Kernel%20CVEs%20-%20sosscj24.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=DHpHvV7wYdA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "finding bugs",
        "kernel fuzzer",
        "CVE"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "The slides cover practical use of the kernel fuzzer for reporting Linux kernel CVEs.",
      "summary_zh": "这些幻灯片涵盖了使用内核模糊测试工具报告Linux内核CVE的实际应用。",
      "source_markdown": "[2025: \"Head First Reporting of Linux Kernel CVEs: Practical Use of the Kernel Fuzzer\" by Yunseong Kim](https://static.sched.com/hosted_files/sosscdjapan2024/7a/Head%20First%20Reporting%20of%20Linux%20Kernel%20CVEs%20-%20sosscj24.pdf) [slides] [[video](https://www.youtube.com/watch?v=DHpHvV7wYdA)]",
      "search_text": "head first reporting of linux kernel cves: practical use of the kernel fuzzer head first reporting of linux kernel cves: practical use of the kernel fuzzer yunseong kim   finding bugs  finding bugs primary slides https://static.sched.com/hosted_files/sosscdjapan2024/7a/head%20first%20reporting%20of%20linux%20kernel%20cves%20-%20sosscj24.pdf finding bugs kernel fuzzer cve  finding bugs the slides cover practical use of the kernel fuzzer for reporting linux kernel cves. 这些幻灯片涵盖了使用内核模糊测试工具报告linux内核cve的实际应用。 # head first reporting of linux kernel cves: practical use of the kernel fuzzer record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: head first reporting of linux kernel cves: practical use of the kernel fuzzer resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/sosscdjapan2024/7a/head%20first%20reporting%20of%20linux%20kernel%20cves%20-%20sosscj24.pdf parent_primary_url: https://static.sched.com/hosted_files/sosscdjapan2024/7a/head%20first%20reporting%20of%20linux%20kernel%20cves%20-%20sosscj24.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"head first reporting of linux kernel cves: practical use of the kernel fuzzer\" by yunseong kim](https://static.sched.com/hosted_files/sosscdjapan2024/7a/head%20first%20reporting%20of%2 no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e6e39e19ff28b859",
      "item_id": "310dcd068bca5a28",
      "slug": "2025-finding-bugs-head-first-reporting-of-linux-kernel-cves-practical-use-of-the-kernel-fuzzer-video-97467d95",
      "year": 2025,
      "title": "Head First Reporting of Linux Kernel CVEs: Practical Use of the Kernel Fuzzer · video",
      "item_title": "Head First Reporting of Linux Kernel CVEs: Practical Use of the Kernel Fuzzer",
      "authors": [
        "Yunseong Kim"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=DHpHvV7wYdA",
      "primary_url": "https://www.youtube.com/watch?v=DHpHvV7wYdA",
      "parent_primary_url": "https://static.sched.com/hosted_files/sosscdjapan2024/7a/Head%20First%20Reporting%20of%20Linux%20Kernel%20CVEs%20-%20sosscj24.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-head-first-reporting-of-linux-kernel-cves-practical-use-of-the-kernel-fuzzer-video-97467d95.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Head First Reporting of Linux Kernel CVEs: Practical Use of the Kernel Fuzzer · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Head First Reporting of Linux Kernel CVEs: Practical Use of the Kernel Fuzzer resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=DHpHvV7wYdA parent_primary_url: https://static.sched.com/hosted_files/sosscdjapan2024/7a/Head%20First%20Reporting%20of%20Linux%20Kernel%20CVEs%20-%20sosscj24.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"Head First Reporting of Linux Kernel CVEs: Practical Use of the Kernel Fuzzer\" by Yunseong Kim](https://static.sched.com/hosted_files/sosscdjapan2024/7a/Head%20First%20Reporting%20of%20Linux%20Kernel%20CVEs%20-%20sosscj24.pdf) [slides] [[video](https://www.youtube.",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/sosscdjapan2024/7a/Head%20First%20Reporting%20of%20Linux%20Kernel%20CVEs%20-%20sosscj24.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=DHpHvV7wYdA"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/sosscdjapan2024/7a/Head%20First%20Reporting%20of%20Linux%20Kernel%20CVEs%20-%20sosscj24.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=DHpHvV7wYdA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "finding bugs",
        "kernel fuzzer",
        "CVE"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This video presents practical use of the kernel fuzzer for reporting Linux kernel CVEs.",
      "summary_zh": "该视频展示了使用内核模糊测试工具报告Linux内核CVE的实际应用。",
      "source_markdown": "[2025: \"Head First Reporting of Linux Kernel CVEs: Practical Use of the Kernel Fuzzer\" by Yunseong Kim](https://static.sched.com/hosted_files/sosscdjapan2024/7a/Head%20First%20Reporting%20of%20Linux%20Kernel%20CVEs%20-%20sosscj24.pdf) [slides] [[video](https://www.youtube.com/watch?v=DHpHvV7wYdA)]",
      "search_text": "head first reporting of linux kernel cves: practical use of the kernel fuzzer · video head first reporting of linux kernel cves: practical use of the kernel fuzzer yunseong kim   finding bugs  finding bugs video video https://www.youtube.com/watch?v=dhphvv7wyda finding bugs kernel fuzzer cve  finding bugs this video presents practical use of the kernel fuzzer for reporting linux kernel cves. 该视频展示了使用内核模糊测试工具报告linux内核cve的实际应用。 # head first reporting of linux kernel cves: practical use of the kernel fuzzer · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: head first reporting of linux kernel cves: practical use of the kernel fuzzer resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=dhphvv7wyda parent_primary_url: https://static.sched.com/hosted_files/sosscdjapan2024/7a/head%20first%20reporting%20of%20linux%20kernel%20cves%20-%20sosscj24.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"head first reporting of linux kernel cves: practical use of the kernel fuzzer\" by yunseong kim](https://static.sched.com/hosted_files/sosscdjapan2024/7a/head%20first%20reporting%20of%20linux%20kernel%20cves%20-%20sosscj24.pdf) [slides] [[video](https://www.youtube. no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "cf706247ae63c762",
      "item_id": "5f38da1581546beb",
      "slug": "2025-finding-bugs-build-a-fake-phone-find-real-bugs-primary-b7986e1e",
      "year": 2025,
      "title": "Build a Fake Phone, Find Real Bugs",
      "item_title": "Build a Fake Phone, Find Real Bugs",
      "authors": [
        "Romain Malmain"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu",
      "primary_url": "https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu",
      "parent_primary_url": "https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-build-a-fake-phone-find-real-bugs-primary-b7986e1e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Build a Fake Phone, Find Real Bugs record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Build a Fake Phone, Find Real Bugs resource_label: primary resource_type: video resource_url: https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu parent_primary_url: https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"Build a Fake Phone, Find Real Bugs\" by Romain Malmain](https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu) [video] [[code](https://github.com/rmalmain/39C3-build-a-fake-phone-find-real-bugs)] cves: none android_impact_status: unknown androi",
      "link_types": [
        "video",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/rmalmain/39C3-build-a-fake-phone-find-real-bugs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu"
          }
        ],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/rmalmain/39C3-build-a-fake-phone-find-real-bugs"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/rmalmain/39C3-build-a-fake-phone-find-real-bugs"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Qualcomm/Adreno Android SoC components; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "finding bugs",
        "emulation",
        "kernel driver"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "The video discusses building a fake phone to find real bugs in kernel drivers.",
      "summary_zh": "该视频讨论了构建假手机以发现内核驱动中的真实漏洞。",
      "source_markdown": "[2025: \"Build a Fake Phone, Find Real Bugs\" by Romain Malmain](https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu) [video] [[code](https://github.com/rmalmain/39C3-build-a-fake-phone-find-real-bugs)]",
      "search_text": "build a fake phone, find real bugs build a fake phone, find real bugs romain malmain   finding bugs  finding bugs primary video https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu finding bugs emulation kernel driver  finding bugs the video discusses building a fake phone to find real bugs in kernel drivers. 该视频讨论了构建假手机以发现内核驱动中的真实漏洞。 # build a fake phone, find real bugs record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: build a fake phone, find real bugs resource_label: primary resource_type: video resource_url: https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu parent_primary_url: https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"build a fake phone, find real bugs\" by romain malmain](https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu) [video] [[code](https://github.com/rmalmain/39c3-build-a-fake-phone-find-real-bugs)] cves: none android_impact_status: unknown androi unknown mentions qualcomm/adreno android soc components; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "ad485fe5252beafa",
      "item_id": "5f38da1581546beb",
      "slug": "2025-finding-bugs-build-a-fake-phone-find-real-bugs-code-ceb9ba10",
      "year": 2025,
      "title": "Build a Fake Phone, Find Real Bugs · code",
      "item_title": "Build a Fake Phone, Find Real Bugs",
      "authors": [
        "Romain Malmain"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/rmalmain/39C3-build-a-fake-phone-find-real-bugs",
      "primary_url": "https://github.com/rmalmain/39C3-build-a-fake-phone-find-real-bugs",
      "parent_primary_url": "https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-build-a-fake-phone-find-real-bugs-code-ceb9ba10.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Build a Fake Phone, Find Real Bugs · code record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Build a Fake Phone, Find Real Bugs resource_label: code resource_type: code resource_url: https://github.com/rmalmain/39C3-build-a-fake-phone-find-real-bugs parent_primary_url: https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"Build a Fake Phone, Find Real Bugs\" by Romain Malmain](https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu) [video] [[code](https://github.com/rmalmain/39C3-build-a-fake-phone-find-real-bugs)] cves: none android_impact_status: unknown android_impact_reason: mentions Qualcomm/Adreno An",
      "link_types": [
        "video",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/rmalmain/39C3-build-a-fake-phone-find-real-bugs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu"
          }
        ],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/rmalmain/39C3-build-a-fake-phone-find-real-bugs"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/rmalmain/39C3-build-a-fake-phone-find-real-bugs"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Qualcomm/Adreno Android SoC components; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "finding bugs",
        "emulation",
        "kernel driver"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "The code repository provides tools for building a fake phone to find bugs in kernel drivers.",
      "summary_zh": "该代码库提供了构建假手机以发现内核驱动漏洞的工具。",
      "source_markdown": "[2025: \"Build a Fake Phone, Find Real Bugs\" by Romain Malmain](https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu) [video] [[code](https://github.com/rmalmain/39C3-build-a-fake-phone-find-real-bugs)]",
      "search_text": "build a fake phone, find real bugs · code build a fake phone, find real bugs romain malmain   finding bugs  finding bugs code code https://github.com/rmalmain/39c3-build-a-fake-phone-find-real-bugs finding bugs emulation kernel driver  finding bugs the code repository provides tools for building a fake phone to find bugs in kernel drivers. 该代码库提供了构建假手机以发现内核驱动漏洞的工具。 # build a fake phone, find real bugs · code record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: build a fake phone, find real bugs resource_label: code resource_type: code resource_url: https://github.com/rmalmain/39c3-build-a-fake-phone-find-real-bugs parent_primary_url: https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"build a fake phone, find real bugs\" by romain malmain](https://media.ccc.de/v/39c3-build-a-fake-phone-find-real-bugs-qualcomm-gpu-emulation-and-fuzzing-with-libafl-qemu) [video] [[code](https://github.com/rmalmain/39c3-build-a-fake-phone-find-real-bugs)] cves: none android_impact_status: unknown android_impact_reason: mentions qualcomm/adreno an unknown mentions qualcomm/adreno android soc components; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "607c9769565b3379",
      "item_id": "87055b1b6b6cbc6a",
      "slug": "2025-finding-bugs-a-modular-approach-to-power-management-fuzzing-primary-6b21e18c",
      "year": 2025,
      "title": "A Modular Approach To Power Management Fuzzing",
      "item_title": "A Modular Approach To Power Management Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://lpc.events/event/19/contributions/2087/attachments/1897/4063/PM_USB_LPC_25.pdf",
      "primary_url": "https://lpc.events/event/19/contributions/2087/attachments/1897/4063/PM_USB_LPC_25.pdf",
      "parent_primary_url": "https://lpc.events/event/19/contributions/2087/attachments/1897/4063/PM_USB_LPC_25.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-a-modular-approach-to-power-management-fuzzing-primary-6b21e18c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Modular Approach To Power Management Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: A Modular Approach To Power Management Fuzzing resource_label: primary resource_type: slides resource_url: https://lpc.events/event/19/contributions/2087/attachments/1897/4063/PM_USB_LPC_25.pdf parent_primary_url: https://lpc.events/event/19/contributions/2087/attachments/1897/4063/PM_USB_LPC_25.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"A Modular Approach To Power Management Fuzzing\"](https://lpc.events/event/19/contributions/2087/attachments/1897/4063/PM_USB_LPC_25.pdf) [slides] [[video](https://www.youtube.com/watch?v=TNMcqQsqgr4)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/19/contributions/2087/attachments/1897/4063/PM_USB_LPC_25.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=TNMcqQsqgr4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/19/contributions/2087/attachments/1897/4063/PM_USB_LPC_25.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=TNMcqQsqgr4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "finding bugs",
        "power management",
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "The slides present a modular approach to power management fuzzing in Linux.",
      "summary_zh": "这些幻灯片展示了Linux中电源管理模糊测试的模块化方法。",
      "source_markdown": "[2025: \"A Modular Approach To Power Management Fuzzing\"](https://lpc.events/event/19/contributions/2087/attachments/1897/4063/PM_USB_LPC_25.pdf) [slides] [[video](https://www.youtube.com/watch?v=TNMcqQsqgr4)]",
      "search_text": "a modular approach to power management fuzzing a modular approach to power management fuzzing    finding bugs  finding bugs primary slides https://lpc.events/event/19/contributions/2087/attachments/1897/4063/pm_usb_lpc_25.pdf finding bugs power management fuzzing  finding bugs the slides present a modular approach to power management fuzzing in linux. 这些幻灯片展示了linux中电源管理模糊测试的模块化方法。 # a modular approach to power management fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: a modular approach to power management fuzzing resource_label: primary resource_type: slides resource_url: https://lpc.events/event/19/contributions/2087/attachments/1897/4063/pm_usb_lpc_25.pdf parent_primary_url: https://lpc.events/event/19/contributions/2087/attachments/1897/4063/pm_usb_lpc_25.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"a modular approach to power management fuzzing\"](https://lpc.events/event/19/contributions/2087/attachments/1897/4063/pm_usb_lpc_25.pdf) [slides] [[video](https://www.youtube.com/watch?v=tnmcqqsqgr4)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "dc1ccf2eef6618ed",
      "item_id": "87055b1b6b6cbc6a",
      "slug": "2025-finding-bugs-a-modular-approach-to-power-management-fuzzing-video-84fc92d1",
      "year": 2025,
      "title": "A Modular Approach To Power Management Fuzzing · video",
      "item_title": "A Modular Approach To Power Management Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=TNMcqQsqgr4",
      "primary_url": "https://www.youtube.com/watch?v=TNMcqQsqgr4",
      "parent_primary_url": "https://lpc.events/event/19/contributions/2087/attachments/1897/4063/PM_USB_LPC_25.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-a-modular-approach-to-power-management-fuzzing-video-84fc92d1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Modular Approach To Power Management Fuzzing · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: A Modular Approach To Power Management Fuzzing resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=TNMcqQsqgr4 parent_primary_url: https://lpc.events/event/19/contributions/2087/attachments/1897/4063/PM_USB_LPC_25.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"A Modular Approach To Power Management Fuzzing\"](https://lpc.events/event/19/contributions/2087/attachments/1897/4063/PM_USB_LPC_25.pdf) [slides] [[video](https://www.youtube.com/watch?v=TNMcqQsqgr4)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_rea",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/19/contributions/2087/attachments/1897/4063/PM_USB_LPC_25.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=TNMcqQsqgr4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/19/contributions/2087/attachments/1897/4063/PM_USB_LPC_25.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=TNMcqQsqgr4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "finding bugs",
        "power management",
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This video discusses a modular approach to power management fuzzing in Linux.",
      "summary_zh": "该视频讨论了Linux中电源管理模糊测试的模块化方法。",
      "source_markdown": "[2025: \"A Modular Approach To Power Management Fuzzing\"](https://lpc.events/event/19/contributions/2087/attachments/1897/4063/PM_USB_LPC_25.pdf) [slides] [[video](https://www.youtube.com/watch?v=TNMcqQsqgr4)]",
      "search_text": "a modular approach to power management fuzzing · video a modular approach to power management fuzzing    finding bugs  finding bugs video video https://www.youtube.com/watch?v=tnmcqqsqgr4 finding bugs power management fuzzing  finding bugs this video discusses a modular approach to power management fuzzing in linux. 该视频讨论了linux中电源管理模糊测试的模块化方法。 # a modular approach to power management fuzzing · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: a modular approach to power management fuzzing resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=tnmcqqsqgr4 parent_primary_url: https://lpc.events/event/19/contributions/2087/attachments/1897/4063/pm_usb_lpc_25.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"a modular approach to power management fuzzing\"](https://lpc.events/event/19/contributions/2087/attachments/1897/4063/pm_usb_lpc_25.pdf) [slides] [[video](https://www.youtube.com/watch?v=tnmcqqsqgr4)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_rea no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "99d881be32108624",
      "item_id": "506d1ac75c4d6530",
      "slug": "2025-finding-bugs-kfuzztest-targeted-fuzzing-of-internal-kernel-functions-primary-488ff499",
      "year": 2025,
      "title": "KFuzzTest: Targeted Fuzzing of Internal Kernel Functions",
      "item_title": "KFuzzTest: Targeted Fuzzing of Internal Kernel Functions",
      "authors": [
        "Ethan Graham"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://lpc.events/event/19/contributions/2196/attachments/1929/4123/KFuzzTest%20LPC%2012.12.2025.pdf",
      "primary_url": "https://lpc.events/event/19/contributions/2196/attachments/1929/4123/KFuzzTest%20LPC%2012.12.2025.pdf",
      "parent_primary_url": "https://lpc.events/event/19/contributions/2196/attachments/1929/4123/KFuzzTest%20LPC%2012.12.2025.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-kfuzztest-targeted-fuzzing-of-internal-kernel-functions-primary-488ff499.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KFuzzTest: Targeted Fuzzing of Internal Kernel Functions record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: KFuzzTest: Targeted Fuzzing of Internal Kernel Functions resource_label: primary resource_type: slides resource_url: https://lpc.events/event/19/contributions/2196/attachments/1929/4123/KFuzzTest%20LPC%2012.12.2025.pdf parent_primary_url: https://lpc.events/event/19/contributions/2196/attachments/1929/4123/KFuzzTest%20LPC%2012.12.2025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"KFuzzTest: Targeted Fuzzing of Internal Kernel Functions\" by Ethan Graham](https://lpc.events/event/19/contributions/2196/attachments/1929/4123/KFuzzTest%20LPC%2012.12.2025.pdf) [slides] [[video](https://www.youtube.com/watch?v=B7plrw_5w4Q)] cves: none android_impact_status: no and",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/19/contributions/2196/attachments/1929/4123/KFuzzTest%20LPC%2012.12.2025.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=B7plrw_5w4Q"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/19/contributions/2196/attachments/1929/4123/KFuzzTest%20LPC%2012.12.2025.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=B7plrw_5w4Q"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "internal"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "KFuzzTest is a targeted fuzzing tool for internal kernel functions.",
      "summary_zh": "KFuzzTest是一个针对内部内核函数的定向模糊测试工具。",
      "source_markdown": "[2025: \"KFuzzTest: Targeted Fuzzing of Internal Kernel Functions\" by Ethan Graham](https://lpc.events/event/19/contributions/2196/attachments/1929/4123/KFuzzTest%20LPC%2012.12.2025.pdf) [slides] [[video](https://www.youtube.com/watch?v=B7plrw_5w4Q)]",
      "search_text": "kfuzztest: targeted fuzzing of internal kernel functions kfuzztest: targeted fuzzing of internal kernel functions ethan graham   finding bugs  finding bugs primary slides https://lpc.events/event/19/contributions/2196/attachments/1929/4123/kfuzztest%20lpc%2012.12.2025.pdf fuzzing kernel internal  finding bugs kfuzztest is a targeted fuzzing tool for internal kernel functions. kfuzztest是一个针对内部内核函数的定向模糊测试工具。 # kfuzztest: targeted fuzzing of internal kernel functions record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: kfuzztest: targeted fuzzing of internal kernel functions resource_label: primary resource_type: slides resource_url: https://lpc.events/event/19/contributions/2196/attachments/1929/4123/kfuzztest%20lpc%2012.12.2025.pdf parent_primary_url: https://lpc.events/event/19/contributions/2196/attachments/1929/4123/kfuzztest%20lpc%2012.12.2025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"kfuzztest: targeted fuzzing of internal kernel functions\" by ethan graham](https://lpc.events/event/19/contributions/2196/attachments/1929/4123/kfuzztest%20lpc%2012.12.2025.pdf) [slides] [[video](https://www.youtube.com/watch?v=b7plrw_5w4q)] cves: none android_impact_status: no and no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9bca587d14858efb",
      "item_id": "506d1ac75c4d6530",
      "slug": "2025-finding-bugs-kfuzztest-targeted-fuzzing-of-internal-kernel-functions-video-3c362249",
      "year": 2025,
      "title": "KFuzzTest: Targeted Fuzzing of Internal Kernel Functions · video",
      "item_title": "KFuzzTest: Targeted Fuzzing of Internal Kernel Functions",
      "authors": [
        "Ethan Graham"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=B7plrw_5w4Q",
      "primary_url": "https://www.youtube.com/watch?v=B7plrw_5w4Q",
      "parent_primary_url": "https://lpc.events/event/19/contributions/2196/attachments/1929/4123/KFuzzTest%20LPC%2012.12.2025.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-kfuzztest-targeted-fuzzing-of-internal-kernel-functions-video-3c362249.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KFuzzTest: Targeted Fuzzing of Internal Kernel Functions · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: KFuzzTest: Targeted Fuzzing of Internal Kernel Functions resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=B7plrw_5w4Q parent_primary_url: https://lpc.events/event/19/contributions/2196/attachments/1929/4123/KFuzzTest%20LPC%2012.12.2025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"KFuzzTest: Targeted Fuzzing of Internal Kernel Functions\" by Ethan Graham](https://lpc.events/event/19/contributions/2196/attachments/1929/4123/KFuzzTest%20LPC%2012.12.2025.pdf) [slides] [[video](https://www.youtube.com/watch?v=B7plrw_5w4Q)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this res",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/19/contributions/2196/attachments/1929/4123/KFuzzTest%20LPC%2012.12.2025.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=B7plrw_5w4Q"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/19/contributions/2196/attachments/1929/4123/KFuzzTest%20LPC%2012.12.2025.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=B7plrw_5w4Q"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "internal"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This video presents KFuzzTest, a targeted fuzzing tool for kernel functions.",
      "summary_zh": "该视频介绍了KFuzzTest，一个针对内核函数的定向模糊测试工具。",
      "source_markdown": "[2025: \"KFuzzTest: Targeted Fuzzing of Internal Kernel Functions\" by Ethan Graham](https://lpc.events/event/19/contributions/2196/attachments/1929/4123/KFuzzTest%20LPC%2012.12.2025.pdf) [slides] [[video](https://www.youtube.com/watch?v=B7plrw_5w4Q)]",
      "search_text": "kfuzztest: targeted fuzzing of internal kernel functions · video kfuzztest: targeted fuzzing of internal kernel functions ethan graham   finding bugs  finding bugs video video https://www.youtube.com/watch?v=b7plrw_5w4q fuzzing kernel internal  finding bugs this video presents kfuzztest, a targeted fuzzing tool for kernel functions. 该视频介绍了kfuzztest，一个针对内核函数的定向模糊测试工具。 # kfuzztest: targeted fuzzing of internal kernel functions · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: kfuzztest: targeted fuzzing of internal kernel functions resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=b7plrw_5w4q parent_primary_url: https://lpc.events/event/19/contributions/2196/attachments/1929/4123/kfuzztest%20lpc%2012.12.2025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"kfuzztest: targeted fuzzing of internal kernel functions\" by ethan graham](https://lpc.events/event/19/contributions/2196/attachments/1929/4123/kfuzztest%20lpc%2012.12.2025.pdf) [slides] [[video](https://www.youtube.com/watch?v=b7plrw_5w4q)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this res no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2a9dfdeb19061377",
      "item_id": "0e48478233bae0c4",
      "slug": "2025-finding-bugs-syzos-practical-kvm-fuzzing-primary-56258904",
      "year": 2025,
      "title": "SYZOS: Practical KVM fuzzing",
      "item_title": "SYZOS: Practical KVM fuzzing",
      "authors": [
        "Alexander Potapenko"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://lpc.events/event/19/contributions/2217/attachments/1889/4069/SYZOS%20for%20LPC%202025.pdf",
      "primary_url": "https://lpc.events/event/19/contributions/2217/attachments/1889/4069/SYZOS%20for%20LPC%202025.pdf",
      "parent_primary_url": "https://lpc.events/event/19/contributions/2217/attachments/1889/4069/SYZOS%20for%20LPC%202025.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-syzos-practical-kvm-fuzzing-primary-56258904.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SYZOS: Practical KVM fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SYZOS: Practical KVM fuzzing resource_label: primary resource_type: slides resource_url: https://lpc.events/event/19/contributions/2217/attachments/1889/4069/SYZOS%20for%20LPC%202025.pdf parent_primary_url: https://lpc.events/event/19/contributions/2217/attachments/1889/4069/SYZOS%20for%20LPC%202025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"SYZOS: Practical KVM fuzzing\" by Alexander Potapenko](https://lpc.events/event/19/contributions/2217/attachments/1889/4069/SYZOS%20for%20LPC%202025.pdf) [slides] [[video](https://www.youtube.com/watch?v=sY27jwn9bLY)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devic",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/19/contributions/2217/attachments/1889/4069/SYZOS%20for%20LPC%202025.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=sY27jwn9bLY"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/19/contributions/2217/attachments/1889/4069/SYZOS%20for%20LPC%202025.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=sY27jwn9bLY"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "KVM"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "SYZOS is a practical fuzzing tool designed for KVM.",
      "summary_zh": "SYZOS是一个为KVM设计的实用模糊测试工具。",
      "source_markdown": "[2025: \"SYZOS: Practical KVM fuzzing\" by Alexander Potapenko](https://lpc.events/event/19/contributions/2217/attachments/1889/4069/SYZOS%20for%20LPC%202025.pdf) [slides] [[video](https://www.youtube.com/watch?v=sY27jwn9bLY)]",
      "search_text": "syzos: practical kvm fuzzing syzos: practical kvm fuzzing alexander potapenko   finding bugs  finding bugs primary slides https://lpc.events/event/19/contributions/2217/attachments/1889/4069/syzos%20for%20lpc%202025.pdf fuzzing kvm  finding bugs syzos is a practical fuzzing tool designed for kvm. syzos是一个为kvm设计的实用模糊测试工具。 # syzos: practical kvm fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzos: practical kvm fuzzing resource_label: primary resource_type: slides resource_url: https://lpc.events/event/19/contributions/2217/attachments/1889/4069/syzos%20for%20lpc%202025.pdf parent_primary_url: https://lpc.events/event/19/contributions/2217/attachments/1889/4069/syzos%20for%20lpc%202025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"syzos: practical kvm fuzzing\" by alexander potapenko](https://lpc.events/event/19/contributions/2217/attachments/1889/4069/syzos%20for%20lpc%202025.pdf) [slides] [[video](https://www.youtube.com/watch?v=sy27jwn9bly)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devic no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ad24bb432710f35d",
      "item_id": "0e48478233bae0c4",
      "slug": "2025-finding-bugs-syzos-practical-kvm-fuzzing-video-23b761be",
      "year": 2025,
      "title": "SYZOS: Practical KVM fuzzing · video",
      "item_title": "SYZOS: Practical KVM fuzzing",
      "authors": [
        "Alexander Potapenko"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=sY27jwn9bLY",
      "primary_url": "https://www.youtube.com/watch?v=sY27jwn9bLY",
      "parent_primary_url": "https://lpc.events/event/19/contributions/2217/attachments/1889/4069/SYZOS%20for%20LPC%202025.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-syzos-practical-kvm-fuzzing-video-23b761be.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SYZOS: Practical KVM fuzzing · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SYZOS: Practical KVM fuzzing resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=sY27jwn9bLY parent_primary_url: https://lpc.events/event/19/contributions/2217/attachments/1889/4069/SYZOS%20for%20LPC%202025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"SYZOS: Practical KVM fuzzing\" by Alexander Potapenko](https://lpc.events/event/19/contributions/2217/attachments/1889/4069/SYZOS%20for%20LPC%202025.pdf) [slides] [[video](https://www.youtube.com/watch?v=sY27jwn9bLY)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Prod",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/19/contributions/2217/attachments/1889/4069/SYZOS%20for%20LPC%202025.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=sY27jwn9bLY"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/19/contributions/2217/attachments/1889/4069/SYZOS%20for%20LPC%202025.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=sY27jwn9bLY"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "KVM"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This video showcases SYZOS, a practical fuzzing tool for KVM.",
      "summary_zh": "该视频展示了SYZOS，一个为KVM设计的实用模糊测试工具。",
      "source_markdown": "[2025: \"SYZOS: Practical KVM fuzzing\" by Alexander Potapenko](https://lpc.events/event/19/contributions/2217/attachments/1889/4069/SYZOS%20for%20LPC%202025.pdf) [slides] [[video](https://www.youtube.com/watch?v=sY27jwn9bLY)]",
      "search_text": "syzos: practical kvm fuzzing · video syzos: practical kvm fuzzing alexander potapenko   finding bugs  finding bugs video video https://www.youtube.com/watch?v=sy27jwn9bly fuzzing kvm  finding bugs this video showcases syzos, a practical fuzzing tool for kvm. 该视频展示了syzos，一个为kvm设计的实用模糊测试工具。 # syzos: practical kvm fuzzing · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzos: practical kvm fuzzing resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=sy27jwn9bly parent_primary_url: https://lpc.events/event/19/contributions/2217/attachments/1889/4069/syzos%20for%20lpc%202025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"syzos: practical kvm fuzzing\" by alexander potapenko](https://lpc.events/event/19/contributions/2217/attachments/1889/4069/syzos%20for%20lpc%202025.pdf) [slides] [[video](https://www.youtube.com/watch?v=sy27jwn9bly)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: prod no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7f2e68290077820c",
      "item_id": "f52a1d78d4b23ae0",
      "slug": "2025-finding-bugs-dnafuzz-descriptor-aware-fuzzing-for-usb-drivers-primary-ce1ec8cb",
      "year": 2025,
      "title": "DNAFuzz: Descriptor-Aware Fuzzing for USB Drivers",
      "item_title": "DNAFuzz: Descriptor-Aware Fuzzing for USB Drivers",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/DNAFuzz_Camera_Ready.pdf",
      "primary_url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/DNAFuzz_Camera_Ready.pdf",
      "parent_primary_url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/DNAFuzz_Camera_Ready.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-dnafuzz-descriptor-aware-fuzzing-for-usb-drivers-primary-ce1ec8cb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DNAFuzz: Descriptor-Aware Fuzzing for USB Drivers record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: DNAFuzz: Descriptor-Aware Fuzzing for USB Drivers resource_label: primary resource_type: paper resource_url: http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/DNAFuzz_Camera_Ready.pdf parent_primary_url: http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/DNAFuzz_Camera_Ready.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"DNAFuzz: Descriptor-Aware Fuzzing for USB Drivers\"](http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/DNAFuzz_Camera_Ready.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_r",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/DNAFuzz_Camera_Ready.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/DNAFuzz_Camera_Ready.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "USB",
        "drivers"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "DNAFuzz is a descriptor-aware fuzzing tool specifically for USB drivers.",
      "summary_zh": "DNAFuzz是一个专门针对USB驱动程序的描述符感知模糊测试工具。",
      "source_markdown": "[2025: \"DNAFuzz: Descriptor-Aware Fuzzing for USB Drivers\"](http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/DNAFuzz_Camera_Ready.pdf) [paper]",
      "search_text": "dnafuzz: descriptor-aware fuzzing for usb drivers dnafuzz: descriptor-aware fuzzing for usb drivers    finding bugs  finding bugs primary paper http://www.wingtecher.com/themes/wingtecherresearch/assets/papers/dnafuzz_camera_ready.pdf fuzzing usb drivers  finding bugs dnafuzz is a descriptor-aware fuzzing tool specifically for usb drivers. dnafuzz是一个专门针对usb驱动程序的描述符感知模糊测试工具。 # dnafuzz: descriptor-aware fuzzing for usb drivers record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: dnafuzz: descriptor-aware fuzzing for usb drivers resource_label: primary resource_type: paper resource_url: http://www.wingtecher.com/themes/wingtecherresearch/assets/papers/dnafuzz_camera_ready.pdf parent_primary_url: http://www.wingtecher.com/themes/wingtecherresearch/assets/papers/dnafuzz_camera_ready.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"dnafuzz: descriptor-aware fuzzing for usb drivers\"](http://www.wingtecher.com/themes/wingtecherresearch/assets/papers/dnafuzz_camera_ready.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_r no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1ef8a7849b65b3c7",
      "item_id": "d169a948c4986d36",
      "slug": "2025-finding-bugs-slice-sast-llm-interprocedural-context-extractor-primary-4c7ab763",
      "year": 2025,
      "title": "Slice: SAST + LLM Interprocedural Context Extractor",
      "item_title": "Slice: SAST + LLM Interprocedural Context Extractor",
      "authors": [
        "Caleb Gross"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://noperator.dev/posts/slice/",
      "primary_url": "https://noperator.dev/posts/slice/",
      "parent_primary_url": "https://noperator.dev/posts/slice/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-slice-sast-llm-interprocedural-context-extractor-primary-4c7ab763.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Slice: SAST + LLM Interprocedural Context Extractor record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Slice: SAST + LLM Interprocedural Context Extractor resource_label: primary resource_type: article resource_url: https://noperator.dev/posts/slice/ parent_primary_url: https://noperator.dev/posts/slice/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"Slice: SAST + LLM Interprocedural Context Extractor\" by Caleb Gross](https://noperator.dev/posts/slice/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://noperator.dev/posts/slice/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://noperator.dev/posts/slice/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "SAST",
        "LLM",
        "analysis"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "Slice is a tool that combines SAST with LLM for interprocedural context extraction.",
      "summary_zh": "Slice是一个结合SAST与LLM进行跨过程上下文提取的工具。",
      "source_markdown": "[2025: \"Slice: SAST + LLM Interprocedural Context Extractor\" by Caleb Gross](https://noperator.dev/posts/slice/) [article]",
      "search_text": "slice: sast + llm interprocedural context extractor slice: sast + llm interprocedural context extractor caleb gross   finding bugs  finding bugs primary article https://noperator.dev/posts/slice/ sast llm analysis  finding bugs slice is a tool that combines sast with llm for interprocedural context extraction. slice是一个结合sast与llm进行跨过程上下文提取的工具。 # slice: sast + llm interprocedural context extractor record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: slice: sast + llm interprocedural context extractor resource_label: primary resource_type: article resource_url: https://noperator.dev/posts/slice/ parent_primary_url: https://noperator.dev/posts/slice/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"slice: sast + llm interprocedural context extractor\" by caleb gross](https://noperator.dev/posts/slice/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "795bca5e0bfed6ba",
      "item_id": "2a12f091cc4ac0f6",
      "slug": "2025-finding-bugs-knighter-transforming-static-analysis-with-llm-synthesized-checkers-primary-e5e7834b",
      "year": 2025,
      "title": "KNighter: Transforming Static Analysis with LLM-Synthesized Checkers",
      "item_title": "KNighter: Transforming Static Analysis with LLM-Synthesized Checkers",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/2503.09002",
      "primary_url": "https://arxiv.org/pdf/2503.09002",
      "parent_primary_url": "https://arxiv.org/pdf/2503.09002",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-knighter-transforming-static-analysis-with-llm-synthesized-checkers-primary-e5e7834b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KNighter: Transforming Static Analysis with LLM-Synthesized Checkers record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: KNighter: Transforming Static Analysis with LLM-Synthesized Checkers resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2503.09002 parent_primary_url: https://arxiv.org/pdf/2503.09002 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"KNighter: Transforming Static Analysis with LLM-Synthesized Checkers\"](https://arxiv.org/pdf/2503.09002) [paper] [[code](https://github.com/ise-uiuc/KNighter)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/2503.09002"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/ise-uiuc/KNighter"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/2503.09002"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/ise-uiuc/KNighter"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ise-uiuc/KNighter"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "static analysis",
        "LLM"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "KNighter transforms static analysis using LLM-synthesized checkers.",
      "summary_zh": "KNighter通过LLM合成的检查器转变静态分析。",
      "source_markdown": "[2025: \"KNighter: Transforming Static Analysis with LLM-Synthesized Checkers\"](https://arxiv.org/pdf/2503.09002) [paper] [[code](https://github.com/ise-uiuc/KNighter)]",
      "search_text": "knighter: transforming static analysis with llm-synthesized checkers knighter: transforming static analysis with llm-synthesized checkers    finding bugs  finding bugs primary paper https://arxiv.org/pdf/2503.09002 static analysis llm  finding bugs knighter transforms static analysis using llm-synthesized checkers. knighter通过llm合成的检查器转变静态分析。 # knighter: transforming static analysis with llm-synthesized checkers record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: knighter: transforming static analysis with llm-synthesized checkers resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2503.09002 parent_primary_url: https://arxiv.org/pdf/2503.09002 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"knighter: transforming static analysis with llm-synthesized checkers\"](https://arxiv.org/pdf/2503.09002) [paper] [[code](https://github.com/ise-uiuc/knighter)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "f54169ac4f86f759",
      "item_id": "2a12f091cc4ac0f6",
      "slug": "2025-finding-bugs-knighter-transforming-static-analysis-with-llm-synthesized-checkers-code-d4abd485",
      "year": 2025,
      "title": "KNighter: Transforming Static Analysis with LLM-Synthesized Checkers · code",
      "item_title": "KNighter: Transforming Static Analysis with LLM-Synthesized Checkers",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/ise-uiuc/KNighter",
      "primary_url": "https://github.com/ise-uiuc/KNighter",
      "parent_primary_url": "https://arxiv.org/pdf/2503.09002",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-knighter-transforming-static-analysis-with-llm-synthesized-checkers-code-d4abd485.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KNighter: Transforming Static Analysis with LLM-Synthesized Checkers · code record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: KNighter: Transforming Static Analysis with LLM-Synthesized Checkers resource_label: code resource_type: code resource_url: https://github.com/ise-uiuc/KNighter parent_primary_url: https://arxiv.org/pdf/2503.09002 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"KNighter: Transforming Static Analysis with LLM-Synthesized Checkers\"](https://arxiv.org/pdf/2503.09002) [paper] [[code](https://github.com/ise-uiuc/KNighter)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather tha",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/2503.09002"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/ise-uiuc/KNighter"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/2503.09002"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/ise-uiuc/KNighter"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ise-uiuc/KNighter"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "static analysis",
        "LLM"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This code repository supports the KNighter static analysis tool.",
      "summary_zh": "该代码库支持KNighter静态分析工具。",
      "source_markdown": "[2025: \"KNighter: Transforming Static Analysis with LLM-Synthesized Checkers\"](https://arxiv.org/pdf/2503.09002) [paper] [[code](https://github.com/ise-uiuc/KNighter)]",
      "search_text": "knighter: transforming static analysis with llm-synthesized checkers · code knighter: transforming static analysis with llm-synthesized checkers    finding bugs  finding bugs code code https://github.com/ise-uiuc/knighter static analysis llm  finding bugs this code repository supports the knighter static analysis tool. 该代码库支持knighter静态分析工具。 # knighter: transforming static analysis with llm-synthesized checkers · code record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: knighter: transforming static analysis with llm-synthesized checkers resource_label: code resource_type: code resource_url: https://github.com/ise-uiuc/knighter parent_primary_url: https://arxiv.org/pdf/2503.09002 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"knighter: transforming static analysis with llm-synthesized checkers\"](https://arxiv.org/pdf/2503.09002) [paper] [[code](https://github.com/ise-uiuc/knighter)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather tha no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "d67866e8659b4890",
      "item_id": "da7cdcff87db38e5",
      "slug": "2025-finding-bugs-syzspec-specification-generation-for-linux-kernel-fuzzing-via-under-constrained-symbolic-exe",
      "year": 2025,
      "title": "SyzSpec: Specification Generation for Linux Kernel Fuzzing via Under-Constrained Symbolic Execution",
      "item_title": "SyzSpec: Specification Generation for Linux Kernel Fuzzing via Under-Constrained Symbolic Execution",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.cs.ucr.edu/~zhiyunq/pub/ccs25_syzspec.pdf",
      "primary_url": "https://www.cs.ucr.edu/~zhiyunq/pub/ccs25_syzspec.pdf",
      "parent_primary_url": "https://www.cs.ucr.edu/~zhiyunq/pub/ccs25_syzspec.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-syzspec-specification-generation-for-linux-kernel-fuzzing-via-under-constrained-symbolic-exe.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SyzSpec: Specification Generation for Linux Kernel Fuzzing via Under-Constrained Symbolic Execution record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SyzSpec: Specification Generation for Linux Kernel Fuzzing via Under-Constrained Symbolic Execution resource_label: primary resource_type: paper resource_url: https://www.cs.ucr.edu/~zhiyunq/pub/ccs25_syzspec.pdf parent_primary_url: https://www.cs.ucr.edu/~zhiyunq/pub/ccs25_syzspec.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"SyzSpec: Specification Generation for Linux Kernel Fuzzing via Under-Constrained Symbolic Execution\"](https://www.cs.ucr.edu/~zhiyunq/pub/ccs25_syzspec.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devi",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.cs.ucr.edu/~zhiyunq/pub/ccs25_syzspec.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.cs.ucr.edu/~zhiyunq/pub/ccs25_syzspec.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "symbolic execution"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "SyzSpec generates specifications for Linux kernel fuzzing using symbolic execution.",
      "summary_zh": "SyzSpec使用符号执行为Linux内核模糊测试生成规范。",
      "source_markdown": "[2025: \"SyzSpec: Specification Generation for Linux Kernel Fuzzing via Under-Constrained Symbolic Execution\"](https://www.cs.ucr.edu/~zhiyunq/pub/ccs25_syzspec.pdf) [paper]",
      "search_text": "syzspec: specification generation for linux kernel fuzzing via under-constrained symbolic execution syzspec: specification generation for linux kernel fuzzing via under-constrained symbolic execution    finding bugs  finding bugs primary paper https://www.cs.ucr.edu/~zhiyunq/pub/ccs25_syzspec.pdf fuzzing symbolic execution  finding bugs syzspec generates specifications for linux kernel fuzzing using symbolic execution. syzspec使用符号执行为linux内核模糊测试生成规范。 # syzspec: specification generation for linux kernel fuzzing via under-constrained symbolic execution record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzspec: specification generation for linux kernel fuzzing via under-constrained symbolic execution resource_label: primary resource_type: paper resource_url: https://www.cs.ucr.edu/~zhiyunq/pub/ccs25_syzspec.pdf parent_primary_url: https://www.cs.ucr.edu/~zhiyunq/pub/ccs25_syzspec.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"syzspec: specification generation for linux kernel fuzzing via under-constrained symbolic execution\"](https://www.cs.ucr.edu/~zhiyunq/pub/ccs25_syzspec.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "85eed9dc764e7a11",
      "item_id": "fd0bb12df00b95de",
      "slug": "2025-finding-bugs-lucid-dreams-i-lucid-s-first-time-fuzzing-primary-5873f5be",
      "year": 2025,
      "title": "Lucid Dreams I: Lucid's First Time Fuzzing",
      "item_title": "Lucid Dreams I: Lucid's First Time Fuzzing",
      "authors": [
        "h0mbre"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://h0mbre.github.io/Lucid_Dreams_1/",
      "primary_url": "https://h0mbre.github.io/Lucid_Dreams_1/",
      "parent_primary_url": "https://h0mbre.github.io/Lucid_Dreams_1/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-lucid-dreams-i-lucid-s-first-time-fuzzing-primary-5873f5be.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Lucid Dreams I: Lucid's First Time Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Lucid Dreams I: Lucid's First Time Fuzzing resource_label: primary resource_type: article resource_url: https://h0mbre.github.io/Lucid_Dreams_1/ parent_primary_url: https://h0mbre.github.io/Lucid_Dreams_1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"Lucid Dreams I: Lucid's First Time Fuzzing\" by h0mbre](https://h0mbre.github.io/Lucid_Dreams_1/) [article] [[part 2](https://h0mbre.github.io/Lucid_Dreams_2/)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false ha",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://h0mbre.github.io/Lucid_Dreams_1/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://h0mbre.github.io/Lucid_Dreams_2/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://h0mbre.github.io/Lucid_Dreams_1/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://h0mbre.github.io/Lucid_Dreams_2/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://h0mbre.github.io/Lucid_Dreams_1/",
        "https://h0mbre.github.io/Lucid_Dreams_2/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "Lucid Dreams I discusses the initial fuzzing efforts by Lucid.",
      "summary_zh": "Lucid Dreams I讨论了Lucid的初步模糊测试工作。",
      "source_markdown": "[2025: \"Lucid Dreams I: Lucid's First Time Fuzzing\" by h0mbre](https://h0mbre.github.io/Lucid_Dreams_1/) [article] [[part 2](https://h0mbre.github.io/Lucid_Dreams_2/)]",
      "search_text": "lucid dreams i: lucid's first time fuzzing lucid dreams i: lucid's first time fuzzing h0mbre   finding bugs  finding bugs primary article https://h0mbre.github.io/lucid_dreams_1/ fuzzing kernel  finding bugs lucid dreams i discusses the initial fuzzing efforts by lucid. lucid dreams i讨论了lucid的初步模糊测试工作。 # lucid dreams i: lucid's first time fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: lucid dreams i: lucid's first time fuzzing resource_label: primary resource_type: article resource_url: https://h0mbre.github.io/lucid_dreams_1/ parent_primary_url: https://h0mbre.github.io/lucid_dreams_1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"lucid dreams i: lucid's first time fuzzing\" by h0mbre](https://h0mbre.github.io/lucid_dreams_1/) [article] [[part 2](https://h0mbre.github.io/lucid_dreams_2/)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false ha no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "cf9817b847a2d317",
      "item_id": "fd0bb12df00b95de",
      "slug": "2025-finding-bugs-lucid-dreams-i-lucid-s-first-time-fuzzing-part-2-de6ae5fd",
      "year": 2025,
      "title": "Lucid Dreams I: Lucid's First Time Fuzzing · part 2",
      "item_title": "Lucid Dreams I: Lucid's First Time Fuzzing",
      "authors": [
        "h0mbre"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "part 2",
      "resource_type": "article",
      "resource_url": "https://h0mbre.github.io/Lucid_Dreams_2/",
      "primary_url": "https://h0mbre.github.io/Lucid_Dreams_2/",
      "parent_primary_url": "https://h0mbre.github.io/Lucid_Dreams_1/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-lucid-dreams-i-lucid-s-first-time-fuzzing-part-2-de6ae5fd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Lucid Dreams I: Lucid's First Time Fuzzing · part 2 record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Lucid Dreams I: Lucid's First Time Fuzzing resource_label: part 2 resource_type: article resource_url: https://h0mbre.github.io/Lucid_Dreams_2/ parent_primary_url: https://h0mbre.github.io/Lucid_Dreams_1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"Lucid Dreams I: Lucid's First Time Fuzzing\" by h0mbre](https://h0mbre.github.io/Lucid_Dreams_1/) [article] [[part 2](https://h0mbre.github.io/Lucid_Dreams_2/)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://h0mbre.github.io/Lucid_Dreams_1/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://h0mbre.github.io/Lucid_Dreams_2/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://h0mbre.github.io/Lucid_Dreams_1/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://h0mbre.github.io/Lucid_Dreams_2/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://h0mbre.github.io/Lucid_Dreams_1/",
        "https://h0mbre.github.io/Lucid_Dreams_2/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "Part 2 of Lucid Dreams I continues the fuzzing discussion.",
      "summary_zh": "Lucid Dreams I的第二部分继续讨论模糊测试。",
      "source_markdown": "[2025: \"Lucid Dreams I: Lucid's First Time Fuzzing\" by h0mbre](https://h0mbre.github.io/Lucid_Dreams_1/) [article] [[part 2](https://h0mbre.github.io/Lucid_Dreams_2/)]",
      "search_text": "lucid dreams i: lucid's first time fuzzing · part 2 lucid dreams i: lucid's first time fuzzing h0mbre   finding bugs  finding bugs part 2 article https://h0mbre.github.io/lucid_dreams_2/ fuzzing kernel  finding bugs part 2 of lucid dreams i continues the fuzzing discussion. lucid dreams i的第二部分继续讨论模糊测试。 # lucid dreams i: lucid's first time fuzzing · part 2 record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: lucid dreams i: lucid's first time fuzzing resource_label: part 2 resource_type: article resource_url: https://h0mbre.github.io/lucid_dreams_2/ parent_primary_url: https://h0mbre.github.io/lucid_dreams_1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"lucid dreams i: lucid's first time fuzzing\" by h0mbre](https://h0mbre.github.io/lucid_dreams_1/) [article] [[part 2](https://h0mbre.github.io/lucid_dreams_2/)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "c82c4cbddaa58527",
      "item_id": "cf0c9b492964784c",
      "slug": "2025-finding-bugs-a-syzkaller-summer-fixing-false-positive-soft-lockups-in-net-sched-fuzzing-primary-f5beddc0",
      "year": 2025,
      "title": "A Syzkaller Summer: Fixing False Positive Soft Lockups in net/sched Fuzzing",
      "item_title": "A Syzkaller Summer: Fixing False Positive Soft Lockups in net/sched Fuzzing",
      "authors": [
        "William Liu"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.willsroot.io/2025/09/syz-summer-2025.html",
      "primary_url": "https://www.willsroot.io/2025/09/syz-summer-2025.html",
      "parent_primary_url": "https://www.willsroot.io/2025/09/syz-summer-2025.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-a-syzkaller-summer-fixing-false-positive-soft-lockups-in-net-sched-fuzzing-primary-f5beddc0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Syzkaller Summer: Fixing False Positive Soft Lockups in net/sched Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: A Syzkaller Summer: Fixing False Positive Soft Lockups in net/sched Fuzzing resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2025/09/syz-summer-2025.html parent_primary_url: https://www.willsroot.io/2025/09/syz-summer-2025.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"A Syzkaller Summer: Fixing False Positive Soft Lockups in net/sched Fuzzing\" by William Liu](https://www.willsroot.io/2025/09/syz-summer-2025.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Product",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.willsroot.io/2025/09/syz-summer-2025.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.willsroot.io/2025/09/syz-summer-2025.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "net",
        "sched"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This article addresses fixing false positive soft lockups in net/sched fuzzing.",
      "summary_zh": "本文讨论了修复net/sched模糊测试中的假阳性软锁定问题。",
      "source_markdown": "[2025: \"A Syzkaller Summer: Fixing False Positive Soft Lockups in net/sched Fuzzing\" by William Liu](https://www.willsroot.io/2025/09/syz-summer-2025.html) [article]",
      "search_text": "a syzkaller summer: fixing false positive soft lockups in net/sched fuzzing a syzkaller summer: fixing false positive soft lockups in net/sched fuzzing william liu   finding bugs  finding bugs primary article https://www.willsroot.io/2025/09/syz-summer-2025.html fuzzing net sched  finding bugs this article addresses fixing false positive soft lockups in net/sched fuzzing. 本文讨论了修复net/sched模糊测试中的假阳性软锁定问题。 # a syzkaller summer: fixing false positive soft lockups in net/sched fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: a syzkaller summer: fixing false positive soft lockups in net/sched fuzzing resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2025/09/syz-summer-2025.html parent_primary_url: https://www.willsroot.io/2025/09/syz-summer-2025.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"a syzkaller summer: fixing false positive soft lockups in net/sched fuzzing\" by william liu](https://www.willsroot.io/2025/09/syz-summer-2025.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: product no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "79f63a1257f24f48",
      "item_id": "31378239a62ca0c4",
      "slug": "2025-finding-bugs-mcp-ai-agents-for-the-linux-kernel-development-primary-57399a25",
      "year": 2025,
      "title": "MCP AI agents for the Linux kernel development",
      "item_title": "MCP AI agents for the Linux kernel development",
      "authors": [
        "Sabyrzhan Tasbolatov"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://docs.google.com/presentation/d/e/2PACX-1vRb56kZ4L81aixA416A7SWYr7zSK694RxM5L57hAV1g6IPEiYv9Y8ciQtLYkrEujoUxkp3jEtbT0NVW/pub?start=false&loop=false&delayms=3000&slide=id.p",
      "primary_url": "https://docs.google.com/presentation/d/e/2PACX-1vRb56kZ4L81aixA416A7SWYr7zSK694RxM5L57hAV1g6IPEiYv9Y8ciQtLYkrEujoUxkp3jEtbT0NVW/pub?start=false&loop=false&delayms=3000&slide=id.p",
      "parent_primary_url": "https://docs.google.com/presentation/d/e/2PACX-1vRb56kZ4L81aixA416A7SWYr7zSK694RxM5L57hAV1g6IPEiYv9Y8ciQtLYkrEujoUxkp3jEtbT0NVW/pub?start=false&loop=false&delayms=3000&slide=id.p",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-mcp-ai-agents-for-the-linux-kernel-development-primary-57399a25.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# MCP AI agents for the Linux kernel development record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: MCP AI agents for the Linux kernel development resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/e/2PACX-1vRb56kZ4L81aixA416A7SWYr7zSK694RxM5L57hAV1g6IPEiYv9Y8ciQtLYkrEujoUxkp3jEtbT0NVW/pub?start=false&loop=false&delayms=3000&slide=id.p parent_primary_url: https://docs.google.com/presentation/d/e/2PACX-1vRb56kZ4L81aixA416A7SWYr7zSK694RxM5L57hAV1g6IPEiYv9Y8ciQtLYkrEujoUxkp3jEtbT0NVW/pub?start=false&loop=false&delayms=3000&slide=id.p source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"MCP AI agents for the Linux kernel development\" by Sabyrzhan Tasbolatov](https://docs.google.com/presentation/d/e/2PACX-1vRb56kZ4L81aixA416A7SWYr7zS",
      "link_types": [
        "slides",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/e/2PACX-1vRb56kZ4L81aixA416A7SWYr7zSK694RxM5L57hAV1g6IPEiYv9Y8ciQtLYkrEujoUxkp3jEtbT0NVW/pub?start=false&loop=false&delayms=3000&slide=id.p"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/novitoll/mcp-linux-kernel"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/e/2PACX-1vRb56kZ4L81aixA416A7SWYr7zSK694RxM5L57hAV1g6IPEiYv9Y8ciQtLYkrEujoUxkp3jEtbT0NVW/pub?start=false&loop=false&delayms=3000&slide=id.p"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/novitoll/mcp-linux-kernel"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/novitoll/mcp-linux-kernel"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "AI",
        "kernel",
        "development"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "MCP AI agents are introduced for Linux kernel development assistance.",
      "summary_zh": "MCP AI代理被引入以协助Linux内核开发。",
      "source_markdown": "[2025: \"MCP AI agents for the Linux kernel development\" by Sabyrzhan Tasbolatov](https://docs.google.com/presentation/d/e/2PACX-1vRb56kZ4L81aixA416A7SWYr7zSK694RxM5L57hAV1g6IPEiYv9Y8ciQtLYkrEujoUxkp3jEtbT0NVW/pub?start=false&loop=false&delayms=3000&slide=id.p) [slides] [[code](https://github.com/novitoll/mcp-linux-kernel)]",
      "search_text": "mcp ai agents for the linux kernel development mcp ai agents for the linux kernel development sabyrzhan tasbolatov   finding bugs  finding bugs primary slides https://docs.google.com/presentation/d/e/2pacx-1vrb56kz4l81aixa416a7swyr7zsk694rxm5l57hav1g6ipeiyv9y8ciqtlykreujouxkp3jetbt0nvw/pub?start=false&loop=false&delayms=3000&slide=id.p ai kernel development  finding bugs mcp ai agents are introduced for linux kernel development assistance. mcp ai代理被引入以协助linux内核开发。 # mcp ai agents for the linux kernel development record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: mcp ai agents for the linux kernel development resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/e/2pacx-1vrb56kz4l81aixa416a7swyr7zsk694rxm5l57hav1g6ipeiyv9y8ciqtlykreujouxkp3jetbt0nvw/pub?start=false&loop=false&delayms=3000&slide=id.p parent_primary_url: https://docs.google.com/presentation/d/e/2pacx-1vrb56kz4l81aixa416a7swyr7zsk694rxm5l57hav1g6ipeiyv9y8ciqtlykreujouxkp3jetbt0nvw/pub?start=false&loop=false&delayms=3000&slide=id.p source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"mcp ai agents for the linux kernel development\" by sabyrzhan tasbolatov](https://docs.google.com/presentation/d/e/2pacx-1vrb56kz4l81aixa416a7swyr7zs no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "adc42b3607e81a24",
      "item_id": "31378239a62ca0c4",
      "slug": "2025-finding-bugs-mcp-ai-agents-for-the-linux-kernel-development-code-4cd08285",
      "year": 2025,
      "title": "MCP AI agents for the Linux kernel development · code",
      "item_title": "MCP AI agents for the Linux kernel development",
      "authors": [
        "Sabyrzhan Tasbolatov"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/novitoll/mcp-linux-kernel",
      "primary_url": "https://github.com/novitoll/mcp-linux-kernel",
      "parent_primary_url": "https://docs.google.com/presentation/d/e/2PACX-1vRb56kZ4L81aixA416A7SWYr7zSK694RxM5L57hAV1g6IPEiYv9Y8ciQtLYkrEujoUxkp3jEtbT0NVW/pub?start=false&loop=false&delayms=3000&slide=id.p",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-mcp-ai-agents-for-the-linux-kernel-development-code-4cd08285.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# MCP AI agents for the Linux kernel development · code record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: MCP AI agents for the Linux kernel development resource_label: code resource_type: code resource_url: https://github.com/novitoll/mcp-linux-kernel parent_primary_url: https://docs.google.com/presentation/d/e/2PACX-1vRb56kZ4L81aixA416A7SWYr7zSK694RxM5L57hAV1g6IPEiYv9Y8ciQtLYkrEujoUxkp3jEtbT0NVW/pub?start=false&loop=false&delayms=3000&slide=id.p source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"MCP AI agents for the Linux kernel development\" by Sabyrzhan Tasbolatov](https://docs.google.com/presentation/d/e/2PACX-1vRb56kZ4L81aixA416A7SWYr7zSK694RxM5L57hAV1g6IPEiYv9Y8ciQtLYkrEujoUxkp3jEtbT0NVW/pub?start=false&loop=false&delayms=3000&slide=id.p) [slides] [[code](https://gi",
      "link_types": [
        "slides",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/e/2PACX-1vRb56kZ4L81aixA416A7SWYr7zSK694RxM5L57hAV1g6IPEiYv9Y8ciQtLYkrEujoUxkp3jEtbT0NVW/pub?start=false&loop=false&delayms=3000&slide=id.p"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/novitoll/mcp-linux-kernel"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/e/2PACX-1vRb56kZ4L81aixA416A7SWYr7zSK694RxM5L57hAV1g6IPEiYv9Y8ciQtLYkrEujoUxkp3jEtbT0NVW/pub?start=false&loop=false&delayms=3000&slide=id.p"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/novitoll/mcp-linux-kernel"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/novitoll/mcp-linux-kernel"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "AI",
        "kernel",
        "development"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This code repository supports the MCP AI agents for kernel development.",
      "summary_zh": "该代码库支持用于内核开发的MCP AI代理。",
      "source_markdown": "[2025: \"MCP AI agents for the Linux kernel development\" by Sabyrzhan Tasbolatov](https://docs.google.com/presentation/d/e/2PACX-1vRb56kZ4L81aixA416A7SWYr7zSK694RxM5L57hAV1g6IPEiYv9Y8ciQtLYkrEujoUxkp3jEtbT0NVW/pub?start=false&loop=false&delayms=3000&slide=id.p) [slides] [[code](https://github.com/novitoll/mcp-linux-kernel)]",
      "search_text": "mcp ai agents for the linux kernel development · code mcp ai agents for the linux kernel development sabyrzhan tasbolatov   finding bugs  finding bugs code code https://github.com/novitoll/mcp-linux-kernel ai kernel development  finding bugs this code repository supports the mcp ai agents for kernel development. 该代码库支持用于内核开发的mcp ai代理。 # mcp ai agents for the linux kernel development · code record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: mcp ai agents for the linux kernel development resource_label: code resource_type: code resource_url: https://github.com/novitoll/mcp-linux-kernel parent_primary_url: https://docs.google.com/presentation/d/e/2pacx-1vrb56kz4l81aixa416a7swyr7zsk694rxm5l57hav1g6ipeiyv9y8ciqtlykreujouxkp3jetbt0nvw/pub?start=false&loop=false&delayms=3000&slide=id.p source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"mcp ai agents for the linux kernel development\" by sabyrzhan tasbolatov](https://docs.google.com/presentation/d/e/2pacx-1vrb56kz4l81aixa416a7swyr7zsk694rxm5l57hav1g6ipeiyv9y8ciqtlykreujouxkp3jetbt0nvw/pub?start=false&loop=false&delayms=3000&slide=id.p) [slides] [[code](https://gi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "2dfe97b8fd34e8e6",
      "item_id": "586d3ea8938884ff",
      "slug": "2025-finding-bugs-bypassing-kernel-barriers-fuzzing-linux-kernel-in-userspace-with-lkl-primary-6b448338",
      "year": 2025,
      "title": "Bypassing Kernel Barriers: Fuzzing Linux Kernel in Userspace with LKL",
      "item_title": "Bypassing Kernel Barriers: Fuzzing Linux Kernel in Userspace with LKL",
      "authors": [
        "Eugene Rodionov",
        "Xuan Xing"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf",
      "primary_url": "https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf",
      "parent_primary_url": "https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-bypassing-kernel-barriers-fuzzing-linux-kernel-in-userspace-with-lkl-primary-6b448338.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Bypassing Kernel Barriers: Fuzzing Linux Kernel in Userspace with LKL record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Bypassing Kernel Barriers: Fuzzing Linux Kernel in Userspace with LKL resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf parent_primary_url: https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"Bypassing Kernel Barriers: Fuzzing Linux Kernel in Userspace with LKL\" by Eugene Rodionov and Xuan Xing](https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barrie",
      "link_types": [
        "slides",
        "video",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Wxmi-2ROYNk"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/lkl/linux/tree/master/tools/lkl/fuzzers"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Wxmi-2ROYNk"
          }
        ],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/lkl/linux/tree/master/tools/lkl/fuzzers"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/lkl/linux/tree/master/tools/lkl/fuzzers"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "userspace",
        "LKL"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This presentation discusses fuzzing the Linux kernel in userspace using LKL.",
      "summary_zh": "本演示讨论了如何使用LKL在用户空间模糊测试Linux内核。",
      "source_markdown": "[2025: \"Bypassing Kernel Barriers: Fuzzing Linux Kernel in Userspace with LKL\" by Eugene Rodionov and Xuan Xing](https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf) [slides] [[video](https://www.youtube.com/watch?v=Wxmi-2ROYNk)] [[code](https://github.com/lkl/linux/tree/master/tools/lkl/fuzzers)]",
      "search_text": "bypassing kernel barriers: fuzzing linux kernel in userspace with lkl bypassing kernel barriers: fuzzing linux kernel in userspace with lkl eugene rodionov xuan xing   finding bugs  finding bugs primary slides https://static.sched.com/hosted_files/lssna2025/01/bypass%20kernel%20barriers_%20fuzzing%20linux%20kernel%20in%20userspace%20with%20lkl.pdf fuzzing userspace lkl  finding bugs this presentation discusses fuzzing the linux kernel in userspace using lkl. 本演示讨论了如何使用lkl在用户空间模糊测试linux内核。 # bypassing kernel barriers: fuzzing linux kernel in userspace with lkl record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: bypassing kernel barriers: fuzzing linux kernel in userspace with lkl resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/lssna2025/01/bypass%20kernel%20barriers_%20fuzzing%20linux%20kernel%20in%20userspace%20with%20lkl.pdf parent_primary_url: https://static.sched.com/hosted_files/lssna2025/01/bypass%20kernel%20barriers_%20fuzzing%20linux%20kernel%20in%20userspace%20with%20lkl.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"bypassing kernel barriers: fuzzing linux kernel in userspace with lkl\" by eugene rodionov and xuan xing](https://static.sched.com/hosted_files/lssna2025/01/bypass%20kernel%20barrie no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3777b1ae87262db1",
      "item_id": "586d3ea8938884ff",
      "slug": "2025-finding-bugs-bypassing-kernel-barriers-fuzzing-linux-kernel-in-userspace-with-lkl-video-5b44eb70",
      "year": 2025,
      "title": "Bypassing Kernel Barriers: Fuzzing Linux Kernel in Userspace with LKL · video",
      "item_title": "Bypassing Kernel Barriers: Fuzzing Linux Kernel in Userspace with LKL",
      "authors": [
        "Eugene Rodionov",
        "Xuan Xing"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=Wxmi-2ROYNk",
      "primary_url": "https://www.youtube.com/watch?v=Wxmi-2ROYNk",
      "parent_primary_url": "https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-bypassing-kernel-barriers-fuzzing-linux-kernel-in-userspace-with-lkl-video-5b44eb70.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Bypassing Kernel Barriers: Fuzzing Linux Kernel in Userspace with LKL · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Bypassing Kernel Barriers: Fuzzing Linux Kernel in Userspace with LKL resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=Wxmi-2ROYNk parent_primary_url: https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"Bypassing Kernel Barriers: Fuzzing Linux Kernel in Userspace with LKL\" by Eugene Rodionov and Xuan Xing](https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf) [slides] [[video](https:/",
      "link_types": [
        "slides",
        "video",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Wxmi-2ROYNk"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/lkl/linux/tree/master/tools/lkl/fuzzers"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Wxmi-2ROYNk"
          }
        ],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/lkl/linux/tree/master/tools/lkl/fuzzers"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/lkl/linux/tree/master/tools/lkl/fuzzers"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "userspace",
        "LKL"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This video presents fuzzing the Linux kernel in userspace with LKL.",
      "summary_zh": "该视频展示了如何在用户空间使用LKL模糊测试Linux内核。",
      "source_markdown": "[2025: \"Bypassing Kernel Barriers: Fuzzing Linux Kernel in Userspace with LKL\" by Eugene Rodionov and Xuan Xing](https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf) [slides] [[video](https://www.youtube.com/watch?v=Wxmi-2ROYNk)] [[code](https://github.com/lkl/linux/tree/master/tools/lkl/fuzzers)]",
      "search_text": "bypassing kernel barriers: fuzzing linux kernel in userspace with lkl · video bypassing kernel barriers: fuzzing linux kernel in userspace with lkl eugene rodionov xuan xing   finding bugs  finding bugs video video https://www.youtube.com/watch?v=wxmi-2roynk fuzzing userspace lkl  finding bugs this video presents fuzzing the linux kernel in userspace with lkl. 该视频展示了如何在用户空间使用lkl模糊测试linux内核。 # bypassing kernel barriers: fuzzing linux kernel in userspace with lkl · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: bypassing kernel barriers: fuzzing linux kernel in userspace with lkl resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=wxmi-2roynk parent_primary_url: https://static.sched.com/hosted_files/lssna2025/01/bypass%20kernel%20barriers_%20fuzzing%20linux%20kernel%20in%20userspace%20with%20lkl.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"bypassing kernel barriers: fuzzing linux kernel in userspace with lkl\" by eugene rodionov and xuan xing](https://static.sched.com/hosted_files/lssna2025/01/bypass%20kernel%20barriers_%20fuzzing%20linux%20kernel%20in%20userspace%20with%20lkl.pdf) [slides] [[video](https:/ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "cde919e5ec243daf",
      "item_id": "586d3ea8938884ff",
      "slug": "2025-finding-bugs-bypassing-kernel-barriers-fuzzing-linux-kernel-in-userspace-with-lkl-code-fc3eec2a",
      "year": 2025,
      "title": "Bypassing Kernel Barriers: Fuzzing Linux Kernel in Userspace with LKL · code",
      "item_title": "Bypassing Kernel Barriers: Fuzzing Linux Kernel in Userspace with LKL",
      "authors": [
        "Eugene Rodionov",
        "Xuan Xing"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/lkl/linux/tree/master/tools/lkl/fuzzers",
      "primary_url": "https://github.com/lkl/linux/tree/master/tools/lkl/fuzzers",
      "parent_primary_url": "https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-bypassing-kernel-barriers-fuzzing-linux-kernel-in-userspace-with-lkl-code-fc3eec2a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Bypassing Kernel Barriers: Fuzzing Linux Kernel in Userspace with LKL · code record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Bypassing Kernel Barriers: Fuzzing Linux Kernel in Userspace with LKL resource_label: code resource_type: code resource_url: https://github.com/lkl/linux/tree/master/tools/lkl/fuzzers parent_primary_url: https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"Bypassing Kernel Barriers: Fuzzing Linux Kernel in Userspace with LKL\" by Eugene Rodionov and Xuan Xing](https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf) [slides] [[vi",
      "link_types": [
        "slides",
        "video",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Wxmi-2ROYNk"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/lkl/linux/tree/master/tools/lkl/fuzzers"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Wxmi-2ROYNk"
          }
        ],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/lkl/linux/tree/master/tools/lkl/fuzzers"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/lkl/linux/tree/master/tools/lkl/fuzzers"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "userspace",
        "LKL"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This code repository supports fuzzing the Linux kernel in userspace with LKL.",
      "summary_zh": "该代码库支持在用户空间使用LKL模糊测试Linux内核。",
      "source_markdown": "[2025: \"Bypassing Kernel Barriers: Fuzzing Linux Kernel in Userspace with LKL\" by Eugene Rodionov and Xuan Xing](https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf) [slides] [[video](https://www.youtube.com/watch?v=Wxmi-2ROYNk)] [[code](https://github.com/lkl/linux/tree/master/tools/lkl/fuzzers)]",
      "search_text": "bypassing kernel barriers: fuzzing linux kernel in userspace with lkl · code bypassing kernel barriers: fuzzing linux kernel in userspace with lkl eugene rodionov xuan xing   finding bugs  finding bugs code code https://github.com/lkl/linux/tree/master/tools/lkl/fuzzers fuzzing userspace lkl  finding bugs this code repository supports fuzzing the linux kernel in userspace with lkl. 该代码库支持在用户空间使用lkl模糊测试linux内核。 # bypassing kernel barriers: fuzzing linux kernel in userspace with lkl · code record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: bypassing kernel barriers: fuzzing linux kernel in userspace with lkl resource_label: code resource_type: code resource_url: https://github.com/lkl/linux/tree/master/tools/lkl/fuzzers parent_primary_url: https://static.sched.com/hosted_files/lssna2025/01/bypass%20kernel%20barriers_%20fuzzing%20linux%20kernel%20in%20userspace%20with%20lkl.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"bypassing kernel barriers: fuzzing linux kernel in userspace with lkl\" by eugene rodionov and xuan xing](https://static.sched.com/hosted_files/lssna2025/01/bypass%20kernel%20barriers_%20fuzzing%20linux%20kernel%20in%20userspace%20with%20lkl.pdf) [slides] [[vi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "d3c89f87accdc82b",
      "item_id": "33f63d5d3f789144",
      "slug": "2025-finding-bugs-fuzzing-linux-kernel-modules-primary-9e0a9129",
      "year": 2025,
      "title": "Fuzzing Linux Kernel Modules",
      "item_title": "Fuzzing Linux Kernel Modules",
      "authors": [
        "Slava Moskvin"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/live/uCcsZrXyLyE",
      "primary_url": "https://www.youtube.com/live/uCcsZrXyLyE",
      "parent_primary_url": "https://www.youtube.com/live/uCcsZrXyLyE",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-fuzzing-linux-kernel-modules-primary-9e0a9129.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fuzzing Linux Kernel Modules record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Fuzzing Linux Kernel Modules resource_label: primary resource_type: video resource_url: https://www.youtube.com/live/uCcsZrXyLyE parent_primary_url: https://www.youtube.com/live/uCcsZrXyLyE source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"Fuzzing Linux Kernel Modules\" by Slava Moskvin](https://www.youtube.com/live/uCcsZrXyLyE) [video] [[code](https://github.com/sl4v/hfsplus-kernel-fuzzing-demo)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_url",
      "link_types": [
        "video",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/live/uCcsZrXyLyE"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/sl4v/hfsplus-kernel-fuzzing-demo"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/live/uCcsZrXyLyE"
          }
        ],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/sl4v/hfsplus-kernel-fuzzing-demo"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/sl4v/hfsplus-kernel-fuzzing-demo"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "modules"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This video discusses fuzzing Linux kernel modules.",
      "summary_zh": "该视频讨论了模糊测试Linux内核模块。",
      "source_markdown": "[2025: \"Fuzzing Linux Kernel Modules\" by Slava Moskvin](https://www.youtube.com/live/uCcsZrXyLyE) [video] [[code](https://github.com/sl4v/hfsplus-kernel-fuzzing-demo)]",
      "search_text": "fuzzing linux kernel modules fuzzing linux kernel modules slava moskvin   finding bugs  finding bugs primary video https://www.youtube.com/live/uccszrxylye fuzzing kernel modules  finding bugs this video discusses fuzzing linux kernel modules. 该视频讨论了模糊测试linux内核模块。 # fuzzing linux kernel modules record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: fuzzing linux kernel modules resource_label: primary resource_type: video resource_url: https://www.youtube.com/live/uccszrxylye parent_primary_url: https://www.youtube.com/live/uccszrxylye source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"fuzzing linux kernel modules\" by slava moskvin](https://www.youtube.com/live/uccszrxylye) [video] [[code](https://github.com/sl4v/hfsplus-kernel-fuzzing-demo)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_url no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "10225464371eca98",
      "item_id": "33f63d5d3f789144",
      "slug": "2025-finding-bugs-fuzzing-linux-kernel-modules-code-d9540b03",
      "year": 2025,
      "title": "Fuzzing Linux Kernel Modules · code",
      "item_title": "Fuzzing Linux Kernel Modules",
      "authors": [
        "Slava Moskvin"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/sl4v/hfsplus-kernel-fuzzing-demo",
      "primary_url": "https://github.com/sl4v/hfsplus-kernel-fuzzing-demo",
      "parent_primary_url": "https://www.youtube.com/live/uCcsZrXyLyE",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-fuzzing-linux-kernel-modules-code-d9540b03.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fuzzing Linux Kernel Modules · code record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Fuzzing Linux Kernel Modules resource_label: code resource_type: code resource_url: https://github.com/sl4v/hfsplus-kernel-fuzzing-demo parent_primary_url: https://www.youtube.com/live/uCcsZrXyLyE source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"Fuzzing Linux Kernel Modules\" by Slava Moskvin](https://www.youtube.com/live/uCcsZrXyLyE) [video] [[code](https://github.com/sl4v/hfsplus-kernel-fuzzing-demo)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: ",
      "link_types": [
        "video",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/live/uCcsZrXyLyE"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/sl4v/hfsplus-kernel-fuzzing-demo"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/live/uCcsZrXyLyE"
          }
        ],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/sl4v/hfsplus-kernel-fuzzing-demo"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/sl4v/hfsplus-kernel-fuzzing-demo"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "modules"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This code repository supports fuzzing Linux kernel modules.",
      "summary_zh": "该代码库支持模糊测试Linux内核模块。",
      "source_markdown": "[2025: \"Fuzzing Linux Kernel Modules\" by Slava Moskvin](https://www.youtube.com/live/uCcsZrXyLyE) [video] [[code](https://github.com/sl4v/hfsplus-kernel-fuzzing-demo)]",
      "search_text": "fuzzing linux kernel modules · code fuzzing linux kernel modules slava moskvin   finding bugs  finding bugs code code https://github.com/sl4v/hfsplus-kernel-fuzzing-demo fuzzing kernel modules  finding bugs this code repository supports fuzzing linux kernel modules. 该代码库支持模糊测试linux内核模块。 # fuzzing linux kernel modules · code record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: fuzzing linux kernel modules resource_label: code resource_type: code resource_url: https://github.com/sl4v/hfsplus-kernel-fuzzing-demo parent_primary_url: https://www.youtube.com/live/uccszrxylye source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"fuzzing linux kernel modules\" by slava moskvin](https://www.youtube.com/live/uccszrxylye) [video] [[code](https://github.com/sl4v/hfsplus-kernel-fuzzing-demo)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "f713ce066007a33e",
      "item_id": "26f104bffe29b4fa",
      "slug": "2025-finding-bugs-how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernel-s-sm",
      "year": 2025,
      "title": "How I used o3 to find CVE-2025-37899, a remote zeroday vulnerability in the Linux kernel’s SMB implementation",
      "item_title": "How I used o3 to find CVE-2025-37899, a remote zeroday vulnerability in the Linux kernel’s SMB implementation",
      "authors": [
        "Sean Heelan"
      ],
      "cves": [
        "CVE-2025-37899"
      ],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/",
      "primary_url": "https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/",
      "parent_primary_url": "https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernel-s-sm.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# How I used o3 to find CVE-2025-37899, a remote zeroday vulnerability in the Linux kernel’s SMB implementation record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: How I used o3 to find CVE-2025-37899, a remote zeroday vulnerability in the Linux kernel’s SMB implementation resource_label: primary resource_type: article resource_url: https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/ parent_primary_url: https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"How I used o3 to find CVE-2025-37899, a remote zeroday vulnerability in the Linux kernel’s SM",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/"
        },
        {
          "label": "note",
          "type": "article",
          "url": "https://x.com/antirez/status/1926580457048588321"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/"
          },
          {
            "label": "note",
            "type": "article",
            "url": "https://x.com/antirez/status/1926580457048588321"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "SMB",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This article describes finding a remote zeroday vulnerability in the Linux kernel's SMB implementation.",
      "summary_zh": "本文描述了如何发现Linux内核SMB实现中的远程零日漏洞。",
      "source_markdown": "[2025: \"How I used o3 to find CVE-2025-37899, a remote zeroday vulnerability in the Linux kernel’s SMB implementation\" by Sean Heelan](https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/) [article] [[note](https://x.com/antirez/status/1926580457048588321)]",
      "search_text": "how i used o3 to find cve-2025-37899, a remote zeroday vulnerability in the linux kernel’s smb implementation how i used o3 to find cve-2025-37899, a remote zeroday vulnerability in the linux kernel’s smb implementation sean heelan cve-2025-37899  finding bugs  finding bugs primary article https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/ vulnerability smb kernel  finding bugs this article describes finding a remote zeroday vulnerability in the linux kernel's smb implementation. 本文描述了如何发现linux内核smb实现中的远程零日漏洞。 # how i used o3 to find cve-2025-37899, a remote zeroday vulnerability in the linux kernel’s smb implementation record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: how i used o3 to find cve-2025-37899, a remote zeroday vulnerability in the linux kernel’s smb implementation resource_label: primary resource_type: article resource_url: https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/ parent_primary_url: https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"how i used o3 to find cve-2025-37899, a remote zeroday vulnerability in the linux kernel’s sm no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9bc6c0a98b3f053c",
      "item_id": "26f104bffe29b4fa",
      "slug": "2025-finding-bugs-how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernel-s-sm-2",
      "year": 2025,
      "title": "How I used o3 to find CVE-2025-37899, a remote zeroday vulnerability in the Linux kernel’s SMB implementation · note",
      "item_title": "How I used o3 to find CVE-2025-37899, a remote zeroday vulnerability in the Linux kernel’s SMB implementation",
      "authors": [
        "Sean Heelan"
      ],
      "cves": [
        "CVE-2025-37899"
      ],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "note",
      "resource_type": "article",
      "resource_url": "https://x.com/antirez/status/1926580457048588321",
      "primary_url": "https://x.com/antirez/status/1926580457048588321",
      "parent_primary_url": "https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernel-s-sm-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# How I used o3 to find CVE-2025-37899, a remote zeroday vulnerability in the Linux kernel’s SMB implementation · note record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: How I used o3 to find CVE-2025-37899, a remote zeroday vulnerability in the Linux kernel’s SMB implementation resource_label: note resource_type: article resource_url: https://x.com/antirez/status/1926580457048588321 parent_primary_url: https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"How I used o3 to find CVE-2025-37899, a remote zeroday vulnerability in the Linux kernel’s SMB implementation\" by Sean Heelan](https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/"
        },
        {
          "label": "note",
          "type": "article",
          "url": "https://x.com/antirez/status/1926580457048588321"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/"
          },
          {
            "label": "note",
            "type": "article",
            "url": "https://x.com/antirez/status/1926580457048588321"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "SMB",
        "CVE-2025-37899"
      ],
      "affected_area": "SMB",
      "exploit_stage": "discovery",
      "summary_en": "This article discusses the discovery of CVE-2025-37899, a remote zero-day vulnerability in the Linux kernel's SMB implementation using o3.",
      "summary_zh": "本文讨论了如何使用o3发现Linux内核SMB实现中的CVE-2025-37899远程零日漏洞。",
      "source_markdown": "[2025: \"How I used o3 to find CVE-2025-37899, a remote zeroday vulnerability in the Linux kernel’s SMB implementation\" by Sean Heelan](https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/) [article] [[note](https://x.com/antirez/status/1926580457048588321)]",
      "search_text": "how i used o3 to find cve-2025-37899, a remote zeroday vulnerability in the linux kernel’s smb implementation · note how i used o3 to find cve-2025-37899, a remote zeroday vulnerability in the linux kernel’s smb implementation sean heelan cve-2025-37899  finding bugs  finding bugs note article https://x.com/antirez/status/1926580457048588321 vulnerability smb cve-2025-37899 smb discovery this article discusses the discovery of cve-2025-37899, a remote zero-day vulnerability in the linux kernel's smb implementation using o3. 本文讨论了如何使用o3发现linux内核smb实现中的cve-2025-37899远程零日漏洞。 # how i used o3 to find cve-2025-37899, a remote zeroday vulnerability in the linux kernel’s smb implementation · note record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: how i used o3 to find cve-2025-37899, a remote zeroday vulnerability in the linux kernel’s smb implementation resource_label: note resource_type: article resource_url: https://x.com/antirez/status/1926580457048588321 parent_primary_url: https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"how i used o3 to find cve-2025-37899, a remote zeroday vulnerability in the linux kernel’s smb implementation\" by sean heelan](https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find- no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6af43e62371746fe",
      "item_id": "f4603d4eb6222af1",
      "slug": "2025-finding-bugs-statically-discover-cross-entry-use-after-free-vulnerabilities-in-the-linux-kernel-primary-4",
      "year": 2025,
      "title": "Statically Discover Cross-Entry Use-After-Free Vulnerabilities in the Linux Kernel",
      "item_title": "Statically Discover Cross-Entry Use-After-Free Vulnerabilities in the Linux Kernel",
      "authors": [
        "Hang Zhang et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf",
      "primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf",
      "parent_primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-statically-discover-cross-entry-use-after-free-vulnerabilities-in-the-linux-kernel-primary-4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Statically Discover Cross-Entry Use-After-Free Vulnerabilities in the Linux Kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Statically Discover Cross-Entry Use-After-Free Vulnerabilities in the Linux Kernel resource_label: primary resource_type: paper resource_url: https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"Statically Discover Cross-Entry Use-After-Free Vulnerabilities in the Linux Kernel\" by Hang Zhang et al.](https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf) [paper] [[slides](https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf)] [[video](https://www.youtube.com/watch?v=vO9SCFS7Z",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=vO9SCFS7Z2w"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=vO9SCFS7Z2w"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "static analysis",
        "use-after-free"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "This paper presents a method for statically discovering cross-entry use-after-free vulnerabilities in the Linux kernel.",
      "summary_zh": "本文提出了一种在Linux内核中静态发现交叉入口使用后释放漏洞的方法。",
      "source_markdown": "[2025: \"Statically Discover Cross-Entry Use-After-Free Vulnerabilities in the Linux Kernel\" by Hang Zhang et al.](https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf) [paper] [[slides](https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf)] [[video](https://www.youtube.com/watch?v=vO9SCFS7Z2w)]",
      "search_text": "statically discover cross-entry use-after-free vulnerabilities in the linux kernel statically discover cross-entry use-after-free vulnerabilities in the linux kernel hang zhang et al.   finding bugs  finding bugs primary paper https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf static analysis use-after-free  discovery this paper presents a method for statically discovering cross-entry use-after-free vulnerabilities in the linux kernel. 本文提出了一种在linux内核中静态发现交叉入口使用后释放漏洞的方法。 # statically discover cross-entry use-after-free vulnerabilities in the linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: statically discover cross-entry use-after-free vulnerabilities in the linux kernel resource_label: primary resource_type: paper resource_url: https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"statically discover cross-entry use-after-free vulnerabilities in the linux kernel\" by hang zhang et al.](https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf) [paper] [[slides](https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf)] [[video](https://www.youtube.com/watch?v=vo9scfs7z no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "daaf7a7b141e1c11",
      "item_id": "f4603d4eb6222af1",
      "slug": "2025-finding-bugs-statically-discover-cross-entry-use-after-free-vulnerabilities-in-the-linux-kernel-slides-1b",
      "year": 2025,
      "title": "Statically Discover Cross-Entry Use-After-Free Vulnerabilities in the Linux Kernel · slides",
      "item_title": "Statically Discover Cross-Entry Use-After-Free Vulnerabilities in the Linux Kernel",
      "authors": [
        "Hang Zhang et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf",
      "primary_url": "https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf",
      "parent_primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-statically-discover-cross-entry-use-after-free-vulnerabilities-in-the-linux-kernel-slides-1b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Statically Discover Cross-Entry Use-After-Free Vulnerabilities in the Linux Kernel · slides record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Statically Discover Cross-Entry Use-After-Free Vulnerabilities in the Linux Kernel resource_label: slides resource_type: slides resource_url: https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"Statically Discover Cross-Entry Use-After-Free Vulnerabilities in the Linux Kernel\" by Hang Zhang et al.](https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf) [paper] [[slides](https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf)] [[video](https://www.youtube.com/watch?v=vO9SCFS7Z2w)] cves",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=vO9SCFS7Z2w"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=vO9SCFS7Z2w"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "static analysis",
        "use-after-free"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "These slides provide an overview of statically discovering cross-entry use-after-free vulnerabilities in the Linux kernel.",
      "summary_zh": "这些幻灯片概述了在Linux内核中静态发现交叉入口使用后释放漏洞的内容。",
      "source_markdown": "[2025: \"Statically Discover Cross-Entry Use-After-Free Vulnerabilities in the Linux Kernel\" by Hang Zhang et al.](https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf) [paper] [[slides](https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf)] [[video](https://www.youtube.com/watch?v=vO9SCFS7Z2w)]",
      "search_text": "statically discover cross-entry use-after-free vulnerabilities in the linux kernel · slides statically discover cross-entry use-after-free vulnerabilities in the linux kernel hang zhang et al.   finding bugs  finding bugs slides slides https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf static analysis use-after-free  discovery these slides provide an overview of statically discovering cross-entry use-after-free vulnerabilities in the linux kernel. 这些幻灯片概述了在linux内核中静态发现交叉入口使用后释放漏洞的内容。 # statically discover cross-entry use-after-free vulnerabilities in the linux kernel · slides record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: statically discover cross-entry use-after-free vulnerabilities in the linux kernel resource_label: slides resource_type: slides resource_url: https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"statically discover cross-entry use-after-free vulnerabilities in the linux kernel\" by hang zhang et al.](https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf) [paper] [[slides](https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf)] [[video](https://www.youtube.com/watch?v=vo9scfs7z2w)] cves no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e796750c5d4fd75a",
      "item_id": "f4603d4eb6222af1",
      "slug": "2025-finding-bugs-statically-discover-cross-entry-use-after-free-vulnerabilities-in-the-linux-kernel-video-89b",
      "year": 2025,
      "title": "Statically Discover Cross-Entry Use-After-Free Vulnerabilities in the Linux Kernel · video",
      "item_title": "Statically Discover Cross-Entry Use-After-Free Vulnerabilities in the Linux Kernel",
      "authors": [
        "Hang Zhang et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=vO9SCFS7Z2w",
      "primary_url": "https://www.youtube.com/watch?v=vO9SCFS7Z2w",
      "parent_primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-statically-discover-cross-entry-use-after-free-vulnerabilities-in-the-linux-kernel-video-89b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Statically Discover Cross-Entry Use-After-Free Vulnerabilities in the Linux Kernel · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Statically Discover Cross-Entry Use-After-Free Vulnerabilities in the Linux Kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=vO9SCFS7Z2w parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"Statically Discover Cross-Entry Use-After-Free Vulnerabilities in the Linux Kernel\" by Hang Zhang et al.](https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf) [paper] [[slides](https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf)] [[video](https://www.youtube.com/watch?v=vO9SCFS7Z2w)] cves: none and",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=vO9SCFS7Z2w"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=vO9SCFS7Z2w"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "static analysis",
        "use-after-free"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "This video discusses the static discovery of cross-entry use-after-free vulnerabilities in the Linux kernel.",
      "summary_zh": "该视频讨论了在Linux内核中静态发现交叉入口使用后释放漏洞。",
      "source_markdown": "[2025: \"Statically Discover Cross-Entry Use-After-Free Vulnerabilities in the Linux Kernel\" by Hang Zhang et al.](https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf) [paper] [[slides](https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf)] [[video](https://www.youtube.com/watch?v=vO9SCFS7Z2w)]",
      "search_text": "statically discover cross-entry use-after-free vulnerabilities in the linux kernel · video statically discover cross-entry use-after-free vulnerabilities in the linux kernel hang zhang et al.   finding bugs  finding bugs video video https://www.youtube.com/watch?v=vo9scfs7z2w static analysis use-after-free  discovery this video discusses the static discovery of cross-entry use-after-free vulnerabilities in the linux kernel. 该视频讨论了在linux内核中静态发现交叉入口使用后释放漏洞。 # statically discover cross-entry use-after-free vulnerabilities in the linux kernel · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: statically discover cross-entry use-after-free vulnerabilities in the linux kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=vo9scfs7z2w parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"statically discover cross-entry use-after-free vulnerabilities in the linux kernel\" by hang zhang et al.](https://www.ndss-symposium.org/wp-content/uploads/2025-559-paper.pdf) [paper] [[slides](https://taesoo.kim/pubs/2025/zhang:uafx-slides.pdf)] [[video](https://www.youtube.com/watch?v=vo9scfs7z2w)] cves: none and no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d60f415942ce8ddf",
      "item_id": "90643996ee102856",
      "slug": "2025-finding-bugs-unlocking-low-frequency-syscalls-in-kernel-fuzzing-with-dependency-based-rag-primary-a164d82",
      "year": 2025,
      "title": "Unlocking Low Frequency Syscalls in Kernel Fuzzing with Dependency-Based RAG",
      "item_title": "Unlocking Low Frequency Syscalls in Kernel Fuzzing with Dependency-Based RAG",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://dl.acm.org/doi/pdf/10.1145/3728913",
      "primary_url": "https://dl.acm.org/doi/pdf/10.1145/3728913",
      "parent_primary_url": "https://dl.acm.org/doi/pdf/10.1145/3728913",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-unlocking-low-frequency-syscalls-in-kernel-fuzzing-with-dependency-based-rag-primary-a164d82.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Unlocking Low Frequency Syscalls in Kernel Fuzzing with Dependency-Based RAG record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Unlocking Low Frequency Syscalls in Kernel Fuzzing with Dependency-Based RAG resource_label: primary resource_type: paper resource_url: https://dl.acm.org/doi/pdf/10.1145/3728913 parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3728913 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"Unlocking Low Frequency Syscalls in Kernel Fuzzing with Dependency-Based RAG\"](https://dl.acm.org/doi/pdf/10.1145/3728913) [paper] [[code](https://github.com/QGrain/SyzGPT)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iO",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://dl.acm.org/doi/pdf/10.1145/3728913"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/QGrain/SyzGPT"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://dl.acm.org/doi/pdf/10.1145/3728913"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/QGrain/SyzGPT"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/QGrain/SyzGPT"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "syscalls"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "This paper explores unlocking low frequency syscalls in kernel fuzzing using a dependency-based RAG approach.",
      "summary_zh": "本文探讨了使用基于依赖的RAG方法在内核模糊测试中解锁低频系统调用。",
      "source_markdown": "[2025: \"Unlocking Low Frequency Syscalls in Kernel Fuzzing with Dependency-Based RAG\"](https://dl.acm.org/doi/pdf/10.1145/3728913) [paper] [[code](https://github.com/QGrain/SyzGPT)]",
      "search_text": "unlocking low frequency syscalls in kernel fuzzing with dependency-based rag unlocking low frequency syscalls in kernel fuzzing with dependency-based rag    finding bugs  finding bugs primary paper https://dl.acm.org/doi/pdf/10.1145/3728913 fuzzing syscalls  discovery this paper explores unlocking low frequency syscalls in kernel fuzzing using a dependency-based rag approach. 本文探讨了使用基于依赖的rag方法在内核模糊测试中解锁低频系统调用。 # unlocking low frequency syscalls in kernel fuzzing with dependency-based rag record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: unlocking low frequency syscalls in kernel fuzzing with dependency-based rag resource_label: primary resource_type: paper resource_url: https://dl.acm.org/doi/pdf/10.1145/3728913 parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3728913 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"unlocking low frequency syscalls in kernel fuzzing with dependency-based rag\"](https://dl.acm.org/doi/pdf/10.1145/3728913) [paper] [[code](https://github.com/qgrain/syzgpt)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production io no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "f60b9347ea076d4a",
      "item_id": "90643996ee102856",
      "slug": "2025-finding-bugs-unlocking-low-frequency-syscalls-in-kernel-fuzzing-with-dependency-based-rag-code-3f1f0b26",
      "year": 2025,
      "title": "Unlocking Low Frequency Syscalls in Kernel Fuzzing with Dependency-Based RAG · code",
      "item_title": "Unlocking Low Frequency Syscalls in Kernel Fuzzing with Dependency-Based RAG",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/QGrain/SyzGPT",
      "primary_url": "https://github.com/QGrain/SyzGPT",
      "parent_primary_url": "https://dl.acm.org/doi/pdf/10.1145/3728913",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-unlocking-low-frequency-syscalls-in-kernel-fuzzing-with-dependency-based-rag-code-3f1f0b26.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Unlocking Low Frequency Syscalls in Kernel Fuzzing with Dependency-Based RAG · code record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Unlocking Low Frequency Syscalls in Kernel Fuzzing with Dependency-Based RAG resource_label: code resource_type: code resource_url: https://github.com/QGrain/SyzGPT parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3728913 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"Unlocking Low Frequency Syscalls in Kernel Fuzzing with Dependency-Based RAG\"](https://dl.acm.org/doi/pdf/10.1145/3728913) [paper] [[code](https://github.com/QGrain/SyzGPT)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devic",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://dl.acm.org/doi/pdf/10.1145/3728913"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/QGrain/SyzGPT"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://dl.acm.org/doi/pdf/10.1145/3728913"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/QGrain/SyzGPT"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/QGrain/SyzGPT"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "syscalls"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "This code accompanies a paper on unlocking low frequency syscalls in kernel fuzzing with a dependency-based RAG.",
      "summary_zh": "该代码与一篇关于使用基于依赖的RAG在内核模糊测试中解锁低频系统调用的论文相关。",
      "source_markdown": "[2025: \"Unlocking Low Frequency Syscalls in Kernel Fuzzing with Dependency-Based RAG\"](https://dl.acm.org/doi/pdf/10.1145/3728913) [paper] [[code](https://github.com/QGrain/SyzGPT)]",
      "search_text": "unlocking low frequency syscalls in kernel fuzzing with dependency-based rag · code unlocking low frequency syscalls in kernel fuzzing with dependency-based rag    finding bugs  finding bugs code code https://github.com/qgrain/syzgpt fuzzing syscalls  discovery this code accompanies a paper on unlocking low frequency syscalls in kernel fuzzing with a dependency-based rag. 该代码与一篇关于使用基于依赖的rag在内核模糊测试中解锁低频系统调用的论文相关。 # unlocking low frequency syscalls in kernel fuzzing with dependency-based rag · code record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: unlocking low frequency syscalls in kernel fuzzing with dependency-based rag resource_label: code resource_type: code resource_url: https://github.com/qgrain/syzgpt parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3728913 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"unlocking low frequency syscalls in kernel fuzzing with dependency-based rag\"](https://dl.acm.org/doi/pdf/10.1145/3728913) [paper] [[code](https://github.com/qgrain/syzgpt)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devic no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "cbed5997f25b4520",
      "item_id": "f3913470a2be3cdf",
      "slug": "2025-finding-bugs-external-fuzzing-of-linux-kernel-usb-drivers-with-syzkaller-primary-8495ebad",
      "year": 2025,
      "title": "External fuzzing of Linux kernel USB drivers with syzkaller",
      "item_title": "External fuzzing of Linux kernel USB drivers with syzkaller",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [
        "CVE-2024-53104"
      ],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://docs.google.com/presentation/d/1ba7Au3Gt6dEQAsfZmjUdzjVWHKxE_EdaJGU9WOSF-Ts/edit?usp=sharing",
      "primary_url": "https://docs.google.com/presentation/d/1ba7Au3Gt6dEQAsfZmjUdzjVWHKxE_EdaJGU9WOSF-Ts/edit?usp=sharing",
      "parent_primary_url": "https://docs.google.com/presentation/d/1ba7Au3Gt6dEQAsfZmjUdzjVWHKxE_EdaJGU9WOSF-Ts/edit?usp=sharing",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-external-fuzzing-of-linux-kernel-usb-drivers-with-syzkaller-primary-8495ebad.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# External fuzzing of Linux kernel USB drivers with syzkaller record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: External fuzzing of Linux kernel USB drivers with syzkaller resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/1ba7Au3Gt6dEQAsfZmjUdzjVWHKxE_EdaJGU9WOSF-Ts/edit?usp=sharing parent_primary_url: https://docs.google.com/presentation/d/1ba7Au3Gt6dEQAsfZmjUdzjVWHKxE_EdaJGU9WOSF-Ts/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"External fuzzing of Linux kernel USB drivers with syzkaller\" by Andrey Konovalov](https://docs.google.com/presentation/d/1ba7Au3Gt6dEQAsfZmjUdzjVWHKxE_EdaJGU9WOSF-Ts/edit?usp=sharing) [slides] [CVE-2024-53104] cves: CVE-2024-53104 android_impact_status: no android_impact_reason",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/1ba7Au3Gt6dEQAsfZmjUdzjVWHKxE_EdaJGU9WOSF-Ts/edit?usp=sharing"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/1ba7Au3Gt6dEQAsfZmjUdzjVWHKxE_EdaJGU9WOSF-Ts/edit?usp=sharing"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "USB",
        "CVE-2024-53104"
      ],
      "affected_area": "USB",
      "exploit_stage": "discovery",
      "summary_en": "These slides present findings on external fuzzing of Linux kernel USB drivers using syzkaller.",
      "summary_zh": "这些幻灯片展示了使用syzkaller对Linux内核USB驱动程序进行外部模糊测试的结果。",
      "source_markdown": "[2025: \"External fuzzing of Linux kernel USB drivers with syzkaller\" by Andrey Konovalov](https://docs.google.com/presentation/d/1ba7Au3Gt6dEQAsfZmjUdzjVWHKxE_EdaJGU9WOSF-Ts/edit?usp=sharing) [slides] [CVE-2024-53104]",
      "search_text": "external fuzzing of linux kernel usb drivers with syzkaller external fuzzing of linux kernel usb drivers with syzkaller andrey konovalov cve-2024-53104  finding bugs  finding bugs primary slides https://docs.google.com/presentation/d/1ba7au3gt6deqasfzmjudzjvwhkxe_edajgu9wosf-ts/edit?usp=sharing fuzzing usb cve-2024-53104 usb discovery these slides present findings on external fuzzing of linux kernel usb drivers using syzkaller. 这些幻灯片展示了使用syzkaller对linux内核usb驱动程序进行外部模糊测试的结果。 # external fuzzing of linux kernel usb drivers with syzkaller record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: external fuzzing of linux kernel usb drivers with syzkaller resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/1ba7au3gt6deqasfzmjudzjvwhkxe_edajgu9wosf-ts/edit?usp=sharing parent_primary_url: https://docs.google.com/presentation/d/1ba7au3gt6deqasfzmjudzjvwhkxe_edajgu9wosf-ts/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"external fuzzing of linux kernel usb drivers with syzkaller\" by andrey konovalov](https://docs.google.com/presentation/d/1ba7au3gt6deqasfzmjudzjvwhkxe_edajgu9wosf-ts/edit?usp=sharing) [slides] [cve-2024-53104] cves: cve-2024-53104 android_impact_status: no android_impact_reason no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "cf7a72f803ab39e3",
      "item_id": "16ccedd413fb5e1a",
      "slug": "2025-finding-bugs-a-little-goes-a-long-way-tuning-configuration-selection-for-continuous-kernel-fuzzing-primar",
      "year": 2025,
      "title": "A Little Goes a Long Way: Tuning Configuration Selection for Continuous Kernel Fuzzing",
      "item_title": "A Little Goes a Long Way: Tuning Configuration Selection for Continuous Kernel Fuzzing",
      "authors": [
        "Sanan Hasanov et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://paulgazzillo.com/papers/icse25.pdf",
      "primary_url": "https://paulgazzillo.com/papers/icse25.pdf",
      "parent_primary_url": "https://paulgazzillo.com/papers/icse25.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-a-little-goes-a-long-way-tuning-configuration-selection-for-continuous-kernel-fuzzing-primar.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Little Goes a Long Way: Tuning Configuration Selection for Continuous Kernel Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: A Little Goes a Long Way: Tuning Configuration Selection for Continuous Kernel Fuzzing resource_label: primary resource_type: paper resource_url: https://paulgazzillo.com/papers/icse25.pdf parent_primary_url: https://paulgazzillo.com/papers/icse25.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"A Little Goes a Long Way: Tuning Configuration Selection for Continuous Kernel Fuzzing\" by Sanan Hasanov et al.](https://paulgazzillo.com/papers/icse25.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Pr",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://paulgazzillo.com/papers/icse25.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://paulgazzillo.com/papers/icse25.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "configuration"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "This paper discusses tuning configuration selection for continuous kernel fuzzing to improve bug discovery.",
      "summary_zh": "本文讨论了调整配置选择以提高持续内核模糊测试中的漏洞发现。",
      "source_markdown": "[2025: \"A Little Goes a Long Way: Tuning Configuration Selection for Continuous Kernel Fuzzing\" by Sanan Hasanov et al.](https://paulgazzillo.com/papers/icse25.pdf) [paper]",
      "search_text": "a little goes a long way: tuning configuration selection for continuous kernel fuzzing a little goes a long way: tuning configuration selection for continuous kernel fuzzing sanan hasanov et al.   finding bugs  finding bugs primary paper https://paulgazzillo.com/papers/icse25.pdf fuzzing configuration  discovery this paper discusses tuning configuration selection for continuous kernel fuzzing to improve bug discovery. 本文讨论了调整配置选择以提高持续内核模糊测试中的漏洞发现。 # a little goes a long way: tuning configuration selection for continuous kernel fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: a little goes a long way: tuning configuration selection for continuous kernel fuzzing resource_label: primary resource_type: paper resource_url: https://paulgazzillo.com/papers/icse25.pdf parent_primary_url: https://paulgazzillo.com/papers/icse25.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"a little goes a long way: tuning configuration selection for continuous kernel fuzzing\" by sanan hasanov et al.](https://paulgazzillo.com/papers/icse25.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: pr no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1000acebfbe4fe91",
      "item_id": "a04d0fdb29372bfd",
      "slug": "2025-finding-bugs-a-survey-of-fuzzing-open-source-operating-systems-primary-bd4684e5",
      "year": 2025,
      "title": "A Survey of Fuzzing Open-Source Operating Systems",
      "item_title": "A Survey of Fuzzing Open-Source Operating Systems",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/2502.13163",
      "primary_url": "https://arxiv.org/pdf/2502.13163",
      "parent_primary_url": "https://arxiv.org/pdf/2502.13163",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-a-survey-of-fuzzing-open-source-operating-systems-primary-bd4684e5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Survey of Fuzzing Open-Source Operating Systems record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: A Survey of Fuzzing Open-Source Operating Systems resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2502.13163 parent_primary_url: https://arxiv.org/pdf/2502.13163 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"A Survey of Fuzzing Open-Source Operating Systems\"](https://arxiv.org/pdf/2502.13163) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [paper] primar",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/2502.13163"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/2502.13163"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "survey"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "This survey paper reviews fuzzing techniques applied to open-source operating systems, including the Linux kernel.",
      "summary_zh": "这篇综述论文回顾了应用于开源操作系统（包括Linux内核）的模糊测试技术。",
      "source_markdown": "[2025: \"A Survey of Fuzzing Open-Source Operating Systems\"](https://arxiv.org/pdf/2502.13163) [paper]",
      "search_text": "a survey of fuzzing open-source operating systems a survey of fuzzing open-source operating systems    finding bugs  finding bugs primary paper https://arxiv.org/pdf/2502.13163 fuzzing survey  discovery this survey paper reviews fuzzing techniques applied to open-source operating systems, including the linux kernel. 这篇综述论文回顾了应用于开源操作系统（包括linux内核）的模糊测试技术。 # a survey of fuzzing open-source operating systems record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: a survey of fuzzing open-source operating systems resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2502.13163 parent_primary_url: https://arxiv.org/pdf/2502.13163 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"a survey of fuzzing open-source operating systems\"](https://arxiv.org/pdf/2502.13163) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [paper] primar no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ec4647b0833816cb",
      "item_id": "e477ac43dd1e5b4a",
      "slug": "2025-finding-bugs-sok-unraveling-the-veil-of-os-kernel-fuzzing-primary-f77e1a6f",
      "year": 2025,
      "title": "SoK: Unraveling the Veil of OS Kernel Fuzzing",
      "item_title": "SoK: Unraveling the Veil of OS Kernel Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/2501.16165",
      "primary_url": "https://arxiv.org/pdf/2501.16165",
      "parent_primary_url": "https://arxiv.org/pdf/2501.16165",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-sok-unraveling-the-veil-of-os-kernel-fuzzing-primary-f77e1a6f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SoK: Unraveling the Veil of OS Kernel Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SoK: Unraveling the Veil of OS Kernel Fuzzing resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2501.16165 parent_primary_url: https://arxiv.org/pdf/2501.16165 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"SoK: Unraveling the Veil of OS Kernel Fuzzing\"](https://arxiv.org/pdf/2501.16165) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [paper] primary: https://a",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/2501.16165"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/2501.16165"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "overview"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "This paper provides a systematic overview of OS kernel fuzzing techniques and their effectiveness.",
      "summary_zh": "本文系统概述了操作系统内核模糊测试技术及其有效性。",
      "source_markdown": "[2025: \"SoK: Unraveling the Veil of OS Kernel Fuzzing\"](https://arxiv.org/pdf/2501.16165) [paper]",
      "search_text": "sok: unraveling the veil of os kernel fuzzing sok: unraveling the veil of os kernel fuzzing    finding bugs  finding bugs primary paper https://arxiv.org/pdf/2501.16165 fuzzing overview  discovery this paper provides a systematic overview of os kernel fuzzing techniques and their effectiveness. 本文系统概述了操作系统内核模糊测试技术及其有效性。 # sok: unraveling the veil of os kernel fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: sok: unraveling the veil of os kernel fuzzing resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2501.16165 parent_primary_url: https://arxiv.org/pdf/2501.16165 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"sok: unraveling the veil of os kernel fuzzing\"](https://arxiv.org/pdf/2501.16165) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [paper] primary: https://a no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "70cfec2f1d6c4ee6",
      "item_id": "79e64cbcadcd274a",
      "slug": "2025-finding-bugs-syzparam-incorporating-runtime-parameters-into-kernel-driver-fuzzing-primary-917c4b8a",
      "year": 2025,
      "title": "SyzParam: Incorporating Runtime Parameters into Kernel Driver Fuzzing",
      "item_title": "SyzParam: Incorporating Runtime Parameters into Kernel Driver Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/2501.10002",
      "primary_url": "https://arxiv.org/pdf/2501.10002",
      "parent_primary_url": "https://arxiv.org/pdf/2501.10002",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-syzparam-incorporating-runtime-parameters-into-kernel-driver-fuzzing-primary-917c4b8a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SyzParam: Incorporating Runtime Parameters into Kernel Driver Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SyzParam: Incorporating Runtime Parameters into Kernel Driver Fuzzing resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2501.10002 parent_primary_url: https://arxiv.org/pdf/2501.10002 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"SyzParam: Incorporating Runtime Parameters into Kernel Driver Fuzzing\"](https://arxiv.org/pdf/2501.10002) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/2501.10002"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/2501.10002"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "runtime parameters"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "This paper introduces SyzParam, a method for incorporating runtime parameters into kernel driver fuzzing.",
      "summary_zh": "本文介绍了SyzParam，一种将运行时参数纳入内核驱动程序模糊测试的方法。",
      "source_markdown": "[2025: \"SyzParam: Incorporating Runtime Parameters into Kernel Driver Fuzzing\"](https://arxiv.org/pdf/2501.10002) [paper]",
      "search_text": "syzparam: incorporating runtime parameters into kernel driver fuzzing syzparam: incorporating runtime parameters into kernel driver fuzzing    finding bugs  finding bugs primary paper https://arxiv.org/pdf/2501.10002 fuzzing runtime parameters  discovery this paper introduces syzparam, a method for incorporating runtime parameters into kernel driver fuzzing. 本文介绍了syzparam，一种将运行时参数纳入内核驱动程序模糊测试的方法。 # syzparam: incorporating runtime parameters into kernel driver fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzparam: incorporating runtime parameters into kernel driver fuzzing resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2501.10002 parent_primary_url: https://arxiv.org/pdf/2501.10002 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"syzparam: incorporating runtime parameters into kernel driver fuzzing\"](https://arxiv.org/pdf/2501.10002) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "377433a30831d341",
      "item_id": "06a273720623b056",
      "slug": "2025-finding-bugs-ksmbd-vulnerability-research-primary-c907c94c",
      "year": 2025,
      "title": "ksmbd vulnerability research",
      "item_title": "ksmbd vulnerability research",
      "authors": [
        "Norbert Szetei"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.doyensec.com/2025/01/07/ksmbd-1.html",
      "primary_url": "https://blog.doyensec.com/2025/01/07/ksmbd-1.html",
      "parent_primary_url": "https://blog.doyensec.com/2025/01/07/ksmbd-1.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-ksmbd-vulnerability-research-primary-c907c94c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ksmbd vulnerability research record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: ksmbd vulnerability research resource_label: primary resource_type: article resource_url: https://blog.doyensec.com/2025/01/07/ksmbd-1.html parent_primary_url: https://blog.doyensec.com/2025/01/07/ksmbd-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"ksmbd vulnerability research\" by Norbert Szetei](https://blog.doyensec.com/2025/01/07/ksmbd-1.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [art",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.doyensec.com/2025/01/07/ksmbd-1.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.doyensec.com/2025/01/07/ksmbd-1.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "ksmbd"
      ],
      "affected_area": "SMB",
      "exploit_stage": "discovery",
      "summary_en": "This article discusses research on vulnerabilities in ksmbd, a Linux kernel SMB server implementation.",
      "summary_zh": "本文讨论了对ksmbd（Linux内核SMB服务器实现）中的漏洞研究。",
      "source_markdown": "[2025: \"ksmbd vulnerability research\" by Norbert Szetei](https://blog.doyensec.com/2025/01/07/ksmbd-1.html) [article]",
      "search_text": "ksmbd vulnerability research ksmbd vulnerability research norbert szetei   finding bugs  finding bugs primary article https://blog.doyensec.com/2025/01/07/ksmbd-1.html vulnerability ksmbd smb discovery this article discusses research on vulnerabilities in ksmbd, a linux kernel smb server implementation. 本文讨论了对ksmbd（linux内核smb服务器实现）中的漏洞研究。 # ksmbd vulnerability research record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: ksmbd vulnerability research resource_label: primary resource_type: article resource_url: https://blog.doyensec.com/2025/01/07/ksmbd-1.html parent_primary_url: https://blog.doyensec.com/2025/01/07/ksmbd-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"ksmbd vulnerability research\" by norbert szetei](https://blog.doyensec.com/2025/01/07/ksmbd-1.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [art no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c2bd87b0444d1775",
      "item_id": "dcc0ccf4a211b767",
      "slug": "2025-finding-bugs-ksmbd-fuzzing-improvements-and-vulnerability-discovery-2-3-primary-2598135f",
      "year": 2025,
      "title": "ksmbd - Fuzzing Improvements and Vulnerability Discovery (2/3)",
      "item_title": "ksmbd - Fuzzing Improvements and Vulnerability Discovery (2/3)",
      "authors": [
        "Norbert Szetei"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.doyensec.com/2025/09/02/ksmbd-2.html",
      "primary_url": "https://blog.doyensec.com/2025/09/02/ksmbd-2.html",
      "parent_primary_url": "https://blog.doyensec.com/2025/09/02/ksmbd-2.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-ksmbd-fuzzing-improvements-and-vulnerability-discovery-2-3-primary-2598135f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ksmbd - Fuzzing Improvements and Vulnerability Discovery (2/3) record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: ksmbd - Fuzzing Improvements and Vulnerability Discovery (2/3) resource_label: primary resource_type: article resource_url: https://blog.doyensec.com/2025/09/02/ksmbd-2.html parent_primary_url: https://blog.doyensec.com/2025/09/02/ksmbd-2.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"ksmbd - Fuzzing Improvements and Vulnerability Discovery (2/3)\" by Norbert Szetei](https://blog.doyensec.com/2025/09/02/ksmbd-2.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather th",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.doyensec.com/2025/09/02/ksmbd-2.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.doyensec.com/2025/09/02/ksmbd-2.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "ksmbd"
      ],
      "affected_area": "SMB",
      "exploit_stage": "discovery",
      "summary_en": "This article continues the discussion on fuzzing improvements and vulnerability discovery in ksmbd.",
      "summary_zh": "本文继续讨论ksmbd中的模糊测试改进和漏洞发现。",
      "source_markdown": "[2025: \"ksmbd - Fuzzing Improvements and Vulnerability Discovery (2/3)\" by Norbert Szetei](https://blog.doyensec.com/2025/09/02/ksmbd-2.html) [article]",
      "search_text": "ksmbd - fuzzing improvements and vulnerability discovery (2/3) ksmbd - fuzzing improvements and vulnerability discovery (2/3) norbert szetei   finding bugs  finding bugs primary article https://blog.doyensec.com/2025/09/02/ksmbd-2.html fuzzing ksmbd smb discovery this article continues the discussion on fuzzing improvements and vulnerability discovery in ksmbd. 本文继续讨论ksmbd中的模糊测试改进和漏洞发现。 # ksmbd - fuzzing improvements and vulnerability discovery (2/3) record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: ksmbd - fuzzing improvements and vulnerability discovery (2/3) resource_label: primary resource_type: article resource_url: https://blog.doyensec.com/2025/09/02/ksmbd-2.html parent_primary_url: https://blog.doyensec.com/2025/09/02/ksmbd-2.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"ksmbd - fuzzing improvements and vulnerability discovery (2/3)\" by norbert szetei](https://blog.doyensec.com/2025/09/02/ksmbd-2.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather th no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3ef813f829ee8775",
      "item_id": "6a21216258e675b2",
      "slug": "2025-finding-bugs-uncovering-new-classes-of-kernel-vulnerabilities-primary-367d9230",
      "year": 2025,
      "title": "Uncovering New Classes of Kernel Vulnerabilities",
      "item_title": "Uncovering New Classes of Kernel Vulnerabilities",
      "authors": [
        "Jakob Koschel"
      ],
      "cves": [],
      "tags": [
        "thesis"
      ],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://research.vu.nl/ws/portalfiles/portal/380101013/thesis%20-%20674c5b8426eb2.pdf",
      "primary_url": "https://research.vu.nl/ws/portalfiles/portal/380101013/thesis%20-%20674c5b8426eb2.pdf",
      "parent_primary_url": "https://research.vu.nl/ws/portalfiles/portal/380101013/thesis%20-%20674c5b8426eb2.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2025-finding-bugs-uncovering-new-classes-of-kernel-vulnerabilities-primary-367d9230.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Uncovering New Classes of Kernel Vulnerabilities record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Uncovering New Classes of Kernel Vulnerabilities resource_label: primary resource_type: paper resource_url: https://research.vu.nl/ws/portalfiles/portal/380101013/thesis%20-%20674c5b8426eb2.pdf parent_primary_url: https://research.vu.nl/ws/portalfiles/portal/380101013/thesis%20-%20674c5b8426eb2.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"Uncovering New Classes of Kernel Vulnerabilities\" by Jakob Koschel](https://research.vu.nl/ws/portalfiles/portal/380101013/thesis%20-%20674c5b8426eb2.pdf) [thesis] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_r",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://research.vu.nl/ws/portalfiles/portal/380101013/thesis%20-%20674c5b8426eb2.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://research.vu.nl/ws/portalfiles/portal/380101013/thesis%20-%20674c5b8426eb2.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "research"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "This thesis uncovers new classes of kernel vulnerabilities through innovative research methods.",
      "summary_zh": "该论文通过创新研究方法揭示了新的内核漏洞类别。",
      "source_markdown": "[2025: \"Uncovering New Classes of Kernel Vulnerabilities\" by Jakob Koschel](https://research.vu.nl/ws/portalfiles/portal/380101013/thesis%20-%20674c5b8426eb2.pdf) [thesis]",
      "search_text": "uncovering new classes of kernel vulnerabilities uncovering new classes of kernel vulnerabilities jakob koschel  thesis finding bugs  finding bugs primary paper https://research.vu.nl/ws/portalfiles/portal/380101013/thesis%20-%20674c5b8426eb2.pdf vulnerability research  discovery this thesis uncovers new classes of kernel vulnerabilities through innovative research methods. 该论文通过创新研究方法揭示了新的内核漏洞类别。 # uncovering new classes of kernel vulnerabilities record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: uncovering new classes of kernel vulnerabilities resource_label: primary resource_type: paper resource_url: https://research.vu.nl/ws/portalfiles/portal/380101013/thesis%20-%20674c5b8426eb2.pdf parent_primary_url: https://research.vu.nl/ws/portalfiles/portal/380101013/thesis%20-%20674c5b8426eb2.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2025: \"uncovering new classes of kernel vulnerabilities\" by jakob koschel](https://research.vu.nl/ws/portalfiles/portal/380101013/thesis%20-%20674c5b8426eb2.pdf) [thesis] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_r no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "08d11559f00e42fd",
      "item_id": "99a385f557e81e69",
      "slug": "2024-finding-bugs-countdown-refcount-guided-fuzzing-for-exposing-temporal-memory-errors-in-linux-kernel-primar",
      "year": 2024,
      "title": "CountDown: Refcount-guided Fuzzing for Exposing Temporal Memory Errors in Linux Kernel",
      "item_title": "CountDown: Refcount-guided Fuzzing for Exposing Temporal Memory Errors in Linux Kernel",
      "authors": [
        "Shuangpeng Bai et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://huhong789.github.io/papers/bai:countdown.pdf",
      "primary_url": "https://huhong789.github.io/papers/bai:countdown.pdf",
      "parent_primary_url": "https://huhong789.github.io/papers/bai:countdown.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-countdown-refcount-guided-fuzzing-for-exposing-temporal-memory-errors-in-linux-kernel-primar.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CountDown: Refcount-guided Fuzzing for Exposing Temporal Memory Errors in Linux Kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: CountDown: Refcount-guided Fuzzing for Exposing Temporal Memory Errors in Linux Kernel resource_label: primary resource_type: paper resource_url: https://huhong789.github.io/papers/bai:countdown.pdf parent_primary_url: https://huhong789.github.io/papers/bai:countdown.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"CountDown: Refcount-guided Fuzzing for Exposing Temporal Memory Errors in Linux Kernel\" by Shuangpeng Bai et al.](https://huhong789.github.io/papers/bai:countdown.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_s",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://huhong789.github.io/papers/bai:countdown.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://huhong789.github.io/papers/bai:countdown.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://huhong789.github.io/papers/bai:countdown.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "memory errors"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "This paper presents CountDown, a refcount-guided fuzzing technique for exposing temporal memory errors in the Linux kernel.",
      "summary_zh": "本文介绍了CountDown，一种基于引用计数的模糊测试技术，用于揭示Linux内核中的时间性内存错误。",
      "source_markdown": "[2024: \"CountDown: Refcount-guided Fuzzing for Exposing Temporal Memory Errors in Linux Kernel\" by Shuangpeng Bai et al.](https://huhong789.github.io/papers/bai:countdown.pdf) [paper]",
      "search_text": "countdown: refcount-guided fuzzing for exposing temporal memory errors in linux kernel countdown: refcount-guided fuzzing for exposing temporal memory errors in linux kernel shuangpeng bai et al.   finding bugs  finding bugs primary paper https://huhong789.github.io/papers/bai:countdown.pdf fuzzing memory errors  discovery this paper presents countdown, a refcount-guided fuzzing technique for exposing temporal memory errors in the linux kernel. 本文介绍了countdown，一种基于引用计数的模糊测试技术，用于揭示linux内核中的时间性内存错误。 # countdown: refcount-guided fuzzing for exposing temporal memory errors in linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: countdown: refcount-guided fuzzing for exposing temporal memory errors in linux kernel resource_label: primary resource_type: paper resource_url: https://huhong789.github.io/papers/bai:countdown.pdf parent_primary_url: https://huhong789.github.io/papers/bai:countdown.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"countdown: refcount-guided fuzzing for exposing temporal memory errors in linux kernel\" by shuangpeng bai et al.](https://huhong789.github.io/papers/bai:countdown.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_s no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3bb08cc274f6bfcf",
      "item_id": "9db79e95d228babb",
      "slug": "2024-finding-bugs-hunting-bugs-in-linux-kernel-with-kasan-how-to-use-it-what-s-the-benefit-primary-48f5a567",
      "year": 2024,
      "title": "Hunting Bugs in Linux Kernel With KASAN: How to Use it & What's the Benefit?",
      "item_title": "Hunting Bugs in Linux Kernel With KASAN: How to Use it & What's the Benefit?",
      "authors": [
        "Slava Moskvin"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://slavamoskvin.com/hunting-bugs-in-linux-kernel-with-kasan-how-to-use-it-whats-the-benefit/",
      "primary_url": "https://slavamoskvin.com/hunting-bugs-in-linux-kernel-with-kasan-how-to-use-it-whats-the-benefit/",
      "parent_primary_url": "https://slavamoskvin.com/hunting-bugs-in-linux-kernel-with-kasan-how-to-use-it-whats-the-benefit/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-hunting-bugs-in-linux-kernel-with-kasan-how-to-use-it-what-s-the-benefit-primary-48f5a567.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Hunting Bugs in Linux Kernel With KASAN: How to Use it & What's the Benefit? record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Hunting Bugs in Linux Kernel With KASAN: How to Use it & What's the Benefit? resource_label: primary resource_type: article resource_url: https://slavamoskvin.com/hunting-bugs-in-linux-kernel-with-kasan-how-to-use-it-whats-the-benefit/ parent_primary_url: https://slavamoskvin.com/hunting-bugs-in-linux-kernel-with-kasan-how-to-use-it-whats-the-benefit/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"Hunting Bugs in Linux Kernel With KASAN: How to Use it & What's the Benefit?\" by Slava Moskvin](https://slavamoskvin.com/hunting-bugs-in-linux-kernel-with-kasan-how-to-use-it-whats-the-benefit/) [article] cves: none android_impact_status: no android",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://slavamoskvin.com/hunting-bugs-in-linux-kernel-with-kasan-how-to-use-it-whats-the-benefit/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://slavamoskvin.com/hunting-bugs-in-linux-kernel-with-kasan-how-to-use-it-whats-the-benefit/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KASAN",
        "bug hunting"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "This article explains how to use KASAN for hunting bugs in the Linux kernel and its benefits.",
      "summary_zh": "本文解释了如何使用KASAN在Linux内核中寻找漏洞及其好处。",
      "source_markdown": "[2024: \"Hunting Bugs in Linux Kernel With KASAN: How to Use it & What's the Benefit?\" by Slava Moskvin](https://slavamoskvin.com/hunting-bugs-in-linux-kernel-with-kasan-how-to-use-it-whats-the-benefit/) [article]",
      "search_text": "hunting bugs in linux kernel with kasan: how to use it & what's the benefit? hunting bugs in linux kernel with kasan: how to use it & what's the benefit? slava moskvin   finding bugs  finding bugs primary article https://slavamoskvin.com/hunting-bugs-in-linux-kernel-with-kasan-how-to-use-it-whats-the-benefit/ kasan bug hunting  discovery this article explains how to use kasan for hunting bugs in the linux kernel and its benefits. 本文解释了如何使用kasan在linux内核中寻找漏洞及其好处。 # hunting bugs in linux kernel with kasan: how to use it & what's the benefit? record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: hunting bugs in linux kernel with kasan: how to use it & what's the benefit? resource_label: primary resource_type: article resource_url: https://slavamoskvin.com/hunting-bugs-in-linux-kernel-with-kasan-how-to-use-it-whats-the-benefit/ parent_primary_url: https://slavamoskvin.com/hunting-bugs-in-linux-kernel-with-kasan-how-to-use-it-whats-the-benefit/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"hunting bugs in linux kernel with kasan: how to use it & what's the benefit?\" by slava moskvin](https://slavamoskvin.com/hunting-bugs-in-linux-kernel-with-kasan-how-to-use-it-whats-the-benefit/) [article] cves: none android_impact_status: no android no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "441a8f25307f4792",
      "item_id": "660f9c321034bade",
      "slug": "2024-finding-bugs-finding-bugs-in-kernel-primary-a36f8855",
      "year": 2024,
      "title": "Finding Bugs in Kernel",
      "item_title": "Finding Bugs in Kernel",
      "authors": [
        "Slava Moskvin"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/",
      "primary_url": "https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/",
      "parent_primary_url": "https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-finding-bugs-in-kernel-primary-a36f8855.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Finding Bugs in Kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Finding Bugs in Kernel resource_label: primary resource_type: article resource_url: https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/ parent_primary_url: https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"Finding Bugs in Kernel\" by Slava Moskvin](https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/) [article] [[part 2](https://slavamoskvin.com/finding-bugs-in-kernel.-part-2-fuzzing-the-actual-kernel/)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource map",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://slavamoskvin.com/finding-bugs-in-kernel.-part-2-fuzzing-the-actual-kernel/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://slavamoskvin.com/finding-bugs-in-kernel.-part-2-fuzzing-the-actual-kernel/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bug hunting",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "This article provides insights into finding bugs in the Linux kernel through various techniques.",
      "summary_zh": "本文提供了通过各种技术在Linux内核中寻找漏洞的见解。",
      "source_markdown": "[2024: \"Finding Bugs in Kernel\" by Slava Moskvin](https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/) [article] [[part 2](https://slavamoskvin.com/finding-bugs-in-kernel.-part-2-fuzzing-the-actual-kernel/)]",
      "search_text": "finding bugs in kernel finding bugs in kernel slava moskvin   finding bugs  finding bugs primary article https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/ bug hunting kernel  discovery this article provides insights into finding bugs in the linux kernel through various techniques. 本文提供了通过各种技术在linux内核中寻找漏洞的见解。 # finding bugs in kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: finding bugs in kernel resource_label: primary resource_type: article resource_url: https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/ parent_primary_url: https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"finding bugs in kernel\" by slava moskvin](https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/) [article] [[part 2](https://slavamoskvin.com/finding-bugs-in-kernel.-part-2-fuzzing-the-actual-kernel/)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource map no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f1ef41ea9e0c51d6",
      "item_id": "660f9c321034bade",
      "slug": "2024-finding-bugs-finding-bugs-in-kernel-part-2-48a3b229",
      "year": 2024,
      "title": "Finding Bugs in Kernel · part 2",
      "item_title": "Finding Bugs in Kernel",
      "authors": [
        "Slava Moskvin"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "part 2",
      "resource_type": "article",
      "resource_url": "https://slavamoskvin.com/finding-bugs-in-kernel.-part-2-fuzzing-the-actual-kernel/",
      "primary_url": "https://slavamoskvin.com/finding-bugs-in-kernel.-part-2-fuzzing-the-actual-kernel/",
      "parent_primary_url": "https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-finding-bugs-in-kernel-part-2-48a3b229.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Finding Bugs in Kernel · part 2 record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Finding Bugs in Kernel resource_label: part 2 resource_type: article resource_url: https://slavamoskvin.com/finding-bugs-in-kernel.-part-2-fuzzing-the-actual-kernel/ parent_primary_url: https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"Finding Bugs in Kernel\" by Slava Moskvin](https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/) [article] [[part 2](https://slavamoskvin.com/finding-bugs-in-kernel.-part-2-fuzzing-the-actual-kernel/)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to relea",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://slavamoskvin.com/finding-bugs-in-kernel.-part-2-fuzzing-the-actual-kernel/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://slavamoskvin.com/finding-bugs-in-kernel.-part-2-fuzzing-the-actual-kernel/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bug hunting",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "This article is a continuation of the previous work on finding bugs in the Linux kernel.",
      "summary_zh": "本文是关于在Linux内核中寻找漏洞的前期工作的延续。",
      "source_markdown": "[2024: \"Finding Bugs in Kernel\" by Slava Moskvin](https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/) [article] [[part 2](https://slavamoskvin.com/finding-bugs-in-kernel.-part-2-fuzzing-the-actual-kernel/)]",
      "search_text": "finding bugs in kernel · part 2 finding bugs in kernel slava moskvin   finding bugs  finding bugs part 2 article https://slavamoskvin.com/finding-bugs-in-kernel.-part-2-fuzzing-the-actual-kernel/ bug hunting kernel  discovery this article is a continuation of the previous work on finding bugs in the linux kernel. 本文是关于在linux内核中寻找漏洞的前期工作的延续。 # finding bugs in kernel · part 2 record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: finding bugs in kernel resource_label: part 2 resource_type: article resource_url: https://slavamoskvin.com/finding-bugs-in-kernel.-part-2-fuzzing-the-actual-kernel/ parent_primary_url: https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"finding bugs in kernel\" by slava moskvin](https://slavamoskvin.com/finding-bugs-in-kernel.-part-1-crashing-a-vulnerable-driver-with-syzkaller/) [article] [[part 2](https://slavamoskvin.com/finding-bugs-in-kernel.-part-2-fuzzing-the-actual-kernel/)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to relea no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f0bb1078aa86b61b",
      "item_id": "9316cd4a15225492",
      "slug": "2024-finding-bugs-ozz-identifying-kernel-out-of-order-concurrency-bugs-with-in-vivo-memory-access-reordering-p",
      "year": 2024,
      "title": "OZZ: Identifying Kernel Out-of-Order Concurrency Bugs with In-Vivo Memory Access Reordering",
      "item_title": "OZZ: Identifying Kernel Out-of-Order Concurrency Bugs with In-Vivo Memory Access Reordering",
      "authors": [
        "Dae R. Jeong et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://dl.acm.org/doi/pdf/10.1145/3694715.3695944",
      "primary_url": "https://dl.acm.org/doi/pdf/10.1145/3694715.3695944",
      "parent_primary_url": "https://dl.acm.org/doi/pdf/10.1145/3694715.3695944",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-ozz-identifying-kernel-out-of-order-concurrency-bugs-with-in-vivo-memory-access-reordering-p.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# OZZ: Identifying Kernel Out-of-Order Concurrency Bugs with In-Vivo Memory Access Reordering record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: OZZ: Identifying Kernel Out-of-Order Concurrency Bugs with In-Vivo Memory Access Reordering resource_label: primary resource_type: paper resource_url: https://dl.acm.org/doi/pdf/10.1145/3694715.3695944 parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3694715.3695944 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"OZZ: Identifying Kernel Out-of-Order Concurrency Bugs with In-Vivo Memory Access Reordering\" by Dae R. Jeong et al.](https://dl.acm.org/doi/pdf/10.1145/3694715.3695944) [paper] cves: none android_impact_status: unknown android_impact_reason: mentions an Android OEM/device family; Android-related resource, but prod",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://dl.acm.org/doi/pdf/10.1145/3694715.3695944"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://dl.acm.org/doi/pdf/10.1145/3694715.3695944"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions an Android OEM/device family; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "concurrency",
        "kernel bugs"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "This paper introduces OZZ, a method for identifying kernel out-of-order concurrency bugs using memory access reordering.",
      "summary_zh": "本文介绍了OZZ，一种通过内存访问重排序识别内核无序并发错误的方法。",
      "source_markdown": "[2024: \"OZZ: Identifying Kernel Out-of-Order Concurrency Bugs with In-Vivo Memory Access Reordering\" by Dae R. Jeong et al.](https://dl.acm.org/doi/pdf/10.1145/3694715.3695944) [paper]",
      "search_text": "ozz: identifying kernel out-of-order concurrency bugs with in-vivo memory access reordering ozz: identifying kernel out-of-order concurrency bugs with in-vivo memory access reordering dae r. jeong et al.   finding bugs  finding bugs primary paper https://dl.acm.org/doi/pdf/10.1145/3694715.3695944 concurrency kernel bugs  discovery this paper introduces ozz, a method for identifying kernel out-of-order concurrency bugs using memory access reordering. 本文介绍了ozz，一种通过内存访问重排序识别内核无序并发错误的方法。 # ozz: identifying kernel out-of-order concurrency bugs with in-vivo memory access reordering record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: ozz: identifying kernel out-of-order concurrency bugs with in-vivo memory access reordering resource_label: primary resource_type: paper resource_url: https://dl.acm.org/doi/pdf/10.1145/3694715.3695944 parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3694715.3695944 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"ozz: identifying kernel out-of-order concurrency bugs with in-vivo memory access reordering\" by dae r. jeong et al.](https://dl.acm.org/doi/pdf/10.1145/3694715.3695944) [paper] cves: none android_impact_status: unknown android_impact_reason: mentions an android oem/device family; android-related resource, but prod unknown mentions an android oem/device family; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "f8c941299870de05",
      "item_id": "cacfa6640b3e8bf0",
      "slug": "2024-finding-bugs-fuzzing-the-ebpf-subsystem-primary-bd0be8e8",
      "year": 2024,
      "title": "Fuzzing the EBPF Subsystem",
      "item_title": "Fuzzing the EBPF Subsystem",
      "authors": [
        "Zac Ecob"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=bww1HkBiYpA",
      "primary_url": "https://www.youtube.com/watch?v=bww1HkBiYpA",
      "parent_primary_url": "https://www.youtube.com/watch?v=bww1HkBiYpA",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-fuzzing-the-ebpf-subsystem-primary-bd0be8e8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fuzzing the EBPF Subsystem record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Fuzzing the EBPF Subsystem resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=bww1HkBiYpA parent_primary_url: https://www.youtube.com/watch?v=bww1HkBiYpA source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"Fuzzing the EBPF Subsystem\" by Zac Ecob](https://www.youtube.com/watch?v=bww1HkBiYpA) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [video] primary: https://www.youtube.c",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=bww1HkBiYpA"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=bww1HkBiYpA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "EBPF"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "This video discusses fuzzing techniques applied to the EBPF subsystem in the Linux kernel.",
      "summary_zh": "该视频讨论了应用于Linux内核EBPF子系统的模糊测试技术。",
      "source_markdown": "[2024: \"Fuzzing the EBPF Subsystem\" by Zac Ecob](https://www.youtube.com/watch?v=bww1HkBiYpA) [video]",
      "search_text": "fuzzing the ebpf subsystem fuzzing the ebpf subsystem zac ecob   finding bugs  finding bugs primary video https://www.youtube.com/watch?v=bww1hkbiypa fuzzing ebpf  discovery this video discusses fuzzing techniques applied to the ebpf subsystem in the linux kernel. 该视频讨论了应用于linux内核ebpf子系统的模糊测试技术。 # fuzzing the ebpf subsystem record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: fuzzing the ebpf subsystem resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=bww1hkbiypa parent_primary_url: https://www.youtube.com/watch?v=bww1hkbiypa source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"fuzzing the ebpf subsystem\" by zac ecob](https://www.youtube.com/watch?v=bww1hkbiypa) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [video] primary: https://www.youtube.c no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "49533d46ef823ba2",
      "item_id": "317317f08e9b1bb4",
      "slug": "2024-finding-bugs-finding-bugs-in-kernel-part-1-crashing-a-vulnerable-driver-with-syzkaller-primary-93ad7dee",
      "year": 2024,
      "title": "Finding Bugs in Kernel. Part 1: Crashing a Vulnerable Driver with Syzkaller",
      "item_title": "Finding Bugs in Kernel. Part 1: Crashing a Vulnerable Driver with Syzkaller",
      "authors": [
        "Vyacheslav Moskvin"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.linkedin.com/pulse/finding-bugs-kernel-part-1-crashing-vulnerable-driver-moskvin-4vwje/",
      "primary_url": "https://www.linkedin.com/pulse/finding-bugs-kernel-part-1-crashing-vulnerable-driver-moskvin-4vwje/",
      "parent_primary_url": "https://www.linkedin.com/pulse/finding-bugs-kernel-part-1-crashing-vulnerable-driver-moskvin-4vwje/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-finding-bugs-in-kernel-part-1-crashing-a-vulnerable-driver-with-syzkaller-primary-93ad7dee.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Finding Bugs in Kernel. Part 1: Crashing a Vulnerable Driver with Syzkaller record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Finding Bugs in Kernel. Part 1: Crashing a Vulnerable Driver with Syzkaller resource_label: primary resource_type: article resource_url: https://www.linkedin.com/pulse/finding-bugs-kernel-part-1-crashing-vulnerable-driver-moskvin-4vwje/ parent_primary_url: https://www.linkedin.com/pulse/finding-bugs-kernel-part-1-crashing-vulnerable-driver-moskvin-4vwje/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"Finding Bugs in Kernel. Part 1: Crashing a Vulnerable Driver with Syzkaller\" by Vyacheslav Moskvin](https://www.linkedin.com/pulse/finding-bugs-kernel-part-1-crashing-vulnerable-driver-moskvin-4vwje/) [article] cves: none android_impact_status: no",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.linkedin.com/pulse/finding-bugs-kernel-part-1-crashing-vulnerable-driver-moskvin-4vwje/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.linkedin.com/pulse/finding-bugs-kernel-part-1-crashing-vulnerable-driver-moskvin-4vwje/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "syzkaller",
        "driver"
      ],
      "affected_area": "driver",
      "exploit_stage": "fuzzing",
      "summary_en": "This article discusses using Syzkaller to crash a vulnerable Linux kernel driver.",
      "summary_zh": "本文讨论了如何使用Syzkaller崩溃一个易受攻击的Linux内核驱动。",
      "source_markdown": "[2024: \"Finding Bugs in Kernel. Part 1: Crashing a Vulnerable Driver with Syzkaller\" by Vyacheslav Moskvin](https://www.linkedin.com/pulse/finding-bugs-kernel-part-1-crashing-vulnerable-driver-moskvin-4vwje/) [article]",
      "search_text": "finding bugs in kernel. part 1: crashing a vulnerable driver with syzkaller finding bugs in kernel. part 1: crashing a vulnerable driver with syzkaller vyacheslav moskvin   finding bugs  finding bugs primary article https://www.linkedin.com/pulse/finding-bugs-kernel-part-1-crashing-vulnerable-driver-moskvin-4vwje/ fuzzing syzkaller driver driver fuzzing this article discusses using syzkaller to crash a vulnerable linux kernel driver. 本文讨论了如何使用syzkaller崩溃一个易受攻击的linux内核驱动。 # finding bugs in kernel. part 1: crashing a vulnerable driver with syzkaller record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: finding bugs in kernel. part 1: crashing a vulnerable driver with syzkaller resource_label: primary resource_type: article resource_url: https://www.linkedin.com/pulse/finding-bugs-kernel-part-1-crashing-vulnerable-driver-moskvin-4vwje/ parent_primary_url: https://www.linkedin.com/pulse/finding-bugs-kernel-part-1-crashing-vulnerable-driver-moskvin-4vwje/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"finding bugs in kernel. part 1: crashing a vulnerable driver with syzkaller\" by vyacheslav moskvin](https://www.linkedin.com/pulse/finding-bugs-kernel-part-1-crashing-vulnerable-driver-moskvin-4vwje/) [article] cves: none android_impact_status: no no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "deb185ce98361971",
      "item_id": "c567f5d85f19ac42",
      "slug": "2024-finding-bugs-lessons-from-the-buzz-primary-f9e58271",
      "year": 2024,
      "title": "Lessons from the buzz",
      "item_title": "Lessons from the buzz",
      "authors": [
        "Juan Jose Lopez Jaimez"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://lpc.events/event/18/contributions/1946/attachments/1473/3119/Lessons%20from%20the%20buzz%20-%20LPC.pdf",
      "primary_url": "https://lpc.events/event/18/contributions/1946/attachments/1473/3119/Lessons%20from%20the%20buzz%20-%20LPC.pdf",
      "parent_primary_url": "https://lpc.events/event/18/contributions/1946/attachments/1473/3119/Lessons%20from%20the%20buzz%20-%20LPC.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-lessons-from-the-buzz-primary-f9e58271.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Lessons from the buzz record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Lessons from the buzz resource_label: primary resource_type: slides resource_url: https://lpc.events/event/18/contributions/1946/attachments/1473/3119/Lessons%20from%20the%20buzz%20-%20LPC.pdf parent_primary_url: https://lpc.events/event/18/contributions/1946/attachments/1473/3119/Lessons%20from%20the%20buzz%20-%20LPC.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"Lessons from the buzz\" by Juan Jose Lopez Jaimez](https://lpc.events/event/18/contributions/1946/attachments/1473/3119/Lessons%20from%20the%20buzz%20-%20LPC.pdf) [slides] [[video](https://www.youtube.com/watch?v=nPYvwrbFxjQ)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to r",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/18/contributions/1946/attachments/1473/3119/Lessons%20from%20the%20buzz%20-%20LPC.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=nPYvwrbFxjQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/18/contributions/1946/attachments/1473/3119/Lessons%20from%20the%20buzz%20-%20LPC.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=nPYvwrbFxjQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bug_hunting",
        "lessons"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "These slides present insights and lessons learned from kernel bug hunting.",
      "summary_zh": "这些幻灯片展示了内核漏洞狩猎的见解和经验教训。",
      "source_markdown": "[2024: \"Lessons from the buzz\" by Juan Jose Lopez Jaimez](https://lpc.events/event/18/contributions/1946/attachments/1473/3119/Lessons%20from%20the%20buzz%20-%20LPC.pdf) [slides] [[video](https://www.youtube.com/watch?v=nPYvwrbFxjQ)]",
      "search_text": "lessons from the buzz lessons from the buzz juan jose lopez jaimez   finding bugs  finding bugs primary slides https://lpc.events/event/18/contributions/1946/attachments/1473/3119/lessons%20from%20the%20buzz%20-%20lpc.pdf bug_hunting lessons  defensive these slides present insights and lessons learned from kernel bug hunting. 这些幻灯片展示了内核漏洞狩猎的见解和经验教训。 # lessons from the buzz record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: lessons from the buzz resource_label: primary resource_type: slides resource_url: https://lpc.events/event/18/contributions/1946/attachments/1473/3119/lessons%20from%20the%20buzz%20-%20lpc.pdf parent_primary_url: https://lpc.events/event/18/contributions/1946/attachments/1473/3119/lessons%20from%20the%20buzz%20-%20lpc.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"lessons from the buzz\" by juan jose lopez jaimez](https://lpc.events/event/18/contributions/1946/attachments/1473/3119/lessons%20from%20the%20buzz%20-%20lpc.pdf) [slides] [[video](https://www.youtube.com/watch?v=npyvwrbfxjq)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to r no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1abedc543b489bfd",
      "item_id": "c567f5d85f19ac42",
      "slug": "2024-finding-bugs-lessons-from-the-buzz-video-864c9b00",
      "year": 2024,
      "title": "Lessons from the buzz · video",
      "item_title": "Lessons from the buzz",
      "authors": [
        "Juan Jose Lopez Jaimez"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=nPYvwrbFxjQ",
      "primary_url": "https://www.youtube.com/watch?v=nPYvwrbFxjQ",
      "parent_primary_url": "https://lpc.events/event/18/contributions/1946/attachments/1473/3119/Lessons%20from%20the%20buzz%20-%20LPC.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-lessons-from-the-buzz-video-864c9b00.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Lessons from the buzz · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Lessons from the buzz resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=nPYvwrbFxjQ parent_primary_url: https://lpc.events/event/18/contributions/1946/attachments/1473/3119/Lessons%20from%20the%20buzz%20-%20LPC.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"Lessons from the buzz\" by Juan Jose Lopez Jaimez](https://lpc.events/event/18/contributions/1946/attachments/1473/3119/Lessons%20from%20the%20buzz%20-%20LPC.pdf) [slides] [[video](https://www.youtube.com/watch?v=nPYvwrbFxjQ)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reas",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/18/contributions/1946/attachments/1473/3119/Lessons%20from%20the%20buzz%20-%20LPC.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=nPYvwrbFxjQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/18/contributions/1946/attachments/1473/3119/Lessons%20from%20the%20buzz%20-%20LPC.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=nPYvwrbFxjQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bug_hunting",
        "lessons"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This video shares insights and lessons learned from kernel bug hunting.",
      "summary_zh": "该视频分享了内核漏洞狩猎的见解和经验教训。",
      "source_markdown": "[2024: \"Lessons from the buzz\" by Juan Jose Lopez Jaimez](https://lpc.events/event/18/contributions/1946/attachments/1473/3119/Lessons%20from%20the%20buzz%20-%20LPC.pdf) [slides] [[video](https://www.youtube.com/watch?v=nPYvwrbFxjQ)]",
      "search_text": "lessons from the buzz · video lessons from the buzz juan jose lopez jaimez   finding bugs  finding bugs video video https://www.youtube.com/watch?v=npyvwrbfxjq bug_hunting lessons  defensive this video shares insights and lessons learned from kernel bug hunting. 该视频分享了内核漏洞狩猎的见解和经验教训。 # lessons from the buzz · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: lessons from the buzz resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=npyvwrbfxjq parent_primary_url: https://lpc.events/event/18/contributions/1946/attachments/1473/3119/lessons%20from%20the%20buzz%20-%20lpc.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"lessons from the buzz\" by juan jose lopez jaimez](https://lpc.events/event/18/contributions/1946/attachments/1473/3119/lessons%20from%20the%20buzz%20-%20lpc.pdf) [slides] [[video](https://www.youtube.com/watch?v=npyvwrbfxjq)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reas no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "078d3bc89d183c94",
      "item_id": "c7fac38748306ab3",
      "slug": "2024-finding-bugs-the-state-of-ebpf-fuzzing-primary-0e006606",
      "year": 2024,
      "title": "The State of eBPF Fuzzing",
      "item_title": "The State of eBPF Fuzzing",
      "authors": [
        "Paul Chaignon"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Fuzzing%20eBPF.pdf",
      "primary_url": "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Fuzzing%20eBPF.pdf",
      "parent_primary_url": "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Fuzzing%20eBPF.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-the-state-of-ebpf-fuzzing-primary-0e006606.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The State of eBPF Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: The State of eBPF Fuzzing resource_label: primary resource_type: slides resource_url: https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Fuzzing%20eBPF.pdf parent_primary_url: https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Fuzzing%20eBPF.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"The State of eBPF Fuzzing\" by Paul Chaignon](https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Fuzzing%20eBPF.pdf) [slides] [[video](https://www.youtube.com/watch?v=Xtjpsm-cOos)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Fuzzing%20eBPF.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Xtjpsm-cOos"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Fuzzing%20eBPF.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Xtjpsm-cOos"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Fuzzing%20eBPF.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "eBPF"
      ],
      "affected_area": "",
      "exploit_stage": "fuzzing",
      "summary_en": "These slides discuss the current state of fuzzing for eBPF in the Linux kernel.",
      "summary_zh": "这些幻灯片讨论了Linux内核中eBPF模糊测试的现状。",
      "source_markdown": "[2024: \"The State of eBPF Fuzzing\" by Paul Chaignon](https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Fuzzing%20eBPF.pdf) [slides] [[video](https://www.youtube.com/watch?v=Xtjpsm-cOos)]",
      "search_text": "the state of ebpf fuzzing the state of ebpf fuzzing paul chaignon   finding bugs  finding bugs primary slides https://pchaigno.github.io/assets/linux%20plumbers%202024%20fuzzing%20ebpf.pdf fuzzing ebpf  fuzzing these slides discuss the current state of fuzzing for ebpf in the linux kernel. 这些幻灯片讨论了linux内核中ebpf模糊测试的现状。 # the state of ebpf fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: the state of ebpf fuzzing resource_label: primary resource_type: slides resource_url: https://pchaigno.github.io/assets/linux%20plumbers%202024%20fuzzing%20ebpf.pdf parent_primary_url: https://pchaigno.github.io/assets/linux%20plumbers%202024%20fuzzing%20ebpf.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"the state of ebpf fuzzing\" by paul chaignon](https://pchaigno.github.io/assets/linux%20plumbers%202024%20fuzzing%20ebpf.pdf) [slides] [[video](https://www.youtube.com/watch?v=xtjpsm-coos)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "f8d9a7e02cbb9488",
      "item_id": "c7fac38748306ab3",
      "slug": "2024-finding-bugs-the-state-of-ebpf-fuzzing-video-846e5705",
      "year": 2024,
      "title": "The State of eBPF Fuzzing · video",
      "item_title": "The State of eBPF Fuzzing",
      "authors": [
        "Paul Chaignon"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=Xtjpsm-cOos",
      "primary_url": "https://www.youtube.com/watch?v=Xtjpsm-cOos",
      "parent_primary_url": "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Fuzzing%20eBPF.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-the-state-of-ebpf-fuzzing-video-846e5705.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The State of eBPF Fuzzing · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: The State of eBPF Fuzzing resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=Xtjpsm-cOos parent_primary_url: https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Fuzzing%20eBPF.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"The State of eBPF Fuzzing\" by Paul Chaignon](https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Fuzzing%20eBPF.pdf) [slides] [[video](https://www.youtube.com/watch?v=Xtjpsm-cOos)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Fuzzing%20eBPF.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Xtjpsm-cOos"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Fuzzing%20eBPF.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Xtjpsm-cOos"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Fuzzing%20eBPF.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "eBPF"
      ],
      "affected_area": "",
      "exploit_stage": "fuzzing",
      "summary_en": "This video presents the current state of fuzzing for eBPF in the Linux kernel.",
      "summary_zh": "该视频展示了Linux内核中eBPF模糊测试的现状。",
      "source_markdown": "[2024: \"The State of eBPF Fuzzing\" by Paul Chaignon](https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Fuzzing%20eBPF.pdf) [slides] [[video](https://www.youtube.com/watch?v=Xtjpsm-cOos)]",
      "search_text": "the state of ebpf fuzzing · video the state of ebpf fuzzing paul chaignon   finding bugs  finding bugs video video https://www.youtube.com/watch?v=xtjpsm-coos fuzzing ebpf  fuzzing this video presents the current state of fuzzing for ebpf in the linux kernel. 该视频展示了linux内核中ebpf模糊测试的现状。 # the state of ebpf fuzzing · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: the state of ebpf fuzzing resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=xtjpsm-coos parent_primary_url: https://pchaigno.github.io/assets/linux%20plumbers%202024%20fuzzing%20ebpf.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"the state of ebpf fuzzing\" by paul chaignon](https://pchaigno.github.io/assets/linux%20plumbers%202024%20fuzzing%20ebpf.pdf) [slides] [[video](https://www.youtube.com/watch?v=xtjpsm-coos)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "f7506e6e281433b6",
      "item_id": "1ee9ebf87268f988",
      "slug": "2024-finding-bugs-cardshark-understanding-and-stablizing-linux-kernel-concurrency-bugs-against-the-odds-primar",
      "year": 2024,
      "title": "CARDSHARK: Understanding and Stablizing Linux Kernel Concurrency Bugs Against the Odds",
      "item_title": "CARDSHARK: Understanding and Stablizing Linux Kernel Concurrency Bugs Against the Odds",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity24-han-tianshuo.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity24-han-tianshuo.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-han-tianshuo.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-cardshark-understanding-and-stablizing-linux-kernel-concurrency-bugs-against-the-odds-primar.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CARDSHARK: Understanding and Stablizing Linux Kernel Concurrency Bugs Against the Odds record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: CARDSHARK: Understanding and Stablizing Linux Kernel Concurrency Bugs Against the Odds resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity24-han-tianshuo.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-han-tianshuo.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"CARDSHARK: Understanding and Stablizing Linux Kernel Concurrency Bugs Against the Odds\"](https://www.usenix.org/system/files/usenixsecurity24-han-tianshuo.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released And",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-han-tianshuo.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-han-tianshuo.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "concurrency",
        "stabilization"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This paper explores methods to understand and stabilize concurrency bugs in the Linux kernel.",
      "summary_zh": "本文探讨了理解和稳定Linux内核中的并发错误的方法。",
      "source_markdown": "[2024: \"CARDSHARK: Understanding and Stablizing Linux Kernel Concurrency Bugs Against the Odds\"](https://www.usenix.org/system/files/usenixsecurity24-han-tianshuo.pdf) [paper]",
      "search_text": "cardshark: understanding and stablizing linux kernel concurrency bugs against the odds cardshark: understanding and stablizing linux kernel concurrency bugs against the odds    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/usenixsecurity24-han-tianshuo.pdf concurrency stabilization  defensive this paper explores methods to understand and stabilize concurrency bugs in the linux kernel. 本文探讨了理解和稳定linux内核中的并发错误的方法。 # cardshark: understanding and stablizing linux kernel concurrency bugs against the odds record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: cardshark: understanding and stablizing linux kernel concurrency bugs against the odds resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity24-han-tianshuo.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-han-tianshuo.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"cardshark: understanding and stablizing linux kernel concurrency bugs against the odds\"](https://www.usenix.org/system/files/usenixsecurity24-han-tianshuo.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released and no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7923a5acea134311",
      "item_id": "baf3302332ea0372",
      "slug": "2024-finding-bugs-lr-miner-static-race-detection-in-os-kernels-primary-1010c68e",
      "year": 2024,
      "title": "LR-Miner: Static Race Detection in OS Kernels",
      "item_title": "LR-Miner: Static Race Detection in OS Kernels",
      "authors": [
        "Mining Locking Rules\" by Tuo Li et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity24-li-tuo.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity24-li-tuo.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-li-tuo.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-lr-miner-static-race-detection-in-os-kernels-primary-1010c68e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# LR-Miner: Static Race Detection in OS Kernels record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: LR-Miner: Static Race Detection in OS Kernels resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity24-li-tuo.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-li-tuo.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"LR-Miner: Static Race Detection in OS Kernels by Mining Locking Rules\" by Tuo Li et. al](https://www.usenix.org/system/files/usenixsecurity24-li-tuo.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-li-tuo.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-li-tuo.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "static_analysis",
        "race_detection"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This paper presents a static analysis tool for detecting race conditions in OS kernels.",
      "summary_zh": "本文介绍了一种用于检测操作系统内核中竞争条件的静态分析工具。",
      "source_markdown": "[2024: \"LR-Miner: Static Race Detection in OS Kernels by Mining Locking Rules\" by Tuo Li et. al](https://www.usenix.org/system/files/usenixsecurity24-li-tuo.pdf) [paper]",
      "search_text": "lr-miner: static race detection in os kernels lr-miner: static race detection in os kernels mining locking rules\" by tuo li et. al   finding bugs  finding bugs primary paper https://www.usenix.org/system/files/usenixsecurity24-li-tuo.pdf static_analysis race_detection  defensive this paper presents a static analysis tool for detecting race conditions in os kernels. 本文介绍了一种用于检测操作系统内核中竞争条件的静态分析工具。 # lr-miner: static race detection in os kernels record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: lr-miner: static race detection in os kernels resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity24-li-tuo.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-li-tuo.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"lr-miner: static race detection in os kernels by mining locking rules\" by tuo li et. al](https://www.usenix.org/system/files/usenixsecurity24-li-tuo.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "cb8e50838c33ed21",
      "item_id": "6677ee40d641659d",
      "slug": "2024-finding-bugs-detecting-kernel-memory-bugs-through-inconsistent-memory-management-intention-inferences-pri",
      "year": 2024,
      "title": "Detecting Kernel Memory Bugs through Inconsistent Memory Management Intention Inferences",
      "item_title": "Detecting Kernel Memory Bugs through Inconsistent Memory Management Intention Inferences",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-detecting-kernel-memory-bugs-through-inconsistent-memory-management-intention-inferences-pri.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Detecting Kernel Memory Bugs through Inconsistent Memory Management Intention Inferences record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Detecting Kernel Memory Bugs through Inconsistent Memory Management Intention Inferences resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"Detecting Kernel Memory Bugs through Inconsistent Memory Management Intention Inferences\"](https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-liu-dinghao-dete",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-liu-dinghao-detecting.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-liu-dinghao-detecting.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory_management",
        "bug_detection"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This paper discusses a method for detecting kernel memory bugs through inference of memory management intentions.",
      "summary_zh": "本文讨论了一种通过推断内存管理意图来检测内核内存错误的方法。",
      "source_markdown": "[2024: \"Detecting Kernel Memory Bugs through Inconsistent Memory Management Intention Inferences\"](https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-liu-dinghao-detecting.pdf)]",
      "search_text": "detecting kernel memory bugs through inconsistent memory management intention inferences detecting kernel memory bugs through inconsistent memory management intention inferences    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf memory_management bug_detection  defensive this paper discusses a method for detecting kernel memory bugs through inference of memory management intentions. 本文讨论了一种通过推断内存管理意图来检测内核内存错误的方法。 # detecting kernel memory bugs through inconsistent memory management intention inferences record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: detecting kernel memory bugs through inconsistent memory management intention inferences resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"detecting kernel memory bugs through inconsistent memory management intention inferences\"](https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-liu-dinghao-dete no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b1335fb1f8c8d75e",
      "item_id": "6677ee40d641659d",
      "slug": "2024-finding-bugs-detecting-kernel-memory-bugs-through-inconsistent-memory-management-intention-inferences-sli",
      "year": 2024,
      "title": "Detecting Kernel Memory Bugs through Inconsistent Memory Management Intention Inferences · slides",
      "item_title": "Detecting Kernel Memory Bugs through Inconsistent Memory Management Intention Inferences",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity24_slides-liu-dinghao-detecting.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity24_slides-liu-dinghao-detecting.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-detecting-kernel-memory-bugs-through-inconsistent-memory-management-intention-inferences-sli.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Detecting Kernel Memory Bugs through Inconsistent Memory Management Intention Inferences · slides record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Detecting Kernel Memory Bugs through Inconsistent Memory Management Intention Inferences resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/usenixsecurity24_slides-liu-dinghao-detecting.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"Detecting Kernel Memory Bugs through Inconsistent Memory Management Intention Inferences\"](https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-liu-dinghao-detecting.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-liu-dinghao-detecting.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory_management",
        "bug_detection"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "These slides present a method for detecting kernel memory bugs through inference of memory management intentions.",
      "summary_zh": "这些幻灯片展示了一种通过推断内存管理意图来检测内核内存错误的方法。",
      "source_markdown": "[2024: \"Detecting Kernel Memory Bugs through Inconsistent Memory Management Intention Inferences\"](https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-liu-dinghao-detecting.pdf)]",
      "search_text": "detecting kernel memory bugs through inconsistent memory management intention inferences · slides detecting kernel memory bugs through inconsistent memory management intention inferences    finding bugs  finding bugs slides slides https://www.usenix.org/system/files/usenixsecurity24_slides-liu-dinghao-detecting.pdf memory_management bug_detection  defensive these slides present a method for detecting kernel memory bugs through inference of memory management intentions. 这些幻灯片展示了一种通过推断内存管理意图来检测内核内存错误的方法。 # detecting kernel memory bugs through inconsistent memory management intention inferences · slides record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: detecting kernel memory bugs through inconsistent memory management intention inferences resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/usenixsecurity24_slides-liu-dinghao-detecting.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"detecting kernel memory bugs through inconsistent memory management intention inferences\"](https://www.usenix.org/system/files/usenixsecurity24-liu-dinghao-detecting.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides- no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2be2f9b8e65b2e9a",
      "item_id": "257c8aa59609e9c4",
      "slug": "2024-finding-bugs-mock-optimizing-kernel-fuzzing-mutation-with-context-aware-dependency-primary-cc939951",
      "year": 2024,
      "title": "MOCK: Optimizing Kernel Fuzzing Mutation with Context-aware Dependency",
      "item_title": "MOCK: Optimizing Kernel Fuzzing Mutation with Context-aware Dependency",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.ndss-symposium.org/wp-content/uploads/2024-131-paper.pdf",
      "primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2024-131-paper.pdf",
      "parent_primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2024-131-paper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-mock-optimizing-kernel-fuzzing-mutation-with-context-aware-dependency-primary-cc939951.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# MOCK: Optimizing Kernel Fuzzing Mutation with Context-aware Dependency record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: MOCK: Optimizing Kernel Fuzzing Mutation with Context-aware Dependency resource_label: primary resource_type: paper resource_url: https://www.ndss-symposium.org/wp-content/uploads/2024-131-paper.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2024-131-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"MOCK: Optimizing Kernel Fuzzing Mutation with Context-aware Dependency\"](https://www.ndss-symposium.org/wp-content/uploads/2024-131-paper.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reas",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/2024-131-paper.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/2024-131-paper.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "mutation"
      ],
      "affected_area": "",
      "exploit_stage": "fuzzing",
      "summary_en": "This paper introduces a method for optimizing kernel fuzzing mutation using context-aware dependencies.",
      "summary_zh": "本文介绍了一种利用上下文感知依赖优化内核模糊测试变异的方法。",
      "source_markdown": "[2024: \"MOCK: Optimizing Kernel Fuzzing Mutation with Context-aware Dependency\"](https://www.ndss-symposium.org/wp-content/uploads/2024-131-paper.pdf) [paper]",
      "search_text": "mock: optimizing kernel fuzzing mutation with context-aware dependency mock: optimizing kernel fuzzing mutation with context-aware dependency    finding bugs  finding bugs primary paper https://www.ndss-symposium.org/wp-content/uploads/2024-131-paper.pdf fuzzing mutation  fuzzing this paper introduces a method for optimizing kernel fuzzing mutation using context-aware dependencies. 本文介绍了一种利用上下文感知依赖优化内核模糊测试变异的方法。 # mock: optimizing kernel fuzzing mutation with context-aware dependency record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: mock: optimizing kernel fuzzing mutation with context-aware dependency resource_label: primary resource_type: paper resource_url: https://www.ndss-symposium.org/wp-content/uploads/2024-131-paper.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2024-131-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"mock: optimizing kernel fuzzing mutation with context-aware dependency\"](https://www.ndss-symposium.org/wp-content/uploads/2024-131-paper.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reas no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4b539c2b0fa37ea1",
      "item_id": "6ef0b6628a037fc4",
      "slug": "2024-finding-bugs-syzgen-dependency-inference-for-augmenting-kernel-driver-fuzzing-primary-f79346a6",
      "year": 2024,
      "title": "SyzGen++: Dependency Inference for Augmenting Kernel Driver Fuzzing",
      "item_title": "SyzGen++: Dependency Inference for Augmenting Kernel Driver Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.cs.ucr.edu/~zhiyunq/pub/oakland24_syzgenplusplus.pdf",
      "primary_url": "https://www.cs.ucr.edu/~zhiyunq/pub/oakland24_syzgenplusplus.pdf",
      "parent_primary_url": "https://www.cs.ucr.edu/~zhiyunq/pub/oakland24_syzgenplusplus.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-syzgen-dependency-inference-for-augmenting-kernel-driver-fuzzing-primary-f79346a6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SyzGen++: Dependency Inference for Augmenting Kernel Driver Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SyzGen++: Dependency Inference for Augmenting Kernel Driver Fuzzing resource_label: primary resource_type: paper resource_url: https://www.cs.ucr.edu/~zhiyunq/pub/oakland24_syzgenplusplus.pdf parent_primary_url: https://www.cs.ucr.edu/~zhiyunq/pub/oakland24_syzgenplusplus.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"SyzGen++: Dependency Inference for Augmenting Kernel Driver Fuzzing\"](https://www.cs.ucr.edu/~zhiyunq/pub/oakland24_syzgenplusplus.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS de",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.cs.ucr.edu/~zhiyunq/pub/oakland24_syzgenplusplus.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.cs.ucr.edu/~zhiyunq/pub/oakland24_syzgenplusplus.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "dependency_inference"
      ],
      "affected_area": "",
      "exploit_stage": "fuzzing",
      "summary_en": "This paper presents a method for augmenting kernel driver fuzzing through dependency inference.",
      "summary_zh": "本文提出了一种通过依赖推断增强内核驱动模糊测试的方法。",
      "source_markdown": "[2024: \"SyzGen++: Dependency Inference for Augmenting Kernel Driver Fuzzing\"](https://www.cs.ucr.edu/~zhiyunq/pub/oakland24_syzgenplusplus.pdf) [paper]",
      "search_text": "syzgen++: dependency inference for augmenting kernel driver fuzzing syzgen++: dependency inference for augmenting kernel driver fuzzing    finding bugs  finding bugs primary paper https://www.cs.ucr.edu/~zhiyunq/pub/oakland24_syzgenplusplus.pdf fuzzing dependency_inference  fuzzing this paper presents a method for augmenting kernel driver fuzzing through dependency inference. 本文提出了一种通过依赖推断增强内核驱动模糊测试的方法。 # syzgen++: dependency inference for augmenting kernel driver fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzgen++: dependency inference for augmenting kernel driver fuzzing resource_label: primary resource_type: paper resource_url: https://www.cs.ucr.edu/~zhiyunq/pub/oakland24_syzgenplusplus.pdf parent_primary_url: https://www.cs.ucr.edu/~zhiyunq/pub/oakland24_syzgenplusplus.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"syzgen++: dependency inference for augmenting kernel driver fuzzing\"](https://www.cs.ucr.edu/~zhiyunq/pub/oakland24_syzgenplusplus.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios de no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d39e0e42df46f3af",
      "item_id": "b669af588979e2da",
      "slug": "2024-finding-bugs-statefuzz-system-call-based-state-aware-linux-driver-fuzzing-primary-d4d6ccbe",
      "year": 2024,
      "title": "StateFuzz: System Call-Based State-Aware Linux Driver Fuzzing",
      "item_title": "StateFuzz: System Call-Based State-Aware Linux Driver Fuzzing",
      "authors": [
        "Bodong Zhao et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://github.com/vul337/StateFuzz/blob/main/statefuzz.pdf",
      "primary_url": "https://github.com/vul337/StateFuzz/blob/main/statefuzz.pdf",
      "parent_primary_url": "https://github.com/vul337/StateFuzz/blob/main/statefuzz.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-statefuzz-system-call-based-state-aware-linux-driver-fuzzing-primary-d4d6ccbe.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# StateFuzz: System Call-Based State-Aware Linux Driver Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: StateFuzz: System Call-Based State-Aware Linux Driver Fuzzing resource_label: primary resource_type: paper resource_url: https://github.com/vul337/StateFuzz/blob/main/statefuzz.pdf parent_primary_url: https://github.com/vul337/StateFuzz/blob/main/statefuzz.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"StateFuzz: System Call-Based State-Aware Linux Driver Fuzzing\" by Bodong Zhao et. al](https://github.com/vul337/StateFuzz/blob/main/statefuzz.pdf) [paper] [[code](https://github.com/vul337/StateFuzz)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no i",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://github.com/vul337/StateFuzz/blob/main/statefuzz.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/vul337/StateFuzz"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://github.com/vul337/StateFuzz/blob/main/statefuzz.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/vul337/StateFuzz"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/vul337/StateFuzz/blob/main/statefuzz.pdf",
        "https://github.com/vul337/StateFuzz"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "system_calls"
      ],
      "affected_area": "",
      "exploit_stage": "fuzzing",
      "summary_en": "This paper discusses a system call-based approach for state-aware fuzzing of Linux drivers.",
      "summary_zh": "本文讨论了一种基于系统调用的Linux驱动状态感知模糊测试方法。",
      "source_markdown": "[2024: \"StateFuzz: System Call-Based State-Aware Linux Driver Fuzzing\" by Bodong Zhao et. al](https://github.com/vul337/StateFuzz/blob/main/statefuzz.pdf) [paper] [[code](https://github.com/vul337/StateFuzz)]",
      "search_text": "statefuzz: system call-based state-aware linux driver fuzzing statefuzz: system call-based state-aware linux driver fuzzing bodong zhao et. al   finding bugs  finding bugs primary paper https://github.com/vul337/statefuzz/blob/main/statefuzz.pdf fuzzing system_calls  fuzzing this paper discusses a system call-based approach for state-aware fuzzing of linux drivers. 本文讨论了一种基于系统调用的linux驱动状态感知模糊测试方法。 # statefuzz: system call-based state-aware linux driver fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: statefuzz: system call-based state-aware linux driver fuzzing resource_label: primary resource_type: paper resource_url: https://github.com/vul337/statefuzz/blob/main/statefuzz.pdf parent_primary_url: https://github.com/vul337/statefuzz/blob/main/statefuzz.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"statefuzz: system call-based state-aware linux driver fuzzing\" by bodong zhao et. al](https://github.com/vul337/statefuzz/blob/main/statefuzz.pdf) [paper] [[code](https://github.com/vul337/statefuzz)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no i no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "9e85888a59b32160",
      "item_id": "b669af588979e2da",
      "slug": "2024-finding-bugs-statefuzz-system-call-based-state-aware-linux-driver-fuzzing-code-31869f8b",
      "year": 2024,
      "title": "StateFuzz: System Call-Based State-Aware Linux Driver Fuzzing · code",
      "item_title": "StateFuzz: System Call-Based State-Aware Linux Driver Fuzzing",
      "authors": [
        "Bodong Zhao et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/vul337/StateFuzz",
      "primary_url": "https://github.com/vul337/StateFuzz",
      "parent_primary_url": "https://github.com/vul337/StateFuzz/blob/main/statefuzz.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-statefuzz-system-call-based-state-aware-linux-driver-fuzzing-code-31869f8b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# StateFuzz: System Call-Based State-Aware Linux Driver Fuzzing · code record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: StateFuzz: System Call-Based State-Aware Linux Driver Fuzzing resource_label: code resource_type: code resource_url: https://github.com/vul337/StateFuzz parent_primary_url: https://github.com/vul337/StateFuzz/blob/main/statefuzz.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"StateFuzz: System Call-Based State-Aware Linux Driver Fuzzing\" by Bodong Zhao et. al](https://github.com/vul337/StateFuzz/blob/main/statefuzz.pdf) [paper] [[code](https://github.com/vul337/StateFuzz)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Pro",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://github.com/vul337/StateFuzz/blob/main/statefuzz.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/vul337/StateFuzz"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://github.com/vul337/StateFuzz/blob/main/statefuzz.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/vul337/StateFuzz"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/vul337/StateFuzz/blob/main/statefuzz.pdf",
        "https://github.com/vul337/StateFuzz"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "eBPF"
      ],
      "affected_area": "",
      "exploit_stage": "fuzzing",
      "summary_en": "This paper presents a runtime fuzzer for eBPF in the Linux kernel.",
      "summary_zh": "本文介绍了Linux内核中eBPF的运行时模糊测试工具。",
      "source_markdown": "[2024: \"StateFuzz: System Call-Based State-Aware Linux Driver Fuzzing\" by Bodong Zhao et. al](https://github.com/vul337/StateFuzz/blob/main/statefuzz.pdf) [paper] [[code](https://github.com/vul337/StateFuzz)]",
      "search_text": "statefuzz: system call-based state-aware linux driver fuzzing · code statefuzz: system call-based state-aware linux driver fuzzing bodong zhao et. al   finding bugs  finding bugs code code https://github.com/vul337/statefuzz fuzzing ebpf  fuzzing this paper presents a runtime fuzzer for ebpf in the linux kernel. 本文介绍了linux内核中ebpf的运行时模糊测试工具。 # statefuzz: system call-based state-aware linux driver fuzzing · code record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: statefuzz: system call-based state-aware linux driver fuzzing resource_label: code resource_type: code resource_url: https://github.com/vul337/statefuzz parent_primary_url: https://github.com/vul337/statefuzz/blob/main/statefuzz.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"statefuzz: system call-based state-aware linux driver fuzzing\" by bodong zhao et. al](https://github.com/vul337/statefuzz/blob/main/statefuzz.pdf) [paper] [[code](https://github.com/vul337/statefuzz)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: pro no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6cb9cc2c2c8f29e9",
      "item_id": "60695a65c8a8f804",
      "slug": "2024-finding-bugs-brf-ebpf-runtime-fuzzer-primary-7f3e7220",
      "year": 2024,
      "title": "BRF: eBPF Runtime Fuzzer",
      "item_title": "BRF: eBPF Runtime Fuzzer",
      "authors": [
        "Hsin-Wei Hung",
        "Ardalan Amiri Sani"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/2305.08782",
      "primary_url": "https://arxiv.org/pdf/2305.08782",
      "parent_primary_url": "https://arxiv.org/pdf/2305.08782",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-brf-ebpf-runtime-fuzzer-primary-7f3e7220.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BRF: eBPF Runtime Fuzzer record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: BRF: eBPF Runtime Fuzzer resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2305.08782 parent_primary_url: https://arxiv.org/pdf/2305.08782 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"BRF: eBPF Runtime Fuzzer\" by Hsin-Wei Hung and Ardalan Amiri Sani](https://arxiv.org/pdf/2305.08782) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [paper] primary: https://arxiv.org/pdf/2305.08782",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/2305.08782"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/2305.08782"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Finding Bugs",
        "paper"
      ],
      "affected_area": "",
      "exploit_stage": "Finding Bugs",
      "summary_en": "2024 Linux kernel Finding Bugs resource \"BRF: eBPF Runtime Fuzzer\"; URL type: paper.",
      "summary_zh": "2024 年 Linux 内核Finding Bugs资料：「BRF: eBPF Runtime Fuzzer」；URL 类型：paper。",
      "source_markdown": "[2024: \"BRF: eBPF Runtime Fuzzer\" by Hsin-Wei Hung and Ardalan Amiri Sani](https://arxiv.org/pdf/2305.08782) [paper]",
      "search_text": "brf: ebpf runtime fuzzer brf: ebpf runtime fuzzer hsin-wei hung ardalan amiri sani   finding bugs  finding bugs primary paper https://arxiv.org/pdf/2305.08782 finding bugs paper  finding bugs 2024 linux kernel finding bugs resource \"brf: ebpf runtime fuzzer\"; url type: paper. 2024 年 linux 内核finding bugs资料：「brf: ebpf runtime fuzzer」；url 类型：paper。 # brf: ebpf runtime fuzzer record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: brf: ebpf runtime fuzzer resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2305.08782 parent_primary_url: https://arxiv.org/pdf/2305.08782 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"brf: ebpf runtime fuzzer\" by hsin-wei hung and ardalan amiri sani](https://arxiv.org/pdf/2305.08782) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [paper] primary: https://arxiv.org/pdf/2305.08782 no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1b4fdc37c0c9295c",
      "item_id": "8b948633f4a376a7",
      "slug": "2024-finding-bugs-so-you-wanna-find-bugs-in-the-linux-kernel-primary-43e99f78",
      "year": 2024,
      "title": "So You Wanna Find Bugs In The Linux Kernel?",
      "item_title": "So You Wanna Find Bugs In The Linux Kernel?",
      "authors": [
        "Sam Page"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://github.com/sam4k/talk-slides/blob/main/so_you_wanna_find_bugs_in_the_linux_kernel.pdf",
      "primary_url": "https://github.com/sam4k/talk-slides/blob/main/so_you_wanna_find_bugs_in_the_linux_kernel.pdf",
      "parent_primary_url": "https://github.com/sam4k/talk-slides/blob/main/so_you_wanna_find_bugs_in_the_linux_kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-so-you-wanna-find-bugs-in-the-linux-kernel-primary-43e99f78.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# So You Wanna Find Bugs In The Linux Kernel? record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: So You Wanna Find Bugs In The Linux Kernel? resource_label: primary resource_type: slides resource_url: https://github.com/sam4k/talk-slides/blob/main/so_you_wanna_find_bugs_in_the_linux_kernel.pdf parent_primary_url: https://github.com/sam4k/talk-slides/blob/main/so_you_wanna_find_bugs_in_the_linux_kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"So You Wanna Find Bugs In The Linux Kernel?\" by Sam Page](https://github.com/sam4k/talk-slides/blob/main/so_you_wanna_find_bugs_in_the_linux_kernel.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_imp",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/sam4k/talk-slides/blob/main/so_you_wanna_find_bugs_in_the_linux_kernel.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/sam4k/talk-slides/blob/main/so_you_wanna_find_bugs_in_the_linux_kernel.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/sam4k/talk-slides/blob/main/so_you_wanna_find_bugs_in_the_linux_kernel.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bug_hunting"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "These slides provide insights on finding bugs in the Linux kernel.",
      "summary_zh": "这些幻灯片提供了在Linux内核中发现漏洞的见解。",
      "source_markdown": "[2024: \"So You Wanna Find Bugs In The Linux Kernel?\" by Sam Page](https://github.com/sam4k/talk-slides/blob/main/so_you_wanna_find_bugs_in_the_linux_kernel.pdf) [slides]",
      "search_text": "so you wanna find bugs in the linux kernel? so you wanna find bugs in the linux kernel? sam page   finding bugs  finding bugs primary slides https://github.com/sam4k/talk-slides/blob/main/so_you_wanna_find_bugs_in_the_linux_kernel.pdf bug_hunting  defensive these slides provide insights on finding bugs in the linux kernel. 这些幻灯片提供了在linux内核中发现漏洞的见解。 # so you wanna find bugs in the linux kernel? record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: so you wanna find bugs in the linux kernel? resource_label: primary resource_type: slides resource_url: https://github.com/sam4k/talk-slides/blob/main/so_you_wanna_find_bugs_in_the_linux_kernel.pdf parent_primary_url: https://github.com/sam4k/talk-slides/blob/main/so_you_wanna_find_bugs_in_the_linux_kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"so you wanna find bugs in the linux kernel?\" by sam page](https://github.com/sam4k/talk-slides/blob/main/so_you_wanna_find_bugs_in_the_linux_kernel.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_imp no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3e53c2623427d6ac",
      "item_id": "8428f92d806d40b3",
      "slug": "2024-finding-bugs-a-bug-hunter-s-reflections-on-fuzzing-primary-9522a048",
      "year": 2024,
      "title": "A bug hunter's reflections on fuzzing",
      "item_title": "A bug hunter's reflections on fuzzing",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://a13xp0p0v.github.io/img/Alexander_Popov-Reflections_on_Fuzzing.pdf",
      "primary_url": "https://a13xp0p0v.github.io/img/Alexander_Popov-Reflections_on_Fuzzing.pdf",
      "parent_primary_url": "https://a13xp0p0v.github.io/img/Alexander_Popov-Reflections_on_Fuzzing.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-a-bug-hunter-s-reflections-on-fuzzing-primary-9522a048.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A bug hunter's reflections on fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: A bug hunter's reflections on fuzzing resource_label: primary resource_type: slides resource_url: https://a13xp0p0v.github.io/img/Alexander_Popov-Reflections_on_Fuzzing.pdf parent_primary_url: https://a13xp0p0v.github.io/img/Alexander_Popov-Reflections_on_Fuzzing.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"A bug hunter's reflections on fuzzing\" by Alexander Popov](https://a13xp0p0v.github.io/img/Alexander_Popov-Reflections_on_Fuzzing.pdf) [slides] [[video](https://www.youtube.com/watch?v=wTbFmdx7wG8)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: P",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://a13xp0p0v.github.io/img/Alexander_Popov-Reflections_on_Fuzzing.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=wTbFmdx7wG8"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://a13xp0p0v.github.io/img/Alexander_Popov-Reflections_on_Fuzzing.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=wTbFmdx7wG8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://a13xp0p0v.github.io/img/Alexander_Popov-Reflections_on_Fuzzing.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "reflections"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "These slides reflect on experiences and insights gained from fuzzing.",
      "summary_zh": "这些幻灯片反映了从模糊测试中获得的经验和见解。",
      "source_markdown": "[2024: \"A bug hunter's reflections on fuzzing\" by Alexander Popov](https://a13xp0p0v.github.io/img/Alexander_Popov-Reflections_on_Fuzzing.pdf) [slides] [[video](https://www.youtube.com/watch?v=wTbFmdx7wG8)]",
      "search_text": "a bug hunter's reflections on fuzzing a bug hunter's reflections on fuzzing alexander popov   finding bugs  finding bugs primary slides https://a13xp0p0v.github.io/img/alexander_popov-reflections_on_fuzzing.pdf fuzzing reflections  defensive these slides reflect on experiences and insights gained from fuzzing. 这些幻灯片反映了从模糊测试中获得的经验和见解。 # a bug hunter's reflections on fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: a bug hunter's reflections on fuzzing resource_label: primary resource_type: slides resource_url: https://a13xp0p0v.github.io/img/alexander_popov-reflections_on_fuzzing.pdf parent_primary_url: https://a13xp0p0v.github.io/img/alexander_popov-reflections_on_fuzzing.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"a bug hunter's reflections on fuzzing\" by alexander popov](https://a13xp0p0v.github.io/img/alexander_popov-reflections_on_fuzzing.pdf) [slides] [[video](https://www.youtube.com/watch?v=wtbfmdx7wg8)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: p no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "71081f808ff5a33b",
      "item_id": "8428f92d806d40b3",
      "slug": "2024-finding-bugs-a-bug-hunter-s-reflections-on-fuzzing-video-4c88d7d5",
      "year": 2024,
      "title": "A bug hunter's reflections on fuzzing · video",
      "item_title": "A bug hunter's reflections on fuzzing",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=wTbFmdx7wG8",
      "primary_url": "https://www.youtube.com/watch?v=wTbFmdx7wG8",
      "parent_primary_url": "https://a13xp0p0v.github.io/img/Alexander_Popov-Reflections_on_Fuzzing.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-a-bug-hunter-s-reflections-on-fuzzing-video-4c88d7d5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A bug hunter's reflections on fuzzing · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: A bug hunter's reflections on fuzzing resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=wTbFmdx7wG8 parent_primary_url: https://a13xp0p0v.github.io/img/Alexander_Popov-Reflections_on_Fuzzing.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"A bug hunter's reflections on fuzzing\" by Alexander Popov](https://a13xp0p0v.github.io/img/Alexander_Popov-Reflections_on_Fuzzing.pdf) [slides] [[video](https://www.youtube.com/watch?v=wTbFmdx7wG8)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://a13xp0p0v.github.io/img/Alexander_Popov-Reflections_on_Fuzzing.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=wTbFmdx7wG8"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://a13xp0p0v.github.io/img/Alexander_Popov-Reflections_on_Fuzzing.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=wTbFmdx7wG8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://a13xp0p0v.github.io/img/Alexander_Popov-Reflections_on_Fuzzing.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "reflections"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This video reflects on experiences and insights gained from fuzzing.",
      "summary_zh": "该视频反映了从模糊测试中获得的经验和见解。",
      "source_markdown": "[2024: \"A bug hunter's reflections on fuzzing\" by Alexander Popov](https://a13xp0p0v.github.io/img/Alexander_Popov-Reflections_on_Fuzzing.pdf) [slides] [[video](https://www.youtube.com/watch?v=wTbFmdx7wG8)]",
      "search_text": "a bug hunter's reflections on fuzzing · video a bug hunter's reflections on fuzzing alexander popov   finding bugs  finding bugs video video https://www.youtube.com/watch?v=wtbfmdx7wg8 fuzzing reflections  defensive this video reflects on experiences and insights gained from fuzzing. 该视频反映了从模糊测试中获得的经验和见解。 # a bug hunter's reflections on fuzzing · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: a bug hunter's reflections on fuzzing resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=wtbfmdx7wg8 parent_primary_url: https://a13xp0p0v.github.io/img/alexander_popov-reflections_on_fuzzing.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"a bug hunter's reflections on fuzzing\" by alexander popov](https://a13xp0p0v.github.io/img/alexander_popov-reflections_on_fuzzing.pdf) [slides] [[video](https://www.youtube.com/watch?v=wtbfmdx7wg8)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b2a294be1d6cfb64",
      "item_id": "aee2be0c187ee06d",
      "slug": "2024-finding-bugs-to-boldly-go-where-no-fuzzer-has-gone-before-finding-bugs-in-linux-wireless-stacks-through-v",
      "year": 2024,
      "title": "To Boldly Go Where No Fuzzer Has Gone Before: Finding Bugs in Linux’ Wireless Stacks through VirtIO Devices",
      "item_title": "To Boldly Go Where No Fuzzer Has Gone Before: Finding Bugs in Linux’ Wireless Stacks through VirtIO Devices",
      "authors": [
        "Sonke Huster et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_S&P24.pdf",
      "primary_url": "https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_S&P24.pdf",
      "parent_primary_url": "https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_S&P24.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-to-boldly-go-where-no-fuzzer-has-gone-before-finding-bugs-in-linux-wireless-stacks-through-v.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# To Boldly Go Where No Fuzzer Has Gone Before: Finding Bugs in Linux’ Wireless Stacks through VirtIO Devices record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: To Boldly Go Where No Fuzzer Has Gone Before: Finding Bugs in Linux’ Wireless Stacks through VirtIO Devices resource_label: primary resource_type: paper resource_url: https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_S&P24.pdf parent_primary_url: https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_S&P24.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"To Boldly Go Where No Fuzzer Has Gone Before: Finding Bugs in Linux’ Wireless Stacks through VirtIO Devices\" by Sonke Huster et al.](https://www.uni-goettingen.de/de/document/",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_S&P24.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/seemoo-lab/VirtFuzz"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_S&P24.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/seemoo-lab/VirtFuzz"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/seemoo-lab/VirtFuzz"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "wireless"
      ],
      "affected_area": "",
      "exploit_stage": "fuzzing",
      "summary_en": "This paper discusses finding bugs in Linux wireless stacks using VirtIO devices.",
      "summary_zh": "本文讨论了如何使用VirtIO设备在Linux无线栈中发现漏洞。",
      "source_markdown": "[2024: \"To Boldly Go Where No Fuzzer Has Gone Before: Finding Bugs in Linux’ Wireless Stacks through VirtIO Devices\" by Sonke Huster et al.](https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_S&P24.pdf) [paper] [[code](https://github.com/seemoo-lab/VirtFuzz)]",
      "search_text": "to boldly go where no fuzzer has gone before: finding bugs in linux’ wireless stacks through virtio devices to boldly go where no fuzzer has gone before: finding bugs in linux’ wireless stacks through virtio devices sonke huster et al.   finding bugs  finding bugs primary paper https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_s&p24.pdf fuzzing wireless  fuzzing this paper discusses finding bugs in linux wireless stacks using virtio devices. 本文讨论了如何使用virtio设备在linux无线栈中发现漏洞。 # to boldly go where no fuzzer has gone before: finding bugs in linux’ wireless stacks through virtio devices record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: to boldly go where no fuzzer has gone before: finding bugs in linux’ wireless stacks through virtio devices resource_label: primary resource_type: paper resource_url: https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_s&p24.pdf parent_primary_url: https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_s&p24.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"to boldly go where no fuzzer has gone before: finding bugs in linux’ wireless stacks through virtio devices\" by sonke huster et al.](https://www.uni-goettingen.de/de/document/ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "430c5ba9de368330",
      "item_id": "aee2be0c187ee06d",
      "slug": "2024-finding-bugs-to-boldly-go-where-no-fuzzer-has-gone-before-finding-bugs-in-linux-wireless-stacks-through-v-2",
      "year": 2024,
      "title": "To Boldly Go Where No Fuzzer Has Gone Before: Finding Bugs in Linux’ Wireless Stacks through VirtIO Devices · code",
      "item_title": "To Boldly Go Where No Fuzzer Has Gone Before: Finding Bugs in Linux’ Wireless Stacks through VirtIO Devices",
      "authors": [
        "Sonke Huster et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/seemoo-lab/VirtFuzz",
      "primary_url": "https://github.com/seemoo-lab/VirtFuzz",
      "parent_primary_url": "https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_S&P24.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-to-boldly-go-where-no-fuzzer-has-gone-before-finding-bugs-in-linux-wireless-stacks-through-v-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# To Boldly Go Where No Fuzzer Has Gone Before: Finding Bugs in Linux’ Wireless Stacks through VirtIO Devices · code record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: To Boldly Go Where No Fuzzer Has Gone Before: Finding Bugs in Linux’ Wireless Stacks through VirtIO Devices resource_label: code resource_type: code resource_url: https://github.com/seemoo-lab/VirtFuzz parent_primary_url: https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_S&P24.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"To Boldly Go Where No Fuzzer Has Gone Before: Finding Bugs in Linux’ Wireless Stacks through VirtIO Devices\" by Sonke Huster et al.](https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_S&P24.pdf)",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_S&P24.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/seemoo-lab/VirtFuzz"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_S&P24.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/seemoo-lab/VirtFuzz"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/seemoo-lab/VirtFuzz"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "wireless"
      ],
      "affected_area": "",
      "exploit_stage": "fuzzing",
      "summary_en": "This code repository accompanies a paper on finding bugs in Linux wireless stacks using VirtIO devices.",
      "summary_zh": "该代码库伴随一篇关于如何使用VirtIO设备在Linux无线栈中发现漏洞的论文。",
      "source_markdown": "[2024: \"To Boldly Go Where No Fuzzer Has Gone Before: Finding Bugs in Linux’ Wireless Stacks through VirtIO Devices\" by Sonke Huster et al.](https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_S&P24.pdf) [paper] [[code](https://github.com/seemoo-lab/VirtFuzz)]",
      "search_text": "to boldly go where no fuzzer has gone before: finding bugs in linux’ wireless stacks through virtio devices · code to boldly go where no fuzzer has gone before: finding bugs in linux’ wireless stacks through virtio devices sonke huster et al.   finding bugs  finding bugs code code https://github.com/seemoo-lab/virtfuzz fuzzing wireless  fuzzing this code repository accompanies a paper on finding bugs in linux wireless stacks using virtio devices. 该代码库伴随一篇关于如何使用virtio设备在linux无线栈中发现漏洞的论文。 # to boldly go where no fuzzer has gone before: finding bugs in linux’ wireless stacks through virtio devices · code record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: to boldly go where no fuzzer has gone before: finding bugs in linux’ wireless stacks through virtio devices resource_label: code resource_type: code resource_url: https://github.com/seemoo-lab/virtfuzz parent_primary_url: https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_s&p24.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"to boldly go where no fuzzer has gone before: finding bugs in linux’ wireless stacks through virtio devices\" by sonke huster et al.](https://www.uni-goettingen.de/de/document/download/6b0d1e9d8e2fb7f57cc1a2fab1b071e7.pdf/huster_s&p24.pdf) no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "8df9402c7337c6ea",
      "item_id": "1e64f577f8a1c48a",
      "slug": "2024-finding-bugs-your-nvme-had-been-syz-ed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller-primary-d8e449",
      "year": 2024,
      "title": "Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller",
      "item_title": "Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller",
      "authors": [
        "Alon Zavahi"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller",
      "primary_url": "https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller",
      "parent_primary_url": "https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-your-nvme-had-been-syz-ed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller-primary-d8e449.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller resource_label: primary resource_type: article resource_url: https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller parent_primary_url: https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller\" by Alon Zavahi](https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syze",
      "link_types": [
        "article",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://download.scrt.ch/insomnihack/ins24-slides/Syzkaller%20NVMe-oF.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Jc25CM1Ppgo"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://download.scrt.ch/insomnihack/ins24-slides/Syzkaller%20NVMe-oF.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Jc25CM1Ppgo"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "driver"
      ],
      "affected_area": "driver",
      "exploit_stage": "fuzzing",
      "summary_en": "This article discusses fuzzing the NVMe-oF/TCP driver for Linux using Syzkaller.",
      "summary_zh": "本文讨论了如何使用Syzkaller对Linux的NVMe-oF/TCP驱动进行模糊测试。",
      "source_markdown": "[2024: \"Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller\" by Alon Zavahi](https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller) [article] [[slides](https://download.scrt.ch/insomnihack/ins24-slides/Syzkaller%20NVMe-oF.pdf)] [[video](https://www.youtube.com/watch?v=Jc25CM1Ppgo)]",
      "search_text": "your nvme had been syz’ed: fuzzing nvme-of/tcp driver for linux with syzkaller your nvme had been syz’ed: fuzzing nvme-of/tcp driver for linux with syzkaller alon zavahi   finding bugs  finding bugs primary article https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller fuzzing driver driver fuzzing this article discusses fuzzing the nvme-of/tcp driver for linux using syzkaller. 本文讨论了如何使用syzkaller对linux的nvme-of/tcp驱动进行模糊测试。 # your nvme had been syz’ed: fuzzing nvme-of/tcp driver for linux with syzkaller record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: your nvme had been syz’ed: fuzzing nvme-of/tcp driver for linux with syzkaller resource_label: primary resource_type: article resource_url: https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller parent_primary_url: https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"your nvme had been syz’ed: fuzzing nvme-of/tcp driver for linux with syzkaller\" by alon zavahi](https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syze no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7c1ada6bd53b62d1",
      "item_id": "1e64f577f8a1c48a",
      "slug": "2024-finding-bugs-your-nvme-had-been-syz-ed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller-slides-bd70b01",
      "year": 2024,
      "title": "Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller · slides",
      "item_title": "Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller",
      "authors": [
        "Alon Zavahi"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://download.scrt.ch/insomnihack/ins24-slides/Syzkaller%20NVMe-oF.pdf",
      "primary_url": "https://download.scrt.ch/insomnihack/ins24-slides/Syzkaller%20NVMe-oF.pdf",
      "parent_primary_url": "https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-your-nvme-had-been-syz-ed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller-slides-bd70b01.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller · slides record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller resource_label: slides resource_type: slides resource_url: https://download.scrt.ch/insomnihack/ins24-slides/Syzkaller%20NVMe-oF.pdf parent_primary_url: https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller\" by Alon Zavahi](https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkalle",
      "link_types": [
        "article",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://download.scrt.ch/insomnihack/ins24-slides/Syzkaller%20NVMe-oF.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Jc25CM1Ppgo"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://download.scrt.ch/insomnihack/ins24-slides/Syzkaller%20NVMe-oF.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Jc25CM1Ppgo"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "NVMe",
        "driver"
      ],
      "affected_area": "driver",
      "exploit_stage": "finding bugs",
      "summary_en": "This presentation discusses fuzzing the NVMe-oF/TCP driver for Linux using Syzkaller.",
      "summary_zh": "本演示讨论了使用Syzkaller对Linux的NVMe-oF/TCP驱动进行模糊测试。",
      "source_markdown": "[2024: \"Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller\" by Alon Zavahi](https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller) [article] [[slides](https://download.scrt.ch/insomnihack/ins24-slides/Syzkaller%20NVMe-oF.pdf)] [[video](https://www.youtube.com/watch?v=Jc25CM1Ppgo)]",
      "search_text": "your nvme had been syz’ed: fuzzing nvme-of/tcp driver for linux with syzkaller · slides your nvme had been syz’ed: fuzzing nvme-of/tcp driver for linux with syzkaller alon zavahi   finding bugs  finding bugs slides slides https://download.scrt.ch/insomnihack/ins24-slides/syzkaller%20nvme-of.pdf fuzzing nvme driver driver finding bugs this presentation discusses fuzzing the nvme-of/tcp driver for linux using syzkaller. 本演示讨论了使用syzkaller对linux的nvme-of/tcp驱动进行模糊测试。 # your nvme had been syz’ed: fuzzing nvme-of/tcp driver for linux with syzkaller · slides record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: your nvme had been syz’ed: fuzzing nvme-of/tcp driver for linux with syzkaller resource_label: slides resource_type: slides resource_url: https://download.scrt.ch/insomnihack/ins24-slides/syzkaller%20nvme-of.pdf parent_primary_url: https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"your nvme had been syz’ed: fuzzing nvme-of/tcp driver for linux with syzkaller\" by alon zavahi](https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkalle no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d4571bd453b8e278",
      "item_id": "1e64f577f8a1c48a",
      "slug": "2024-finding-bugs-your-nvme-had-been-syz-ed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller-video-12ad6b74",
      "year": 2024,
      "title": "Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller · video",
      "item_title": "Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller",
      "authors": [
        "Alon Zavahi"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=Jc25CM1Ppgo",
      "primary_url": "https://www.youtube.com/watch?v=Jc25CM1Ppgo",
      "parent_primary_url": "https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-your-nvme-had-been-syz-ed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller-video-12ad6b74.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=Jc25CM1Ppgo parent_primary_url: https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller\" by Alon Zavahi](https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller) [article] [[slides](https://do",
      "link_types": [
        "article",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://download.scrt.ch/insomnihack/ins24-slides/Syzkaller%20NVMe-oF.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Jc25CM1Ppgo"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://download.scrt.ch/insomnihack/ins24-slides/Syzkaller%20NVMe-oF.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Jc25CM1Ppgo"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "NVMe",
        "driver"
      ],
      "affected_area": "driver",
      "exploit_stage": "finding bugs",
      "summary_en": "This video covers the fuzzing of the NVMe-oF/TCP driver for Linux with Syzkaller.",
      "summary_zh": "本视频介绍了使用Syzkaller对Linux的NVMe-oF/TCP驱动进行模糊测试。",
      "source_markdown": "[2024: \"Your NVMe Had Been Syz’ed: Fuzzing NVMe-oF/TCP Driver for Linux with Syzkaller\" by Alon Zavahi](https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller) [article] [[slides](https://download.scrt.ch/insomnihack/ins24-slides/Syzkaller%20NVMe-oF.pdf)] [[video](https://www.youtube.com/watch?v=Jc25CM1Ppgo)]",
      "search_text": "your nvme had been syz’ed: fuzzing nvme-of/tcp driver for linux with syzkaller · video your nvme had been syz’ed: fuzzing nvme-of/tcp driver for linux with syzkaller alon zavahi   finding bugs  finding bugs video video https://www.youtube.com/watch?v=jc25cm1ppgo fuzzing nvme driver driver finding bugs this video covers the fuzzing of the nvme-of/tcp driver for linux with syzkaller. 本视频介绍了使用syzkaller对linux的nvme-of/tcp驱动进行模糊测试。 # your nvme had been syz’ed: fuzzing nvme-of/tcp driver for linux with syzkaller · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: your nvme had been syz’ed: fuzzing nvme-of/tcp driver for linux with syzkaller resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=jc25cm1ppgo parent_primary_url: https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"your nvme had been syz’ed: fuzzing nvme-of/tcp driver for linux with syzkaller\" by alon zavahi](https://www.cyberark.com/resources/threat-research-blog/your-nvme-had-been-syzed-fuzzing-nvme-of-tcp-driver-for-linux-with-syzkaller) [article] [[slides](https://do no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "fb4aa79e7b4f3279",
      "item_id": "c1789cec3c2aeea3",
      "slug": "2024-finding-bugs-structure-aware-linux-kernel-fuzzing-with-libfuzzer-primary-381eebd7",
      "year": 2024,
      "title": "Structure-Aware linux kernel Fuzzing with libFuzzer",
      "item_title": "Structure-Aware linux kernel Fuzzing with libFuzzer",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://r00tkitsmm.github.io/fuzzing/2024/03/27/libffuzzerkernel.html",
      "primary_url": "https://r00tkitsmm.github.io/fuzzing/2024/03/27/libffuzzerkernel.html",
      "parent_primary_url": "https://r00tkitsmm.github.io/fuzzing/2024/03/27/libffuzzerkernel.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-structure-aware-linux-kernel-fuzzing-with-libfuzzer-primary-381eebd7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Structure-Aware linux kernel Fuzzing with libFuzzer record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Structure-Aware linux kernel Fuzzing with libFuzzer resource_label: primary resource_type: article resource_url: https://r00tkitsmm.github.io/fuzzing/2024/03/27/libffuzzerkernel.html parent_primary_url: https://r00tkitsmm.github.io/fuzzing/2024/03/27/libffuzzerkernel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"Structure-Aware linux kernel Fuzzing with libFuzzer\"](https://r00tkitsmm.github.io/fuzzing/2024/03/27/libffuzzerkernel.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://r00tkitsmm.github.io/fuzzing/2024/03/27/libffuzzerkernel.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://r00tkitsmm.github.io/fuzzing/2024/03/27/libffuzzerkernel.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://r00tkitsmm.github.io/fuzzing/2024/03/27/libffuzzerkernel.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "libFuzzer"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This article presents structure-aware fuzzing techniques for the Linux kernel using libFuzzer.",
      "summary_zh": "本文介绍了使用libFuzzer进行Linux内核的结构感知模糊测试技术。",
      "source_markdown": "[2024: \"Structure-Aware linux kernel Fuzzing with libFuzzer\"](https://r00tkitsmm.github.io/fuzzing/2024/03/27/libffuzzerkernel.html) [article]",
      "search_text": "structure-aware linux kernel fuzzing with libfuzzer structure-aware linux kernel fuzzing with libfuzzer    finding bugs  finding bugs primary article https://r00tkitsmm.github.io/fuzzing/2024/03/27/libffuzzerkernel.html fuzzing libfuzzer  finding bugs this article presents structure-aware fuzzing techniques for the linux kernel using libfuzzer. 本文介绍了使用libfuzzer进行linux内核的结构感知模糊测试技术。 # structure-aware linux kernel fuzzing with libfuzzer record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: structure-aware linux kernel fuzzing with libfuzzer resource_label: primary resource_type: article resource_url: https://r00tkitsmm.github.io/fuzzing/2024/03/27/libffuzzerkernel.html parent_primary_url: https://r00tkitsmm.github.io/fuzzing/2024/03/27/libffuzzerkernel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"structure-aware linux kernel fuzzing with libfuzzer\"](https://r00tkitsmm.github.io/fuzzing/2024/03/27/libffuzzerkernel.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "1a36b3d0bc83a10b",
      "item_id": "c833fc31283197bd",
      "slug": "2024-finding-bugs-enhancing-kernel-bug-discovery-with-large-language-models-primary-a815269b",
      "year": 2024,
      "title": "Enhancing Kernel Bug Discovery with Large Language Models",
      "item_title": "Enhancing Kernel Bug Discovery with Large Language Models",
      "authors": [
        "Zahra Tarkhani"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://static.sched.com/hosted_files/lssna24/ed/LSSNA-Enhancing%20Kernel%20Bug%20Discovery%20with%20Large%20Language%20Models%20%E2%80%8B.pdf",
      "primary_url": "https://static.sched.com/hosted_files/lssna24/ed/LSSNA-Enhancing%20Kernel%20Bug%20Discovery%20with%20Large%20Language%20Models%20%E2%80%8B.pdf",
      "parent_primary_url": "https://static.sched.com/hosted_files/lssna24/ed/LSSNA-Enhancing%20Kernel%20Bug%20Discovery%20with%20Large%20Language%20Models%20%E2%80%8B.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-enhancing-kernel-bug-discovery-with-large-language-models-primary-a815269b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Enhancing Kernel Bug Discovery with Large Language Models record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Enhancing Kernel Bug Discovery with Large Language Models resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/lssna24/ed/LSSNA-Enhancing%20Kernel%20Bug%20Discovery%20with%20Large%20Language%20Models%20%E2%80%8B.pdf parent_primary_url: https://static.sched.com/hosted_files/lssna24/ed/LSSNA-Enhancing%20Kernel%20Bug%20Discovery%20with%20Large%20Language%20Models%20%E2%80%8B.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"Enhancing Kernel Bug Discovery with Large Language Models\" by Zahra Tarkhani](https://static.sched.com/hosted_files/lssna24/ed/LSSNA-Enhancing%20Kernel%20Bug%20Discovery%20with%20Large%20Language%20",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lssna24/ed/LSSNA-Enhancing%20Kernel%20Bug%20Discovery%20with%20Large%20Language%20Models%20%E2%80%8B.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=ewv3kX-p7-o"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lssna24/ed/LSSNA-Enhancing%20Kernel%20Bug%20Discovery%20with%20Large%20Language%20Models%20%E2%80%8B.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=ewv3kX-p7-o"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bug discovery",
        "language models"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This presentation explores the use of large language models to enhance kernel bug discovery.",
      "summary_zh": "本演示探讨了使用大型语言模型来增强内核漏洞发现的能力。",
      "source_markdown": "[2024: \"Enhancing Kernel Bug Discovery with Large Language Models\" by Zahra Tarkhani](https://static.sched.com/hosted_files/lssna24/ed/LSSNA-Enhancing%20Kernel%20Bug%20Discovery%20with%20Large%20Language%20Models%20%E2%80%8B.pdf) [slides] [[video](https://www.youtube.com/watch?v=ewv3kX-p7-o)]",
      "search_text": "enhancing kernel bug discovery with large language models enhancing kernel bug discovery with large language models zahra tarkhani   finding bugs  finding bugs primary slides https://static.sched.com/hosted_files/lssna24/ed/lssna-enhancing%20kernel%20bug%20discovery%20with%20large%20language%20models%20%e2%80%8b.pdf bug discovery language models  finding bugs this presentation explores the use of large language models to enhance kernel bug discovery. 本演示探讨了使用大型语言模型来增强内核漏洞发现的能力。 # enhancing kernel bug discovery with large language models record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: enhancing kernel bug discovery with large language models resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/lssna24/ed/lssna-enhancing%20kernel%20bug%20discovery%20with%20large%20language%20models%20%e2%80%8b.pdf parent_primary_url: https://static.sched.com/hosted_files/lssna24/ed/lssna-enhancing%20kernel%20bug%20discovery%20with%20large%20language%20models%20%e2%80%8b.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"enhancing kernel bug discovery with large language models\" by zahra tarkhani](https://static.sched.com/hosted_files/lssna24/ed/lssna-enhancing%20kernel%20bug%20discovery%20with%20large%20language%20 no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "44eba9e1638ac958",
      "item_id": "c833fc31283197bd",
      "slug": "2024-finding-bugs-enhancing-kernel-bug-discovery-with-large-language-models-video-7ebdf02e",
      "year": 2024,
      "title": "Enhancing Kernel Bug Discovery with Large Language Models · video",
      "item_title": "Enhancing Kernel Bug Discovery with Large Language Models",
      "authors": [
        "Zahra Tarkhani"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=ewv3kX-p7-o",
      "primary_url": "https://www.youtube.com/watch?v=ewv3kX-p7-o",
      "parent_primary_url": "https://static.sched.com/hosted_files/lssna24/ed/LSSNA-Enhancing%20Kernel%20Bug%20Discovery%20with%20Large%20Language%20Models%20%E2%80%8B.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-enhancing-kernel-bug-discovery-with-large-language-models-video-7ebdf02e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Enhancing Kernel Bug Discovery with Large Language Models · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Enhancing Kernel Bug Discovery with Large Language Models resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=ewv3kX-p7-o parent_primary_url: https://static.sched.com/hosted_files/lssna24/ed/LSSNA-Enhancing%20Kernel%20Bug%20Discovery%20with%20Large%20Language%20Models%20%E2%80%8B.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"Enhancing Kernel Bug Discovery with Large Language Models\" by Zahra Tarkhani](https://static.sched.com/hosted_files/lssna24/ed/LSSNA-Enhancing%20Kernel%20Bug%20Discovery%20with%20Large%20Language%20Models%20%E2%80%8B.pdf) [slides] [[video](https://www.youtube.com/watch?v=ewv3kX-p7-o)] cves: ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lssna24/ed/LSSNA-Enhancing%20Kernel%20Bug%20Discovery%20with%20Large%20Language%20Models%20%E2%80%8B.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=ewv3kX-p7-o"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lssna24/ed/LSSNA-Enhancing%20Kernel%20Bug%20Discovery%20with%20Large%20Language%20Models%20%E2%80%8B.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=ewv3kX-p7-o"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bug discovery",
        "language models"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This video discusses enhancing kernel bug discovery using large language models.",
      "summary_zh": "本视频讨论了如何使用大型语言模型增强内核漏洞发现。",
      "source_markdown": "[2024: \"Enhancing Kernel Bug Discovery with Large Language Models\" by Zahra Tarkhani](https://static.sched.com/hosted_files/lssna24/ed/LSSNA-Enhancing%20Kernel%20Bug%20Discovery%20with%20Large%20Language%20Models%20%E2%80%8B.pdf) [slides] [[video](https://www.youtube.com/watch?v=ewv3kX-p7-o)]",
      "search_text": "enhancing kernel bug discovery with large language models · video enhancing kernel bug discovery with large language models zahra tarkhani   finding bugs  finding bugs video video https://www.youtube.com/watch?v=ewv3kx-p7-o bug discovery language models  finding bugs this video discusses enhancing kernel bug discovery using large language models. 本视频讨论了如何使用大型语言模型增强内核漏洞发现。 # enhancing kernel bug discovery with large language models · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: enhancing kernel bug discovery with large language models resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=ewv3kx-p7-o parent_primary_url: https://static.sched.com/hosted_files/lssna24/ed/lssna-enhancing%20kernel%20bug%20discovery%20with%20large%20language%20models%20%e2%80%8b.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"enhancing kernel bug discovery with large language models\" by zahra tarkhani](https://static.sched.com/hosted_files/lssna24/ed/lssna-enhancing%20kernel%20bug%20discovery%20with%20large%20language%20models%20%e2%80%8b.pdf) [slides] [[video](https://www.youtube.com/watch?v=ewv3kx-p7-o)] cves:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2f784b9fd888a5a5",
      "item_id": "61a536dbfff4a3b2",
      "slug": "2024-finding-bugs-syzrisk-a-change-pattern-based-continuous-kernel-regression-fuzzer-primary-13f2b8d0",
      "year": 2024,
      "title": "SyzRisk: A Change-Pattern-Based Continuous Kernel Regression Fuzzer",
      "item_title": "SyzRisk: A Change-Pattern-Based Continuous Kernel Regression Fuzzer",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://nebelwelt.net/files/24AsiaCCS.pdf",
      "primary_url": "https://nebelwelt.net/files/24AsiaCCS.pdf",
      "parent_primary_url": "https://nebelwelt.net/files/24AsiaCCS.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-syzrisk-a-change-pattern-based-continuous-kernel-regression-fuzzer-primary-13f2b8d0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SyzRisk: A Change-Pattern-Based Continuous Kernel Regression Fuzzer record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SyzRisk: A Change-Pattern-Based Continuous Kernel Regression Fuzzer resource_label: primary resource_type: paper resource_url: https://nebelwelt.net/files/24AsiaCCS.pdf parent_primary_url: https://nebelwelt.net/files/24AsiaCCS.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"SyzRisk: A Change-Pattern-Based Continuous Kernel Regression Fuzzer\"](https://nebelwelt.net/files/24AsiaCCS.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_p",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://nebelwelt.net/files/24AsiaCCS.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://nebelwelt.net/files/24AsiaCCS.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "regression"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This paper introduces SyzRisk, a continuous kernel regression fuzzer based on change patterns.",
      "summary_zh": "本文介绍了SyzRisk，一种基于变更模式的持续内核回归模糊测试工具。",
      "source_markdown": "[2024: \"SyzRisk: A Change-Pattern-Based Continuous Kernel Regression Fuzzer\"](https://nebelwelt.net/files/24AsiaCCS.pdf) [paper]",
      "search_text": "syzrisk: a change-pattern-based continuous kernel regression fuzzer syzrisk: a change-pattern-based continuous kernel regression fuzzer    finding bugs  finding bugs primary paper https://nebelwelt.net/files/24asiaccs.pdf fuzzing regression  finding bugs this paper introduces syzrisk, a continuous kernel regression fuzzer based on change patterns. 本文介绍了syzrisk，一种基于变更模式的持续内核回归模糊测试工具。 # syzrisk: a change-pattern-based continuous kernel regression fuzzer record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzrisk: a change-pattern-based continuous kernel regression fuzzer resource_label: primary resource_type: paper resource_url: https://nebelwelt.net/files/24asiaccs.pdf parent_primary_url: https://nebelwelt.net/files/24asiaccs.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"syzrisk: a change-pattern-based continuous kernel regression fuzzer\"](https://nebelwelt.net/files/24asiaccs.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_p no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f920114647bd18e9",
      "item_id": "23ce35fb57a7eeef",
      "slug": "2024-finding-bugs-syzbridge-bridging-the-gap-in-exploitability-assessment-of-linux-kernel-bugs-in-the-linux-ec",
      "year": 2024,
      "title": "SyzBridge: Bridging the Gap in Exploitability Assessment of Linux Kernel Bugs in the Linux Ecosystem",
      "item_title": "SyzBridge: Bridging the Gap in Exploitability Assessment of Linux Kernel Bugs in the Linux Ecosystem",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://zhyfeng.github.io/files/2024-NDSS-SyzBridge.pdf",
      "primary_url": "https://zhyfeng.github.io/files/2024-NDSS-SyzBridge.pdf",
      "parent_primary_url": "https://zhyfeng.github.io/files/2024-NDSS-SyzBridge.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-syzbridge-bridging-the-gap-in-exploitability-assessment-of-linux-kernel-bugs-in-the-linux-ec.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SyzBridge: Bridging the Gap in Exploitability Assessment of Linux Kernel Bugs in the Linux Ecosystem record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SyzBridge: Bridging the Gap in Exploitability Assessment of Linux Kernel Bugs in the Linux Ecosystem resource_label: primary resource_type: paper resource_url: https://zhyfeng.github.io/files/2024-NDSS-SyzBridge.pdf parent_primary_url: https://zhyfeng.github.io/files/2024-NDSS-SyzBridge.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"SyzBridge: Bridging the Gap in Exploitability Assessment of Linux Kernel Bugs in the Linux Ecosystem\"](https://zhyfeng.github.io/files/2024-NDSS-SyzBridge.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released And",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://zhyfeng.github.io/files/2024-NDSS-SyzBridge.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://zhyfeng.github.io/files/2024-NDSS-SyzBridge.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://zhyfeng.github.io/files/2024-NDSS-SyzBridge.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitability",
        "assessment"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "SyzBridge is presented as a tool for assessing the exploitability of Linux kernel bugs.",
      "summary_zh": "SyzBridge被提出作为评估Linux内核漏洞可利用性的工具。",
      "source_markdown": "[2024: \"SyzBridge: Bridging the Gap in Exploitability Assessment of Linux Kernel Bugs in the Linux Ecosystem\"](https://zhyfeng.github.io/files/2024-NDSS-SyzBridge.pdf) [paper]",
      "search_text": "syzbridge: bridging the gap in exploitability assessment of linux kernel bugs in the linux ecosystem syzbridge: bridging the gap in exploitability assessment of linux kernel bugs in the linux ecosystem    finding bugs  finding bugs primary paper https://zhyfeng.github.io/files/2024-ndss-syzbridge.pdf exploitability assessment  finding bugs syzbridge is presented as a tool for assessing the exploitability of linux kernel bugs. syzbridge被提出作为评估linux内核漏洞可利用性的工具。 # syzbridge: bridging the gap in exploitability assessment of linux kernel bugs in the linux ecosystem record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzbridge: bridging the gap in exploitability assessment of linux kernel bugs in the linux ecosystem resource_label: primary resource_type: paper resource_url: https://zhyfeng.github.io/files/2024-ndss-syzbridge.pdf parent_primary_url: https://zhyfeng.github.io/files/2024-ndss-syzbridge.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"syzbridge: bridging the gap in exploitability assessment of linux kernel bugs in the linux ecosystem\"](https://zhyfeng.github.io/files/2024-ndss-syzbridge.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released and no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b5b1830d58765fe0",
      "item_id": "a2885eede54cd7b6",
      "slug": "2024-finding-bugs-syzretrospector-a-large-scale-retrospective-study-of-syzbot-primary-58684877",
      "year": 2024,
      "title": "SyzRetrospector: A Large-Scale Retrospective Study of Syzbot",
      "item_title": "SyzRetrospector: A Large-Scale Retrospective Study of Syzbot",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/2401.11642.pdf",
      "primary_url": "https://arxiv.org/pdf/2401.11642.pdf",
      "parent_primary_url": "https://arxiv.org/pdf/2401.11642.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2024-finding-bugs-syzretrospector-a-large-scale-retrospective-study-of-syzbot-primary-58684877.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SyzRetrospector: A Large-Scale Retrospective Study of Syzbot record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SyzRetrospector: A Large-Scale Retrospective Study of Syzbot resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2401.11642.pdf parent_primary_url: https://arxiv.org/pdf/2401.11642.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"SyzRetrospector: A Large-Scale Retrospective Study of Syzbot\"](https://arxiv.org/pdf/2401.11642.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false co",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/2401.11642.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/2401.11642.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Syzbot",
        "bug discovery"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This paper provides a retrospective study of Syzbot and its impact on kernel bug discovery.",
      "summary_zh": "本文提供了对Syzbot及其对内核漏洞发现影响的回顾性研究。",
      "source_markdown": "[2024: \"SyzRetrospector: A Large-Scale Retrospective Study of Syzbot\"](https://arxiv.org/pdf/2401.11642.pdf) [paper]",
      "search_text": "syzretrospector: a large-scale retrospective study of syzbot syzretrospector: a large-scale retrospective study of syzbot    finding bugs  finding bugs primary paper https://arxiv.org/pdf/2401.11642.pdf syzbot bug discovery  finding bugs this paper provides a retrospective study of syzbot and its impact on kernel bug discovery. 本文提供了对syzbot及其对内核漏洞发现影响的回顾性研究。 # syzretrospector: a large-scale retrospective study of syzbot record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzretrospector: a large-scale retrospective study of syzbot resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2401.11642.pdf parent_primary_url: https://arxiv.org/pdf/2401.11642.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2024: \"syzretrospector: a large-scale retrospective study of syzbot\"](https://arxiv.org/pdf/2401.11642.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false co no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "053ced8a180adc76",
      "item_id": "ee88bbca282cd3e8",
      "slug": "2023-finding-bugs-reusb-replay-guided-usb-driver-fuzzing-primary-5430e83d",
      "year": 2023,
      "title": "ReUSB: Replay-Guided USB Driver Fuzzing",
      "item_title": "ReUSB: Replay-Guided USB Driver Fuzzing",
      "authors": [
        "Jisoo Jang",
        "Minsuk Kang",
        "and Dokyung Song"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity23-jang.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity23-jang.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity23-jang.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-reusb-replay-guided-usb-driver-fuzzing-primary-5430e83d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ReUSB: Replay-Guided USB Driver Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: ReUSB: Replay-Guided USB Driver Fuzzing resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity23-jang.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-jang.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"ReUSB: Replay-Guided USB Driver Fuzzing\" by Jisoo Jang, Minsuk Kang, and Dokyung Song](https://www.usenix.org/system/files/usenixsecurity23-jang.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf)] [[video](https://www.youtube.com/watch?v=DjD2-gbuXBo)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to r",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity23-jang.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=DjD2-gbuXBo"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity23-jang.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=DjD2-gbuXBo"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "USB",
        "driver"
      ],
      "affected_area": "driver",
      "exploit_stage": "finding bugs",
      "summary_en": "ReUSB focuses on replay-guided fuzzing techniques for USB drivers in Linux.",
      "summary_zh": "ReUSB专注于Linux中USB驱动的重放引导模糊测试技术。",
      "source_markdown": "[2023: \"ReUSB: Replay-Guided USB Driver Fuzzing\" by Jisoo Jang, Minsuk Kang, and Dokyung Song](https://www.usenix.org/system/files/usenixsecurity23-jang.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf)] [[video](https://www.youtube.com/watch?v=DjD2-gbuXBo)]",
      "search_text": "reusb: replay-guided usb driver fuzzing reusb: replay-guided usb driver fuzzing jisoo jang minsuk kang and dokyung song   finding bugs  finding bugs primary paper https://www.usenix.org/system/files/usenixsecurity23-jang.pdf fuzzing usb driver driver finding bugs reusb focuses on replay-guided fuzzing techniques for usb drivers in linux. reusb专注于linux中usb驱动的重放引导模糊测试技术。 # reusb: replay-guided usb driver fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: reusb: replay-guided usb driver fuzzing resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity23-jang.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-jang.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"reusb: replay-guided usb driver fuzzing\" by jisoo jang, minsuk kang, and dokyung song](https://www.usenix.org/system/files/usenixsecurity23-jang.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf)] [[video](https://www.youtube.com/watch?v=djd2-gbuxbo)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to r no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bca13b39960a3816",
      "item_id": "ee88bbca282cd3e8",
      "slug": "2023-finding-bugs-reusb-replay-guided-usb-driver-fuzzing-slides-f9a064b2",
      "year": 2023,
      "title": "ReUSB: Replay-Guided USB Driver Fuzzing · slides",
      "item_title": "ReUSB: Replay-Guided USB Driver Fuzzing",
      "authors": [
        "Jisoo Jang",
        "Minsuk Kang",
        "and Dokyung Song"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity23-jang.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-reusb-replay-guided-usb-driver-fuzzing-slides-f9a064b2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ReUSB: Replay-Guided USB Driver Fuzzing · slides record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: ReUSB: Replay-Guided USB Driver Fuzzing resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-jang.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"ReUSB: Replay-Guided USB Driver Fuzzing\" by Jisoo Jang, Minsuk Kang, and Dokyung Song](https://www.usenix.org/system/files/usenixsecurity23-jang.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf)] [[video](https://www.youtube.com/watch?v=DjD2-gbuXBo)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resourc",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity23-jang.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=DjD2-gbuXBo"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity23-jang.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=DjD2-gbuXBo"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "USB",
        "driver"
      ],
      "affected_area": "driver",
      "exploit_stage": "finding bugs",
      "summary_en": "This presentation discusses replay-guided fuzzing for USB drivers in Linux.",
      "summary_zh": "本演示讨论了Linux中USB驱动的重放引导模糊测试。",
      "source_markdown": "[2023: \"ReUSB: Replay-Guided USB Driver Fuzzing\" by Jisoo Jang, Minsuk Kang, and Dokyung Song](https://www.usenix.org/system/files/usenixsecurity23-jang.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf)] [[video](https://www.youtube.com/watch?v=DjD2-gbuXBo)]",
      "search_text": "reusb: replay-guided usb driver fuzzing · slides reusb: replay-guided usb driver fuzzing jisoo jang minsuk kang and dokyung song   finding bugs  finding bugs slides slides https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf fuzzing usb driver driver finding bugs this presentation discusses replay-guided fuzzing for usb drivers in linux. 本演示讨论了linux中usb驱动的重放引导模糊测试。 # reusb: replay-guided usb driver fuzzing · slides record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: reusb: replay-guided usb driver fuzzing resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-jang.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"reusb: replay-guided usb driver fuzzing\" by jisoo jang, minsuk kang, and dokyung song](https://www.usenix.org/system/files/usenixsecurity23-jang.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf)] [[video](https://www.youtube.com/watch?v=djd2-gbuxbo)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resourc no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7f13126921c884e0",
      "item_id": "ee88bbca282cd3e8",
      "slug": "2023-finding-bugs-reusb-replay-guided-usb-driver-fuzzing-video-c3ae49bf",
      "year": 2023,
      "title": "ReUSB: Replay-Guided USB Driver Fuzzing · video",
      "item_title": "ReUSB: Replay-Guided USB Driver Fuzzing",
      "authors": [
        "Jisoo Jang",
        "Minsuk Kang",
        "and Dokyung Song"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=DjD2-gbuXBo",
      "primary_url": "https://www.youtube.com/watch?v=DjD2-gbuXBo",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity23-jang.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-reusb-replay-guided-usb-driver-fuzzing-video-c3ae49bf.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ReUSB: Replay-Guided USB Driver Fuzzing · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: ReUSB: Replay-Guided USB Driver Fuzzing resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=DjD2-gbuXBo parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-jang.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"ReUSB: Replay-Guided USB Driver Fuzzing\" by Jisoo Jang, Minsuk Kang, and Dokyung Song](https://www.usenix.org/system/files/usenixsecurity23-jang.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf)] [[video](https://www.youtube.com/watch?v=DjD2-gbuXBo)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Andr",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity23-jang.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=DjD2-gbuXBo"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity23-jang.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=DjD2-gbuXBo"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "USB",
        "driver"
      ],
      "affected_area": "driver",
      "exploit_stage": "finding bugs",
      "summary_en": "This video covers replay-guided fuzzing techniques for USB drivers in Linux.",
      "summary_zh": "本视频介绍了Linux中USB驱动的重放引导模糊测试技术。",
      "source_markdown": "[2023: \"ReUSB: Replay-Guided USB Driver Fuzzing\" by Jisoo Jang, Minsuk Kang, and Dokyung Song](https://www.usenix.org/system/files/usenixsecurity23-jang.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf)] [[video](https://www.youtube.com/watch?v=DjD2-gbuXBo)]",
      "search_text": "reusb: replay-guided usb driver fuzzing · video reusb: replay-guided usb driver fuzzing jisoo jang minsuk kang and dokyung song   finding bugs  finding bugs video video https://www.youtube.com/watch?v=djd2-gbuxbo fuzzing usb driver driver finding bugs this video covers replay-guided fuzzing techniques for usb drivers in linux. 本视频介绍了linux中usb驱动的重放引导模糊测试技术。 # reusb: replay-guided usb driver fuzzing · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: reusb: replay-guided usb driver fuzzing resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=djd2-gbuxbo parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-jang.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"reusb: replay-guided usb driver fuzzing\" by jisoo jang, minsuk kang, and dokyung song](https://www.usenix.org/system/files/usenixsecurity23-jang.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_jang-jisoo.pdf)] [[video](https://www.youtube.com/watch?v=djd2-gbuxbo)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released andr no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "32eba0c9bdd51370",
      "item_id": "7f60a01e85f4022b",
      "slug": "2023-finding-bugs-syzgpt-when-the-fuzzer-meets-the-llm-primary-6ba2d01a",
      "year": 2023,
      "title": "SyzGPT: When the fuzzer meets the LLM",
      "item_title": "SyzGPT: When the fuzzer meets the LLM",
      "authors": [
        "Erin Avllazagaj"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://albocoder.github.io/fuzzing/exploitation/linux%20kernel/hacking/ai/gpt/llm/2023/11/27/GPT-syzkaller.html",
      "primary_url": "https://albocoder.github.io/fuzzing/exploitation/linux%20kernel/hacking/ai/gpt/llm/2023/11/27/GPT-syzkaller.html",
      "parent_primary_url": "https://albocoder.github.io/fuzzing/exploitation/linux%20kernel/hacking/ai/gpt/llm/2023/11/27/GPT-syzkaller.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-syzgpt-when-the-fuzzer-meets-the-llm-primary-6ba2d01a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SyzGPT: When the fuzzer meets the LLM record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SyzGPT: When the fuzzer meets the LLM resource_label: primary resource_type: article resource_url: https://albocoder.github.io/fuzzing/exploitation/linux%20kernel/hacking/ai/gpt/llm/2023/11/27/GPT-syzkaller.html parent_primary_url: https://albocoder.github.io/fuzzing/exploitation/linux%20kernel/hacking/ai/gpt/llm/2023/11/27/GPT-syzkaller.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"SyzGPT: When the fuzzer meets the LLM\" by Erin Avllazagaj](https://albocoder.github.io/fuzzing/exploitation/linux%20kernel/hacking/ai/gpt/llm/2023/11/27/GPT-syzkaller.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to release",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://albocoder.github.io/fuzzing/exploitation/linux%20kernel/hacking/ai/gpt/llm/2023/11/27/GPT-syzkaller.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://albocoder.github.io/fuzzing/exploitation/linux%20kernel/hacking/ai/gpt/llm/2023/11/27/GPT-syzkaller.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://albocoder.github.io/fuzzing/exploitation/linux%20kernel/hacking/ai/gpt/llm/2023/11/27/GPT-syzkaller.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "language models"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "SyzGPT combines fuzzing with large language models to enhance testing capabilities.",
      "summary_zh": "SyzGPT将模糊测试与大型语言模型结合，以增强测试能力。",
      "source_markdown": "[2023: \"SyzGPT: When the fuzzer meets the LLM\" by Erin Avllazagaj](https://albocoder.github.io/fuzzing/exploitation/linux%20kernel/hacking/ai/gpt/llm/2023/11/27/GPT-syzkaller.html) [article]",
      "search_text": "syzgpt: when the fuzzer meets the llm syzgpt: when the fuzzer meets the llm erin avllazagaj   finding bugs  finding bugs primary article https://albocoder.github.io/fuzzing/exploitation/linux%20kernel/hacking/ai/gpt/llm/2023/11/27/gpt-syzkaller.html fuzzing language models  finding bugs syzgpt combines fuzzing with large language models to enhance testing capabilities. syzgpt将模糊测试与大型语言模型结合，以增强测试能力。 # syzgpt: when the fuzzer meets the llm record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzgpt: when the fuzzer meets the llm resource_label: primary resource_type: article resource_url: https://albocoder.github.io/fuzzing/exploitation/linux%20kernel/hacking/ai/gpt/llm/2023/11/27/gpt-syzkaller.html parent_primary_url: https://albocoder.github.io/fuzzing/exploitation/linux%20kernel/hacking/ai/gpt/llm/2023/11/27/gpt-syzkaller.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"syzgpt: when the fuzzer meets the llm\" by erin avllazagaj](https://albocoder.github.io/fuzzing/exploitation/linux%20kernel/hacking/ai/gpt/llm/2023/11/27/gpt-syzkaller.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to release no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "10290d68106fdd6b",
      "item_id": "37f72f444a7d671e",
      "slug": "2023-finding-bugs-kernelgpt-enhanced-kernel-fuzzing-via-large-language-models-primary-73fe4bd1",
      "year": 2023,
      "title": "KernelGPT: Enhanced Kernel Fuzzing via Large Language Models",
      "item_title": "KernelGPT: Enhanced Kernel Fuzzing via Large Language Models",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/2401.00563.pdf",
      "primary_url": "https://arxiv.org/pdf/2401.00563.pdf",
      "parent_primary_url": "https://arxiv.org/pdf/2401.00563.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-kernelgpt-enhanced-kernel-fuzzing-via-large-language-models-primary-73fe4bd1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KernelGPT: Enhanced Kernel Fuzzing via Large Language Models record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: KernelGPT: Enhanced Kernel Fuzzing via Large Language Models resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2401.00563.pdf parent_primary_url: https://arxiv.org/pdf/2401.00563.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"KernelGPT: Enhanced Kernel Fuzzing via Large Language Models\"](https://arxiv.org/pdf/2401.00563.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false co",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/2401.00563.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/2401.00563.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "language models"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This paper discusses enhanced kernel fuzzing techniques using large language models.",
      "summary_zh": "本文讨论了使用大型语言模型增强内核模糊测试的技术。",
      "source_markdown": "[2023: \"KernelGPT: Enhanced Kernel Fuzzing via Large Language Models\"](https://arxiv.org/pdf/2401.00563.pdf) [paper]",
      "search_text": "kernelgpt: enhanced kernel fuzzing via large language models kernelgpt: enhanced kernel fuzzing via large language models    finding bugs  finding bugs primary paper https://arxiv.org/pdf/2401.00563.pdf fuzzing language models  finding bugs this paper discusses enhanced kernel fuzzing techniques using large language models. 本文讨论了使用大型语言模型增强内核模糊测试的技术。 # kernelgpt: enhanced kernel fuzzing via large language models record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: kernelgpt: enhanced kernel fuzzing via large language models resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2401.00563.pdf parent_primary_url: https://arxiv.org/pdf/2401.00563.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"kernelgpt: enhanced kernel fuzzing via large language models\"](https://arxiv.org/pdf/2401.00563.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false co no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4cf4bc4077e41889",
      "item_id": "9bfda9ee4ff573d7",
      "slug": "2023-finding-bugs-syzdirect-directed-greybox-fuzzing-for-linux-kernel-primary-20196e06",
      "year": 2023,
      "title": "SyzDirect: Directed Greybox Fuzzing for Linux Kernel",
      "item_title": "SyzDirect: Directed Greybox Fuzzing for Linux Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://yuanxzhang.github.io/paper/syzdirect-ccs23.pdf",
      "primary_url": "https://yuanxzhang.github.io/paper/syzdirect-ccs23.pdf",
      "parent_primary_url": "https://yuanxzhang.github.io/paper/syzdirect-ccs23.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-syzdirect-directed-greybox-fuzzing-for-linux-kernel-primary-20196e06.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SyzDirect: Directed Greybox Fuzzing for Linux Kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SyzDirect: Directed Greybox Fuzzing for Linux Kernel resource_label: primary resource_type: paper resource_url: https://yuanxzhang.github.io/paper/syzdirect-ccs23.pdf parent_primary_url: https://yuanxzhang.github.io/paper/syzdirect-ccs23.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"SyzDirect: Directed Greybox Fuzzing for Linux Kernel\"](https://yuanxzhang.github.io/paper/syzdirect-ccs23.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: fal",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://yuanxzhang.github.io/paper/syzdirect-ccs23.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://yuanxzhang.github.io/paper/syzdirect-ccs23.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://yuanxzhang.github.io/paper/syzdirect-ccs23.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "greybox"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "SyzDirect introduces directed greybox fuzzing techniques for the Linux kernel.",
      "summary_zh": "SyzDirect介绍了针对Linux内核的定向灰盒模糊测试技术。",
      "source_markdown": "[2023: \"SyzDirect: Directed Greybox Fuzzing for Linux Kernel\"](https://yuanxzhang.github.io/paper/syzdirect-ccs23.pdf) [paper]",
      "search_text": "syzdirect: directed greybox fuzzing for linux kernel syzdirect: directed greybox fuzzing for linux kernel    finding bugs  finding bugs primary paper https://yuanxzhang.github.io/paper/syzdirect-ccs23.pdf fuzzing greybox  finding bugs syzdirect introduces directed greybox fuzzing techniques for the linux kernel. syzdirect介绍了针对linux内核的定向灰盒模糊测试技术。 # syzdirect: directed greybox fuzzing for linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzdirect: directed greybox fuzzing for linux kernel resource_label: primary resource_type: paper resource_url: https://yuanxzhang.github.io/paper/syzdirect-ccs23.pdf parent_primary_url: https://yuanxzhang.github.io/paper/syzdirect-ccs23.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"syzdirect: directed greybox fuzzing for linux kernel\"](https://yuanxzhang.github.io/paper/syzdirect-ccs23.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: fal no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ab4aa91a2d5bf4cb",
      "item_id": "8cb50fbb73dc9b1b",
      "slug": "2023-finding-bugs-using-asan-and-kasan-and-then-interpreting-their-shadow-memory-reports-primary-675769d3",
      "year": 2023,
      "title": "Using ASAN and KASAN and then Interpreting their shadow memory reports",
      "item_title": "Using ASAN and KASAN and then Interpreting their shadow memory reports",
      "authors": [
        "Kaiwan N Billimoria"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://kernelmeetup.files.wordpress.com/2023/11/lt_1_using_asan_and_kasan_and_then_interpreting_their_shadow_memory_repo.pdf",
      "primary_url": "https://kernelmeetup.files.wordpress.com/2023/11/lt_1_using_asan_and_kasan_and_then_interpreting_their_shadow_memory_repo.pdf",
      "parent_primary_url": "https://kernelmeetup.files.wordpress.com/2023/11/lt_1_using_asan_and_kasan_and_then_interpreting_their_shadow_memory_repo.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-using-asan-and-kasan-and-then-interpreting-their-shadow-memory-reports-primary-675769d3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Using ASAN and KASAN and then Interpreting their shadow memory reports record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Using ASAN and KASAN and then Interpreting their shadow memory reports resource_label: primary resource_type: article resource_url: https://kernelmeetup.files.wordpress.com/2023/11/lt_1_using_asan_and_kasan_and_then_interpreting_their_shadow_memory_repo.pdf parent_primary_url: https://kernelmeetup.files.wordpress.com/2023/11/lt_1_using_asan_and_kasan_and_then_interpreting_their_shadow_memory_repo.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"Using ASAN and KASAN and then Interpreting their shadow memory reports\" by Kaiwan N Billimoria](https://kernelmeetup.files.wordpress.com/2023/11/lt_1_using_asan_and_kasan_and_then_interpreting_their_shadow",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kernelmeetup.files.wordpress.com/2023/11/lt_1_using_asan_and_kasan_and_then_interpreting_their_shadow_memory_repo.pdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kernelmeetup.files.wordpress.com/2023/11/lt_1_using_asan_and_kasan_and_then_interpreting_their_shadow_memory_repo.pdf"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "ASAN",
        "KASAN"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This article explains the use of ASAN and KASAN for interpreting shadow memory reports.",
      "summary_zh": "本文解释了如何使用ASAN和KASAN来解释阴影内存报告。",
      "source_markdown": "[2023: \"Using ASAN and KASAN and then Interpreting their shadow memory reports\" by Kaiwan N Billimoria](https://kernelmeetup.files.wordpress.com/2023/11/lt_1_using_asan_and_kasan_and_then_interpreting_their_shadow_memory_repo.pdf) [article]",
      "search_text": "using asan and kasan and then interpreting their shadow memory reports using asan and kasan and then interpreting their shadow memory reports kaiwan n billimoria   finding bugs  finding bugs primary article https://kernelmeetup.files.wordpress.com/2023/11/lt_1_using_asan_and_kasan_and_then_interpreting_their_shadow_memory_repo.pdf asan kasan  finding bugs this article explains the use of asan and kasan for interpreting shadow memory reports. 本文解释了如何使用asan和kasan来解释阴影内存报告。 # using asan and kasan and then interpreting their shadow memory reports record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: using asan and kasan and then interpreting their shadow memory reports resource_label: primary resource_type: article resource_url: https://kernelmeetup.files.wordpress.com/2023/11/lt_1_using_asan_and_kasan_and_then_interpreting_their_shadow_memory_repo.pdf parent_primary_url: https://kernelmeetup.files.wordpress.com/2023/11/lt_1_using_asan_and_kasan_and_then_interpreting_their_shadow_memory_repo.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"using asan and kasan and then interpreting their shadow memory reports\" by kaiwan n billimoria](https://kernelmeetup.files.wordpress.com/2023/11/lt_1_using_asan_and_kasan_and_then_interpreting_their_shadow no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a9c0ac94f3327209",
      "item_id": "8a30c908004022e8",
      "slug": "2023-finding-bugs-gwp-asan-sampling-based-detection-of-memory-safety-bugs-in-production-primary-caab1de1",
      "year": 2023,
      "title": "GWP-ASan: Sampling-Based Detection of Memory-Safety Bugs in Production",
      "item_title": "GWP-ASan: Sampling-Based Detection of Memory-Safety Bugs in Production",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/2311.09394.pdf",
      "primary_url": "https://arxiv.org/pdf/2311.09394.pdf",
      "parent_primary_url": "https://arxiv.org/pdf/2311.09394.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-gwp-asan-sampling-based-detection-of-memory-safety-bugs-in-production-primary-caab1de1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# GWP-ASan: Sampling-Based Detection of Memory-Safety Bugs in Production record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: GWP-ASan: Sampling-Based Detection of Memory-Safety Bugs in Production resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2311.09394.pdf parent_primary_url: https://arxiv.org/pdf/2311.09394.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"GWP-ASan: Sampling-Based Detection of Memory-Safety Bugs in Production\"](https://arxiv.org/pdf/2311.09394.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: fa",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/2311.09394.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/2311.09394.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory safety",
        "detection"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "GWP-ASan is a sampling-based approach for detecting memory-safety bugs in production environments.",
      "summary_zh": "GWP-ASan是一种基于采样的方法，用于在生产环境中检测内存安全漏洞。",
      "source_markdown": "[2023: \"GWP-ASan: Sampling-Based Detection of Memory-Safety Bugs in Production\"](https://arxiv.org/pdf/2311.09394.pdf) [paper]",
      "search_text": "gwp-asan: sampling-based detection of memory-safety bugs in production gwp-asan: sampling-based detection of memory-safety bugs in production    finding bugs  finding bugs primary paper https://arxiv.org/pdf/2311.09394.pdf memory safety detection  finding bugs gwp-asan is a sampling-based approach for detecting memory-safety bugs in production environments. gwp-asan是一种基于采样的方法，用于在生产环境中检测内存安全漏洞。 # gwp-asan: sampling-based detection of memory-safety bugs in production record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: gwp-asan: sampling-based detection of memory-safety bugs in production resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2311.09394.pdf parent_primary_url: https://arxiv.org/pdf/2311.09394.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"gwp-asan: sampling-based detection of memory-safety bugs in production\"](https://arxiv.org/pdf/2311.09394.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: fa no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "466bcf98557abf88",
      "item_id": "8372ad1c6bec2c8f",
      "slug": "2023-finding-bugs-tickling-ksmbd-fuzzing-smb-in-the-linux-kernel-primary-d8e95dc3",
      "year": 2023,
      "title": "Tickling ksmbd: fuzzing SMB in the Linux kernel",
      "item_title": "Tickling ksmbd: fuzzing SMB in the Linux kernel",
      "authors": [
        "notselwyn"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://pwning.tech/ksmbd-syzkaller/",
      "primary_url": "https://pwning.tech/ksmbd-syzkaller/",
      "parent_primary_url": "https://pwning.tech/ksmbd-syzkaller/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-tickling-ksmbd-fuzzing-smb-in-the-linux-kernel-primary-d8e95dc3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Tickling ksmbd: fuzzing SMB in the Linux kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Tickling ksmbd: fuzzing SMB in the Linux kernel resource_label: primary resource_type: article resource_url: https://pwning.tech/ksmbd-syzkaller/ parent_primary_url: https://pwning.tech/ksmbd-syzkaller/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"Tickling ksmbd: fuzzing SMB in the Linux kernel\" by notselwyn](https://pwning.tech/ksmbd-syzkaller/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://pwning.tech/ksmbd-syzkaller/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://pwning.tech/ksmbd-syzkaller/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "SMB"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This article discusses fuzzing techniques for the SMB protocol in the Linux kernel.",
      "summary_zh": "本文讨论了针对Linux内核中SMB协议的模糊测试技术。",
      "source_markdown": "[2023: \"Tickling ksmbd: fuzzing SMB in the Linux kernel\" by notselwyn](https://pwning.tech/ksmbd-syzkaller/) [article]",
      "search_text": "tickling ksmbd: fuzzing smb in the linux kernel tickling ksmbd: fuzzing smb in the linux kernel notselwyn   finding bugs  finding bugs primary article https://pwning.tech/ksmbd-syzkaller/ fuzzing smb  finding bugs this article discusses fuzzing techniques for the smb protocol in the linux kernel. 本文讨论了针对linux内核中smb协议的模糊测试技术。 # tickling ksmbd: fuzzing smb in the linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: tickling ksmbd: fuzzing smb in the linux kernel resource_label: primary resource_type: article resource_url: https://pwning.tech/ksmbd-syzkaller/ parent_primary_url: https://pwning.tech/ksmbd-syzkaller/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"tickling ksmbd: fuzzing smb in the linux kernel\" by notselwyn](https://pwning.tech/ksmbd-syzkaller/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "469cdb738c52de2e",
      "item_id": "ad67995fc6d600f4",
      "slug": "2023-finding-bugs-ddrace-finding-concurrency-uaf-vulnerabilities-in-linux-drivers-with-directed-fuzzing-primar",
      "year": 2023,
      "title": "DDRace: Finding Concurrency UAF Vulnerabilities in Linux Drivers with Directed Fuzzing",
      "item_title": "DDRace: Finding Concurrency UAF Vulnerabilities in Linux Drivers with Directed Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-ddrace-finding-concurrency-uaf-vulnerabilities-in-linux-drivers-with-directed-fuzzing-primar.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DDRace: Finding Concurrency UAF Vulnerabilities in Linux Drivers with Directed Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: DDRace: Finding Concurrency UAF Vulnerabilities in Linux Drivers with Directed Fuzzing resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"DDRace: Finding Concurrency UAF Vulnerabilities in Linux Drivers with Directed Fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_yuan.pdf)] cves: none android_impact_status: no android_impact_reason",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec23_slides_yuan.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec23_slides_yuan.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "UAF",
        "concurrency"
      ],
      "affected_area": "driver",
      "exploit_stage": "finding bugs",
      "summary_en": "DDRace focuses on directed fuzzing to find concurrency UAF vulnerabilities in Linux drivers.",
      "summary_zh": "DDRace专注于定向模糊测试，以发现Linux驱动中的并发UAF漏洞。",
      "source_markdown": "[2023: \"DDRace: Finding Concurrency UAF Vulnerabilities in Linux Drivers with Directed Fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_yuan.pdf)]",
      "search_text": "ddrace: finding concurrency uaf vulnerabilities in linux drivers with directed fuzzing ddrace: finding concurrency uaf vulnerabilities in linux drivers with directed fuzzing    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf fuzzing uaf concurrency driver finding bugs ddrace focuses on directed fuzzing to find concurrency uaf vulnerabilities in linux drivers. ddrace专注于定向模糊测试，以发现linux驱动中的并发uaf漏洞。 # ddrace: finding concurrency uaf vulnerabilities in linux drivers with directed fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: ddrace: finding concurrency uaf vulnerabilities in linux drivers with directed fuzzing resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"ddrace: finding concurrency uaf vulnerabilities in linux drivers with directed fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_yuan.pdf)] cves: none android_impact_status: no android_impact_reason no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5e30391234baeb34",
      "item_id": "ad67995fc6d600f4",
      "slug": "2023-finding-bugs-ddrace-finding-concurrency-uaf-vulnerabilities-in-linux-drivers-with-directed-fuzzing-slides",
      "year": 2023,
      "title": "DDRace: Finding Concurrency UAF Vulnerabilities in Linux Drivers with Directed Fuzzing · slides",
      "item_title": "DDRace: Finding Concurrency UAF Vulnerabilities in Linux Drivers with Directed Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/sec23_slides_yuan.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec23_slides_yuan.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-ddrace-finding-concurrency-uaf-vulnerabilities-in-linux-drivers-with-directed-fuzzing-slides.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DDRace: Finding Concurrency UAF Vulnerabilities in Linux Drivers with Directed Fuzzing · slides record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: DDRace: Finding Concurrency UAF Vulnerabilities in Linux Drivers with Directed Fuzzing resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec23_slides_yuan.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"DDRace: Finding Concurrency UAF Vulnerabilities in Linux Drivers with Directed Fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_yuan.pdf)] cves: none android_impact_status: no android_impact_reason",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec23_slides_yuan.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec23_slides_yuan.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "UAF",
        "concurrency"
      ],
      "affected_area": "driver",
      "exploit_stage": "finding bugs",
      "summary_en": "This presentation discusses directed fuzzing techniques for finding concurrency UAF vulnerabilities in Linux drivers.",
      "summary_zh": "本演示讨论了在Linux驱动中发现并发UAF漏洞的定向模糊测试技术。",
      "source_markdown": "[2023: \"DDRace: Finding Concurrency UAF Vulnerabilities in Linux Drivers with Directed Fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_yuan.pdf)]",
      "search_text": "ddrace: finding concurrency uaf vulnerabilities in linux drivers with directed fuzzing · slides ddrace: finding concurrency uaf vulnerabilities in linux drivers with directed fuzzing    finding bugs  finding bugs slides slides https://www.usenix.org/system/files/sec23_slides_yuan.pdf fuzzing uaf concurrency driver finding bugs this presentation discusses directed fuzzing techniques for finding concurrency uaf vulnerabilities in linux drivers. 本演示讨论了在linux驱动中发现并发uaf漏洞的定向模糊测试技术。 # ddrace: finding concurrency uaf vulnerabilities in linux drivers with directed fuzzing · slides record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: ddrace: finding concurrency uaf vulnerabilities in linux drivers with directed fuzzing resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec23_slides_yuan.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"ddrace: finding concurrency uaf vulnerabilities in linux drivers with directed fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-yuan-ming.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_yuan.pdf)] cves: none android_impact_status: no android_impact_reason no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "85094a9f55319a69",
      "item_id": "ec6dded50aca8520",
      "slug": "2023-finding-bugs-bokasan-binary-only-kernel-address-sanitizer-for-effective-kernel-fuzzing-primary-db6971cf",
      "year": 2023,
      "title": "BoKASAN: Binary-only Kernel Address Sanitizer for Effective Kernel Fuzzing",
      "item_title": "BoKASAN: Binary-only Kernel Address Sanitizer for Effective Kernel Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity23-cho.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity23-cho.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity23-cho.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-bokasan-binary-only-kernel-address-sanitizer-for-effective-kernel-fuzzing-primary-db6971cf.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BoKASAN: Binary-only Kernel Address Sanitizer for Effective Kernel Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: BoKASAN: Binary-only Kernel Address Sanitizer for Effective Kernel Fuzzing resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity23-cho.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-cho.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"BoKASAN: Binary-only Kernel Address Sanitizer for Effective Kernel Fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-cho.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf)] [[artifacts](https://github.com/seclab-yonsei/BoKASAN)] cves: none android_impact_status: no android_impact",
      "link_types": [
        "paper",
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity23-cho.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://github.com/seclab-yonsei/BoKASAN"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity23-cho.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://github.com/seclab-yonsei/BoKASAN"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/seclab-yonsei/BoKASAN"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "KASAN"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "BoKASAN is a binary-only kernel address sanitizer designed for effective kernel fuzzing.",
      "summary_zh": "BoKASAN是一种为有效内核模糊测试设计的二进制内核地址清理工具。",
      "source_markdown": "[2023: \"BoKASAN: Binary-only Kernel Address Sanitizer for Effective Kernel Fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-cho.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf)] [[artifacts](https://github.com/seclab-yonsei/BoKASAN)]",
      "search_text": "bokasan: binary-only kernel address sanitizer for effective kernel fuzzing bokasan: binary-only kernel address sanitizer for effective kernel fuzzing    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/usenixsecurity23-cho.pdf fuzzing kasan  finding bugs bokasan is a binary-only kernel address sanitizer designed for effective kernel fuzzing. bokasan是一种为有效内核模糊测试设计的二进制内核地址清理工具。 # bokasan: binary-only kernel address sanitizer for effective kernel fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: bokasan: binary-only kernel address sanitizer for effective kernel fuzzing resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity23-cho.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-cho.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"bokasan: binary-only kernel address sanitizer for effective kernel fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-cho.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf)] [[artifacts](https://github.com/seclab-yonsei/bokasan)] cves: none android_impact_status: no android_impact no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "86d2e48a36b9072d",
      "item_id": "ec6dded50aca8520",
      "slug": "2023-finding-bugs-bokasan-binary-only-kernel-address-sanitizer-for-effective-kernel-fuzzing-slides-8a22a246",
      "year": 2023,
      "title": "BoKASAN: Binary-only Kernel Address Sanitizer for Effective Kernel Fuzzing · slides",
      "item_title": "BoKASAN: Binary-only Kernel Address Sanitizer for Effective Kernel Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity23-cho.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-bokasan-binary-only-kernel-address-sanitizer-for-effective-kernel-fuzzing-slides-8a22a246.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BoKASAN: Binary-only Kernel Address Sanitizer for Effective Kernel Fuzzing · slides record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: BoKASAN: Binary-only Kernel Address Sanitizer for Effective Kernel Fuzzing resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-cho.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"BoKASAN: Binary-only Kernel Address Sanitizer for Effective Kernel Fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-cho.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf)] [[artifacts](https://github.com/seclab-yonsei/BoKASAN)] cves: none android_impact_status: no and",
      "link_types": [
        "paper",
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity23-cho.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://github.com/seclab-yonsei/BoKASAN"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity23-cho.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://github.com/seclab-yonsei/BoKASAN"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/seclab-yonsei/BoKASAN"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "sanitizer",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "BoKASAN is a binary-only kernel address sanitizer designed to enhance kernel fuzzing effectiveness.",
      "summary_zh": "BoKASAN是一个仅限二进制的内核地址消毒器，旨在提高内核模糊测试的有效性。",
      "source_markdown": "[2023: \"BoKASAN: Binary-only Kernel Address Sanitizer for Effective Kernel Fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-cho.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf)] [[artifacts](https://github.com/seclab-yonsei/BoKASAN)]",
      "search_text": "bokasan: binary-only kernel address sanitizer for effective kernel fuzzing · slides bokasan: binary-only kernel address sanitizer for effective kernel fuzzing    finding bugs  finding bugs slides slides https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf fuzzing sanitizer kernel  finding bugs bokasan is a binary-only kernel address sanitizer designed to enhance kernel fuzzing effectiveness. bokasan是一个仅限二进制的内核地址消毒器，旨在提高内核模糊测试的有效性。 # bokasan: binary-only kernel address sanitizer for effective kernel fuzzing · slides record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: bokasan: binary-only kernel address sanitizer for effective kernel fuzzing resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-cho.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"bokasan: binary-only kernel address sanitizer for effective kernel fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-cho.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf)] [[artifacts](https://github.com/seclab-yonsei/bokasan)] cves: none android_impact_status: no and no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "8f14b307d9ed3ad1",
      "item_id": "ec6dded50aca8520",
      "slug": "2023-finding-bugs-bokasan-binary-only-kernel-address-sanitizer-for-effective-kernel-fuzzing-artifacts-f4ec07d8",
      "year": 2023,
      "title": "BoKASAN: Binary-only Kernel Address Sanitizer for Effective Kernel Fuzzing · artifacts",
      "item_title": "BoKASAN: Binary-only Kernel Address Sanitizer for Effective Kernel Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "artifacts",
      "resource_type": "artifact",
      "resource_url": "https://github.com/seclab-yonsei/BoKASAN",
      "primary_url": "https://github.com/seclab-yonsei/BoKASAN",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity23-cho.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-bokasan-binary-only-kernel-address-sanitizer-for-effective-kernel-fuzzing-artifacts-f4ec07d8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BoKASAN: Binary-only Kernel Address Sanitizer for Effective Kernel Fuzzing · artifacts record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: BoKASAN: Binary-only Kernel Address Sanitizer for Effective Kernel Fuzzing resource_label: artifacts resource_type: artifact resource_url: https://github.com/seclab-yonsei/BoKASAN parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-cho.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"BoKASAN: Binary-only Kernel Address Sanitizer for Effective Kernel Fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-cho.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf)] [[artifacts](https://github.com/seclab-yonsei/BoKASAN)] cves: none android_impact_status: no android_impact_re",
      "link_types": [
        "paper",
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity23-cho.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://github.com/seclab-yonsei/BoKASAN"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity23-cho.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://github.com/seclab-yonsei/BoKASAN"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/seclab-yonsei/BoKASAN"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "sanitizer",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "BoKASAN provides artifacts for effective kernel fuzzing in binary-only environments.",
      "summary_zh": "BoKASAN提供了用于在仅限二进制环境中有效进行内核模糊测试的工具。",
      "source_markdown": "[2023: \"BoKASAN: Binary-only Kernel Address Sanitizer for Effective Kernel Fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-cho.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf)] [[artifacts](https://github.com/seclab-yonsei/BoKASAN)]",
      "search_text": "bokasan: binary-only kernel address sanitizer for effective kernel fuzzing · artifacts bokasan: binary-only kernel address sanitizer for effective kernel fuzzing    finding bugs  finding bugs artifacts artifact https://github.com/seclab-yonsei/bokasan fuzzing sanitizer kernel  finding bugs bokasan provides artifacts for effective kernel fuzzing in binary-only environments. bokasan提供了用于在仅限二进制环境中有效进行内核模糊测试的工具。 # bokasan: binary-only kernel address sanitizer for effective kernel fuzzing · artifacts record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: bokasan: binary-only kernel address sanitizer for effective kernel fuzzing resource_label: artifacts resource_type: artifact resource_url: https://github.com/seclab-yonsei/bokasan parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-cho.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"bokasan: binary-only kernel address sanitizer for effective kernel fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-cho.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_cho-mingi.pdf)] [[artifacts](https://github.com/seclab-yonsei/bokasan)] cves: none android_impact_status: no android_impact_re no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "4431675e18c79ebb",
      "item_id": "ec6bd95e39176bce",
      "slug": "2023-finding-bugs-firmsolo-enabling-dynamic-analysis-of-binary-linux-based-iot-kernel-modules-primary-3eee9ada",
      "year": 2023,
      "title": "FirmSolo: Enabling dynamic analysis of binary Linux-based IoT kernel modules",
      "item_title": "FirmSolo: Enabling dynamic analysis of binary Linux-based IoT kernel modules",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-firmsolo-enabling-dynamic-analysis-of-binary-linux-based-iot-kernel-modules-primary-3eee9ada.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# FirmSolo: Enabling dynamic analysis of binary Linux-based IoT kernel modules record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: FirmSolo: Enabling dynamic analysis of binary Linux-based IoT kernel modules resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"FirmSolo: Enabling dynamic analysis of binary Linux-based IoT kernel modules](https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_angelakopoulos.pdf)] cves: none android_impact_status: no android_impact_reason: Not ",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec23_slides_angelakopoulos.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec23_slides_angelakopoulos.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "dynamic analysis",
        "IoT",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "FirmSolo enables dynamic analysis of binary Linux-based IoT kernel modules.",
      "summary_zh": "FirmSolo使得对基于Linux的IoT内核模块进行动态分析成为可能。",
      "source_markdown": "[2023: \"FirmSolo: Enabling dynamic analysis of binary Linux-based IoT kernel modules](https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_angelakopoulos.pdf)]",
      "search_text": "firmsolo: enabling dynamic analysis of binary linux-based iot kernel modules firmsolo: enabling dynamic analysis of binary linux-based iot kernel modules    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf dynamic analysis iot kernel  finding bugs firmsolo enables dynamic analysis of binary linux-based iot kernel modules. firmsolo使得对基于linux的iot内核模块进行动态分析成为可能。 # firmsolo: enabling dynamic analysis of binary linux-based iot kernel modules record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: firmsolo: enabling dynamic analysis of binary linux-based iot kernel modules resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"firmsolo: enabling dynamic analysis of binary linux-based iot kernel modules](https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_angelakopoulos.pdf)] cves: none android_impact_status: no android_impact_reason: not  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3a34d16dcfb9aec6",
      "item_id": "ec6bd95e39176bce",
      "slug": "2023-finding-bugs-firmsolo-enabling-dynamic-analysis-of-binary-linux-based-iot-kernel-modules-slides-cf21e506",
      "year": 2023,
      "title": "FirmSolo: Enabling dynamic analysis of binary Linux-based IoT kernel modules · slides",
      "item_title": "FirmSolo: Enabling dynamic analysis of binary Linux-based IoT kernel modules",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/sec23_slides_angelakopoulos.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec23_slides_angelakopoulos.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-firmsolo-enabling-dynamic-analysis-of-binary-linux-based-iot-kernel-modules-slides-cf21e506.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# FirmSolo: Enabling dynamic analysis of binary Linux-based IoT kernel modules · slides record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: FirmSolo: Enabling dynamic analysis of binary Linux-based IoT kernel modules resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec23_slides_angelakopoulos.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"FirmSolo: Enabling dynamic analysis of binary Linux-based IoT kernel modules](https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_angelakopoulos.pdf)] cves: none android_impact_status: no android_impact_reason:",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec23_slides_angelakopoulos.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec23_slides_angelakopoulos.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "dynamic analysis",
        "IoT",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "FirmSolo's slides detail the dynamic analysis of binary Linux-based IoT kernel modules.",
      "summary_zh": "FirmSolo的幻灯片详细介绍了对基于Linux的IoT内核模块的动态分析。",
      "source_markdown": "[2023: \"FirmSolo: Enabling dynamic analysis of binary Linux-based IoT kernel modules](https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_angelakopoulos.pdf)]",
      "search_text": "firmsolo: enabling dynamic analysis of binary linux-based iot kernel modules · slides firmsolo: enabling dynamic analysis of binary linux-based iot kernel modules    finding bugs  finding bugs slides slides https://www.usenix.org/system/files/sec23_slides_angelakopoulos.pdf dynamic analysis iot kernel  finding bugs firmsolo's slides detail the dynamic analysis of binary linux-based iot kernel modules. firmsolo的幻灯片详细介绍了对基于linux的iot内核模块的动态分析。 # firmsolo: enabling dynamic analysis of binary linux-based iot kernel modules · slides record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: firmsolo: enabling dynamic analysis of binary linux-based iot kernel modules resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec23_slides_angelakopoulos.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"firmsolo: enabling dynamic analysis of binary linux-based iot kernel modules](https://www.usenix.org/system/files/usenixsecurity23-angelakopoulos.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_angelakopoulos.pdf)] cves: none android_impact_status: no android_impact_reason: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "aa9b6883c6063282",
      "item_id": "5deb75e1d9576d73",
      "slug": "2023-finding-bugs-actor-action-guided-kernel-fuzzing-primary-93472ff5",
      "year": 2023,
      "title": "ACTOR: Action-Guided Kernel Fuzzing",
      "item_title": "ACTOR: Action-Guided Kernel Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-actor-action-guided-kernel-fuzzing-primary-93472ff5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ACTOR: Action-Guided Kernel Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: ACTOR: Action-Guided Kernel Fuzzing resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"ACTOR: Action-Guided Kernel Fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_fleischer.pdf)] [[artifacts](https://github.com/ucsb-seclab/actor)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no",
      "link_types": [
        "paper",
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec23_slides_fleischer.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://github.com/ucsb-seclab/actor"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec23_slides_fleischer.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://github.com/ucsb-seclab/actor"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ucsb-seclab/actor"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "automation"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "ACTOR introduces action-guided kernel fuzzing techniques for improved bug detection.",
      "summary_zh": "ACTOR引入了基于动作的内核模糊测试技术，以提高漏洞检测能力。",
      "source_markdown": "[2023: \"ACTOR: Action-Guided Kernel Fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_fleischer.pdf)] [[artifacts](https://github.com/ucsb-seclab/actor)]",
      "search_text": "actor: action-guided kernel fuzzing actor: action-guided kernel fuzzing    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf fuzzing kernel automation  finding bugs actor introduces action-guided kernel fuzzing techniques for improved bug detection. actor引入了基于动作的内核模糊测试技术，以提高漏洞检测能力。 # actor: action-guided kernel fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: actor: action-guided kernel fuzzing resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"actor: action-guided kernel fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_fleischer.pdf)] [[artifacts](https://github.com/ucsb-seclab/actor)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "9a4a8d1588533dfc",
      "item_id": "5deb75e1d9576d73",
      "slug": "2023-finding-bugs-actor-action-guided-kernel-fuzzing-slides-b7f6c246",
      "year": 2023,
      "title": "ACTOR: Action-Guided Kernel Fuzzing · slides",
      "item_title": "ACTOR: Action-Guided Kernel Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/sec23_slides_fleischer.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec23_slides_fleischer.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-actor-action-guided-kernel-fuzzing-slides-b7f6c246.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ACTOR: Action-Guided Kernel Fuzzing · slides record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: ACTOR: Action-Guided Kernel Fuzzing resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec23_slides_fleischer.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"ACTOR: Action-Guided Kernel Fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_fleischer.pdf)] [[artifacts](https://github.com/ucsb-seclab/actor)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_statu",
      "link_types": [
        "paper",
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec23_slides_fleischer.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://github.com/ucsb-seclab/actor"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec23_slides_fleischer.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://github.com/ucsb-seclab/actor"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ucsb-seclab/actor"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "automation"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "ACTOR's slides present action-guided kernel fuzzing methodologies.",
      "summary_zh": "ACTOR的幻灯片展示了基于动作的内核模糊测试方法。",
      "source_markdown": "[2023: \"ACTOR: Action-Guided Kernel Fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_fleischer.pdf)] [[artifacts](https://github.com/ucsb-seclab/actor)]",
      "search_text": "actor: action-guided kernel fuzzing · slides actor: action-guided kernel fuzzing    finding bugs  finding bugs slides slides https://www.usenix.org/system/files/sec23_slides_fleischer.pdf fuzzing kernel automation  finding bugs actor's slides present action-guided kernel fuzzing methodologies. actor的幻灯片展示了基于动作的内核模糊测试方法。 # actor: action-guided kernel fuzzing · slides record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: actor: action-guided kernel fuzzing resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec23_slides_fleischer.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"actor: action-guided kernel fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_fleischer.pdf)] [[artifacts](https://github.com/ucsb-seclab/actor)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_statu no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "c8e888b5cc1a840d",
      "item_id": "5deb75e1d9576d73",
      "slug": "2023-finding-bugs-actor-action-guided-kernel-fuzzing-artifacts-d2e3361e",
      "year": 2023,
      "title": "ACTOR: Action-Guided Kernel Fuzzing · artifacts",
      "item_title": "ACTOR: Action-Guided Kernel Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "artifacts",
      "resource_type": "artifact",
      "resource_url": "https://github.com/ucsb-seclab/actor",
      "primary_url": "https://github.com/ucsb-seclab/actor",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-actor-action-guided-kernel-fuzzing-artifacts-d2e3361e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ACTOR: Action-Guided Kernel Fuzzing · artifacts record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: ACTOR: Action-Guided Kernel Fuzzing resource_label: artifacts resource_type: artifact resource_url: https://github.com/ucsb-seclab/actor parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"ACTOR: Action-Guided Kernel Fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_fleischer.pdf)] [[artifacts](https://github.com/ucsb-seclab/actor)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_r",
      "link_types": [
        "paper",
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec23_slides_fleischer.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://github.com/ucsb-seclab/actor"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec23_slides_fleischer.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://github.com/ucsb-seclab/actor"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ucsb-seclab/actor"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "automation"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "ACTOR provides artifacts for implementing action-guided kernel fuzzing.",
      "summary_zh": "ACTOR提供了实施基于动作的内核模糊测试的工具。",
      "source_markdown": "[2023: \"ACTOR: Action-Guided Kernel Fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_fleischer.pdf)] [[artifacts](https://github.com/ucsb-seclab/actor)]",
      "search_text": "actor: action-guided kernel fuzzing · artifacts actor: action-guided kernel fuzzing    finding bugs  finding bugs artifacts artifact https://github.com/ucsb-seclab/actor fuzzing kernel automation  finding bugs actor provides artifacts for implementing action-guided kernel fuzzing. actor提供了实施基于动作的内核模糊测试的工具。 # actor: action-guided kernel fuzzing · artifacts record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: actor: action-guided kernel fuzzing resource_label: artifacts resource_type: artifact resource_url: https://github.com/ucsb-seclab/actor parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"actor: action-guided kernel fuzzing\"](https://www.usenix.org/system/files/usenixsecurity23-fleischer.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_fleischer.pdf)] [[artifacts](https://github.com/ucsb-seclab/actor)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_r no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "1f49782769f76254",
      "item_id": "35f6fc3c8785d931",
      "slug": "2023-finding-bugs-uncontained-uncovering-container-confusion-in-the-linux-kernel-primary-d75e1da8",
      "year": 2023,
      "title": "UNCONTAINED: Uncovering Container Confusion in the Linux Kernel",
      "item_title": "UNCONTAINED: Uncovering Container Confusion in the Linux Kernel",
      "authors": [
        "Jakob Koschel",
        "Pietro Borrello",
        "et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://download.vusec.net/papers/uncontained_sec23.pdf",
      "primary_url": "https://download.vusec.net/papers/uncontained_sec23.pdf",
      "parent_primary_url": "https://download.vusec.net/papers/uncontained_sec23.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-uncontained-uncovering-container-confusion-in-the-linux-kernel-primary-d75e1da8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# UNCONTAINED: Uncovering Container Confusion in the Linux Kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: UNCONTAINED: Uncovering Container Confusion in the Linux Kernel resource_label: primary resource_type: paper resource_url: https://download.vusec.net/papers/uncontained_sec23.pdf parent_primary_url: https://download.vusec.net/papers/uncontained_sec23.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"UNCONTAINED: Uncovering Container Confusion in the Linux Kernel\" by Jakob Koschel, Pietro Borrello, et al.](https://download.vusec.net/papers/uncontained_sec23.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://download.vusec.net/papers/uncontained_sec23.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://download.vusec.net/papers/uncontained_sec23.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "kernel",
        "container"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "UNCONTAINED uncovers container confusion vulnerabilities in the Linux kernel.",
      "summary_zh": "UNCONTAINED揭示了Linux内核中的容器混淆漏洞。",
      "source_markdown": "[2023: \"UNCONTAINED: Uncovering Container Confusion in the Linux Kernel\" by Jakob Koschel, Pietro Borrello, et al.](https://download.vusec.net/papers/uncontained_sec23.pdf) [paper]",
      "search_text": "uncontained: uncovering container confusion in the linux kernel uncontained: uncovering container confusion in the linux kernel jakob koschel pietro borrello et al.   finding bugs  finding bugs primary paper https://download.vusec.net/papers/uncontained_sec23.pdf vulnerability kernel container  finding bugs uncontained uncovers container confusion vulnerabilities in the linux kernel. uncontained揭示了linux内核中的容器混淆漏洞。 # uncontained: uncovering container confusion in the linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: uncontained: uncovering container confusion in the linux kernel resource_label: primary resource_type: paper resource_url: https://download.vusec.net/papers/uncontained_sec23.pdf parent_primary_url: https://download.vusec.net/papers/uncontained_sec23.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"uncontained: uncovering container confusion in the linux kernel\" by jakob koschel, pietro borrello, et al.](https://download.vusec.net/papers/uncontained_sec23.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "dd9953648c850dfd",
      "item_id": "d5c3d7e3ed6b0f15",
      "slug": "2023-finding-bugs-kit-testing-os-level-virtualization-for-functional-interference-bugs-primary-85351705",
      "year": 2023,
      "title": "KIT: Testing OS-Level Virtualization for Functional Interference Bugs",
      "item_title": "KIT: Testing OS-Level Virtualization for Functional Interference Bugs",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://dl.acm.org/doi/pdf/10.1145/3575693.3575731",
      "primary_url": "https://dl.acm.org/doi/pdf/10.1145/3575693.3575731",
      "parent_primary_url": "https://dl.acm.org/doi/pdf/10.1145/3575693.3575731",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-kit-testing-os-level-virtualization-for-functional-interference-bugs-primary-85351705.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KIT: Testing OS-Level Virtualization for Functional Interference Bugs record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: KIT: Testing OS-Level Virtualization for Functional Interference Bugs resource_label: primary resource_type: paper resource_url: https://dl.acm.org/doi/pdf/10.1145/3575693.3575731 parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3575693.3575731 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"KIT: Testing OS-Level Virtualization for Functional Interference Bugs\"](https://dl.acm.org/doi/pdf/10.1145/3575693.3575731) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather ",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://dl.acm.org/doi/pdf/10.1145/3575693.3575731"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://dl.acm.org/doi/pdf/10.1145/3575693.3575731"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "virtualization",
        "kernel",
        "testing"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "KIT tests OS-level virtualization for functional interference bugs.",
      "summary_zh": "KIT测试操作系统级虚拟化以发现功能干扰漏洞。",
      "source_markdown": "[2023: \"KIT: Testing OS-Level Virtualization for Functional Interference Bugs\"](https://dl.acm.org/doi/pdf/10.1145/3575693.3575731) [paper]",
      "search_text": "kit: testing os-level virtualization for functional interference bugs kit: testing os-level virtualization for functional interference bugs    finding bugs  finding bugs primary paper https://dl.acm.org/doi/pdf/10.1145/3575693.3575731 virtualization kernel testing  finding bugs kit tests os-level virtualization for functional interference bugs. kit测试操作系统级虚拟化以发现功能干扰漏洞。 # kit: testing os-level virtualization for functional interference bugs record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: kit: testing os-level virtualization for functional interference bugs resource_label: primary resource_type: paper resource_url: https://dl.acm.org/doi/pdf/10.1145/3575693.3575731 parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3575693.3575731 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"kit: testing os-level virtualization for functional interference bugs\"](https://dl.acm.org/doi/pdf/10.1145/3575693.3575731) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "09c442f7fb24d962",
      "item_id": "145404527ff01bef",
      "slug": "2023-finding-bugs-syzdescribe-principled-automated-static-generation-of-syscall-descriptions-for-kernel-driver",
      "year": 2023,
      "title": "SyzDescribe: Principled, Automated, Static Generation of Syscall Descriptions for Kernel Drivers",
      "item_title": "SyzDescribe: Principled, Automated, Static Generation of Syscall Descriptions for Kernel Drivers",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf",
      "primary_url": "https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf",
      "parent_primary_url": "https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-syzdescribe-principled-automated-static-generation-of-syscall-descriptions-for-kernel-driver.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SyzDescribe: Principled, Automated, Static Generation of Syscall Descriptions for Kernel Drivers record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SyzDescribe: Principled, Automated, Static Generation of Syscall Descriptions for Kernel Drivers resource_label: primary resource_type: paper resource_url: https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf parent_primary_url: https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"SyzDescribe: Principled, Automated, Static Generation of Syscall Descriptions for Kernel Drivers\"](https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf) [paper] [[slides](https://static.sched.com/hosted_files/lssna2023/94/LSS-NA-23-SyzDescribe.pdf)] cves: none android_impac",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lssna2023/94/LSS-NA-23-SyzDescribe.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lssna2023/94/LSS-NA-23-SyzDescribe.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "automation",
        "kernel",
        "syscall"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "SyzDescribe automates the generation of syscall descriptions for kernel drivers.",
      "summary_zh": "SyzDescribe自动生成内核驱动程序的系统调用描述。",
      "source_markdown": "[2023: \"SyzDescribe: Principled, Automated, Static Generation of Syscall Descriptions for Kernel Drivers\"](https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf) [paper] [[slides](https://static.sched.com/hosted_files/lssna2023/94/LSS-NA-23-SyzDescribe.pdf)]",
      "search_text": "syzdescribe: principled, automated, static generation of syscall descriptions for kernel drivers syzdescribe: principled, automated, static generation of syscall descriptions for kernel drivers    finding bugs  finding bugs primary paper https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf automation kernel syscall  finding bugs syzdescribe automates the generation of syscall descriptions for kernel drivers. syzdescribe自动生成内核驱动程序的系统调用描述。 # syzdescribe: principled, automated, static generation of syscall descriptions for kernel drivers record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzdescribe: principled, automated, static generation of syscall descriptions for kernel drivers resource_label: primary resource_type: paper resource_url: https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf parent_primary_url: https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"syzdescribe: principled, automated, static generation of syscall descriptions for kernel drivers\"](https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf) [paper] [[slides](https://static.sched.com/hosted_files/lssna2023/94/lss-na-23-syzdescribe.pdf)] cves: none android_impac no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "88471930abd4bcd3",
      "item_id": "145404527ff01bef",
      "slug": "2023-finding-bugs-syzdescribe-principled-automated-static-generation-of-syscall-descriptions-for-kernel-driver-2",
      "year": 2023,
      "title": "SyzDescribe: Principled, Automated, Static Generation of Syscall Descriptions for Kernel Drivers · slides",
      "item_title": "SyzDescribe: Principled, Automated, Static Generation of Syscall Descriptions for Kernel Drivers",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://static.sched.com/hosted_files/lssna2023/94/LSS-NA-23-SyzDescribe.pdf",
      "primary_url": "https://static.sched.com/hosted_files/lssna2023/94/LSS-NA-23-SyzDescribe.pdf",
      "parent_primary_url": "https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-syzdescribe-principled-automated-static-generation-of-syscall-descriptions-for-kernel-driver-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SyzDescribe: Principled, Automated, Static Generation of Syscall Descriptions for Kernel Drivers · slides record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SyzDescribe: Principled, Automated, Static Generation of Syscall Descriptions for Kernel Drivers resource_label: slides resource_type: slides resource_url: https://static.sched.com/hosted_files/lssna2023/94/LSS-NA-23-SyzDescribe.pdf parent_primary_url: https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"SyzDescribe: Principled, Automated, Static Generation of Syscall Descriptions for Kernel Drivers\"](https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf) [paper] [[slides](https://static.sched.com/hosted_files/lssna2023/94/LSS-NA-23-SyzDescribe.pdf)] ",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lssna2023/94/LSS-NA-23-SyzDescribe.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lssna2023/94/LSS-NA-23-SyzDescribe.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "automation",
        "kernel",
        "syscall"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "SyzDescribe's slides detail the automated syscall description generation process.",
      "summary_zh": "SyzDescribe的幻灯片详细介绍了自动生成系统调用描述的过程。",
      "source_markdown": "[2023: \"SyzDescribe: Principled, Automated, Static Generation of Syscall Descriptions for Kernel Drivers\"](https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf) [paper] [[slides](https://static.sched.com/hosted_files/lssna2023/94/LSS-NA-23-SyzDescribe.pdf)]",
      "search_text": "syzdescribe: principled, automated, static generation of syscall descriptions for kernel drivers · slides syzdescribe: principled, automated, static generation of syscall descriptions for kernel drivers    finding bugs  finding bugs slides slides https://static.sched.com/hosted_files/lssna2023/94/lss-na-23-syzdescribe.pdf automation kernel syscall  finding bugs syzdescribe's slides detail the automated syscall description generation process. syzdescribe的幻灯片详细介绍了自动生成系统调用描述的过程。 # syzdescribe: principled, automated, static generation of syscall descriptions for kernel drivers · slides record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzdescribe: principled, automated, static generation of syscall descriptions for kernel drivers resource_label: slides resource_type: slides resource_url: https://static.sched.com/hosted_files/lssna2023/94/lss-na-23-syzdescribe.pdf parent_primary_url: https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"syzdescribe: principled, automated, static generation of syscall descriptions for kernel drivers\"](https://www.cs.ucr.edu/~zhiyunq/pub/oakland23_syzdescribe.pdf) [paper] [[slides](https://static.sched.com/hosted_files/lssna2023/94/lss-na-23-syzdescribe.pdf)]  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "aeb97af15cdd57b7",
      "item_id": "1636d6f1a4f02bdf",
      "slug": "2023-finding-bugs-precise-detection-of-kernel-data-races-with-probabilistic-lockset-analysis-primary-3adbabf0",
      "year": 2023,
      "title": "Precise Detection of Kernel Data Races with Probabilistic Lockset Analysis",
      "item_title": "Precise Detection of Kernel Data Races with Probabilistic Lockset Analysis",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.cs.columbia.edu/~gabe/files/oakland2023_pla.pdf",
      "primary_url": "https://www.cs.columbia.edu/~gabe/files/oakland2023_pla.pdf",
      "parent_primary_url": "https://www.cs.columbia.edu/~gabe/files/oakland2023_pla.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-precise-detection-of-kernel-data-races-with-probabilistic-lockset-analysis-primary-3adbabf0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Precise Detection of Kernel Data Races with Probabilistic Lockset Analysis record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Precise Detection of Kernel Data Races with Probabilistic Lockset Analysis resource_label: primary resource_type: paper resource_url: https://www.cs.columbia.edu/~gabe/files/oakland2023_pla.pdf parent_primary_url: https://www.cs.columbia.edu/~gabe/files/oakland2023_pla.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"Precise Detection of Kernel Data Races with Probabilistic Lockset Analysis\"](https://www.cs.columbia.edu/~gabe/files/oakland2023_pla.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production ",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.cs.columbia.edu/~gabe/files/oakland2023_pla.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.cs.columbia.edu/~gabe/files/oakland2023_pla.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "data race",
        "kernel",
        "analysis"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This research focuses on precise detection of kernel data races using probabilistic lockset analysis.",
      "summary_zh": "该研究专注于使用概率锁集分析精确检测内核数据竞争。",
      "source_markdown": "[2023: \"Precise Detection of Kernel Data Races with Probabilistic Lockset Analysis\"](https://www.cs.columbia.edu/~gabe/files/oakland2023_pla.pdf) [paper]",
      "search_text": "precise detection of kernel data races with probabilistic lockset analysis precise detection of kernel data races with probabilistic lockset analysis    finding bugs  finding bugs primary paper https://www.cs.columbia.edu/~gabe/files/oakland2023_pla.pdf data race kernel analysis  finding bugs this research focuses on precise detection of kernel data races using probabilistic lockset analysis. 该研究专注于使用概率锁集分析精确检测内核数据竞争。 # precise detection of kernel data races with probabilistic lockset analysis record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: precise detection of kernel data races with probabilistic lockset analysis resource_label: primary resource_type: paper resource_url: https://www.cs.columbia.edu/~gabe/files/oakland2023_pla.pdf parent_primary_url: https://www.cs.columbia.edu/~gabe/files/oakland2023_pla.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"precise detection of kernel data races with probabilistic lockset analysis\"](https://www.cs.columbia.edu/~gabe/files/oakland2023_pla.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f8cd5deeea909731",
      "item_id": "a514e6fda89eec56",
      "slug": "2023-finding-bugs-no-grammar-no-problem-towards-fuzzing-the-linux-kernel-without-system-call-descriptions-prim",
      "year": 2023,
      "title": "No Grammar, No Problem: Towards Fuzzing the Linux Kernel without System-Call Descriptions",
      "item_title": "No Grammar, No Problem: Towards Fuzzing the Linux Kernel without System-Call Descriptions",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.ndss-symposium.org/wp-content/uploads/2023/02/ndss2023_f688_paper.pdf",
      "primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2023/02/ndss2023_f688_paper.pdf",
      "parent_primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2023/02/ndss2023_f688_paper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-no-grammar-no-problem-towards-fuzzing-the-linux-kernel-without-system-call-descriptions-prim.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# No Grammar, No Problem: Towards Fuzzing the Linux Kernel without System-Call Descriptions record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: No Grammar, No Problem: Towards Fuzzing the Linux Kernel without System-Call Descriptions resource_label: primary resource_type: paper resource_url: https://www.ndss-symposium.org/wp-content/uploads/2023/02/ndss2023_f688_paper.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2023/02/ndss2023_f688_paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"No Grammar, No Problem: Towards Fuzzing the Linux Kernel without System-Call Descriptions\"](https://www.ndss-symposium.org/wp-content/uploads/2023/02/ndss2023_f688_paper.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evi",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/2023/02/ndss2023_f688_paper.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/2023/02/ndss2023_f688_paper.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "system call"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "The paper discusses fuzzing the Linux kernel without relying on system-call descriptions.",
      "summary_zh": "该论文讨论了在不依赖系统调用描述的情况下对Linux内核进行模糊测试。",
      "source_markdown": "[2023: \"No Grammar, No Problem: Towards Fuzzing the Linux Kernel without System-Call Descriptions\"](https://www.ndss-symposium.org/wp-content/uploads/2023/02/ndss2023_f688_paper.pdf) [paper]",
      "search_text": "no grammar, no problem: towards fuzzing the linux kernel without system-call descriptions no grammar, no problem: towards fuzzing the linux kernel without system-call descriptions    finding bugs  finding bugs primary paper https://www.ndss-symposium.org/wp-content/uploads/2023/02/ndss2023_f688_paper.pdf fuzzing kernel system call  finding bugs the paper discusses fuzzing the linux kernel without relying on system-call descriptions. 该论文讨论了在不依赖系统调用描述的情况下对linux内核进行模糊测试。 # no grammar, no problem: towards fuzzing the linux kernel without system-call descriptions record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: no grammar, no problem: towards fuzzing the linux kernel without system-call descriptions resource_label: primary resource_type: paper resource_url: https://www.ndss-symposium.org/wp-content/uploads/2023/02/ndss2023_f688_paper.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2023/02/ndss2023_f688_paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"no grammar, no problem: towards fuzzing the linux kernel without system-call descriptions\"](https://www.ndss-symposium.org/wp-content/uploads/2023/02/ndss2023_f688_paper.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "22c16d37926eab40",
      "item_id": "e269378717a834e7",
      "slug": "2023-finding-bugs-firmsolo-enabling-dynamic-analysis-of-binary-linux-based-iot-kernel-modules-primary-1ecc3fb8",
      "year": 2023,
      "title": "FirmSolo: Enabling dynamic analysis of binary Linux-based IoT kernel modules",
      "item_title": "FirmSolo: Enabling dynamic analysis of binary Linux-based IoT kernel modules",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec23summer_190-angelakopoulos-prepub.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec23summer_190-angelakopoulos-prepub.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec23summer_190-angelakopoulos-prepub.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2023-finding-bugs-firmsolo-enabling-dynamic-analysis-of-binary-linux-based-iot-kernel-modules-primary-1ecc3fb8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# FirmSolo: Enabling dynamic analysis of binary Linux-based IoT kernel modules record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: FirmSolo: Enabling dynamic analysis of binary Linux-based IoT kernel modules resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec23summer_190-angelakopoulos-prepub.pdf parent_primary_url: https://www.usenix.org/system/files/sec23summer_190-angelakopoulos-prepub.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"FirmSolo: Enabling dynamic analysis of binary Linux-based IoT kernel modules\"](https://www.usenix.org/system/files/sec23summer_190-angelakopoulos-prepub.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android d",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec23summer_190-angelakopoulos-prepub.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec23summer_190-angelakopoulos-prepub.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "dynamic analysis",
        "IoT",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "FirmSolo enables dynamic analysis of binary Linux-based IoT kernel modules.",
      "summary_zh": "FirmSolo使得对基于Linux的IoT内核模块进行动态分析成为可能。",
      "source_markdown": "[2023: \"FirmSolo: Enabling dynamic analysis of binary Linux-based IoT kernel modules\"](https://www.usenix.org/system/files/sec23summer_190-angelakopoulos-prepub.pdf) [paper]",
      "search_text": "firmsolo: enabling dynamic analysis of binary linux-based iot kernel modules firmsolo: enabling dynamic analysis of binary linux-based iot kernel modules    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/sec23summer_190-angelakopoulos-prepub.pdf dynamic analysis iot kernel  finding bugs firmsolo enables dynamic analysis of binary linux-based iot kernel modules. firmsolo使得对基于linux的iot内核模块进行动态分析成为可能。 # firmsolo: enabling dynamic analysis of binary linux-based iot kernel modules record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: firmsolo: enabling dynamic analysis of binary linux-based iot kernel modules resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec23summer_190-angelakopoulos-prepub.pdf parent_primary_url: https://www.usenix.org/system/files/sec23summer_190-angelakopoulos-prepub.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2023: \"firmsolo: enabling dynamic analysis of binary linux-based iot kernel modules\"](https://www.usenix.org/system/files/sec23summer_190-angelakopoulos-prepub.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android d no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f515af2bd9a60540",
      "item_id": "651e99c2e7273129",
      "slug": "2022-finding-bugs-event-based-fuzzing-patch-based-research-and-comment-police-finding-bugs-through-a-bug-prima",
      "year": 2022,
      "title": "Event-based Fuzzing, Patch-based Research, and Comment Police: Finding Bugs Through a Bug",
      "item_title": "Event-based Fuzzing, Patch-based Research, and Comment Police: Finding Bugs Through a Bug",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-LiYang-Event-based-Fuzzing-Patch-based.pdf",
      "primary_url": "https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-LiYang-Event-based-Fuzzing-Patch-based.pdf",
      "parent_primary_url": "https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-LiYang-Event-based-Fuzzing-Patch-based.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-event-based-fuzzing-patch-based-research-and-comment-police-finding-bugs-through-a-bug-prima.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Event-based Fuzzing, Patch-based Research, and Comment Police: Finding Bugs Through a Bug record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Event-based Fuzzing, Patch-based Research, and Comment Police: Finding Bugs Through a Bug resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-LiYang-Event-based-Fuzzing-Patch-based.pdf parent_primary_url: https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-LiYang-Event-based-Fuzzing-Patch-based.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"Event-based Fuzzing, Patch-based Research, and Comment Police: Finding Bugs Through a Bug\"](https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-LiYang-Event-based-Fuzzing-Patch-based.pdf) [slides] [[video](https://www.youtub",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-LiYang-Event-based-Fuzzing-Patch-based.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=mPiv0eZlx9w"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-LiYang-Event-based-Fuzzing-Patch-based.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=mPiv0eZlx9w"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-LiYang-Event-based-Fuzzing-Patch-based.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "event-based"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "Event-based fuzzing techniques are discussed for finding bugs in Linux kernel.",
      "summary_zh": "讨论了基于事件的模糊测试技术，以发现Linux内核中的漏洞。",
      "source_markdown": "[2022: \"Event-based Fuzzing, Patch-based Research, and Comment Police: Finding Bugs Through a Bug\"](https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-LiYang-Event-based-Fuzzing-Patch-based.pdf) [slides] [[video](https://www.youtube.com/watch?v=mPiv0eZlx9w)]",
      "search_text": "event-based fuzzing, patch-based research, and comment police: finding bugs through a bug event-based fuzzing, patch-based research, and comment police: finding bugs through a bug    finding bugs  finding bugs primary slides https://i.blackhat.com/eu-22/thursday-briefings/eu-22-liyang-event-based-fuzzing-patch-based.pdf fuzzing kernel event-based  finding bugs event-based fuzzing techniques are discussed for finding bugs in linux kernel. 讨论了基于事件的模糊测试技术，以发现linux内核中的漏洞。 # event-based fuzzing, patch-based research, and comment police: finding bugs through a bug record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: event-based fuzzing, patch-based research, and comment police: finding bugs through a bug resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/eu-22/thursday-briefings/eu-22-liyang-event-based-fuzzing-patch-based.pdf parent_primary_url: https://i.blackhat.com/eu-22/thursday-briefings/eu-22-liyang-event-based-fuzzing-patch-based.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"event-based fuzzing, patch-based research, and comment police: finding bugs through a bug\"](https://i.blackhat.com/eu-22/thursday-briefings/eu-22-liyang-event-based-fuzzing-patch-based.pdf) [slides] [[video](https://www.youtub no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6d3292105d68c6c9",
      "item_id": "651e99c2e7273129",
      "slug": "2022-finding-bugs-event-based-fuzzing-patch-based-research-and-comment-police-finding-bugs-through-a-bug-video",
      "year": 2022,
      "title": "Event-based Fuzzing, Patch-based Research, and Comment Police: Finding Bugs Through a Bug · video",
      "item_title": "Event-based Fuzzing, Patch-based Research, and Comment Police: Finding Bugs Through a Bug",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=mPiv0eZlx9w",
      "primary_url": "https://www.youtube.com/watch?v=mPiv0eZlx9w",
      "parent_primary_url": "https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-LiYang-Event-based-Fuzzing-Patch-based.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-event-based-fuzzing-patch-based-research-and-comment-police-finding-bugs-through-a-bug-video.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Event-based Fuzzing, Patch-based Research, and Comment Police: Finding Bugs Through a Bug · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Event-based Fuzzing, Patch-based Research, and Comment Police: Finding Bugs Through a Bug resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=mPiv0eZlx9w parent_primary_url: https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-LiYang-Event-based-Fuzzing-Patch-based.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"Event-based Fuzzing, Patch-based Research, and Comment Police: Finding Bugs Through a Bug\"](https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-LiYang-Event-based-Fuzzing-Patch-based.pdf) [slides] [[video](https://www.youtube.com/watch?v=mPiv0eZlx9w)] cves: none android_i",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-LiYang-Event-based-Fuzzing-Patch-based.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=mPiv0eZlx9w"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-LiYang-Event-based-Fuzzing-Patch-based.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=mPiv0eZlx9w"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-LiYang-Event-based-Fuzzing-Patch-based.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "event-based"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "A video presentation on event-based fuzzing techniques for Linux kernel bug discovery.",
      "summary_zh": "关于Linux内核漏洞发现的基于事件的模糊测试技术的视频演示。",
      "source_markdown": "[2022: \"Event-based Fuzzing, Patch-based Research, and Comment Police: Finding Bugs Through a Bug\"](https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-LiYang-Event-based-Fuzzing-Patch-based.pdf) [slides] [[video](https://www.youtube.com/watch?v=mPiv0eZlx9w)]",
      "search_text": "event-based fuzzing, patch-based research, and comment police: finding bugs through a bug · video event-based fuzzing, patch-based research, and comment police: finding bugs through a bug    finding bugs  finding bugs video video https://www.youtube.com/watch?v=mpiv0ezlx9w fuzzing kernel event-based  finding bugs a video presentation on event-based fuzzing techniques for linux kernel bug discovery. 关于linux内核漏洞发现的基于事件的模糊测试技术的视频演示。 # event-based fuzzing, patch-based research, and comment police: finding bugs through a bug · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: event-based fuzzing, patch-based research, and comment police: finding bugs through a bug resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=mpiv0ezlx9w parent_primary_url: https://i.blackhat.com/eu-22/thursday-briefings/eu-22-liyang-event-based-fuzzing-patch-based.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"event-based fuzzing, patch-based research, and comment police: finding bugs through a bug\"](https://i.blackhat.com/eu-22/thursday-briefings/eu-22-liyang-event-based-fuzzing-patch-based.pdf) [slides] [[video](https://www.youtube.com/watch?v=mpiv0ezlx9w)] cves: none android_i no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "a7e082588b424828",
      "item_id": "e222bcb7537613ad",
      "slug": "2022-finding-bugs-breaking-the-glass-sandbox-find-linux-kernel-bugs-and-escape-primary-a946f474",
      "year": 2022,
      "title": "Breaking the Glass Sandbox - Find Linux Kernel Bugs and Escape",
      "item_title": "Breaking the Glass Sandbox - Find Linux Kernel Bugs and Escape",
      "authors": [
        "Valentina Palmiotti at REcon"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://cfp.recon.cx/media/2022/submissions/EVBN3B/resources/recon_7TKNBIm.pdf",
      "primary_url": "https://cfp.recon.cx/media/2022/submissions/EVBN3B/resources/recon_7TKNBIm.pdf",
      "parent_primary_url": "https://cfp.recon.cx/media/2022/submissions/EVBN3B/resources/recon_7TKNBIm.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-breaking-the-glass-sandbox-find-linux-kernel-bugs-and-escape-primary-a946f474.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Breaking the Glass Sandbox - Find Linux Kernel Bugs and Escape record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Breaking the Glass Sandbox - Find Linux Kernel Bugs and Escape resource_label: primary resource_type: slides resource_url: https://cfp.recon.cx/media/2022/submissions/EVBN3B/resources/recon_7TKNBIm.pdf parent_primary_url: https://cfp.recon.cx/media/2022/submissions/EVBN3B/resources/recon_7TKNBIm.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"Breaking the Glass Sandbox - Find Linux Kernel Bugs and Escape\" by Valentina Palmiotti at REcon](https://cfp.recon.cx/media/2022/submissions/EVBN3B/resources/recon_7TKNBIm.pdf) [slides] [[video](https://www.youtube.com/watch?v=2R46lJsOOTE)] cves: none android_impact_status: no android_impact_reason: Not enough evid",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://cfp.recon.cx/media/2022/submissions/EVBN3B/resources/recon_7TKNBIm.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=2R46lJsOOTE"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://cfp.recon.cx/media/2022/submissions/EVBN3B/resources/recon_7TKNBIm.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=2R46lJsOOTE"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "sandbox",
        "kernel",
        "bug finding"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "The presentation covers methods for finding Linux kernel bugs and escaping sandboxes.",
      "summary_zh": "该演示涵盖了发现Linux内核漏洞和逃避沙箱的方法。",
      "source_markdown": "[2022: \"Breaking the Glass Sandbox - Find Linux Kernel Bugs and Escape\" by Valentina Palmiotti at REcon](https://cfp.recon.cx/media/2022/submissions/EVBN3B/resources/recon_7TKNBIm.pdf) [slides] [[video](https://www.youtube.com/watch?v=2R46lJsOOTE)]",
      "search_text": "breaking the glass sandbox - find linux kernel bugs and escape breaking the glass sandbox - find linux kernel bugs and escape valentina palmiotti at recon   finding bugs  finding bugs primary slides https://cfp.recon.cx/media/2022/submissions/evbn3b/resources/recon_7tknbim.pdf sandbox kernel bug finding  finding bugs the presentation covers methods for finding linux kernel bugs and escaping sandboxes. 该演示涵盖了发现linux内核漏洞和逃避沙箱的方法。 # breaking the glass sandbox - find linux kernel bugs and escape record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: breaking the glass sandbox - find linux kernel bugs and escape resource_label: primary resource_type: slides resource_url: https://cfp.recon.cx/media/2022/submissions/evbn3b/resources/recon_7tknbim.pdf parent_primary_url: https://cfp.recon.cx/media/2022/submissions/evbn3b/resources/recon_7tknbim.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"breaking the glass sandbox - find linux kernel bugs and escape\" by valentina palmiotti at recon](https://cfp.recon.cx/media/2022/submissions/evbn3b/resources/recon_7tknbim.pdf) [slides] [[video](https://www.youtube.com/watch?v=2r46ljsoote)] cves: none android_impact_status: no android_impact_reason: not enough evid no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a293a0bb59bfd84c",
      "item_id": "e222bcb7537613ad",
      "slug": "2022-finding-bugs-breaking-the-glass-sandbox-find-linux-kernel-bugs-and-escape-video-dab60889",
      "year": 2022,
      "title": "Breaking the Glass Sandbox - Find Linux Kernel Bugs and Escape · video",
      "item_title": "Breaking the Glass Sandbox - Find Linux Kernel Bugs and Escape",
      "authors": [
        "Valentina Palmiotti at REcon"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=2R46lJsOOTE",
      "primary_url": "https://www.youtube.com/watch?v=2R46lJsOOTE",
      "parent_primary_url": "https://cfp.recon.cx/media/2022/submissions/EVBN3B/resources/recon_7TKNBIm.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-breaking-the-glass-sandbox-find-linux-kernel-bugs-and-escape-video-dab60889.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Breaking the Glass Sandbox - Find Linux Kernel Bugs and Escape · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Breaking the Glass Sandbox - Find Linux Kernel Bugs and Escape resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=2R46lJsOOTE parent_primary_url: https://cfp.recon.cx/media/2022/submissions/EVBN3B/resources/recon_7TKNBIm.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"Breaking the Glass Sandbox - Find Linux Kernel Bugs and Escape\" by Valentina Palmiotti at REcon](https://cfp.recon.cx/media/2022/submissions/EVBN3B/resources/recon_7TKNBIm.pdf) [slides] [[video](https://www.youtube.com/watch?v=2R46lJsOOTE)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps t",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://cfp.recon.cx/media/2022/submissions/EVBN3B/resources/recon_7TKNBIm.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=2R46lJsOOTE"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://cfp.recon.cx/media/2022/submissions/EVBN3B/resources/recon_7TKNBIm.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=2R46lJsOOTE"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "sandbox",
        "kernel",
        "bug finding"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "A video on finding Linux kernel bugs and escaping sandboxes presented at REcon.",
      "summary_zh": "在REcon上展示的关于发现Linux内核漏洞和逃避沙箱的视频。",
      "source_markdown": "[2022: \"Breaking the Glass Sandbox - Find Linux Kernel Bugs and Escape\" by Valentina Palmiotti at REcon](https://cfp.recon.cx/media/2022/submissions/EVBN3B/resources/recon_7TKNBIm.pdf) [slides] [[video](https://www.youtube.com/watch?v=2R46lJsOOTE)]",
      "search_text": "breaking the glass sandbox - find linux kernel bugs and escape · video breaking the glass sandbox - find linux kernel bugs and escape valentina palmiotti at recon   finding bugs  finding bugs video video https://www.youtube.com/watch?v=2r46ljsoote sandbox kernel bug finding  finding bugs a video on finding linux kernel bugs and escaping sandboxes presented at recon. 在recon上展示的关于发现linux内核漏洞和逃避沙箱的视频。 # breaking the glass sandbox - find linux kernel bugs and escape · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: breaking the glass sandbox - find linux kernel bugs and escape resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=2r46ljsoote parent_primary_url: https://cfp.recon.cx/media/2022/submissions/evbn3b/resources/recon_7tknbim.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"breaking the glass sandbox - find linux kernel bugs and escape\" by valentina palmiotti at recon](https://cfp.recon.cx/media/2022/submissions/evbn3b/resources/recon_7tknbim.pdf) [slides] [[video](https://www.youtube.com/watch?v=2r46ljsoote)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps t no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "0435f9eb647ce24a",
      "item_id": "84c285e076ebf768",
      "slug": "2022-finding-bugs-sanitizing-the-linux-kernel-on-kasan-and-other-dynamic-bug-finding-tools-primary-eb5101b8",
      "year": 2022,
      "title": "Sanitizing the Linux kernel: On KASAN and other Dynamic Bug-finding Tools",
      "item_title": "Sanitizing the Linux kernel: On KASAN and other Dynamic Bug-finding Tools",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing",
      "primary_url": "https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing",
      "parent_primary_url": "https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-sanitizing-the-linux-kernel-on-kasan-and-other-dynamic-bug-finding-tools-primary-eb5101b8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Sanitizing the Linux kernel: On KASAN and other Dynamic Bug-finding Tools record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Sanitizing the Linux kernel: On KASAN and other Dynamic Bug-finding Tools resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing parent_primary_url: https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"Sanitizing the Linux kernel: On KASAN and other Dynamic Bug-finding Tools\" by Andrey Konovalov](https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=Km",
      "link_types": [
        "slides",
        "video",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=KmFVPyHyfqQ"
        },
        {
          "label": "article",
          "type": "article",
          "url": "https://lwn.net/Articles/909245/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "article",
            "type": "article",
            "url": "https://lwn.net/Articles/909245/"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=KmFVPyHyfqQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "dynamic analysis",
        "kernel",
        "bug finding"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "The presentation discusses KASAN and other dynamic bug-finding tools for the Linux kernel.",
      "summary_zh": "该演示讨论了KASAN和其他动态漏洞发现工具在Linux内核中的应用。",
      "source_markdown": "[2022: \"Sanitizing the Linux kernel: On KASAN and other Dynamic Bug-finding Tools\" by Andrey Konovalov](https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=KmFVPyHyfqQ)] [[article](https://lwn.net/Articles/909245/)]",
      "search_text": "sanitizing the linux kernel: on kasan and other dynamic bug-finding tools sanitizing the linux kernel: on kasan and other dynamic bug-finding tools andrey konovalov   finding bugs  finding bugs primary slides https://docs.google.com/presentation/d/1qa8fqrdhkx_wm_zddn37eqqzwstnj4ffws82tbuskxy/edit?usp=sharing dynamic analysis kernel bug finding  finding bugs the presentation discusses kasan and other dynamic bug-finding tools for the linux kernel. 该演示讨论了kasan和其他动态漏洞发现工具在linux内核中的应用。 # sanitizing the linux kernel: on kasan and other dynamic bug-finding tools record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: sanitizing the linux kernel: on kasan and other dynamic bug-finding tools resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/1qa8fqrdhkx_wm_zddn37eqqzwstnj4ffws82tbuskxy/edit?usp=sharing parent_primary_url: https://docs.google.com/presentation/d/1qa8fqrdhkx_wm_zddn37eqqzwstnj4ffws82tbuskxy/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"sanitizing the linux kernel: on kasan and other dynamic bug-finding tools\" by andrey konovalov](https://docs.google.com/presentation/d/1qa8fqrdhkx_wm_zddn37eqqzwstnj4ffws82tbuskxy/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=km no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5700acd74a022812",
      "item_id": "84c285e076ebf768",
      "slug": "2022-finding-bugs-sanitizing-the-linux-kernel-on-kasan-and-other-dynamic-bug-finding-tools-video-e409caa7",
      "year": 2022,
      "title": "Sanitizing the Linux kernel: On KASAN and other Dynamic Bug-finding Tools · video",
      "item_title": "Sanitizing the Linux kernel: On KASAN and other Dynamic Bug-finding Tools",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=KmFVPyHyfqQ",
      "primary_url": "https://www.youtube.com/watch?v=KmFVPyHyfqQ",
      "parent_primary_url": "https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-sanitizing-the-linux-kernel-on-kasan-and-other-dynamic-bug-finding-tools-video-e409caa7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Sanitizing the Linux kernel: On KASAN and other Dynamic Bug-finding Tools · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Sanitizing the Linux kernel: On KASAN and other Dynamic Bug-finding Tools resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=KmFVPyHyfqQ parent_primary_url: https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"Sanitizing the Linux kernel: On KASAN and other Dynamic Bug-finding Tools\" by Andrey Konovalov](https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=KmFVPyHyfqQ)] [[article](https://lwn.net/Articles/9092",
      "link_types": [
        "slides",
        "video",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=KmFVPyHyfqQ"
        },
        {
          "label": "article",
          "type": "article",
          "url": "https://lwn.net/Articles/909245/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "article",
            "type": "article",
            "url": "https://lwn.net/Articles/909245/"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=KmFVPyHyfqQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "dynamic analysis",
        "kernel",
        "bug finding"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "A video presentation on KASAN and dynamic bug-finding tools for the Linux kernel.",
      "summary_zh": "关于KASAN和Linux内核动态漏洞发现工具的视频演示。",
      "source_markdown": "[2022: \"Sanitizing the Linux kernel: On KASAN and other Dynamic Bug-finding Tools\" by Andrey Konovalov](https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=KmFVPyHyfqQ)] [[article](https://lwn.net/Articles/909245/)]",
      "search_text": "sanitizing the linux kernel: on kasan and other dynamic bug-finding tools · video sanitizing the linux kernel: on kasan and other dynamic bug-finding tools andrey konovalov   finding bugs  finding bugs video video https://www.youtube.com/watch?v=kmfvpyhyfqq dynamic analysis kernel bug finding  finding bugs a video presentation on kasan and dynamic bug-finding tools for the linux kernel. 关于kasan和linux内核动态漏洞发现工具的视频演示。 # sanitizing the linux kernel: on kasan and other dynamic bug-finding tools · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: sanitizing the linux kernel: on kasan and other dynamic bug-finding tools resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=kmfvpyhyfqq parent_primary_url: https://docs.google.com/presentation/d/1qa8fqrdhkx_wm_zddn37eqqzwstnj4ffws82tbuskxy/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"sanitizing the linux kernel: on kasan and other dynamic bug-finding tools\" by andrey konovalov](https://docs.google.com/presentation/d/1qa8fqrdhkx_wm_zddn37eqqzwstnj4ffws82tbuskxy/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=kmfvpyhyfqq)] [[article](https://lwn.net/articles/9092 no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7810adf59ade9312",
      "item_id": "84c285e076ebf768",
      "slug": "2022-finding-bugs-sanitizing-the-linux-kernel-on-kasan-and-other-dynamic-bug-finding-tools-article-49bbd641",
      "year": 2022,
      "title": "Sanitizing the Linux kernel: On KASAN and other Dynamic Bug-finding Tools · article",
      "item_title": "Sanitizing the Linux kernel: On KASAN and other Dynamic Bug-finding Tools",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "article",
      "resource_type": "article",
      "resource_url": "https://lwn.net/Articles/909245/",
      "primary_url": "https://lwn.net/Articles/909245/",
      "parent_primary_url": "https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-sanitizing-the-linux-kernel-on-kasan-and-other-dynamic-bug-finding-tools-article-49bbd641.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Sanitizing the Linux kernel: On KASAN and other Dynamic Bug-finding Tools · article record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Sanitizing the Linux kernel: On KASAN and other Dynamic Bug-finding Tools resource_label: article resource_type: article resource_url: https://lwn.net/Articles/909245/ parent_primary_url: https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"Sanitizing the Linux kernel: On KASAN and other Dynamic Bug-finding Tools\" by Andrey Konovalov](https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=KmFVPyHyfqQ)] [[article](https://lwn.net/Articles/909245/)]",
      "link_types": [
        "slides",
        "video",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=KmFVPyHyfqQ"
        },
        {
          "label": "article",
          "type": "article",
          "url": "https://lwn.net/Articles/909245/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "article",
            "type": "article",
            "url": "https://lwn.net/Articles/909245/"
          }
        ],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=KmFVPyHyfqQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KASAN",
        "dynamic analysis",
        "bug finding"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article discusses the use of KASAN and other dynamic bug-finding tools to sanitize the Linux kernel.",
      "summary_zh": "本文讨论了使用KASAN和其他动态错误查找工具来清理Linux内核。",
      "source_markdown": "[2022: \"Sanitizing the Linux kernel: On KASAN and other Dynamic Bug-finding Tools\" by Andrey Konovalov](https://docs.google.com/presentation/d/1qA8fqRDHKX_WM_ZdDN37EQQZwSTNJ4FFws82tbUSKxY/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=KmFVPyHyfqQ)] [[article](https://lwn.net/Articles/909245/)]",
      "search_text": "sanitizing the linux kernel: on kasan and other dynamic bug-finding tools · article sanitizing the linux kernel: on kasan and other dynamic bug-finding tools andrey konovalov   finding bugs  finding bugs article article https://lwn.net/articles/909245/ kasan dynamic analysis bug finding  defensive research this article discusses the use of kasan and other dynamic bug-finding tools to sanitize the linux kernel. 本文讨论了使用kasan和其他动态错误查找工具来清理linux内核。 # sanitizing the linux kernel: on kasan and other dynamic bug-finding tools · article record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: sanitizing the linux kernel: on kasan and other dynamic bug-finding tools resource_label: article resource_type: article resource_url: https://lwn.net/articles/909245/ parent_primary_url: https://docs.google.com/presentation/d/1qa8fqrdhkx_wm_zddn37eqqzwstnj4ffws82tbuskxy/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"sanitizing the linux kernel: on kasan and other dynamic bug-finding tools\" by andrey konovalov](https://docs.google.com/presentation/d/1qa8fqrdhkx_wm_zddn37eqqzwstnj4ffws82tbuskxy/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=kmfvpyhyfqq)] [[article](https://lwn.net/articles/909245/)] no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e09fc3d30e2713e6",
      "item_id": "fb8b29183b999e2b",
      "slug": "2022-finding-bugs-printfuzz-fuzzing-linux-drivers-via-automated-virtual-device-simulation-primary-7306b35b",
      "year": 2022,
      "title": "PrIntFuzz: Fuzzing Linux Drivers via Automated Virtual Device Simulation",
      "item_title": "PrIntFuzz: Fuzzing Linux Drivers via Automated Virtual Device Simulation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://dl.acm.org/doi/pdf/10.1145/3533767.3534226",
      "primary_url": "https://dl.acm.org/doi/pdf/10.1145/3533767.3534226",
      "parent_primary_url": "https://dl.acm.org/doi/pdf/10.1145/3533767.3534226",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-printfuzz-fuzzing-linux-drivers-via-automated-virtual-device-simulation-primary-7306b35b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PrIntFuzz: Fuzzing Linux Drivers via Automated Virtual Device Simulation record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: PrIntFuzz: Fuzzing Linux Drivers via Automated Virtual Device Simulation resource_label: primary resource_type: paper resource_url: https://dl.acm.org/doi/pdf/10.1145/3533767.3534226 parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3533767.3534226 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"PrIntFuzz: Fuzzing Linux Drivers via Automated Virtual Device Simulation\"](https://dl.acm.org/doi/pdf/10.1145/3533767.3534226) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kerne",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://dl.acm.org/doi/pdf/10.1145/3533767.3534226"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://dl.acm.org/doi/pdf/10.1145/3533767.3534226"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "drivers",
        "automation"
      ],
      "affected_area": "drivers",
      "exploit_stage": "defensive research",
      "summary_en": "PrIntFuzz presents a method for fuzzing Linux drivers through automated virtual device simulation.",
      "summary_zh": "PrIntFuzz提出了一种通过自动化虚拟设备模拟对Linux驱动进行模糊测试的方法。",
      "source_markdown": "[2022: \"PrIntFuzz: Fuzzing Linux Drivers via Automated Virtual Device Simulation\"](https://dl.acm.org/doi/pdf/10.1145/3533767.3534226) [paper]",
      "search_text": "printfuzz: fuzzing linux drivers via automated virtual device simulation printfuzz: fuzzing linux drivers via automated virtual device simulation    finding bugs  finding bugs primary paper https://dl.acm.org/doi/pdf/10.1145/3533767.3534226 fuzzing drivers automation drivers defensive research printfuzz presents a method for fuzzing linux drivers through automated virtual device simulation. printfuzz提出了一种通过自动化虚拟设备模拟对linux驱动进行模糊测试的方法。 # printfuzz: fuzzing linux drivers via automated virtual device simulation record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: printfuzz: fuzzing linux drivers via automated virtual device simulation resource_label: primary resource_type: paper resource_url: https://dl.acm.org/doi/pdf/10.1145/3533767.3534226 parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3533767.3534226 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"printfuzz: fuzzing linux drivers via automated virtual device simulation\"](https://dl.acm.org/doi/pdf/10.1145/3533767.3534226) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kerne no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "acf7f8dd420789ad",
      "item_id": "4f4d6c7bd3ef10a4",
      "slug": "2022-finding-bugs-ksg-augmenting-kernel-fuzzing-with-system-call-specification-generation-primary-ec5f5a84",
      "year": 2022,
      "title": "KSG: Augmenting Kernel Fuzzing with System Call Specification Generation",
      "item_title": "KSG: Augmenting Kernel Fuzzing with System Call Specification Generation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/atc22.pdf",
      "primary_url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/atc22.pdf",
      "parent_primary_url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/atc22.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-ksg-augmenting-kernel-fuzzing-with-system-call-specification-generation-primary-ec5f5a84.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KSG: Augmenting Kernel Fuzzing with System Call Specification Generation record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: KSG: Augmenting Kernel Fuzzing with System Call Specification Generation resource_label: primary resource_type: paper resource_url: http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/atc22.pdf parent_primary_url: http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/atc22.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"KSG: Augmenting Kernel Fuzzing with System Call Specification Generation\"](http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/atc22.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/atc22.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/atc22.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "system calls",
        "specification generation"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "KSG enhances kernel fuzzing by generating system call specifications.",
      "summary_zh": "KSG通过生成系统调用规范来增强内核模糊测试。",
      "source_markdown": "[2022: \"KSG: Augmenting Kernel Fuzzing with System Call Specification Generation\"](http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/atc22.pdf) [paper]",
      "search_text": "ksg: augmenting kernel fuzzing with system call specification generation ksg: augmenting kernel fuzzing with system call specification generation    finding bugs  finding bugs primary paper http://www.wingtecher.com/themes/wingtecherresearch/assets/papers/atc22.pdf fuzzing system calls specification generation  defensive research ksg enhances kernel fuzzing by generating system call specifications. ksg通过生成系统调用规范来增强内核模糊测试。 # ksg: augmenting kernel fuzzing with system call specification generation record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: ksg: augmenting kernel fuzzing with system call specification generation resource_label: primary resource_type: paper resource_url: http://www.wingtecher.com/themes/wingtecherresearch/assets/papers/atc22.pdf parent_primary_url: http://www.wingtecher.com/themes/wingtecherresearch/assets/papers/atc22.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"ksg: augmenting kernel fuzzing with system call specification generation\"](http://www.wingtecher.com/themes/wingtecherresearch/assets/papers/atc22.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3d0b74b2c8365d15",
      "item_id": "1e8cf428179ec9a7",
      "slug": "2022-finding-bugs-demystifying-the-dependency-challenge-in-kernel-fuzzing-primary-3d514104",
      "year": 2022,
      "title": "Demystifying the Dependency Challenge in Kernel Fuzzing",
      "item_title": "Demystifying the Dependency Challenge in Kernel Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://github.com/ZHYfeng/Dependency/blob/master/Paper.pdf",
      "primary_url": "https://github.com/ZHYfeng/Dependency/blob/master/Paper.pdf",
      "parent_primary_url": "https://github.com/ZHYfeng/Dependency/blob/master/Paper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-demystifying-the-dependency-challenge-in-kernel-fuzzing-primary-3d514104.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Demystifying the Dependency Challenge in Kernel Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Demystifying the Dependency Challenge in Kernel Fuzzing resource_label: primary resource_type: paper resource_url: https://github.com/ZHYfeng/Dependency/blob/master/Paper.pdf parent_primary_url: https://github.com/ZHYfeng/Dependency/blob/master/Paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"Demystifying the Dependency Challenge in Kernel Fuzzing\"](https://github.com/ZHYfeng/Dependency/blob/master/Paper.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://github.com/ZHYfeng/Dependency/blob/master/Paper.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://github.com/ZHYfeng/Dependency/blob/master/Paper.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ZHYfeng/Dependency/blob/master/Paper.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "dependencies",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper addresses the challenges of dependencies in kernel fuzzing.",
      "summary_zh": "本文讨论了内核模糊测试中依赖关系的挑战。",
      "source_markdown": "[2022: \"Demystifying the Dependency Challenge in Kernel Fuzzing\"](https://github.com/ZHYfeng/Dependency/blob/master/Paper.pdf) [paper]",
      "search_text": "demystifying the dependency challenge in kernel fuzzing demystifying the dependency challenge in kernel fuzzing    finding bugs  finding bugs primary paper https://github.com/zhyfeng/dependency/blob/master/paper.pdf fuzzing dependencies kernel  defensive research this paper addresses the challenges of dependencies in kernel fuzzing. 本文讨论了内核模糊测试中依赖关系的挑战。 # demystifying the dependency challenge in kernel fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: demystifying the dependency challenge in kernel fuzzing resource_label: primary resource_type: paper resource_url: https://github.com/zhyfeng/dependency/blob/master/paper.pdf parent_primary_url: https://github.com/zhyfeng/dependency/blob/master/paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"demystifying the dependency challenge in kernel fuzzing\"](https://github.com/zhyfeng/dependency/blob/master/paper.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6f0eeb8c66dd878b",
      "item_id": "26aee9f9dbc97499",
      "slug": "2022-finding-bugs-hunting-for-linux-kernel-public-vulnerabilities-primary-2c77daf6",
      "year": 2022,
      "title": "Hunting for Linux kernel public vulnerabilities",
      "item_title": "Hunting for Linux kernel public vulnerabilities",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://1day.dev/notes/Hunting-for-Linux-kernel-public-vulnerabilities/",
      "primary_url": "https://1day.dev/notes/Hunting-for-Linux-kernel-public-vulnerabilities/",
      "parent_primary_url": "https://1day.dev/notes/Hunting-for-Linux-kernel-public-vulnerabilities/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-hunting-for-linux-kernel-public-vulnerabilities-primary-2c77daf6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Hunting for Linux kernel public vulnerabilities record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Hunting for Linux kernel public vulnerabilities resource_label: primary resource_type: article resource_url: https://1day.dev/notes/Hunting-for-Linux-kernel-public-vulnerabilities/ parent_primary_url: https://1day.dev/notes/Hunting-for-Linux-kernel-public-vulnerabilities/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"Hunting for Linux kernel public vulnerabilities\"](https://1day.dev/notes/Hunting-for-Linux-kernel-public-vulnerabilities/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://1day.dev/notes/Hunting-for-Linux-kernel-public-vulnerabilities/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://1day.dev/notes/Hunting-for-Linux-kernel-public-vulnerabilities/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability hunting",
        "kernel",
        "public"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "The article explores methods for hunting public vulnerabilities in the Linux kernel.",
      "summary_zh": "本文探讨了在Linux内核中寻找公共漏洞的方法。",
      "source_markdown": "[2022: \"Hunting for Linux kernel public vulnerabilities\"](https://1day.dev/notes/Hunting-for-Linux-kernel-public-vulnerabilities/) [article]",
      "search_text": "hunting for linux kernel public vulnerabilities hunting for linux kernel public vulnerabilities    finding bugs  finding bugs primary article https://1day.dev/notes/hunting-for-linux-kernel-public-vulnerabilities/ vulnerability hunting kernel public  defensive research the article explores methods for hunting public vulnerabilities in the linux kernel. 本文探讨了在linux内核中寻找公共漏洞的方法。 # hunting for linux kernel public vulnerabilities record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: hunting for linux kernel public vulnerabilities resource_label: primary resource_type: article resource_url: https://1day.dev/notes/hunting-for-linux-kernel-public-vulnerabilities/ parent_primary_url: https://1day.dev/notes/hunting-for-linux-kernel-public-vulnerabilities/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"hunting for linux kernel public vulnerabilities\"](https://1day.dev/notes/hunting-for-linux-kernel-public-vulnerabilities/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "57318c97c00d69bd",
      "item_id": "93a5b73bcb830aea",
      "slug": "2022-finding-bugs-dangzero-efficient-use-after-free-detection-via-direct-page-table-access-primary-1afeb58f",
      "year": 2022,
      "title": "DangZero: Efficient Use-After-Free Detection via Direct Page Table Access",
      "item_title": "DangZero: Efficient Use-After-Free Detection via Direct Page Table Access",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://download.vusec.net/papers/dangzero_ccs22.pdf",
      "primary_url": "https://download.vusec.net/papers/dangzero_ccs22.pdf",
      "parent_primary_url": "https://download.vusec.net/papers/dangzero_ccs22.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-dangzero-efficient-use-after-free-detection-via-direct-page-table-access-primary-1afeb58f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DangZero: Efficient Use-After-Free Detection via Direct Page Table Access record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: DangZero: Efficient Use-After-Free Detection via Direct Page Table Access resource_label: primary resource_type: paper resource_url: https://download.vusec.net/papers/dangzero_ccs22.pdf parent_primary_url: https://download.vusec.net/papers/dangzero_ccs22.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"DangZero: Efficient Use-After-Free Detection via Direct Page Table Access\"](https://download.vusec.net/papers/dangzero_ccs22.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's ",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://download.vusec.net/papers/dangzero_ccs22.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://download.vusec.net/papers/dangzero_ccs22.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "use-after-free",
        "detection",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "DangZero introduces an efficient method for detecting use-after-free vulnerabilities in the Linux kernel.",
      "summary_zh": "DangZero引入了一种有效的方法来检测Linux内核中的使用后释放漏洞。",
      "source_markdown": "[2022: \"DangZero: Efficient Use-After-Free Detection via Direct Page Table Access\"](https://download.vusec.net/papers/dangzero_ccs22.pdf) [paper]",
      "search_text": "dangzero: efficient use-after-free detection via direct page table access dangzero: efficient use-after-free detection via direct page table access    finding bugs  finding bugs primary paper https://download.vusec.net/papers/dangzero_ccs22.pdf use-after-free detection kernel  defensive research dangzero introduces an efficient method for detecting use-after-free vulnerabilities in the linux kernel. dangzero引入了一种有效的方法来检测linux内核中的使用后释放漏洞。 # dangzero: efficient use-after-free detection via direct page table access record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: dangzero: efficient use-after-free detection via direct page table access resource_label: primary resource_type: paper resource_url: https://download.vusec.net/papers/dangzero_ccs22.pdf parent_primary_url: https://download.vusec.net/papers/dangzero_ccs22.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"dangzero: efficient use-after-free detection via direct page table access\"](https://download.vusec.net/papers/dangzero_ccs22.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "0e8e9464980bd8d7",
      "item_id": "af658dcd142420e6",
      "slug": "2022-finding-bugs-how-i-started-chasing-speculative-type-confusion-bugs-in-the-kernel-and-ended-up-with-real-o",
      "year": 2022,
      "title": "How I started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones",
      "item_title": "How I started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones",
      "authors": [
        "Jakob Koschel"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://lpc.events/event/16/contributions/1211/attachments/979/1981/LPC2022_slides_Jakob_Koschel.pdf",
      "primary_url": "https://lpc.events/event/16/contributions/1211/attachments/979/1981/LPC2022_slides_Jakob_Koschel.pdf",
      "parent_primary_url": "https://lpc.events/event/16/contributions/1211/attachments/979/1981/LPC2022_slides_Jakob_Koschel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-how-i-started-chasing-speculative-type-confusion-bugs-in-the-kernel-and-ended-up-with-real-o.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# How I started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: How I started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones resource_label: primary resource_type: slides resource_url: https://lpc.events/event/16/contributions/1211/attachments/979/1981/LPC2022_slides_Jakob_Koschel.pdf parent_primary_url: https://lpc.events/event/16/contributions/1211/attachments/979/1981/LPC2022_slides_Jakob_Koschel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"How I started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones\" by Jakob Koschel](https://lpc.events/event/16/contributions/1211/attachments/979/1981/LPC2022_slides_Ja",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/16/contributions/1211/attachments/979/1981/LPC2022_slides_Jakob_Koschel.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=LigVc74INaA"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/16/contributions/1211/attachments/979/1981/LPC2022_slides_Jakob_Koschel.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=LigVc74INaA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "type confusion",
        "kernel",
        "bug hunting"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This presentation discusses the pursuit of speculative type confusion bugs in the Linux kernel.",
      "summary_zh": "本演示讨论了在Linux内核中追踪推测性类型混淆漏洞的过程。",
      "source_markdown": "[2022: \"How I started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones\" by Jakob Koschel](https://lpc.events/event/16/contributions/1211/attachments/979/1981/LPC2022_slides_Jakob_Koschel.pdf) [slides] [[video](https://www.youtube.com/watch?v=LigVc74INaA)]",
      "search_text": "how i started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones how i started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones jakob koschel   finding bugs  finding bugs primary slides https://lpc.events/event/16/contributions/1211/attachments/979/1981/lpc2022_slides_jakob_koschel.pdf type confusion kernel bug hunting  defensive research this presentation discusses the pursuit of speculative type confusion bugs in the linux kernel. 本演示讨论了在linux内核中追踪推测性类型混淆漏洞的过程。 # how i started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: how i started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones resource_label: primary resource_type: slides resource_url: https://lpc.events/event/16/contributions/1211/attachments/979/1981/lpc2022_slides_jakob_koschel.pdf parent_primary_url: https://lpc.events/event/16/contributions/1211/attachments/979/1981/lpc2022_slides_jakob_koschel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"how i started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones\" by jakob koschel](https://lpc.events/event/16/contributions/1211/attachments/979/1981/lpc2022_slides_ja no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ffa17be92eceb6be",
      "item_id": "af658dcd142420e6",
      "slug": "2022-finding-bugs-how-i-started-chasing-speculative-type-confusion-bugs-in-the-kernel-and-ended-up-with-real-o-2",
      "year": 2022,
      "title": "How I started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones · video",
      "item_title": "How I started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones",
      "authors": [
        "Jakob Koschel"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=LigVc74INaA",
      "primary_url": "https://www.youtube.com/watch?v=LigVc74INaA",
      "parent_primary_url": "https://lpc.events/event/16/contributions/1211/attachments/979/1981/LPC2022_slides_Jakob_Koschel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-how-i-started-chasing-speculative-type-confusion-bugs-in-the-kernel-and-ended-up-with-real-o-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# How I started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: How I started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=LigVc74INaA parent_primary_url: https://lpc.events/event/16/contributions/1211/attachments/979/1981/LPC2022_slides_Jakob_Koschel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"How I started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones\" by Jakob Koschel](https://lpc.events/event/16/contributions/1211/attachments/979/1981/LPC2022_slides_Jakob_Koschel.pdf) [slides] [[video](https://www.youtu",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/16/contributions/1211/attachments/979/1981/LPC2022_slides_Jakob_Koschel.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=LigVc74INaA"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/16/contributions/1211/attachments/979/1981/LPC2022_slides_Jakob_Koschel.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=LigVc74INaA"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "type confusion",
        "kernel",
        "bug hunting"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "A video presentation on the pursuit of speculative type confusion bugs in the Linux kernel.",
      "summary_zh": "关于在Linux内核中追踪推测性类型混淆漏洞的视频演示。",
      "source_markdown": "[2022: \"How I started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones\" by Jakob Koschel](https://lpc.events/event/16/contributions/1211/attachments/979/1981/LPC2022_slides_Jakob_Koschel.pdf) [slides] [[video](https://www.youtube.com/watch?v=LigVc74INaA)]",
      "search_text": "how i started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones · video how i started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones jakob koschel   finding bugs  finding bugs video video https://www.youtube.com/watch?v=ligvc74inaa type confusion kernel bug hunting  defensive research a video presentation on the pursuit of speculative type confusion bugs in the linux kernel. 关于在linux内核中追踪推测性类型混淆漏洞的视频演示。 # how i started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: how i started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=ligvc74inaa parent_primary_url: https://lpc.events/event/16/contributions/1211/attachments/979/1981/lpc2022_slides_jakob_koschel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"how i started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones\" by jakob koschel](https://lpc.events/event/16/contributions/1211/attachments/979/1981/lpc2022_slides_jakob_koschel.pdf) [slides] [[video](https://www.youtu no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a7ca183303a5041b",
      "item_id": "1188f5b3be83be14",
      "slug": "2022-finding-bugs-technical-analysis-of-syzkaller-based-fuzzers-it-s-not-about-vaultfuzzer-primary-4792bf20",
      "year": 2022,
      "title": "Technical analysis of syzkaller based fuzzers: It's not about VaultFuzzer!",
      "item_title": "Technical analysis of syzkaller based fuzzers: It's not about VaultFuzzer!",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://hardenedvault.net/blog/2022-08-07-state-based-fuzzer-update/",
      "primary_url": "https://hardenedvault.net/blog/2022-08-07-state-based-fuzzer-update/",
      "parent_primary_url": "https://hardenedvault.net/blog/2022-08-07-state-based-fuzzer-update/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-technical-analysis-of-syzkaller-based-fuzzers-it-s-not-about-vaultfuzzer-primary-4792bf20.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Technical analysis of syzkaller based fuzzers: It's not about VaultFuzzer! record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Technical analysis of syzkaller based fuzzers: It's not about VaultFuzzer! resource_label: primary resource_type: article resource_url: https://hardenedvault.net/blog/2022-08-07-state-based-fuzzer-update/ parent_primary_url: https://hardenedvault.net/blog/2022-08-07-state-based-fuzzer-update/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"Technical analysis of syzkaller based fuzzers: It's not about VaultFuzzer!\"](https://hardenedvault.net/blog/2022-08-07-state-based-fuzzer-update/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://hardenedvault.net/blog/2022-08-07-state-based-fuzzer-update/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://hardenedvault.net/blog/2022-08-07-state-based-fuzzer-update/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "syzkaller",
        "analysis"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article analyzes syzkaller-based fuzzers and their effectiveness.",
      "summary_zh": "本文分析了基于syzkaller的模糊测试工具及其有效性。",
      "source_markdown": "[2022: \"Technical analysis of syzkaller based fuzzers: It's not about VaultFuzzer!\"](https://hardenedvault.net/blog/2022-08-07-state-based-fuzzer-update/) [article]",
      "search_text": "technical analysis of syzkaller based fuzzers: it's not about vaultfuzzer! technical analysis of syzkaller based fuzzers: it's not about vaultfuzzer!    finding bugs  finding bugs primary article https://hardenedvault.net/blog/2022-08-07-state-based-fuzzer-update/ fuzzing syzkaller analysis  defensive research this article analyzes syzkaller-based fuzzers and their effectiveness. 本文分析了基于syzkaller的模糊测试工具及其有效性。 # technical analysis of syzkaller based fuzzers: it's not about vaultfuzzer! record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: technical analysis of syzkaller based fuzzers: it's not about vaultfuzzer! resource_label: primary resource_type: article resource_url: https://hardenedvault.net/blog/2022-08-07-state-based-fuzzer-update/ parent_primary_url: https://hardenedvault.net/blog/2022-08-07-state-based-fuzzer-update/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"technical analysis of syzkaller based fuzzers: it's not about vaultfuzzer!\"](https://hardenedvault.net/blog/2022-08-07-state-based-fuzzer-update/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "db989687ea6ceeef",
      "item_id": "43587b769025e226",
      "slug": "2022-finding-bugs-grebe-unveiling-exploitation-potential-for-linux-kernel-bugs-primary-ad7f8e24",
      "year": 2022,
      "title": "GREBE: Unveiling Exploitation Potential for Linux Kernel Bugs",
      "item_title": "GREBE: Unveiling Exploitation Potential for Linux Kernel Bugs",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://zplin.me/papers/GREBE.pdf",
      "primary_url": "https://zplin.me/papers/GREBE.pdf",
      "parent_primary_url": "https://zplin.me/papers/GREBE.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-grebe-unveiling-exploitation-potential-for-linux-kernel-bugs-primary-ad7f8e24.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# GREBE: Unveiling Exploitation Potential for Linux Kernel Bugs record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: GREBE: Unveiling Exploitation Potential for Linux Kernel Bugs resource_label: primary resource_type: paper resource_url: https://zplin.me/papers/GREBE.pdf parent_primary_url: https://zplin.me/papers/GREBE.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"GREBE: Unveiling Exploitation Potential for Linux Kernel Bugs\"](https://zplin.me/papers/GREBE.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_url",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://zplin.me/papers/GREBE.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://zplin.me/papers/GREBE.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "kernel",
        "bugs"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "GREBE unveils the exploitation potential of Linux kernel bugs.",
      "summary_zh": "GREBE揭示了Linux内核漏洞的利用潜力。",
      "source_markdown": "[2022: \"GREBE: Unveiling Exploitation Potential for Linux Kernel Bugs\"](https://zplin.me/papers/GREBE.pdf) [paper]",
      "search_text": "grebe: unveiling exploitation potential for linux kernel bugs grebe: unveiling exploitation potential for linux kernel bugs    finding bugs  finding bugs primary paper https://zplin.me/papers/grebe.pdf exploitation kernel bugs  defensive research grebe unveils the exploitation potential of linux kernel bugs. grebe揭示了linux内核漏洞的利用潜力。 # grebe: unveiling exploitation potential for linux kernel bugs record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: grebe: unveiling exploitation potential for linux kernel bugs resource_label: primary resource_type: paper resource_url: https://zplin.me/papers/grebe.pdf parent_primary_url: https://zplin.me/papers/grebe.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"grebe: unveiling exploitation potential for linux kernel bugs\"](https://zplin.me/papers/grebe.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_url no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d4b534b7e11d8ad8",
      "item_id": "7746f0f6dd47f713",
      "slug": "2022-finding-bugs-an-in-depth-analysis-of-duplicated-linux-kernel-bug-reports-primary-a246f882",
      "year": 2022,
      "title": "An In-depth Analysis of Duplicated Linux Kernel Bug Reports",
      "item_title": "An In-depth Analysis of Duplicated Linux Kernel Bug Reports",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://zplin.me/papers/bug_analysis.pdf",
      "primary_url": "https://zplin.me/papers/bug_analysis.pdf",
      "parent_primary_url": "https://zplin.me/papers/bug_analysis.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-an-in-depth-analysis-of-duplicated-linux-kernel-bug-reports-primary-a246f882.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An In-depth Analysis of Duplicated Linux Kernel Bug Reports record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: An In-depth Analysis of Duplicated Linux Kernel Bug Reports resource_label: primary resource_type: paper resource_url: https://zplin.me/papers/bug_analysis.pdf parent_primary_url: https://zplin.me/papers/bug_analysis.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"An In-depth Analysis of Duplicated Linux Kernel Bug Reports\"](https://zplin.me/papers/bug_analysis.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link:",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://zplin.me/papers/bug_analysis.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://zplin.me/papers/bug_analysis.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bug analysis",
        "kernel",
        "reporting"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper provides an in-depth analysis of duplicated Linux kernel bug reports.",
      "summary_zh": "本文深入分析了重复的Linux内核错误报告。",
      "source_markdown": "[2022: \"An In-depth Analysis of Duplicated Linux Kernel Bug Reports\"](https://zplin.me/papers/bug_analysis.pdf) [paper]",
      "search_text": "an in-depth analysis of duplicated linux kernel bug reports an in-depth analysis of duplicated linux kernel bug reports    finding bugs  finding bugs primary paper https://zplin.me/papers/bug_analysis.pdf bug analysis kernel reporting  defensive research this paper provides an in-depth analysis of duplicated linux kernel bug reports. 本文深入分析了重复的linux内核错误报告。 # an in-depth analysis of duplicated linux kernel bug reports record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: an in-depth analysis of duplicated linux kernel bug reports resource_label: primary resource_type: paper resource_url: https://zplin.me/papers/bug_analysis.pdf parent_primary_url: https://zplin.me/papers/bug_analysis.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"an in-depth analysis of duplicated linux kernel bug reports\"](https://zplin.me/papers/bug_analysis.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "96a2f30b4388c2e9",
      "item_id": "ea10d672274c849b",
      "slug": "2022-finding-bugs-looking-for-remote-code-execution-bugs-in-the-linux-kernel-primary-0a113f87",
      "year": 2022,
      "title": "Looking for Remote Code Execution bugs in the Linux kernel",
      "item_title": "Looking for Remote Code Execution bugs in the Linux kernel",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://xairy.io/articles/syzkaller-external-network",
      "primary_url": "https://xairy.io/articles/syzkaller-external-network",
      "parent_primary_url": "https://xairy.io/articles/syzkaller-external-network",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-looking-for-remote-code-execution-bugs-in-the-linux-kernel-primary-0a113f87.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Looking for Remote Code Execution bugs in the Linux kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Looking for Remote Code Execution bugs in the Linux kernel resource_label: primary resource_type: article resource_url: https://xairy.io/articles/syzkaller-external-network parent_primary_url: https://xairy.io/articles/syzkaller-external-network source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"Looking for Remote Code Execution bugs in the Linux kernel\" by Andrey Konovalov](https://xairy.io/articles/syzkaller-external-network) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather tha",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://xairy.io/articles/syzkaller-external-network"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://xairy.io/articles/syzkaller-external-network"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "remote code execution",
        "kernel",
        "bug hunting"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "The article discusses methods for finding remote code execution bugs in the Linux kernel.",
      "summary_zh": "本文讨论了在Linux内核中寻找远程代码执行漏洞的方法。",
      "source_markdown": "[2022: \"Looking for Remote Code Execution bugs in the Linux kernel\" by Andrey Konovalov](https://xairy.io/articles/syzkaller-external-network) [article]",
      "search_text": "looking for remote code execution bugs in the linux kernel looking for remote code execution bugs in the linux kernel andrey konovalov   finding bugs  finding bugs primary article https://xairy.io/articles/syzkaller-external-network remote code execution kernel bug hunting  defensive research the article discusses methods for finding remote code execution bugs in the linux kernel. 本文讨论了在linux内核中寻找远程代码执行漏洞的方法。 # looking for remote code execution bugs in the linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: looking for remote code execution bugs in the linux kernel resource_label: primary resource_type: article resource_url: https://xairy.io/articles/syzkaller-external-network parent_primary_url: https://xairy.io/articles/syzkaller-external-network source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"looking for remote code execution bugs in the linux kernel\" by andrey konovalov](https://xairy.io/articles/syzkaller-external-network) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather tha no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "daaa7551536c8bc1",
      "item_id": "bd9b06bfe23b0374",
      "slug": "2022-finding-bugs-progressive-scrutiny-incremental-detection-of-ubi-bugs-in-the-linux-kernel-primary-99994384",
      "year": 2022,
      "title": "Progressive Scrutiny: Incremental Detection of UBI bugs in the Linux Kernel",
      "item_title": "Progressive Scrutiny: Incremental Detection of UBI bugs in the Linux Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.ndss-symposium.org/wp-content/uploads/2022-380-paper.pdf",
      "primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2022-380-paper.pdf",
      "parent_primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2022-380-paper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-progressive-scrutiny-incremental-detection-of-ubi-bugs-in-the-linux-kernel-primary-99994384.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Progressive Scrutiny: Incremental Detection of UBI bugs in the Linux Kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Progressive Scrutiny: Incremental Detection of UBI bugs in the Linux Kernel resource_label: primary resource_type: paper resource_url: https://www.ndss-symposium.org/wp-content/uploads/2022-380-paper.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2022-380-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"Progressive Scrutiny: Incremental Detection of UBI bugs in the Linux Kernel\"](https://www.ndss-symposium.org/wp-content/uploads/2022-380-paper.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/2022-380-paper.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/2022-380-paper.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "UBI",
        "detection",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Progressive Scrutiny presents a method for incremental detection of UBI bugs in the Linux kernel.",
      "summary_zh": "Progressive Scrutiny提出了一种逐步检测Linux内核中UBI漏洞的方法。",
      "source_markdown": "[2022: \"Progressive Scrutiny: Incremental Detection of UBI bugs in the Linux Kernel\"](https://www.ndss-symposium.org/wp-content/uploads/2022-380-paper.pdf) [paper]",
      "search_text": "progressive scrutiny: incremental detection of ubi bugs in the linux kernel progressive scrutiny: incremental detection of ubi bugs in the linux kernel    finding bugs  finding bugs primary paper https://www.ndss-symposium.org/wp-content/uploads/2022-380-paper.pdf ubi detection kernel  defensive research progressive scrutiny presents a method for incremental detection of ubi bugs in the linux kernel. progressive scrutiny提出了一种逐步检测linux内核中ubi漏洞的方法。 # progressive scrutiny: incremental detection of ubi bugs in the linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: progressive scrutiny: incremental detection of ubi bugs in the linux kernel resource_label: primary resource_type: paper resource_url: https://www.ndss-symposium.org/wp-content/uploads/2022-380-paper.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2022-380-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"progressive scrutiny: incremental detection of ubi bugs in the linux kernel\"](https://www.ndss-symposium.org/wp-content/uploads/2022-380-paper.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "570ec47fd0ced563",
      "item_id": "4fa23552f32408ae",
      "slug": "2022-finding-bugs-syzkaller-diving-01-learn-basic-kcov-and-how-fuzzer-adopts-it-primary-3821a0ea",
      "year": 2022,
      "title": "Syzkaller diving 01: Learn basic KCOV and how fuzzer adopts it",
      "item_title": "Syzkaller diving 01: Learn basic KCOV and how fuzzer adopts it",
      "authors": [
        "f0rm2l1n"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://f0rm2l1n.github.io/2021-02-02-syzkaller-diving-01/",
      "primary_url": "https://f0rm2l1n.github.io/2021-02-02-syzkaller-diving-01/",
      "parent_primary_url": "https://f0rm2l1n.github.io/2021-02-02-syzkaller-diving-01/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-syzkaller-diving-01-learn-basic-kcov-and-how-fuzzer-adopts-it-primary-3821a0ea.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Syzkaller diving 01: Learn basic KCOV and how fuzzer adopts it record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Syzkaller diving 01: Learn basic KCOV and how fuzzer adopts it resource_label: primary resource_type: article resource_url: https://f0rm2l1n.github.io/2021-02-02-syzkaller-diving-01/ parent_primary_url: https://f0rm2l1n.github.io/2021-02-02-syzkaller-diving-01/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"Syzkaller diving 01: Learn basic KCOV and how fuzzer adopts it\" by f0rm2l1n](https://f0rm2l1n.github.io/2021-02-02-syzkaller-diving-01/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://f0rm2l1n.github.io/2021-02-02-syzkaller-diving-01/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://f0rm2l1n.github.io/2021-02-02-syzkaller-diving-01/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://f0rm2l1n.github.io/2021-02-02-syzkaller-diving-01/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KCOV",
        "fuzzing",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article explains the basics of KCOV and its adoption in fuzzing.",
      "summary_zh": "本文解释了KCOV的基础知识及其在模糊测试中的应用。",
      "source_markdown": "[2022: \"Syzkaller diving 01: Learn basic KCOV and how fuzzer adopts it\" by f0rm2l1n](https://f0rm2l1n.github.io/2021-02-02-syzkaller-diving-01/) [article]",
      "search_text": "syzkaller diving 01: learn basic kcov and how fuzzer adopts it syzkaller diving 01: learn basic kcov and how fuzzer adopts it f0rm2l1n   finding bugs  finding bugs primary article https://f0rm2l1n.github.io/2021-02-02-syzkaller-diving-01/ kcov fuzzing kernel  defensive research this article explains the basics of kcov and its adoption in fuzzing. 本文解释了kcov的基础知识及其在模糊测试中的应用。 # syzkaller diving 01: learn basic kcov and how fuzzer adopts it record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzkaller diving 01: learn basic kcov and how fuzzer adopts it resource_label: primary resource_type: article resource_url: https://f0rm2l1n.github.io/2021-02-02-syzkaller-diving-01/ parent_primary_url: https://f0rm2l1n.github.io/2021-02-02-syzkaller-diving-01/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"syzkaller diving 01: learn basic kcov and how fuzzer adopts it\" by f0rm2l1n](https://f0rm2l1n.github.io/2021-02-02-syzkaller-diving-01/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "5b7ab14e581069bc",
      "item_id": "f9fa2cbdc81c75ae",
      "slug": "2022-finding-bugs-syzkaller-diving-02-how-syzkaller-describe-syscalls-primary-5e5daf43",
      "year": 2022,
      "title": "Syzkaller diving 02: How syzkaller describe syscalls",
      "item_title": "Syzkaller diving 02: How syzkaller describe syscalls",
      "authors": [
        "f0rm2l1n"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://f0rm2l1n.github.io/2021-02-04-syzkaller-diving-02/",
      "primary_url": "https://f0rm2l1n.github.io/2021-02-04-syzkaller-diving-02/",
      "parent_primary_url": "https://f0rm2l1n.github.io/2021-02-04-syzkaller-diving-02/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-syzkaller-diving-02-how-syzkaller-describe-syscalls-primary-5e5daf43.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Syzkaller diving 02: How syzkaller describe syscalls record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Syzkaller diving 02: How syzkaller describe syscalls resource_label: primary resource_type: article resource_url: https://f0rm2l1n.github.io/2021-02-04-syzkaller-diving-02/ parent_primary_url: https://f0rm2l1n.github.io/2021-02-04-syzkaller-diving-02/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"Syzkaller diving 02: How syzkaller describe syscalls\" by f0rm2l1n](https://f0rm2l1n.github.io/2021-02-04-syzkaller-diving-02/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux.",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://f0rm2l1n.github.io/2021-02-04-syzkaller-diving-02/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://f0rm2l1n.github.io/2021-02-04-syzkaller-diving-02/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://f0rm2l1n.github.io/2021-02-04-syzkaller-diving-02/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "syscalls",
        "fuzzing",
        "syzkaller"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "The article describes how syzkaller describes syscalls for fuzzing purposes.",
      "summary_zh": "本文描述了syzkaller如何为模糊测试描述系统调用。",
      "source_markdown": "[2022: \"Syzkaller diving 02: How syzkaller describe syscalls\" by f0rm2l1n](https://f0rm2l1n.github.io/2021-02-04-syzkaller-diving-02/) [article]",
      "search_text": "syzkaller diving 02: how syzkaller describe syscalls syzkaller diving 02: how syzkaller describe syscalls f0rm2l1n   finding bugs  finding bugs primary article https://f0rm2l1n.github.io/2021-02-04-syzkaller-diving-02/ syscalls fuzzing syzkaller  defensive research the article describes how syzkaller describes syscalls for fuzzing purposes. 本文描述了syzkaller如何为模糊测试描述系统调用。 # syzkaller diving 02: how syzkaller describe syscalls record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzkaller diving 02: how syzkaller describe syscalls resource_label: primary resource_type: article resource_url: https://f0rm2l1n.github.io/2021-02-04-syzkaller-diving-02/ parent_primary_url: https://f0rm2l1n.github.io/2021-02-04-syzkaller-diving-02/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"syzkaller diving 02: how syzkaller describe syscalls\" by f0rm2l1n](https://f0rm2l1n.github.io/2021-02-04-syzkaller-diving-02/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "85671a7ae25307a6",
      "item_id": "b43c35c89092675b",
      "slug": "2022-finding-bugs-syzkaller-diving-03-what-is-the-remote-kcov-primary-7983ac88",
      "year": 2022,
      "title": "Syzkaller diving 03: What is the remote KCOV?",
      "item_title": "Syzkaller diving 03: What is the remote KCOV?",
      "authors": [
        "f0rm2l1n"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://f0rm2l1n.github.io/2021-02-10-syzkaller-diving-03/",
      "primary_url": "https://f0rm2l1n.github.io/2021-02-10-syzkaller-diving-03/",
      "parent_primary_url": "https://f0rm2l1n.github.io/2021-02-10-syzkaller-diving-03/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-syzkaller-diving-03-what-is-the-remote-kcov-primary-7983ac88.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Syzkaller diving 03: What is the remote KCOV? record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Syzkaller diving 03: What is the remote KCOV? resource_label: primary resource_type: article resource_url: https://f0rm2l1n.github.io/2021-02-10-syzkaller-diving-03/ parent_primary_url: https://f0rm2l1n.github.io/2021-02-10-syzkaller-diving-03/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"Syzkaller diving 03: What is the remote KCOV?\" by f0rm2l1n](https://f0rm2l1n.github.io/2021-02-10-syzkaller-diving-03/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_p",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://f0rm2l1n.github.io/2021-02-10-syzkaller-diving-03/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://f0rm2l1n.github.io/2021-02-10-syzkaller-diving-03/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://f0rm2l1n.github.io/2021-02-10-syzkaller-diving-03/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "remote KCOV",
        "fuzzing",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article explains the concept of remote KCOV in the context of fuzzing.",
      "summary_zh": "本文解释了模糊测试中远程KCOV的概念。",
      "source_markdown": "[2022: \"Syzkaller diving 03: What is the remote KCOV?\" by f0rm2l1n](https://f0rm2l1n.github.io/2021-02-10-syzkaller-diving-03/) [article]",
      "search_text": "syzkaller diving 03: what is the remote kcov? syzkaller diving 03: what is the remote kcov? f0rm2l1n   finding bugs  finding bugs primary article https://f0rm2l1n.github.io/2021-02-10-syzkaller-diving-03/ remote kcov fuzzing kernel  defensive research this article explains the concept of remote kcov in the context of fuzzing. 本文解释了模糊测试中远程kcov的概念。 # syzkaller diving 03: what is the remote kcov? record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzkaller diving 03: what is the remote kcov? resource_label: primary resource_type: article resource_url: https://f0rm2l1n.github.io/2021-02-10-syzkaller-diving-03/ parent_primary_url: https://f0rm2l1n.github.io/2021-02-10-syzkaller-diving-03/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"syzkaller diving 03: what is the remote kcov?\" by f0rm2l1n](https://f0rm2l1n.github.io/2021-02-10-syzkaller-diving-03/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_p no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "62b762cf4835fc4f",
      "item_id": "acb20b573c0b6747",
      "slug": "2022-finding-bugs-case-studies-of-fuzzing-with-xen-primary-6ef18a3d",
      "year": 2022,
      "title": "Case Studies of Fuzzing with Xen",
      "item_title": "Case Studies of Fuzzing with Xen",
      "authors": [
        "Tamas K Lengyel at OffensiveCon"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.slideshare.net/tklengyel/offensivecon2022-case-studies-of-fuzzing-with-xen",
      "primary_url": "https://www.slideshare.net/tklengyel/offensivecon2022-case-studies-of-fuzzing-with-xen",
      "parent_primary_url": "https://www.slideshare.net/tklengyel/offensivecon2022-case-studies-of-fuzzing-with-xen",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2022-finding-bugs-case-studies-of-fuzzing-with-xen-primary-6ef18a3d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Case Studies of Fuzzing with Xen record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Case Studies of Fuzzing with Xen resource_label: primary resource_type: slides resource_url: https://www.slideshare.net/tklengyel/offensivecon2022-case-studies-of-fuzzing-with-xen parent_primary_url: https://www.slideshare.net/tklengyel/offensivecon2022-case-studies-of-fuzzing-with-xen source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"Case Studies of Fuzzing with Xen\" by Tamas K Lengyel at OffensiveCon](https://www.slideshare.net/tklengyel/offensivecon2022-case-studies-of-fuzzing-with-xen) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devi",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.slideshare.net/tklengyel/offensivecon2022-case-studies-of-fuzzing-with-xen"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.slideshare.net/tklengyel/offensivecon2022-case-studies-of-fuzzing-with-xen"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "Xen",
        "case studies"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Case Studies of Fuzzing with Xen presents various case studies on fuzzing techniques.",
      "summary_zh": "《与Xen的模糊测试案例研究》展示了各种模糊测试技术的案例研究。",
      "source_markdown": "[2022: \"Case Studies of Fuzzing with Xen\" by Tamas K Lengyel at OffensiveCon](https://www.slideshare.net/tklengyel/offensivecon2022-case-studies-of-fuzzing-with-xen) [slides]",
      "search_text": "case studies of fuzzing with xen case studies of fuzzing with xen tamas k lengyel at offensivecon   finding bugs  finding bugs primary slides https://www.slideshare.net/tklengyel/offensivecon2022-case-studies-of-fuzzing-with-xen fuzzing xen case studies  defensive research case studies of fuzzing with xen presents various case studies on fuzzing techniques. 《与xen的模糊测试案例研究》展示了各种模糊测试技术的案例研究。 # case studies of fuzzing with xen record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: case studies of fuzzing with xen resource_label: primary resource_type: slides resource_url: https://www.slideshare.net/tklengyel/offensivecon2022-case-studies-of-fuzzing-with-xen parent_primary_url: https://www.slideshare.net/tklengyel/offensivecon2022-case-studies-of-fuzzing-with-xen source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2022: \"case studies of fuzzing with xen\" by tamas k lengyel at offensivecon](https://www.slideshare.net/tklengyel/offensivecon2022-case-studies-of-fuzzing-with-xen) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f3740399ebe01e01",
      "item_id": "28a1258772469bb7",
      "slug": "2021-finding-bugs-rtkaller-state-aware-task-generation-for-rtos-fuzzing-primary-c0276713",
      "year": 2021,
      "title": "Rtkaller: State-aware Task Generation for RTOS Fuzzing",
      "item_title": "Rtkaller: State-aware Task Generation for RTOS Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/emsoft21.pdf",
      "primary_url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/emsoft21.pdf",
      "parent_primary_url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/emsoft21.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-rtkaller-state-aware-task-generation-for-rtos-fuzzing-primary-c0276713.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Rtkaller: State-aware Task Generation for RTOS Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Rtkaller: State-aware Task Generation for RTOS Fuzzing resource_label: primary resource_type: paper resource_url: http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/emsoft21.pdf parent_primary_url: http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/emsoft21.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Rtkaller: State-aware Task Generation for RTOS Fuzzing\"](http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/emsoft21.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/emsoft21.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/emsoft21.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "RTOS",
        "fuzzing",
        "task generation"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Rtkaller focuses on state-aware task generation for RTOS fuzzing.",
      "summary_zh": "Rtkaller专注于为RTOS模糊测试生成状态感知任务。",
      "source_markdown": "[2021: \"Rtkaller: State-aware Task Generation for RTOS Fuzzing\"](http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/emsoft21.pdf) [paper]",
      "search_text": "rtkaller: state-aware task generation for rtos fuzzing rtkaller: state-aware task generation for rtos fuzzing    finding bugs  finding bugs primary paper http://www.wingtecher.com/themes/wingtecherresearch/assets/papers/emsoft21.pdf rtos fuzzing task generation  defensive research rtkaller focuses on state-aware task generation for rtos fuzzing. rtkaller专注于为rtos模糊测试生成状态感知任务。 # rtkaller: state-aware task generation for rtos fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: rtkaller: state-aware task generation for rtos fuzzing resource_label: primary resource_type: paper resource_url: http://www.wingtecher.com/themes/wingtecherresearch/assets/papers/emsoft21.pdf parent_primary_url: http://www.wingtecher.com/themes/wingtecherresearch/assets/papers/emsoft21.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"rtkaller: state-aware task generation for rtos fuzzing\"](http://www.wingtecher.com/themes/wingtecherresearch/assets/papers/emsoft21.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "21e55c4146544072",
      "item_id": "b046027a431832b3",
      "slug": "2021-finding-bugs-bsod-binary-only-scalable-fuzzing-of-device-drivers-primary-dc07158a",
      "year": 2021,
      "title": "BSOD: Binary-only Scalable fuzzing Of device Drivers",
      "item_title": "BSOD: Binary-only Scalable fuzzing Of device Drivers",
      "authors": [
        "Fabian Toepfer",
        "Dominik Maier"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://dmnk.co/raid21-bsod.pdf",
      "primary_url": "https://dmnk.co/raid21-bsod.pdf",
      "parent_primary_url": "https://dmnk.co/raid21-bsod.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-bsod-binary-only-scalable-fuzzing-of-device-drivers-primary-dc07158a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BSOD: Binary-only Scalable fuzzing Of device Drivers record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: BSOD: Binary-only Scalable fuzzing Of device Drivers resource_label: primary resource_type: paper resource_url: https://dmnk.co/raid21-bsod.pdf parent_primary_url: https://dmnk.co/raid21-bsod.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"BSOD: Binary-only Scalable fuzzing Of device Drivers\" by Fabian Toepfer and Dominik Maier](https://dmnk.co/raid21-bsod.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://dmnk.co/raid21-bsod.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://dmnk.co/raid21-bsod.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "device drivers",
        "scalability"
      ],
      "affected_area": "drivers",
      "exploit_stage": "defensive research",
      "summary_en": "BSOD discusses scalable fuzzing techniques for binary-only device drivers.",
      "summary_zh": "BSOD讨论了针对二进制设备驱动的可扩展模糊测试技术。",
      "source_markdown": "[2021: \"BSOD: Binary-only Scalable fuzzing Of device Drivers\" by Fabian Toepfer and Dominik Maier](https://dmnk.co/raid21-bsod.pdf) [paper]",
      "search_text": "bsod: binary-only scalable fuzzing of device drivers bsod: binary-only scalable fuzzing of device drivers fabian toepfer dominik maier   finding bugs  finding bugs primary paper https://dmnk.co/raid21-bsod.pdf fuzzing device drivers scalability drivers defensive research bsod discusses scalable fuzzing techniques for binary-only device drivers. bsod讨论了针对二进制设备驱动的可扩展模糊测试技术。 # bsod: binary-only scalable fuzzing of device drivers record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: bsod: binary-only scalable fuzzing of device drivers resource_label: primary resource_type: paper resource_url: https://dmnk.co/raid21-bsod.pdf parent_primary_url: https://dmnk.co/raid21-bsod.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"bsod: binary-only scalable fuzzing of device drivers\" by fabian toepfer and dominik maier](https://dmnk.co/raid21-bsod.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "38e785fddbf9a4d2",
      "item_id": "9a8bc7ffdc904f80",
      "slug": "2021-finding-bugs-linkrid-vetting-imbalance-reference-counting-in-linux-kernel-with-symbolic-execution-at-usen",
      "year": 2021,
      "title": "LinKRID: Vetting Imbalance Reference Counting in Linux kernel with Symbolic Execution\" at USENIX",
      "item_title": "LinKRID: Vetting Imbalance Reference Counting in Linux kernel with Symbolic Execution\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec22summer_liu-jian.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec22summer_liu-jian.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec22summer_liu-jian.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-linkrid-vetting-imbalance-reference-counting-in-linux-kernel-with-symbolic-execution-at-usen.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# LinKRID: Vetting Imbalance Reference Counting in Linux kernel with Symbolic Execution\" at USENIX record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: LinKRID: Vetting Imbalance Reference Counting in Linux kernel with Symbolic Execution\" at USENIX resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec22summer_liu-jian.pdf parent_primary_url: https://www.usenix.org/system/files/sec22summer_liu-jian.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"LinKRID: Vetting Imbalance Reference Counting in Linux kernel with Symbolic Execution\" at USENIX](https://www.usenix.org/system/files/sec22summer_liu-jian.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec22_slides-liu_jian.pdf)] cves: none android_impact_status: no androi",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec22summer_liu-jian.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec22_slides-liu_jian.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec22summer_liu-jian.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec22_slides-liu_jian.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "symbolic execution",
        "reference counting",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "LinKRID utilizes symbolic execution to vet imbalance reference counting in the Linux kernel.",
      "summary_zh": "LinKRID利用符号执行来检查Linux内核中的不平衡引用计数。",
      "source_markdown": "[2021: \"LinKRID: Vetting Imbalance Reference Counting in Linux kernel with Symbolic Execution\" at USENIX](https://www.usenix.org/system/files/sec22summer_liu-jian.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec22_slides-liu_jian.pdf)]",
      "search_text": "linkrid: vetting imbalance reference counting in linux kernel with symbolic execution\" at usenix linkrid: vetting imbalance reference counting in linux kernel with symbolic execution\" at usenix    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/sec22summer_liu-jian.pdf symbolic execution reference counting kernel  defensive research linkrid utilizes symbolic execution to vet imbalance reference counting in the linux kernel. linkrid利用符号执行来检查linux内核中的不平衡引用计数。 # linkrid: vetting imbalance reference counting in linux kernel with symbolic execution\" at usenix record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: linkrid: vetting imbalance reference counting in linux kernel with symbolic execution\" at usenix resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec22summer_liu-jian.pdf parent_primary_url: https://www.usenix.org/system/files/sec22summer_liu-jian.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"linkrid: vetting imbalance reference counting in linux kernel with symbolic execution\" at usenix](https://www.usenix.org/system/files/sec22summer_liu-jian.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec22_slides-liu_jian.pdf)] cves: none android_impact_status: no androi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9ea1be48faf1b1d8",
      "item_id": "9a8bc7ffdc904f80",
      "slug": "2021-finding-bugs-linkrid-vetting-imbalance-reference-counting-in-linux-kernel-with-symbolic-execution-at-usen-2",
      "year": 2021,
      "title": "LinKRID: Vetting Imbalance Reference Counting in Linux kernel with Symbolic Execution\" at USENIX · slides",
      "item_title": "LinKRID: Vetting Imbalance Reference Counting in Linux kernel with Symbolic Execution\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/sec22_slides-liu_jian.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec22_slides-liu_jian.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec22summer_liu-jian.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-linkrid-vetting-imbalance-reference-counting-in-linux-kernel-with-symbolic-execution-at-usen-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# LinKRID: Vetting Imbalance Reference Counting in Linux kernel with Symbolic Execution\" at USENIX · slides record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: LinKRID: Vetting Imbalance Reference Counting in Linux kernel with Symbolic Execution\" at USENIX resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec22_slides-liu_jian.pdf parent_primary_url: https://www.usenix.org/system/files/sec22summer_liu-jian.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"LinKRID: Vetting Imbalance Reference Counting in Linux kernel with Symbolic Execution\" at USENIX](https://www.usenix.org/system/files/sec22summer_liu-jian.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec22_slides-liu_jian.pdf)] cves: none android_impact_status:",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec22summer_liu-jian.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec22_slides-liu_jian.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec22summer_liu-jian.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec22_slides-liu_jian.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "symbolic_execution",
        "reference_counting"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "LinKRID uses symbolic execution to identify imbalance reference counting issues in the Linux kernel.",
      "summary_zh": "LinKRID利用符号执行识别Linux内核中的不平衡引用计数问题。",
      "source_markdown": "[2021: \"LinKRID: Vetting Imbalance Reference Counting in Linux kernel with Symbolic Execution\" at USENIX](https://www.usenix.org/system/files/sec22summer_liu-jian.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec22_slides-liu_jian.pdf)]",
      "search_text": "linkrid: vetting imbalance reference counting in linux kernel with symbolic execution\" at usenix · slides linkrid: vetting imbalance reference counting in linux kernel with symbolic execution\" at usenix    finding bugs  finding bugs slides slides https://www.usenix.org/system/files/sec22_slides-liu_jian.pdf symbolic_execution reference_counting  research linkrid uses symbolic execution to identify imbalance reference counting issues in the linux kernel. linkrid利用符号执行识别linux内核中的不平衡引用计数问题。 # linkrid: vetting imbalance reference counting in linux kernel with symbolic execution\" at usenix · slides record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: linkrid: vetting imbalance reference counting in linux kernel with symbolic execution\" at usenix resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec22_slides-liu_jian.pdf parent_primary_url: https://www.usenix.org/system/files/sec22summer_liu-jian.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"linkrid: vetting imbalance reference counting in linux kernel with symbolic execution\" at usenix](https://www.usenix.org/system/files/sec22summer_liu-jian.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec22_slides-liu_jian.pdf)] cves: none android_impact_status: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9ab52416c8956b82",
      "item_id": "0b296f4ccc3e16a2",
      "slug": "2021-finding-bugs-an-analysis-of-speculative-type-confusion-vulnerabilities-in-the-wild-at-usenix-primary-01a4",
      "year": 2021,
      "title": "An Analysis of Speculative Type Confusion Vulnerabilities in the Wild\" at USENIX",
      "item_title": "An Analysis of Speculative Type Confusion Vulnerabilities in the Wild\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec21-kirzner.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec21-kirzner.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-kirzner.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-an-analysis-of-speculative-type-confusion-vulnerabilities-in-the-wild-at-usenix-primary-01a4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An Analysis of Speculative Type Confusion Vulnerabilities in the Wild\" at USENIX record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: An Analysis of Speculative Type Confusion Vulnerabilities in the Wild\" at USENIX resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec21-kirzner.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-kirzner.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"An Analysis of Speculative Type Confusion Vulnerabilities in the Wild\" at USENIX](https://www.usenix.org/system/files/sec21-kirzner.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_kirzner.pdf)] [[video](https://www.youtube.com/watch?v=Gxv6LcabKrg)] cves: none android_impact_status: no android_impact_reason",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-kirzner.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_kirzner.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Gxv6LcabKrg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-kirzner.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_kirzner.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Gxv6LcabKrg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "type_confusion",
        "speculative_execution"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This analysis explores speculative type confusion vulnerabilities found in real-world scenarios.",
      "summary_zh": "该分析探讨了在现实场景中发现的投机类型混淆漏洞。",
      "source_markdown": "[2021: \"An Analysis of Speculative Type Confusion Vulnerabilities in the Wild\" at USENIX](https://www.usenix.org/system/files/sec21-kirzner.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_kirzner.pdf)] [[video](https://www.youtube.com/watch?v=Gxv6LcabKrg)]",
      "search_text": "an analysis of speculative type confusion vulnerabilities in the wild\" at usenix an analysis of speculative type confusion vulnerabilities in the wild\" at usenix    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/sec21-kirzner.pdf type_confusion speculative_execution  research this analysis explores speculative type confusion vulnerabilities found in real-world scenarios. 该分析探讨了在现实场景中发现的投机类型混淆漏洞。 # an analysis of speculative type confusion vulnerabilities in the wild\" at usenix record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: an analysis of speculative type confusion vulnerabilities in the wild\" at usenix resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec21-kirzner.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-kirzner.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"an analysis of speculative type confusion vulnerabilities in the wild\" at usenix](https://www.usenix.org/system/files/sec21-kirzner.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_kirzner.pdf)] [[video](https://www.youtube.com/watch?v=gxv6lcabkrg)] cves: none android_impact_status: no android_impact_reason no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "db5e17643c28aba1",
      "item_id": "0b296f4ccc3e16a2",
      "slug": "2021-finding-bugs-an-analysis-of-speculative-type-confusion-vulnerabilities-in-the-wild-at-usenix-slides-89fe2",
      "year": 2021,
      "title": "An Analysis of Speculative Type Confusion Vulnerabilities in the Wild\" at USENIX · slides",
      "item_title": "An Analysis of Speculative Type Confusion Vulnerabilities in the Wild\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/sec21_slides_kirzner.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec21_slides_kirzner.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-kirzner.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-an-analysis-of-speculative-type-confusion-vulnerabilities-in-the-wild-at-usenix-slides-89fe2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An Analysis of Speculative Type Confusion Vulnerabilities in the Wild\" at USENIX · slides record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: An Analysis of Speculative Type Confusion Vulnerabilities in the Wild\" at USENIX resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec21_slides_kirzner.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-kirzner.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"An Analysis of Speculative Type Confusion Vulnerabilities in the Wild\" at USENIX](https://www.usenix.org/system/files/sec21-kirzner.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_kirzner.pdf)] [[video](https://www.youtube.com/watch?v=Gxv6LcabKrg)] cves: none android_impact_status: no andro",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-kirzner.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_kirzner.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Gxv6LcabKrg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-kirzner.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_kirzner.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Gxv6LcabKrg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "type_confusion",
        "speculative_execution"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Slides discussing the analysis of speculative type confusion vulnerabilities in the wild.",
      "summary_zh": "讨论现实中投机类型混淆漏洞分析的幻灯片。",
      "source_markdown": "[2021: \"An Analysis of Speculative Type Confusion Vulnerabilities in the Wild\" at USENIX](https://www.usenix.org/system/files/sec21-kirzner.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_kirzner.pdf)] [[video](https://www.youtube.com/watch?v=Gxv6LcabKrg)]",
      "search_text": "an analysis of speculative type confusion vulnerabilities in the wild\" at usenix · slides an analysis of speculative type confusion vulnerabilities in the wild\" at usenix    finding bugs  finding bugs slides slides https://www.usenix.org/system/files/sec21_slides_kirzner.pdf type_confusion speculative_execution  research slides discussing the analysis of speculative type confusion vulnerabilities in the wild. 讨论现实中投机类型混淆漏洞分析的幻灯片。 # an analysis of speculative type confusion vulnerabilities in the wild\" at usenix · slides record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: an analysis of speculative type confusion vulnerabilities in the wild\" at usenix resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec21_slides_kirzner.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-kirzner.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"an analysis of speculative type confusion vulnerabilities in the wild\" at usenix](https://www.usenix.org/system/files/sec21-kirzner.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_kirzner.pdf)] [[video](https://www.youtube.com/watch?v=gxv6lcabkrg)] cves: none android_impact_status: no andro no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b9bc6ec697b49ef2",
      "item_id": "0b296f4ccc3e16a2",
      "slug": "2021-finding-bugs-an-analysis-of-speculative-type-confusion-vulnerabilities-in-the-wild-at-usenix-video-af3c53",
      "year": 2021,
      "title": "An Analysis of Speculative Type Confusion Vulnerabilities in the Wild\" at USENIX · video",
      "item_title": "An Analysis of Speculative Type Confusion Vulnerabilities in the Wild\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=Gxv6LcabKrg",
      "primary_url": "https://www.youtube.com/watch?v=Gxv6LcabKrg",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-kirzner.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-an-analysis-of-speculative-type-confusion-vulnerabilities-in-the-wild-at-usenix-video-af3c53.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An Analysis of Speculative Type Confusion Vulnerabilities in the Wild\" at USENIX · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: An Analysis of Speculative Type Confusion Vulnerabilities in the Wild\" at USENIX resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=Gxv6LcabKrg parent_primary_url: https://www.usenix.org/system/files/sec21-kirzner.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"An Analysis of Speculative Type Confusion Vulnerabilities in the Wild\" at USENIX](https://www.usenix.org/system/files/sec21-kirzner.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_kirzner.pdf)] [[video](https://www.youtube.com/watch?v=Gxv6LcabKrg)] cves: none android_impact_status: no android_impact_reason: No",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-kirzner.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_kirzner.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Gxv6LcabKrg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-kirzner.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_kirzner.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Gxv6LcabKrg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "type_confusion",
        "speculative_execution"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Video presentation on the analysis of speculative type confusion vulnerabilities in the wild.",
      "summary_zh": "关于现实中投机类型混淆漏洞分析的视频演示。",
      "source_markdown": "[2021: \"An Analysis of Speculative Type Confusion Vulnerabilities in the Wild\" at USENIX](https://www.usenix.org/system/files/sec21-kirzner.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_kirzner.pdf)] [[video](https://www.youtube.com/watch?v=Gxv6LcabKrg)]",
      "search_text": "an analysis of speculative type confusion vulnerabilities in the wild\" at usenix · video an analysis of speculative type confusion vulnerabilities in the wild\" at usenix    finding bugs  finding bugs video video https://www.youtube.com/watch?v=gxv6lcabkrg type_confusion speculative_execution  research video presentation on the analysis of speculative type confusion vulnerabilities in the wild. 关于现实中投机类型混淆漏洞分析的视频演示。 # an analysis of speculative type confusion vulnerabilities in the wild\" at usenix · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: an analysis of speculative type confusion vulnerabilities in the wild\" at usenix resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=gxv6lcabkrg parent_primary_url: https://www.usenix.org/system/files/sec21-kirzner.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"an analysis of speculative type confusion vulnerabilities in the wild\" at usenix](https://www.usenix.org/system/files/sec21-kirzner.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_kirzner.pdf)] [[video](https://www.youtube.com/watch?v=gxv6lcabkrg)] cves: none android_impact_status: no android_impact_reason: no no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4e88d7872eff6a24",
      "item_id": "8abeca46e642656e",
      "slug": "2021-finding-bugs-syzvegas-beating-kernel-fuzzing-odds-with-reinforcement-learning-at-usenix-primary-964cef29",
      "year": 2021,
      "title": "SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning\" at USENIX",
      "item_title": "SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec21-wang-daimeng.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec21-wang-daimeng.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-wang-daimeng.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-syzvegas-beating-kernel-fuzzing-odds-with-reinforcement-learning-at-usenix-primary-964cef29.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning\" at USENIX record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning\" at USENIX resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec21-wang-daimeng.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-wang-daimeng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning\" at USENIX](https://www.usenix.org/system/files/sec21-wang-daimeng.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf)] [[video](https://www.youtube.com/watch?v=72Ngu3305TU)] cves: none android_impact_status: no android_impac",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-wang-daimeng.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=72Ngu3305TU"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-wang-daimeng.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=72Ngu3305TU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "reinforcement_learning"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "SyzVegas employs reinforcement learning to enhance kernel fuzzing effectiveness.",
      "summary_zh": "SyzVegas利用强化学习提高内核模糊测试的有效性。",
      "source_markdown": "[2021: \"SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning\" at USENIX](https://www.usenix.org/system/files/sec21-wang-daimeng.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf)] [[video](https://www.youtube.com/watch?v=72Ngu3305TU)]",
      "search_text": "syzvegas: beating kernel fuzzing odds with reinforcement learning\" at usenix syzvegas: beating kernel fuzzing odds with reinforcement learning\" at usenix    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/sec21-wang-daimeng.pdf fuzzing reinforcement_learning  research syzvegas employs reinforcement learning to enhance kernel fuzzing effectiveness. syzvegas利用强化学习提高内核模糊测试的有效性。 # syzvegas: beating kernel fuzzing odds with reinforcement learning\" at usenix record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzvegas: beating kernel fuzzing odds with reinforcement learning\" at usenix resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec21-wang-daimeng.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-wang-daimeng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"syzvegas: beating kernel fuzzing odds with reinforcement learning\" at usenix](https://www.usenix.org/system/files/sec21-wang-daimeng.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf)] [[video](https://www.youtube.com/watch?v=72ngu3305tu)] cves: none android_impact_status: no android_impac no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "01ee20a1d98bf3fd",
      "item_id": "8abeca46e642656e",
      "slug": "2021-finding-bugs-syzvegas-beating-kernel-fuzzing-odds-with-reinforcement-learning-at-usenix-slides-6ac11112",
      "year": 2021,
      "title": "SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning\" at USENIX · slides",
      "item_title": "SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-wang-daimeng.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-syzvegas-beating-kernel-fuzzing-odds-with-reinforcement-learning-at-usenix-slides-6ac11112.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning\" at USENIX · slides record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning\" at USENIX resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-wang-daimeng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning\" at USENIX](https://www.usenix.org/system/files/sec21-wang-daimeng.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf)] [[video](https://www.youtube.com/watch?v=72Ngu3305TU)] cves: none android_impact_status: ",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-wang-daimeng.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=72Ngu3305TU"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-wang-daimeng.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=72Ngu3305TU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "reinforcement_learning"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Slides detailing the SyzVegas approach to kernel fuzzing using reinforcement learning.",
      "summary_zh": "详细介绍SyzVegas利用强化学习进行内核模糊测试的幻灯片。",
      "source_markdown": "[2021: \"SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning\" at USENIX](https://www.usenix.org/system/files/sec21-wang-daimeng.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf)] [[video](https://www.youtube.com/watch?v=72Ngu3305TU)]",
      "search_text": "syzvegas: beating kernel fuzzing odds with reinforcement learning\" at usenix · slides syzvegas: beating kernel fuzzing odds with reinforcement learning\" at usenix    finding bugs  finding bugs slides slides https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf fuzzing reinforcement_learning  research slides detailing the syzvegas approach to kernel fuzzing using reinforcement learning. 详细介绍syzvegas利用强化学习进行内核模糊测试的幻灯片。 # syzvegas: beating kernel fuzzing odds with reinforcement learning\" at usenix · slides record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzvegas: beating kernel fuzzing odds with reinforcement learning\" at usenix resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-wang-daimeng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"syzvegas: beating kernel fuzzing odds with reinforcement learning\" at usenix](https://www.usenix.org/system/files/sec21-wang-daimeng.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf)] [[video](https://www.youtube.com/watch?v=72ngu3305tu)] cves: none android_impact_status:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ef71bec2ec5cc442",
      "item_id": "8abeca46e642656e",
      "slug": "2021-finding-bugs-syzvegas-beating-kernel-fuzzing-odds-with-reinforcement-learning-at-usenix-video-df150c8f",
      "year": 2021,
      "title": "SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning\" at USENIX · video",
      "item_title": "SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=72Ngu3305TU",
      "primary_url": "https://www.youtube.com/watch?v=72Ngu3305TU",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-wang-daimeng.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-syzvegas-beating-kernel-fuzzing-odds-with-reinforcement-learning-at-usenix-video-df150c8f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning\" at USENIX · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning\" at USENIX resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=72Ngu3305TU parent_primary_url: https://www.usenix.org/system/files/sec21-wang-daimeng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning\" at USENIX](https://www.usenix.org/system/files/sec21-wang-daimeng.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf)] [[video](https://www.youtube.com/watch?v=72Ngu3305TU)] cves: none android_impact_status: no android_impact_reason:",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-wang-daimeng.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=72Ngu3305TU"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-wang-daimeng.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=72Ngu3305TU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "reinforcement_learning"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Video presentation on the SyzVegas kernel fuzzing method using reinforcement learning.",
      "summary_zh": "关于SyzVegas利用强化学习进行内核模糊测试的方法的视频演示。",
      "source_markdown": "[2021: \"SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning\" at USENIX](https://www.usenix.org/system/files/sec21-wang-daimeng.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf)] [[video](https://www.youtube.com/watch?v=72Ngu3305TU)]",
      "search_text": "syzvegas: beating kernel fuzzing odds with reinforcement learning\" at usenix · video syzvegas: beating kernel fuzzing odds with reinforcement learning\" at usenix    finding bugs  finding bugs video video https://www.youtube.com/watch?v=72ngu3305tu fuzzing reinforcement_learning  research video presentation on the syzvegas kernel fuzzing method using reinforcement learning. 关于syzvegas利用强化学习进行内核模糊测试的方法的视频演示。 # syzvegas: beating kernel fuzzing odds with reinforcement learning\" at usenix · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzvegas: beating kernel fuzzing odds with reinforcement learning\" at usenix resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=72ngu3305tu parent_primary_url: https://www.usenix.org/system/files/sec21-wang-daimeng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"syzvegas: beating kernel fuzzing odds with reinforcement learning\" at usenix](https://www.usenix.org/system/files/sec21-wang-daimeng.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_wang-daimeng.pdf)] [[video](https://www.youtube.com/watch?v=72ngu3305tu)] cves: none android_impact_status: no android_impact_reason: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6cce62064ca12cbf",
      "item_id": "454344bcf1c5b793",
      "slug": "2021-finding-bugs-detecting-kernel-refcount-bugs-with-two-dimensional-consistency-checking-at-usenix-primary-8",
      "year": 2021,
      "title": "Detecting Kernel Refcount Bugs with Two-Dimensional Consistency Checking\" at USENIX",
      "item_title": "Detecting Kernel Refcount Bugs with Two-Dimensional Consistency Checking\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec21-tan.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec21-tan.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-tan.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-detecting-kernel-refcount-bugs-with-two-dimensional-consistency-checking-at-usenix-primary-8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Detecting Kernel Refcount Bugs with Two-Dimensional Consistency Checking\" at USENIX record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Detecting Kernel Refcount Bugs with Two-Dimensional Consistency Checking\" at USENIX resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec21-tan.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-tan.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Detecting Kernel Refcount Bugs with Two-Dimensional Consistency Checking\" at USENIX](https://www.usenix.org/system/files/sec21-tan.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_tan.pdf)] [[video](https://www.youtube.com/watch?v=tUzeuJTzpx4)] cves: none android_impact_status: no android_impact_reason: Not e",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-tan.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_tan.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=tUzeuJTzpx4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-tan.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_tan.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=tUzeuJTzpx4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "reference_counting",
        "consistency_checking"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This paper presents a method for detecting kernel reference count bugs through two-dimensional consistency checking.",
      "summary_zh": "该论文提出了一种通过二维一致性检查检测内核引用计数错误的方法。",
      "source_markdown": "[2021: \"Detecting Kernel Refcount Bugs with Two-Dimensional Consistency Checking\" at USENIX](https://www.usenix.org/system/files/sec21-tan.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_tan.pdf)] [[video](https://www.youtube.com/watch?v=tUzeuJTzpx4)]",
      "search_text": "detecting kernel refcount bugs with two-dimensional consistency checking\" at usenix detecting kernel refcount bugs with two-dimensional consistency checking\" at usenix    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/sec21-tan.pdf reference_counting consistency_checking  research this paper presents a method for detecting kernel reference count bugs through two-dimensional consistency checking. 该论文提出了一种通过二维一致性检查检测内核引用计数错误的方法。 # detecting kernel refcount bugs with two-dimensional consistency checking\" at usenix record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: detecting kernel refcount bugs with two-dimensional consistency checking\" at usenix resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec21-tan.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-tan.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"detecting kernel refcount bugs with two-dimensional consistency checking\" at usenix](https://www.usenix.org/system/files/sec21-tan.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_tan.pdf)] [[video](https://www.youtube.com/watch?v=tuzeujtzpx4)] cves: none android_impact_status: no android_impact_reason: not e no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c5d5878e0c3fb4e7",
      "item_id": "454344bcf1c5b793",
      "slug": "2021-finding-bugs-detecting-kernel-refcount-bugs-with-two-dimensional-consistency-checking-at-usenix-slides-b8",
      "year": 2021,
      "title": "Detecting Kernel Refcount Bugs with Two-Dimensional Consistency Checking\" at USENIX · slides",
      "item_title": "Detecting Kernel Refcount Bugs with Two-Dimensional Consistency Checking\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/sec21_slides_tan.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec21_slides_tan.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-tan.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-detecting-kernel-refcount-bugs-with-two-dimensional-consistency-checking-at-usenix-slides-b8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Detecting Kernel Refcount Bugs with Two-Dimensional Consistency Checking\" at USENIX · slides record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Detecting Kernel Refcount Bugs with Two-Dimensional Consistency Checking\" at USENIX resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec21_slides_tan.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-tan.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Detecting Kernel Refcount Bugs with Two-Dimensional Consistency Checking\" at USENIX](https://www.usenix.org/system/files/sec21-tan.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_tan.pdf)] [[video](https://www.youtube.com/watch?v=tUzeuJTzpx4)] cves: none android_impact_status: no android_impa",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-tan.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_tan.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=tUzeuJTzpx4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-tan.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_tan.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=tUzeuJTzpx4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "reference_counting",
        "consistency_checking"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Slides on detecting kernel reference count bugs using two-dimensional consistency checking.",
      "summary_zh": "关于使用二维一致性检查检测内核引用计数错误的幻灯片。",
      "source_markdown": "[2021: \"Detecting Kernel Refcount Bugs with Two-Dimensional Consistency Checking\" at USENIX](https://www.usenix.org/system/files/sec21-tan.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_tan.pdf)] [[video](https://www.youtube.com/watch?v=tUzeuJTzpx4)]",
      "search_text": "detecting kernel refcount bugs with two-dimensional consistency checking\" at usenix · slides detecting kernel refcount bugs with two-dimensional consistency checking\" at usenix    finding bugs  finding bugs slides slides https://www.usenix.org/system/files/sec21_slides_tan.pdf reference_counting consistency_checking  research slides on detecting kernel reference count bugs using two-dimensional consistency checking. 关于使用二维一致性检查检测内核引用计数错误的幻灯片。 # detecting kernel refcount bugs with two-dimensional consistency checking\" at usenix · slides record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: detecting kernel refcount bugs with two-dimensional consistency checking\" at usenix resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec21_slides_tan.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-tan.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"detecting kernel refcount bugs with two-dimensional consistency checking\" at usenix](https://www.usenix.org/system/files/sec21-tan.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_tan.pdf)] [[video](https://www.youtube.com/watch?v=tuzeujtzpx4)] cves: none android_impact_status: no android_impa no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "47866af0b83243bd",
      "item_id": "454344bcf1c5b793",
      "slug": "2021-finding-bugs-detecting-kernel-refcount-bugs-with-two-dimensional-consistency-checking-at-usenix-video-bf6",
      "year": 2021,
      "title": "Detecting Kernel Refcount Bugs with Two-Dimensional Consistency Checking\" at USENIX · video",
      "item_title": "Detecting Kernel Refcount Bugs with Two-Dimensional Consistency Checking\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=tUzeuJTzpx4",
      "primary_url": "https://www.youtube.com/watch?v=tUzeuJTzpx4",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-tan.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-detecting-kernel-refcount-bugs-with-two-dimensional-consistency-checking-at-usenix-video-bf6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Detecting Kernel Refcount Bugs with Two-Dimensional Consistency Checking\" at USENIX · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Detecting Kernel Refcount Bugs with Two-Dimensional Consistency Checking\" at USENIX resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=tUzeuJTzpx4 parent_primary_url: https://www.usenix.org/system/files/sec21-tan.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Detecting Kernel Refcount Bugs with Two-Dimensional Consistency Checking\" at USENIX](https://www.usenix.org/system/files/sec21-tan.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_tan.pdf)] [[video](https://www.youtube.com/watch?v=tUzeuJTzpx4)] cves: none android_impact_status: no android_impact_reason: Not e",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-tan.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_tan.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=tUzeuJTzpx4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-tan.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_tan.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=tUzeuJTzpx4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "reference_counting",
        "consistency_checking"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Video presentation discussing the detection of kernel reference count bugs with consistency checking.",
      "summary_zh": "讨论通过一致性检查检测内核引用计数错误的视频演示。",
      "source_markdown": "[2021: \"Detecting Kernel Refcount Bugs with Two-Dimensional Consistency Checking\" at USENIX](https://www.usenix.org/system/files/sec21-tan.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_tan.pdf)] [[video](https://www.youtube.com/watch?v=tUzeuJTzpx4)]",
      "search_text": "detecting kernel refcount bugs with two-dimensional consistency checking\" at usenix · video detecting kernel refcount bugs with two-dimensional consistency checking\" at usenix    finding bugs  finding bugs video video https://www.youtube.com/watch?v=tuzeujtzpx4 reference_counting consistency_checking  research video presentation discussing the detection of kernel reference count bugs with consistency checking. 讨论通过一致性检查检测内核引用计数错误的视频演示。 # detecting kernel refcount bugs with two-dimensional consistency checking\" at usenix · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: detecting kernel refcount bugs with two-dimensional consistency checking\" at usenix resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=tuzeujtzpx4 parent_primary_url: https://www.usenix.org/system/files/sec21-tan.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"detecting kernel refcount bugs with two-dimensional consistency checking\" at usenix](https://www.usenix.org/system/files/sec21-tan.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_tan.pdf)] [[video](https://www.youtube.com/watch?v=tuzeujtzpx4)] cves: none android_impact_status: no android_impact_reason: not e no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "332e77c2441dd31e",
      "item_id": "1be2e02bc98ee87d",
      "slug": "2021-finding-bugs-ruffling-the-penguin-how-to-fuzz-the-linux-kernel-primary-b86bc14f",
      "year": 2021,
      "title": "Ruffling the penguin! How to fuzz the Linux kernel",
      "item_title": "Ruffling the penguin! How to fuzz the Linux kernel",
      "authors": [
        "Andrey Konovalov",
        "xakep.ru"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://hackmag.com/security/linux-fuzzing/",
      "primary_url": "https://hackmag.com/security/linux-fuzzing/",
      "parent_primary_url": "https://hackmag.com/security/linux-fuzzing/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-ruffling-the-penguin-how-to-fuzz-the-linux-kernel-primary-b86bc14f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Ruffling the penguin! How to fuzz the Linux kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Ruffling the penguin! How to fuzz the Linux kernel resource_label: primary resource_type: article resource_url: https://hackmag.com/security/linux-fuzzing/ parent_primary_url: https://hackmag.com/security/linux-fuzzing/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Ruffling the penguin! How to fuzz the Linux kernel\" by Andrey Konovalov and xakep.ru](https://hackmag.com/security/linux-fuzzing/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: fals",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://hackmag.com/security/linux-fuzzing/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://hackmag.com/security/linux-fuzzing/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel_testing"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article discusses methods for fuzzing the Linux kernel effectively.",
      "summary_zh": "该文章讨论了有效模糊测试Linux内核的方法。",
      "source_markdown": "[2021: \"Ruffling the penguin! How to fuzz the Linux kernel\" by Andrey Konovalov and xakep.ru](https://hackmag.com/security/linux-fuzzing/) [article]",
      "search_text": "ruffling the penguin! how to fuzz the linux kernel ruffling the penguin! how to fuzz the linux kernel andrey konovalov xakep.ru   finding bugs  finding bugs primary article https://hackmag.com/security/linux-fuzzing/ fuzzing kernel_testing  research this article discusses methods for fuzzing the linux kernel effectively. 该文章讨论了有效模糊测试linux内核的方法。 # ruffling the penguin! how to fuzz the linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: ruffling the penguin! how to fuzz the linux kernel resource_label: primary resource_type: article resource_url: https://hackmag.com/security/linux-fuzzing/ parent_primary_url: https://hackmag.com/security/linux-fuzzing/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"ruffling the penguin! how to fuzz the linux kernel\" by andrey konovalov and xakep.ru](https://hackmag.com/security/linux-fuzzing/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: fals no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b5cf17a2c80b6466",
      "item_id": "418be6010bc9a7a5",
      "slug": "2021-finding-bugs-colafuze-coverage-guided-and-layout-aware-fuzzing-for-android-drivers-primary-f4048970",
      "year": 2021,
      "title": "CoLaFUZE: Coverage-Guided and Layout-Aware Fuzzing for Android Drivers",
      "item_title": "CoLaFUZE: Coverage-Guided and Layout-Aware Fuzzing for Android Drivers",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.jstage.jst.go.jp/article/transinf/E104.D/11/E104.D_2021NGP0005/_pdf",
      "primary_url": "https://www.jstage.jst.go.jp/article/transinf/E104.D/11/E104.D_2021NGP0005/_pdf",
      "parent_primary_url": "https://www.jstage.jst.go.jp/article/transinf/E104.D/11/E104.D_2021NGP0005/_pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-colafuze-coverage-guided-and-layout-aware-fuzzing-for-android-drivers-primary-f4048970.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CoLaFUZE: Coverage-Guided and Layout-Aware Fuzzing for Android Drivers record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: CoLaFUZE: Coverage-Guided and Layout-Aware Fuzzing for Android Drivers resource_label: primary resource_type: paper resource_url: https://www.jstage.jst.go.jp/article/transinf/E104.D/11/E104.D_2021NGP0005/_pdf parent_primary_url: https://www.jstage.jst.go.jp/article/transinf/E104.D/11/E104.D_2021NGP0005/_pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"CoLaFUZE: Coverage-Guided and Layout-Aware Fuzzing for Android Drivers\"](https://www.jstage.jst.go.jp/article/transinf/E104.D/11/E104.D_2021NGP0005/_pdf) [paper] cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-related resource, but production-device vulner",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.jstage.jst.go.jp/article/transinf/E104.D/11/E104.D_2021NGP0005/_pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.jstage.jst.go.jp/article/transinf/E104.D/11/E104.D_2021NGP0005/_pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "android_drivers"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "CoLaFUZE introduces coverage-guided fuzzing techniques specifically for Android drivers.",
      "summary_zh": "CoLaFUZE为Android驱动程序引入了覆盖引导模糊测试技术。",
      "source_markdown": "[2021: \"CoLaFUZE: Coverage-Guided and Layout-Aware Fuzzing for Android Drivers\"](https://www.jstage.jst.go.jp/article/transinf/E104.D/11/E104.D_2021NGP0005/_pdf) [paper]",
      "search_text": "colafuze: coverage-guided and layout-aware fuzzing for android drivers colafuze: coverage-guided and layout-aware fuzzing for android drivers    finding bugs  finding bugs primary paper https://www.jstage.jst.go.jp/article/transinf/e104.d/11/e104.d_2021ngp0005/_pdf fuzzing android_drivers  research colafuze introduces coverage-guided fuzzing techniques specifically for android drivers. colafuze为android驱动程序引入了覆盖引导模糊测试技术。 # colafuze: coverage-guided and layout-aware fuzzing for android drivers record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: colafuze: coverage-guided and layout-aware fuzzing for android drivers resource_label: primary resource_type: paper resource_url: https://www.jstage.jst.go.jp/article/transinf/e104.d/11/e104.d_2021ngp0005/_pdf parent_primary_url: https://www.jstage.jst.go.jp/article/transinf/e104.d/11/e104.d_2021ngp0005/_pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"colafuze: coverage-guided and layout-aware fuzzing for android drivers\"](https://www.jstage.jst.go.jp/article/transinf/e104.d/11/e104.d_2021ngp0005/_pdf) [paper] cves: none android_impact_status: unknown android_impact_reason: mentions android; android-related resource, but production-device vulner unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "32f9960e05558941",
      "item_id": "7cba8d131266e086",
      "slug": "2021-finding-bugs-cvehound-audit-kernel-sources-for-missing-cve-fixes-primary-7438434b",
      "year": 2021,
      "title": "CVEHound: Audit Kernel Sources for Missing CVE Fixes",
      "item_title": "CVEHound: Audit Kernel Sources for Missing CVE Fixes",
      "authors": [
        "Denis Efremov"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes",
      "primary_url": "https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes",
      "parent_primary_url": "https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-cvehound-audit-kernel-sources-for-missing-cve-fixes-primary-7438434b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVEHound: Audit Kernel Sources for Missing CVE Fixes record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: CVEHound: Audit Kernel Sources for Missing CVE Fixes resource_label: primary resource_type: slides resource_url: https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes parent_primary_url: https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"CVEHound: Audit Kernel Sources for Missing CVE Fixes\" by Denis Efremov](https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes) [slides] [[video](https://www.youtube.com/watch?v=jIDnVeZNUA8)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps t",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=jIDnVeZNUA8"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=jIDnVeZNUA8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "audit",
        "CVE"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "CVEHound audits kernel sources to identify missing CVE fixes.",
      "summary_zh": "CVEHound审计内核源代码以识别缺失的CVE修复。",
      "source_markdown": "[2021: \"CVEHound: Audit Kernel Sources for Missing CVE Fixes\" by Denis Efremov](https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes) [slides] [[video](https://www.youtube.com/watch?v=jIDnVeZNUA8)]",
      "search_text": "cvehound: audit kernel sources for missing cve fixes cvehound: audit kernel sources for missing cve fixes denis efremov   finding bugs  finding bugs primary slides https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes audit cve  research cvehound audits kernel sources to identify missing cve fixes. cvehound审计内核源代码以识别缺失的cve修复。 # cvehound: audit kernel sources for missing cve fixes record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: cvehound: audit kernel sources for missing cve fixes resource_label: primary resource_type: slides resource_url: https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes parent_primary_url: https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"cvehound: audit kernel sources for missing cve fixes\" by denis efremov](https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes) [slides] [[video](https://www.youtube.com/watch?v=jidnveznua8)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps t no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "fd3167bac62372b9",
      "item_id": "7cba8d131266e086",
      "slug": "2021-finding-bugs-cvehound-audit-kernel-sources-for-missing-cve-fixes-video-acdfd137",
      "year": 2021,
      "title": "CVEHound: Audit Kernel Sources for Missing CVE Fixes · video",
      "item_title": "CVEHound: Audit Kernel Sources for Missing CVE Fixes",
      "authors": [
        "Denis Efremov"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=jIDnVeZNUA8",
      "primary_url": "https://www.youtube.com/watch?v=jIDnVeZNUA8",
      "parent_primary_url": "https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-cvehound-audit-kernel-sources-for-missing-cve-fixes-video-acdfd137.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVEHound: Audit Kernel Sources for Missing CVE Fixes · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: CVEHound: Audit Kernel Sources for Missing CVE Fixes resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=jIDnVeZNUA8 parent_primary_url: https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"CVEHound: Audit Kernel Sources for Missing CVE Fixes\" by Denis Efremov](https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes) [slides] [[video](https://www.youtube.com/watch?v=jIDnVeZNUA8)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_imp",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=jIDnVeZNUA8"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=jIDnVeZNUA8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "audit",
        "CVE"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Video presentation on CVEHound's approach to auditing kernel sources for CVE fixes.",
      "summary_zh": "关于CVEHound审计内核源代码以修复CVE的方法的视频演示。",
      "source_markdown": "[2021: \"CVEHound: Audit Kernel Sources for Missing CVE Fixes\" by Denis Efremov](https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes) [slides] [[video](https://www.youtube.com/watch?v=jIDnVeZNUA8)]",
      "search_text": "cvehound: audit kernel sources for missing cve fixes · video cvehound: audit kernel sources for missing cve fixes denis efremov   finding bugs  finding bugs video video https://www.youtube.com/watch?v=jidnveznua8 audit cve  research video presentation on cvehound's approach to auditing kernel sources for cve fixes. 关于cvehound审计内核源代码以修复cve的方法的视频演示。 # cvehound: audit kernel sources for missing cve fixes · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: cvehound: audit kernel sources for missing cve fixes resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=jidnveznua8 parent_primary_url: https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"cvehound: audit kernel sources for missing cve fixes\" by denis efremov](https://speakerdeck.com/efremov/cvehound-audit-kernel-sources-for-missing-cve-fixes) [slides] [[video](https://www.youtube.com/watch?v=jidnveznua8)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_imp no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "cc8d7bcf2aa98409",
      "item_id": "eff41de454aaf4c3",
      "slug": "2021-finding-bugs-finding-multiple-bug-effects-for-more-precise-exploitability-estimation-primary-53f28465",
      "year": 2021,
      "title": "Finding Multiple Bug Effects for More Precise Exploitability Estimation",
      "item_title": "Finding Multiple Bug Effects for More Precise Exploitability Estimation",
      "authors": [
        "Zhenpeng Lin",
        "Yueqi Chen"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://static.sched.com/hosted_files/lssna2021/5a/LSS_2021_Multiple_Error_Behavior.pdf",
      "primary_url": "https://static.sched.com/hosted_files/lssna2021/5a/LSS_2021_Multiple_Error_Behavior.pdf",
      "parent_primary_url": "https://static.sched.com/hosted_files/lssna2021/5a/LSS_2021_Multiple_Error_Behavior.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-finding-multiple-bug-effects-for-more-precise-exploitability-estimation-primary-53f28465.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Finding Multiple Bug Effects for More Precise Exploitability Estimation record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Finding Multiple Bug Effects for More Precise Exploitability Estimation resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/lssna2021/5a/LSS_2021_Multiple_Error_Behavior.pdf parent_primary_url: https://static.sched.com/hosted_files/lssna2021/5a/LSS_2021_Multiple_Error_Behavior.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Finding Multiple Bug Effects for More Precise Exploitability Estimation\" by Zhenpeng Lin and Yueqi Chen](https://static.sched.com/hosted_files/lssna2021/5a/LSS_2021_Multiple_Error_Behavior.pdf) [slides] [[video](https://www.youtube.com/watch?v=J3frKpcJ9vg)] cves: none android_imp",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lssna2021/5a/LSS_2021_Multiple_Error_Behavior.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=J3frKpcJ9vg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lssna2021/5a/LSS_2021_Multiple_Error_Behavior.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=J3frKpcJ9vg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitability",
        "bug_analysis"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This presentation discusses finding multiple bug effects for better exploitability estimation.",
      "summary_zh": "该演示讨论了寻找多个错误影响以更好地估计可利用性。",
      "source_markdown": "[2021: \"Finding Multiple Bug Effects for More Precise Exploitability Estimation\" by Zhenpeng Lin and Yueqi Chen](https://static.sched.com/hosted_files/lssna2021/5a/LSS_2021_Multiple_Error_Behavior.pdf) [slides] [[video](https://www.youtube.com/watch?v=J3frKpcJ9vg)]",
      "search_text": "finding multiple bug effects for more precise exploitability estimation finding multiple bug effects for more precise exploitability estimation zhenpeng lin yueqi chen   finding bugs  finding bugs primary slides https://static.sched.com/hosted_files/lssna2021/5a/lss_2021_multiple_error_behavior.pdf exploitability bug_analysis  research this presentation discusses finding multiple bug effects for better exploitability estimation. 该演示讨论了寻找多个错误影响以更好地估计可利用性。 # finding multiple bug effects for more precise exploitability estimation record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: finding multiple bug effects for more precise exploitability estimation resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/lssna2021/5a/lss_2021_multiple_error_behavior.pdf parent_primary_url: https://static.sched.com/hosted_files/lssna2021/5a/lss_2021_multiple_error_behavior.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"finding multiple bug effects for more precise exploitability estimation\" by zhenpeng lin and yueqi chen](https://static.sched.com/hosted_files/lssna2021/5a/lss_2021_multiple_error_behavior.pdf) [slides] [[video](https://www.youtube.com/watch?v=j3frkpcj9vg)] cves: none android_imp no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "92e3d8d0b9cf14e2",
      "item_id": "eff41de454aaf4c3",
      "slug": "2021-finding-bugs-finding-multiple-bug-effects-for-more-precise-exploitability-estimation-video-81e0417d",
      "year": 2021,
      "title": "Finding Multiple Bug Effects for More Precise Exploitability Estimation · video",
      "item_title": "Finding Multiple Bug Effects for More Precise Exploitability Estimation",
      "authors": [
        "Zhenpeng Lin",
        "Yueqi Chen"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=J3frKpcJ9vg",
      "primary_url": "https://www.youtube.com/watch?v=J3frKpcJ9vg",
      "parent_primary_url": "https://static.sched.com/hosted_files/lssna2021/5a/LSS_2021_Multiple_Error_Behavior.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-finding-multiple-bug-effects-for-more-precise-exploitability-estimation-video-81e0417d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Finding Multiple Bug Effects for More Precise Exploitability Estimation · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Finding Multiple Bug Effects for More Precise Exploitability Estimation resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=J3frKpcJ9vg parent_primary_url: https://static.sched.com/hosted_files/lssna2021/5a/LSS_2021_Multiple_Error_Behavior.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Finding Multiple Bug Effects for More Precise Exploitability Estimation\" by Zhenpeng Lin and Yueqi Chen](https://static.sched.com/hosted_files/lssna2021/5a/LSS_2021_Multiple_Error_Behavior.pdf) [slides] [[video](https://www.youtube.com/watch?v=J3frKpcJ9vg)] cves: none android_impact_status: no android_impact_reason: N",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lssna2021/5a/LSS_2021_Multiple_Error_Behavior.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=J3frKpcJ9vg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lssna2021/5a/LSS_2021_Multiple_Error_Behavior.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=J3frKpcJ9vg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitability",
        "bug_analysis"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Video presentation on estimating exploitability through multiple bug effects.",
      "summary_zh": "关于通过多个错误影响估计可利用性的视频演示。",
      "source_markdown": "[2021: \"Finding Multiple Bug Effects for More Precise Exploitability Estimation\" by Zhenpeng Lin and Yueqi Chen](https://static.sched.com/hosted_files/lssna2021/5a/LSS_2021_Multiple_Error_Behavior.pdf) [slides] [[video](https://www.youtube.com/watch?v=J3frKpcJ9vg)]",
      "search_text": "finding multiple bug effects for more precise exploitability estimation · video finding multiple bug effects for more precise exploitability estimation zhenpeng lin yueqi chen   finding bugs  finding bugs video video https://www.youtube.com/watch?v=j3frkpcj9vg exploitability bug_analysis  research video presentation on estimating exploitability through multiple bug effects. 关于通过多个错误影响估计可利用性的视频演示。 # finding multiple bug effects for more precise exploitability estimation · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: finding multiple bug effects for more precise exploitability estimation resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=j3frkpcj9vg parent_primary_url: https://static.sched.com/hosted_files/lssna2021/5a/lss_2021_multiple_error_behavior.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"finding multiple bug effects for more precise exploitability estimation\" by zhenpeng lin and yueqi chen](https://static.sched.com/hosted_files/lssna2021/5a/lss_2021_multiple_error_behavior.pdf) [slides] [[video](https://www.youtube.com/watch?v=j3frkpcj9vg)] cves: none android_impact_status: no android_impact_reason: n no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "fd72504ed67b3085",
      "item_id": "82e669efa8f0aa42",
      "slug": "2021-finding-bugs-triaging-kernel-out-of-bounds-write-vulnerabilities-primary-a36296f0",
      "year": 2021,
      "title": "Triaging Kernel Out-Of-Bounds Write Vulnerabilities",
      "item_title": "Triaging Kernel Out-Of-Bounds Write Vulnerabilities",
      "authors": [
        "Weiteng Chen"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://static.sched.com/hosted_files/lssna2021/07/koobe-LSS.pdf",
      "primary_url": "https://static.sched.com/hosted_files/lssna2021/07/koobe-LSS.pdf",
      "parent_primary_url": "https://static.sched.com/hosted_files/lssna2021/07/koobe-LSS.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-triaging-kernel-out-of-bounds-write-vulnerabilities-primary-a36296f0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Triaging Kernel Out-Of-Bounds Write Vulnerabilities record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Triaging Kernel Out-Of-Bounds Write Vulnerabilities resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/lssna2021/07/koobe-LSS.pdf parent_primary_url: https://static.sched.com/hosted_files/lssna2021/07/koobe-LSS.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Triaging Kernel Out-Of-Bounds Write Vulnerabilities\" by Weiteng Chen](https://static.sched.com/hosted_files/lssna2021/07/koobe-LSS.pdf) [slides] [[video](https://www.youtube.com/watch?v=YUHy58hyDq0)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lssna2021/07/koobe-LSS.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=YUHy58hyDq0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lssna2021/07/koobe-LSS.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=YUHy58hyDq0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "out_of_bounds",
        "vulnerability_triage"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This presentation focuses on triaging kernel out-of-bounds write vulnerabilities.",
      "summary_zh": "该演示专注于对内核越界写入漏洞的分类。",
      "source_markdown": "[2021: \"Triaging Kernel Out-Of-Bounds Write Vulnerabilities\" by Weiteng Chen](https://static.sched.com/hosted_files/lssna2021/07/koobe-LSS.pdf) [slides] [[video](https://www.youtube.com/watch?v=YUHy58hyDq0)]",
      "search_text": "triaging kernel out-of-bounds write vulnerabilities triaging kernel out-of-bounds write vulnerabilities weiteng chen   finding bugs  finding bugs primary slides https://static.sched.com/hosted_files/lssna2021/07/koobe-lss.pdf out_of_bounds vulnerability_triage  research this presentation focuses on triaging kernel out-of-bounds write vulnerabilities. 该演示专注于对内核越界写入漏洞的分类。 # triaging kernel out-of-bounds write vulnerabilities record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: triaging kernel out-of-bounds write vulnerabilities resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/lssna2021/07/koobe-lss.pdf parent_primary_url: https://static.sched.com/hosted_files/lssna2021/07/koobe-lss.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"triaging kernel out-of-bounds write vulnerabilities\" by weiteng chen](https://static.sched.com/hosted_files/lssna2021/07/koobe-lss.pdf) [slides] [[video](https://www.youtube.com/watch?v=yuhy58hydq0)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e2a5a226345ba7ef",
      "item_id": "82e669efa8f0aa42",
      "slug": "2021-finding-bugs-triaging-kernel-out-of-bounds-write-vulnerabilities-video-f4227c7d",
      "year": 2021,
      "title": "Triaging Kernel Out-Of-Bounds Write Vulnerabilities · video",
      "item_title": "Triaging Kernel Out-Of-Bounds Write Vulnerabilities",
      "authors": [
        "Weiteng Chen"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=YUHy58hyDq0",
      "primary_url": "https://www.youtube.com/watch?v=YUHy58hyDq0",
      "parent_primary_url": "https://static.sched.com/hosted_files/lssna2021/07/koobe-LSS.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-triaging-kernel-out-of-bounds-write-vulnerabilities-video-f4227c7d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Triaging Kernel Out-Of-Bounds Write Vulnerabilities · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Triaging Kernel Out-Of-Bounds Write Vulnerabilities resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=YUHy58hyDq0 parent_primary_url: https://static.sched.com/hosted_files/lssna2021/07/koobe-LSS.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Triaging Kernel Out-Of-Bounds Write Vulnerabilities\" by Weiteng Chen](https://static.sched.com/hosted_files/lssna2021/07/koobe-LSS.pdf) [slides] [[video](https://www.youtube.com/watch?v=YUHy58hyDq0)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Producti",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lssna2021/07/koobe-LSS.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=YUHy58hyDq0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lssna2021/07/koobe-LSS.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=YUHy58hyDq0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "out_of_bounds",
        "vulnerability_triage"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Video presentation discussing the triaging of kernel out-of-bounds write vulnerabilities.",
      "summary_zh": "讨论内核越界写入漏洞分类的视频演示。",
      "source_markdown": "[2021: \"Triaging Kernel Out-Of-Bounds Write Vulnerabilities\" by Weiteng Chen](https://static.sched.com/hosted_files/lssna2021/07/koobe-LSS.pdf) [slides] [[video](https://www.youtube.com/watch?v=YUHy58hyDq0)]",
      "search_text": "triaging kernel out-of-bounds write vulnerabilities · video triaging kernel out-of-bounds write vulnerabilities weiteng chen   finding bugs  finding bugs video video https://www.youtube.com/watch?v=yuhy58hydq0 out_of_bounds vulnerability_triage  research video presentation discussing the triaging of kernel out-of-bounds write vulnerabilities. 讨论内核越界写入漏洞分类的视频演示。 # triaging kernel out-of-bounds write vulnerabilities · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: triaging kernel out-of-bounds write vulnerabilities resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=yuhy58hydq0 parent_primary_url: https://static.sched.com/hosted_files/lssna2021/07/koobe-lss.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"triaging kernel out-of-bounds write vulnerabilities\" by weiteng chen](https://static.sched.com/hosted_files/lssna2021/07/koobe-lss.pdf) [slides] [[video](https://www.youtube.com/watch?v=yuhy58hydq0)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: producti no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "20fced6745a37dd5",
      "item_id": "e8aa43fb2ef457e9",
      "slug": "2021-finding-bugs-syzscope-revealing-high-risk-security-impacts-of-fuzzer-exposed-bugs-primary-5c8fdfdf",
      "year": 2021,
      "title": "SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs",
      "item_title": "SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs",
      "authors": [
        "Xiaochen Zou"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf",
      "primary_url": "https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf",
      "parent_primary_url": "https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-syzscope-revealing-high-risk-security-impacts-of-fuzzer-exposed-bugs-primary-5c8fdfdf.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs resource_label: primary resource_type: paper resource_url: https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf parent_primary_url: https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs\" by Xiaochen Zou](https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf) [paper] [[slides](https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf)] [[video](https://www.youtube.com/watch?v=MJbqeo5qtQ0)] [[lwn ar",
      "link_types": [
        "paper",
        "slides",
        "video",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=MJbqeo5qtQ0"
        },
        {
          "label": "lwn article",
          "type": "article",
          "url": "https://lwn.net/Articles/872649/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "lwn article",
            "type": "article",
            "url": "https://lwn.net/Articles/872649/"
          }
        ],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=MJbqeo5qtQ0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "security_impacts"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "SyzScope reveals high-risk security impacts of bugs exposed by fuzzers.",
      "summary_zh": "SyzScope揭示了模糊测试暴露的错误的高风险安全影响。",
      "source_markdown": "[2021: \"SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs\" by Xiaochen Zou](https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf) [paper] [[slides](https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf)] [[video](https://www.youtube.com/watch?v=MJbqeo5qtQ0)] [[lwn article](https://lwn.net/Articles/872649/)]",
      "search_text": "syzscope: revealing high-risk security impacts of fuzzer-exposed bugs syzscope: revealing high-risk security impacts of fuzzer-exposed bugs xiaochen zou   finding bugs  finding bugs primary paper https://etenal.me/wp-content/uploads/2021/10/syzscope-final.pdf fuzzing security_impacts  research syzscope reveals high-risk security impacts of bugs exposed by fuzzers. syzscope揭示了模糊测试暴露的错误的高风险安全影响。 # syzscope: revealing high-risk security impacts of fuzzer-exposed bugs record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzscope: revealing high-risk security impacts of fuzzer-exposed bugs resource_label: primary resource_type: paper resource_url: https://etenal.me/wp-content/uploads/2021/10/syzscope-final.pdf parent_primary_url: https://etenal.me/wp-content/uploads/2021/10/syzscope-final.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"syzscope: revealing high-risk security impacts of fuzzer-exposed bugs\" by xiaochen zou](https://etenal.me/wp-content/uploads/2021/10/syzscope-final.pdf) [paper] [[slides](https://static.sched.com/hosted_files/lssna2021/55/syzscope%20in%20linux%20security%20summit.pdf)] [[video](https://www.youtube.com/watch?v=mjbqeo5qtq0)] [[lwn ar no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "702e72bffe654f9b",
      "item_id": "e8aa43fb2ef457e9",
      "slug": "2021-finding-bugs-syzscope-revealing-high-risk-security-impacts-of-fuzzer-exposed-bugs-slides-892241a8",
      "year": 2021,
      "title": "SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs · slides",
      "item_title": "SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs",
      "authors": [
        "Xiaochen Zou"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf",
      "primary_url": "https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf",
      "parent_primary_url": "https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-syzscope-revealing-high-risk-security-impacts-of-fuzzer-exposed-bugs-slides-892241a8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs · slides record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs resource_label: slides resource_type: slides resource_url: https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf parent_primary_url: https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs\" by Xiaochen Zou](https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf) [paper] [[slides](https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf)] [[video](https://www.",
      "link_types": [
        "paper",
        "slides",
        "video",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=MJbqeo5qtQ0"
        },
        {
          "label": "lwn article",
          "type": "article",
          "url": "https://lwn.net/Articles/872649/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "lwn article",
            "type": "article",
            "url": "https://lwn.net/Articles/872649/"
          }
        ],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=MJbqeo5qtQ0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "security_impacts"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Slides on the security impacts of fuzzer-exposed bugs presented by SyzScope.",
      "summary_zh": "SyzScope展示的模糊测试暴露的错误的安全影响幻灯片。",
      "source_markdown": "[2021: \"SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs\" by Xiaochen Zou](https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf) [paper] [[slides](https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf)] [[video](https://www.youtube.com/watch?v=MJbqeo5qtQ0)] [[lwn article](https://lwn.net/Articles/872649/)]",
      "search_text": "syzscope: revealing high-risk security impacts of fuzzer-exposed bugs · slides syzscope: revealing high-risk security impacts of fuzzer-exposed bugs xiaochen zou   finding bugs  finding bugs slides slides https://static.sched.com/hosted_files/lssna2021/55/syzscope%20in%20linux%20security%20summit.pdf fuzzing security_impacts  research slides on the security impacts of fuzzer-exposed bugs presented by syzscope. syzscope展示的模糊测试暴露的错误的安全影响幻灯片。 # syzscope: revealing high-risk security impacts of fuzzer-exposed bugs · slides record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzscope: revealing high-risk security impacts of fuzzer-exposed bugs resource_label: slides resource_type: slides resource_url: https://static.sched.com/hosted_files/lssna2021/55/syzscope%20in%20linux%20security%20summit.pdf parent_primary_url: https://etenal.me/wp-content/uploads/2021/10/syzscope-final.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"syzscope: revealing high-risk security impacts of fuzzer-exposed bugs\" by xiaochen zou](https://etenal.me/wp-content/uploads/2021/10/syzscope-final.pdf) [paper] [[slides](https://static.sched.com/hosted_files/lssna2021/55/syzscope%20in%20linux%20security%20summit.pdf)] [[video](https://www. no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1f79bac7bfee167b",
      "item_id": "e8aa43fb2ef457e9",
      "slug": "2021-finding-bugs-syzscope-revealing-high-risk-security-impacts-of-fuzzer-exposed-bugs-video-de2c9f73",
      "year": 2021,
      "title": "SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs · video",
      "item_title": "SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs",
      "authors": [
        "Xiaochen Zou"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=MJbqeo5qtQ0",
      "primary_url": "https://www.youtube.com/watch?v=MJbqeo5qtQ0",
      "parent_primary_url": "https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-syzscope-revealing-high-risk-security-impacts-of-fuzzer-exposed-bugs-video-de2c9f73.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=MJbqeo5qtQ0 parent_primary_url: https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs\" by Xiaochen Zou](https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf) [paper] [[slides](https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf)] [[video](https://www.youtube.com/watch?v=MJbqeo5qtQ0)] [[lwn article](https:/",
      "link_types": [
        "paper",
        "slides",
        "video",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=MJbqeo5qtQ0"
        },
        {
          "label": "lwn article",
          "type": "article",
          "url": "https://lwn.net/Articles/872649/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "lwn article",
            "type": "article",
            "url": "https://lwn.net/Articles/872649/"
          }
        ],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=MJbqeo5qtQ0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "security",
        "risk"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "SyzScope reveals the high-risk security impacts of bugs exposed by fuzzers.",
      "summary_zh": "SyzScope揭示了模糊测试暴露的漏洞的高风险安全影响。",
      "source_markdown": "[2021: \"SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs\" by Xiaochen Zou](https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf) [paper] [[slides](https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf)] [[video](https://www.youtube.com/watch?v=MJbqeo5qtQ0)] [[lwn article](https://lwn.net/Articles/872649/)]",
      "search_text": "syzscope: revealing high-risk security impacts of fuzzer-exposed bugs · video syzscope: revealing high-risk security impacts of fuzzer-exposed bugs xiaochen zou   finding bugs  finding bugs video video https://www.youtube.com/watch?v=mjbqeo5qtq0 fuzzing security risk  research syzscope reveals the high-risk security impacts of bugs exposed by fuzzers. syzscope揭示了模糊测试暴露的漏洞的高风险安全影响。 # syzscope: revealing high-risk security impacts of fuzzer-exposed bugs · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzscope: revealing high-risk security impacts of fuzzer-exposed bugs resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=mjbqeo5qtq0 parent_primary_url: https://etenal.me/wp-content/uploads/2021/10/syzscope-final.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"syzscope: revealing high-risk security impacts of fuzzer-exposed bugs\" by xiaochen zou](https://etenal.me/wp-content/uploads/2021/10/syzscope-final.pdf) [paper] [[slides](https://static.sched.com/hosted_files/lssna2021/55/syzscope%20in%20linux%20security%20summit.pdf)] [[video](https://www.youtube.com/watch?v=mjbqeo5qtq0)] [[lwn article](https:/ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c9257b4cb64de631",
      "item_id": "e8aa43fb2ef457e9",
      "slug": "2021-finding-bugs-syzscope-revealing-high-risk-security-impacts-of-fuzzer-exposed-bugs-lwn-article-d1b805ae",
      "year": 2021,
      "title": "SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs · lwn article",
      "item_title": "SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs",
      "authors": [
        "Xiaochen Zou"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "lwn article",
      "resource_type": "article",
      "resource_url": "https://lwn.net/Articles/872649/",
      "primary_url": "https://lwn.net/Articles/872649/",
      "parent_primary_url": "https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-syzscope-revealing-high-risk-security-impacts-of-fuzzer-exposed-bugs-lwn-article-d1b805ae.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs · lwn article record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs resource_label: lwn article resource_type: article resource_url: https://lwn.net/Articles/872649/ parent_primary_url: https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs\" by Xiaochen Zou](https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf) [paper] [[slides](https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf)] [[video](https://www.youtube.com/watch?v=MJbqeo5qtQ0)] [[lwn article](http",
      "link_types": [
        "paper",
        "slides",
        "video",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=MJbqeo5qtQ0"
        },
        {
          "label": "lwn article",
          "type": "article",
          "url": "https://lwn.net/Articles/872649/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "lwn article",
            "type": "article",
            "url": "https://lwn.net/Articles/872649/"
          }
        ],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=MJbqeo5qtQ0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "security",
        "risk"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "SyzScope highlights the security implications of fuzzer-exposed bugs in Linux.",
      "summary_zh": "SyzScope强调了模糊测试暴露的漏洞在Linux中的安全影响。",
      "source_markdown": "[2021: \"SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs\" by Xiaochen Zou](https://etenal.me/wp-content/uploads/2021/10/SyzScope-final.pdf) [paper] [[slides](https://static.sched.com/hosted_files/lssna2021/55/SyzScope%20in%20Linux%20Security%20Summit.pdf)] [[video](https://www.youtube.com/watch?v=MJbqeo5qtQ0)] [[lwn article](https://lwn.net/Articles/872649/)]",
      "search_text": "syzscope: revealing high-risk security impacts of fuzzer-exposed bugs · lwn article syzscope: revealing high-risk security impacts of fuzzer-exposed bugs xiaochen zou   finding bugs  finding bugs lwn article article https://lwn.net/articles/872649/ fuzzing security risk  research syzscope highlights the security implications of fuzzer-exposed bugs in linux. syzscope强调了模糊测试暴露的漏洞在linux中的安全影响。 # syzscope: revealing high-risk security impacts of fuzzer-exposed bugs · lwn article record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzscope: revealing high-risk security impacts of fuzzer-exposed bugs resource_label: lwn article resource_type: article resource_url: https://lwn.net/articles/872649/ parent_primary_url: https://etenal.me/wp-content/uploads/2021/10/syzscope-final.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"syzscope: revealing high-risk security impacts of fuzzer-exposed bugs\" by xiaochen zou](https://etenal.me/wp-content/uploads/2021/10/syzscope-final.pdf) [paper] [[slides](https://static.sched.com/hosted_files/lssna2021/55/syzscope%20in%20linux%20security%20summit.pdf)] [[video](https://www.youtube.com/watch?v=mjbqeo5qtq0)] [[lwn article](http no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7d8f035f782c4035",
      "item_id": "eb30a7173badf9eb",
      "slug": "2021-finding-bugs-healer-relation-learning-guided-kernel-fuzzing-primary-e6824347",
      "year": 2021,
      "title": "HEALER: Relation Learning Guided Kernel Fuzzing",
      "item_title": "HEALER: Relation Learning Guided Kernel Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/healer-sosp21.pdf",
      "primary_url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/healer-sosp21.pdf",
      "parent_primary_url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/healer-sosp21.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-healer-relation-learning-guided-kernel-fuzzing-primary-e6824347.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# HEALER: Relation Learning Guided Kernel Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: HEALER: Relation Learning Guided Kernel Fuzzing resource_label: primary resource_type: paper resource_url: http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/healer-sosp21.pdf parent_primary_url: http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/healer-sosp21.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"HEALER: Relation Learning Guided Kernel Fuzzing\"](http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/healer-sosp21.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devic",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/healer-sosp21.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/healer-sosp21.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "learning"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "HEALER introduces relation learning to enhance kernel fuzzing techniques.",
      "summary_zh": "HEALER引入关系学习以增强内核模糊测试技术。",
      "source_markdown": "[2021: \"HEALER: Relation Learning Guided Kernel Fuzzing\"](http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/healer-sosp21.pdf) [paper]",
      "search_text": "healer: relation learning guided kernel fuzzing healer: relation learning guided kernel fuzzing    finding bugs  finding bugs primary paper http://www.wingtecher.com/themes/wingtecherresearch/assets/papers/healer-sosp21.pdf fuzzing kernel learning  research healer introduces relation learning to enhance kernel fuzzing techniques. healer引入关系学习以增强内核模糊测试技术。 # healer: relation learning guided kernel fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: healer: relation learning guided kernel fuzzing resource_label: primary resource_type: paper resource_url: http://www.wingtecher.com/themes/wingtecherresearch/assets/papers/healer-sosp21.pdf parent_primary_url: http://www.wingtecher.com/themes/wingtecherresearch/assets/papers/healer-sosp21.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"healer: relation learning guided kernel fuzzing\"](http://www.wingtecher.com/themes/wingtecherresearch/assets/papers/healer-sosp21.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devic no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "21bed09c11653e28",
      "item_id": "dfce9051854dbdab",
      "slug": "2021-finding-bugs-snowboard-finding-kernel-concurrency-bugs-through-systematic-inter-thread-communication-anal",
      "year": 2021,
      "title": "Snowboard: Finding Kernel Concurrency Bugs through Systematic Inter-thread Communication Analysis",
      "item_title": "Snowboard: Finding Kernel Concurrency Bugs through Systematic Inter-thread Communication Analysis",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://dl.acm.org/doi/pdf/10.1145/3477132.3483549",
      "primary_url": "https://dl.acm.org/doi/pdf/10.1145/3477132.3483549",
      "parent_primary_url": "https://dl.acm.org/doi/pdf/10.1145/3477132.3483549",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-snowboard-finding-kernel-concurrency-bugs-through-systematic-inter-thread-communication-anal.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Snowboard: Finding Kernel Concurrency Bugs through Systematic Inter-thread Communication Analysis record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Snowboard: Finding Kernel Concurrency Bugs through Systematic Inter-thread Communication Analysis resource_label: primary resource_type: paper resource_url: https://dl.acm.org/doi/pdf/10.1145/3477132.3483549 parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3477132.3483549 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Snowboard: Finding Kernel Concurrency Bugs through Systematic Inter-thread Communication Analysis\"](https://dl.acm.org/doi/pdf/10.1145/3477132.3483549) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://dl.acm.org/doi/pdf/10.1145/3477132.3483549"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://dl.acm.org/doi/pdf/10.1145/3477132.3483549"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "concurrency",
        "analysis",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Snowboard systematically analyzes inter-thread communication to find kernel concurrency bugs.",
      "summary_zh": "Snowboard系统地分析线程间通信以发现内核并发漏洞。",
      "source_markdown": "[2021: \"Snowboard: Finding Kernel Concurrency Bugs through Systematic Inter-thread Communication Analysis\"](https://dl.acm.org/doi/pdf/10.1145/3477132.3483549) [paper]",
      "search_text": "snowboard: finding kernel concurrency bugs through systematic inter-thread communication analysis snowboard: finding kernel concurrency bugs through systematic inter-thread communication analysis    finding bugs  finding bugs primary paper https://dl.acm.org/doi/pdf/10.1145/3477132.3483549 concurrency analysis kernel  research snowboard systematically analyzes inter-thread communication to find kernel concurrency bugs. snowboard系统地分析线程间通信以发现内核并发漏洞。 # snowboard: finding kernel concurrency bugs through systematic inter-thread communication analysis record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: snowboard: finding kernel concurrency bugs through systematic inter-thread communication analysis resource_label: primary resource_type: paper resource_url: https://dl.acm.org/doi/pdf/10.1145/3477132.3483549 parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3477132.3483549 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"snowboard: finding kernel concurrency bugs through systematic inter-thread communication analysis\"](https://dl.acm.org/doi/pdf/10.1145/3477132.3483549) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a4a42b28d42f5128",
      "item_id": "ba831490b0f7f5e9",
      "slug": "2021-finding-bugs-detecting-semantic-bugs-using-differential-fuzzing-primary-114dff9b",
      "year": 2021,
      "title": "Detecting semantic bugs using differential fuzzing",
      "item_title": "Detecting semantic bugs using differential fuzzing",
      "authors": [
        "Mara Mihali"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20Linux%20Plumbers%202021.pdf",
      "primary_url": "https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20Linux%20Plumbers%202021.pdf",
      "parent_primary_url": "https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20Linux%20Plumbers%202021.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-detecting-semantic-bugs-using-differential-fuzzing-primary-114dff9b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Detecting semantic bugs using differential fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Detecting semantic bugs using differential fuzzing resource_label: primary resource_type: slides resource_url: https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20Linux%20Plumbers%202021.pdf parent_primary_url: https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20Linux%20Plumbers%202021.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Detecting semantic bugs using differential fuzzing\" by Mara Mihali](https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20Linux%20Plumbers%202021.pdf) [slides] [[video](https://www.youtube.com/watch?v=Y",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20Linux%20Plumbers%202021.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Y_minEhZNm8&t=2388s"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20Linux%20Plumbers%202021.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Y_minEhZNm8&t=2388s"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "semantic",
        "detection"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Differential fuzzing is used to detect semantic bugs effectively.",
      "summary_zh": "差异模糊测试被有效用于检测语义漏洞。",
      "source_markdown": "[2021: \"Detecting semantic bugs using differential fuzzing\" by Mara Mihali](https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20Linux%20Plumbers%202021.pdf) [slides] [[video](https://www.youtube.com/watch?v=Y_minEhZNm8&t=2388s)]",
      "search_text": "detecting semantic bugs using differential fuzzing detecting semantic bugs using differential fuzzing mara mihali   finding bugs  finding bugs primary slides https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20linux%20plumbers%202021.pdf fuzzing semantic detection  research differential fuzzing is used to detect semantic bugs effectively. 差异模糊测试被有效用于检测语义漏洞。 # detecting semantic bugs using differential fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: detecting semantic bugs using differential fuzzing resource_label: primary resource_type: slides resource_url: https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20linux%20plumbers%202021.pdf parent_primary_url: https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20linux%20plumbers%202021.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"detecting semantic bugs using differential fuzzing\" by mara mihali](https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20linux%20plumbers%202021.pdf) [slides] [[video](https://www.youtube.com/watch?v=y no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "92f33d5f15dc264b",
      "item_id": "ba831490b0f7f5e9",
      "slug": "2021-finding-bugs-detecting-semantic-bugs-using-differential-fuzzing-video-69f3ec23",
      "year": 2021,
      "title": "Detecting semantic bugs using differential fuzzing · video",
      "item_title": "Detecting semantic bugs using differential fuzzing",
      "authors": [
        "Mara Mihali"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=Y_minEhZNm8&t=2388s",
      "primary_url": "https://www.youtube.com/watch?v=Y_minEhZNm8&t=2388s",
      "parent_primary_url": "https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20Linux%20Plumbers%202021.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-detecting-semantic-bugs-using-differential-fuzzing-video-69f3ec23.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Detecting semantic bugs using differential fuzzing · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Detecting semantic bugs using differential fuzzing resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=Y_minEhZNm8&t=2388s parent_primary_url: https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20Linux%20Plumbers%202021.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Detecting semantic bugs using differential fuzzing\" by Mara Mihali](https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20Linux%20Plumbers%202021.pdf) [slides] [[video](https://www.youtube.com/watch?v=Y_minEhZNm8&t=2388s)] cves: none android_impact_status: no android_imp",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20Linux%20Plumbers%202021.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Y_minEhZNm8&t=2388s"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20Linux%20Plumbers%202021.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Y_minEhZNm8&t=2388s"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "semantic",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "A video presentation on detecting semantic bugs using differential fuzzing techniques.",
      "summary_zh": "关于使用差异模糊测试技术检测语义漏洞的视频演示。",
      "source_markdown": "[2021: \"Detecting semantic bugs using differential fuzzing\" by Mara Mihali](https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20Linux%20Plumbers%202021.pdf) [slides] [[video](https://www.youtube.com/watch?v=Y_minEhZNm8&t=2388s)]",
      "search_text": "detecting semantic bugs using differential fuzzing · video detecting semantic bugs using differential fuzzing mara mihali   finding bugs  finding bugs video video https://www.youtube.com/watch?v=y_minehznm8&t=2388s fuzzing semantic video  research a video presentation on detecting semantic bugs using differential fuzzing techniques. 关于使用差异模糊测试技术检测语义漏洞的视频演示。 # detecting semantic bugs using differential fuzzing · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: detecting semantic bugs using differential fuzzing resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=y_minehznm8&t=2388s parent_primary_url: https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20linux%20plumbers%202021.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"detecting semantic bugs using differential fuzzing\" by mara mihali](https://linuxplumbersconf.org/event/11/contributions/1033/attachments/742/1621/syz-verifier%20-%20linux%20plumbers%202021.pdf) [slides] [[video](https://www.youtube.com/watch?v=y_minehznm8&t=2388s)] cves: none android_impact_status: no android_imp no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1e3f75dd21fd1d32",
      "item_id": "6f3b565d7eb57372",
      "slug": "2021-finding-bugs-fuzzing-linux-with-xen-primary-73b31110",
      "year": 2021,
      "title": "Fuzzing Linux with Xen",
      "item_title": "Fuzzing Linux with Xen",
      "authors": [
        "Tamas K Lengyel"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://media.defcon.org/DEF%20CON%2029/DEF%20CON%2029%20presentations/Tamas%20K%20Lengyel%20-%20Fuzzing%20Linux%20with%20Xen.pdf",
      "primary_url": "https://media.defcon.org/DEF%20CON%2029/DEF%20CON%2029%20presentations/Tamas%20K%20Lengyel%20-%20Fuzzing%20Linux%20with%20Xen.pdf",
      "parent_primary_url": "https://media.defcon.org/DEF%20CON%2029/DEF%20CON%2029%20presentations/Tamas%20K%20Lengyel%20-%20Fuzzing%20Linux%20with%20Xen.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-fuzzing-linux-with-xen-primary-73b31110.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fuzzing Linux with Xen record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Fuzzing Linux with Xen resource_label: primary resource_type: slides resource_url: https://media.defcon.org/DEF%20CON%2029/DEF%20CON%2029%20presentations/Tamas%20K%20Lengyel%20-%20Fuzzing%20Linux%20with%20Xen.pdf parent_primary_url: https://media.defcon.org/DEF%20CON%2029/DEF%20CON%2029%20presentations/Tamas%20K%20Lengyel%20-%20Fuzzing%20Linux%20with%20Xen.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Fuzzing Linux with Xen\" by Tamas K Lengyel](https://media.defcon.org/DEF%20CON%2029/DEF%20CON%2029%20presentations/Tamas%20K%20Lengyel%20-%20Fuzzing%20Linux%20with%20Xen.pdf) [slides] [[video](https://www.youtube.com/watch?v=_dXC_I2ybr4)] cves: none android_impact_status: no android_impact_rea",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://media.defcon.org/DEF%20CON%2029/DEF%20CON%2029%20presentations/Tamas%20K%20Lengyel%20-%20Fuzzing%20Linux%20with%20Xen.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=_dXC_I2ybr4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://media.defcon.org/DEF%20CON%2029/DEF%20CON%2029%20presentations/Tamas%20K%20Lengyel%20-%20Fuzzing%20Linux%20with%20Xen.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=_dXC_I2ybr4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "Xen"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Fuzzing Linux with Xen explores new approaches to kernel fuzzing.",
      "summary_zh": "使用Xen对Linux进行模糊测试探索了内核模糊测试的新方法。",
      "source_markdown": "[2021: \"Fuzzing Linux with Xen\" by Tamas K Lengyel](https://media.defcon.org/DEF%20CON%2029/DEF%20CON%2029%20presentations/Tamas%20K%20Lengyel%20-%20Fuzzing%20Linux%20with%20Xen.pdf) [slides] [[video](https://www.youtube.com/watch?v=_dXC_I2ybr4)]",
      "search_text": "fuzzing linux with xen fuzzing linux with xen tamas k lengyel   finding bugs  finding bugs primary slides https://media.defcon.org/def%20con%2029/def%20con%2029%20presentations/tamas%20k%20lengyel%20-%20fuzzing%20linux%20with%20xen.pdf fuzzing kernel xen  research fuzzing linux with xen explores new approaches to kernel fuzzing. 使用xen对linux进行模糊测试探索了内核模糊测试的新方法。 # fuzzing linux with xen record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: fuzzing linux with xen resource_label: primary resource_type: slides resource_url: https://media.defcon.org/def%20con%2029/def%20con%2029%20presentations/tamas%20k%20lengyel%20-%20fuzzing%20linux%20with%20xen.pdf parent_primary_url: https://media.defcon.org/def%20con%2029/def%20con%2029%20presentations/tamas%20k%20lengyel%20-%20fuzzing%20linux%20with%20xen.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"fuzzing linux with xen\" by tamas k lengyel](https://media.defcon.org/def%20con%2029/def%20con%2029%20presentations/tamas%20k%20lengyel%20-%20fuzzing%20linux%20with%20xen.pdf) [slides] [[video](https://www.youtube.com/watch?v=_dxc_i2ybr4)] cves: none android_impact_status: no android_impact_rea no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "339bfb90fc6a19cf",
      "item_id": "6f3b565d7eb57372",
      "slug": "2021-finding-bugs-fuzzing-linux-with-xen-video-9b1435c6",
      "year": 2021,
      "title": "Fuzzing Linux with Xen · video",
      "item_title": "Fuzzing Linux with Xen",
      "authors": [
        "Tamas K Lengyel"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=_dXC_I2ybr4",
      "primary_url": "https://www.youtube.com/watch?v=_dXC_I2ybr4",
      "parent_primary_url": "https://media.defcon.org/DEF%20CON%2029/DEF%20CON%2029%20presentations/Tamas%20K%20Lengyel%20-%20Fuzzing%20Linux%20with%20Xen.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-fuzzing-linux-with-xen-video-9b1435c6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fuzzing Linux with Xen · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Fuzzing Linux with Xen resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=_dXC_I2ybr4 parent_primary_url: https://media.defcon.org/DEF%20CON%2029/DEF%20CON%2029%20presentations/Tamas%20K%20Lengyel%20-%20Fuzzing%20Linux%20with%20Xen.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Fuzzing Linux with Xen\" by Tamas K Lengyel](https://media.defcon.org/DEF%20CON%2029/DEF%20CON%2029%20presentations/Tamas%20K%20Lengyel%20-%20Fuzzing%20Linux%20with%20Xen.pdf) [slides] [[video](https://www.youtube.com/watch?v=_dXC_I2ybr4)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://media.defcon.org/DEF%20CON%2029/DEF%20CON%2029%20presentations/Tamas%20K%20Lengyel%20-%20Fuzzing%20Linux%20with%20Xen.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=_dXC_I2ybr4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://media.defcon.org/DEF%20CON%2029/DEF%20CON%2029%20presentations/Tamas%20K%20Lengyel%20-%20Fuzzing%20Linux%20with%20Xen.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=_dXC_I2ybr4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "Xen",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "A video on fuzzing Linux with Xen, discussing methodologies and findings.",
      "summary_zh": "关于使用Xen对Linux进行模糊测试的视频，讨论方法和发现。",
      "source_markdown": "[2021: \"Fuzzing Linux with Xen\" by Tamas K Lengyel](https://media.defcon.org/DEF%20CON%2029/DEF%20CON%2029%20presentations/Tamas%20K%20Lengyel%20-%20Fuzzing%20Linux%20with%20Xen.pdf) [slides] [[video](https://www.youtube.com/watch?v=_dXC_I2ybr4)]",
      "search_text": "fuzzing linux with xen · video fuzzing linux with xen tamas k lengyel   finding bugs  finding bugs video video https://www.youtube.com/watch?v=_dxc_i2ybr4 fuzzing kernel xen video  research a video on fuzzing linux with xen, discussing methodologies and findings. 关于使用xen对linux进行模糊测试的视频，讨论方法和发现。 # fuzzing linux with xen · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: fuzzing linux with xen resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=_dxc_i2ybr4 parent_primary_url: https://media.defcon.org/def%20con%2029/def%20con%2029%20presentations/tamas%20k%20lengyel%20-%20fuzzing%20linux%20with%20xen.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"fuzzing linux with xen\" by tamas k lengyel](https://media.defcon.org/def%20con%2029/def%20con%2029%20presentations/tamas%20k%20lengyel%20-%20fuzzing%20linux%20with%20xen.pdf) [slides] [[video](https://www.youtube.com/watch?v=_dxc_i2ybr4)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "95d31d3e2033b5f3",
      "item_id": "49639a6ac3aa435d",
      "slug": "2021-finding-bugs-variant-analysis-of-the-sequoia-bug-primary-46e9f616",
      "year": 2021,
      "title": "Variant analysis of the ‘Sequoia’ bug",
      "item_title": "Variant analysis of the ‘Sequoia’ bug",
      "authors": [
        "Jordy Zomer"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://pwning.systems/posts/sequoia-variant-analysis/",
      "primary_url": "https://pwning.systems/posts/sequoia-variant-analysis/",
      "parent_primary_url": "https://pwning.systems/posts/sequoia-variant-analysis/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-variant-analysis-of-the-sequoia-bug-primary-46e9f616.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Variant analysis of the ‘Sequoia’ bug record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Variant analysis of the ‘Sequoia’ bug resource_label: primary resource_type: article resource_url: https://pwning.systems/posts/sequoia-variant-analysis/ parent_primary_url: https://pwning.systems/posts/sequoia-variant-analysis/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Variant analysis of the ‘Sequoia’ bug\" by Jordy Zomer](https://pwning.systems/posts/sequoia-variant-analysis/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: fals",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://pwning.systems/posts/sequoia-variant-analysis/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://pwning.systems/posts/sequoia-variant-analysis/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "analysis",
        "bug",
        "Sequoia"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Variant analysis of the ‘Sequoia’ bug provides insights into its characteristics.",
      "summary_zh": "对‘Sequoia’漏洞的变体分析提供了对其特征的见解。",
      "source_markdown": "[2021: \"Variant analysis of the ‘Sequoia’ bug\" by Jordy Zomer](https://pwning.systems/posts/sequoia-variant-analysis/) [article]",
      "search_text": "variant analysis of the ‘sequoia’ bug variant analysis of the ‘sequoia’ bug jordy zomer   finding bugs  finding bugs primary article https://pwning.systems/posts/sequoia-variant-analysis/ analysis bug sequoia  research variant analysis of the ‘sequoia’ bug provides insights into its characteristics. 对‘sequoia’漏洞的变体分析提供了对其特征的见解。 # variant analysis of the ‘sequoia’ bug record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: variant analysis of the ‘sequoia’ bug resource_label: primary resource_type: article resource_url: https://pwning.systems/posts/sequoia-variant-analysis/ parent_primary_url: https://pwning.systems/posts/sequoia-variant-analysis/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"variant analysis of the ‘sequoia’ bug\" by jordy zomer](https://pwning.systems/posts/sequoia-variant-analysis/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: fals no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1c280d34db538a86",
      "item_id": "7e6c3944a2c787ca",
      "slug": "2021-finding-bugs-kmsan-a-look-under-the-hood-primary-5973ac9c",
      "year": 2021,
      "title": "KMSAN, a look under the hood",
      "item_title": "KMSAN, a look under the hood",
      "authors": [
        "Alexander Potapenko"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/KernelMemorySanitizer_a_look_under_the_hood.pdf",
      "primary_url": "https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/KernelMemorySanitizer_a_look_under_the_hood.pdf",
      "parent_primary_url": "https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/KernelMemorySanitizer_a_look_under_the_hood.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-kmsan-a-look-under-the-hood-primary-5973ac9c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KMSAN, a look under the hood record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: KMSAN, a look under the hood resource_label: primary resource_type: slides resource_url: https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/KernelMemorySanitizer_a_look_under_the_hood.pdf parent_primary_url: https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/KernelMemorySanitizer_a_look_under_the_hood.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"KMSAN, a look under the hood\" by Alexander Potapenko](https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/KernelMemorySanitizer_a_look_under_the_hood.pdf) [slides] [[video](https://www.youtube.com/watch?v=LNs2U-3m3yg)] cves: none android_impact_status: no android_impact",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/KernelMemorySanitizer_a_look_under_the_hood.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=LNs2U-3m3yg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/KernelMemorySanitizer_a_look_under_the_hood.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=LNs2U-3m3yg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/KernelMemorySanitizer_a_look_under_the_hood.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory",
        "sanitization",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "KMSAN offers insights into kernel memory sanitization techniques.",
      "summary_zh": "KMSAN提供了内核内存清理技术的见解。",
      "source_markdown": "[2021: \"KMSAN, a look under the hood\" by Alexander Potapenko](https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/KernelMemorySanitizer_a_look_under_the_hood.pdf) [slides] [[video](https://www.youtube.com/watch?v=LNs2U-3m3yg)]",
      "search_text": "kmsan, a look under the hood kmsan, a look under the hood alexander potapenko   finding bugs  finding bugs primary slides https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/kernelmemorysanitizer_a_look_under_the_hood.pdf memory sanitization kernel  research kmsan offers insights into kernel memory sanitization techniques. kmsan提供了内核内存清理技术的见解。 # kmsan, a look under the hood record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: kmsan, a look under the hood resource_label: primary resource_type: slides resource_url: https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/kernelmemorysanitizer_a_look_under_the_hood.pdf parent_primary_url: https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/kernelmemorysanitizer_a_look_under_the_hood.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"kmsan, a look under the hood\" by alexander potapenko](https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/kernelmemorysanitizer_a_look_under_the_hood.pdf) [slides] [[video](https://www.youtube.com/watch?v=lns2u-3m3yg)] cves: none android_impact_status: no android_impact no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "46c975d3a1a78484",
      "item_id": "7e6c3944a2c787ca",
      "slug": "2021-finding-bugs-kmsan-a-look-under-the-hood-video-032696a8",
      "year": 2021,
      "title": "KMSAN, a look under the hood · video",
      "item_title": "KMSAN, a look under the hood",
      "authors": [
        "Alexander Potapenko"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=LNs2U-3m3yg",
      "primary_url": "https://www.youtube.com/watch?v=LNs2U-3m3yg",
      "parent_primary_url": "https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/KernelMemorySanitizer_a_look_under_the_hood.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-kmsan-a-look-under-the-hood-video-032696a8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KMSAN, a look under the hood · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: KMSAN, a look under the hood resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=LNs2U-3m3yg parent_primary_url: https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/KernelMemorySanitizer_a_look_under_the_hood.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"KMSAN, a look under the hood\" by Alexander Potapenko](https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/KernelMemorySanitizer_a_look_under_the_hood.pdf) [slides] [[video](https://www.youtube.com/watch?v=LNs2U-3m3yg)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android de",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/KernelMemorySanitizer_a_look_under_the_hood.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=LNs2U-3m3yg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/KernelMemorySanitizer_a_look_under_the_hood.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=LNs2U-3m3yg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/KernelMemorySanitizer_a_look_under_the_hood.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory",
        "sanitization",
        "kernel",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "A video presentation on KMSAN, focusing on its implementation and impact.",
      "summary_zh": "关于KMSAN的视频演示，重点介绍其实现和影响。",
      "source_markdown": "[2021: \"KMSAN, a look under the hood\" by Alexander Potapenko](https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/KernelMemorySanitizer_a_look_under_the_hood.pdf) [slides] [[video](https://www.youtube.com/watch?v=LNs2U-3m3yg)]",
      "search_text": "kmsan, a look under the hood · video kmsan, a look under the hood alexander potapenko   finding bugs  finding bugs video video https://www.youtube.com/watch?v=lns2u-3m3yg memory sanitization kernel video  research a video presentation on kmsan, focusing on its implementation and impact. 关于kmsan的视频演示，重点介绍其实现和影响。 # kmsan, a look under the hood · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: kmsan, a look under the hood resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=lns2u-3m3yg parent_primary_url: https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/kernelmemorysanitizer_a_look_under_the_hood.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"kmsan, a look under the hood\" by alexander potapenko](https://github.com/ramosian-glider/talks-and-presentations/blob/master/2021/kernelmemorysanitizer_a_look_under_the_hood.pdf) [slides] [[video](https://www.youtube.com/watch?v=lns2u-3m3yg)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android de no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "cc5c06cf31487ddc",
      "item_id": "fa1da0e2cd4b9df6",
      "slug": "2021-finding-bugs-detecting-kernel-memory-leaks-in-specialized-modules-with-ownership-reasoning-primary-15ad98",
      "year": 2021,
      "title": "Detecting Kernel Memory Leaks in Specialized Modules with Ownership Reasoning",
      "item_title": "Detecting Kernel Memory Leaks in Specialized Modules with Ownership Reasoning",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/k-meld.pdf",
      "primary_url": "https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/k-meld.pdf",
      "parent_primary_url": "https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/k-meld.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-detecting-kernel-memory-leaks-in-specialized-modules-with-ownership-reasoning-primary-15ad98.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Detecting Kernel Memory Leaks in Specialized Modules with Ownership Reasoning record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Detecting Kernel Memory Leaks in Specialized Modules with Ownership Reasoning resource_label: primary resource_type: paper resource_url: https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/k-meld.pdf parent_primary_url: https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/k-meld.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Detecting Kernel Memory Leaks in Specialized Modules with Ownership Reasoning\"](https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/k-meld.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/k-meld.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/k-meld.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/k-meld.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory",
        "leaks",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Detecting kernel memory leaks using ownership reasoning enhances reliability.",
      "summary_zh": "使用所有权推理检测内核内存泄漏提高了可靠性。",
      "source_markdown": "[2021: \"Detecting Kernel Memory Leaks in Specialized Modules with Ownership Reasoning\"](https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/k-meld.pdf) [paper]",
      "search_text": "detecting kernel memory leaks in specialized modules with ownership reasoning detecting kernel memory leaks in specialized modules with ownership reasoning    finding bugs  finding bugs primary paper https://github.com/qiushiwu/qiushiwu.github.io/blob/main/papers/k-meld.pdf memory leaks kernel  research detecting kernel memory leaks using ownership reasoning enhances reliability. 使用所有权推理检测内核内存泄漏提高了可靠性。 # detecting kernel memory leaks in specialized modules with ownership reasoning record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: detecting kernel memory leaks in specialized modules with ownership reasoning resource_label: primary resource_type: paper resource_url: https://github.com/qiushiwu/qiushiwu.github.io/blob/main/papers/k-meld.pdf parent_primary_url: https://github.com/qiushiwu/qiushiwu.github.io/blob/main/papers/k-meld.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"detecting kernel memory leaks in specialized modules with ownership reasoning\"](https://github.com/qiushiwu/qiushiwu.github.io/blob/main/papers/k-meld.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "1c0138c6df592d81",
      "item_id": "0fe22a448778bb51",
      "slug": "2021-finding-bugs-understanding-and-detecting-disordered-error-handling-with-precise-function-pairing-primary-",
      "year": 2021,
      "title": "Understanding and Detecting Disordered Error Handling with Precise Function Pairing",
      "item_title": "Understanding and Detecting Disordered Error Handling with Precise Function Pairing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec21summer_wu-qiushi.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec21summer_wu-qiushi.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21summer_wu-qiushi.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-understanding-and-detecting-disordered-error-handling-with-precise-function-pairing-primary-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Understanding and Detecting Disordered Error Handling with Precise Function Pairing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Understanding and Detecting Disordered Error Handling with Precise Function Pairing resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec21summer_wu-qiushi.pdf parent_primary_url: https://www.usenix.org/system/files/sec21summer_wu-qiushi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Understanding and Detecting Disordered Error Handling with Precise Function Pairing\"](https://www.usenix.org/system/files/sec21summer_wu-qiushi.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: ",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21summer_wu-qiushi.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21summer_wu-qiushi.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "error",
        "handling",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This paper discusses detecting disordered error handling in kernel functions.",
      "summary_zh": "本文讨论了在内核函数中检测无序错误处理。",
      "source_markdown": "[2021: \"Understanding and Detecting Disordered Error Handling with Precise Function Pairing\"](https://www.usenix.org/system/files/sec21summer_wu-qiushi.pdf) [paper]",
      "search_text": "understanding and detecting disordered error handling with precise function pairing understanding and detecting disordered error handling with precise function pairing    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/sec21summer_wu-qiushi.pdf error handling kernel  research this paper discusses detecting disordered error handling in kernel functions. 本文讨论了在内核函数中检测无序错误处理。 # understanding and detecting disordered error handling with precise function pairing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: understanding and detecting disordered error handling with precise function pairing resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec21summer_wu-qiushi.pdf parent_primary_url: https://www.usenix.org/system/files/sec21summer_wu-qiushi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"understanding and detecting disordered error handling with precise function pairing\"](https://www.usenix.org/system/files/sec21summer_wu-qiushi.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "01dbd9bfaa72a549",
      "item_id": "fbbba524eb92c9df",
      "slug": "2021-finding-bugs-kfence-detecting-memory-bugs-in-production-kernels-primary-e03b47f6",
      "year": 2021,
      "title": "KFENCE - Detecting memory bugs in production kernels",
      "item_title": "KFENCE - Detecting memory bugs in production kernels",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://thomasw.dev/post/kfence/",
      "primary_url": "https://thomasw.dev/post/kfence/",
      "parent_primary_url": "https://thomasw.dev/post/kfence/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-kfence-detecting-memory-bugs-in-production-kernels-primary-e03b47f6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KFENCE - Detecting memory bugs in production kernels record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: KFENCE - Detecting memory bugs in production kernels resource_label: primary resource_type: article resource_url: https://thomasw.dev/post/kfence/ parent_primary_url: https://thomasw.dev/post/kfence/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"KFENCE - Detecting memory bugs in production kernels\"](https://thomasw.dev/post/kfence/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://thomasw.dev/post/kfence/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://thomasw.dev/post/kfence/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory",
        "bugs",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "KFENCE is a method for detecting memory bugs in production kernels.",
      "summary_zh": "KFENCE是一种在生产内核中检测内存漏洞的方法。",
      "source_markdown": "[2021: \"KFENCE - Detecting memory bugs in production kernels\"](https://thomasw.dev/post/kfence/) [article]",
      "search_text": "kfence - detecting memory bugs in production kernels kfence - detecting memory bugs in production kernels    finding bugs  finding bugs primary article https://thomasw.dev/post/kfence/ memory bugs kernel  research kfence is a method for detecting memory bugs in production kernels. kfence是一种在生产内核中检测内存漏洞的方法。 # kfence - detecting memory bugs in production kernels record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: kfence - detecting memory bugs in production kernels resource_label: primary resource_type: article resource_url: https://thomasw.dev/post/kfence/ parent_primary_url: https://thomasw.dev/post/kfence/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"kfence - detecting memory bugs in production kernels\"](https://thomasw.dev/post/kfence/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1f5a992675401b92",
      "item_id": "68803829cd159a6f",
      "slug": "2021-finding-bugs-fuzzing-the-linux-kernel-primary-8f13f74b",
      "year": 2021,
      "title": "Fuzzing the Linux Kernel",
      "item_title": "Fuzzing the Linux Kernel",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://linuxfoundation.org/wp-content/uploads/2021-Linux-Foundation-Mentorship-Series_-Fuzzing-the-Linux-Kernel.pdf",
      "primary_url": "https://linuxfoundation.org/wp-content/uploads/2021-Linux-Foundation-Mentorship-Series_-Fuzzing-the-Linux-Kernel.pdf",
      "parent_primary_url": "https://linuxfoundation.org/wp-content/uploads/2021-Linux-Foundation-Mentorship-Series_-Fuzzing-the-Linux-Kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-fuzzing-the-linux-kernel-primary-8f13f74b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fuzzing the Linux Kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Fuzzing the Linux Kernel resource_label: primary resource_type: slides resource_url: https://linuxfoundation.org/wp-content/uploads/2021-Linux-Foundation-Mentorship-Series_-Fuzzing-the-Linux-Kernel.pdf parent_primary_url: https://linuxfoundation.org/wp-content/uploads/2021-Linux-Foundation-Mentorship-Series_-Fuzzing-the-Linux-Kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Fuzzing the Linux Kernel\" by Andrey Konovalov](https://linuxfoundation.org/wp-content/uploads/2021-Linux-Foundation-Mentorship-Series_-Fuzzing-the-Linux-Kernel.pdf) [slides] [[video](https://www.youtube.com/watch?v=4IBWj21tg-c)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that th",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://linuxfoundation.org/wp-content/uploads/2021-Linux-Foundation-Mentorship-Series_-Fuzzing-the-Linux-Kernel.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=4IBWj21tg-c"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://linuxfoundation.org/wp-content/uploads/2021-Linux-Foundation-Mentorship-Series_-Fuzzing-the-Linux-Kernel.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=4IBWj21tg-c"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "testing"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Fuzzing the Linux Kernel explores various techniques and tools for kernel testing.",
      "summary_zh": "对Linux内核进行模糊测试探讨了各种内核测试技术和工具。",
      "source_markdown": "[2021: \"Fuzzing the Linux Kernel\" by Andrey Konovalov](https://linuxfoundation.org/wp-content/uploads/2021-Linux-Foundation-Mentorship-Series_-Fuzzing-the-Linux-Kernel.pdf) [slides] [[video](https://www.youtube.com/watch?v=4IBWj21tg-c)]",
      "search_text": "fuzzing the linux kernel fuzzing the linux kernel andrey konovalov   finding bugs  finding bugs primary slides https://linuxfoundation.org/wp-content/uploads/2021-linux-foundation-mentorship-series_-fuzzing-the-linux-kernel.pdf fuzzing kernel testing  research fuzzing the linux kernel explores various techniques and tools for kernel testing. 对linux内核进行模糊测试探讨了各种内核测试技术和工具。 # fuzzing the linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: fuzzing the linux kernel resource_label: primary resource_type: slides resource_url: https://linuxfoundation.org/wp-content/uploads/2021-linux-foundation-mentorship-series_-fuzzing-the-linux-kernel.pdf parent_primary_url: https://linuxfoundation.org/wp-content/uploads/2021-linux-foundation-mentorship-series_-fuzzing-the-linux-kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"fuzzing the linux kernel\" by andrey konovalov](https://linuxfoundation.org/wp-content/uploads/2021-linux-foundation-mentorship-series_-fuzzing-the-linux-kernel.pdf) [slides] [[video](https://www.youtube.com/watch?v=4ibwj21tg-c)] cves: none android_impact_status: no android_impact_reason: not enough evidence that th no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "82b8e3b3d7454564",
      "item_id": "68803829cd159a6f",
      "slug": "2021-finding-bugs-fuzzing-the-linux-kernel-video-812dc40f",
      "year": 2021,
      "title": "Fuzzing the Linux Kernel · video",
      "item_title": "Fuzzing the Linux Kernel",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=4IBWj21tg-c",
      "primary_url": "https://www.youtube.com/watch?v=4IBWj21tg-c",
      "parent_primary_url": "https://linuxfoundation.org/wp-content/uploads/2021-Linux-Foundation-Mentorship-Series_-Fuzzing-the-Linux-Kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-fuzzing-the-linux-kernel-video-812dc40f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fuzzing the Linux Kernel · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Fuzzing the Linux Kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=4IBWj21tg-c parent_primary_url: https://linuxfoundation.org/wp-content/uploads/2021-Linux-Foundation-Mentorship-Series_-Fuzzing-the-Linux-Kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Fuzzing the Linux Kernel\" by Andrey Konovalov](https://linuxfoundation.org/wp-content/uploads/2021-Linux-Foundation-Mentorship-Series_-Fuzzing-the-Linux-Kernel.pdf) [slides] [[video](https://www.youtube.com/watch?v=4IBWj21tg-c)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://linuxfoundation.org/wp-content/uploads/2021-Linux-Foundation-Mentorship-Series_-Fuzzing-the-Linux-Kernel.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=4IBWj21tg-c"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://linuxfoundation.org/wp-content/uploads/2021-Linux-Foundation-Mentorship-Series_-Fuzzing-the-Linux-Kernel.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=4IBWj21tg-c"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "A video on fuzzing the Linux Kernel, showcasing methodologies and results.",
      "summary_zh": "关于对Linux内核进行模糊测试的视频，展示了方法和结果。",
      "source_markdown": "[2021: \"Fuzzing the Linux Kernel\" by Andrey Konovalov](https://linuxfoundation.org/wp-content/uploads/2021-Linux-Foundation-Mentorship-Series_-Fuzzing-the-Linux-Kernel.pdf) [slides] [[video](https://www.youtube.com/watch?v=4IBWj21tg-c)]",
      "search_text": "fuzzing the linux kernel · video fuzzing the linux kernel andrey konovalov   finding bugs  finding bugs video video https://www.youtube.com/watch?v=4ibwj21tg-c fuzzing kernel video  research a video on fuzzing the linux kernel, showcasing methodologies and results. 关于对linux内核进行模糊测试的视频，展示了方法和结果。 # fuzzing the linux kernel · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: fuzzing the linux kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=4ibwj21tg-c parent_primary_url: https://linuxfoundation.org/wp-content/uploads/2021-linux-foundation-mentorship-series_-fuzzing-the-linux-kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"fuzzing the linux kernel\" by andrey konovalov](https://linuxfoundation.org/wp-content/uploads/2021-linux-foundation-mentorship-series_-fuzzing-the-linux-kernel.pdf) [slides] [[video](https://www.youtube.com/watch?v=4ibwj21tg-c)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f1b579f9aa1d61f5",
      "item_id": "3c1da95113e500bd",
      "slug": "2021-finding-bugs-dynamic-program-analysis-for-fun-and-profit-primary-3155b888",
      "year": 2021,
      "title": "Dynamic program analysis for fun and profit",
      "item_title": "Dynamic program analysis for fun and profit",
      "authors": [
        "Dmitry Vyukov"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://linuxfoundation.org/wp-content/uploads/Dynamic-program-analysis_-LF-Mentorship.pdf",
      "primary_url": "https://linuxfoundation.org/wp-content/uploads/Dynamic-program-analysis_-LF-Mentorship.pdf",
      "parent_primary_url": "https://linuxfoundation.org/wp-content/uploads/Dynamic-program-analysis_-LF-Mentorship.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-dynamic-program-analysis-for-fun-and-profit-primary-3155b888.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Dynamic program analysis for fun and profit record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Dynamic program analysis for fun and profit resource_label: primary resource_type: slides resource_url: https://linuxfoundation.org/wp-content/uploads/Dynamic-program-analysis_-LF-Mentorship.pdf parent_primary_url: https://linuxfoundation.org/wp-content/uploads/Dynamic-program-analysis_-LF-Mentorship.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Dynamic program analysis for fun and profit\" by Dmitry Vyukov](https://linuxfoundation.org/wp-content/uploads/Dynamic-program-analysis_-LF-Mentorship.pdf) [slides] [[video](https://www.youtube.com/watch?v=ufcyOkgFZ2Q)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to rele",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://linuxfoundation.org/wp-content/uploads/Dynamic-program-analysis_-LF-Mentorship.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=ufcyOkgFZ2Q"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://linuxfoundation.org/wp-content/uploads/Dynamic-program-analysis_-LF-Mentorship.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=ufcyOkgFZ2Q"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "dynamic",
        "analysis",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Dynamic program analysis techniques are discussed for improving kernel security.",
      "summary_zh": "讨论了动态程序分析技术以提高内核安全性。",
      "source_markdown": "[2021: \"Dynamic program analysis for fun and profit\" by Dmitry Vyukov](https://linuxfoundation.org/wp-content/uploads/Dynamic-program-analysis_-LF-Mentorship.pdf) [slides] [[video](https://www.youtube.com/watch?v=ufcyOkgFZ2Q)]",
      "search_text": "dynamic program analysis for fun and profit dynamic program analysis for fun and profit dmitry vyukov   finding bugs  finding bugs primary slides https://linuxfoundation.org/wp-content/uploads/dynamic-program-analysis_-lf-mentorship.pdf dynamic analysis kernel  research dynamic program analysis techniques are discussed for improving kernel security. 讨论了动态程序分析技术以提高内核安全性。 # dynamic program analysis for fun and profit record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: dynamic program analysis for fun and profit resource_label: primary resource_type: slides resource_url: https://linuxfoundation.org/wp-content/uploads/dynamic-program-analysis_-lf-mentorship.pdf parent_primary_url: https://linuxfoundation.org/wp-content/uploads/dynamic-program-analysis_-lf-mentorship.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"dynamic program analysis for fun and profit\" by dmitry vyukov](https://linuxfoundation.org/wp-content/uploads/dynamic-program-analysis_-lf-mentorship.pdf) [slides] [[video](https://www.youtube.com/watch?v=ufcyokgfz2q)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to rele no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "160e6e1d7c225658",
      "item_id": "3c1da95113e500bd",
      "slug": "2021-finding-bugs-dynamic-program-analysis-for-fun-and-profit-video-5a1eb234",
      "year": 2021,
      "title": "Dynamic program analysis for fun and profit · video",
      "item_title": "Dynamic program analysis for fun and profit",
      "authors": [
        "Dmitry Vyukov"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=ufcyOkgFZ2Q",
      "primary_url": "https://www.youtube.com/watch?v=ufcyOkgFZ2Q",
      "parent_primary_url": "https://linuxfoundation.org/wp-content/uploads/Dynamic-program-analysis_-LF-Mentorship.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2021-finding-bugs-dynamic-program-analysis-for-fun-and-profit-video-5a1eb234.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Dynamic program analysis for fun and profit · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Dynamic program analysis for fun and profit resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=ufcyOkgFZ2Q parent_primary_url: https://linuxfoundation.org/wp-content/uploads/Dynamic-program-analysis_-LF-Mentorship.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"Dynamic program analysis for fun and profit\" by Dmitry Vyukov](https://linuxfoundation.org/wp-content/uploads/Dynamic-program-analysis_-LF-Mentorship.pdf) [slides] [[video](https://www.youtube.com/watch?v=ufcyOkgFZ2Q)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: n",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://linuxfoundation.org/wp-content/uploads/Dynamic-program-analysis_-LF-Mentorship.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=ufcyOkgFZ2Q"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://linuxfoundation.org/wp-content/uploads/Dynamic-program-analysis_-LF-Mentorship.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=ufcyOkgFZ2Q"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "dynamic",
        "analysis",
        "kernel",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "A video presentation on dynamic program analysis for enhancing kernel security.",
      "summary_zh": "关于动态程序分析以增强内核安全性的视频演示。",
      "source_markdown": "[2021: \"Dynamic program analysis for fun and profit\" by Dmitry Vyukov](https://linuxfoundation.org/wp-content/uploads/Dynamic-program-analysis_-LF-Mentorship.pdf) [slides] [[video](https://www.youtube.com/watch?v=ufcyOkgFZ2Q)]",
      "search_text": "dynamic program analysis for fun and profit · video dynamic program analysis for fun and profit dmitry vyukov   finding bugs  finding bugs video video https://www.youtube.com/watch?v=ufcyokgfz2q dynamic analysis kernel video  research a video presentation on dynamic program analysis for enhancing kernel security. 关于动态程序分析以增强内核安全性的视频演示。 # dynamic program analysis for fun and profit · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: dynamic program analysis for fun and profit resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=ufcyokgfz2q parent_primary_url: https://linuxfoundation.org/wp-content/uploads/dynamic-program-analysis_-lf-mentorship.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2021: \"dynamic program analysis for fun and profit\" by dmitry vyukov](https://linuxfoundation.org/wp-content/uploads/dynamic-program-analysis_-lf-mentorship.pdf) [slides] [[video](https://www.youtube.com/watch?v=ufcyokgfz2q)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: n no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "8c17d1e83d9ca0a9",
      "item_id": "d68a92c5b4ffa98d",
      "slug": "2020-finding-bugs-ubitect-a-precise-and-scalable-method-to-detect-use-before-initialization-bugs-in-linux-kern",
      "year": 2020,
      "title": "UBITect: A Precise and Scalable Method to Detect Use-before-Initialization Bugs in Linux Kernel",
      "item_title": "UBITect: A Precise and Scalable Method to Detect Use-before-Initialization Bugs in Linux Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://dl.acm.org/doi/pdf/10.1145/3368089.3409686",
      "primary_url": "https://dl.acm.org/doi/pdf/10.1145/3368089.3409686",
      "parent_primary_url": "https://dl.acm.org/doi/pdf/10.1145/3368089.3409686",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-ubitect-a-precise-and-scalable-method-to-detect-use-before-initialization-bugs-in-linux-kern.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# UBITect: A Precise and Scalable Method to Detect Use-before-Initialization Bugs in Linux Kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: UBITect: A Precise and Scalable Method to Detect Use-before-Initialization Bugs in Linux Kernel resource_label: primary resource_type: paper resource_url: https://dl.acm.org/doi/pdf/10.1145/3368089.3409686 parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3368089.3409686 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"UBITect: A Precise and Scalable Method to Detect Use-before-Initialization Bugs in Linux Kernel\"](https://dl.acm.org/doi/pdf/10.1145/3368089.3409686) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_statu",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://dl.acm.org/doi/pdf/10.1145/3368089.3409686"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://dl.acm.org/doi/pdf/10.1145/3368089.3409686"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "use-before-init",
        "detection",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "UBITect provides a method for detecting use-before-initialization bugs in the kernel.",
      "summary_zh": "UBITect提供了一种检测内核中未初始化使用漏洞的方法。",
      "source_markdown": "[2020: \"UBITect: A Precise and Scalable Method to Detect Use-before-Initialization Bugs in Linux Kernel\"](https://dl.acm.org/doi/pdf/10.1145/3368089.3409686) [paper]",
      "search_text": "ubitect: a precise and scalable method to detect use-before-initialization bugs in linux kernel ubitect: a precise and scalable method to detect use-before-initialization bugs in linux kernel    finding bugs  finding bugs primary paper https://dl.acm.org/doi/pdf/10.1145/3368089.3409686 use-before-init detection kernel  research ubitect provides a method for detecting use-before-initialization bugs in the kernel. ubitect提供了一种检测内核中未初始化使用漏洞的方法。 # ubitect: a precise and scalable method to detect use-before-initialization bugs in linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: ubitect: a precise and scalable method to detect use-before-initialization bugs in linux kernel resource_label: primary resource_type: paper resource_url: https://dl.acm.org/doi/pdf/10.1145/3368089.3409686 parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3368089.3409686 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"ubitect: a precise and scalable method to detect use-before-initialization bugs in linux kernel\"](https://dl.acm.org/doi/pdf/10.1145/3368089.3409686) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_statu no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3b4cac396b1525ee",
      "item_id": "86d4ec9b7d80fee2",
      "slug": "2020-finding-bugs-retrowrite-statically-instrumenting-cots-binaries-for-fuzzing-and-sanitization-primary-4a912",
      "year": 2020,
      "title": "RetroWrite: Statically Instrumenting COTS Binaries for Fuzzing and Sanitization",
      "item_title": "RetroWrite: Statically Instrumenting COTS Binaries for Fuzzing and Sanitization",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://nebelwelt.net/files/20Oakland.pdf",
      "primary_url": "https://nebelwelt.net/files/20Oakland.pdf",
      "parent_primary_url": "https://nebelwelt.net/files/20Oakland.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-retrowrite-statically-instrumenting-cots-binaries-for-fuzzing-and-sanitization-primary-4a912.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# RetroWrite: Statically Instrumenting COTS Binaries for Fuzzing and Sanitization record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: RetroWrite: Statically Instrumenting COTS Binaries for Fuzzing and Sanitization resource_label: primary resource_type: paper resource_url: https://nebelwelt.net/files/20Oakland.pdf parent_primary_url: https://nebelwelt.net/files/20Oakland.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"RetroWrite: Statically Instrumenting COTS Binaries for Fuzzing and Sanitization\"](https://nebelwelt.net/files/20Oakland.pdf) [paper] [[tool](https://github.com/HexHive/RetroWrite)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Pr",
      "link_types": [
        "paper",
        "tool"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://nebelwelt.net/files/20Oakland.pdf"
        },
        {
          "label": "tool",
          "type": "tool",
          "url": "https://github.com/HexHive/RetroWrite"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://nebelwelt.net/files/20Oakland.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "tool",
            "type": "tool",
            "url": "https://github.com/HexHive/RetroWrite"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/HexHive/RetroWrite"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "instrumentation",
        "fuzzing",
        "binaries"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "RetroWrite enables static instrumentation of binaries for fuzzing and sanitization.",
      "summary_zh": "RetroWrite实现了二进制文件的静态仪器化以进行模糊测试和清理。",
      "source_markdown": "[2020: \"RetroWrite: Statically Instrumenting COTS Binaries for Fuzzing and Sanitization\"](https://nebelwelt.net/files/20Oakland.pdf) [paper] [[tool](https://github.com/HexHive/RetroWrite)]",
      "search_text": "retrowrite: statically instrumenting cots binaries for fuzzing and sanitization retrowrite: statically instrumenting cots binaries for fuzzing and sanitization    finding bugs  finding bugs primary paper https://nebelwelt.net/files/20oakland.pdf instrumentation fuzzing binaries  research retrowrite enables static instrumentation of binaries for fuzzing and sanitization. retrowrite实现了二进制文件的静态仪器化以进行模糊测试和清理。 # retrowrite: statically instrumenting cots binaries for fuzzing and sanitization record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: retrowrite: statically instrumenting cots binaries for fuzzing and sanitization resource_label: primary resource_type: paper resource_url: https://nebelwelt.net/files/20oakland.pdf parent_primary_url: https://nebelwelt.net/files/20oakland.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"retrowrite: statically instrumenting cots binaries for fuzzing and sanitization\"](https://nebelwelt.net/files/20oakland.pdf) [paper] [[tool](https://github.com/hexhive/retrowrite)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: pr no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "bbe44a5dce17f105",
      "item_id": "86d4ec9b7d80fee2",
      "slug": "2020-finding-bugs-retrowrite-statically-instrumenting-cots-binaries-for-fuzzing-and-sanitization-tool-82a3be17",
      "year": 2020,
      "title": "RetroWrite: Statically Instrumenting COTS Binaries for Fuzzing and Sanitization · tool",
      "item_title": "RetroWrite: Statically Instrumenting COTS Binaries for Fuzzing and Sanitization",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "tool",
      "resource_type": "tool",
      "resource_url": "https://github.com/HexHive/RetroWrite",
      "primary_url": "https://github.com/HexHive/RetroWrite",
      "parent_primary_url": "https://nebelwelt.net/files/20Oakland.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-retrowrite-statically-instrumenting-cots-binaries-for-fuzzing-and-sanitization-tool-82a3be17.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# RetroWrite: Statically Instrumenting COTS Binaries for Fuzzing and Sanitization · tool record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: RetroWrite: Statically Instrumenting COTS Binaries for Fuzzing and Sanitization resource_label: tool resource_type: tool resource_url: https://github.com/HexHive/RetroWrite parent_primary_url: https://nebelwelt.net/files/20Oakland.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"RetroWrite: Statically Instrumenting COTS Binaries for Fuzzing and Sanitization\"](https://nebelwelt.net/files/20Oakland.pdf) [paper] [[tool](https://github.com/HexHive/RetroWrite)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Pro",
      "link_types": [
        "paper",
        "tool"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://nebelwelt.net/files/20Oakland.pdf"
        },
        {
          "label": "tool",
          "type": "tool",
          "url": "https://github.com/HexHive/RetroWrite"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://nebelwelt.net/files/20Oakland.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "tool",
            "type": "tool",
            "url": "https://github.com/HexHive/RetroWrite"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/HexHive/RetroWrite"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "instrumentation",
        "COTS"
      ],
      "affected_area": "",
      "exploit_stage": "tool",
      "summary_en": "RetroWrite is a tool for statically instrumenting COTS binaries to enhance fuzzing and sanitization efforts.",
      "summary_zh": "RetroWrite是一个工具，用于静态插装COTS二进制文件，以增强模糊测试和清理工作。",
      "source_markdown": "[2020: \"RetroWrite: Statically Instrumenting COTS Binaries for Fuzzing and Sanitization\"](https://nebelwelt.net/files/20Oakland.pdf) [paper] [[tool](https://github.com/HexHive/RetroWrite)]",
      "search_text": "retrowrite: statically instrumenting cots binaries for fuzzing and sanitization · tool retrowrite: statically instrumenting cots binaries for fuzzing and sanitization    finding bugs  finding bugs tool tool https://github.com/hexhive/retrowrite fuzzing instrumentation cots  tool retrowrite is a tool for statically instrumenting cots binaries to enhance fuzzing and sanitization efforts. retrowrite是一个工具，用于静态插装cots二进制文件，以增强模糊测试和清理工作。 # retrowrite: statically instrumenting cots binaries for fuzzing and sanitization · tool record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: retrowrite: statically instrumenting cots binaries for fuzzing and sanitization resource_label: tool resource_type: tool resource_url: https://github.com/hexhive/retrowrite parent_primary_url: https://nebelwelt.net/files/20oakland.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"retrowrite: statically instrumenting cots binaries for fuzzing and sanitization\"](https://nebelwelt.net/files/20oakland.pdf) [paper] [[tool](https://github.com/hexhive/retrowrite)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: pro no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "79b5219c9bc542f8",
      "item_id": "75640327730ce4b6",
      "slug": "2020-finding-bugs-fuzzing-a-pixel-3a-kernel-with-syzkaller-primary-148c7a51",
      "year": 2020,
      "title": "Fuzzing a Pixel 3a Kernel with Syzkaller",
      "item_title": "Fuzzing a Pixel 3a Kernel with Syzkaller",
      "authors": [
        "senyuuri"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.senyuuri.info/2020/04/16/fuzzing-a-pixel-3a-kernel-with-syzkaller/",
      "primary_url": "https://blog.senyuuri.info/2020/04/16/fuzzing-a-pixel-3a-kernel-with-syzkaller/",
      "parent_primary_url": "https://blog.senyuuri.info/2020/04/16/fuzzing-a-pixel-3a-kernel-with-syzkaller/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-fuzzing-a-pixel-3a-kernel-with-syzkaller-primary-148c7a51.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fuzzing a Pixel 3a Kernel with Syzkaller record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Fuzzing a Pixel 3a Kernel with Syzkaller resource_label: primary resource_type: article resource_url: https://blog.senyuuri.info/2020/04/16/fuzzing-a-pixel-3a-kernel-with-syzkaller/ parent_primary_url: https://blog.senyuuri.info/2020/04/16/fuzzing-a-pixel-3a-kernel-with-syzkaller/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Fuzzing a Pixel 3a Kernel with Syzkaller\" by senyuuri](https://blog.senyuuri.info/2020/04/16/fuzzing-a-pixel-3a-kernel-with-syzkaller/) [article] cves: none android_impact_status: unknown android_impact_reason: mentions Pixel devices; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.senyuuri.info/2020/04/16/fuzzing-a-pixel-3a-kernel-with-syzkaller/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.senyuuri.info/2020/04/16/fuzzing-a-pixel-3a-kernel-with-syzkaller/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Pixel devices; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "Syzkaller"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "This article discusses the process of fuzzing the Pixel 3a kernel using Syzkaller.",
      "summary_zh": "本文讨论了使用Syzkaller对Pixel 3a内核进行模糊测试的过程。",
      "source_markdown": "[2020: \"Fuzzing a Pixel 3a Kernel with Syzkaller\" by senyuuri](https://blog.senyuuri.info/2020/04/16/fuzzing-a-pixel-3a-kernel-with-syzkaller/) [article]",
      "search_text": "fuzzing a pixel 3a kernel with syzkaller fuzzing a pixel 3a kernel with syzkaller senyuuri   finding bugs  finding bugs primary article https://blog.senyuuri.info/2020/04/16/fuzzing-a-pixel-3a-kernel-with-syzkaller/ fuzzing kernel syzkaller  article this article discusses the process of fuzzing the pixel 3a kernel using syzkaller. 本文讨论了使用syzkaller对pixel 3a内核进行模糊测试的过程。 # fuzzing a pixel 3a kernel with syzkaller record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: fuzzing a pixel 3a kernel with syzkaller resource_label: primary resource_type: article resource_url: https://blog.senyuuri.info/2020/04/16/fuzzing-a-pixel-3a-kernel-with-syzkaller/ parent_primary_url: https://blog.senyuuri.info/2020/04/16/fuzzing-a-pixel-3a-kernel-with-syzkaller/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"fuzzing a pixel 3a kernel with syzkaller\" by senyuuri](https://blog.senyuuri.info/2020/04/16/fuzzing-a-pixel-3a-kernel-with-syzkaller/) [article] cves: none android_impact_status: unknown android_impact_reason: mentions pixel devices; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_ unknown mentions pixel devices; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "334512e5d3231d5e",
      "item_id": "4b58e1957cf2f161",
      "slug": "2020-finding-bugs-fuzzing-the-berkeley-packet-filter-primary-dfcfdd7e",
      "year": 2020,
      "title": "Fuzzing the Berkeley Packet Filter",
      "item_title": "Fuzzing the Berkeley Packet Filter",
      "authors": [
        "Benjamin Curt Nilsen"
      ],
      "cves": [],
      "tags": [
        "thesis"
      ],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://search.proquest.com/openview/feeeac2f4c7f767740986bdbf9d51785/1?pq-origsite=gscholar&cbl=44156",
      "primary_url": "https://search.proquest.com/openview/feeeac2f4c7f767740986bdbf9d51785/1?pq-origsite=gscholar&cbl=44156",
      "parent_primary_url": "https://search.proquest.com/openview/feeeac2f4c7f767740986bdbf9d51785/1?pq-origsite=gscholar&cbl=44156",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-fuzzing-the-berkeley-packet-filter-primary-dfcfdd7e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fuzzing the Berkeley Packet Filter record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Fuzzing the Berkeley Packet Filter resource_label: primary resource_type: article resource_url: https://search.proquest.com/openview/feeeac2f4c7f767740986bdbf9d51785/1?pq-origsite=gscholar&cbl=44156 parent_primary_url: https://search.proquest.com/openview/feeeac2f4c7f767740986bdbf9d51785/1?pq-origsite=gscholar&cbl=44156 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Fuzzing the Berkeley Packet Filter\" by Benjamin Curt Nilsen](https://search.proquest.com/openview/feeeac2f4c7f767740986bdbf9d51785/1?pq-origsite=gscholar&cbl=44156) [thesis] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_statu",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://search.proquest.com/openview/feeeac2f4c7f767740986bdbf9d51785/1?pq-origsite=gscholar&cbl=44156"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://search.proquest.com/openview/feeeac2f4c7f767740986bdbf9d51785/1?pq-origsite=gscholar&cbl=44156"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "BPF",
        "thesis"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "The thesis explores fuzzing techniques applied to the Berkeley Packet Filter.",
      "summary_zh": "该论文探讨了应用于伯克利数据包过滤器的模糊测试技术。",
      "source_markdown": "[2020: \"Fuzzing the Berkeley Packet Filter\" by Benjamin Curt Nilsen](https://search.proquest.com/openview/feeeac2f4c7f767740986bdbf9d51785/1?pq-origsite=gscholar&cbl=44156) [thesis]",
      "search_text": "fuzzing the berkeley packet filter fuzzing the berkeley packet filter benjamin curt nilsen  thesis finding bugs  finding bugs primary article https://search.proquest.com/openview/feeeac2f4c7f767740986bdbf9d51785/1?pq-origsite=gscholar&cbl=44156 fuzzing bpf thesis  article the thesis explores fuzzing techniques applied to the berkeley packet filter. 该论文探讨了应用于伯克利数据包过滤器的模糊测试技术。 # fuzzing the berkeley packet filter record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: fuzzing the berkeley packet filter resource_label: primary resource_type: article resource_url: https://search.proquest.com/openview/feeeac2f4c7f767740986bdbf9d51785/1?pq-origsite=gscholar&cbl=44156 parent_primary_url: https://search.proquest.com/openview/feeeac2f4c7f767740986bdbf9d51785/1?pq-origsite=gscholar&cbl=44156 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"fuzzing the berkeley packet filter\" by benjamin curt nilsen](https://search.proquest.com/openview/feeeac2f4c7f767740986bdbf9d51785/1?pq-origsite=gscholar&cbl=44156) [thesis] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_statu no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7f2a3594b9ddc9b7",
      "item_id": "8ed3691c551244b3",
      "slug": "2020-finding-bugs-syzkaller-adventures-in-continuous-coverage-guided-kernel-fuzzing-primary-9d2435bd",
      "year": 2020,
      "title": "syzkaller: Adventures in Continuous Coverage-guided Kernel Fuzzing",
      "item_title": "syzkaller: Adventures in Continuous Coverage-guided Kernel Fuzzing",
      "authors": [
        "Dmitry Vyukov at BlueHat IL"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://docs.google.com/presentation/d/e/2PACX-1vRWjOOL45BclKsCPMzdWmvH12hu-Ld1cU5MbB1tqcBhjVIr1M_qxZRE-ObKcVmqpCyqRAO62Sxm0_aW/pub?start=false&loop=false&delayms=3000&slide=id.p",
      "primary_url": "https://docs.google.com/presentation/d/e/2PACX-1vRWjOOL45BclKsCPMzdWmvH12hu-Ld1cU5MbB1tqcBhjVIr1M_qxZRE-ObKcVmqpCyqRAO62Sxm0_aW/pub?start=false&loop=false&delayms=3000&slide=id.p",
      "parent_primary_url": "https://docs.google.com/presentation/d/e/2PACX-1vRWjOOL45BclKsCPMzdWmvH12hu-Ld1cU5MbB1tqcBhjVIr1M_qxZRE-ObKcVmqpCyqRAO62Sxm0_aW/pub?start=false&loop=false&delayms=3000&slide=id.p",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-syzkaller-adventures-in-continuous-coverage-guided-kernel-fuzzing-primary-9d2435bd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# syzkaller: Adventures in Continuous Coverage-guided Kernel Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: syzkaller: Adventures in Continuous Coverage-guided Kernel Fuzzing resource_label: primary resource_type: article resource_url: https://docs.google.com/presentation/d/e/2PACX-1vRWjOOL45BclKsCPMzdWmvH12hu-Ld1cU5MbB1tqcBhjVIr1M_qxZRE-ObKcVmqpCyqRAO62Sxm0_aW/pub?start=false&loop=false&delayms=3000&slide=id.p parent_primary_url: https://docs.google.com/presentation/d/e/2PACX-1vRWjOOL45BclKsCPMzdWmvH12hu-Ld1cU5MbB1tqcBhjVIr1M_qxZRE-ObKcVmqpCyqRAO62Sxm0_aW/pub?start=false&loop=false&delayms=3000&slide=id.p source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"syzkaller: Adventures in Continuous Coverage-guided Kernel Fuzzing\" by Dmitry Vyukov at BlueHat IL](https:/",
      "link_types": [
        "article",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://docs.google.com/presentation/d/e/2PACX-1vRWjOOL45BclKsCPMzdWmvH12hu-Ld1cU5MbB1tqcBhjVIr1M_qxZRE-ObKcVmqpCyqRAO62Sxm0_aW/pub?start=false&loop=false&delayms=3000&slide=id.p"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=YwX4UyXnhz0"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://docs.google.com/presentation/d/e/2PACX-1vRWjOOL45BclKsCPMzdWmvH12hu-Ld1cU5MbB1tqcBhjVIr1M_qxZRE-ObKcVmqpCyqRAO62Sxm0_aW/pub?start=false&loop=false&delayms=3000&slide=id.p"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=YwX4UyXnhz0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "Syzkaller"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "This article presents insights from continuous coverage-guided kernel fuzzing using Syzkaller.",
      "summary_zh": "本文介绍了使用Syzkaller进行持续覆盖引导的内核模糊测试的见解。",
      "source_markdown": "[2020: \"syzkaller: Adventures in Continuous Coverage-guided Kernel Fuzzing\" by Dmitry Vyukov at BlueHat IL](https://docs.google.com/presentation/d/e/2PACX-1vRWjOOL45BclKsCPMzdWmvH12hu-Ld1cU5MbB1tqcBhjVIr1M_qxZRE-ObKcVmqpCyqRAO62Sxm0_aW/pub?start=false&loop=false&delayms=3000&slide=id.p) [[video](https://www.youtube.com/watch?v=YwX4UyXnhz0)]",
      "search_text": "syzkaller: adventures in continuous coverage-guided kernel fuzzing syzkaller: adventures in continuous coverage-guided kernel fuzzing dmitry vyukov at bluehat il   finding bugs  finding bugs primary article https://docs.google.com/presentation/d/e/2pacx-1vrwjool45bclkscpmzdwmvh12hu-ld1cu5mbb1tqcbhjvir1m_qxzre-obkcvmqpcyqrao62sxm0_aw/pub?start=false&loop=false&delayms=3000&slide=id.p fuzzing kernel syzkaller  article this article presents insights from continuous coverage-guided kernel fuzzing using syzkaller. 本文介绍了使用syzkaller进行持续覆盖引导的内核模糊测试的见解。 # syzkaller: adventures in continuous coverage-guided kernel fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzkaller: adventures in continuous coverage-guided kernel fuzzing resource_label: primary resource_type: article resource_url: https://docs.google.com/presentation/d/e/2pacx-1vrwjool45bclkscpmzdwmvh12hu-ld1cu5mbb1tqcbhjvir1m_qxzre-obkcvmqpcyqrao62sxm0_aw/pub?start=false&loop=false&delayms=3000&slide=id.p parent_primary_url: https://docs.google.com/presentation/d/e/2pacx-1vrwjool45bclkscpmzdwmvh12hu-ld1cu5mbb1tqcbhjvir1m_qxzre-obkcvmqpcyqrao62sxm0_aw/pub?start=false&loop=false&delayms=3000&slide=id.p source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"syzkaller: adventures in continuous coverage-guided kernel fuzzing\" by dmitry vyukov at bluehat il](https:/ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f700597eea631847",
      "item_id": "8ed3691c551244b3",
      "slug": "2020-finding-bugs-syzkaller-adventures-in-continuous-coverage-guided-kernel-fuzzing-video-07c36248",
      "year": 2020,
      "title": "syzkaller: Adventures in Continuous Coverage-guided Kernel Fuzzing · video",
      "item_title": "syzkaller: Adventures in Continuous Coverage-guided Kernel Fuzzing",
      "authors": [
        "Dmitry Vyukov at BlueHat IL"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=YwX4UyXnhz0",
      "primary_url": "https://www.youtube.com/watch?v=YwX4UyXnhz0",
      "parent_primary_url": "https://docs.google.com/presentation/d/e/2PACX-1vRWjOOL45BclKsCPMzdWmvH12hu-Ld1cU5MbB1tqcBhjVIr1M_qxZRE-ObKcVmqpCyqRAO62Sxm0_aW/pub?start=false&loop=false&delayms=3000&slide=id.p",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-syzkaller-adventures-in-continuous-coverage-guided-kernel-fuzzing-video-07c36248.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# syzkaller: Adventures in Continuous Coverage-guided Kernel Fuzzing · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: syzkaller: Adventures in Continuous Coverage-guided Kernel Fuzzing resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=YwX4UyXnhz0 parent_primary_url: https://docs.google.com/presentation/d/e/2PACX-1vRWjOOL45BclKsCPMzdWmvH12hu-Ld1cU5MbB1tqcBhjVIr1M_qxZRE-ObKcVmqpCyqRAO62Sxm0_aW/pub?start=false&loop=false&delayms=3000&slide=id.p source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"syzkaller: Adventures in Continuous Coverage-guided Kernel Fuzzing\" by Dmitry Vyukov at BlueHat IL](https://docs.google.com/presentation/d/e/2PACX-1vRWjOOL45BclKsCPMzdWmvH12hu-Ld1cU5MbB1tqcBhjVIr1M_qxZRE-ObKcVmqpCyqRAO62Sxm0_aW/pub?start=",
      "link_types": [
        "article",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://docs.google.com/presentation/d/e/2PACX-1vRWjOOL45BclKsCPMzdWmvH12hu-Ld1cU5MbB1tqcBhjVIr1M_qxZRE-ObKcVmqpCyqRAO62Sxm0_aW/pub?start=false&loop=false&delayms=3000&slide=id.p"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=YwX4UyXnhz0"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://docs.google.com/presentation/d/e/2PACX-1vRWjOOL45BclKsCPMzdWmvH12hu-Ld1cU5MbB1tqcBhjVIr1M_qxZRE-ObKcVmqpCyqRAO62Sxm0_aW/pub?start=false&loop=false&delayms=3000&slide=id.p"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=YwX4UyXnhz0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "Syzkaller"
      ],
      "affected_area": "",
      "exploit_stage": "video",
      "summary_en": "A video presentation on continuous coverage-guided kernel fuzzing with Syzkaller.",
      "summary_zh": "关于使用Syzkaller进行持续覆盖引导的内核模糊测试的视频演示。",
      "source_markdown": "[2020: \"syzkaller: Adventures in Continuous Coverage-guided Kernel Fuzzing\" by Dmitry Vyukov at BlueHat IL](https://docs.google.com/presentation/d/e/2PACX-1vRWjOOL45BclKsCPMzdWmvH12hu-Ld1cU5MbB1tqcBhjVIr1M_qxZRE-ObKcVmqpCyqRAO62Sxm0_aW/pub?start=false&loop=false&delayms=3000&slide=id.p) [[video](https://www.youtube.com/watch?v=YwX4UyXnhz0)]",
      "search_text": "syzkaller: adventures in continuous coverage-guided kernel fuzzing · video syzkaller: adventures in continuous coverage-guided kernel fuzzing dmitry vyukov at bluehat il   finding bugs  finding bugs video video https://www.youtube.com/watch?v=ywx4uyxnhz0 fuzzing kernel syzkaller  video a video presentation on continuous coverage-guided kernel fuzzing with syzkaller. 关于使用syzkaller进行持续覆盖引导的内核模糊测试的视频演示。 # syzkaller: adventures in continuous coverage-guided kernel fuzzing · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzkaller: adventures in continuous coverage-guided kernel fuzzing resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=ywx4uyxnhz0 parent_primary_url: https://docs.google.com/presentation/d/e/2pacx-1vrwjool45bclkscpmzdwmvh12hu-ld1cu5mbb1tqcbhjvir1m_qxzre-obkcvmqpcyqrao62sxm0_aw/pub?start=false&loop=false&delayms=3000&slide=id.p source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"syzkaller: adventures in continuous coverage-guided kernel fuzzing\" by dmitry vyukov at bluehat il](https://docs.google.com/presentation/d/e/2pacx-1vrwjool45bclkscpmzdwmvh12hu-ld1cu5mbb1tqcbhjvir1m_qxzre-obkcvmqpcyqrao62sxm0_aw/pub?start= no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "402a6ea752b1d8d5",
      "item_id": "c4d70b1f309ad82a",
      "slug": "2020-finding-bugs-syzkaller-sanitizers-status-update-primary-8239446f",
      "year": 2020,
      "title": "syzkaller / sanitizers: status update",
      "item_title": "syzkaller / sanitizers: status update",
      "authors": [
        "Dmitry Vyukov at Linux Plumbers"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_LPC2020.pdf",
      "primary_url": "https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_LPC2020.pdf",
      "parent_primary_url": "https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_LPC2020.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-syzkaller-sanitizers-status-update-primary-8239446f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# syzkaller / sanitizers: status update record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: syzkaller / sanitizers: status update resource_label: primary resource_type: slides resource_url: https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_LPC2020.pdf parent_primary_url: https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_LPC2020.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"syzkaller / sanitizers: status update\" by Dmitry Vyukov at Linux Plumbers](https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_LPC2020.pdf) [slides] [[video](https://www.youtube.com/watch?v=y9Glc90WUN0&t=234)] cves: none android_impact_status: no android_impact_reason: Not enough evidence t",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_LPC2020.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=y9Glc90WUN0&t=234"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_LPC2020.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=y9Glc90WUN0&t=234"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "Syzkaller"
      ],
      "affected_area": "",
      "exploit_stage": "slides",
      "summary_en": "Slides detailing the status update on Syzkaller and sanitizers in kernel fuzzing.",
      "summary_zh": "关于Syzkaller和内核模糊测试中清理器的状态更新的幻灯片。",
      "source_markdown": "[2020: \"syzkaller / sanitizers: status update\" by Dmitry Vyukov at Linux Plumbers](https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_LPC2020.pdf) [slides] [[video](https://www.youtube.com/watch?v=y9Glc90WUN0&t=234)]",
      "search_text": "syzkaller / sanitizers: status update syzkaller / sanitizers: status update dmitry vyukov at linux plumbers   finding bugs  finding bugs primary slides https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_lpc2020.pdf fuzzing kernel syzkaller  slides slides detailing the status update on syzkaller and sanitizers in kernel fuzzing. 关于syzkaller和内核模糊测试中清理器的状态更新的幻灯片。 # syzkaller / sanitizers: status update record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzkaller / sanitizers: status update resource_label: primary resource_type: slides resource_url: https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_lpc2020.pdf parent_primary_url: https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_lpc2020.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"syzkaller / sanitizers: status update\" by dmitry vyukov at linux plumbers](https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_lpc2020.pdf) [slides] [[video](https://www.youtube.com/watch?v=y9glc90wun0&t=234)] cves: none android_impact_status: no android_impact_reason: not enough evidence t no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "98d51c6dca3ba723",
      "item_id": "c4d70b1f309ad82a",
      "slug": "2020-finding-bugs-syzkaller-sanitizers-status-update-video-cfa9a1da",
      "year": 2020,
      "title": "syzkaller / sanitizers: status update · video",
      "item_title": "syzkaller / sanitizers: status update",
      "authors": [
        "Dmitry Vyukov at Linux Plumbers"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=y9Glc90WUN0&t=234",
      "primary_url": "https://www.youtube.com/watch?v=y9Glc90WUN0&t=234",
      "parent_primary_url": "https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_LPC2020.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-syzkaller-sanitizers-status-update-video-cfa9a1da.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# syzkaller / sanitizers: status update · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: syzkaller / sanitizers: status update resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=y9Glc90WUN0&t=234 parent_primary_url: https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_LPC2020.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"syzkaller / sanitizers: status update\" by Dmitry Vyukov at Linux Plumbers](https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_LPC2020.pdf) [slides] [[video](https://www.youtube.com/watch?v=y9Glc90WUN0&t=234)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android d",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_LPC2020.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=y9Glc90WUN0&t=234"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_LPC2020.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=y9Glc90WUN0&t=234"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "eBPF",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "The article discusses fuzzing techniques aimed at discovering eBPF JIT bugs in the Linux kernel.",
      "summary_zh": "本文讨论了旨在发现Linux内核中eBPF JIT漏洞的模糊测试技术。",
      "source_markdown": "[2020: \"syzkaller / sanitizers: status update\" by Dmitry Vyukov at Linux Plumbers](https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_LPC2020.pdf) [slides] [[video](https://www.youtube.com/watch?v=y9Glc90WUN0&t=234)]",
      "search_text": "syzkaller / sanitizers: status update · video syzkaller / sanitizers: status update dmitry vyukov at linux plumbers   finding bugs  finding bugs video video https://www.youtube.com/watch?v=y9glc90wun0&t=234 fuzzing ebpf kernel  article the article discusses fuzzing techniques aimed at discovering ebpf jit bugs in the linux kernel. 本文讨论了旨在发现linux内核中ebpf jit漏洞的模糊测试技术。 # syzkaller / sanitizers: status update · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzkaller / sanitizers: status update resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=y9glc90wun0&t=234 parent_primary_url: https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_lpc2020.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"syzkaller / sanitizers: status update\" by dmitry vyukov at linux plumbers](https://linuxplumbersconf.org/event/7/contributions/716/attachments/645/1181/syzkaller_lpc2020.pdf) [slides] [[video](https://www.youtube.com/watch?v=y9glc90wun0&t=234)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android d no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5f33101e2ecfb251",
      "item_id": "40c1af7646d2c6f4",
      "slug": "2020-finding-bugs-fuzzing-for-ebpf-jit-bugs-in-the-linux-kernel-primary-15d8ee53",
      "year": 2020,
      "title": "Fuzzing for eBPF JIT bugs in the Linux kernel",
      "item_title": "Fuzzing for eBPF JIT bugs in the Linux kernel",
      "authors": [
        "Simon Scannell"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://scannell.io/posts/ebpf-fuzzing/",
      "primary_url": "https://scannell.io/posts/ebpf-fuzzing/",
      "parent_primary_url": "https://scannell.io/posts/ebpf-fuzzing/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-fuzzing-for-ebpf-jit-bugs-in-the-linux-kernel-primary-15d8ee53.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fuzzing for eBPF JIT bugs in the Linux kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Fuzzing for eBPF JIT bugs in the Linux kernel resource_label: primary resource_type: article resource_url: https://scannell.io/posts/ebpf-fuzzing/ parent_primary_url: https://scannell.io/posts/ebpf-fuzzing/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Fuzzing for eBPF JIT bugs in the Linux kernel\" by Simon Scannell](https://scannell.io/posts/ebpf-fuzzing/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://scannell.io/posts/ebpf-fuzzing/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://scannell.io/posts/ebpf-fuzzing/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Finding Bugs",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Finding Bugs",
      "summary_en": "2020 Linux kernel Finding Bugs resource \"Fuzzing for eBPF JIT bugs in the Linux kernel\"; URL type: article.",
      "summary_zh": "2020 年 Linux 内核Finding Bugs资料：「Fuzzing for eBPF JIT bugs in the Linux kernel」；URL 类型：article。",
      "source_markdown": "[2020: \"Fuzzing for eBPF JIT bugs in the Linux kernel\" by Simon Scannell](https://scannell.io/posts/ebpf-fuzzing/) [article]",
      "search_text": "fuzzing for ebpf jit bugs in the linux kernel fuzzing for ebpf jit bugs in the linux kernel simon scannell   finding bugs  finding bugs primary article https://scannell.io/posts/ebpf-fuzzing/ finding bugs article  finding bugs 2020 linux kernel finding bugs resource \"fuzzing for ebpf jit bugs in the linux kernel\"; url type: article. 2020 年 linux 内核finding bugs资料：「fuzzing for ebpf jit bugs in the linux kernel」；url 类型：article。 # fuzzing for ebpf jit bugs in the linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: fuzzing for ebpf jit bugs in the linux kernel resource_label: primary resource_type: article resource_url: https://scannell.io/posts/ebpf-fuzzing/ parent_primary_url: https://scannell.io/posts/ebpf-fuzzing/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"fuzzing for ebpf jit bugs in the linux kernel\" by simon scannell](https://scannell.io/posts/ebpf-fuzzing/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bdf2a1c5f08db370",
      "item_id": "00ecc665551f656c",
      "slug": "2020-finding-bugs-specification-and-verification-in-the-field-applying-formal-methods-to-bpf-just-in-time-comp",
      "year": 2020,
      "title": "Specification and verification in the field: Applying formal methods to BPF just-in-time compilers in the Linux kernel",
      "item_title": "Specification and verification in the field: Applying formal methods to BPF just-in-time compilers in the Linux kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://unsat.cs.washington.edu/papers/nelson-jitterbug.pdf",
      "primary_url": "https://unsat.cs.washington.edu/papers/nelson-jitterbug.pdf",
      "parent_primary_url": "https://unsat.cs.washington.edu/papers/nelson-jitterbug.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-specification-and-verification-in-the-field-applying-formal-methods-to-bpf-just-in-time-comp.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Specification and verification in the field: Applying formal methods to BPF just-in-time compilers in the Linux kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Specification and verification in the field: Applying formal methods to BPF just-in-time compilers in the Linux kernel resource_label: primary resource_type: paper resource_url: https://unsat.cs.washington.edu/papers/nelson-jitterbug.pdf parent_primary_url: https://unsat.cs.washington.edu/papers/nelson-jitterbug.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Specification and verification in the field: Applying formal methods to BPF just-in-time compilers in the Linux kernel\"](https://unsat.cs.washington.edu/papers/nelson-jitterbug.pdf) [paper] cves: none android_impact_status: no android_impact_r",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://unsat.cs.washington.edu/papers/nelson-jitterbug.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://unsat.cs.washington.edu/papers/nelson-jitterbug.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "formal methods",
        "BPF",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "paper",
      "summary_en": "This paper applies formal methods to verify BPF just-in-time compilers in the Linux kernel.",
      "summary_zh": "该论文应用形式化方法验证Linux内核中的BPF即时编译器。",
      "source_markdown": "[2020: \"Specification and verification in the field: Applying formal methods to BPF just-in-time compilers in the Linux kernel\"](https://unsat.cs.washington.edu/papers/nelson-jitterbug.pdf) [paper]",
      "search_text": "specification and verification in the field: applying formal methods to bpf just-in-time compilers in the linux kernel specification and verification in the field: applying formal methods to bpf just-in-time compilers in the linux kernel    finding bugs  finding bugs primary paper https://unsat.cs.washington.edu/papers/nelson-jitterbug.pdf formal methods bpf kernel  paper this paper applies formal methods to verify bpf just-in-time compilers in the linux kernel. 该论文应用形式化方法验证linux内核中的bpf即时编译器。 # specification and verification in the field: applying formal methods to bpf just-in-time compilers in the linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: specification and verification in the field: applying formal methods to bpf just-in-time compilers in the linux kernel resource_label: primary resource_type: paper resource_url: https://unsat.cs.washington.edu/papers/nelson-jitterbug.pdf parent_primary_url: https://unsat.cs.washington.edu/papers/nelson-jitterbug.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"specification and verification in the field: applying formal methods to bpf just-in-time compilers in the linux kernel\"](https://unsat.cs.washington.edu/papers/nelson-jitterbug.pdf) [paper] cves: none android_impact_status: no android_impact_r no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d2336259395b4d0e",
      "item_id": "b4c72160d9ee136b",
      "slug": "2020-finding-bugs-eliminating-bugs-in-bpf-jits-using-automated-formal-verification-primary-3a3b2c0a",
      "year": 2020,
      "title": "Eliminating bugs in BPF JITs using automated formal verification",
      "item_title": "Eliminating bugs in BPF JITs using automated formal verification",
      "authors": [
        "Luke Nelson"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf",
      "primary_url": "https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf",
      "parent_primary_url": "https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-eliminating-bugs-in-bpf-jits-using-automated-formal-verification-primary-3a3b2c0a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Eliminating bugs in BPF JITs using automated formal verification record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Eliminating bugs in BPF JITs using automated formal verification resource_label: primary resource_type: slides resource_url: https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf parent_primary_url: https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Eliminating bugs in BPF JITs using automated formal verification\" by Luke Nelson](https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf) [[video](https://www.youtube.com/watch?v=dZ_1HgUbni0&t=188s)] [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to relea",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=dZ_1HgUbni0&t=188s"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=dZ_1HgUbni0&t=188s"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "formal verification",
        "BPF",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "slides",
      "summary_en": "Slides on using automated formal verification to eliminate bugs in BPF JITs.",
      "summary_zh": "关于使用自动化形式验证消除BPF JIT中漏洞的幻灯片。",
      "source_markdown": "[2020: \"Eliminating bugs in BPF JITs using automated formal verification\" by Luke Nelson](https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf) [[video](https://www.youtube.com/watch?v=dZ_1HgUbni0&t=188s)] [slides]",
      "search_text": "eliminating bugs in bpf jits using automated formal verification eliminating bugs in bpf jits using automated formal verification luke nelson   finding bugs  finding bugs primary slides https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf formal verification bpf kernel  slides slides on using automated formal verification to eliminate bugs in bpf jits. 关于使用自动化形式验证消除bpf jit中漏洞的幻灯片。 # eliminating bugs in bpf jits using automated formal verification record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: eliminating bugs in bpf jits using automated formal verification resource_label: primary resource_type: slides resource_url: https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf parent_primary_url: https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"eliminating bugs in bpf jits using automated formal verification\" by luke nelson](https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf) [[video](https://www.youtube.com/watch?v=dz_1hgubni0&t=188s)] [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to relea no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ee4d7bb42563eb85",
      "item_id": "b4c72160d9ee136b",
      "slug": "2020-finding-bugs-eliminating-bugs-in-bpf-jits-using-automated-formal-verification-video-ac22f99c",
      "year": 2020,
      "title": "Eliminating bugs in BPF JITs using automated formal verification · video",
      "item_title": "Eliminating bugs in BPF JITs using automated formal verification",
      "authors": [
        "Luke Nelson"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=dZ_1HgUbni0&t=188s",
      "primary_url": "https://www.youtube.com/watch?v=dZ_1HgUbni0&t=188s",
      "parent_primary_url": "https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-eliminating-bugs-in-bpf-jits-using-automated-formal-verification-video-ac22f99c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Eliminating bugs in BPF JITs using automated formal verification · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Eliminating bugs in BPF JITs using automated formal verification resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=dZ_1HgUbni0&t=188s parent_primary_url: https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Eliminating bugs in BPF JITs using automated formal verification\" by Luke Nelson](https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf) [[video](https://www.youtube.com/watch?v=dZ_1HgUbni0&t=188s)] [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=dZ_1HgUbni0&t=188s"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=dZ_1HgUbni0&t=188s"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "formal verification",
        "BPF",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "video",
      "summary_en": "A video presentation on eliminating bugs in BPF JITs using automated formal verification.",
      "summary_zh": "关于使用自动化形式验证消除BPF JIT中漏洞的视频演示。",
      "source_markdown": "[2020: \"Eliminating bugs in BPF JITs using automated formal verification\" by Luke Nelson](https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf) [[video](https://www.youtube.com/watch?v=dZ_1HgUbni0&t=188s)] [slides]",
      "search_text": "eliminating bugs in bpf jits using automated formal verification · video eliminating bugs in bpf jits using automated formal verification luke nelson   finding bugs  finding bugs video video https://www.youtube.com/watch?v=dz_1hgubni0&t=188s formal verification bpf kernel  video a video presentation on eliminating bugs in bpf jits using automated formal verification. 关于使用自动化形式验证消除bpf jit中漏洞的视频演示。 # eliminating bugs in bpf jits using automated formal verification · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: eliminating bugs in bpf jits using automated formal verification resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=dz_1hgubni0&t=188s parent_primary_url: https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"eliminating bugs in bpf jits using automated formal verification\" by luke nelson](https://homes.cs.washington.edu/~lukenels/slides/2020-08-28-lpc.pdf) [[video](https://www.youtube.com/watch?v=dz_1hgubni0&t=188s)] [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "83d89665bff119b0",
      "item_id": "5ca1c20b9263e169",
      "slug": "2020-finding-bugs-fuzzing-the-linux-kernel-x86-entry-code-part-1-of-3-primary-9e649d64",
      "year": 2020,
      "title": "Fuzzing the Linux kernel (x86) entry code, Part 1 of 3",
      "item_title": "Fuzzing the Linux kernel (x86) entry code, Part 1 of 3",
      "authors": [
        "Vegard Nossum"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-1-of-3",
      "primary_url": "https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-1-of-3",
      "parent_primary_url": "https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-1-of-3",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-fuzzing-the-linux-kernel-x86-entry-code-part-1-of-3-primary-9e649d64.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fuzzing the Linux kernel (x86) entry code, Part 1 of 3 record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Fuzzing the Linux kernel (x86) entry code, Part 1 of 3 resource_label: primary resource_type: article resource_url: https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-1-of-3 parent_primary_url: https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-1-of-3 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Fuzzing the Linux kernel (x86) entry code, Part 1 of 3\" by Vegard Nossum](https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-1-of-3) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_st",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-1-of-3"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-1-of-3"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-1-of-3"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "x86"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "This article is the first part of a series on fuzzing the Linux kernel x86 entry code.",
      "summary_zh": "这篇文章是关于模糊测试Linux内核x86入口代码系列的第一部分。",
      "source_markdown": "[2020: \"Fuzzing the Linux kernel (x86) entry code, Part 1 of 3\" by Vegard Nossum](https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-1-of-3) [article]",
      "search_text": "fuzzing the linux kernel (x86) entry code, part 1 of 3 fuzzing the linux kernel (x86) entry code, part 1 of 3 vegard nossum   finding bugs  finding bugs primary article https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-1-of-3 fuzzing kernel x86  article this article is the first part of a series on fuzzing the linux kernel x86 entry code. 这篇文章是关于模糊测试linux内核x86入口代码系列的第一部分。 # fuzzing the linux kernel (x86) entry code, part 1 of 3 record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: fuzzing the linux kernel (x86) entry code, part 1 of 3 resource_label: primary resource_type: article resource_url: https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-1-of-3 parent_primary_url: https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-1-of-3 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"fuzzing the linux kernel (x86) entry code, part 1 of 3\" by vegard nossum](https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-1-of-3) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_st no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "0439bbef087c73b3",
      "item_id": "b6c8509aa8469823",
      "slug": "2020-finding-bugs-fuzzing-the-linux-kernel-x86-entry-code-part-2-of-3-primary-7f4c2581",
      "year": 2020,
      "title": "Fuzzing the Linux kernel (x86) entry code, Part 2 of 3",
      "item_title": "Fuzzing the Linux kernel (x86) entry code, Part 2 of 3",
      "authors": [
        "Vegard Nossum"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-2-of-3",
      "primary_url": "https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-2-of-3",
      "parent_primary_url": "https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-2-of-3",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-fuzzing-the-linux-kernel-x86-entry-code-part-2-of-3-primary-7f4c2581.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fuzzing the Linux kernel (x86) entry code, Part 2 of 3 record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Fuzzing the Linux kernel (x86) entry code, Part 2 of 3 resource_label: primary resource_type: article resource_url: https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-2-of-3 parent_primary_url: https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-2-of-3 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Fuzzing the Linux kernel (x86) entry code, Part 2 of 3\" by Vegard Nossum](https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-2-of-3) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_st",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-2-of-3"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-2-of-3"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-2-of-3"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "x86"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "The second part of the series continues the discussion on fuzzing the Linux kernel x86 entry code.",
      "summary_zh": "该系列的第二部分继续讨论模糊测试Linux内核x86入口代码。",
      "source_markdown": "[2020: \"Fuzzing the Linux kernel (x86) entry code, Part 2 of 3\" by Vegard Nossum](https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-2-of-3) [article]",
      "search_text": "fuzzing the linux kernel (x86) entry code, part 2 of 3 fuzzing the linux kernel (x86) entry code, part 2 of 3 vegard nossum   finding bugs  finding bugs primary article https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-2-of-3 fuzzing kernel x86  article the second part of the series continues the discussion on fuzzing the linux kernel x86 entry code. 该系列的第二部分继续讨论模糊测试linux内核x86入口代码。 # fuzzing the linux kernel (x86) entry code, part 2 of 3 record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: fuzzing the linux kernel (x86) entry code, part 2 of 3 resource_label: primary resource_type: article resource_url: https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-2-of-3 parent_primary_url: https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-2-of-3 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"fuzzing the linux kernel (x86) entry code, part 2 of 3\" by vegard nossum](https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-2-of-3) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_st no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "91edc96a7043a6a2",
      "item_id": "ec87b815791d721f",
      "slug": "2020-finding-bugs-fuzzing-the-linux-kernel-x86-entry-code-part-3-of-3-primary-5cae60a0",
      "year": 2020,
      "title": "Fuzzing the Linux kernel (x86) entry code, Part 3 of 3",
      "item_title": "Fuzzing the Linux kernel (x86) entry code, Part 3 of 3",
      "authors": [
        "Vegard Nossum"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-3-of-3",
      "primary_url": "https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-3-of-3",
      "parent_primary_url": "https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-3-of-3",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-fuzzing-the-linux-kernel-x86-entry-code-part-3-of-3-primary-5cae60a0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fuzzing the Linux kernel (x86) entry code, Part 3 of 3 record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Fuzzing the Linux kernel (x86) entry code, Part 3 of 3 resource_label: primary resource_type: article resource_url: https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-3-of-3 parent_primary_url: https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-3-of-3 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Fuzzing the Linux kernel (x86) entry code, Part 3 of 3\" by Vegard Nossum](https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-3-of-3) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_st",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-3-of-3"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-3-of-3"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-3-of-3"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "x86"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "The third part of the series concludes the fuzzing discussion on the Linux kernel x86 entry code.",
      "summary_zh": "该系列的第三部分结束了对Linux内核x86入口代码的模糊测试讨论。",
      "source_markdown": "[2020: \"Fuzzing the Linux kernel (x86) entry code, Part 3 of 3\" by Vegard Nossum](https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-3-of-3) [article]",
      "search_text": "fuzzing the linux kernel (x86) entry code, part 3 of 3 fuzzing the linux kernel (x86) entry code, part 3 of 3 vegard nossum   finding bugs  finding bugs primary article https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-3-of-3 fuzzing kernel x86  article the third part of the series concludes the fuzzing discussion on the linux kernel x86 entry code. 该系列的第三部分结束了对linux内核x86入口代码的模糊测试讨论。 # fuzzing the linux kernel (x86) entry code, part 3 of 3 record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: fuzzing the linux kernel (x86) entry code, part 3 of 3 resource_label: primary resource_type: article resource_url: https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-3-of-3 parent_primary_url: https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-3-of-3 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"fuzzing the linux kernel (x86) entry code, part 3 of 3\" by vegard nossum](https://blogs.oracle.com/linux/fuzzing-the-linux-kernel-x86-entry-code%2c-part-3-of-3) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_st no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "a6c5ab3be8af4a6f",
      "item_id": "a5372c6fcb176293",
      "slug": "2020-finding-bugs-data-race-detection-in-the-linux-kernel-primary-ea0c8e6d",
      "year": 2020,
      "title": "Data-race detection in the Linux kernel",
      "item_title": "Data-race detection in the Linux kernel",
      "authors": [
        "Marco Elver at Linux Plumbers"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/LPC2020-KCSAN.pdf",
      "primary_url": "https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/LPC2020-KCSAN.pdf",
      "parent_primary_url": "https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/LPC2020-KCSAN.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-data-race-detection-in-the-linux-kernel-primary-ea0c8e6d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Data-race detection in the Linux kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Data-race detection in the Linux kernel resource_label: primary resource_type: slides resource_url: https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/LPC2020-KCSAN.pdf parent_primary_url: https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/LPC2020-KCSAN.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Data-race detection in the Linux kernel\" by Marco Elver at Linux Plumbers](https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/LPC2020-KCSAN.pdf) [slides] [[video](https://www.youtube.com/watch?v=gJRBmunG47w&t=7141)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this r",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/LPC2020-KCSAN.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=gJRBmunG47w&t=7141"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/LPC2020-KCSAN.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=gJRBmunG47w&t=7141"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "data race",
        "kernel",
        "detection"
      ],
      "affected_area": "",
      "exploit_stage": "slides",
      "summary_en": "Slides on data-race detection techniques in the Linux kernel.",
      "summary_zh": "关于Linux内核中数据竞争检测技术的幻灯片。",
      "source_markdown": "[2020: \"Data-race detection in the Linux kernel\" by Marco Elver at Linux Plumbers](https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/LPC2020-KCSAN.pdf) [slides] [[video](https://www.youtube.com/watch?v=gJRBmunG47w&t=7141)]",
      "search_text": "data-race detection in the linux kernel data-race detection in the linux kernel marco elver at linux plumbers   finding bugs  finding bugs primary slides https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/lpc2020-kcsan.pdf data race kernel detection  slides slides on data-race detection techniques in the linux kernel. 关于linux内核中数据竞争检测技术的幻灯片。 # data-race detection in the linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: data-race detection in the linux kernel resource_label: primary resource_type: slides resource_url: https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/lpc2020-kcsan.pdf parent_primary_url: https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/lpc2020-kcsan.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"data-race detection in the linux kernel\" by marco elver at linux plumbers](https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/lpc2020-kcsan.pdf) [slides] [[video](https://www.youtube.com/watch?v=gjrbmung47w&t=7141)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this r no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9141255b484e901d",
      "item_id": "a5372c6fcb176293",
      "slug": "2020-finding-bugs-data-race-detection-in-the-linux-kernel-video-8f1aba2c",
      "year": 2020,
      "title": "Data-race detection in the Linux kernel · video",
      "item_title": "Data-race detection in the Linux kernel",
      "authors": [
        "Marco Elver at Linux Plumbers"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=gJRBmunG47w&t=7141",
      "primary_url": "https://www.youtube.com/watch?v=gJRBmunG47w&t=7141",
      "parent_primary_url": "https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/LPC2020-KCSAN.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-data-race-detection-in-the-linux-kernel-video-8f1aba2c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Data-race detection in the Linux kernel · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Data-race detection in the Linux kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=gJRBmunG47w&t=7141 parent_primary_url: https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/LPC2020-KCSAN.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Data-race detection in the Linux kernel\" by Marco Elver at Linux Plumbers](https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/LPC2020-KCSAN.pdf) [slides] [[video](https://www.youtube.com/watch?v=gJRBmunG47w&t=7141)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devic",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/LPC2020-KCSAN.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=gJRBmunG47w&t=7141"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/LPC2020-KCSAN.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=gJRBmunG47w&t=7141"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "data race",
        "kernel",
        "detection"
      ],
      "affected_area": "",
      "exploit_stage": "video",
      "summary_en": "A video presentation on data-race detection in the Linux kernel.",
      "summary_zh": "关于Linux内核中数据竞争检测的视频演示。",
      "source_markdown": "[2020: \"Data-race detection in the Linux kernel\" by Marco Elver at Linux Plumbers](https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/LPC2020-KCSAN.pdf) [slides] [[video](https://www.youtube.com/watch?v=gJRBmunG47w&t=7141)]",
      "search_text": "data-race detection in the linux kernel · video data-race detection in the linux kernel marco elver at linux plumbers   finding bugs  finding bugs video video https://www.youtube.com/watch?v=gjrbmung47w&t=7141 data race kernel detection  video a video presentation on data-race detection in the linux kernel. 关于linux内核中数据竞争检测的视频演示。 # data-race detection in the linux kernel · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: data-race detection in the linux kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=gjrbmung47w&t=7141 parent_primary_url: https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/lpc2020-kcsan.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"data-race detection in the linux kernel\" by marco elver at linux plumbers](https://linuxplumbersconf.org/event/7/contributions/647/attachments/549/972/lpc2020-kcsan.pdf) [slides] [[video](https://www.youtube.com/watch?v=gjrbmung47w&t=7141)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devic no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "74173b8535b8502a",
      "item_id": "ab3443137850c730",
      "slug": "2020-finding-bugs-harbian-qa-state-based-target-directed-fuzzer-based-on-syzkaller-primary-e9dd900c",
      "year": 2020,
      "title": "harbian-qa: State-based target directed fuzzer based on syzkaller",
      "item_title": "harbian-qa: State-based target directed fuzzer based on syzkaller",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/hardenedlinux/harbian-qa/blob/master/syzkaller/design_inplementation_intro.md",
      "primary_url": "https://github.com/hardenedlinux/harbian-qa/blob/master/syzkaller/design_inplementation_intro.md",
      "parent_primary_url": "https://github.com/hardenedlinux/harbian-qa/blob/master/syzkaller/design_inplementation_intro.md",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-harbian-qa-state-based-target-directed-fuzzer-based-on-syzkaller-primary-e9dd900c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# harbian-qa: State-based target directed fuzzer based on syzkaller record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: harbian-qa: State-based target directed fuzzer based on syzkaller resource_label: primary resource_type: article resource_url: https://github.com/hardenedlinux/harbian-qa/blob/master/syzkaller/design_inplementation_intro.md parent_primary_url: https://github.com/hardenedlinux/harbian-qa/blob/master/syzkaller/design_inplementation_intro.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"harbian-qa: State-based target directed fuzzer based on syzkaller\"](https://github.com/hardenedlinux/harbian-qa/blob/master/syzkaller/design_inplementation_intro.md) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resourc",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/hardenedlinux/harbian-qa/blob/master/syzkaller/design_inplementation_intro.md"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/hardenedlinux/harbian-qa/blob/master/syzkaller/design_inplementation_intro.md"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/hardenedlinux/harbian-qa/blob/master/syzkaller/design_inplementation_intro.md"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "Syzkaller",
        "state-based"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "The article introduces harbian-qa, a state-based fuzzer based on Syzkaller.",
      "summary_zh": "本文介绍了harbian-qa，一个基于Syzkaller的状态驱动模糊测试工具。",
      "source_markdown": "[2020: \"harbian-qa: State-based target directed fuzzer based on syzkaller\"](https://github.com/hardenedlinux/harbian-qa/blob/master/syzkaller/design_inplementation_intro.md) [article]",
      "search_text": "harbian-qa: state-based target directed fuzzer based on syzkaller harbian-qa: state-based target directed fuzzer based on syzkaller    finding bugs  finding bugs primary article https://github.com/hardenedlinux/harbian-qa/blob/master/syzkaller/design_inplementation_intro.md fuzzing syzkaller state-based  article the article introduces harbian-qa, a state-based fuzzer based on syzkaller. 本文介绍了harbian-qa，一个基于syzkaller的状态驱动模糊测试工具。 # harbian-qa: state-based target directed fuzzer based on syzkaller record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: harbian-qa: state-based target directed fuzzer based on syzkaller resource_label: primary resource_type: article resource_url: https://github.com/hardenedlinux/harbian-qa/blob/master/syzkaller/design_inplementation_intro.md parent_primary_url: https://github.com/hardenedlinux/harbian-qa/blob/master/syzkaller/design_inplementation_intro.md source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"harbian-qa: state-based target directed fuzzer based on syzkaller\"](https://github.com/hardenedlinux/harbian-qa/blob/master/syzkaller/design_inplementation_intro.md) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resourc no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "7803dca41e411687",
      "item_id": "ffa6f51e87a2eb43",
      "slug": "2020-finding-bugs-agamotto-accelerating-kernel-driver-fuzzing-with-lightweight-virtual-machine-checkpoints-pri",
      "year": 2020,
      "title": "Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints",
      "item_title": "Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec20-song.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec20-song.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec20-song.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-agamotto-accelerating-kernel-driver-fuzzing-with-lightweight-virtual-machine-checkpoints-pri.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec20-song.pdf parent_primary_url: https://www.usenix.org/system/files/sec20-song.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints\"](https://www.usenix.org/system/files/sec20-song.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec20_slides_song.pdf)] [[video](https://www.youtube.com/watch?v=Swo6jSkjviA)] [[code](https://github.com/securesystemsla",
      "link_types": [
        "paper",
        "slides",
        "video",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec20-song.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec20_slides_song.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Swo6jSkjviA"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/securesystemslab/agamotto"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec20-song.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec20_slides_song.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Swo6jSkjviA"
          }
        ],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/securesystemslab/agamotto"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/securesystemslab/agamotto"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "VM"
      ],
      "affected_area": "",
      "exploit_stage": "paper",
      "summary_en": "Agamotto is a paper discussing kernel driver fuzzing accelerated by lightweight VM checkpoints.",
      "summary_zh": "Agamotto是一篇讨论通过轻量级虚拟机检查点加速内核驱动模糊测试的论文。",
      "source_markdown": "[2020: \"Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints\"](https://www.usenix.org/system/files/sec20-song.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec20_slides_song.pdf)] [[video](https://www.youtube.com/watch?v=Swo6jSkjviA)] [[code](https://github.com/securesystemslab/agamotto)]",
      "search_text": "agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/sec20-song.pdf fuzzing kernel vm  paper agamotto is a paper discussing kernel driver fuzzing accelerated by lightweight vm checkpoints. agamotto是一篇讨论通过轻量级虚拟机检查点加速内核驱动模糊测试的论文。 # agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec20-song.pdf parent_primary_url: https://www.usenix.org/system/files/sec20-song.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints\"](https://www.usenix.org/system/files/sec20-song.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec20_slides_song.pdf)] [[video](https://www.youtube.com/watch?v=swo6jskjvia)] [[code](https://github.com/securesystemsla no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "9f88a73d317f2603",
      "item_id": "ffa6f51e87a2eb43",
      "slug": "2020-finding-bugs-agamotto-accelerating-kernel-driver-fuzzing-with-lightweight-virtual-machine-checkpoints-sli",
      "year": 2020,
      "title": "Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints · slides",
      "item_title": "Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/sec20_slides_song.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec20_slides_song.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec20-song.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-agamotto-accelerating-kernel-driver-fuzzing-with-lightweight-virtual-machine-checkpoints-sli.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints · slides record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec20_slides_song.pdf parent_primary_url: https://www.usenix.org/system/files/sec20-song.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints\"](https://www.usenix.org/system/files/sec20-song.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec20_slides_song.pdf)] [[video](https://www.youtube.com/watch?v=Swo6jSkjviA)] [[code](https://github.com",
      "link_types": [
        "paper",
        "slides",
        "video",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec20-song.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec20_slides_song.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Swo6jSkjviA"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/securesystemslab/agamotto"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec20-song.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec20_slides_song.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Swo6jSkjviA"
          }
        ],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/securesystemslab/agamotto"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/securesystemslab/agamotto"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "VM"
      ],
      "affected_area": "",
      "exploit_stage": "slides",
      "summary_en": "Slides from the Agamotto presentation on accelerating kernel driver fuzzing.",
      "summary_zh": "关于加速内核驱动模糊测试的Agamotto演示幻灯片。",
      "source_markdown": "[2020: \"Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints\"](https://www.usenix.org/system/files/sec20-song.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec20_slides_song.pdf)] [[video](https://www.youtube.com/watch?v=Swo6jSkjviA)] [[code](https://github.com/securesystemslab/agamotto)]",
      "search_text": "agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints · slides agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints    finding bugs  finding bugs slides slides https://www.usenix.org/system/files/sec20_slides_song.pdf fuzzing kernel vm  slides slides from the agamotto presentation on accelerating kernel driver fuzzing. 关于加速内核驱动模糊测试的agamotto演示幻灯片。 # agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints · slides record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec20_slides_song.pdf parent_primary_url: https://www.usenix.org/system/files/sec20-song.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints\"](https://www.usenix.org/system/files/sec20-song.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec20_slides_song.pdf)] [[video](https://www.youtube.com/watch?v=swo6jskjvia)] [[code](https://github.com no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "0debc552871b478f",
      "item_id": "ffa6f51e87a2eb43",
      "slug": "2020-finding-bugs-agamotto-accelerating-kernel-driver-fuzzing-with-lightweight-virtual-machine-checkpoints-vid",
      "year": 2020,
      "title": "Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints · video",
      "item_title": "Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=Swo6jSkjviA",
      "primary_url": "https://www.youtube.com/watch?v=Swo6jSkjviA",
      "parent_primary_url": "https://www.usenix.org/system/files/sec20-song.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-agamotto-accelerating-kernel-driver-fuzzing-with-lightweight-virtual-machine-checkpoints-vid.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=Swo6jSkjviA parent_primary_url: https://www.usenix.org/system/files/sec20-song.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints\"](https://www.usenix.org/system/files/sec20-song.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec20_slides_song.pdf)] [[video](https://www.youtube.com/watch?v=Swo6jSkjviA)] [[code](https://github.com/securesystemslab",
      "link_types": [
        "paper",
        "slides",
        "video",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec20-song.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec20_slides_song.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Swo6jSkjviA"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/securesystemslab/agamotto"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec20-song.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec20_slides_song.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Swo6jSkjviA"
          }
        ],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/securesystemslab/agamotto"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/securesystemslab/agamotto"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "VM"
      ],
      "affected_area": "",
      "exploit_stage": "video",
      "summary_en": "A video presentation on Agamotto, focusing on kernel driver fuzzing acceleration.",
      "summary_zh": "关于Agamotto的演示视频，重点讨论内核驱动模糊测试加速。",
      "source_markdown": "[2020: \"Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints\"](https://www.usenix.org/system/files/sec20-song.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec20_slides_song.pdf)] [[video](https://www.youtube.com/watch?v=Swo6jSkjviA)] [[code](https://github.com/securesystemslab/agamotto)]",
      "search_text": "agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints · video agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints    finding bugs  finding bugs video video https://www.youtube.com/watch?v=swo6jskjvia fuzzing kernel vm  video a video presentation on agamotto, focusing on kernel driver fuzzing acceleration. 关于agamotto的演示视频，重点讨论内核驱动模糊测试加速。 # agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=swo6jskjvia parent_primary_url: https://www.usenix.org/system/files/sec20-song.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints\"](https://www.usenix.org/system/files/sec20-song.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec20_slides_song.pdf)] [[video](https://www.youtube.com/watch?v=swo6jskjvia)] [[code](https://github.com/securesystemslab no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "245c48e14dcc0eb0",
      "item_id": "ffa6f51e87a2eb43",
      "slug": "2020-finding-bugs-agamotto-accelerating-kernel-driver-fuzzing-with-lightweight-virtual-machine-checkpoints-cod",
      "year": 2020,
      "title": "Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints · code",
      "item_title": "Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/securesystemslab/agamotto",
      "primary_url": "https://github.com/securesystemslab/agamotto",
      "parent_primary_url": "https://www.usenix.org/system/files/sec20-song.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-agamotto-accelerating-kernel-driver-fuzzing-with-lightweight-virtual-machine-checkpoints-cod.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints · code record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints resource_label: code resource_type: code resource_url: https://github.com/securesystemslab/agamotto parent_primary_url: https://www.usenix.org/system/files/sec20-song.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints\"](https://www.usenix.org/system/files/sec20-song.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec20_slides_song.pdf)] [[video](https://www.youtube.com/watch?v=Swo6jSkjviA)] [[code](https://github.com/securesystemslab/a",
      "link_types": [
        "paper",
        "slides",
        "video",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec20-song.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec20_slides_song.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Swo6jSkjviA"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/securesystemslab/agamotto"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec20-song.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec20_slides_song.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Swo6jSkjviA"
          }
        ],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/securesystemslab/agamotto"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/securesystemslab/agamotto"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "driver"
      ],
      "affected_area": "driver",
      "exploit_stage": "finding bugs",
      "summary_en": "Agamotto accelerates kernel driver fuzzing using lightweight virtual machine checkpoints.",
      "summary_zh": "Agamotto通过轻量级虚拟机检查点加速内核驱动模糊测试。",
      "source_markdown": "[2020: \"Agamotto: Accelerating Kernel Driver Fuzzing with Lightweight Virtual Machine Checkpoints\"](https://www.usenix.org/system/files/sec20-song.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec20_slides_song.pdf)] [[video](https://www.youtube.com/watch?v=Swo6jSkjviA)] [[code](https://github.com/securesystemslab/agamotto)]",
      "search_text": "agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints · code agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints    finding bugs  finding bugs code code https://github.com/securesystemslab/agamotto fuzzing kernel driver driver finding bugs agamotto accelerates kernel driver fuzzing using lightweight virtual machine checkpoints. agamotto通过轻量级虚拟机检查点加速内核驱动模糊测试。 # agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints · code record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints resource_label: code resource_type: code resource_url: https://github.com/securesystemslab/agamotto parent_primary_url: https://www.usenix.org/system/files/sec20-song.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"agamotto: accelerating kernel driver fuzzing with lightweight virtual machine checkpoints\"](https://www.usenix.org/system/files/sec20-song.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec20_slides_song.pdf)] [[video](https://www.youtube.com/watch?v=swo6jskjvia)] [[code](https://github.com/securesystemslab/a no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "de88ace1e50a0d9d",
      "item_id": "6f3b49a8eef46a2e",
      "slug": "2020-finding-bugs-using-syzkaller-part-1-fuzzing-the-linux-kernel-primary-25e5d9cd",
      "year": 2020,
      "title": "Using syzkaller, part 1: Fuzzing the Linux kernel",
      "item_title": "Using syzkaller, part 1: Fuzzing the Linux kernel",
      "authors": [
        "Andre Almeida"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.collabora.com/news-and-blog/blog/2020/03/26/syzkaller-fuzzing-the-kernel/",
      "primary_url": "https://www.collabora.com/news-and-blog/blog/2020/03/26/syzkaller-fuzzing-the-kernel/",
      "parent_primary_url": "https://www.collabora.com/news-and-blog/blog/2020/03/26/syzkaller-fuzzing-the-kernel/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-using-syzkaller-part-1-fuzzing-the-linux-kernel-primary-25e5d9cd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Using syzkaller, part 1: Fuzzing the Linux kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Using syzkaller, part 1: Fuzzing the Linux kernel resource_label: primary resource_type: article resource_url: https://www.collabora.com/news-and-blog/blog/2020/03/26/syzkaller-fuzzing-the-kernel/ parent_primary_url: https://www.collabora.com/news-and-blog/blog/2020/03/26/syzkaller-fuzzing-the-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Using syzkaller, part 1: Fuzzing the Linux kernel\" by Andre Almeida](https://www.collabora.com/news-and-blog/blog/2020/03/26/syzkaller-fuzzing-the-kernel/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_im",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.collabora.com/news-and-blog/blog/2020/03/26/syzkaller-fuzzing-the-kernel/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.collabora.com/news-and-blog/blog/2020/03/26/syzkaller-fuzzing-the-kernel/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "syzkaller",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This article discusses the use of syzkaller for fuzzing the Linux kernel.",
      "summary_zh": "本文讨论了使用syzkaller对Linux内核进行模糊测试。",
      "source_markdown": "[2020: \"Using syzkaller, part 1: Fuzzing the Linux kernel\" by Andre Almeida](https://www.collabora.com/news-and-blog/blog/2020/03/26/syzkaller-fuzzing-the-kernel/) [article]",
      "search_text": "using syzkaller, part 1: fuzzing the linux kernel using syzkaller, part 1: fuzzing the linux kernel andre almeida   finding bugs  finding bugs primary article https://www.collabora.com/news-and-blog/blog/2020/03/26/syzkaller-fuzzing-the-kernel/ fuzzing syzkaller kernel  finding bugs this article discusses the use of syzkaller for fuzzing the linux kernel. 本文讨论了使用syzkaller对linux内核进行模糊测试。 # using syzkaller, part 1: fuzzing the linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: using syzkaller, part 1: fuzzing the linux kernel resource_label: primary resource_type: article resource_url: https://www.collabora.com/news-and-blog/blog/2020/03/26/syzkaller-fuzzing-the-kernel/ parent_primary_url: https://www.collabora.com/news-and-blog/blog/2020/03/26/syzkaller-fuzzing-the-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"using syzkaller, part 1: fuzzing the linux kernel\" by andre almeida](https://www.collabora.com/news-and-blog/blog/2020/03/26/syzkaller-fuzzing-the-kernel/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_im no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "fae4d863b85b4d30",
      "item_id": "2c900a39ef1901c3",
      "slug": "2020-finding-bugs-using-syzkaller-part-2-detecting-programming-bugs-in-the-linux-kernel-primary-655476c5",
      "year": 2020,
      "title": "Using syzkaller, part 2: Detecting programming bugs in the Linux kernel",
      "item_title": "Using syzkaller, part 2: Detecting programming bugs in the Linux kernel",
      "authors": [
        "Andre Almeida"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.collabora.com/news-and-blog/blog/2020/04/17/using-syzkaller-to-detect-programming-bugs-in-linux/",
      "primary_url": "https://www.collabora.com/news-and-blog/blog/2020/04/17/using-syzkaller-to-detect-programming-bugs-in-linux/",
      "parent_primary_url": "https://www.collabora.com/news-and-blog/blog/2020/04/17/using-syzkaller-to-detect-programming-bugs-in-linux/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-using-syzkaller-part-2-detecting-programming-bugs-in-the-linux-kernel-primary-655476c5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Using syzkaller, part 2: Detecting programming bugs in the Linux kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Using syzkaller, part 2: Detecting programming bugs in the Linux kernel resource_label: primary resource_type: article resource_url: https://www.collabora.com/news-and-blog/blog/2020/04/17/using-syzkaller-to-detect-programming-bugs-in-linux/ parent_primary_url: https://www.collabora.com/news-and-blog/blog/2020/04/17/using-syzkaller-to-detect-programming-bugs-in-linux/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Using syzkaller, part 2: Detecting programming bugs in the Linux kernel\" by Andre Almeida](https://www.collabora.com/news-and-blog/blog/2020/04/17/using-syzkaller-to-detect-programming-bugs-in-linux/) [article] cves: none android_impact_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.collabora.com/news-and-blog/blog/2020/04/17/using-syzkaller-to-detect-programming-bugs-in-linux/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.collabora.com/news-and-blog/blog/2020/04/17/using-syzkaller-to-detect-programming-bugs-in-linux/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "syzkaller",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This article explores how syzkaller can detect programming bugs in the Linux kernel.",
      "summary_zh": "本文探讨了syzkaller如何检测Linux内核中的编程错误。",
      "source_markdown": "[2020: \"Using syzkaller, part 2: Detecting programming bugs in the Linux kernel\" by Andre Almeida](https://www.collabora.com/news-and-blog/blog/2020/04/17/using-syzkaller-to-detect-programming-bugs-in-linux/) [article]",
      "search_text": "using syzkaller, part 2: detecting programming bugs in the linux kernel using syzkaller, part 2: detecting programming bugs in the linux kernel andre almeida   finding bugs  finding bugs primary article https://www.collabora.com/news-and-blog/blog/2020/04/17/using-syzkaller-to-detect-programming-bugs-in-linux/ fuzzing syzkaller kernel  finding bugs this article explores how syzkaller can detect programming bugs in the linux kernel. 本文探讨了syzkaller如何检测linux内核中的编程错误。 # using syzkaller, part 2: detecting programming bugs in the linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: using syzkaller, part 2: detecting programming bugs in the linux kernel resource_label: primary resource_type: article resource_url: https://www.collabora.com/news-and-blog/blog/2020/04/17/using-syzkaller-to-detect-programming-bugs-in-linux/ parent_primary_url: https://www.collabora.com/news-and-blog/blog/2020/04/17/using-syzkaller-to-detect-programming-bugs-in-linux/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"using syzkaller, part 2: detecting programming bugs in the linux kernel\" by andre almeida](https://www.collabora.com/news-and-blog/blog/2020/04/17/using-syzkaller-to-detect-programming-bugs-in-linux/) [article] cves: none android_impact_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7907ac43bcd89c5e",
      "item_id": "f4226f648240179e",
      "slug": "2020-finding-bugs-using-syzkaller-part-3-fuzzing-your-changes-primary-bd5186e7",
      "year": 2020,
      "title": "Using syzkaller, part 3: Fuzzing your changes",
      "item_title": "Using syzkaller, part 3: Fuzzing your changes",
      "authors": [
        "Andre Almeida"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.collabora.com/news-and-blog/blog/2020/05/12/using-syzkaller-fuzzing-your-changes/",
      "primary_url": "https://www.collabora.com/news-and-blog/blog/2020/05/12/using-syzkaller-fuzzing-your-changes/",
      "parent_primary_url": "https://www.collabora.com/news-and-blog/blog/2020/05/12/using-syzkaller-fuzzing-your-changes/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-using-syzkaller-part-3-fuzzing-your-changes-primary-bd5186e7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Using syzkaller, part 3: Fuzzing your changes record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Using syzkaller, part 3: Fuzzing your changes resource_label: primary resource_type: article resource_url: https://www.collabora.com/news-and-blog/blog/2020/05/12/using-syzkaller-fuzzing-your-changes/ parent_primary_url: https://www.collabora.com/news-and-blog/blog/2020/05/12/using-syzkaller-fuzzing-your-changes/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Using syzkaller, part 3: Fuzzing your changes\" by Andre Almeida](https://www.collabora.com/news-and-blog/blog/2020/05/12/using-syzkaller-fuzzing-your-changes/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_statu",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.collabora.com/news-and-blog/blog/2020/05/12/using-syzkaller-fuzzing-your-changes/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.collabora.com/news-and-blog/blog/2020/05/12/using-syzkaller-fuzzing-your-changes/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "syzkaller",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This article covers the process of fuzzing changes in the Linux kernel using syzkaller.",
      "summary_zh": "本文介绍了如何使用syzkaller对Linux内核中的更改进行模糊测试。",
      "source_markdown": "[2020: \"Using syzkaller, part 3: Fuzzing your changes\" by Andre Almeida](https://www.collabora.com/news-and-blog/blog/2020/05/12/using-syzkaller-fuzzing-your-changes/) [article]",
      "search_text": "using syzkaller, part 3: fuzzing your changes using syzkaller, part 3: fuzzing your changes andre almeida   finding bugs  finding bugs primary article https://www.collabora.com/news-and-blog/blog/2020/05/12/using-syzkaller-fuzzing-your-changes/ fuzzing syzkaller kernel  finding bugs this article covers the process of fuzzing changes in the linux kernel using syzkaller. 本文介绍了如何使用syzkaller对linux内核中的更改进行模糊测试。 # using syzkaller, part 3: fuzzing your changes record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: using syzkaller, part 3: fuzzing your changes resource_label: primary resource_type: article resource_url: https://www.collabora.com/news-and-blog/blog/2020/05/12/using-syzkaller-fuzzing-your-changes/ parent_primary_url: https://www.collabora.com/news-and-blog/blog/2020/05/12/using-syzkaller-fuzzing-your-changes/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"using syzkaller, part 3: fuzzing your changes\" by andre almeida](https://www.collabora.com/news-and-blog/blog/2020/05/12/using-syzkaller-fuzzing-your-changes/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_statu no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "cddb1dcf61f1295d",
      "item_id": "77eab26574c73824",
      "slug": "2020-finding-bugs-using-syzkaller-part-4-driver-fuzzing-primary-c6c1e6e4",
      "year": 2020,
      "title": "Using syzkaller, part 4: Driver fuzzing",
      "item_title": "Using syzkaller, part 4: Driver fuzzing",
      "authors": [
        "Andre Almeida"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.collabora.com/news-and-blog/blog/2020/06/26/using-syzkaller-part-4-driver-fuzzing/",
      "primary_url": "https://www.collabora.com/news-and-blog/blog/2020/06/26/using-syzkaller-part-4-driver-fuzzing/",
      "parent_primary_url": "https://www.collabora.com/news-and-blog/blog/2020/06/26/using-syzkaller-part-4-driver-fuzzing/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-using-syzkaller-part-4-driver-fuzzing-primary-c6c1e6e4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Using syzkaller, part 4: Driver fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Using syzkaller, part 4: Driver fuzzing resource_label: primary resource_type: article resource_url: https://www.collabora.com/news-and-blog/blog/2020/06/26/using-syzkaller-part-4-driver-fuzzing/ parent_primary_url: https://www.collabora.com/news-and-blog/blog/2020/06/26/using-syzkaller-part-4-driver-fuzzing/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Using syzkaller, part 4: Driver fuzzing\" by Andre Almeida](https://www.collabora.com/news-and-blog/blog/2020/06/26/using-syzkaller-part-4-driver-fuzzing/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impac",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.collabora.com/news-and-blog/blog/2020/06/26/using-syzkaller-part-4-driver-fuzzing/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.collabora.com/news-and-blog/blog/2020/06/26/using-syzkaller-part-4-driver-fuzzing/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "syzkaller",
        "driver"
      ],
      "affected_area": "driver",
      "exploit_stage": "finding bugs",
      "summary_en": "This article focuses on driver fuzzing techniques using syzkaller.",
      "summary_zh": "本文专注于使用syzkaller进行驱动程序模糊测试的技术。",
      "source_markdown": "[2020: \"Using syzkaller, part 4: Driver fuzzing\" by Andre Almeida](https://www.collabora.com/news-and-blog/blog/2020/06/26/using-syzkaller-part-4-driver-fuzzing/) [article]",
      "search_text": "using syzkaller, part 4: driver fuzzing using syzkaller, part 4: driver fuzzing andre almeida   finding bugs  finding bugs primary article https://www.collabora.com/news-and-blog/blog/2020/06/26/using-syzkaller-part-4-driver-fuzzing/ fuzzing syzkaller driver driver finding bugs this article focuses on driver fuzzing techniques using syzkaller. 本文专注于使用syzkaller进行驱动程序模糊测试的技术。 # using syzkaller, part 4: driver fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: using syzkaller, part 4: driver fuzzing resource_label: primary resource_type: article resource_url: https://www.collabora.com/news-and-blog/blog/2020/06/26/using-syzkaller-part-4-driver-fuzzing/ parent_primary_url: https://www.collabora.com/news-and-blog/blog/2020/06/26/using-syzkaller-part-4-driver-fuzzing/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"using syzkaller, part 4: driver fuzzing\" by andre almeida](https://www.collabora.com/news-and-blog/blog/2020/06/26/using-syzkaller-part-4-driver-fuzzing/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impac no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f3475ec9d0c4ce60",
      "item_id": "3a1b7eeff8cc86a8",
      "slug": "2020-finding-bugs-effective-detection-of-sleep-in-atomic-context-bugs-in-the-linux-kernel-primary-c577ba74",
      "year": 2020,
      "title": "Effective Detection of Sleep-in-atomic-context Bugs in the Linux Kernel",
      "item_title": "Effective Detection of Sleep-in-atomic-context Bugs in the Linux Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://dl.acm.org/doi/pdf/10.1145/3381990",
      "primary_url": "https://dl.acm.org/doi/pdf/10.1145/3381990",
      "parent_primary_url": "https://dl.acm.org/doi/pdf/10.1145/3381990",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-effective-detection-of-sleep-in-atomic-context-bugs-in-the-linux-kernel-primary-c577ba74.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Effective Detection of Sleep-in-atomic-context Bugs in the Linux Kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Effective Detection of Sleep-in-atomic-context Bugs in the Linux Kernel resource_label: primary resource_type: paper resource_url: https://dl.acm.org/doi/pdf/10.1145/3381990 parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3381990 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Effective Detection of Sleep-in-atomic-context Bugs in the Linux Kernel\"](https://dl.acm.org/doi/pdf/10.1145/3381990) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_co",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://dl.acm.org/doi/pdf/10.1145/3381990"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://dl.acm.org/doi/pdf/10.1145/3381990"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "static analysis",
        "kernel",
        "bugs"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This paper presents effective methods for detecting sleep-in-atomic-context bugs in the Linux kernel.",
      "summary_zh": "本文提出了有效检测Linux内核中原子上下文睡眠错误的方法。",
      "source_markdown": "[2020: \"Effective Detection of Sleep-in-atomic-context Bugs in the Linux Kernel\"](https://dl.acm.org/doi/pdf/10.1145/3381990) [paper]",
      "search_text": "effective detection of sleep-in-atomic-context bugs in the linux kernel effective detection of sleep-in-atomic-context bugs in the linux kernel    finding bugs  finding bugs primary paper https://dl.acm.org/doi/pdf/10.1145/3381990 static analysis kernel bugs  finding bugs this paper presents effective methods for detecting sleep-in-atomic-context bugs in the linux kernel. 本文提出了有效检测linux内核中原子上下文睡眠错误的方法。 # effective detection of sleep-in-atomic-context bugs in the linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: effective detection of sleep-in-atomic-context bugs in the linux kernel resource_label: primary resource_type: paper resource_url: https://dl.acm.org/doi/pdf/10.1145/3381990 parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3381990 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"effective detection of sleep-in-atomic-context bugs in the linux kernel\"](https://dl.acm.org/doi/pdf/10.1145/3381990) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_co no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e8b18fc55bd43bdf",
      "item_id": "5a3719371a1d10a1",
      "slug": "2020-finding-bugs-krace-data-race-fuzzing-for-kernel-file-systems-primary-6fee6782",
      "year": 2020,
      "title": "KRACE: Data Race Fuzzing for Kernel File Systems",
      "item_title": "KRACE: Data Race Fuzzing for Kernel File Systems",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf",
      "primary_url": "https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf",
      "parent_primary_url": "https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-krace-data-race-fuzzing-for-kernel-file-systems-primary-6fee6782.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KRACE: Data Race Fuzzing for Kernel File Systems record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: KRACE: Data Race Fuzzing for Kernel File Systems resource_label: primary resource_type: paper resource_url: https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf parent_primary_url: https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"KRACE: Data Race Fuzzing for Kernel File Systems\"](https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf) [paper] [[video](https://www.youtube.com/watch?v=8m2fMxvRtgg)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Lin",
      "link_types": [
        "paper",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=8m2fMxvRtgg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf"
          }
        ],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=8m2fMxvRtgg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "data race",
        "kernel"
      ],
      "affected_area": "file system",
      "exploit_stage": "finding bugs",
      "summary_en": "KRACE is a framework for fuzzing data races in kernel file systems.",
      "summary_zh": "KRACE是一个用于模糊测试内核文件系统中的数据竞争的框架。",
      "source_markdown": "[2020: \"KRACE: Data Race Fuzzing for Kernel File Systems\"](https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf) [paper] [[video](https://www.youtube.com/watch?v=8m2fMxvRtgg)]",
      "search_text": "krace: data race fuzzing for kernel file systems krace: data race fuzzing for kernel file systems    finding bugs  finding bugs primary paper https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf fuzzing data race kernel file system finding bugs krace is a framework for fuzzing data races in kernel file systems. krace是一个用于模糊测试内核文件系统中的数据竞争的框架。 # krace: data race fuzzing for kernel file systems record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: krace: data race fuzzing for kernel file systems resource_label: primary resource_type: paper resource_url: https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf parent_primary_url: https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"krace: data race fuzzing for kernel file systems\"](https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf) [paper] [[video](https://www.youtube.com/watch?v=8m2fmxvrtgg)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than lin no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ba5dd512ad1d852d",
      "item_id": "5a3719371a1d10a1",
      "slug": "2020-finding-bugs-krace-data-race-fuzzing-for-kernel-file-systems-video-948a60db",
      "year": 2020,
      "title": "KRACE: Data Race Fuzzing for Kernel File Systems · video",
      "item_title": "KRACE: Data Race Fuzzing for Kernel File Systems",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=8m2fMxvRtgg",
      "primary_url": "https://www.youtube.com/watch?v=8m2fMxvRtgg",
      "parent_primary_url": "https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-krace-data-race-fuzzing-for-kernel-file-systems-video-948a60db.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KRACE: Data Race Fuzzing for Kernel File Systems · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: KRACE: Data Race Fuzzing for Kernel File Systems resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=8m2fMxvRtgg parent_primary_url: https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"KRACE: Data Race Fuzzing for Kernel File Systems\"](https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf) [paper] [[video](https://www.youtube.com/watch?v=8m2fMxvRtgg)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linu",
      "link_types": [
        "paper",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=8m2fMxvRtgg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf"
          }
        ],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=8m2fMxvRtgg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "data race",
        "kernel"
      ],
      "affected_area": "file system",
      "exploit_stage": "finding bugs",
      "summary_en": "This video discusses KRACE, a data race fuzzing tool for kernel file systems.",
      "summary_zh": "该视频讨论了KRACE，一个用于内核文件系统的数据竞争模糊测试工具。",
      "source_markdown": "[2020: \"KRACE: Data Race Fuzzing for Kernel File Systems\"](https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf) [paper] [[video](https://www.youtube.com/watch?v=8m2fMxvRtgg)]",
      "search_text": "krace: data race fuzzing for kernel file systems · video krace: data race fuzzing for kernel file systems    finding bugs  finding bugs video video https://www.youtube.com/watch?v=8m2fmxvrtgg fuzzing data race kernel file system finding bugs this video discusses krace, a data race fuzzing tool for kernel file systems. 该视频讨论了krace，一个用于内核文件系统的数据竞争模糊测试工具。 # krace: data race fuzzing for kernel file systems · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: krace: data race fuzzing for kernel file systems resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=8m2fmxvrtgg parent_primary_url: https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"krace: data race fuzzing for kernel file systems\"](https://www.cc.gatech.edu/~mxu80/pubs/xu:krace.pdf) [paper] [[video](https://www.youtube.com/watch?v=8m2fmxvrtgg)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linu no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2f5847ef1b907d0f",
      "item_id": "a9a2a430285db323",
      "slug": "2020-finding-bugs-usbfuzz-a-framework-for-fuzzing-usb-drivers-primary-ccc59bb8",
      "year": 2020,
      "title": "USBFuzz: A Framework for Fuzzing USB Drivers",
      "item_title": "USBFuzz: A Framework for Fuzzing USB Drivers",
      "authors": [
        "Device Emulation\" by Hui Peng",
        "Mathias Payer"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://nebelwelt.net/publications/files/20SEC3.pdf",
      "primary_url": "https://nebelwelt.net/publications/files/20SEC3.pdf",
      "parent_primary_url": "https://nebelwelt.net/publications/files/20SEC3.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-usbfuzz-a-framework-for-fuzzing-usb-drivers-primary-ccc59bb8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# USBFuzz: A Framework for Fuzzing USB Drivers record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: USBFuzz: A Framework for Fuzzing USB Drivers resource_label: primary resource_type: paper resource_url: https://nebelwelt.net/publications/files/20SEC3.pdf parent_primary_url: https://nebelwelt.net/publications/files/20SEC3.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"USBFuzz: A Framework for Fuzzing USB Drivers by Device Emulation\" by Hui Peng and Mathias Payer](https://nebelwelt.net/publications/files/20SEC3.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: ",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://nebelwelt.net/publications/files/20SEC3.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://nebelwelt.net/publications/files/20SEC3.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "USB",
        "driver"
      ],
      "affected_area": "driver",
      "exploit_stage": "finding bugs",
      "summary_en": "USBFuzz is a framework designed for fuzzing USB drivers through device emulation.",
      "summary_zh": "USBFuzz是一个通过设备仿真模糊测试USB驱动程序的框架。",
      "source_markdown": "[2020: \"USBFuzz: A Framework for Fuzzing USB Drivers by Device Emulation\" by Hui Peng and Mathias Payer](https://nebelwelt.net/publications/files/20SEC3.pdf) [paper]",
      "search_text": "usbfuzz: a framework for fuzzing usb drivers usbfuzz: a framework for fuzzing usb drivers device emulation\" by hui peng mathias payer   finding bugs  finding bugs primary paper https://nebelwelt.net/publications/files/20sec3.pdf fuzzing usb driver driver finding bugs usbfuzz is a framework designed for fuzzing usb drivers through device emulation. usbfuzz是一个通过设备仿真模糊测试usb驱动程序的框架。 # usbfuzz: a framework for fuzzing usb drivers record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: usbfuzz: a framework for fuzzing usb drivers resource_label: primary resource_type: paper resource_url: https://nebelwelt.net/publications/files/20sec3.pdf parent_primary_url: https://nebelwelt.net/publications/files/20sec3.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"usbfuzz: a framework for fuzzing usb drivers by device emulation\" by hui peng and mathias payer](https://nebelwelt.net/publications/files/20sec3.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "466f08ad1684ed3c",
      "item_id": "1d5b102ac84b8780",
      "slug": "2020-finding-bugs-hfl-hybrid-fuzzing-on-the-linux-kernel-primary-34631139",
      "year": 2020,
      "title": "HFL: Hybrid Fuzzing on the Linux Kernel",
      "item_title": "HFL: Hybrid Fuzzing on the Linux Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.ndss-symposium.org/wp-content/uploads/2020/02/24018.pdf",
      "primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2020/02/24018.pdf",
      "parent_primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2020/02/24018.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-hfl-hybrid-fuzzing-on-the-linux-kernel-primary-34631139.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# HFL: Hybrid Fuzzing on the Linux Kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: HFL: Hybrid Fuzzing on the Linux Kernel resource_label: primary resource_type: paper resource_url: https://www.ndss-symposium.org/wp-content/uploads/2020/02/24018.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2020/02/24018.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"HFL: Hybrid Fuzzing on the Linux Kernel\"](https://www.ndss-symposium.org/wp-content/uploads/2020/02/24018.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: fa",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/2020/02/24018.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/2020/02/24018.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "hybrid",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "HFL is a hybrid fuzzing approach applied to the Linux kernel.",
      "summary_zh": "HFL是一种应用于Linux内核的混合模糊测试方法。",
      "source_markdown": "[2020: \"HFL: Hybrid Fuzzing on the Linux Kernel\"](https://www.ndss-symposium.org/wp-content/uploads/2020/02/24018.pdf) [paper]",
      "search_text": "hfl: hybrid fuzzing on the linux kernel hfl: hybrid fuzzing on the linux kernel    finding bugs  finding bugs primary paper https://www.ndss-symposium.org/wp-content/uploads/2020/02/24018.pdf fuzzing hybrid kernel  finding bugs hfl is a hybrid fuzzing approach applied to the linux kernel. hfl是一种应用于linux内核的混合模糊测试方法。 # hfl: hybrid fuzzing on the linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: hfl: hybrid fuzzing on the linux kernel resource_label: primary resource_type: paper resource_url: https://www.ndss-symposium.org/wp-content/uploads/2020/02/24018.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2020/02/24018.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"hfl: hybrid fuzzing on the linux kernel\"](https://www.ndss-symposium.org/wp-content/uploads/2020/02/24018.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: fa no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "fe3c5d4644c50442",
      "item_id": "513369d268c95ddc",
      "slug": "2020-finding-bugs-koobe-towards-facilitating-exploit-generation-of-kernel-out-of-bounds-write-vulnerabilities-",
      "year": 2020,
      "title": "KOOBE: Towards Facilitating Exploit Generation of Kernel Out-Of-Bounds Write Vulnerabilities",
      "item_title": "KOOBE: Towards Facilitating Exploit Generation of Kernel Out-Of-Bounds Write Vulnerabilities",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec20summer_chen-weiteng_prepub.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec20summer_chen-weiteng_prepub.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec20summer_chen-weiteng_prepub.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-koobe-towards-facilitating-exploit-generation-of-kernel-out-of-bounds-write-vulnerabilities-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KOOBE: Towards Facilitating Exploit Generation of Kernel Out-Of-Bounds Write Vulnerabilities record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: KOOBE: Towards Facilitating Exploit Generation of Kernel Out-Of-Bounds Write Vulnerabilities resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec20summer_chen-weiteng_prepub.pdf parent_primary_url: https://www.usenix.org/system/files/sec20summer_chen-weiteng_prepub.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"KOOBE: Towards Facilitating Exploit Generation of Kernel Out-Of-Bounds Write Vulnerabilities\"](https://www.usenix.org/system/files/sec20summer_chen-weiteng_prepub.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resou",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec20summer_chen-weiteng_prepub.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec20summer_chen-weiteng_prepub.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit generation",
        "kernel",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "KOOBE facilitates the generation of exploits for kernel out-of-bounds write vulnerabilities.",
      "summary_zh": "KOOBE促进了内核越界写入漏洞的利用生成。",
      "source_markdown": "[2020: \"KOOBE: Towards Facilitating Exploit Generation of Kernel Out-Of-Bounds Write Vulnerabilities\"](https://www.usenix.org/system/files/sec20summer_chen-weiteng_prepub.pdf) [paper]",
      "search_text": "koobe: towards facilitating exploit generation of kernel out-of-bounds write vulnerabilities koobe: towards facilitating exploit generation of kernel out-of-bounds write vulnerabilities    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/sec20summer_chen-weiteng_prepub.pdf exploit generation kernel vulnerability  finding bugs koobe facilitates the generation of exploits for kernel out-of-bounds write vulnerabilities. koobe促进了内核越界写入漏洞的利用生成。 # koobe: towards facilitating exploit generation of kernel out-of-bounds write vulnerabilities record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: koobe: towards facilitating exploit generation of kernel out-of-bounds write vulnerabilities resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec20summer_chen-weiteng_prepub.pdf parent_primary_url: https://www.usenix.org/system/files/sec20summer_chen-weiteng_prepub.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"koobe: towards facilitating exploit generation of kernel out-of-bounds write vulnerabilities\"](https://www.usenix.org/system/files/sec20summer_chen-weiteng_prepub.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resou no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2665281b10ebd3e0",
      "item_id": "2474a230fe285a77",
      "slug": "2020-finding-bugs-analyzing-the-linux-kernel-in-userland-with-afl-and-klee-primary-00ca25a8",
      "year": 2020,
      "title": "Analyzing the Linux Kernel in Userland with AFL and KLEE",
      "item_title": "Analyzing the Linux Kernel in Userland with AFL and KLEE",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.grimm-co.com/post/analyzing-the-linux-kernel-in-userland-with-afl-and-klee/",
      "primary_url": "https://blog.grimm-co.com/post/analyzing-the-linux-kernel-in-userland-with-afl-and-klee/",
      "parent_primary_url": "https://blog.grimm-co.com/post/analyzing-the-linux-kernel-in-userland-with-afl-and-klee/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-analyzing-the-linux-kernel-in-userland-with-afl-and-klee-primary-00ca25a8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Analyzing the Linux Kernel in Userland with AFL and KLEE record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Analyzing the Linux Kernel in Userland with AFL and KLEE resource_label: primary resource_type: article resource_url: https://blog.grimm-co.com/post/analyzing-the-linux-kernel-in-userland-with-afl-and-klee/ parent_primary_url: https://blog.grimm-co.com/post/analyzing-the-linux-kernel-in-userland-with-afl-and-klee/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Analyzing the Linux Kernel in Userland with AFL and KLEE\"](https://blog.grimm-co.com/post/analyzing-the-linux-kernel-in-userland-with-afl-and-klee/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_stat",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.grimm-co.com/post/analyzing-the-linux-kernel-in-userland-with-afl-and-klee/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.grimm-co.com/post/analyzing-the-linux-kernel-in-userland-with-afl-and-klee/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "static analysis",
        "AFL",
        "KLEE"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This article analyzes the Linux kernel in userland using AFL and KLEE.",
      "summary_zh": "本文使用AFL和KLEE在用户空间分析Linux内核。",
      "source_markdown": "[2020: \"Analyzing the Linux Kernel in Userland with AFL and KLEE\"](https://blog.grimm-co.com/post/analyzing-the-linux-kernel-in-userland-with-afl-and-klee/) [article]",
      "search_text": "analyzing the linux kernel in userland with afl and klee analyzing the linux kernel in userland with afl and klee    finding bugs  finding bugs primary article https://blog.grimm-co.com/post/analyzing-the-linux-kernel-in-userland-with-afl-and-klee/ static analysis afl klee  finding bugs this article analyzes the linux kernel in userland using afl and klee. 本文使用afl和klee在用户空间分析linux内核。 # analyzing the linux kernel in userland with afl and klee record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: analyzing the linux kernel in userland with afl and klee resource_label: primary resource_type: article resource_url: https://blog.grimm-co.com/post/analyzing-the-linux-kernel-in-userland-with-afl-and-klee/ parent_primary_url: https://blog.grimm-co.com/post/analyzing-the-linux-kernel-in-userland-with-afl-and-klee/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"analyzing the linux kernel in userland with afl and klee\"](https://blog.grimm-co.com/post/analyzing-the-linux-kernel-in-userland-with-afl-and-klee/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_stat no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4a0de18829f2c0a1",
      "item_id": "94c1f18ae0378876",
      "slug": "2020-finding-bugs-precisely-characterizing-security-impact-in-a-flood-of-patches-via-symbolic-rule-comparison-",
      "year": 2020,
      "title": "Precisely Characterizing Security Impact in a Flood of Patches via Symbolic Rule Comparison",
      "item_title": "Precisely Characterizing Security Impact in a Flood of Patches via Symbolic Rule Comparison",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf",
      "primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf",
      "parent_primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-precisely-characterizing-security-impact-in-a-flood-of-patches-via-symbolic-rule-comparison-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Precisely Characterizing Security Impact in a Flood of Patches via Symbolic Rule Comparison record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Precisely Characterizing Security Impact in a Flood of Patches via Symbolic Rule Comparison resource_label: primary resource_type: paper resource_url: https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Precisely Characterizing Security Impact in a Flood of Patches via Symbolic Rule Comparison\"](https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf)] [[video](http",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=fpkXkvwKbZw"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=fpkXkvwKbZw"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "static analysis",
        "security",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This paper characterizes security impacts in kernel patches through symbolic rule comparison.",
      "summary_zh": "本文通过符号规则比较来表征内核补丁中的安全影响。",
      "source_markdown": "[2020: \"Precisely Characterizing Security Impact in a Flood of Patches via Symbolic Rule Comparison\"](https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf)] [[video](https://www.youtube.com/watch?v=fpkXkvwKbZw)]",
      "search_text": "precisely characterizing security impact in a flood of patches via symbolic rule comparison precisely characterizing security impact in a flood of patches via symbolic rule comparison    finding bugs  finding bugs primary paper https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf static analysis security kernel  finding bugs this paper characterizes security impacts in kernel patches through symbolic rule comparison. 本文通过符号规则比较来表征内核补丁中的安全影响。 # precisely characterizing security impact in a flood of patches via symbolic rule comparison record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: precisely characterizing security impact in a flood of patches via symbolic rule comparison resource_label: primary resource_type: paper resource_url: https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"precisely characterizing security impact in a flood of patches via symbolic rule comparison\"](https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf)] [[video](http no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3f6e20095ceb4db1",
      "item_id": "94c1f18ae0378876",
      "slug": "2020-finding-bugs-precisely-characterizing-security-impact-in-a-flood-of-patches-via-symbolic-rule-comparison--2",
      "year": 2020,
      "title": "Precisely Characterizing Security Impact in a Flood of Patches via Symbolic Rule Comparison · slides",
      "item_title": "Precisely Characterizing Security Impact in a Flood of Patches via Symbolic Rule Comparison",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf",
      "primary_url": "https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf",
      "parent_primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-precisely-characterizing-security-impact-in-a-flood-of-patches-via-symbolic-rule-comparison--2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Precisely Characterizing Security Impact in a Flood of Patches via Symbolic Rule Comparison · slides record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Precisely Characterizing Security Impact in a Flood of Patches via Symbolic Rule Comparison resource_label: slides resource_type: slides resource_url: https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Precisely Characterizing Security Impact in a Flood of Patches via Symbolic Rule Comparison\"](https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf)] [[video](ht",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=fpkXkvwKbZw"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=fpkXkvwKbZw"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "static analysis",
        "security",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This presentation discusses the security impact of kernel patches via symbolic rule comparison.",
      "summary_zh": "该演示讨论了通过符号规则比较内核补丁的安全影响。",
      "source_markdown": "[2020: \"Precisely Characterizing Security Impact in a Flood of Patches via Symbolic Rule Comparison\"](https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf)] [[video](https://www.youtube.com/watch?v=fpkXkvwKbZw)]",
      "search_text": "precisely characterizing security impact in a flood of patches via symbolic rule comparison · slides precisely characterizing security impact in a flood of patches via symbolic rule comparison    finding bugs  finding bugs slides slides https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf static analysis security kernel  finding bugs this presentation discusses the security impact of kernel patches via symbolic rule comparison. 该演示讨论了通过符号规则比较内核补丁的安全影响。 # precisely characterizing security impact in a flood of patches via symbolic rule comparison · slides record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: precisely characterizing security impact in a flood of patches via symbolic rule comparison resource_label: slides resource_type: slides resource_url: https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"precisely characterizing security impact in a flood of patches via symbolic rule comparison\"](https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf)] [[video](ht no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bd1021e120b240bf",
      "item_id": "94c1f18ae0378876",
      "slug": "2020-finding-bugs-precisely-characterizing-security-impact-in-a-flood-of-patches-via-symbolic-rule-comparison--3",
      "year": 2020,
      "title": "Precisely Characterizing Security Impact in a Flood of Patches via Symbolic Rule Comparison · video",
      "item_title": "Precisely Characterizing Security Impact in a Flood of Patches via Symbolic Rule Comparison",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=fpkXkvwKbZw",
      "primary_url": "https://www.youtube.com/watch?v=fpkXkvwKbZw",
      "parent_primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-precisely-characterizing-security-impact-in-a-flood-of-patches-via-symbolic-rule-comparison--3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Precisely Characterizing Security Impact in a Flood of Patches via Symbolic Rule Comparison · video record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Precisely Characterizing Security Impact in a Flood of Patches via Symbolic Rule Comparison resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=fpkXkvwKbZw parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Precisely Characterizing Security Impact in a Flood of Patches via Symbolic Rule Comparison\"](https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf)] [[video](https://www.youtube.com/watc",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=fpkXkvwKbZw"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=fpkXkvwKbZw"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "static analysis",
        "security",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This video presents the security impact of kernel patches through symbolic rule comparison.",
      "summary_zh": "该视频展示了通过符号规则比较内核补丁的安全影响。",
      "source_markdown": "[2020: \"Precisely Characterizing Security Impact in a Flood of Patches via Symbolic Rule Comparison\"](https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf)] [[video](https://www.youtube.com/watch?v=fpkXkvwKbZw)]",
      "search_text": "precisely characterizing security impact in a flood of patches via symbolic rule comparison · video precisely characterizing security impact in a flood of patches via symbolic rule comparison    finding bugs  finding bugs video video https://www.youtube.com/watch?v=fpkxkvwkbzw static analysis security kernel  finding bugs this video presents the security impact of kernel patches through symbolic rule comparison. 该视频展示了通过符号规则比较内核补丁的安全影响。 # precisely characterizing security impact in a flood of patches via symbolic rule comparison · video record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: precisely characterizing security impact in a flood of patches via symbolic rule comparison resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=fpkxkvwkbzw parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"precisely characterizing security impact in a flood of patches via symbolic rule comparison\"](https://www.ndss-symposium.org/wp-content/uploads/2020/02/24419-paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/24419-slides.pdf)] [[video](https://www.youtube.com/watc no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "de47bc8772cdf5ee",
      "item_id": "202851b334f169d4",
      "slug": "2020-finding-bugs-finding-race-conditions-in-kernels-from-fuzzing-to-symbolic-execution-primary-f1a138ac",
      "year": 2020,
      "title": "Finding Race Conditions in Kernels: from Fuzzing to Symbolic Execution",
      "item_title": "Finding Race Conditions in Kernels: from Fuzzing to Symbolic Execution",
      "authors": [
        "Meng Xu"
      ],
      "cves": [],
      "tags": [
        "thesis"
      ],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://gts3.org/assets/papers/2020/xu:thesis.pdf",
      "primary_url": "https://gts3.org/assets/papers/2020/xu:thesis.pdf",
      "parent_primary_url": "https://gts3.org/assets/papers/2020/xu:thesis.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-finding-race-conditions-in-kernels-from-fuzzing-to-symbolic-execution-primary-f1a138ac.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Finding Race Conditions in Kernels: from Fuzzing to Symbolic Execution record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Finding Race Conditions in Kernels: from Fuzzing to Symbolic Execution resource_label: primary resource_type: paper resource_url: https://gts3.org/assets/papers/2020/xu:thesis.pdf parent_primary_url: https://gts3.org/assets/papers/2020/xu:thesis.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"Finding Race Conditions in Kernels: from Fuzzing to Symbolic Execution\" by Meng Xu](https://gts3.org/assets/papers/2020/xu:thesis.pdf) [thesis] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ke",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://gts3.org/assets/papers/2020/xu:thesis.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://gts3.org/assets/papers/2020/xu:thesis.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "symbolic execution",
        "race conditions"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This paper explores finding race conditions in kernels using fuzzing and symbolic execution.",
      "summary_zh": "本文探讨了使用模糊测试和符号执行在内核中查找竞争条件。",
      "source_markdown": "[2020: \"Finding Race Conditions in Kernels: from Fuzzing to Symbolic Execution\" by Meng Xu](https://gts3.org/assets/papers/2020/xu:thesis.pdf) [thesis]",
      "search_text": "finding race conditions in kernels: from fuzzing to symbolic execution finding race conditions in kernels: from fuzzing to symbolic execution meng xu  thesis finding bugs  finding bugs primary paper https://gts3.org/assets/papers/2020/xu:thesis.pdf fuzzing symbolic execution race conditions  finding bugs this paper explores finding race conditions in kernels using fuzzing and symbolic execution. 本文探讨了使用模糊测试和符号执行在内核中查找竞争条件。 # finding race conditions in kernels: from fuzzing to symbolic execution record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: finding race conditions in kernels: from fuzzing to symbolic execution resource_label: primary resource_type: paper resource_url: https://gts3.org/assets/papers/2020/xu:thesis.pdf parent_primary_url: https://gts3.org/assets/papers/2020/xu:thesis.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"finding race conditions in kernels: from fuzzing to symbolic execution\" by meng xu](https://gts3.org/assets/papers/2020/xu:thesis.pdf) [thesis] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu ke no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4ee91dc301d56ad8",
      "item_id": "03b0e349a66ec4da",
      "slug": "2020-finding-bugs-a-hybrid-interface-recovery-method-for-android-kernels-fuzzing-primary-6add504b",
      "year": 2020,
      "title": "A Hybrid Interface Recovery Method for Android Kernels Fuzzing",
      "item_title": "A Hybrid Interface Recovery Method for Android Kernels Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://qrs20.techconf.org/QRS2020_FULL/pdfs/QRS2020-4LGdOos7NAbR8M2s6S6ezE/891300a335/891300a335.pdf",
      "primary_url": "https://qrs20.techconf.org/QRS2020_FULL/pdfs/QRS2020-4LGdOos7NAbR8M2s6S6ezE/891300a335/891300a335.pdf",
      "parent_primary_url": "https://qrs20.techconf.org/QRS2020_FULL/pdfs/QRS2020-4LGdOos7NAbR8M2s6S6ezE/891300a335/891300a335.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2020-finding-bugs-a-hybrid-interface-recovery-method-for-android-kernels-fuzzing-primary-6add504b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Hybrid Interface Recovery Method for Android Kernels Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: A Hybrid Interface Recovery Method for Android Kernels Fuzzing resource_label: primary resource_type: paper resource_url: https://qrs20.techconf.org/QRS2020_FULL/pdfs/QRS2020-4LGdOos7NAbR8M2s6S6ezE/891300a335/891300a335.pdf parent_primary_url: https://qrs20.techconf.org/QRS2020_FULL/pdfs/QRS2020-4LGdOos7NAbR8M2s6S6ezE/891300a335/891300a335.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"A Hybrid Interface Recovery Method for Android Kernels Fuzzing\"](https://qrs20.techconf.org/QRS2020_FULL/pdfs/QRS2020-4LGdOos7NAbR8M2s6S6ezE/891300a335/891300a335.pdf) [paper] cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-rela",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://qrs20.techconf.org/QRS2020_FULL/pdfs/QRS2020-4LGdOos7NAbR8M2s6S6ezE/891300a335/891300a335.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://qrs20.techconf.org/QRS2020_FULL/pdfs/QRS2020-4LGdOos7NAbR8M2s6S6ezE/891300a335/891300a335.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "Android",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This paper presents a hybrid interface recovery method for fuzzing Android kernels.",
      "summary_zh": "本文提出了一种用于模糊测试Android内核的混合接口恢复方法。",
      "source_markdown": "[2020: \"A Hybrid Interface Recovery Method for Android Kernels Fuzzing\"](https://qrs20.techconf.org/QRS2020_FULL/pdfs/QRS2020-4LGdOos7NAbR8M2s6S6ezE/891300a335/891300a335.pdf) [paper]",
      "search_text": "a hybrid interface recovery method for android kernels fuzzing a hybrid interface recovery method for android kernels fuzzing    finding bugs  finding bugs primary paper https://qrs20.techconf.org/qrs2020_full/pdfs/qrs2020-4lgdoos7nabr8m2s6s6eze/891300a335/891300a335.pdf fuzzing android kernel  finding bugs this paper presents a hybrid interface recovery method for fuzzing android kernels. 本文提出了一种用于模糊测试android内核的混合接口恢复方法。 # a hybrid interface recovery method for android kernels fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: a hybrid interface recovery method for android kernels fuzzing resource_label: primary resource_type: paper resource_url: https://qrs20.techconf.org/qrs2020_full/pdfs/qrs2020-4lgdoos7nabr8m2s6s6eze/891300a335/891300a335.pdf parent_primary_url: https://qrs20.techconf.org/qrs2020_full/pdfs/qrs2020-4lgdoos7nabr8m2s6s6eze/891300a335/891300a335.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2020: \"a hybrid interface recovery method for android kernels fuzzing\"](https://qrs20.techconf.org/qrs2020_full/pdfs/qrs2020-4lgdoos7nabr8m2s6s6eze/891300a335/891300a335.pdf) [paper] cves: none android_impact_status: unknown android_impact_reason: mentions android; android-rela unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "fb4657c3f6debbae",
      "item_id": "6130c563889d1f05",
      "slug": "2019-finding-bugs-perf-fuzzer-exposing-kernel-bugs-primary-235afd6a",
      "year": 2019,
      "title": "perf fuzzer: Exposing Kernel Bugs",
      "item_title": "perf fuzzer: Exposing Kernel Bugs",
      "authors": [
        "Detailed Fuzzing of a Specific System Call (2019 Update)\" by Vincent M. Weaver",
        "Dave Jones"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/2019_perf_fuzzer_tr.pdf",
      "primary_url": "http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/2019_perf_fuzzer_tr.pdf",
      "parent_primary_url": "http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/2019_perf_fuzzer_tr.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2019-finding-bugs-perf-fuzzer-exposing-kernel-bugs-primary-235afd6a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# perf fuzzer: Exposing Kernel Bugs record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: perf fuzzer: Exposing Kernel Bugs resource_label: primary resource_type: paper resource_url: http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/2019_perf_fuzzer_tr.pdf parent_primary_url: http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/2019_perf_fuzzer_tr.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"perf fuzzer: Exposing Kernel Bugs by Detailed Fuzzing of a Specific System Call (2019 Update)\" by Vincent M. Weaver and Dave Jones](http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/2019_perf_fuzzer_tr.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/2019_perf_fuzzer_tr.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/2019_perf_fuzzer_tr.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "perf"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This paper discusses the perf fuzzer, which exposes kernel bugs through detailed fuzzing.",
      "summary_zh": "本文讨论了perf模糊测试器，通过详细的模糊测试暴露内核错误。",
      "source_markdown": "[2019: \"perf fuzzer: Exposing Kernel Bugs by Detailed Fuzzing of a Specific System Call (2019 Update)\" by Vincent M. Weaver and Dave Jones](http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/2019_perf_fuzzer_tr.pdf) [paper]",
      "search_text": "perf fuzzer: exposing kernel bugs perf fuzzer: exposing kernel bugs detailed fuzzing of a specific system call (2019 update)\" by vincent m. weaver dave jones   finding bugs  finding bugs primary paper http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/2019_perf_fuzzer_tr.pdf fuzzing kernel perf  finding bugs this paper discusses the perf fuzzer, which exposes kernel bugs through detailed fuzzing. 本文讨论了perf模糊测试器，通过详细的模糊测试暴露内核错误。 # perf fuzzer: exposing kernel bugs record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: perf fuzzer: exposing kernel bugs resource_label: primary resource_type: paper resource_url: http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/2019_perf_fuzzer_tr.pdf parent_primary_url: http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/2019_perf_fuzzer_tr.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"perf fuzzer: exposing kernel bugs by detailed fuzzing of a specific system call (2019 update)\" by vincent m. weaver and dave jones](http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/2019_perf_fuzzer_tr.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "336a6adaf7f950d8",
      "item_id": "6eb187cd1e9bf135",
      "slug": "2019-finding-bugs-industry-practice-of-coverage-guided-enterprise-linux-kernel-fuzzing-primary-dfb47792",
      "year": 2019,
      "title": "Industry Practice of Coverage-Guided Enterprise Linux Kernel Fuzzing",
      "item_title": "Industry Practice of Coverage-Guided Enterprise Linux Kernel Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "http://wingtecher.com/themes/WingTecherResearch/assets/papers/fse19-linux-kernel.pdf",
      "primary_url": "http://wingtecher.com/themes/WingTecherResearch/assets/papers/fse19-linux-kernel.pdf",
      "parent_primary_url": "http://wingtecher.com/themes/WingTecherResearch/assets/papers/fse19-linux-kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2019-finding-bugs-industry-practice-of-coverage-guided-enterprise-linux-kernel-fuzzing-primary-dfb47792.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Industry Practice of Coverage-Guided Enterprise Linux Kernel Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Industry Practice of Coverage-Guided Enterprise Linux Kernel Fuzzing resource_label: primary resource_type: paper resource_url: http://wingtecher.com/themes/WingTecherResearch/assets/papers/fse19-linux-kernel.pdf parent_primary_url: http://wingtecher.com/themes/WingTecherResearch/assets/papers/fse19-linux-kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"Industry Practice of Coverage-Guided Enterprise Linux Kernel Fuzzing\"](http://wingtecher.com/themes/WingTecherResearch/assets/papers/fse19-linux-kernel.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devi",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "http://wingtecher.com/themes/WingTecherResearch/assets/papers/fse19-linux-kernel.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "http://wingtecher.com/themes/WingTecherResearch/assets/papers/fse19-linux-kernel.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "industry",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This paper details industry practices for coverage-guided fuzzing of the enterprise Linux kernel.",
      "summary_zh": "本文详细介绍了企业Linux内核的覆盖引导模糊测试的行业实践。",
      "source_markdown": "[2019: \"Industry Practice of Coverage-Guided Enterprise Linux Kernel Fuzzing\"](http://wingtecher.com/themes/WingTecherResearch/assets/papers/fse19-linux-kernel.pdf) [paper]",
      "search_text": "industry practice of coverage-guided enterprise linux kernel fuzzing industry practice of coverage-guided enterprise linux kernel fuzzing    finding bugs  finding bugs primary paper http://wingtecher.com/themes/wingtecherresearch/assets/papers/fse19-linux-kernel.pdf fuzzing industry kernel  finding bugs this paper details industry practices for coverage-guided fuzzing of the enterprise linux kernel. 本文详细介绍了企业linux内核的覆盖引导模糊测试的行业实践。 # industry practice of coverage-guided enterprise linux kernel fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: industry practice of coverage-guided enterprise linux kernel fuzzing resource_label: primary resource_type: paper resource_url: http://wingtecher.com/themes/wingtecherresearch/assets/papers/fse19-linux-kernel.pdf parent_primary_url: http://wingtecher.com/themes/wingtecherresearch/assets/papers/fse19-linux-kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"industry practice of coverage-guided enterprise linux kernel fuzzing\"](http://wingtecher.com/themes/wingtecherresearch/assets/papers/fse19-linux-kernel.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "cd3b7471a569a30c",
      "item_id": "1c4b427b1e5f53a2",
      "slug": "2019-finding-bugs-effective-static-analysis-of-concurrency-use-after-free-bugs-in-linux-device-drivers-primary",
      "year": 2019,
      "title": "Effective Static Analysis of Concurrency Use-After-Free Bugs in Linux Device Drivers",
      "item_title": "Effective Static Analysis of Concurrency Use-After-Free Bugs in Linux Device Drivers",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://hal.inria.fr/hal-02182516/document",
      "primary_url": "https://hal.inria.fr/hal-02182516/document",
      "parent_primary_url": "https://hal.inria.fr/hal-02182516/document",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2019-finding-bugs-effective-static-analysis-of-concurrency-use-after-free-bugs-in-linux-device-drivers-primary.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Effective Static Analysis of Concurrency Use-After-Free Bugs in Linux Device Drivers record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Effective Static Analysis of Concurrency Use-After-Free Bugs in Linux Device Drivers resource_label: primary resource_type: paper resource_url: https://hal.inria.fr/hal-02182516/document parent_primary_url: https://hal.inria.fr/hal-02182516/document source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"Effective Static Analysis of Concurrency Use-After-Free Bugs in Linux Device Drivers\"](https://hal.inria.fr/hal-02182516/document) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://hal.inria.fr/hal-02182516/document"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://hal.inria.fr/hal-02182516/document"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "static analysis",
        "use-after-free",
        "driver"
      ],
      "affected_area": "driver",
      "exploit_stage": "finding bugs",
      "summary_en": "This paper presents effective static analysis techniques for concurrency use-after-free bugs in Linux device drivers.",
      "summary_zh": "本文提出了针对Linux设备驱动程序中并发使用后释放错误的有效静态分析技术。",
      "source_markdown": "[2019: \"Effective Static Analysis of Concurrency Use-After-Free Bugs in Linux Device Drivers\"](https://hal.inria.fr/hal-02182516/document) [paper]",
      "search_text": "effective static analysis of concurrency use-after-free bugs in linux device drivers effective static analysis of concurrency use-after-free bugs in linux device drivers    finding bugs  finding bugs primary paper https://hal.inria.fr/hal-02182516/document static analysis use-after-free driver driver finding bugs this paper presents effective static analysis techniques for concurrency use-after-free bugs in linux device drivers. 本文提出了针对linux设备驱动程序中并发使用后释放错误的有效静态分析技术。 # effective static analysis of concurrency use-after-free bugs in linux device drivers record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: effective static analysis of concurrency use-after-free bugs in linux device drivers resource_label: primary resource_type: paper resource_url: https://hal.inria.fr/hal-02182516/document parent_primary_url: https://hal.inria.fr/hal-02182516/document source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"effective static analysis of concurrency use-after-free bugs in linux device drivers\"](https://hal.inria.fr/hal-02182516/document) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "135738c68b990c26",
      "item_id": "ab7a0d025f6e12b4",
      "slug": "2019-finding-bugs-a-gentle-introduction-to-linux-kernel-fuzzing-primary-6c9a1979",
      "year": 2019,
      "title": "A gentle introduction to Linux Kernel fuzzing",
      "item_title": "A gentle introduction to Linux Kernel fuzzing",
      "authors": [
        "Marek Majkowski"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.cloudflare.com/a-gentle-introduction-to-linux-kernel-fuzzing/",
      "primary_url": "https://blog.cloudflare.com/a-gentle-introduction-to-linux-kernel-fuzzing/",
      "parent_primary_url": "https://blog.cloudflare.com/a-gentle-introduction-to-linux-kernel-fuzzing/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2019-finding-bugs-a-gentle-introduction-to-linux-kernel-fuzzing-primary-6c9a1979.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A gentle introduction to Linux Kernel fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: A gentle introduction to Linux Kernel fuzzing resource_label: primary resource_type: article resource_url: https://blog.cloudflare.com/a-gentle-introduction-to-linux-kernel-fuzzing/ parent_primary_url: https://blog.cloudflare.com/a-gentle-introduction-to-linux-kernel-fuzzing/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"A gentle introduction to Linux Kernel fuzzing\" by Marek Majkowski](https://blog.cloudflare.com/a-gentle-introduction-to-linux-kernel-fuzzing/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use App",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.cloudflare.com/a-gentle-introduction-to-linux-kernel-fuzzing/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.cloudflare.com/a-gentle-introduction-to-linux-kernel-fuzzing/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel",
        "introduction"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article provides an introduction to fuzzing techniques for the Linux kernel.",
      "summary_zh": "本文介绍了Linux内核模糊测试技术的入门知识。",
      "source_markdown": "[2019: \"A gentle introduction to Linux Kernel fuzzing\" by Marek Majkowski](https://blog.cloudflare.com/a-gentle-introduction-to-linux-kernel-fuzzing/) [article]",
      "search_text": "a gentle introduction to linux kernel fuzzing a gentle introduction to linux kernel fuzzing marek majkowski   finding bugs  finding bugs primary article https://blog.cloudflare.com/a-gentle-introduction-to-linux-kernel-fuzzing/ fuzzing kernel introduction  defensive research this article provides an introduction to fuzzing techniques for the linux kernel. 本文介绍了linux内核模糊测试技术的入门知识。 # a gentle introduction to linux kernel fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: a gentle introduction to linux kernel fuzzing resource_label: primary resource_type: article resource_url: https://blog.cloudflare.com/a-gentle-introduction-to-linux-kernel-fuzzing/ parent_primary_url: https://blog.cloudflare.com/a-gentle-introduction-to-linux-kernel-fuzzing/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"a gentle introduction to linux kernel fuzzing\" by marek majkowski](https://blog.cloudflare.com/a-gentle-introduction-to-linux-kernel-fuzzing/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use app no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f1983e7ce2e7a5e1",
      "item_id": "73b478cf80af5764",
      "slug": "2019-finding-bugs-unicorefuzz-on-the-viability-of-emulation-for-kernelspace-fuzzing-primary-37b4031f",
      "year": 2019,
      "title": "Unicorefuzz: On the Viability of Emulation for Kernelspace Fuzzing",
      "item_title": "Unicorefuzz: On the Viability of Emulation for Kernelspace Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/woot19-paper_maier.pdf",
      "primary_url": "https://www.usenix.org/system/files/woot19-paper_maier.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/woot19-paper_maier.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2019-finding-bugs-unicorefuzz-on-the-viability-of-emulation-for-kernelspace-fuzzing-primary-37b4031f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Unicorefuzz: On the Viability of Emulation for Kernelspace Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Unicorefuzz: On the Viability of Emulation for Kernelspace Fuzzing resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/woot19-paper_maier.pdf parent_primary_url: https://www.usenix.org/system/files/woot19-paper_maier.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"Unicorefuzz: On the Viability of Emulation for Kernelspace Fuzzing\"](https://www.usenix.org/system/files/woot19-paper_maier.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/woot19-paper_maier.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/woot19-paper_maier.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "emulation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper discusses the feasibility of using emulation for kernelspace fuzzing.",
      "summary_zh": "本文讨论了在内核空间模糊测试中使用仿真的可行性。",
      "source_markdown": "[2019: \"Unicorefuzz: On the Viability of Emulation for Kernelspace Fuzzing\"](https://www.usenix.org/system/files/woot19-paper_maier.pdf) [paper]",
      "search_text": "unicorefuzz: on the viability of emulation for kernelspace fuzzing unicorefuzz: on the viability of emulation for kernelspace fuzzing    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/woot19-paper_maier.pdf fuzzing emulation kernel  defensive research this paper discusses the feasibility of using emulation for kernelspace fuzzing. 本文讨论了在内核空间模糊测试中使用仿真的可行性。 # unicorefuzz: on the viability of emulation for kernelspace fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: unicorefuzz: on the viability of emulation for kernelspace fuzzing resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/woot19-paper_maier.pdf parent_primary_url: https://www.usenix.org/system/files/woot19-paper_maier.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"unicorefuzz: on the viability of emulation for kernelspace fuzzing\"](https://www.usenix.org/system/files/woot19-paper_maier.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "704786ad405d580c",
      "item_id": "c9fa1a25d9c677fa",
      "slug": "2019-finding-bugs-case-study-searching-for-a-vulnerability-pattern-in-the-linux-kernel-primary-cd63c3b1",
      "year": 2019,
      "title": "Case study: Searching for a vulnerability pattern in the Linux kernel",
      "item_title": "Case study: Searching for a vulnerability pattern in the Linux kernel",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://a13xp0p0v.github.io/2019/08/10/cfu.html",
      "primary_url": "https://a13xp0p0v.github.io/2019/08/10/cfu.html",
      "parent_primary_url": "https://a13xp0p0v.github.io/2019/08/10/cfu.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2019-finding-bugs-case-study-searching-for-a-vulnerability-pattern-in-the-linux-kernel-primary-cd63c3b1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Case study: Searching for a vulnerability pattern in the Linux kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Case study: Searching for a vulnerability pattern in the Linux kernel resource_label: primary resource_type: article resource_url: https://a13xp0p0v.github.io/2019/08/10/cfu.html parent_primary_url: https://a13xp0p0v.github.io/2019/08/10/cfu.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"Case study: Searching for a vulnerability pattern in the Linux kernel\" by Alexander Popov](https://a13xp0p0v.github.io/2019/08/10/cfu.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://a13xp0p0v.github.io/2019/08/10/cfu.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://a13xp0p0v.github.io/2019/08/10/cfu.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://a13xp0p0v.github.io/2019/08/10/cfu.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "pattern",
        "case study"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article presents a case study on identifying vulnerability patterns in the Linux kernel.",
      "summary_zh": "本文展示了在Linux内核中识别漏洞模式的案例研究。",
      "source_markdown": "[2019: \"Case study: Searching for a vulnerability pattern in the Linux kernel\" by Alexander Popov](https://a13xp0p0v.github.io/2019/08/10/cfu.html) [article]",
      "search_text": "case study: searching for a vulnerability pattern in the linux kernel case study: searching for a vulnerability pattern in the linux kernel alexander popov   finding bugs  finding bugs primary article https://a13xp0p0v.github.io/2019/08/10/cfu.html vulnerability pattern case study  defensive research this article presents a case study on identifying vulnerability patterns in the linux kernel. 本文展示了在linux内核中识别漏洞模式的案例研究。 # case study: searching for a vulnerability pattern in the linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: case study: searching for a vulnerability pattern in the linux kernel resource_label: primary resource_type: article resource_url: https://a13xp0p0v.github.io/2019/08/10/cfu.html parent_primary_url: https://a13xp0p0v.github.io/2019/08/10/cfu.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"case study: searching for a vulnerability pattern in the linux kernel\" by alexander popov](https://a13xp0p0v.github.io/2019/08/10/cfu.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b7d59d385be1146c",
      "item_id": "7f56365910664265",
      "slug": "2019-finding-bugs-razzer-finding-kernel-race-bugs-through-fuzzing-primary-f67dfbea",
      "year": 2019,
      "title": "Razzer: Finding Kernel Race Bugs through Fuzzing",
      "item_title": "Razzer: Finding Kernel Race Bugs through Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=9UszCIxc0r0",
      "primary_url": "https://www.youtube.com/watch?v=9UszCIxc0r0",
      "parent_primary_url": "https://www.youtube.com/watch?v=9UszCIxc0r0",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2019-finding-bugs-razzer-finding-kernel-race-bugs-through-fuzzing-primary-f67dfbea.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Razzer: Finding Kernel Race Bugs through Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Razzer: Finding Kernel Race Bugs through Fuzzing resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=9UszCIxc0r0 parent_primary_url: https://www.youtube.com/watch?v=9UszCIxc0r0 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"Razzer: Finding Kernel Race Bugs through Fuzzing\"](https://www.youtube.com/watch?v=9UszCIxc0r0) [video] [[paper](https://lifeasageek.github.io/papers/jeong:razzer.pdf)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_cod",
      "link_types": [
        "video",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=9UszCIxc0r0"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://lifeasageek.github.io/papers/jeong:razzer.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://lifeasageek.github.io/papers/jeong:razzer.pdf"
          }
        ],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=9UszCIxc0r0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://lifeasageek.github.io/papers/jeong:razzer.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "race condition",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This video explains how to find race condition bugs in the kernel using fuzzing techniques.",
      "summary_zh": "本视频解释了如何使用模糊测试技术在内核中查找竞争条件漏洞。",
      "source_markdown": "[2019: \"Razzer: Finding Kernel Race Bugs through Fuzzing\"](https://www.youtube.com/watch?v=9UszCIxc0r0) [video] [[paper](https://lifeasageek.github.io/papers/jeong:razzer.pdf)]",
      "search_text": "razzer: finding kernel race bugs through fuzzing razzer: finding kernel race bugs through fuzzing    finding bugs  finding bugs primary video https://www.youtube.com/watch?v=9uszcixc0r0 fuzzing race condition kernel  defensive research this video explains how to find race condition bugs in the kernel using fuzzing techniques. 本视频解释了如何使用模糊测试技术在内核中查找竞争条件漏洞。 # razzer: finding kernel race bugs through fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: razzer: finding kernel race bugs through fuzzing resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=9uszcixc0r0 parent_primary_url: https://www.youtube.com/watch?v=9uszcixc0r0 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"razzer: finding kernel race bugs through fuzzing\"](https://www.youtube.com/watch?v=9uszcixc0r0) [video] [[paper](https://lifeasageek.github.io/papers/jeong:razzer.pdf)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_cod no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "d2f1d69fccb7c159",
      "item_id": "7f56365910664265",
      "slug": "2019-finding-bugs-razzer-finding-kernel-race-bugs-through-fuzzing-paper-4910b857",
      "year": 2019,
      "title": "Razzer: Finding Kernel Race Bugs through Fuzzing · paper",
      "item_title": "Razzer: Finding Kernel Race Bugs through Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "paper",
      "resource_type": "paper",
      "resource_url": "https://lifeasageek.github.io/papers/jeong:razzer.pdf",
      "primary_url": "https://lifeasageek.github.io/papers/jeong:razzer.pdf",
      "parent_primary_url": "https://www.youtube.com/watch?v=9UszCIxc0r0",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2019-finding-bugs-razzer-finding-kernel-race-bugs-through-fuzzing-paper-4910b857.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Razzer: Finding Kernel Race Bugs through Fuzzing · paper record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Razzer: Finding Kernel Race Bugs through Fuzzing resource_label: paper resource_type: paper resource_url: https://lifeasageek.github.io/papers/jeong:razzer.pdf parent_primary_url: https://www.youtube.com/watch?v=9UszCIxc0r0 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"Razzer: Finding Kernel Race Bugs through Fuzzing\"](https://www.youtube.com/watch?v=9UszCIxc0r0) [video] [[paper](https://lifeasageek.github.io/papers/jeong:razzer.pdf)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather tha",
      "link_types": [
        "video",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=9UszCIxc0r0"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://lifeasageek.github.io/papers/jeong:razzer.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://lifeasageek.github.io/papers/jeong:razzer.pdf"
          }
        ],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=9UszCIxc0r0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://lifeasageek.github.io/papers/jeong:razzer.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "race condition",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper details a method for finding kernel race bugs through fuzzing.",
      "summary_zh": "本文详细介绍了一种通过模糊测试发现内核竞争漏洞的方法。",
      "source_markdown": "[2019: \"Razzer: Finding Kernel Race Bugs through Fuzzing\"](https://www.youtube.com/watch?v=9UszCIxc0r0) [video] [[paper](https://lifeasageek.github.io/papers/jeong:razzer.pdf)]",
      "search_text": "razzer: finding kernel race bugs through fuzzing · paper razzer: finding kernel race bugs through fuzzing    finding bugs  finding bugs paper paper https://lifeasageek.github.io/papers/jeong:razzer.pdf fuzzing race condition kernel  defensive research this paper details a method for finding kernel race bugs through fuzzing. 本文详细介绍了一种通过模糊测试发现内核竞争漏洞的方法。 # razzer: finding kernel race bugs through fuzzing · paper record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: razzer: finding kernel race bugs through fuzzing resource_label: paper resource_type: paper resource_url: https://lifeasageek.github.io/papers/jeong:razzer.pdf parent_primary_url: https://www.youtube.com/watch?v=9uszcixc0r0 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"razzer: finding kernel race bugs through fuzzing\"](https://www.youtube.com/watch?v=9uszcixc0r0) [video] [[paper](https://lifeasageek.github.io/papers/jeong:razzer.pdf)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather tha no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "2f4c66e0f5c47f06",
      "item_id": "3a0b46b539fee08a",
      "slug": "2019-finding-bugs-fuzzing-file-systems-via-two-dimensional-input-space-exploration-primary-1d7b2ab5",
      "year": 2019,
      "title": "Fuzzing File Systems via Two-Dimensional Input Space Exploration",
      "item_title": "Fuzzing File Systems via Two-Dimensional Input Space Exploration",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://taesoo.kim/pubs/2019/xu:janus.pdf",
      "primary_url": "https://taesoo.kim/pubs/2019/xu:janus.pdf",
      "parent_primary_url": "https://taesoo.kim/pubs/2019/xu:janus.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2019-finding-bugs-fuzzing-file-systems-via-two-dimensional-input-space-exploration-primary-1d7b2ab5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fuzzing File Systems via Two-Dimensional Input Space Exploration record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Fuzzing File Systems via Two-Dimensional Input Space Exploration resource_label: primary resource_type: paper resource_url: https://taesoo.kim/pubs/2019/xu:janus.pdf parent_primary_url: https://taesoo.kim/pubs/2019/xu:janus.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"Fuzzing File Systems via Two-Dimensional Input Space Exploration\"](https://taesoo.kim/pubs/2019/xu:janus.pdf) [paper] [[fuzzer](https://github.com/sslab-gatech/janus)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel",
      "link_types": [
        "paper",
        "tool"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://taesoo.kim/pubs/2019/xu:janus.pdf"
        },
        {
          "label": "fuzzer",
          "type": "tool",
          "url": "https://github.com/sslab-gatech/janus"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://taesoo.kim/pubs/2019/xu:janus.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "fuzzer",
            "type": "tool",
            "url": "https://github.com/sslab-gatech/janus"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/sslab-gatech/janus"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "file systems",
        "input exploration"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper explores fuzzing file systems using two-dimensional input space exploration.",
      "summary_zh": "本文探讨了通过二维输入空间探索对文件系统进行模糊测试。",
      "source_markdown": "[2019: \"Fuzzing File Systems via Two-Dimensional Input Space Exploration\"](https://taesoo.kim/pubs/2019/xu:janus.pdf) [paper] [[fuzzer](https://github.com/sslab-gatech/janus)]",
      "search_text": "fuzzing file systems via two-dimensional input space exploration fuzzing file systems via two-dimensional input space exploration    finding bugs  finding bugs primary paper https://taesoo.kim/pubs/2019/xu:janus.pdf fuzzing file systems input exploration  defensive research this paper explores fuzzing file systems using two-dimensional input space exploration. 本文探讨了通过二维输入空间探索对文件系统进行模糊测试。 # fuzzing file systems via two-dimensional input space exploration record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: fuzzing file systems via two-dimensional input space exploration resource_label: primary resource_type: paper resource_url: https://taesoo.kim/pubs/2019/xu:janus.pdf parent_primary_url: https://taesoo.kim/pubs/2019/xu:janus.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"fuzzing file systems via two-dimensional input space exploration\"](https://taesoo.kim/pubs/2019/xu:janus.pdf) [paper] [[fuzzer](https://github.com/sslab-gatech/janus)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "d28358b04cdce08b",
      "item_id": "3a0b46b539fee08a",
      "slug": "2019-finding-bugs-fuzzing-file-systems-via-two-dimensional-input-space-exploration-fuzzer-d9d930ae",
      "year": 2019,
      "title": "Fuzzing File Systems via Two-Dimensional Input Space Exploration · fuzzer",
      "item_title": "Fuzzing File Systems via Two-Dimensional Input Space Exploration",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "fuzzer",
      "resource_type": "tool",
      "resource_url": "https://github.com/sslab-gatech/janus",
      "primary_url": "https://github.com/sslab-gatech/janus",
      "parent_primary_url": "https://taesoo.kim/pubs/2019/xu:janus.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2019-finding-bugs-fuzzing-file-systems-via-two-dimensional-input-space-exploration-fuzzer-d9d930ae.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fuzzing File Systems via Two-Dimensional Input Space Exploration · fuzzer record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Fuzzing File Systems via Two-Dimensional Input Space Exploration resource_label: fuzzer resource_type: tool resource_url: https://github.com/sslab-gatech/janus parent_primary_url: https://taesoo.kim/pubs/2019/xu:janus.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"Fuzzing File Systems via Two-Dimensional Input Space Exploration\"](https://taesoo.kim/pubs/2019/xu:janus.pdf) [paper] [[fuzzer](https://github.com/sslab-gatech/janus)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ker",
      "link_types": [
        "paper",
        "tool"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://taesoo.kim/pubs/2019/xu:janus.pdf"
        },
        {
          "label": "fuzzer",
          "type": "tool",
          "url": "https://github.com/sslab-gatech/janus"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://taesoo.kim/pubs/2019/xu:janus.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "fuzzer",
            "type": "tool",
            "url": "https://github.com/sslab-gatech/janus"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/sslab-gatech/janus"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "tool",
        "file systems"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This tool is designed for fuzzing file systems via two-dimensional input space exploration.",
      "summary_zh": "该工具旨在通过二维输入空间探索对文件系统进行模糊测试。",
      "source_markdown": "[2019: \"Fuzzing File Systems via Two-Dimensional Input Space Exploration\"](https://taesoo.kim/pubs/2019/xu:janus.pdf) [paper] [[fuzzer](https://github.com/sslab-gatech/janus)]",
      "search_text": "fuzzing file systems via two-dimensional input space exploration · fuzzer fuzzing file systems via two-dimensional input space exploration    finding bugs  finding bugs fuzzer tool https://github.com/sslab-gatech/janus fuzzing tool file systems  defensive research this tool is designed for fuzzing file systems via two-dimensional input space exploration. 该工具旨在通过二维输入空间探索对文件系统进行模糊测试。 # fuzzing file systems via two-dimensional input space exploration · fuzzer record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: fuzzing file systems via two-dimensional input space exploration resource_label: fuzzer resource_type: tool resource_url: https://github.com/sslab-gatech/janus parent_primary_url: https://taesoo.kim/pubs/2019/xu:janus.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"fuzzing file systems via two-dimensional input space exploration\"](https://taesoo.kim/pubs/2019/xu:janus.pdf) [paper] [[fuzzer](https://github.com/sslab-gatech/janus)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu ker no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "c00eddf655697f53",
      "item_id": "66987a668cbd5518",
      "slug": "2019-finding-bugs-periscope-an-effective-probing-and-fuzzing-framework-for-the-hardware-os-boundary-primary-9f",
      "year": 2019,
      "title": "PeriScope: An Effective Probing and Fuzzing Framework for the Hardware-OS Boundary",
      "item_title": "PeriScope: An Effective Probing and Fuzzing Framework for the Hardware-OS Boundary",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_04A-1_Song_paper.pdf",
      "primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_04A-1_Song_paper.pdf",
      "parent_primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_04A-1_Song_paper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2019-finding-bugs-periscope-an-effective-probing-and-fuzzing-framework-for-the-hardware-os-boundary-primary-9f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PeriScope: An Effective Probing and Fuzzing Framework for the Hardware-OS Boundary record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: PeriScope: An Effective Probing and Fuzzing Framework for the Hardware-OS Boundary resource_label: primary resource_type: paper resource_url: https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_04A-1_Song_paper.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_04A-1_Song_paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"PeriScope: An Effective Probing and Fuzzing Framework for the Hardware-OS Boundary\"](https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_04A-1_Song_paper.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough eviden",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_04A-1_Song_paper.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_04A-1_Song_paper.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "hardware",
        "OS"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper presents a framework for probing and fuzzing at the hardware-OS boundary.",
      "summary_zh": "本文提出了一个在硬件-操作系统边界进行探测和模糊测试的框架。",
      "source_markdown": "[2019: \"PeriScope: An Effective Probing and Fuzzing Framework for the Hardware-OS Boundary\"](https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_04A-1_Song_paper.pdf) [paper]",
      "search_text": "periscope: an effective probing and fuzzing framework for the hardware-os boundary periscope: an effective probing and fuzzing framework for the hardware-os boundary    finding bugs  finding bugs primary paper https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_04a-1_song_paper.pdf fuzzing hardware os  defensive research this paper presents a framework for probing and fuzzing at the hardware-os boundary. 本文提出了一个在硬件-操作系统边界进行探测和模糊测试的框架。 # periscope: an effective probing and fuzzing framework for the hardware-os boundary record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: periscope: an effective probing and fuzzing framework for the hardware-os boundary resource_label: primary resource_type: paper resource_url: https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_04a-1_song_paper.pdf parent_primary_url: https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_04a-1_song_paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"periscope: an effective probing and fuzzing framework for the hardware-os boundary\"](https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_04a-1_song_paper.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough eviden no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "caa4d956a31f3d77",
      "item_id": "fa9f5259130cc8bc",
      "slug": "2019-finding-bugs-hourglass-fuzz-a-quick-bug-hunting-method-primary-99dad021",
      "year": 2019,
      "title": "Hourglass Fuzz: A Quick Bug Hunting Method",
      "item_title": "Hourglass Fuzz: A Quick Bug Hunting Method",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://conference.hitb.org/hitbsecconf2019ams/materials/D1T2%20-%20Hourglass%20Fuzz%20-%20A%20Quick%20Bug%20Hunting%20Method%20-%20Moony%20Li,%20Todd%20Han,%20Lance%20Jiang%20&%20Lilang%20Wu.pdf",
      "primary_url": "https://conference.hitb.org/hitbsecconf2019ams/materials/D1T2%20-%20Hourglass%20Fuzz%20-%20A%20Quick%20Bug%20Hunting%20Method%20-%20Moony%20Li,%20Todd%20Han,%20Lance%20Jiang%20&%20Lilang%20Wu.pdf",
      "parent_primary_url": "https://conference.hitb.org/hitbsecconf2019ams/materials/D1T2%20-%20Hourglass%20Fuzz%20-%20A%20Quick%20Bug%20Hunting%20Method%20-%20Moony%20Li,%20Todd%20Han,%20Lance%20Jiang%20&%20Lilang%20Wu.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2019-finding-bugs-hourglass-fuzz-a-quick-bug-hunting-method-primary-99dad021.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Hourglass Fuzz: A Quick Bug Hunting Method record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Hourglass Fuzz: A Quick Bug Hunting Method resource_label: primary resource_type: slides resource_url: https://conference.hitb.org/hitbsecconf2019ams/materials/D1T2%20-%20Hourglass%20Fuzz%20-%20A%20Quick%20Bug%20Hunting%20Method%20-%20Moony%20Li,%20Todd%20Han,%20Lance%20Jiang%20&%20Lilang%20Wu.pdf parent_primary_url: https://conference.hitb.org/hitbsecconf2019ams/materials/D1T2%20-%20Hourglass%20Fuzz%20-%20A%20Quick%20Bug%20Hunting%20Method%20-%20Moony%20Li,%20Todd%20Han,%20Lance%20Jiang%20&%20Lilang%20Wu.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"Hourglass Fuzz: A Quick Bug Hunting Method\"](https://conference.hitb.org/hitbsecconf2019ams/materials/D1T2%20-%20Hourglass",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://conference.hitb.org/hitbsecconf2019ams/materials/D1T2%20-%20Hourglass%20Fuzz%20-%20A%20Quick%20Bug%20Hunting%20Method%20-%20Moony%20Li,%20Todd%20Han,%20Lance%20Jiang%20&%20Lilang%20Wu.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://conference.hitb.org/hitbsecconf2019ams/materials/D1T2%20-%20Hourglass%20Fuzz%20-%20A%20Quick%20Bug%20Hunting%20Method%20-%20Moony%20Li,%20Todd%20Han,%20Lance%20Jiang%20&%20Lilang%20Wu.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bug hunting",
        "kernel",
        "quick method"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This method provides a quick approach to bug hunting in kernel development.",
      "summary_zh": "该方法为内核开发中的漏洞猎取提供了一种快速的方法。",
      "source_markdown": "[2019: \"Hourglass Fuzz: A Quick Bug Hunting Method\"](https://conference.hitb.org/hitbsecconf2019ams/materials/D1T2%20-%20Hourglass%20Fuzz%20-%20A%20Quick%20Bug%20Hunting%20Method%20-%20Moony%20Li,%20Todd%20Han,%20Lance%20Jiang%20&%20Lilang%20Wu.pdf) [slides]",
      "search_text": "hourglass fuzz: a quick bug hunting method hourglass fuzz: a quick bug hunting method    finding bugs  finding bugs primary slides https://conference.hitb.org/hitbsecconf2019ams/materials/d1t2%20-%20hourglass%20fuzz%20-%20a%20quick%20bug%20hunting%20method%20-%20moony%20li,%20todd%20han,%20lance%20jiang%20&%20lilang%20wu.pdf bug hunting kernel quick method  defensive research this method provides a quick approach to bug hunting in kernel development. 该方法为内核开发中的漏洞猎取提供了一种快速的方法。 # hourglass fuzz: a quick bug hunting method record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: hourglass fuzz: a quick bug hunting method resource_label: primary resource_type: slides resource_url: https://conference.hitb.org/hitbsecconf2019ams/materials/d1t2%20-%20hourglass%20fuzz%20-%20a%20quick%20bug%20hunting%20method%20-%20moony%20li,%20todd%20han,%20lance%20jiang%20&%20lilang%20wu.pdf parent_primary_url: https://conference.hitb.org/hitbsecconf2019ams/materials/d1t2%20-%20hourglass%20fuzz%20-%20a%20quick%20bug%20hunting%20method%20-%20moony%20li,%20todd%20han,%20lance%20jiang%20&%20lilang%20wu.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"hourglass fuzz: a quick bug hunting method\"](https://conference.hitb.org/hitbsecconf2019ams/materials/d1t2%20-%20hourglass no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "08db6480e4e2132d",
      "item_id": "eb4dcafeea003b08",
      "slug": "2019-finding-bugs-detecting-missing-check-bugs-via-semantic-and-context-aware-criticalness-and-constraints-inf",
      "year": 2019,
      "title": "Detecting Missing-Check Bugs via Semantic- and Context-Aware Criticalness and Constraints Inferences",
      "item_title": "Detecting Missing-Check Bugs via Semantic- and Context-Aware Criticalness and Constraints Inferences",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec19-lu.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec19-lu.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec19-lu.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2019-finding-bugs-detecting-missing-check-bugs-via-semantic-and-context-aware-criticalness-and-constraints-inf.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Detecting Missing-Check Bugs via Semantic- and Context-Aware Criticalness and Constraints Inferences record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Detecting Missing-Check Bugs via Semantic- and Context-Aware Criticalness and Constraints Inferences resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec19-lu.pdf parent_primary_url: https://www.usenix.org/system/files/sec19-lu.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"Detecting Missing-Check Bugs via Semantic- and Context-Aware Criticalness and Constraints Inferences\"](https://www.usenix.org/system/files/sec19-lu.pdf) [paper] [[slides](https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_lu.pdf)] cves: none android_impact_status: no a",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec19-lu.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_lu.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec19-lu.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_lu.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bug detection",
        "semantic",
        "context-aware"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper discusses detecting missing-check bugs using semantic and context-aware techniques.",
      "summary_zh": "本文讨论了使用语义和上下文感知技术检测缺失检查漏洞。",
      "source_markdown": "[2019: \"Detecting Missing-Check Bugs via Semantic- and Context-Aware Criticalness and Constraints Inferences\"](https://www.usenix.org/system/files/sec19-lu.pdf) [paper] [[slides](https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_lu.pdf)]",
      "search_text": "detecting missing-check bugs via semantic- and context-aware criticalness and constraints inferences detecting missing-check bugs via semantic- and context-aware criticalness and constraints inferences    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/sec19-lu.pdf bug detection semantic context-aware  defensive research this paper discusses detecting missing-check bugs using semantic and context-aware techniques. 本文讨论了使用语义和上下文感知技术检测缺失检查漏洞。 # detecting missing-check bugs via semantic- and context-aware criticalness and constraints inferences record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: detecting missing-check bugs via semantic- and context-aware criticalness and constraints inferences resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec19-lu.pdf parent_primary_url: https://www.usenix.org/system/files/sec19-lu.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"detecting missing-check bugs via semantic- and context-aware criticalness and constraints inferences\"](https://www.usenix.org/system/files/sec19-lu.pdf) [paper] [[slides](https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_lu.pdf)] cves: none android_impact_status: no a no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "afe37bca73758d47",
      "item_id": "eb4dcafeea003b08",
      "slug": "2019-finding-bugs-detecting-missing-check-bugs-via-semantic-and-context-aware-criticalness-and-constraints-inf-2",
      "year": 2019,
      "title": "Detecting Missing-Check Bugs via Semantic- and Context-Aware Criticalness and Constraints Inferences · slides",
      "item_title": "Detecting Missing-Check Bugs via Semantic- and Context-Aware Criticalness and Constraints Inferences",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_lu.pdf",
      "primary_url": "https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_lu.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec19-lu.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2019-finding-bugs-detecting-missing-check-bugs-via-semantic-and-context-aware-criticalness-and-constraints-inf-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Detecting Missing-Check Bugs via Semantic- and Context-Aware Criticalness and Constraints Inferences · slides record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Detecting Missing-Check Bugs via Semantic- and Context-Aware Criticalness and Constraints Inferences resource_label: slides resource_type: slides resource_url: https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_lu.pdf parent_primary_url: https://www.usenix.org/system/files/sec19-lu.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"Detecting Missing-Check Bugs via Semantic- and Context-Aware Criticalness and Constraints Inferences\"](https://www.usenix.org/system/files/sec19-lu.pdf) [paper] [[slides](https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slid",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec19-lu.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_lu.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec19-lu.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_lu.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bug detection",
        "kernel",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "These slides present a method for detecting missing-check bugs in kernel code.",
      "summary_zh": "这些幻灯片展示了一种检测内核代码中缺失检查漏洞的方法。",
      "source_markdown": "[2019: \"Detecting Missing-Check Bugs via Semantic- and Context-Aware Criticalness and Constraints Inferences\"](https://www.usenix.org/system/files/sec19-lu.pdf) [paper] [[slides](https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_lu.pdf)]",
      "search_text": "detecting missing-check bugs via semantic- and context-aware criticalness and constraints inferences · slides detecting missing-check bugs via semantic- and context-aware criticalness and constraints inferences    finding bugs  finding bugs slides slides https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_lu.pdf bug detection kernel slides  defensive research these slides present a method for detecting missing-check bugs in kernel code. 这些幻灯片展示了一种检测内核代码中缺失检查漏洞的方法。 # detecting missing-check bugs via semantic- and context-aware criticalness and constraints inferences · slides record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: detecting missing-check bugs via semantic- and context-aware criticalness and constraints inferences resource_label: slides resource_type: slides resource_url: https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slides_lu.pdf parent_primary_url: https://www.usenix.org/system/files/sec19-lu.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"detecting missing-check bugs via semantic- and context-aware criticalness and constraints inferences\"](https://www.usenix.org/system/files/sec19-lu.pdf) [paper] [[slides](https://www.usenix.org/sites/default/files/conference/protected-files/sec19_slid no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bcc325a7e871041b",
      "item_id": "d05b8498506d1eec",
      "slug": "2019-finding-bugs-automatically-identifying-security-checks-for-detecting-kernel-semantic-bugs-primary-f600cd4",
      "year": 2019,
      "title": "Automatically Identifying Security Checks for Detecting Kernel Semantic Bugs",
      "item_title": "Automatically Identifying Security Checks for Detecting Kernel Semantic Bugs",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/cheq.pdf",
      "primary_url": "https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/cheq.pdf",
      "parent_primary_url": "https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/cheq.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2019-finding-bugs-automatically-identifying-security-checks-for-detecting-kernel-semantic-bugs-primary-f600cd4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Automatically Identifying Security Checks for Detecting Kernel Semantic Bugs record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Automatically Identifying Security Checks for Detecting Kernel Semantic Bugs resource_label: primary resource_type: paper resource_url: https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/cheq.pdf parent_primary_url: https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/cheq.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"Automatically Identifying Security Checks for Detecting Kernel Semantic Bugs\"](https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/cheq.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_imp",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/cheq.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/cheq.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/cheq.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security checks",
        "kernel",
        "semantic bugs"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper focuses on identifying security checks to detect kernel semantic bugs.",
      "summary_zh": "本文重点介绍了识别安全检查以检测内核语义漏洞。",
      "source_markdown": "[2019: \"Automatically Identifying Security Checks for Detecting Kernel Semantic Bugs\"](https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/cheq.pdf) [paper]",
      "search_text": "automatically identifying security checks for detecting kernel semantic bugs automatically identifying security checks for detecting kernel semantic bugs    finding bugs  finding bugs primary paper https://github.com/qiushiwu/qiushiwu.github.io/blob/main/papers/cheq.pdf security checks kernel semantic bugs  defensive research this paper focuses on identifying security checks to detect kernel semantic bugs. 本文重点介绍了识别安全检查以检测内核语义漏洞。 # automatically identifying security checks for detecting kernel semantic bugs record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: automatically identifying security checks for detecting kernel semantic bugs resource_label: primary resource_type: paper resource_url: https://github.com/qiushiwu/qiushiwu.github.io/blob/main/papers/cheq.pdf parent_primary_url: https://github.com/qiushiwu/qiushiwu.github.io/blob/main/papers/cheq.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2019: \"automatically identifying security checks for detecting kernel semantic bugs\"](https://github.com/qiushiwu/qiushiwu.github.io/blob/main/papers/cheq.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_imp no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "8bd8774df03ad6a3",
      "item_id": "059498b3e2d9751a",
      "slug": "2018-finding-bugs-fastsyzkaller-improving-fuzz-efficiency-for-linux-kernel-fuzzing-primary-dbdef096",
      "year": 2018,
      "title": "FastSyzkaller: Improving Fuzz Efficiency for Linux Kernel Fuzzing",
      "item_title": "FastSyzkaller: Improving Fuzz Efficiency for Linux Kernel Fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://iopscience.iop.org/article/10.1088/1742-6596/1176/2/022013/pdf",
      "primary_url": "https://iopscience.iop.org/article/10.1088/1742-6596/1176/2/022013/pdf",
      "parent_primary_url": "https://iopscience.iop.org/article/10.1088/1742-6596/1176/2/022013/pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2018-finding-bugs-fastsyzkaller-improving-fuzz-efficiency-for-linux-kernel-fuzzing-primary-dbdef096.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# FastSyzkaller: Improving Fuzz Efficiency for Linux Kernel Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: FastSyzkaller: Improving Fuzz Efficiency for Linux Kernel Fuzzing resource_label: primary resource_type: paper resource_url: https://iopscience.iop.org/article/10.1088/1742-6596/1176/2/022013/pdf parent_primary_url: https://iopscience.iop.org/article/10.1088/1742-6596/1176/2/022013/pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"FastSyzkaller: Improving Fuzz Efficiency for Linux Kernel Fuzzing\"](https://iopscience.iop.org/article/10.1088/1742-6596/1176/2/022013/pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Produ",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://iopscience.iop.org/article/10.1088/1742-6596/1176/2/022013/pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://iopscience.iop.org/article/10.1088/1742-6596/1176/2/022013/pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "Android",
        "development"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article describes the development and improvement of an Android fuzzer.",
      "summary_zh": "本文描述了一个Android模糊测试工具的开发和改进。",
      "source_markdown": "[2018: \"FastSyzkaller: Improving Fuzz Efficiency for Linux Kernel Fuzzing\"](https://iopscience.iop.org/article/10.1088/1742-6596/1176/2/022013/pdf) [paper]",
      "search_text": "fastsyzkaller: improving fuzz efficiency for linux kernel fuzzing fastsyzkaller: improving fuzz efficiency for linux kernel fuzzing    finding bugs  finding bugs primary paper https://iopscience.iop.org/article/10.1088/1742-6596/1176/2/022013/pdf fuzzing android development  defensive research this article describes the development and improvement of an android fuzzer. 本文描述了一个android模糊测试工具的开发和改进。 # fastsyzkaller: improving fuzz efficiency for linux kernel fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: fastsyzkaller: improving fuzz efficiency for linux kernel fuzzing resource_label: primary resource_type: paper resource_url: https://iopscience.iop.org/article/10.1088/1742-6596/1176/2/022013/pdf parent_primary_url: https://iopscience.iop.org/article/10.1088/1742-6596/1176/2/022013/pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"fastsyzkaller: improving fuzz efficiency for linux kernel fuzzing\"](https://iopscience.iop.org/article/10.1088/1742-6596/1176/2/022013/pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: produ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f67e718474c3aec6",
      "item_id": "c201ae0fba78f27e",
      "slug": "2018-finding-bugs-writing-the-worlds-worst-android-fuzzer-and-then-improving-it-primary-a12d1bca",
      "year": 2018,
      "title": "Writing the worlds worst Android fuzzer, and then improving it",
      "item_title": "Writing the worlds worst Android fuzzer, and then improving it",
      "authors": [
        "Brandon Falk"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://gamozolabs.github.io/fuzzing/2018/10/18/terrible_android_fuzzer.html",
      "primary_url": "https://gamozolabs.github.io/fuzzing/2018/10/18/terrible_android_fuzzer.html",
      "parent_primary_url": "https://gamozolabs.github.io/fuzzing/2018/10/18/terrible_android_fuzzer.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2018-finding-bugs-writing-the-worlds-worst-android-fuzzer-and-then-improving-it-primary-a12d1bca.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Writing the worlds worst Android fuzzer, and then improving it record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Writing the worlds worst Android fuzzer, and then improving it resource_label: primary resource_type: article resource_url: https://gamozolabs.github.io/fuzzing/2018/10/18/terrible_android_fuzzer.html parent_primary_url: https://gamozolabs.github.io/fuzzing/2018/10/18/terrible_android_fuzzer.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"Writing the worlds worst Android fuzzer, and then improving it\" by Brandon Falk](https://gamozolabs.github.io/fuzzing/2018/10/18/terrible_android_fuzzer.html) [article] cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-related resource, but production-device vulnerability impac",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://gamozolabs.github.io/fuzzing/2018/10/18/terrible_android_fuzzer.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://gamozolabs.github.io/fuzzing/2018/10/18/terrible_android_fuzzer.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://gamozolabs.github.io/fuzzing/2018/10/18/terrible_android_fuzzer.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Finding Bugs",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Finding Bugs",
      "summary_en": "2018 Linux kernel Finding Bugs resource \"Writing the worlds worst Android fuzzer, and then improving it\"; URL type: article. Android impact: yes.",
      "summary_zh": "2018 年 Linux 内核Finding Bugs资料：「Writing the worlds worst Android fuzzer, and then improving it」；URL 类型：article。 Android 影响：yes。",
      "source_markdown": "[2018: \"Writing the worlds worst Android fuzzer, and then improving it\" by Brandon Falk](https://gamozolabs.github.io/fuzzing/2018/10/18/terrible_android_fuzzer.html) [article]",
      "search_text": "writing the worlds worst android fuzzer, and then improving it writing the worlds worst android fuzzer, and then improving it brandon falk   finding bugs  finding bugs primary article https://gamozolabs.github.io/fuzzing/2018/10/18/terrible_android_fuzzer.html finding bugs article  finding bugs 2018 linux kernel finding bugs resource \"writing the worlds worst android fuzzer, and then improving it\"; url type: article. android impact: yes. 2018 年 linux 内核finding bugs资料：「writing the worlds worst android fuzzer, and then improving it」；url 类型：article。 android 影响：yes。 # writing the worlds worst android fuzzer, and then improving it record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: writing the worlds worst android fuzzer, and then improving it resource_label: primary resource_type: article resource_url: https://gamozolabs.github.io/fuzzing/2018/10/18/terrible_android_fuzzer.html parent_primary_url: https://gamozolabs.github.io/fuzzing/2018/10/18/terrible_android_fuzzer.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"writing the worlds worst android fuzzer, and then improving it\" by brandon falk](https://gamozolabs.github.io/fuzzing/2018/10/18/terrible_android_fuzzer.html) [article] cves: none android_impact_status: unknown android_impact_reason: mentions android; android-related resource, but production-device vulnerability impac unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "fe7c6a7de6d75b10",
      "item_id": "2ea5938e0d013918",
      "slug": "2018-finding-bugs-from-thousands-of-hours-to-a-couple-of-minutes-towards-automating-exploit-generation-for-arb",
      "year": 2018,
      "title": "From Thousands of Hours to a Couple of Minutes: Towards Automating Exploit Generation for Arbitrary Types of Kernel Vulnerabilities",
      "item_title": "From Thousands of Hours to a Couple of Minutes: Towards Automating Exploit Generation for Arbitrary Types of Kernel Vulnerabilities",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities.pdf",
      "primary_url": "http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities.pdf",
      "parent_primary_url": "http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2018-finding-bugs-from-thousands-of-hours-to-a-couple-of-minutes-towards-automating-exploit-generation-for-arb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# From Thousands of Hours to a Couple of Minutes: Towards Automating Exploit Generation for Arbitrary Types of Kernel Vulnerabilities record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: From Thousands of Hours to a Couple of Minutes: Towards Automating Exploit Generation for Arbitrary Types of Kernel Vulnerabilities resource_label: primary resource_type: slides resource_url: http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities.pdf parent_primary_url: http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"From Thousands of Hours to a Couple of Minutes: Towards Auto",
      "link_types": [
        "slides",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities.pdf"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities-wp.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities-wp.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities.pdf",
        "http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities-wp.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit generation",
        "automation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "These slides discuss automating exploit generation for various kernel vulnerabilities.",
      "summary_zh": "这些幻灯片讨论了为各种内核漏洞自动生成利用代码的过程。",
      "source_markdown": "[2018: \"From Thousands of Hours to a Couple of Minutes: Towards Automating Exploit Generation for Arbitrary Types of Kernel Vulnerabilities\"](http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities.pdf) [slides] [[paper](http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities-wp.pdf)]",
      "search_text": "from thousands of hours to a couple of minutes: towards automating exploit generation for arbitrary types of kernel vulnerabilities from thousands of hours to a couple of minutes: towards automating exploit generation for arbitrary types of kernel vulnerabilities    finding bugs  finding bugs primary slides http://i.blackhat.com/us-18/thu-august-9/us-18-wu-towards-automating-exploit-generation-for-arbitrary-types-of-kernel-vulnerabilities.pdf exploit generation automation kernel  defensive research these slides discuss automating exploit generation for various kernel vulnerabilities. 这些幻灯片讨论了为各种内核漏洞自动生成利用代码的过程。 # from thousands of hours to a couple of minutes: towards automating exploit generation for arbitrary types of kernel vulnerabilities record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: from thousands of hours to a couple of minutes: towards automating exploit generation for arbitrary types of kernel vulnerabilities resource_label: primary resource_type: slides resource_url: http://i.blackhat.com/us-18/thu-august-9/us-18-wu-towards-automating-exploit-generation-for-arbitrary-types-of-kernel-vulnerabilities.pdf parent_primary_url: http://i.blackhat.com/us-18/thu-august-9/us-18-wu-towards-automating-exploit-generation-for-arbitrary-types-of-kernel-vulnerabilities.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"from thousands of hours to a couple of minutes: towards auto no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "fb9fe6c82ac67d26",
      "item_id": "2ea5938e0d013918",
      "slug": "2018-finding-bugs-from-thousands-of-hours-to-a-couple-of-minutes-towards-automating-exploit-generation-for-arb-2",
      "year": 2018,
      "title": "From Thousands of Hours to a Couple of Minutes: Towards Automating Exploit Generation for Arbitrary Types of Kernel Vulnerabilities · paper",
      "item_title": "From Thousands of Hours to a Couple of Minutes: Towards Automating Exploit Generation for Arbitrary Types of Kernel Vulnerabilities",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "paper",
      "resource_type": "paper",
      "resource_url": "http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities-wp.pdf",
      "primary_url": "http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities-wp.pdf",
      "parent_primary_url": "http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2018-finding-bugs-from-thousands-of-hours-to-a-couple-of-minutes-towards-automating-exploit-generation-for-arb-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# From Thousands of Hours to a Couple of Minutes: Towards Automating Exploit Generation for Arbitrary Types of Kernel Vulnerabilities · paper record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: From Thousands of Hours to a Couple of Minutes: Towards Automating Exploit Generation for Arbitrary Types of Kernel Vulnerabilities resource_label: paper resource_type: paper resource_url: http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities-wp.pdf parent_primary_url: http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"From Thousands of Hours to a Couple of Minutes: Towa",
      "link_types": [
        "slides",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities.pdf"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities-wp.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities-wp.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities.pdf",
        "http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities-wp.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit generation",
        "automation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper elaborates on automating exploit generation for kernel vulnerabilities.",
      "summary_zh": "本文详细阐述了为内核漏洞自动生成利用代码的过程。",
      "source_markdown": "[2018: \"From Thousands of Hours to a Couple of Minutes: Towards Automating Exploit Generation for Arbitrary Types of Kernel Vulnerabilities\"](http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities.pdf) [slides] [[paper](http://i.blackhat.com/us-18/Thu-August-9/us-18-Wu-Towards-Automating-Exploit-Generation-For-Arbitrary-Types-of-Kernel-Vulnerabilities-wp.pdf)]",
      "search_text": "from thousands of hours to a couple of minutes: towards automating exploit generation for arbitrary types of kernel vulnerabilities · paper from thousands of hours to a couple of minutes: towards automating exploit generation for arbitrary types of kernel vulnerabilities    finding bugs  finding bugs paper paper http://i.blackhat.com/us-18/thu-august-9/us-18-wu-towards-automating-exploit-generation-for-arbitrary-types-of-kernel-vulnerabilities-wp.pdf exploit generation automation kernel  defensive research this paper elaborates on automating exploit generation for kernel vulnerabilities. 本文详细阐述了为内核漏洞自动生成利用代码的过程。 # from thousands of hours to a couple of minutes: towards automating exploit generation for arbitrary types of kernel vulnerabilities · paper record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: from thousands of hours to a couple of minutes: towards automating exploit generation for arbitrary types of kernel vulnerabilities resource_label: paper resource_type: paper resource_url: http://i.blackhat.com/us-18/thu-august-9/us-18-wu-towards-automating-exploit-generation-for-arbitrary-types-of-kernel-vulnerabilities-wp.pdf parent_primary_url: http://i.blackhat.com/us-18/thu-august-9/us-18-wu-towards-automating-exploit-generation-for-arbitrary-types-of-kernel-vulnerabilities.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"from thousands of hours to a couple of minutes: towa no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "47612055b6604956",
      "item_id": "b7ddb2d4101b573a",
      "slug": "2018-finding-bugs-moonshine-optimizing-os-fuzzer-seed-selection-with-trace-distillation-primary-c7c68b45",
      "year": 2018,
      "title": "MoonShine: Optimizing OS Fuzzer Seed Selection with Trace Distillation",
      "item_title": "MoonShine: Optimizing OS Fuzzer Seed Selection with Trace Distillation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "http://www.cs.columbia.edu/~suman/docs/moonshine.pdf",
      "primary_url": "http://www.cs.columbia.edu/~suman/docs/moonshine.pdf",
      "parent_primary_url": "http://www.cs.columbia.edu/~suman/docs/moonshine.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2018-finding-bugs-moonshine-optimizing-os-fuzzer-seed-selection-with-trace-distillation-primary-c7c68b45.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# MoonShine: Optimizing OS Fuzzer Seed Selection with Trace Distillation record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: MoonShine: Optimizing OS Fuzzer Seed Selection with Trace Distillation resource_label: primary resource_type: paper resource_url: http://www.cs.columbia.edu/~suman/docs/moonshine.pdf parent_primary_url: http://www.cs.columbia.edu/~suman/docs/moonshine.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"MoonShine: Optimizing OS Fuzzer Seed Selection with Trace Distillation\"](http://www.cs.columbia.edu/~suman/docs/moonshine.pdf) [paper] [[code](https://github.com/shankarapailoor/moonshine)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impa",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "http://www.cs.columbia.edu/~suman/docs/moonshine.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/shankarapailoor/moonshine"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "http://www.cs.columbia.edu/~suman/docs/moonshine.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/shankarapailoor/moonshine"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/shankarapailoor/moonshine"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "seed selection",
        "optimization"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper discusses optimizing seed selection for OS fuzzers using trace distillation.",
      "summary_zh": "本文讨论了使用跟踪提炼优化操作系统模糊测试器的种子选择。",
      "source_markdown": "[2018: \"MoonShine: Optimizing OS Fuzzer Seed Selection with Trace Distillation\"](http://www.cs.columbia.edu/~suman/docs/moonshine.pdf) [paper] [[code](https://github.com/shankarapailoor/moonshine)]",
      "search_text": "moonshine: optimizing os fuzzer seed selection with trace distillation moonshine: optimizing os fuzzer seed selection with trace distillation    finding bugs  finding bugs primary paper http://www.cs.columbia.edu/~suman/docs/moonshine.pdf fuzzing seed selection optimization  defensive research this paper discusses optimizing seed selection for os fuzzers using trace distillation. 本文讨论了使用跟踪提炼优化操作系统模糊测试器的种子选择。 # moonshine: optimizing os fuzzer seed selection with trace distillation record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: moonshine: optimizing os fuzzer seed selection with trace distillation resource_label: primary resource_type: paper resource_url: http://www.cs.columbia.edu/~suman/docs/moonshine.pdf parent_primary_url: http://www.cs.columbia.edu/~suman/docs/moonshine.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"moonshine: optimizing os fuzzer seed selection with trace distillation\"](http://www.cs.columbia.edu/~suman/docs/moonshine.pdf) [paper] [[code](https://github.com/shankarapailoor/moonshine)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impa no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "8a2d3f17f3623a74",
      "item_id": "b7ddb2d4101b573a",
      "slug": "2018-finding-bugs-moonshine-optimizing-os-fuzzer-seed-selection-with-trace-distillation-code-a0e08229",
      "year": 2018,
      "title": "MoonShine: Optimizing OS Fuzzer Seed Selection with Trace Distillation · code",
      "item_title": "MoonShine: Optimizing OS Fuzzer Seed Selection with Trace Distillation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/shankarapailoor/moonshine",
      "primary_url": "https://github.com/shankarapailoor/moonshine",
      "parent_primary_url": "http://www.cs.columbia.edu/~suman/docs/moonshine.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2018-finding-bugs-moonshine-optimizing-os-fuzzer-seed-selection-with-trace-distillation-code-a0e08229.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# MoonShine: Optimizing OS Fuzzer Seed Selection with Trace Distillation · code record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: MoonShine: Optimizing OS Fuzzer Seed Selection with Trace Distillation resource_label: code resource_type: code resource_url: https://github.com/shankarapailoor/moonshine parent_primary_url: http://www.cs.columbia.edu/~suman/docs/moonshine.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"MoonShine: Optimizing OS Fuzzer Seed Selection with Trace Distillation\"](http://www.cs.columbia.edu/~suman/docs/moonshine.pdf) [paper] [[code](https://github.com/shankarapailoor/moonshine)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_re",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "http://www.cs.columbia.edu/~suman/docs/moonshine.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/shankarapailoor/moonshine"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "http://www.cs.columbia.edu/~suman/docs/moonshine.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/shankarapailoor/moonshine"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/shankarapailoor/moonshine"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "code",
        "optimization"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This code repository provides an implementation for optimizing OS fuzzer seed selection.",
      "summary_zh": "该代码库提供了优化操作系统模糊测试器种子选择的实现。",
      "source_markdown": "[2018: \"MoonShine: Optimizing OS Fuzzer Seed Selection with Trace Distillation\"](http://www.cs.columbia.edu/~suman/docs/moonshine.pdf) [paper] [[code](https://github.com/shankarapailoor/moonshine)]",
      "search_text": "moonshine: optimizing os fuzzer seed selection with trace distillation · code moonshine: optimizing os fuzzer seed selection with trace distillation    finding bugs  finding bugs code code https://github.com/shankarapailoor/moonshine fuzzing code optimization  defensive research this code repository provides an implementation for optimizing os fuzzer seed selection. 该代码库提供了优化操作系统模糊测试器种子选择的实现。 # moonshine: optimizing os fuzzer seed selection with trace distillation · code record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: moonshine: optimizing os fuzzer seed selection with trace distillation resource_label: code resource_type: code resource_url: https://github.com/shankarapailoor/moonshine parent_primary_url: http://www.cs.columbia.edu/~suman/docs/moonshine.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"moonshine: optimizing os fuzzer seed selection with trace distillation\"](http://www.cs.columbia.edu/~suman/docs/moonshine.pdf) [paper] [[code](https://github.com/shankarapailoor/moonshine)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_re no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "d99d27f9f556700c",
      "item_id": "da6337ee69499c02",
      "slug": "2018-finding-bugs-detecting-kernel-memory-disclosure-with-x86-emulation-and-taint-tracking-primary-63815288",
      "year": 2018,
      "title": "Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking",
      "item_title": "Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking",
      "authors": [
        "Mateusz Jurczyk"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://j00ru.vexillium.org/papers/2018/bochspwn_reloaded.pdf",
      "primary_url": "https://j00ru.vexillium.org/papers/2018/bochspwn_reloaded.pdf",
      "parent_primary_url": "https://j00ru.vexillium.org/papers/2018/bochspwn_reloaded.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2018-finding-bugs-detecting-kernel-memory-disclosure-with-x86-emulation-and-taint-tracking-primary-63815288.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking resource_label: primary resource_type: paper resource_url: https://j00ru.vexillium.org/papers/2018/bochspwn_reloaded.pdf parent_primary_url: https://j00ru.vexillium.org/papers/2018/bochspwn_reloaded.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking\" by Mateusz Jurczyk](https://j00ru.vexillium.org/papers/2018/bochspwn_reloaded.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://j00ru.vexillium.org/papers/2018/bochspwn_reloaded.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://j00ru.vexillium.org/papers/2018/bochspwn_reloaded.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory disclosure",
        "emulation",
        "taint tracking"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper presents a method for detecting kernel memory disclosure using emulation and taint tracking.",
      "summary_zh": "本文提出了一种使用仿真和污点跟踪检测内核内存泄露的方法。",
      "source_markdown": "[2018: \"Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking\" by Mateusz Jurczyk](https://j00ru.vexillium.org/papers/2018/bochspwn_reloaded.pdf) [paper]",
      "search_text": "detecting kernel memory disclosure with x86 emulation and taint tracking detecting kernel memory disclosure with x86 emulation and taint tracking mateusz jurczyk   finding bugs  finding bugs primary paper https://j00ru.vexillium.org/papers/2018/bochspwn_reloaded.pdf memory disclosure emulation taint tracking  defensive research this paper presents a method for detecting kernel memory disclosure using emulation and taint tracking. 本文提出了一种使用仿真和污点跟踪检测内核内存泄露的方法。 # detecting kernel memory disclosure with x86 emulation and taint tracking record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: detecting kernel memory disclosure with x86 emulation and taint tracking resource_label: primary resource_type: paper resource_url: https://j00ru.vexillium.org/papers/2018/bochspwn_reloaded.pdf parent_primary_url: https://j00ru.vexillium.org/papers/2018/bochspwn_reloaded.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"detecting kernel memory disclosure with x86 emulation and taint tracking\" by mateusz jurczyk](https://j00ru.vexillium.org/papers/2018/bochspwn_reloaded.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c43d2857e2c4184d",
      "item_id": "d9a36f8e3372d374",
      "slug": "2018-finding-bugs-new-compat-vulnerabilities-in-linux-device-drivers-at-blackhat-primary-70034946",
      "year": 2018,
      "title": "New Compat Vulnerabilities In Linux Device Drivers\" at BlackHat",
      "item_title": "New Compat Vulnerabilities In Linux Device Drivers\" at BlackHat",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.blackhat.com/docs/asia-18/asia-18-Ding-New-Compat-Vulnerabilities-In-Linux-Device-Drivers.pdf",
      "primary_url": "https://www.blackhat.com/docs/asia-18/asia-18-Ding-New-Compat-Vulnerabilities-In-Linux-Device-Drivers.pdf",
      "parent_primary_url": "https://www.blackhat.com/docs/asia-18/asia-18-Ding-New-Compat-Vulnerabilities-In-Linux-Device-Drivers.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2018-finding-bugs-new-compat-vulnerabilities-in-linux-device-drivers-at-blackhat-primary-70034946.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# New Compat Vulnerabilities In Linux Device Drivers\" at BlackHat record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: New Compat Vulnerabilities In Linux Device Drivers\" at BlackHat resource_label: primary resource_type: slides resource_url: https://www.blackhat.com/docs/asia-18/asia-18-Ding-New-Compat-Vulnerabilities-In-Linux-Device-Drivers.pdf parent_primary_url: https://www.blackhat.com/docs/asia-18/asia-18-Ding-New-Compat-Vulnerabilities-In-Linux-Device-Drivers.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"New Compat Vulnerabilities In Linux Device Drivers\" at BlackHat](https://www.blackhat.com/docs/asia-18/asia-18-Ding-New-Compat-Vulnerabilities-In-Linux-Device-Drivers.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.blackhat.com/docs/asia-18/asia-18-Ding-New-Compat-Vulnerabilities-In-Linux-Device-Drivers.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.blackhat.com/docs/asia-18/asia-18-Ding-New-Compat-Vulnerabilities-In-Linux-Device-Drivers.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerabilities",
        "device drivers",
        "compatibility"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "These slides cover new compatibility vulnerabilities in Linux device drivers.",
      "summary_zh": "这些幻灯片涵盖了Linux设备驱动程序中的新兼容性漏洞。",
      "source_markdown": "[2018: \"New Compat Vulnerabilities In Linux Device Drivers\" at BlackHat](https://www.blackhat.com/docs/asia-18/asia-18-Ding-New-Compat-Vulnerabilities-In-Linux-Device-Drivers.pdf) [slides]",
      "search_text": "new compat vulnerabilities in linux device drivers\" at blackhat new compat vulnerabilities in linux device drivers\" at blackhat    finding bugs  finding bugs primary slides https://www.blackhat.com/docs/asia-18/asia-18-ding-new-compat-vulnerabilities-in-linux-device-drivers.pdf vulnerabilities device drivers compatibility  defensive research these slides cover new compatibility vulnerabilities in linux device drivers. 这些幻灯片涵盖了linux设备驱动程序中的新兼容性漏洞。 # new compat vulnerabilities in linux device drivers\" at blackhat record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: new compat vulnerabilities in linux device drivers\" at blackhat resource_label: primary resource_type: slides resource_url: https://www.blackhat.com/docs/asia-18/asia-18-ding-new-compat-vulnerabilities-in-linux-device-drivers.pdf parent_primary_url: https://www.blackhat.com/docs/asia-18/asia-18-ding-new-compat-vulnerabilities-in-linux-device-drivers.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"new compat vulnerabilities in linux device drivers\" at blackhat](https://www.blackhat.com/docs/asia-18/asia-18-ding-new-compat-vulnerabilities-in-linux-device-drivers.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "290b9102231bef2b",
      "item_id": "41a91dbc01b32f72",
      "slug": "2018-finding-bugs-precise-and-scalable-detection-of-double-fetch-bugs-in-os-kernels-primary-6857a8f5",
      "year": 2018,
      "title": "Precise and Scalable Detection of Double-Fetch Bugs in OS Kernels",
      "item_title": "Precise and Scalable Detection of Double-Fetch Bugs in OS Kernels",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "http://www-users.cs.umn.edu/~kjlu/papers/deadline.pdf",
      "primary_url": "http://www-users.cs.umn.edu/~kjlu/papers/deadline.pdf",
      "parent_primary_url": "http://www-users.cs.umn.edu/~kjlu/papers/deadline.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2018-finding-bugs-precise-and-scalable-detection-of-double-fetch-bugs-in-os-kernels-primary-6857a8f5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Precise and Scalable Detection of Double-Fetch Bugs in OS Kernels record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Precise and Scalable Detection of Double-Fetch Bugs in OS Kernels resource_label: primary resource_type: paper resource_url: http://www-users.cs.umn.edu/~kjlu/papers/deadline.pdf parent_primary_url: http://www-users.cs.umn.edu/~kjlu/papers/deadline.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"Precise and Scalable Detection of Double-Fetch Bugs in OS Kernels\"](http://www-users.cs.umn.edu/~kjlu/papers/deadline.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather tha",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "http://www-users.cs.umn.edu/~kjlu/papers/deadline.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "http://www-users.cs.umn.edu/~kjlu/papers/deadline.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "double-fetch",
        "bug-detection",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This paper presents a method for detecting double-fetch bugs in operating system kernels with precision and scalability.",
      "summary_zh": "本文提出了一种精确且可扩展的方法，用于检测操作系统内核中的双重获取漏洞。",
      "source_markdown": "[2018: \"Precise and Scalable Detection of Double-Fetch Bugs in OS Kernels\"](http://www-users.cs.umn.edu/~kjlu/papers/deadline.pdf) [paper]",
      "search_text": "precise and scalable detection of double-fetch bugs in os kernels precise and scalable detection of double-fetch bugs in os kernels    finding bugs  finding bugs primary paper http://www-users.cs.umn.edu/~kjlu/papers/deadline.pdf double-fetch bug-detection kernel  finding bugs this paper presents a method for detecting double-fetch bugs in operating system kernels with precision and scalability. 本文提出了一种精确且可扩展的方法，用于检测操作系统内核中的双重获取漏洞。 # precise and scalable detection of double-fetch bugs in os kernels record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: precise and scalable detection of double-fetch bugs in os kernels resource_label: primary resource_type: paper resource_url: http://www-users.cs.umn.edu/~kjlu/papers/deadline.pdf parent_primary_url: http://www-users.cs.umn.edu/~kjlu/papers/deadline.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"precise and scalable detection of double-fetch bugs in os kernels\"](http://www-users.cs.umn.edu/~kjlu/papers/deadline.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather tha no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4ed3bb8288d70d4d",
      "item_id": "b4a1138116cd39b1",
      "slug": "2018-finding-bugs-concolic-testing-for-kernel-fuzzing-and-vulnerability-discovery-primary-91bb7a3c",
      "year": 2018,
      "title": "Concolic Testing for Kernel Fuzzing and Vulnerability Discovery",
      "item_title": "Concolic Testing for Kernel Fuzzing and Vulnerability Discovery",
      "authors": [
        "Vitaly Nikolenko at OffensiveCon"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=mpfKN1URqdQ",
      "primary_url": "https://www.youtube.com/watch?v=mpfKN1URqdQ",
      "parent_primary_url": "https://www.youtube.com/watch?v=mpfKN1URqdQ",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2018-finding-bugs-concolic-testing-for-kernel-fuzzing-and-vulnerability-discovery-primary-91bb7a3c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Concolic Testing for Kernel Fuzzing and Vulnerability Discovery record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Concolic Testing for Kernel Fuzzing and Vulnerability Discovery resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=mpfKN1URqdQ parent_primary_url: https://www.youtube.com/watch?v=mpfKN1URqdQ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"Concolic Testing for Kernel Fuzzing and Vulnerability Discovery\" by Vitaly Nikolenko at OffensiveCon](https://www.youtube.com/watch?v=mpfKN1URqdQ) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather tha",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=mpfKN1URqdQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=mpfKN1URqdQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "concolic-testing",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "A video presentation on concolic testing techniques for kernel fuzzing and vulnerability discovery.",
      "summary_zh": "关于内核模糊测试和漏洞发现的符号执行测试技术的视频演示。",
      "source_markdown": "[2018: \"Concolic Testing for Kernel Fuzzing and Vulnerability Discovery\" by Vitaly Nikolenko at OffensiveCon](https://www.youtube.com/watch?v=mpfKN1URqdQ) [video]",
      "search_text": "concolic testing for kernel fuzzing and vulnerability discovery concolic testing for kernel fuzzing and vulnerability discovery vitaly nikolenko at offensivecon   finding bugs  finding bugs primary video https://www.youtube.com/watch?v=mpfkn1urqdq fuzzing concolic-testing kernel  finding bugs a video presentation on concolic testing techniques for kernel fuzzing and vulnerability discovery. 关于内核模糊测试和漏洞发现的符号执行测试技术的视频演示。 # concolic testing for kernel fuzzing and vulnerability discovery record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: concolic testing for kernel fuzzing and vulnerability discovery resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=mpfkn1urqdq parent_primary_url: https://www.youtube.com/watch?v=mpfkn1urqdq source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"concolic testing for kernel fuzzing and vulnerability discovery\" by vitaly nikolenko at offensivecon](https://www.youtube.com/watch?v=mpfkn1urqdq) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather tha no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c3d39fb6217abc20",
      "item_id": "80e37ef53a4f4883",
      "slug": "2018-finding-bugs-k-miner-uncovering-memory-corruption-in-linux-primary-81d2698c",
      "year": 2018,
      "title": "K-Miner: Uncovering Memory Corruption in Linux",
      "item_title": "K-Miner: Uncovering Memory Corruption in Linux",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "http://lib.21h.io/library/XHEQU6AX/download/SLDEJFQG/2018_K-Miner_-_Uncovering_Memory_Corruption_in_Linux_Internet_Society.pdf",
      "primary_url": "http://lib.21h.io/library/XHEQU6AX/download/SLDEJFQG/2018_K-Miner_-_Uncovering_Memory_Corruption_in_Linux_Internet_Society.pdf",
      "parent_primary_url": "http://lib.21h.io/library/XHEQU6AX/download/SLDEJFQG/2018_K-Miner_-_Uncovering_Memory_Corruption_in_Linux_Internet_Society.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2018-finding-bugs-k-miner-uncovering-memory-corruption-in-linux-primary-81d2698c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# K-Miner: Uncovering Memory Corruption in Linux record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: K-Miner: Uncovering Memory Corruption in Linux resource_label: primary resource_type: paper resource_url: http://lib.21h.io/library/XHEQU6AX/download/SLDEJFQG/2018_K-Miner_-_Uncovering_Memory_Corruption_in_Linux_Internet_Society.pdf parent_primary_url: http://lib.21h.io/library/XHEQU6AX/download/SLDEJFQG/2018_K-Miner_-_Uncovering_Memory_Corruption_in_Linux_Internet_Society.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"K-Miner: Uncovering Memory Corruption in Linux\"](http://lib.21h.io/library/XHEQU6AX/download/SLDEJFQG/2018_K-Miner_-_Uncovering_Memory_Corruption_in_Linux_Internet_Society.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enou",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "http://lib.21h.io/library/XHEQU6AX/download/SLDEJFQG/2018_K-Miner_-_Uncovering_Memory_Corruption_in_Linux_Internet_Society.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "http://lib.21h.io/library/XHEQU6AX/download/SLDEJFQG/2018_K-Miner_-_Uncovering_Memory_Corruption_in_Linux_Internet_Society.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory-corruption",
        "bug-detection",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This paper discusses K-Miner, a tool designed to uncover memory corruption issues in Linux systems.",
      "summary_zh": "本文讨论了K-Miner，这是一种旨在发现Linux系统中内存损坏问题的工具。",
      "source_markdown": "[2018: \"K-Miner: Uncovering Memory Corruption in Linux\"](http://lib.21h.io/library/XHEQU6AX/download/SLDEJFQG/2018_K-Miner_-_Uncovering_Memory_Corruption_in_Linux_Internet_Society.pdf) [paper]",
      "search_text": "k-miner: uncovering memory corruption in linux k-miner: uncovering memory corruption in linux    finding bugs  finding bugs primary paper http://lib.21h.io/library/xhequ6ax/download/sldejfqg/2018_k-miner_-_uncovering_memory_corruption_in_linux_internet_society.pdf memory-corruption bug-detection kernel  finding bugs this paper discusses k-miner, a tool designed to uncover memory corruption issues in linux systems. 本文讨论了k-miner，这是一种旨在发现linux系统中内存损坏问题的工具。 # k-miner: uncovering memory corruption in linux record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: k-miner: uncovering memory corruption in linux resource_label: primary resource_type: paper resource_url: http://lib.21h.io/library/xhequ6ax/download/sldejfqg/2018_k-miner_-_uncovering_memory_corruption_in_linux_internet_society.pdf parent_primary_url: http://lib.21h.io/library/xhequ6ax/download/sldejfqg/2018_k-miner_-_uncovering_memory_corruption_in_linux_internet_society.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2018: \"k-miner: uncovering memory corruption in linux\"](http://lib.21h.io/library/xhequ6ax/download/sldejfqg/2018_k-miner_-_uncovering_memory_corruption_in_linux_internet_society.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enou no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5fd45894e2cc0bc6",
      "item_id": "235b6b54d0d6bb4c",
      "slug": "2017-finding-bugs-kernelmemorysanitizer-kmsan-primary-296a0078",
      "year": 2017,
      "title": "KernelMemorySanitizer (KMSAN)",
      "item_title": "KernelMemorySanitizer (KMSAN)",
      "authors": [
        "Alexander Potapenko"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://blog.linuxplumbersconf.org/2017/ocw/system/presentations/4825/original/KMSAN%20presentation%20for%20LPC%202017.pdf",
      "primary_url": "https://blog.linuxplumbersconf.org/2017/ocw/system/presentations/4825/original/KMSAN%20presentation%20for%20LPC%202017.pdf",
      "parent_primary_url": "https://blog.linuxplumbersconf.org/2017/ocw/system/presentations/4825/original/KMSAN%20presentation%20for%20LPC%202017.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2017-finding-bugs-kernelmemorysanitizer-kmsan-primary-296a0078.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KernelMemorySanitizer (KMSAN) record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: KernelMemorySanitizer (KMSAN) resource_label: primary resource_type: slides resource_url: https://blog.linuxplumbersconf.org/2017/ocw/system/presentations/4825/original/KMSAN%20presentation%20for%20LPC%202017.pdf parent_primary_url: https://blog.linuxplumbersconf.org/2017/ocw/system/presentations/4825/original/KMSAN%20presentation%20for%20LPC%202017.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2017: \"KernelMemorySanitizer (KMSAN)\" by Alexander Potapenko](https://blog.linuxplumbersconf.org/2017/ocw/system/presentations/4825/original/KMSAN%20presentation%20for%20LPC%202017.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://blog.linuxplumbersconf.org/2017/ocw/system/presentations/4825/original/KMSAN%20presentation%20for%20LPC%202017.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://blog.linuxplumbersconf.org/2017/ocw/system/presentations/4825/original/KMSAN%20presentation%20for%20LPC%202017.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory-sanitization",
        "kernel",
        "bug-detection"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "Slides presenting KernelMemorySanitizer (KMSAN), a tool for detecting uninitialized memory usage in the Linux kernel.",
      "summary_zh": "介绍KernelMemorySanitizer (KMSAN)的幻灯片，这是一种用于检测Linux内核中未初始化内存使用的工具。",
      "source_markdown": "[2017: \"KernelMemorySanitizer (KMSAN)\" by Alexander Potapenko](https://blog.linuxplumbersconf.org/2017/ocw/system/presentations/4825/original/KMSAN%20presentation%20for%20LPC%202017.pdf) [slides]",
      "search_text": "kernelmemorysanitizer (kmsan) kernelmemorysanitizer (kmsan) alexander potapenko   finding bugs  finding bugs primary slides https://blog.linuxplumbersconf.org/2017/ocw/system/presentations/4825/original/kmsan%20presentation%20for%20lpc%202017.pdf memory-sanitization kernel bug-detection  finding bugs slides presenting kernelmemorysanitizer (kmsan), a tool for detecting uninitialized memory usage in the linux kernel. 介绍kernelmemorysanitizer (kmsan)的幻灯片，这是一种用于检测linux内核中未初始化内存使用的工具。 # kernelmemorysanitizer (kmsan) record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: kernelmemorysanitizer (kmsan) resource_label: primary resource_type: slides resource_url: https://blog.linuxplumbersconf.org/2017/ocw/system/presentations/4825/original/kmsan%20presentation%20for%20lpc%202017.pdf parent_primary_url: https://blog.linuxplumbersconf.org/2017/ocw/system/presentations/4825/original/kmsan%20presentation%20for%20lpc%202017.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2017: \"kernelmemorysanitizer (kmsan)\" by alexander potapenko](https://blog.linuxplumbersconf.org/2017/ocw/system/presentations/4825/original/kmsan%20presentation%20for%20lpc%202017.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "fd2168e0edd95b37",
      "item_id": "4732f7056453a57e",
      "slug": "2017-finding-bugs-the-android-vulnerability-discovery-in-soc-primary-50d411e5",
      "year": 2017,
      "title": "The android vulnerability discovery in SoC",
      "item_title": "The android vulnerability discovery in SoC",
      "authors": [
        "Yu Pan",
        "Yang Dai"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "http://powerofcommunity.net/poc2017/yu.pdf",
      "primary_url": "http://powerofcommunity.net/poc2017/yu.pdf",
      "parent_primary_url": "http://powerofcommunity.net/poc2017/yu.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2017-finding-bugs-the-android-vulnerability-discovery-in-soc-primary-50d411e5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The android vulnerability discovery in SoC record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: The android vulnerability discovery in SoC resource_label: primary resource_type: slides resource_url: http://powerofcommunity.net/poc2017/yu.pdf parent_primary_url: http://powerofcommunity.net/poc2017/yu.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2017: \"The android vulnerability discovery in SoC\" by Yu Pan and Yang Dai](http://powerofcommunity.net/poc2017/yu.pdf) [slides] cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: fals",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "http://powerofcommunity.net/poc2017/yu.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "http://powerofcommunity.net/poc2017/yu.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "android",
        "vulnerability-discovery",
        "SoC"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This presentation covers vulnerability discovery in Android systems on System-on-Chip (SoC) architectures.",
      "summary_zh": "本演示涵盖了在系统级芯片(SoC)架构上发现Android系统漏洞的内容。",
      "source_markdown": "[2017: \"The android vulnerability discovery in SoC\" by Yu Pan and Yang Dai](http://powerofcommunity.net/poc2017/yu.pdf) [slides]",
      "search_text": "the android vulnerability discovery in soc the android vulnerability discovery in soc yu pan yang dai   finding bugs  finding bugs primary slides http://powerofcommunity.net/poc2017/yu.pdf android vulnerability-discovery soc  finding bugs this presentation covers vulnerability discovery in android systems on system-on-chip (soc) architectures. 本演示涵盖了在系统级芯片(soc)架构上发现android系统漏洞的内容。 # the android vulnerability discovery in soc record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: the android vulnerability discovery in soc resource_label: primary resource_type: slides resource_url: http://powerofcommunity.net/poc2017/yu.pdf parent_primary_url: http://powerofcommunity.net/poc2017/yu.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2017: \"the android vulnerability discovery in soc\" by yu pan and yang dai](http://powerofcommunity.net/poc2017/yu.pdf) [slides] cves: none android_impact_status: unknown android_impact_reason: mentions android; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: fals unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "31d46aa5e08b1ffe",
      "item_id": "ab385f3e1088d030",
      "slug": "2017-finding-bugs-evolutionary-kernel-fuzzing-primary-a5bf0eb6",
      "year": 2017,
      "title": "Evolutionary Kernel Fuzzing",
      "item_title": "Evolutionary Kernel Fuzzing",
      "authors": [
        "Richard Johnson at Black Hat USA"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://moflow.org/Presentations/Evolutionary%20Kernel%20Fuzzing-BH2017-rjohnson-FINAL.pdf",
      "primary_url": "https://moflow.org/Presentations/Evolutionary%20Kernel%20Fuzzing-BH2017-rjohnson-FINAL.pdf",
      "parent_primary_url": "https://moflow.org/Presentations/Evolutionary%20Kernel%20Fuzzing-BH2017-rjohnson-FINAL.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2017-finding-bugs-evolutionary-kernel-fuzzing-primary-a5bf0eb6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Evolutionary Kernel Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Evolutionary Kernel Fuzzing resource_label: primary resource_type: slides resource_url: https://moflow.org/Presentations/Evolutionary%20Kernel%20Fuzzing-BH2017-rjohnson-FINAL.pdf parent_primary_url: https://moflow.org/Presentations/Evolutionary%20Kernel%20Fuzzing-BH2017-rjohnson-FINAL.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2017: \"Evolutionary Kernel Fuzzing\" by Richard Johnson at Black Hat USA](https://moflow.org/Presentations/Evolutionary%20Kernel%20Fuzzing-BH2017-rjohnson-FINAL.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS device",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://moflow.org/Presentations/Evolutionary%20Kernel%20Fuzzing-BH2017-rjohnson-FINAL.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://moflow.org/Presentations/Evolutionary%20Kernel%20Fuzzing-BH2017-rjohnson-FINAL.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "evolutionary-testing",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "Slides on evolutionary kernel fuzzing techniques presented at Black Hat USA 2017.",
      "summary_zh": "在Black Hat USA 2017上展示的关于进化内核模糊测试技术的幻灯片。",
      "source_markdown": "[2017: \"Evolutionary Kernel Fuzzing\" by Richard Johnson at Black Hat USA](https://moflow.org/Presentations/Evolutionary%20Kernel%20Fuzzing-BH2017-rjohnson-FINAL.pdf) [slides]",
      "search_text": "evolutionary kernel fuzzing evolutionary kernel fuzzing richard johnson at black hat usa   finding bugs  finding bugs primary slides https://moflow.org/presentations/evolutionary%20kernel%20fuzzing-bh2017-rjohnson-final.pdf fuzzing evolutionary-testing kernel  finding bugs slides on evolutionary kernel fuzzing techniques presented at black hat usa 2017. 在black hat usa 2017上展示的关于进化内核模糊测试技术的幻灯片。 # evolutionary kernel fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: evolutionary kernel fuzzing resource_label: primary resource_type: slides resource_url: https://moflow.org/presentations/evolutionary%20kernel%20fuzzing-bh2017-rjohnson-final.pdf parent_primary_url: https://moflow.org/presentations/evolutionary%20kernel%20fuzzing-bh2017-rjohnson-final.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2017: \"evolutionary kernel fuzzing\" by richard johnson at black hat usa](https://moflow.org/presentations/evolutionary%20kernel%20fuzzing-bh2017-rjohnson-final.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios device no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4aa8f4c85344be31",
      "item_id": "6f7563da11db4ff5",
      "slug": "2017-finding-bugs-difuze-interface-aware-fuzzing-for-kernel-drivers-primary-38313a10",
      "year": 2017,
      "title": "DIFUZE: Interface Aware Fuzzing for Kernel Drivers",
      "item_title": "DIFUZE: Interface Aware Fuzzing for Kernel Drivers",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers.pdf",
      "primary_url": "https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers.pdf",
      "parent_primary_url": "https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2017-finding-bugs-difuze-interface-aware-fuzzing-for-kernel-drivers-primary-38313a10.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DIFUZE: Interface Aware Fuzzing for Kernel Drivers record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: DIFUZE: Interface Aware Fuzzing for Kernel Drivers resource_label: primary resource_type: slides resource_url: https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers.pdf parent_primary_url: https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2017: \"DIFUZE: Interface Aware Fuzzing for Kernel Drivers\"](https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers.pdf) [slides] [[paper](https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers-wp.pdf)] cves: none android_impact_status: unk",
      "link_types": [
        "slides",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers.pdf"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers-wp.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers-wp.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel-drivers",
        "interface-aware"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "DIFUZE is a tool for interface-aware fuzzing specifically designed for kernel drivers.",
      "summary_zh": "DIFUZE是一种专为内核驱动程序设计的接口感知模糊测试工具。",
      "source_markdown": "[2017: \"DIFUZE: Interface Aware Fuzzing for Kernel Drivers\"](https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers.pdf) [slides] [[paper](https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers-wp.pdf)]",
      "search_text": "difuze: interface aware fuzzing for kernel drivers difuze: interface aware fuzzing for kernel drivers    finding bugs  finding bugs primary slides https://www.blackhat.com/docs/eu-17/materials/eu-17-corina-difuzzing-android-kernel-drivers.pdf fuzzing kernel-drivers interface-aware  finding bugs difuze is a tool for interface-aware fuzzing specifically designed for kernel drivers. difuze是一种专为内核驱动程序设计的接口感知模糊测试工具。 # difuze: interface aware fuzzing for kernel drivers record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: difuze: interface aware fuzzing for kernel drivers resource_label: primary resource_type: slides resource_url: https://www.blackhat.com/docs/eu-17/materials/eu-17-corina-difuzzing-android-kernel-drivers.pdf parent_primary_url: https://www.blackhat.com/docs/eu-17/materials/eu-17-corina-difuzzing-android-kernel-drivers.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2017: \"difuze: interface aware fuzzing for kernel drivers\"](https://www.blackhat.com/docs/eu-17/materials/eu-17-corina-difuzzing-android-kernel-drivers.pdf) [slides] [[paper](https://www.blackhat.com/docs/eu-17/materials/eu-17-corina-difuzzing-android-kernel-drivers-wp.pdf)] cves: none android_impact_status: unk unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "4ef36a279f2d29f3",
      "item_id": "6f7563da11db4ff5",
      "slug": "2017-finding-bugs-difuze-interface-aware-fuzzing-for-kernel-drivers-paper-2e4a9f7f",
      "year": 2017,
      "title": "DIFUZE: Interface Aware Fuzzing for Kernel Drivers · paper",
      "item_title": "DIFUZE: Interface Aware Fuzzing for Kernel Drivers",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "paper",
      "resource_type": "paper",
      "resource_url": "https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers-wp.pdf",
      "primary_url": "https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers-wp.pdf",
      "parent_primary_url": "https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2017-finding-bugs-difuze-interface-aware-fuzzing-for-kernel-drivers-paper-2e4a9f7f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DIFUZE: Interface Aware Fuzzing for Kernel Drivers · paper record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: DIFUZE: Interface Aware Fuzzing for Kernel Drivers resource_label: paper resource_type: paper resource_url: https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers-wp.pdf parent_primary_url: https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2017: \"DIFUZE: Interface Aware Fuzzing for Kernel Drivers\"](https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers.pdf) [slides] [[paper](https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers-wp.pdf)] cves: none android_impact_sta",
      "link_types": [
        "slides",
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers.pdf"
        },
        {
          "label": "paper",
          "type": "paper",
          "url": "https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers-wp.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "paper",
            "type": "paper",
            "url": "https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers-wp.pdf"
          }
        ],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "kernel-drivers",
        "interface-aware"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This paper presents DIFUZE, an interface-aware fuzzing approach for kernel drivers.",
      "summary_zh": "本文介绍了DIFUZE，一种针对内核驱动程序的接口感知模糊测试方法。",
      "source_markdown": "[2017: \"DIFUZE: Interface Aware Fuzzing for Kernel Drivers\"](https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers.pdf) [slides] [[paper](https://www.blackhat.com/docs/eu-17/materials/eu-17-Corina-Difuzzing-Android-Kernel-Drivers-wp.pdf)]",
      "search_text": "difuze: interface aware fuzzing for kernel drivers · paper difuze: interface aware fuzzing for kernel drivers    finding bugs  finding bugs paper paper https://www.blackhat.com/docs/eu-17/materials/eu-17-corina-difuzzing-android-kernel-drivers-wp.pdf fuzzing kernel-drivers interface-aware  finding bugs this paper presents difuze, an interface-aware fuzzing approach for kernel drivers. 本文介绍了difuze，一种针对内核驱动程序的接口感知模糊测试方法。 # difuze: interface aware fuzzing for kernel drivers · paper record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: difuze: interface aware fuzzing for kernel drivers resource_label: paper resource_type: paper resource_url: https://www.blackhat.com/docs/eu-17/materials/eu-17-corina-difuzzing-android-kernel-drivers-wp.pdf parent_primary_url: https://www.blackhat.com/docs/eu-17/materials/eu-17-corina-difuzzing-android-kernel-drivers.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2017: \"difuze: interface aware fuzzing for kernel drivers\"](https://www.blackhat.com/docs/eu-17/materials/eu-17-corina-difuzzing-android-kernel-drivers.pdf) [slides] [[paper](https://www.blackhat.com/docs/eu-17/materials/eu-17-corina-difuzzing-android-kernel-drivers-wp.pdf)] cves: none android_impact_sta unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "7df15942c775e059",
      "item_id": "e869d0b14481d204",
      "slug": "2017-finding-bugs-semfuzz-semantics-based-automatic-generation-of-proof-of-concept-exploits-at-ccs-primary-9c1",
      "year": 2017,
      "title": "SemFuzz: Semantics-based Automatic Generation of Proof-of-Concept Exploits\" at CCS",
      "item_title": "SemFuzz: Semantics-based Automatic Generation of Proof-of-Concept Exploits\" at CCS",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://acmccs.github.io/papers/p2139-youA.pdf",
      "primary_url": "https://acmccs.github.io/papers/p2139-youA.pdf",
      "parent_primary_url": "https://acmccs.github.io/papers/p2139-youA.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2017-finding-bugs-semfuzz-semantics-based-automatic-generation-of-proof-of-concept-exploits-at-ccs-primary-9c1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SemFuzz: Semantics-based Automatic Generation of Proof-of-Concept Exploits\" at CCS record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: SemFuzz: Semantics-based Automatic Generation of Proof-of-Concept Exploits\" at CCS resource_label: primary resource_type: paper resource_url: https://acmccs.github.io/papers/p2139-youA.pdf parent_primary_url: https://acmccs.github.io/papers/p2139-youA.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2017: \"SemFuzz: Semantics-based Automatic Generation of Proof-of-Concept Exploits\" at CCS](https://acmccs.github.io/papers/p2139-youA.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use ",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://acmccs.github.io/papers/p2139-youA.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://acmccs.github.io/papers/p2139-youA.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://acmccs.github.io/papers/p2139-youA.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit-generation",
        "semantics",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "SemFuzz is a method for automatic generation of proof-of-concept exploits based on semantics.",
      "summary_zh": "SemFuzz是一种基于语义的自动生成概念验证漏洞利用的方法。",
      "source_markdown": "[2017: \"SemFuzz: Semantics-based Automatic Generation of Proof-of-Concept Exploits\" at CCS](https://acmccs.github.io/papers/p2139-youA.pdf) [paper]",
      "search_text": "semfuzz: semantics-based automatic generation of proof-of-concept exploits\" at ccs semfuzz: semantics-based automatic generation of proof-of-concept exploits\" at ccs    finding bugs  finding bugs primary paper https://acmccs.github.io/papers/p2139-youa.pdf exploit-generation semantics kernel  finding bugs semfuzz is a method for automatic generation of proof-of-concept exploits based on semantics. semfuzz是一种基于语义的自动生成概念验证漏洞利用的方法。 # semfuzz: semantics-based automatic generation of proof-of-concept exploits\" at ccs record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: semfuzz: semantics-based automatic generation of proof-of-concept exploits\" at ccs resource_label: primary resource_type: paper resource_url: https://acmccs.github.io/papers/p2139-youa.pdf parent_primary_url: https://acmccs.github.io/papers/p2139-youa.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2017: \"semfuzz: semantics-based automatic generation of proof-of-concept exploits\" at ccs](https://acmccs.github.io/papers/p2139-youa.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "9c023818785f4d13",
      "item_id": "e8c2bbfd46deca11",
      "slug": "2017-finding-bugs-kafl-hardware-assisted-feedback-fuzzing-for-os-kernels-at-usenix-primary-95404fe5",
      "year": 2017,
      "title": "kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels\" at USENIX",
      "item_title": "kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-schumilo.pdf",
      "primary_url": "https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-schumilo.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-schumilo.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2017-finding-bugs-kafl-hardware-assisted-feedback-fuzzing-for-os-kernels-at-usenix-primary-95404fe5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels\" at USENIX record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels\" at USENIX resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-schumilo.pdf parent_primary_url: https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-schumilo.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2017: \"kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels\" at USENIX](https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-schumilo.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impa",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-schumilo.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-schumilo.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "hardware-assisted",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "K-AFL is a hardware-assisted fuzzing framework designed for operating system kernels.",
      "summary_zh": "K-AFL是一个为操作系统内核设计的硬件辅助模糊测试框架。",
      "source_markdown": "[2017: \"kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels\" at USENIX](https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-schumilo.pdf) [paper]",
      "search_text": "kafl: hardware-assisted feedback fuzzing for os kernels\" at usenix kafl: hardware-assisted feedback fuzzing for os kernels\" at usenix    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-schumilo.pdf fuzzing hardware-assisted kernel  finding bugs k-afl is a hardware-assisted fuzzing framework designed for operating system kernels. k-afl是一个为操作系统内核设计的硬件辅助模糊测试框架。 # kafl: hardware-assisted feedback fuzzing for os kernels\" at usenix record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: kafl: hardware-assisted feedback fuzzing for os kernels\" at usenix resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-schumilo.pdf parent_primary_url: https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-schumilo.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2017: \"kafl: hardware-assisted feedback fuzzing for os kernels\" at usenix](https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-schumilo.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impa no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d1e1f8ef92e2230f",
      "item_id": "989b6bc352e66859",
      "slug": "2017-finding-bugs-how-double-fetch-situations-turn-into-doublefetch-vulnerabilities-a-study-of-double-fetches-",
      "year": 2017,
      "title": "How Double-Fetch Situations turn into DoubleFetch Vulnerabilities: A Study of Double Fetches in the Linux Kernel\" at USENIX",
      "item_title": "How Double-Fetch Situations turn into DoubleFetch Vulnerabilities: A Study of Double Fetches in the Linux Kernel\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-wang.pdf",
      "primary_url": "https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-wang.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-wang.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2017-finding-bugs-how-double-fetch-situations-turn-into-doublefetch-vulnerabilities-a-study-of-double-fetches-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# How Double-Fetch Situations turn into DoubleFetch Vulnerabilities: A Study of Double Fetches in the Linux Kernel\" at USENIX record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: How Double-Fetch Situations turn into DoubleFetch Vulnerabilities: A Study of Double Fetches in the Linux Kernel\" at USENIX resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-wang.pdf parent_primary_url: https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-wang.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2017: \"How Double-Fetch Situations turn into DoubleFetch Vulnerabilities: A Study of Double Fetches in the Linux Kernel\" at USENIX](https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-wang.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-wang.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "double-fetch",
        "vulnerability-analysis",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This study analyzes how double-fetch situations can lead to vulnerabilities in the Linux kernel.",
      "summary_zh": "本研究分析了双重获取情况如何导致Linux内核中的漏洞。",
      "source_markdown": "[2017: \"How Double-Fetch Situations turn into DoubleFetch Vulnerabilities: A Study of Double Fetches in the Linux Kernel\" at USENIX](https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-wang.pdf) [paper]",
      "search_text": "how double-fetch situations turn into doublefetch vulnerabilities: a study of double fetches in the linux kernel\" at usenix how double-fetch situations turn into doublefetch vulnerabilities: a study of double fetches in the linux kernel\" at usenix    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-wang.pdf double-fetch vulnerability-analysis kernel  finding bugs this study analyzes how double-fetch situations can lead to vulnerabilities in the linux kernel. 本研究分析了双重获取情况如何导致linux内核中的漏洞。 # how double-fetch situations turn into doublefetch vulnerabilities: a study of double fetches in the linux kernel\" at usenix record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: how double-fetch situations turn into doublefetch vulnerabilities: a study of double fetches in the linux kernel\" at usenix resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-wang.pdf parent_primary_url: https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-wang.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2017: \"how double-fetch situations turn into doublefetch vulnerabilities: a study of double fetches in the linux kernel\" at usenix](https://www.usenix.org/system/files/conference/usenixsecurity17/sec17- no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a64e48a355da9b08",
      "item_id": "00a48d0d65bce61b",
      "slug": "2017-finding-bugs-dr-checker-a-soundy-analysis-for-linux-kernel-drivers-at-usenix-primary-97b1a35d",
      "year": 2017,
      "title": "DR. CHECKER: A Soundy Analysis for Linux Kernel Drivers\" at USENIX",
      "item_title": "DR. CHECKER: A Soundy Analysis for Linux Kernel Drivers\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-machiry.pdf",
      "primary_url": "https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-machiry.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-machiry.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2017-finding-bugs-dr-checker-a-soundy-analysis-for-linux-kernel-drivers-at-usenix-primary-97b1a35d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DR. CHECKER: A Soundy Analysis for Linux Kernel Drivers\" at USENIX record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: DR. CHECKER: A Soundy Analysis for Linux Kernel Drivers\" at USENIX resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-machiry.pdf parent_primary_url: https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-machiry.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2017: \"DR. CHECKER: A Soundy Analysis for Linux Kernel Drivers\" at USENIX](https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-machiry.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-machiry.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-machiry.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "static-analysis",
        "kernel-drivers",
        "security"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "DR. CHECKER is a sound analysis tool aimed at improving the security of Linux kernel drivers.",
      "summary_zh": "DR. CHECKER是一个旨在提高Linux内核驱动程序安全性的声学分析工具。",
      "source_markdown": "[2017: \"DR. CHECKER: A Soundy Analysis for Linux Kernel Drivers\" at USENIX](https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-machiry.pdf) [paper]",
      "search_text": "dr. checker: a soundy analysis for linux kernel drivers\" at usenix dr. checker: a soundy analysis for linux kernel drivers\" at usenix    finding bugs  finding bugs primary paper https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-machiry.pdf static-analysis kernel-drivers security  finding bugs dr. checker is a sound analysis tool aimed at improving the security of linux kernel drivers. dr. checker是一个旨在提高linux内核驱动程序安全性的声学分析工具。 # dr. checker: a soundy analysis for linux kernel drivers\" at usenix record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: dr. checker: a soundy analysis for linux kernel drivers\" at usenix resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-machiry.pdf parent_primary_url: https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-machiry.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2017: \"dr. checker: a soundy analysis for linux kernel drivers\" at usenix](https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-machiry.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "71aba148ba3a952d",
      "item_id": "2cb806396d22618d",
      "slug": "2016-finding-bugs-using-static-checking-to-find-security-vulnerabilities-in-the-linux-kernel-primary-feb09546",
      "year": 2016,
      "title": "Using Static Checking To Find Security Vulnerabilities In The Linux Kernel",
      "item_title": "Using Static Checking To Find Security Vulnerabilities In The Linux Kernel",
      "authors": [
        "Vaishali Thakkar"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "http://events17.linuxfoundation.org/sites/events/files/slides/Using%20static%20checking%20to%20find%20security%20vulnerabilities%20in%20the%20Linux%20Kernel.pdf",
      "primary_url": "http://events17.linuxfoundation.org/sites/events/files/slides/Using%20static%20checking%20to%20find%20security%20vulnerabilities%20in%20the%20Linux%20Kernel.pdf",
      "parent_primary_url": "http://events17.linuxfoundation.org/sites/events/files/slides/Using%20static%20checking%20to%20find%20security%20vulnerabilities%20in%20the%20Linux%20Kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2016-finding-bugs-using-static-checking-to-find-security-vulnerabilities-in-the-linux-kernel-primary-feb09546.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Using Static Checking To Find Security Vulnerabilities In The Linux Kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Using Static Checking To Find Security Vulnerabilities In The Linux Kernel resource_label: primary resource_type: slides resource_url: http://events17.linuxfoundation.org/sites/events/files/slides/Using%20static%20checking%20to%20find%20security%20vulnerabilities%20in%20the%20Linux%20Kernel.pdf parent_primary_url: http://events17.linuxfoundation.org/sites/events/files/slides/Using%20static%20checking%20to%20find%20security%20vulnerabilities%20in%20the%20Linux%20Kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2016: \"Using Static Checking To Find Security Vulnerabilities In The Linux Kernel\" by Vaishali Thakkar](http://events17.linuxfoundation",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "http://events17.linuxfoundation.org/sites/events/files/slides/Using%20static%20checking%20to%20find%20security%20vulnerabilities%20in%20the%20Linux%20Kernel.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "http://events17.linuxfoundation.org/sites/events/files/slides/Using%20static%20checking%20to%20find%20security%20vulnerabilities%20in%20the%20Linux%20Kernel.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "static-checking",
        "vulnerability-detection",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This presentation discusses the use of static checking to identify security vulnerabilities in the Linux kernel.",
      "summary_zh": "本演示讨论了使用静态检查来识别Linux内核中的安全漏洞。",
      "source_markdown": "[2016: \"Using Static Checking To Find Security Vulnerabilities In The Linux Kernel\" by Vaishali Thakkar](http://events17.linuxfoundation.org/sites/events/files/slides/Using%20static%20checking%20to%20find%20security%20vulnerabilities%20in%20the%20Linux%20Kernel.pdf) [slides]",
      "search_text": "using static checking to find security vulnerabilities in the linux kernel using static checking to find security vulnerabilities in the linux kernel vaishali thakkar   finding bugs  finding bugs primary slides http://events17.linuxfoundation.org/sites/events/files/slides/using%20static%20checking%20to%20find%20security%20vulnerabilities%20in%20the%20linux%20kernel.pdf static-checking vulnerability-detection kernel  finding bugs this presentation discusses the use of static checking to identify security vulnerabilities in the linux kernel. 本演示讨论了使用静态检查来识别linux内核中的安全漏洞。 # using static checking to find security vulnerabilities in the linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: using static checking to find security vulnerabilities in the linux kernel resource_label: primary resource_type: slides resource_url: http://events17.linuxfoundation.org/sites/events/files/slides/using%20static%20checking%20to%20find%20security%20vulnerabilities%20in%20the%20linux%20kernel.pdf parent_primary_url: http://events17.linuxfoundation.org/sites/events/files/slides/using%20static%20checking%20to%20find%20security%20vulnerabilities%20in%20the%20linux%20kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2016: \"using static checking to find security vulnerabilities in the linux kernel\" by vaishali thakkar](http://events17.linuxfoundation no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bbe5c88b24f15505",
      "item_id": "8d9f40e8aafa2afc",
      "slug": "2016-finding-bugs-unisan-proactive-kernel-memory-initialization-to-eliminate-data-leakages-primary-8ec04264",
      "year": 2016,
      "title": "UniSan: Proactive Kernel Memory Initialization to Eliminate Data Leakages",
      "item_title": "UniSan: Proactive Kernel Memory Initialization to Eliminate Data Leakages",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://gts3.org/assets/papers/2016/lu:unisan.pdf",
      "primary_url": "https://gts3.org/assets/papers/2016/lu:unisan.pdf",
      "parent_primary_url": "https://gts3.org/assets/papers/2016/lu:unisan.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2016-finding-bugs-unisan-proactive-kernel-memory-initialization-to-eliminate-data-leakages-primary-8ec04264.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# UniSan: Proactive Kernel Memory Initialization to Eliminate Data Leakages record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: UniSan: Proactive Kernel Memory Initialization to Eliminate Data Leakages resource_label: primary resource_type: paper resource_url: https://gts3.org/assets/papers/2016/lu:unisan.pdf parent_primary_url: https://gts3.org/assets/papers/2016/lu:unisan.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2016: \"UniSan: Proactive Kernel Memory Initialization to Eliminate Data Leakages\"](https://gts3.org/assets/papers/2016/lu:unisan.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kerne",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://gts3.org/assets/papers/2016/lu:unisan.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://gts3.org/assets/papers/2016/lu:unisan.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory-initialization",
        "data-leakage",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "UniSan is a proactive approach to kernel memory initialization aimed at eliminating data leakages.",
      "summary_zh": "UniSan是一种主动的内核内存初始化方法，旨在消除数据泄漏。",
      "source_markdown": "[2016: \"UniSan: Proactive Kernel Memory Initialization to Eliminate Data Leakages\"](https://gts3.org/assets/papers/2016/lu:unisan.pdf) [paper]",
      "search_text": "unisan: proactive kernel memory initialization to eliminate data leakages unisan: proactive kernel memory initialization to eliminate data leakages    finding bugs  finding bugs primary paper https://gts3.org/assets/papers/2016/lu:unisan.pdf memory-initialization data-leakage kernel  finding bugs unisan is a proactive approach to kernel memory initialization aimed at eliminating data leakages. unisan是一种主动的内核内存初始化方法，旨在消除数据泄漏。 # unisan: proactive kernel memory initialization to eliminate data leakages record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: unisan: proactive kernel memory initialization to eliminate data leakages resource_label: primary resource_type: paper resource_url: https://gts3.org/assets/papers/2016/lu:unisan.pdf parent_primary_url: https://gts3.org/assets/papers/2016/lu:unisan.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2016: \"unisan: proactive kernel memory initialization to eliminate data leakages\"](https://gts3.org/assets/papers/2016/lu:unisan.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kerne no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e40812db03261714",
      "item_id": "e4fc0508a899b947",
      "slug": "2016-finding-bugs-an-analysis-on-the-impact-and-detection-of-kernel-stack-infoleaks-primary-00b21bf7",
      "year": 2016,
      "title": "An Analysis on the Impact and Detection of Kernel Stack Infoleaks",
      "item_title": "An Analysis on the Impact and Detection of Kernel Stack Infoleaks",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.researchgate.net/publication/298313650_An_Analysis_on_the_Impact_and_Detection_of_Kernel_Stack_Infoleaks",
      "primary_url": "https://www.researchgate.net/publication/298313650_An_Analysis_on_the_Impact_and_Detection_of_Kernel_Stack_Infoleaks",
      "parent_primary_url": "https://www.researchgate.net/publication/298313650_An_Analysis_on_the_Impact_and_Detection_of_Kernel_Stack_Infoleaks",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2016-finding-bugs-an-analysis-on-the-impact-and-detection-of-kernel-stack-infoleaks-primary-00b21bf7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An Analysis on the Impact and Detection of Kernel Stack Infoleaks record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: An Analysis on the Impact and Detection of Kernel Stack Infoleaks resource_label: primary resource_type: paper resource_url: https://www.researchgate.net/publication/298313650_An_Analysis_on_the_Impact_and_Detection_of_Kernel_Stack_Infoleaks parent_primary_url: https://www.researchgate.net/publication/298313650_An_Analysis_on_the_Impact_and_Detection_of_Kernel_Stack_Infoleaks source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2016: \"An Analysis on the Impact and Detection of Kernel Stack Infoleaks\"](https://www.researchgate.net/publication/298313650_An_Analysis_on_the_Impact_and_Detection_of_Kernel_Stack_Infoleaks) [paper] cves: none android_impact_status: no andr",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.researchgate.net/publication/298313650_An_Analysis_on_the_Impact_and_Detection_of_Kernel_Stack_Infoleaks"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.researchgate.net/publication/298313650_An_Analysis_on_the_Impact_and_Detection_of_Kernel_Stack_Infoleaks"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "infoleak",
        "detection",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This paper analyzes the impact and detection methods for kernel stack infoleaks.",
      "summary_zh": "本文分析了内核栈信息泄漏的影响和检测方法。",
      "source_markdown": "[2016: \"An Analysis on the Impact and Detection of Kernel Stack Infoleaks\"](https://www.researchgate.net/publication/298313650_An_Analysis_on_the_Impact_and_Detection_of_Kernel_Stack_Infoleaks) [paper]",
      "search_text": "an analysis on the impact and detection of kernel stack infoleaks an analysis on the impact and detection of kernel stack infoleaks    finding bugs  finding bugs primary paper https://www.researchgate.net/publication/298313650_an_analysis_on_the_impact_and_detection_of_kernel_stack_infoleaks infoleak detection kernel  finding bugs this paper analyzes the impact and detection methods for kernel stack infoleaks. 本文分析了内核栈信息泄漏的影响和检测方法。 # an analysis on the impact and detection of kernel stack infoleaks record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: an analysis on the impact and detection of kernel stack infoleaks resource_label: primary resource_type: paper resource_url: https://www.researchgate.net/publication/298313650_an_analysis_on_the_impact_and_detection_of_kernel_stack_infoleaks parent_primary_url: https://www.researchgate.net/publication/298313650_an_analysis_on_the_impact_and_detection_of_kernel_stack_infoleaks source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2016: \"an analysis on the impact and detection of kernel stack infoleaks\"](https://www.researchgate.net/publication/298313650_an_analysis_on_the_impact_and_detection_of_kernel_stack_infoleaks) [paper] cves: none android_impact_status: no andr no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c64cbd3969e20c97",
      "item_id": "7d922032a7b646e7",
      "slug": "2016-finding-bugs-syzkaller-future-developement-primary-fee9ce20",
      "year": 2016,
      "title": "Syzkaller, Future Developement",
      "item_title": "Syzkaller, Future Developement",
      "authors": [
        "Dmitry Vyukov at Linux Plumbers"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://docs.google.com/presentation/d/1iAuTvzt_xvDzS2misXwlYko_VDvpvCmDevMOq2rXIcA/edit#slide=id.p",
      "primary_url": "https://docs.google.com/presentation/d/1iAuTvzt_xvDzS2misXwlYko_VDvpvCmDevMOq2rXIcA/edit#slide=id.p",
      "parent_primary_url": "https://docs.google.com/presentation/d/1iAuTvzt_xvDzS2misXwlYko_VDvpvCmDevMOq2rXIcA/edit#slide=id.p",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2016-finding-bugs-syzkaller-future-developement-primary-fee9ce20.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Syzkaller, Future Developement record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Syzkaller, Future Developement resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/1iAuTvzt_xvDzS2misXwlYko_VDvpvCmDevMOq2rXIcA/edit#slide=id.p parent_primary_url: https://docs.google.com/presentation/d/1iAuTvzt_xvDzS2misXwlYko_VDvpvCmDevMOq2rXIcA/edit#slide=id.p source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2016: \"Syzkaller, Future Developement\" by Dmitry Vyukov at Linux Plumbers](https://docs.google.com/presentation/d/1iAuTvzt_xvDzS2misXwlYko_VDvpvCmDevMOq2rXIcA/edit#slide=id.p) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_i",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/1iAuTvzt_xvDzS2misXwlYko_VDvpvCmDevMOq2rXIcA/edit#slide=id.p"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/1iAuTvzt_xvDzS2misXwlYko_VDvpvCmDevMOq2rXIcA/edit#slide=id.p"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "Syzkaller",
        "development"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "Slides discussing the future development of Syzkaller, a kernel fuzzing tool.",
      "summary_zh": "讨论Syzkaller这一内核模糊测试工具未来发展的幻灯片。",
      "source_markdown": "[2016: \"Syzkaller, Future Developement\" by Dmitry Vyukov at Linux Plumbers](https://docs.google.com/presentation/d/1iAuTvzt_xvDzS2misXwlYko_VDvpvCmDevMOq2rXIcA/edit#slide=id.p) [slides]",
      "search_text": "syzkaller, future developement syzkaller, future developement dmitry vyukov at linux plumbers   finding bugs  finding bugs primary slides https://docs.google.com/presentation/d/1iautvzt_xvdzs2misxwlyko_vdvpvcmdevmoq2rxica/edit#slide=id.p fuzzing syzkaller development  finding bugs slides discussing the future development of syzkaller, a kernel fuzzing tool. 讨论syzkaller这一内核模糊测试工具未来发展的幻灯片。 # syzkaller, future developement record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: syzkaller, future developement resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/1iautvzt_xvdzs2misxwlyko_vdvpvcmdevmoq2rxica/edit#slide=id.p parent_primary_url: https://docs.google.com/presentation/d/1iautvzt_xvdzs2misxwlyko_vdvpvcmdevmoq2rxica/edit#slide=id.p source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2016: \"syzkaller, future developement\" by dmitry vyukov at linux plumbers](https://docs.google.com/presentation/d/1iautvzt_xvdzs2misxwlyko_vdvpvcmdevmoq2rxica/edit#slide=id.p) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_i no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "0a905aed942707d4",
      "item_id": "fbf65a01fc96c83b",
      "slug": "2016-finding-bugs-coverage-guided-kernel-fuzzing-with-syzkaller-primary-cac2ad87",
      "year": 2016,
      "title": "Coverage-guided kernel fuzzing with syzkaller",
      "item_title": "Coverage-guided kernel fuzzing with syzkaller",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://lwn.net/Articles/677764/",
      "primary_url": "https://lwn.net/Articles/677764/",
      "parent_primary_url": "https://lwn.net/Articles/677764/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2016-finding-bugs-coverage-guided-kernel-fuzzing-with-syzkaller-primary-cac2ad87.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Coverage-guided kernel fuzzing with syzkaller record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Coverage-guided kernel fuzzing with syzkaller resource_label: primary resource_type: article resource_url: https://lwn.net/Articles/677764/ parent_primary_url: https://lwn.net/Articles/677764/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2016: \"Coverage-guided kernel fuzzing with syzkaller\"](https://lwn.net/Articles/677764/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: htt",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://lwn.net/Articles/677764/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://lwn.net/Articles/677764/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "coverage-guided",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This article covers coverage-guided kernel fuzzing techniques using Syzkaller.",
      "summary_zh": "本文介绍了使用Syzkaller进行覆盖引导的内核模糊测试技术。",
      "source_markdown": "[2016: \"Coverage-guided kernel fuzzing with syzkaller\"](https://lwn.net/Articles/677764/) [article]",
      "search_text": "coverage-guided kernel fuzzing with syzkaller coverage-guided kernel fuzzing with syzkaller    finding bugs  finding bugs primary article https://lwn.net/articles/677764/ fuzzing coverage-guided kernel  finding bugs this article covers coverage-guided kernel fuzzing techniques using syzkaller. 本文介绍了使用syzkaller进行覆盖引导的内核模糊测试技术。 # coverage-guided kernel fuzzing with syzkaller record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: coverage-guided kernel fuzzing with syzkaller resource_label: primary resource_type: article resource_url: https://lwn.net/articles/677764/ parent_primary_url: https://lwn.net/articles/677764/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2016: \"coverage-guided kernel fuzzing with syzkaller\"](https://lwn.net/articles/677764/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: htt no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9f8229ed3aa40a78",
      "item_id": "aa92486a4712a51a",
      "slug": "2016-finding-bugs-filesystem-fuzzing-with-american-fuzzy-lop-primary-1abe74f7",
      "year": 2016,
      "title": "Filesystem Fuzzing with American Fuzzy Lop",
      "item_title": "Filesystem Fuzzing with American Fuzzy Lop",
      "authors": [
        "Vegard Nossum",
        "Quentin Casasnovas"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://events.linuxfoundation.org/sites/events/files/slides/AFL%20filesystem%20fuzzing%2C%20Vault%202016_0.pdf",
      "primary_url": "https://events.linuxfoundation.org/sites/events/files/slides/AFL%20filesystem%20fuzzing%2C%20Vault%202016_0.pdf",
      "parent_primary_url": "https://events.linuxfoundation.org/sites/events/files/slides/AFL%20filesystem%20fuzzing%2C%20Vault%202016_0.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2016-finding-bugs-filesystem-fuzzing-with-american-fuzzy-lop-primary-1abe74f7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Filesystem Fuzzing with American Fuzzy Lop record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Filesystem Fuzzing with American Fuzzy Lop resource_label: primary resource_type: slides resource_url: https://events.linuxfoundation.org/sites/events/files/slides/AFL%20filesystem%20fuzzing%2C%20Vault%202016_0.pdf parent_primary_url: https://events.linuxfoundation.org/sites/events/files/slides/AFL%20filesystem%20fuzzing%2C%20Vault%202016_0.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2016: \"Filesystem Fuzzing with American Fuzzy Lop\" by Vegard Nossum and Quentin Casasnovas](https://events.linuxfoundation.org/sites/events/files/slides/AFL%20filesystem%20fuzzing%2C%20Vault%202016_0.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence tha",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://events.linuxfoundation.org/sites/events/files/slides/AFL%20filesystem%20fuzzing%2C%20Vault%202016_0.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://events.linuxfoundation.org/sites/events/files/slides/AFL%20filesystem%20fuzzing%2C%20Vault%202016_0.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "AFL",
        "QEMU"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "Project Triforce combines AFL and QEMU for fuzzing arbitrary virtual machines, including kernels.",
      "summary_zh": "Project Triforce结合了AFL和QEMU，用于模糊测试任意虚拟机，包括内核。",
      "source_markdown": "[2016: \"Filesystem Fuzzing with American Fuzzy Lop\" by Vegard Nossum and Quentin Casasnovas](https://events.linuxfoundation.org/sites/events/files/slides/AFL%20filesystem%20fuzzing%2C%20Vault%202016_0.pdf) [slides]",
      "search_text": "filesystem fuzzing with american fuzzy lop filesystem fuzzing with american fuzzy lop vegard nossum quentin casasnovas   finding bugs  finding bugs primary slides https://events.linuxfoundation.org/sites/events/files/slides/afl%20filesystem%20fuzzing%2c%20vault%202016_0.pdf fuzzing afl qemu  finding bugs project triforce combines afl and qemu for fuzzing arbitrary virtual machines, including kernels. project triforce结合了afl和qemu，用于模糊测试任意虚拟机，包括内核。 # filesystem fuzzing with american fuzzy lop record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: filesystem fuzzing with american fuzzy lop resource_label: primary resource_type: slides resource_url: https://events.linuxfoundation.org/sites/events/files/slides/afl%20filesystem%20fuzzing%2c%20vault%202016_0.pdf parent_primary_url: https://events.linuxfoundation.org/sites/events/files/slides/afl%20filesystem%20fuzzing%2c%20vault%202016_0.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2016: \"filesystem fuzzing with american fuzzy lop\" by vegard nossum and quentin casasnovas](https://events.linuxfoundation.org/sites/events/files/slides/afl%20filesystem%20fuzzing%2c%20vault%202016_0.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence tha no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "916d4f597c1bc826",
      "item_id": "260e0ed749698676",
      "slug": "2016-finding-bugs-project-triforce-afl-qemu-kernel-cves-or-how-to-use-afl-to-fuzz-arbitrary-vms-at-toorcon-pri",
      "year": 2016,
      "title": "Project Triforce: AFL + QEMU + kernel = CVEs! (or) How to use AFL to fuzz arbitrary VMs\" at ToorCon",
      "item_title": "Project Triforce: AFL + QEMU + kernel = CVEs! (or) How to use AFL to fuzz arbitrary VMs\" at ToorCon",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://github.com/nccgroup/TriforceAFL/blob/master/slides/ToorCon16_TriforceAFL.pdf",
      "primary_url": "https://github.com/nccgroup/TriforceAFL/blob/master/slides/ToorCon16_TriforceAFL.pdf",
      "parent_primary_url": "https://github.com/nccgroup/TriforceAFL/blob/master/slides/ToorCon16_TriforceAFL.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2016-finding-bugs-project-triforce-afl-qemu-kernel-cves-or-how-to-use-afl-to-fuzz-arbitrary-vms-at-toorcon-pri.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Project Triforce: AFL + QEMU + kernel = CVEs! (or) How to use AFL to fuzz arbitrary VMs\" at ToorCon record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Project Triforce: AFL + QEMU + kernel = CVEs! (or) How to use AFL to fuzz arbitrary VMs\" at ToorCon resource_label: primary resource_type: slides resource_url: https://github.com/nccgroup/TriforceAFL/blob/master/slides/ToorCon16_TriforceAFL.pdf parent_primary_url: https://github.com/nccgroup/TriforceAFL/blob/master/slides/ToorCon16_TriforceAFL.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2016: \"Project Triforce: AFL + QEMU + kernel = CVEs! (or) How to use AFL to fuzz arbitrary VMs\" at ToorCon](https://github.com/nccgroup/TriforceAFL/blob/master/slides/ToorCon16_TriforceAFL.pdf) [slides] cves: none android_impact_status: ",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/nccgroup/TriforceAFL/blob/master/slides/ToorCon16_TriforceAFL.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/nccgroup/TriforceAFL/blob/master/slides/ToorCon16_TriforceAFL.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/nccgroup/TriforceAFL/blob/master/slides/ToorCon16_TriforceAFL.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Finding Bugs",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "Finding Bugs",
      "summary_en": "2016 Linux kernel Finding Bugs resource \"Project Triforce: AFL + QEMU + kernel = CVEs! (or) How to use AFL to fuzz arbitrary VMs\" at ToorCon\"; URL type: slides.",
      "summary_zh": "2016 年 Linux 内核Finding Bugs资料：「Project Triforce: AFL + QEMU + kernel = CVEs! (or) How to use AFL to fuzz arbitrary VMs\" at ToorCon」；URL 类型：slides。",
      "source_markdown": "[2016: \"Project Triforce: AFL + QEMU + kernel = CVEs! (or) How to use AFL to fuzz arbitrary VMs\" at ToorCon](https://github.com/nccgroup/TriforceAFL/blob/master/slides/ToorCon16_TriforceAFL.pdf) [slides]",
      "search_text": "project triforce: afl + qemu + kernel = cves! (or) how to use afl to fuzz arbitrary vms\" at toorcon project triforce: afl + qemu + kernel = cves! (or) how to use afl to fuzz arbitrary vms\" at toorcon    finding bugs  finding bugs primary slides https://github.com/nccgroup/triforceafl/blob/master/slides/toorcon16_triforceafl.pdf finding bugs slides  finding bugs 2016 linux kernel finding bugs resource \"project triforce: afl + qemu + kernel = cves! (or) how to use afl to fuzz arbitrary vms\" at toorcon\"; url type: slides. 2016 年 linux 内核finding bugs资料：「project triforce: afl + qemu + kernel = cves! (or) how to use afl to fuzz arbitrary vms\" at toorcon」；url 类型：slides。 # project triforce: afl + qemu + kernel = cves! (or) how to use afl to fuzz arbitrary vms\" at toorcon record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: project triforce: afl + qemu + kernel = cves! (or) how to use afl to fuzz arbitrary vms\" at toorcon resource_label: primary resource_type: slides resource_url: https://github.com/nccgroup/triforceafl/blob/master/slides/toorcon16_triforceafl.pdf parent_primary_url: https://github.com/nccgroup/triforceafl/blob/master/slides/toorcon16_triforceafl.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2016: \"project triforce: afl + qemu + kernel = cves! (or) how to use afl to fuzz arbitrary vms\" at toorcon](https://github.com/nccgroup/triforceafl/blob/master/slides/toorcon16_triforceafl.pdf) [slides] cves: none android_impact_status:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "32e1b22b42ec3f66",
      "item_id": "1874384f29befcf0",
      "slug": "2015-finding-bugs-kerneladdresssanitizer-kasan-a-fast-memory-error-detector-for-the-linux-kernel-primary-3ba00",
      "year": 2015,
      "title": "KernelAddressSanitizer (KASan): a fast memory error detector for the Linux kernel",
      "item_title": "KernelAddressSanitizer (KASan): a fast memory error detector for the Linux kernel",
      "authors": [
        "Andrey Konovalov at LinuxCon North America"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "http://events.linuxfoundation.org/sites/events/files/slides/LinuxCon%20North%20America%202015%20KernelAddressSanitizer.pdf",
      "primary_url": "http://events.linuxfoundation.org/sites/events/files/slides/LinuxCon%20North%20America%202015%20KernelAddressSanitizer.pdf",
      "parent_primary_url": "http://events.linuxfoundation.org/sites/events/files/slides/LinuxCon%20North%20America%202015%20KernelAddressSanitizer.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2015-finding-bugs-kerneladdresssanitizer-kasan-a-fast-memory-error-detector-for-the-linux-kernel-primary-3ba00.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KernelAddressSanitizer (KASan): a fast memory error detector for the Linux kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: KernelAddressSanitizer (KASan): a fast memory error detector for the Linux kernel resource_label: primary resource_type: slides resource_url: http://events.linuxfoundation.org/sites/events/files/slides/LinuxCon%20North%20America%202015%20KernelAddressSanitizer.pdf parent_primary_url: http://events.linuxfoundation.org/sites/events/files/slides/LinuxCon%20North%20America%202015%20KernelAddressSanitizer.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2015: \"KernelAddressSanitizer (KASan): a fast memory error detector for the Linux kernel\" by Andrey Konovalov at LinuxCon North America](http://events.linuxfoundation.org/sites/events/files/slides/",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "http://events.linuxfoundation.org/sites/events/files/slides/LinuxCon%20North%20America%202015%20KernelAddressSanitizer.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "http://events.linuxfoundation.org/sites/events/files/slides/LinuxCon%20North%20America%202015%20KernelAddressSanitizer.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory-error-detection",
        "kernel",
        "KASan"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "KernelAddressSanitizer (KASan) is a fast memory error detector specifically for the Linux kernel.",
      "summary_zh": "KernelAddressSanitizer (KASan)是专为Linux内核设计的快速内存错误检测器。",
      "source_markdown": "[2015: \"KernelAddressSanitizer (KASan): a fast memory error detector for the Linux kernel\" by Andrey Konovalov at LinuxCon North America](http://events.linuxfoundation.org/sites/events/files/slides/LinuxCon%20North%20America%202015%20KernelAddressSanitizer.pdf) [slides]",
      "search_text": "kerneladdresssanitizer (kasan): a fast memory error detector for the linux kernel kerneladdresssanitizer (kasan): a fast memory error detector for the linux kernel andrey konovalov at linuxcon north america   finding bugs  finding bugs primary slides http://events.linuxfoundation.org/sites/events/files/slides/linuxcon%20north%20america%202015%20kerneladdresssanitizer.pdf memory-error-detection kernel kasan  finding bugs kerneladdresssanitizer (kasan) is a fast memory error detector specifically for the linux kernel. kerneladdresssanitizer (kasan)是专为linux内核设计的快速内存错误检测器。 # kerneladdresssanitizer (kasan): a fast memory error detector for the linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: kerneladdresssanitizer (kasan): a fast memory error detector for the linux kernel resource_label: primary resource_type: slides resource_url: http://events.linuxfoundation.org/sites/events/files/slides/linuxcon%20north%20america%202015%20kerneladdresssanitizer.pdf parent_primary_url: http://events.linuxfoundation.org/sites/events/files/slides/linuxcon%20north%20america%202015%20kerneladdresssanitizer.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2015: \"kerneladdresssanitizer (kasan): a fast memory error detector for the linux kernel\" by andrey konovalov at linuxcon north america](http://events.linuxfoundation.org/sites/events/files/slides/ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b521ff602bdd56f5",
      "item_id": "5dc31bdabd9180d5",
      "slug": "2015-finding-bugs-introduction-to-usb-and-fuzzing-primary-d30f12e1",
      "year": 2015,
      "title": "Introduction to USB and Fuzzing",
      "item_title": "Introduction to USB and Fuzzing",
      "authors": [
        "Matt DuHarte at DEF CON"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=KWOTXypBt4E",
      "primary_url": "https://www.youtube.com/watch?v=KWOTXypBt4E",
      "parent_primary_url": "https://www.youtube.com/watch?v=KWOTXypBt4E",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2015-finding-bugs-introduction-to-usb-and-fuzzing-primary-d30f12e1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Introduction to USB and Fuzzing record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Introduction to USB and Fuzzing resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=KWOTXypBt4E parent_primary_url: https://www.youtube.com/watch?v=KWOTXypBt4E source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2015: \"Introduction to USB and Fuzzing\" by Matt DuHarte at DEF CON](https://www.youtube.com/watch?v=KWOTXypBt4E) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [video] ",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=KWOTXypBt4E"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=KWOTXypBt4E"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "USB"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This video introduces USB fuzzing techniques for finding vulnerabilities.",
      "summary_zh": "该视频介绍了用于发现漏洞的USB模糊测试技术。",
      "source_markdown": "[2015: \"Introduction to USB and Fuzzing\" by Matt DuHarte at DEF CON](https://www.youtube.com/watch?v=KWOTXypBt4E) [video]",
      "search_text": "introduction to usb and fuzzing introduction to usb and fuzzing matt duharte at def con   finding bugs  finding bugs primary video https://www.youtube.com/watch?v=kwotxypbt4e fuzzing usb  finding bugs this video introduces usb fuzzing techniques for finding vulnerabilities. 该视频介绍了用于发现漏洞的usb模糊测试技术。 # introduction to usb and fuzzing record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: introduction to usb and fuzzing resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=kwotxypbt4e parent_primary_url: https://www.youtube.com/watch?v=kwotxypbt4e source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2015: \"introduction to usb and fuzzing\" by matt duharte at def con](https://www.youtube.com/watch?v=kwotxypbt4e) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [video]  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3c7d87b30697b4b2",
      "item_id": "e742b12fbab34089",
      "slug": "2015-finding-bugs-don-t-trust-your-usb-how-to-find-bugs-in-usb-device-drivers-primary-30d75009",
      "year": 2015,
      "title": "Don't Trust Your USB! How to Find Bugs in USB Device Drivers",
      "item_title": "Don't Trust Your USB! How to Find Bugs in USB Device Drivers",
      "authors": [
        "Sergej Schumilo",
        "Ralf Spenneberg",
        "and Hendrik Schwartke at Black Hat"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=OAbzN8k6Am4",
      "primary_url": "https://www.youtube.com/watch?v=OAbzN8k6Am4",
      "parent_primary_url": "https://www.youtube.com/watch?v=OAbzN8k6Am4",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2015-finding-bugs-don-t-trust-your-usb-how-to-find-bugs-in-usb-device-drivers-primary-30d75009.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Don't Trust Your USB! How to Find Bugs in USB Device Drivers record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Don't Trust Your USB! How to Find Bugs in USB Device Drivers resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=OAbzN8k6Am4 parent_primary_url: https://www.youtube.com/watch?v=OAbzN8k6Am4 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2015: \"Don't Trust Your USB! How to Find Bugs in USB Device Drivers\" by Sergej Schumilo, Ralf Spenneberg, and Hendrik Schwartke at Black Hat](https://www.youtube.com/watch?v=OAbzN8k6Am4) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Ap",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=OAbzN8k6Am4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=OAbzN8k6Am4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "USB"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This video discusses methods for identifying bugs in USB device drivers.",
      "summary_zh": "该视频讨论了识别USB设备驱动程序中的错误的方法。",
      "source_markdown": "[2015: \"Don't Trust Your USB! How to Find Bugs in USB Device Drivers\" by Sergej Schumilo, Ralf Spenneberg, and Hendrik Schwartke at Black Hat](https://www.youtube.com/watch?v=OAbzN8k6Am4) [video]",
      "search_text": "don't trust your usb! how to find bugs in usb device drivers don't trust your usb! how to find bugs in usb device drivers sergej schumilo ralf spenneberg and hendrik schwartke at black hat   finding bugs  finding bugs primary video https://www.youtube.com/watch?v=oabzn8k6am4 fuzzing usb  finding bugs this video discusses methods for identifying bugs in usb device drivers. 该视频讨论了识别usb设备驱动程序中的错误的方法。 # don't trust your usb! how to find bugs in usb device drivers record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: don't trust your usb! how to find bugs in usb device drivers resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=oabzn8k6am4 parent_primary_url: https://www.youtube.com/watch?v=oabzn8k6am4 source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2015: \"don't trust your usb! how to find bugs in usb device drivers\" by sergej schumilo, ralf spenneberg, and hendrik schwartke at black hat](https://www.youtube.com/watch?v=oabzn8k6am4) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use ap no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5a618c14bc4e5ad7",
      "item_id": "b71f5b133b1ed95c",
      "slug": "2012-finding-bugs-comprehensive-kernel-instrumentation-via-dynamic-binary-translation-primary-56f0b8a5",
      "year": 2012,
      "title": "Comprehensive Kernel Instrumentation via Dynamic Binary Translation",
      "item_title": "Comprehensive Kernel Instrumentation via Dynamic Binary Translation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "http://www.cs.toronto.edu/~peter/feiner_asplos_2012.pdf",
      "primary_url": "http://www.cs.toronto.edu/~peter/feiner_asplos_2012.pdf",
      "parent_primary_url": "http://www.cs.toronto.edu/~peter/feiner_asplos_2012.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2012-finding-bugs-comprehensive-kernel-instrumentation-via-dynamic-binary-translation-primary-56f0b8a5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Comprehensive Kernel Instrumentation via Dynamic Binary Translation record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Comprehensive Kernel Instrumentation via Dynamic Binary Translation resource_label: primary resource_type: paper resource_url: http://www.cs.toronto.edu/~peter/feiner_asplos_2012.pdf parent_primary_url: http://www.cs.toronto.edu/~peter/feiner_asplos_2012.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2012: \"Comprehensive Kernel Instrumentation via Dynamic Binary Translation\"](http://www.cs.toronto.edu/~peter/feiner_asplos_2012.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kerne",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "http://www.cs.toronto.edu/~peter/feiner_asplos_2012.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "http://www.cs.toronto.edu/~peter/feiner_asplos_2012.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "instrumentation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This paper presents a method for comprehensive kernel instrumentation using dynamic binary translation.",
      "summary_zh": "该论文提出了一种使用动态二进制翻译进行全面内核插装的方法。",
      "source_markdown": "[2012: \"Comprehensive Kernel Instrumentation via Dynamic Binary Translation\"](http://www.cs.toronto.edu/~peter/feiner_asplos_2012.pdf) [paper]",
      "search_text": "comprehensive kernel instrumentation via dynamic binary translation comprehensive kernel instrumentation via dynamic binary translation    finding bugs  finding bugs primary paper http://www.cs.toronto.edu/~peter/feiner_asplos_2012.pdf instrumentation kernel  finding bugs this paper presents a method for comprehensive kernel instrumentation using dynamic binary translation. 该论文提出了一种使用动态二进制翻译进行全面内核插装的方法。 # comprehensive kernel instrumentation via dynamic binary translation record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: comprehensive kernel instrumentation via dynamic binary translation resource_label: primary resource_type: paper resource_url: http://www.cs.toronto.edu/~peter/feiner_asplos_2012.pdf parent_primary_url: http://www.cs.toronto.edu/~peter/feiner_asplos_2012.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2012: \"comprehensive kernel instrumentation via dynamic binary translation\"](http://www.cs.toronto.edu/~peter/feiner_asplos_2012.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kerne no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e74c7283705b79c2",
      "item_id": "5a27b9b3a3f3f3cf",
      "slug": "2010-finding-bugs-automatic-bug-finding-techniques-for-linux-kernel-primary-5393c31d",
      "year": 2010,
      "title": "Automatic Bug-finding Techniques for Linux Kernel",
      "item_title": "Automatic Bug-finding Techniques for Linux Kernel",
      "authors": [
        "Jiri Slaby"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.fi.muni.cz/~xslaby/sklad/teze.pdf",
      "primary_url": "https://www.fi.muni.cz/~xslaby/sklad/teze.pdf",
      "parent_primary_url": "https://www.fi.muni.cz/~xslaby/sklad/teze.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2010-finding-bugs-automatic-bug-finding-techniques-for-linux-kernel-primary-5393c31d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Automatic Bug-finding Techniques for Linux Kernel record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Automatic Bug-finding Techniques for Linux Kernel resource_label: primary resource_type: paper resource_url: https://www.fi.muni.cz/~xslaby/sklad/teze.pdf parent_primary_url: https://www.fi.muni.cz/~xslaby/sklad/teze.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2010: \"Automatic Bug-finding Techniques for Linux Kernel\" by Jiri Slaby](https://www.fi.muni.cz/~xslaby/sklad/teze.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: ",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.fi.muni.cz/~xslaby/sklad/teze.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.fi.muni.cz/~xslaby/sklad/teze.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bug-finding",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This paper outlines automatic bug-finding techniques specifically for the Linux kernel.",
      "summary_zh": "该论文概述了专门针对Linux内核的自动错误查找技术。",
      "source_markdown": "[2010: \"Automatic Bug-finding Techniques for Linux Kernel\" by Jiri Slaby](https://www.fi.muni.cz/~xslaby/sklad/teze.pdf) [paper]",
      "search_text": "automatic bug-finding techniques for linux kernel automatic bug-finding techniques for linux kernel jiri slaby   finding bugs  finding bugs primary paper https://www.fi.muni.cz/~xslaby/sklad/teze.pdf bug-finding kernel  finding bugs this paper outlines automatic bug-finding techniques specifically for the linux kernel. 该论文概述了专门针对linux内核的自动错误查找技术。 # automatic bug-finding techniques for linux kernel record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: automatic bug-finding techniques for linux kernel resource_label: primary resource_type: paper resource_url: https://www.fi.muni.cz/~xslaby/sklad/teze.pdf parent_primary_url: https://www.fi.muni.cz/~xslaby/sklad/teze.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2010: \"automatic bug-finding techniques for linux kernel\" by jiri slaby](https://www.fi.muni.cz/~xslaby/sklad/teze.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ff3a05b7849d85ee",
      "item_id": "16fec9bfab2cba8d",
      "slug": "2009-finding-bugs-opensource-kernel-auditing-and-exploitation-primary-720da5fc",
      "year": 2009,
      "title": "Opensource Kernel Auditing and Exploitation",
      "item_title": "Opensource Kernel Auditing and Exploitation",
      "authors": [
        "Silvio Cesare at DEF CON"
      ],
      "cves": [],
      "tags": [],
      "section": "Finding Bugs",
      "subsection": "",
      "section_path": "Finding Bugs",
      "category": "Finding Bugs",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=sNh2TD6Tf9Q",
      "primary_url": "https://www.youtube.com/watch?v=sNh2TD6Tf9Q",
      "parent_primary_url": "https://www.youtube.com/watch?v=sNh2TD6Tf9Q",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#finding-bugs",
      "raw_path": "/raw/2009-finding-bugs-opensource-kernel-auditing-and-exploitation-primary-720da5fc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Opensource Kernel Auditing and Exploitation record_kind: linux-kernel-resource-url section: Finding Bugs subsection: none category: Finding Bugs item_title: Opensource Kernel Auditing and Exploitation resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=sNh2TD6Tf9Q parent_primary_url: https://www.youtube.com/watch?v=sNh2TD6Tf9Q source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2009: \"Opensource Kernel Auditing and Exploitation\" by Silvio Cesare at DEF CON](https://www.youtube.com/watch?v=sNh2TD6Tf9Q) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=sNh2TD6Tf9Q"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=sNh2TD6Tf9Q"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "auditing",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "finding bugs",
      "summary_en": "This video covers open-source kernel auditing and exploitation techniques.",
      "summary_zh": "该视频介绍了开源内核审计和利用技术。",
      "source_markdown": "[2009: \"Opensource Kernel Auditing and Exploitation\" by Silvio Cesare at DEF CON](https://www.youtube.com/watch?v=sNh2TD6Tf9Q) [video]",
      "search_text": "opensource kernel auditing and exploitation opensource kernel auditing and exploitation silvio cesare at def con   finding bugs  finding bugs primary video https://www.youtube.com/watch?v=snh2td6tf9q auditing exploitation  finding bugs this video covers open-source kernel auditing and exploitation techniques. 该视频介绍了开源内核审计和利用技术。 # opensource kernel auditing and exploitation record_kind: linux-kernel-resource-url section: finding bugs subsection: none category: finding bugs item_title: opensource kernel auditing and exploitation resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=snh2td6tf9q parent_primary_url: https://www.youtube.com/watch?v=snh2td6tf9q source_section_url: https://github.com/xairy/linux-kernel-exploitation#finding-bugs source_item: [2009: \"opensource kernel auditing and exploitation\" by silvio cesare at def con](https://www.youtube.com/watch?v=snh2td6tf9q) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7173db8c92936baf",
      "item_id": "733ad266bb994fcc",
      "slug": "undated-defensive-linux-kernel-defence-map-primary-4e0d87d2",
      "year": null,
      "title": "Linux Kernel Defence Map",
      "item_title": "Linux Kernel Defence Map",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/a13xp0p0v/linux-kernel-defence-map",
      "primary_url": "https://github.com/a13xp0p0v/linux-kernel-defence-map",
      "parent_primary_url": "https://github.com/a13xp0p0v/linux-kernel-defence-map",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/undated-defensive-linux-kernel-defence-map-primary-4e0d87d2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Defence Map record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Linux Kernel Defence Map resource_label: primary resource_type: code resource_url: https://github.com/a13xp0p0v/linux-kernel-defence-map parent_primary_url: https://github.com/a13xp0p0v/linux-kernel-defence-map source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [\"Linux Kernel Defence Map\" by Alexander Popov](https://github.com/a13xp0p0v/linux-kernel-defence-map) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/a13xp0p0v/linux-kernel-defence-map ",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/a13xp0p0v/linux-kernel-defence-map"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/a13xp0p0v/linux-kernel-defence-map"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/a13xp0p0v/linux-kernel-defence-map"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "defensive",
        "research",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "The Linux Kernel Defence Map offers resources for defensive research in kernel security.",
      "summary_zh": "Linux内核防御地图提供内核安全防御研究的资源。",
      "source_markdown": "[\"Linux Kernel Defence Map\" by Alexander Popov](https://github.com/a13xp0p0v/linux-kernel-defence-map)",
      "search_text": "linux kernel defence map linux kernel defence map alexander popov   defensive  defensive primary code https://github.com/a13xp0p0v/linux-kernel-defence-map defensive research kernel  defensive research the linux kernel defence map offers resources for defensive research in kernel security. linux内核防御地图提供内核安全防御研究的资源。 # linux kernel defence map record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: linux kernel defence map resource_label: primary resource_type: code resource_url: https://github.com/a13xp0p0v/linux-kernel-defence-map parent_primary_url: https://github.com/a13xp0p0v/linux-kernel-defence-map source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [\"linux kernel defence map\" by alexander popov](https://github.com/a13xp0p0v/linux-kernel-defence-map) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/a13xp0p0v/linux-kernel-defence-map  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "d43a9881c12b7288",
      "item_id": "69ec32a3459b44cf",
      "slug": "2025-defensive-enhancing-fineibt-primary-65fa55f0",
      "year": 2025,
      "title": "Enhancing FineIBT",
      "item_title": "Enhancing FineIBT",
      "authors": [
        "Jake Edge"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://lwn.net/Articles/1039633/",
      "primary_url": "https://lwn.net/Articles/1039633/",
      "parent_primary_url": "https://lwn.net/Articles/1039633/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2025-defensive-enhancing-fineibt-primary-65fa55f0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Enhancing FineIBT record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Enhancing FineIBT resource_label: primary resource_type: article resource_url: https://lwn.net/Articles/1039633/ parent_primary_url: https://lwn.net/Articles/1039633/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"Enhancing FineIBT\" by Jake Edge](https://lwn.net/Articles/1039633/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://lwn.net/Articles/1039633/ fetch_status: skipped fetch_note: original URL",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://lwn.net/Articles/1039633/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://lwn.net/Articles/1039633/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "hardening"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article discusses enhancements to FineIBT for kernel security.",
      "summary_zh": "该文章讨论了对FineIBT的增强以提高内核安全性。",
      "source_markdown": "[2025: \"Enhancing FineIBT\" by Jake Edge](https://lwn.net/Articles/1039633/) [article]",
      "search_text": "enhancing fineibt enhancing fineibt jake edge   defensive  defensive primary article https://lwn.net/articles/1039633/ kernel hardening  defensive research this article discusses enhancements to fineibt for kernel security. 该文章讨论了对fineibt的增强以提高内核安全性。 # enhancing fineibt record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: enhancing fineibt resource_label: primary resource_type: article resource_url: https://lwn.net/articles/1039633/ parent_primary_url: https://lwn.net/articles/1039633/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"enhancing fineibt\" by jake edge](https://lwn.net/articles/1039633/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://lwn.net/articles/1039633/ fetch_status: skipped fetch_note: original url no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c8d594c10019c58e",
      "item_id": "cdd2a73405133d06",
      "slug": "2025-defensive-linux-kernel-runtime-guard-lkrg-1-0-primary-a0e8ebf9",
      "year": 2025,
      "title": "Linux Kernel Runtime Guard (LKRG) 1.0",
      "item_title": "Linux Kernel Runtime Guard (LKRG) 1.0",
      "authors": [
        "Solar Designer"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.openwall.com/presentations/NullconBerlin2025-LKRG/",
      "primary_url": "https://www.openwall.com/presentations/NullconBerlin2025-LKRG/",
      "parent_primary_url": "https://www.openwall.com/presentations/NullconBerlin2025-LKRG/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2025-defensive-linux-kernel-runtime-guard-lkrg-1-0-primary-a0e8ebf9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Runtime Guard (LKRG) 1.0 record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Linux Kernel Runtime Guard (LKRG) 1.0 resource_label: primary resource_type: slides resource_url: https://www.openwall.com/presentations/NullconBerlin2025-LKRG/ parent_primary_url: https://www.openwall.com/presentations/NullconBerlin2025-LKRG/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"Linux Kernel Runtime Guard (LKRG) 1.0\" by Solar Designer](https://www.openwall.com/presentations/NullconBerlin2025-LKRG/) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_ex",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.openwall.com/presentations/NullconBerlin2025-LKRG/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.openwall.com/presentations/NullconBerlin2025-LKRG/"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "runtime",
        "guard"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This presentation introduces Linux Kernel Runtime Guard (LKRG) 1.0 for security enhancement.",
      "summary_zh": "该演示介绍了Linux内核运行时保护（LKRG）1.0以增强安全性。",
      "source_markdown": "[2025: \"Linux Kernel Runtime Guard (LKRG) 1.0\" by Solar Designer](https://www.openwall.com/presentations/NullconBerlin2025-LKRG/) [slides]",
      "search_text": "linux kernel runtime guard (lkrg) 1.0 linux kernel runtime guard (lkrg) 1.0 solar designer   defensive  defensive primary slides https://www.openwall.com/presentations/nullconberlin2025-lkrg/ runtime guard  defensive research this presentation introduces linux kernel runtime guard (lkrg) 1.0 for security enhancement. 该演示介绍了linux内核运行时保护（lkrg）1.0以增强安全性。 # linux kernel runtime guard (lkrg) 1.0 record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: linux kernel runtime guard (lkrg) 1.0 resource_label: primary resource_type: slides resource_url: https://www.openwall.com/presentations/nullconberlin2025-lkrg/ parent_primary_url: https://www.openwall.com/presentations/nullconberlin2025-lkrg/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"linux kernel runtime guard (lkrg) 1.0\" by solar designer](https://www.openwall.com/presentations/nullconberlin2025-lkrg/) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_ex no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7fef3fdec2374e47",
      "item_id": "95a41918757da495",
      "slug": "2025-defensive-prioritizing-the-linux-os-hardening-and-cve-mitigation-primary-b5b0cf49",
      "year": 2025,
      "title": "Prioritizing the Linux OS Hardening and CVE Mitigation",
      "item_title": "Prioritizing the Linux OS Hardening and CVE Mitigation",
      "authors": [
        "Baoli Zhang"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=tzi5yyRqFZw",
      "primary_url": "https://www.youtube.com/watch?v=tzi5yyRqFZw",
      "parent_primary_url": "https://www.youtube.com/watch?v=tzi5yyRqFZw",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2025-defensive-prioritizing-the-linux-os-hardening-and-cve-mitigation-primary-b5b0cf49.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Prioritizing the Linux OS Hardening and CVE Mitigation record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Prioritizing the Linux OS Hardening and CVE Mitigation resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=tzi5yyRqFZw parent_primary_url: https://www.youtube.com/watch?v=tzi5yyRqFZw source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"Prioritizing the Linux OS Hardening and CVE Mitigation\" by Baoli Zhang](https://www.youtube.com/watch?v=tzi5yyRqFZw) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link:",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=tzi5yyRqFZw"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=tzi5yyRqFZw"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "hardening",
        "CVE"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This video emphasizes the importance of Linux OS hardening and CVE mitigation strategies.",
      "summary_zh": "该视频强调了Linux操作系统加固和CVE缓解策略的重要性。",
      "source_markdown": "[2025: \"Prioritizing the Linux OS Hardening and CVE Mitigation\" by Baoli Zhang](https://www.youtube.com/watch?v=tzi5yyRqFZw) [video]",
      "search_text": "prioritizing the linux os hardening and cve mitigation prioritizing the linux os hardening and cve mitigation baoli zhang   defensive  defensive primary video https://www.youtube.com/watch?v=tzi5yyrqfzw hardening cve  defensive research this video emphasizes the importance of linux os hardening and cve mitigation strategies. 该视频强调了linux操作系统加固和cve缓解策略的重要性。 # prioritizing the linux os hardening and cve mitigation record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: prioritizing the linux os hardening and cve mitigation resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=tzi5yyrqfzw parent_primary_url: https://www.youtube.com/watch?v=tzi5yyrqfzw source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"prioritizing the linux os hardening and cve mitigation\" by baoli zhang](https://www.youtube.com/watch?v=tzi5yyrqfzw) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4d57ba6e0a389ea7",
      "item_id": "79a5ae26b32db041",
      "slug": "2025-defensive-kernel-hardening-with-protection-keys-primary-d8f7bbae",
      "year": 2025,
      "title": "Kernel Hardening With Protection Keys",
      "item_title": "Kernel Hardening With Protection Keys",
      "authors": [
        "Kevin Brodsky"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=MrA2nmMgu6I",
      "primary_url": "https://www.youtube.com/watch?v=MrA2nmMgu6I",
      "parent_primary_url": "https://www.youtube.com/watch?v=MrA2nmMgu6I",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2025-defensive-kernel-hardening-with-protection-keys-primary-d8f7bbae.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Hardening With Protection Keys record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Kernel Hardening With Protection Keys resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=MrA2nmMgu6I parent_primary_url: https://www.youtube.com/watch?v=MrA2nmMgu6I source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"Kernel Hardening With Protection Keys\" by Kevin Brodsky](https://www.youtube.com/watch?v=MrA2nmMgu6I) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [video] p",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=MrA2nmMgu6I"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=MrA2nmMgu6I"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "hardening",
        "protection"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This video discusses kernel hardening techniques using protection keys.",
      "summary_zh": "该视频讨论了使用保护密钥的内核加固技术。",
      "source_markdown": "[2025: \"Kernel Hardening With Protection Keys\" by Kevin Brodsky](https://www.youtube.com/watch?v=MrA2nmMgu6I) [video]",
      "search_text": "kernel hardening with protection keys kernel hardening with protection keys kevin brodsky   defensive  defensive primary video https://www.youtube.com/watch?v=mra2nmmgu6i hardening protection  defensive research this video discusses kernel hardening techniques using protection keys. 该视频讨论了使用保护密钥的内核加固技术。 # kernel hardening with protection keys record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: kernel hardening with protection keys resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=mra2nmmgu6i parent_primary_url: https://www.youtube.com/watch?v=mra2nmmgu6i source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"kernel hardening with protection keys\" by kevin brodsky](https://www.youtube.com/watch?v=mra2nmmgu6i) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [video] p no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "49f1b9a568eba493",
      "item_id": "a6c0e23a60edec9f",
      "slug": "2025-defensive-upstream-kernel-hardening-progress-on-enabling-wflex-array-member-not-at-end-primary-c3328842",
      "year": 2025,
      "title": "Upstream Kernel Hardening: Progress on Enabling -Wflex-array-member-not-at-end",
      "item_title": "Upstream Kernel Hardening: Progress on Enabling -Wflex-array-member-not-at-end",
      "authors": [
        "Gustavo A. R. Silva"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://embeddedor.com/slides/2025/osseu/osseu2025.pdf",
      "primary_url": "https://embeddedor.com/slides/2025/osseu/osseu2025.pdf",
      "parent_primary_url": "https://embeddedor.com/slides/2025/osseu/osseu2025.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2025-defensive-upstream-kernel-hardening-progress-on-enabling-wflex-array-member-not-at-end-primary-c3328842.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Upstream Kernel Hardening: Progress on Enabling -Wflex-array-member-not-at-end record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Upstream Kernel Hardening: Progress on Enabling -Wflex-array-member-not-at-end resource_label: primary resource_type: slides resource_url: https://embeddedor.com/slides/2025/osseu/osseu2025.pdf parent_primary_url: https://embeddedor.com/slides/2025/osseu/osseu2025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"Upstream Kernel Hardening: Progress on Enabling -Wflex-array-member-not-at-end\" by Gustavo A. R. Silva](https://embeddedor.com/slides/2025/osseu/osseu2025.pdf) [slides] [[video](https://www.youtube.com/watch?v=nz0GId_zsIk)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released A",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://embeddedor.com/slides/2025/osseu/osseu2025.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=nz0GId_zsIk"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://embeddedor.com/slides/2025/osseu/osseu2025.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=nz0GId_zsIk"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "hardening",
        "compiler"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This presentation details progress on enabling -Wflex-array-member-not-at-end for kernel hardening.",
      "summary_zh": "该演示详细介绍了在内核加固中启用-Wflex-array-member-not-at-end的进展。",
      "source_markdown": "[2025: \"Upstream Kernel Hardening: Progress on Enabling -Wflex-array-member-not-at-end\" by Gustavo A. R. Silva](https://embeddedor.com/slides/2025/osseu/osseu2025.pdf) [slides] [[video](https://www.youtube.com/watch?v=nz0GId_zsIk)]",
      "search_text": "upstream kernel hardening: progress on enabling -wflex-array-member-not-at-end upstream kernel hardening: progress on enabling -wflex-array-member-not-at-end gustavo a. r. silva   defensive  defensive primary slides https://embeddedor.com/slides/2025/osseu/osseu2025.pdf hardening compiler  defensive research this presentation details progress on enabling -wflex-array-member-not-at-end for kernel hardening. 该演示详细介绍了在内核加固中启用-wflex-array-member-not-at-end的进展。 # upstream kernel hardening: progress on enabling -wflex-array-member-not-at-end record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: upstream kernel hardening: progress on enabling -wflex-array-member-not-at-end resource_label: primary resource_type: slides resource_url: https://embeddedor.com/slides/2025/osseu/osseu2025.pdf parent_primary_url: https://embeddedor.com/slides/2025/osseu/osseu2025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"upstream kernel hardening: progress on enabling -wflex-array-member-not-at-end\" by gustavo a. r. silva](https://embeddedor.com/slides/2025/osseu/osseu2025.pdf) [slides] [[video](https://www.youtube.com/watch?v=nz0gid_zsik)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released a no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d47fb14ddfddd771",
      "item_id": "a6c0e23a60edec9f",
      "slug": "2025-defensive-upstream-kernel-hardening-progress-on-enabling-wflex-array-member-not-at-end-video-3e2d16d4",
      "year": 2025,
      "title": "Upstream Kernel Hardening: Progress on Enabling -Wflex-array-member-not-at-end · video",
      "item_title": "Upstream Kernel Hardening: Progress on Enabling -Wflex-array-member-not-at-end",
      "authors": [
        "Gustavo A. R. Silva"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=nz0GId_zsIk",
      "primary_url": "https://www.youtube.com/watch?v=nz0GId_zsIk",
      "parent_primary_url": "https://embeddedor.com/slides/2025/osseu/osseu2025.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2025-defensive-upstream-kernel-hardening-progress-on-enabling-wflex-array-member-not-at-end-video-3e2d16d4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Upstream Kernel Hardening: Progress on Enabling -Wflex-array-member-not-at-end · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Upstream Kernel Hardening: Progress on Enabling -Wflex-array-member-not-at-end resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=nz0GId_zsIk parent_primary_url: https://embeddedor.com/slides/2025/osseu/osseu2025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"Upstream Kernel Hardening: Progress on Enabling -Wflex-array-member-not-at-end\" by Gustavo A. R. Silva](https://embeddedor.com/slides/2025/osseu/osseu2025.pdf) [slides] [[video](https://www.youtube.com/watch?v=nz0GId_zsIk)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://embeddedor.com/slides/2025/osseu/osseu2025.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=nz0GId_zsIk"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://embeddedor.com/slides/2025/osseu/osseu2025.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=nz0GId_zsIk"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "hardening",
        "compiler"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This video discusses the progress on enabling -Wflex-array-member-not-at-end for kernel hardening.",
      "summary_zh": "该视频讨论了在内核加固中启用-Wflex-array-member-not-at-end的进展。",
      "source_markdown": "[2025: \"Upstream Kernel Hardening: Progress on Enabling -Wflex-array-member-not-at-end\" by Gustavo A. R. Silva](https://embeddedor.com/slides/2025/osseu/osseu2025.pdf) [slides] [[video](https://www.youtube.com/watch?v=nz0GId_zsIk)]",
      "search_text": "upstream kernel hardening: progress on enabling -wflex-array-member-not-at-end · video upstream kernel hardening: progress on enabling -wflex-array-member-not-at-end gustavo a. r. silva   defensive  defensive video video https://www.youtube.com/watch?v=nz0gid_zsik hardening compiler  defensive research this video discusses the progress on enabling -wflex-array-member-not-at-end for kernel hardening. 该视频讨论了在内核加固中启用-wflex-array-member-not-at-end的进展。 # upstream kernel hardening: progress on enabling -wflex-array-member-not-at-end · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: upstream kernel hardening: progress on enabling -wflex-array-member-not-at-end resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=nz0gid_zsik parent_primary_url: https://embeddedor.com/slides/2025/osseu/osseu2025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"upstream kernel hardening: progress on enabling -wflex-array-member-not-at-end\" by gustavo a. r. silva](https://embeddedor.com/slides/2025/osseu/osseu2025.pdf) [slides] [[video](https://www.youtube.com/watch?v=nz0gid_zsik)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "398ab475202903aa",
      "item_id": "e52c189a6c932357",
      "slug": "2025-defensive-linux-kernel-hardening-ten-years-deep-primary-3569b9a3",
      "year": 2025,
      "title": "Linux Kernel Hardening: Ten Years Deep",
      "item_title": "Linux Kernel Hardening: Ten Years Deep",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://outflux.net/slides/2025/lss/kspp-decade.pdf",
      "primary_url": "https://outflux.net/slides/2025/lss/kspp-decade.pdf",
      "parent_primary_url": "https://outflux.net/slides/2025/lss/kspp-decade.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2025-defensive-linux-kernel-hardening-ten-years-deep-primary-3569b9a3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Hardening: Ten Years Deep record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Linux Kernel Hardening: Ten Years Deep resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2025/lss/kspp-decade.pdf parent_primary_url: https://outflux.net/slides/2025/lss/kspp-decade.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"Linux Kernel Hardening: Ten Years Deep\" by Kees Cook](https://outflux.net/slides/2025/lss/kspp-decade.pdf) [slides] [[video](https://www.youtube.com/watch?v=c_NxzSRG50g)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false h",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2025/lss/kspp-decade.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=c_NxzSRG50g"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2025/lss/kspp-decade.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=c_NxzSRG50g"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "hardening",
        "history"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This presentation reviews ten years of Linux kernel hardening efforts and their impact.",
      "summary_zh": "该演示回顾了十年来Linux内核加固工作的努力及其影响。",
      "source_markdown": "[2025: \"Linux Kernel Hardening: Ten Years Deep\" by Kees Cook](https://outflux.net/slides/2025/lss/kspp-decade.pdf) [slides] [[video](https://www.youtube.com/watch?v=c_NxzSRG50g)]",
      "search_text": "linux kernel hardening: ten years deep linux kernel hardening: ten years deep kees cook   defensive  defensive primary slides https://outflux.net/slides/2025/lss/kspp-decade.pdf hardening history  defensive research this presentation reviews ten years of linux kernel hardening efforts and their impact. 该演示回顾了十年来linux内核加固工作的努力及其影响。 # linux kernel hardening: ten years deep record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: linux kernel hardening: ten years deep resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2025/lss/kspp-decade.pdf parent_primary_url: https://outflux.net/slides/2025/lss/kspp-decade.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"linux kernel hardening: ten years deep\" by kees cook](https://outflux.net/slides/2025/lss/kspp-decade.pdf) [slides] [[video](https://www.youtube.com/watch?v=c_nxzsrg50g)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false h no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "32086fb088eb0b9f",
      "item_id": "e52c189a6c932357",
      "slug": "2025-defensive-linux-kernel-hardening-ten-years-deep-video-895f4e41",
      "year": 2025,
      "title": "Linux Kernel Hardening: Ten Years Deep · video",
      "item_title": "Linux Kernel Hardening: Ten Years Deep",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=c_NxzSRG50g",
      "primary_url": "https://www.youtube.com/watch?v=c_NxzSRG50g",
      "parent_primary_url": "https://outflux.net/slides/2025/lss/kspp-decade.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2025-defensive-linux-kernel-hardening-ten-years-deep-video-895f4e41.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Hardening: Ten Years Deep · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Linux Kernel Hardening: Ten Years Deep resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=c_NxzSRG50g parent_primary_url: https://outflux.net/slides/2025/lss/kspp-decade.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"Linux Kernel Hardening: Ten Years Deep\" by Kees Cook](https://outflux.net/slides/2025/lss/kspp-decade.pdf) [slides] [[video](https://www.youtube.com/watch?v=c_NxzSRG50g)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2025/lss/kspp-decade.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=c_NxzSRG50g"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2025/lss/kspp-decade.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=c_NxzSRG50g"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "hardening",
        "history"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This video reviews ten years of Linux kernel hardening efforts and their impact.",
      "summary_zh": "该视频回顾了十年来Linux内核加固工作的努力及其影响。",
      "source_markdown": "[2025: \"Linux Kernel Hardening: Ten Years Deep\" by Kees Cook](https://outflux.net/slides/2025/lss/kspp-decade.pdf) [slides] [[video](https://www.youtube.com/watch?v=c_NxzSRG50g)]",
      "search_text": "linux kernel hardening: ten years deep · video linux kernel hardening: ten years deep kees cook   defensive  defensive video video https://www.youtube.com/watch?v=c_nxzsrg50g hardening history  defensive research this video reviews ten years of linux kernel hardening efforts and their impact. 该视频回顾了十年来linux内核加固工作的努力及其影响。 # linux kernel hardening: ten years deep · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: linux kernel hardening: ten years deep resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=c_nxzsrg50g parent_primary_url: https://outflux.net/slides/2025/lss/kspp-decade.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"linux kernel hardening: ten years deep\" by kees cook](https://outflux.net/slides/2025/lss/kspp-decade.pdf) [slides] [[video](https://www.youtube.com/watch?v=c_nxzsrg50g)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3ea29f7a5a38bcce",
      "item_id": "858fff99eada70bc",
      "slug": "2025-defensive-iubik-isolating-user-bytes-in-commodity-operating-system-kernels-via-memory-tagging-extensions-",
      "year": 2025,
      "title": "IUBIK: Isolating User Bytes in Commodity Operating System Kernels via Memory Tagging Extensions",
      "item_title": "IUBIK: Isolating User Bytes in Commodity Operating System Kernels via Memory Tagging Extensions",
      "authors": [
        "Marius Momeu et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.computer.org/csdl/proceedings-article/sp/2025/223600a829/26hiTXrQMjS",
      "primary_url": "https://www.computer.org/csdl/proceedings-article/sp/2025/223600a829/26hiTXrQMjS",
      "parent_primary_url": "https://www.computer.org/csdl/proceedings-article/sp/2025/223600a829/26hiTXrQMjS",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2025-defensive-iubik-isolating-user-bytes-in-commodity-operating-system-kernels-via-memory-tagging-extensions-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# IUBIK: Isolating User Bytes in Commodity Operating System Kernels via Memory Tagging Extensions record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: IUBIK: Isolating User Bytes in Commodity Operating System Kernels via Memory Tagging Extensions resource_label: primary resource_type: paper resource_url: https://www.computer.org/csdl/proceedings-article/sp/2025/223600a829/26hiTXrQMjS parent_primary_url: https://www.computer.org/csdl/proceedings-article/sp/2025/223600a829/26hiTXrQMjS source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"IUBIK: Isolating User Bytes in Commodity Operating System Kernels via Memory Tagging Extensions\" by Marius Momeu et al.](https://www.computer.org/csdl/proceedings-article/sp/2025/223600a829/26hiTXrQMjS) [paper] cves: none android_impact_status: no android_",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.computer.org/csdl/proceedings-article/sp/2025/223600a829/26hiTXrQMjS"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.computer.org/csdl/proceedings-article/sp/2025/223600a829/26hiTXrQMjS"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory",
        "tagging"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper presents IUBIK, a method for isolating user bytes in kernels via memory tagging extensions.",
      "summary_zh": "该论文介绍了IUBIK，一种通过内存标记扩展在内核中隔离用户字节的方法。",
      "source_markdown": "[2025: \"IUBIK: Isolating User Bytes in Commodity Operating System Kernels via Memory Tagging Extensions\" by Marius Momeu et al.](https://www.computer.org/csdl/proceedings-article/sp/2025/223600a829/26hiTXrQMjS) [paper]",
      "search_text": "iubik: isolating user bytes in commodity operating system kernels via memory tagging extensions iubik: isolating user bytes in commodity operating system kernels via memory tagging extensions marius momeu et al.   defensive  defensive primary paper https://www.computer.org/csdl/proceedings-article/sp/2025/223600a829/26hitxrqmjs memory tagging  defensive research this paper presents iubik, a method for isolating user bytes in kernels via memory tagging extensions. 该论文介绍了iubik，一种通过内存标记扩展在内核中隔离用户字节的方法。 # iubik: isolating user bytes in commodity operating system kernels via memory tagging extensions record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: iubik: isolating user bytes in commodity operating system kernels via memory tagging extensions resource_label: primary resource_type: paper resource_url: https://www.computer.org/csdl/proceedings-article/sp/2025/223600a829/26hitxrqmjs parent_primary_url: https://www.computer.org/csdl/proceedings-article/sp/2025/223600a829/26hitxrqmjs source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"iubik: isolating user bytes in commodity operating system kernels via memory tagging extensions\" by marius momeu et al.](https://www.computer.org/csdl/proceedings-article/sp/2025/223600a829/26hitxrqmjs) [paper] cves: none android_impact_status: no android_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "57f0b46e055caca7",
      "item_id": "f16663e219c1fd5f",
      "slug": "2025-defensive-linux-kernel-rust-module-for-rootkit-detection-primary-ee56c029",
      "year": 2025,
      "title": "Linux kernel Rust module for rootkit detection",
      "item_title": "Linux kernel Rust module for rootkit detection",
      "authors": [
        "Antoine Doglioli"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/",
      "primary_url": "https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/",
      "parent_primary_url": "https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2025-defensive-linux-kernel-rust-module-for-rootkit-detection-primary-ee56c029.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux kernel Rust module for rootkit detection record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Linux kernel Rust module for rootkit detection resource_label: primary resource_type: article resource_url: https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/ parent_primary_url: https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"Linux kernel Rust module for rootkit detection\" by Antoine Doglioli](https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/) [article] [[code](https://github.com/thalium/rkchk)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no io",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/thalium/rkchk"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/thalium/rkchk"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/thalium/rkchk"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "rootkit",
        "detection"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article discusses a Rust module for detecting rootkits in the Linux kernel.",
      "summary_zh": "该文章讨论了用于检测Linux内核中rootkit的Rust模块。",
      "source_markdown": "[2025: \"Linux kernel Rust module for rootkit detection\" by Antoine Doglioli](https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/) [article] [[code](https://github.com/thalium/rkchk)]",
      "search_text": "linux kernel rust module for rootkit detection linux kernel rust module for rootkit detection antoine doglioli   defensive  defensive primary article https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/ rootkit detection  defensive research this article discusses a rust module for detecting rootkits in the linux kernel. 该文章讨论了用于检测linux内核中rootkit的rust模块。 # linux kernel rust module for rootkit detection record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: linux kernel rust module for rootkit detection resource_label: primary resource_type: article resource_url: https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/ parent_primary_url: https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"linux kernel rust module for rootkit detection\" by antoine doglioli](https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/) [article] [[code](https://github.com/thalium/rkchk)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no io no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "87520ca2f740bfb0",
      "item_id": "f16663e219c1fd5f",
      "slug": "2025-defensive-linux-kernel-rust-module-for-rootkit-detection-code-c7525669",
      "year": 2025,
      "title": "Linux kernel Rust module for rootkit detection · code",
      "item_title": "Linux kernel Rust module for rootkit detection",
      "authors": [
        "Antoine Doglioli"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/thalium/rkchk",
      "primary_url": "https://github.com/thalium/rkchk",
      "parent_primary_url": "https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2025-defensive-linux-kernel-rust-module-for-rootkit-detection-code-c7525669.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux kernel Rust module for rootkit detection · code record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Linux kernel Rust module for rootkit detection resource_label: code resource_type: code resource_url: https://github.com/thalium/rkchk parent_primary_url: https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"Linux kernel Rust module for rootkit detection\" by Antoine Doglioli](https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/) [article] [[code](https://github.com/thalium/rkchk)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use ",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/thalium/rkchk"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/thalium/rkchk"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/thalium/rkchk"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "rootkit",
        "detection"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This code repository provides a Rust module for detecting rootkits in the Linux kernel.",
      "summary_zh": "该代码库提供了用于检测Linux内核中rootkit的Rust模块。",
      "source_markdown": "[2025: \"Linux kernel Rust module for rootkit detection\" by Antoine Doglioli](https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/) [article] [[code](https://github.com/thalium/rkchk)]",
      "search_text": "linux kernel rust module for rootkit detection · code linux kernel rust module for rootkit detection antoine doglioli   defensive  defensive code code https://github.com/thalium/rkchk rootkit detection  defensive research this code repository provides a rust module for detecting rootkits in the linux kernel. 该代码库提供了用于检测linux内核中rootkit的rust模块。 # linux kernel rust module for rootkit detection · code record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: linux kernel rust module for rootkit detection resource_label: code resource_type: code resource_url: https://github.com/thalium/rkchk parent_primary_url: https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"linux kernel rust module for rootkit detection\" by antoine doglioli](https://blog.thalium.re/posts/linux-kernel-rust-module-for-rootkit-detection/) [article] [[code](https://github.com/thalium/rkchk)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "4175c9903380f284",
      "item_id": "b7624434794f589d",
      "slug": "2025-defensive-enhancing-spatial-safety-fixing-thousands-of-wflex-array-member-not-at-end-warnings-primary-c79",
      "year": 2025,
      "title": "Enhancing spatial safety: fixing thousands of -Wflex-array-member-not-at-end warnings",
      "item_title": "Enhancing spatial safety: fixing thousands of -Wflex-array-member-not-at-end warnings",
      "authors": [
        "Gustavo A. R. Silva"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://embeddedor.com/slides/2025/eo/eo2025.pdf",
      "primary_url": "https://embeddedor.com/slides/2025/eo/eo2025.pdf",
      "parent_primary_url": "https://embeddedor.com/slides/2025/eo/eo2025.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2025-defensive-enhancing-spatial-safety-fixing-thousands-of-wflex-array-member-not-at-end-warnings-primary-c79.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Enhancing spatial safety: fixing thousands of -Wflex-array-member-not-at-end warnings record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Enhancing spatial safety: fixing thousands of -Wflex-array-member-not-at-end warnings resource_label: primary resource_type: slides resource_url: https://embeddedor.com/slides/2025/eo/eo2025.pdf parent_primary_url: https://embeddedor.com/slides/2025/eo/eo2025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"Enhancing spatial safety: fixing thousands of -Wflex-array-member-not-at-end warnings\" by Gustavo A. R. Silva](https://embeddedor.com/slides/2025/eo/eo2025.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_rea",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://embeddedor.com/slides/2025/eo/eo2025.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://embeddedor.com/slides/2025/eo/eo2025.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "safety",
        "compiler"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This presentation discusses fixing thousands of -Wflex-array-member-not-at-end warnings for spatial safety.",
      "summary_zh": "该演示讨论了修复数千个-Wflex-array-member-not-at-end警告以提高空间安全性。",
      "source_markdown": "[2025: \"Enhancing spatial safety: fixing thousands of -Wflex-array-member-not-at-end warnings\" by Gustavo A. R. Silva](https://embeddedor.com/slides/2025/eo/eo2025.pdf) [slides]",
      "search_text": "enhancing spatial safety: fixing thousands of -wflex-array-member-not-at-end warnings enhancing spatial safety: fixing thousands of -wflex-array-member-not-at-end warnings gustavo a. r. silva   defensive  defensive primary slides https://embeddedor.com/slides/2025/eo/eo2025.pdf safety compiler  defensive research this presentation discusses fixing thousands of -wflex-array-member-not-at-end warnings for spatial safety. 该演示讨论了修复数千个-wflex-array-member-not-at-end警告以提高空间安全性。 # enhancing spatial safety: fixing thousands of -wflex-array-member-not-at-end warnings record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: enhancing spatial safety: fixing thousands of -wflex-array-member-not-at-end warnings resource_label: primary resource_type: slides resource_url: https://embeddedor.com/slides/2025/eo/eo2025.pdf parent_primary_url: https://embeddedor.com/slides/2025/eo/eo2025.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2025: \"enhancing spatial safety: fixing thousands of -wflex-array-member-not-at-end warnings\" by gustavo a. r. silva](https://embeddedor.com/slides/2025/eo/eo2025.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_rea no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f9c9861a302c1c90",
      "item_id": "5978111310ab0aee",
      "slug": "2024-defensive-kernjc-automated-vulnerable-environment-generation-for-linux-kernel-vulnerabilities-paper-slide",
      "year": 2024,
      "title": "KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities\"] [paper] [[slides",
      "item_title": "KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities\"] [paper] [[slides",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://i.blackhat.com/Asia-25/Asia-25-Ruan-KernJC.pdf",
      "primary_url": "https://i.blackhat.com/Asia-25/Asia-25-Ruan-KernJC.pdf",
      "parent_primary_url": "https://i.blackhat.com/Asia-25/Asia-25-Ruan-KernJC.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-kernjc-automated-vulnerable-environment-generation-for-linux-kernel-vulnerabilities-paper-slide.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities\"] [paper] [[slides record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities\"] [paper] [[slides resource_label: primary resource_type: paper resource_url: https://i.blackhat.com/Asia-25/Asia-25-Ruan-KernJC.pdf parent_primary_url: https://i.blackhat.com/Asia-25/Asia-25-Ruan-KernJC.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities\"] [paper] [[slides](https://i.blackhat.com/Asia-25/Asia-25-Ruan-KernJC.pdf)] [[code](https://github.com/NUS-Curiosity/KernJC)] cves: none android_impact_status: no android_impact_reason: Not enough evidence ",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://i.blackhat.com/Asia-25/Asia-25-Ruan-KernJC.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/NUS-Curiosity/KernJC"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://i.blackhat.com/Asia-25/Asia-25-Ruan-KernJC.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/NUS-Curiosity/KernJC"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/NUS-Curiosity/KernJC"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "automation",
        "vulnerabilities"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper introduces KernJC, a tool for automated vulnerable environment generation for Linux kernel vulnerabilities.",
      "summary_zh": "该论文介绍了KernJC，一种用于Linux内核漏洞的自动化脆弱环境生成工具。",
      "source_markdown": "[2024: \"KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities\"] [paper] [[slides](https://i.blackhat.com/Asia-25/Asia-25-Ruan-KernJC.pdf)] [[code](https://github.com/NUS-Curiosity/KernJC)]",
      "search_text": "kernjc: automated vulnerable environment generation for linux kernel vulnerabilities\"] [paper] [[slides kernjc: automated vulnerable environment generation for linux kernel vulnerabilities\"] [paper] [[slides    defensive  defensive primary paper https://i.blackhat.com/asia-25/asia-25-ruan-kernjc.pdf automation vulnerabilities  defensive research this paper introduces kernjc, a tool for automated vulnerable environment generation for linux kernel vulnerabilities. 该论文介绍了kernjc，一种用于linux内核漏洞的自动化脆弱环境生成工具。 # kernjc: automated vulnerable environment generation for linux kernel vulnerabilities\"] [paper] [[slides record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: kernjc: automated vulnerable environment generation for linux kernel vulnerabilities\"] [paper] [[slides resource_label: primary resource_type: paper resource_url: https://i.blackhat.com/asia-25/asia-25-ruan-kernjc.pdf parent_primary_url: https://i.blackhat.com/asia-25/asia-25-ruan-kernjc.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"kernjc: automated vulnerable environment generation for linux kernel vulnerabilities\"] [paper] [[slides](https://i.blackhat.com/asia-25/asia-25-ruan-kernjc.pdf)] [[code](https://github.com/nus-curiosity/kernjc)] cves: none android_impact_status: no android_impact_reason: not enough evidence  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "082e174fb7081c3c",
      "item_id": "5978111310ab0aee",
      "slug": "2024-defensive-kernjc-automated-vulnerable-environment-generation-for-linux-kernel-vulnerabilities-paper-slide-2",
      "year": 2024,
      "title": "KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities\"] [paper] [[slides · code",
      "item_title": "KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities\"] [paper] [[slides",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/NUS-Curiosity/KernJC",
      "primary_url": "https://github.com/NUS-Curiosity/KernJC",
      "parent_primary_url": "https://i.blackhat.com/Asia-25/Asia-25-Ruan-KernJC.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-kernjc-automated-vulnerable-environment-generation-for-linux-kernel-vulnerabilities-paper-slide-2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities\"] [paper] [[slides · code record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities\"] [paper] [[slides resource_label: code resource_type: code resource_url: https://github.com/NUS-Curiosity/KernJC parent_primary_url: https://i.blackhat.com/Asia-25/Asia-25-Ruan-KernJC.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities\"] [paper] [[slides](https://i.blackhat.com/Asia-25/Asia-25-Ruan-KernJC.pdf)] [[code](https://github.com/NUS-Curiosity/KernJC)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this re",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://i.blackhat.com/Asia-25/Asia-25-Ruan-KernJC.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/NUS-Curiosity/KernJC"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://i.blackhat.com/Asia-25/Asia-25-Ruan-KernJC.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/NUS-Curiosity/KernJC"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/NUS-Curiosity/KernJC"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "automation",
        "vulnerabilities"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This code repository provides KernJC, a tool for automated vulnerable environment generation for Linux kernel vulnerabilities.",
      "summary_zh": "该代码库提供了KernJC，一种用于Linux内核漏洞的自动化脆弱环境生成工具。",
      "source_markdown": "[2024: \"KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities\"] [paper] [[slides](https://i.blackhat.com/Asia-25/Asia-25-Ruan-KernJC.pdf)] [[code](https://github.com/NUS-Curiosity/KernJC)]",
      "search_text": "kernjc: automated vulnerable environment generation for linux kernel vulnerabilities\"] [paper] [[slides · code kernjc: automated vulnerable environment generation for linux kernel vulnerabilities\"] [paper] [[slides    defensive  defensive code code https://github.com/nus-curiosity/kernjc automation vulnerabilities  defensive research this code repository provides kernjc, a tool for automated vulnerable environment generation for linux kernel vulnerabilities. 该代码库提供了kernjc，一种用于linux内核漏洞的自动化脆弱环境生成工具。 # kernjc: automated vulnerable environment generation for linux kernel vulnerabilities\"] [paper] [[slides · code record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: kernjc: automated vulnerable environment generation for linux kernel vulnerabilities\"] [paper] [[slides resource_label: code resource_type: code resource_url: https://github.com/nus-curiosity/kernjc parent_primary_url: https://i.blackhat.com/asia-25/asia-25-ruan-kernjc.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"kernjc: automated vulnerable environment generation for linux kernel vulnerabilities\"] [paper] [[slides](https://i.blackhat.com/asia-25/asia-25-ruan-kernjc.pdf)] [[code](https://github.com/nus-curiosity/kernjc)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this re no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "9341314252d659a3",
      "item_id": "70adbb9e78fbd447",
      "slug": "2024-defensive-diving-into-linux-kernel-security-primary-d118a3c1",
      "year": 2024,
      "title": "Diving into Linux kernel security",
      "item_title": "Diving into Linux kernel security",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://a13xp0p0v.github.io/img/Alexander_Popov-H2HC-2024.pdf",
      "primary_url": "https://a13xp0p0v.github.io/img/Alexander_Popov-H2HC-2024.pdf",
      "parent_primary_url": "https://a13xp0p0v.github.io/img/Alexander_Popov-H2HC-2024.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-diving-into-linux-kernel-security-primary-d118a3c1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Diving into Linux kernel security record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Diving into Linux kernel security resource_label: primary resource_type: slides resource_url: https://a13xp0p0v.github.io/img/Alexander_Popov-H2HC-2024.pdf parent_primary_url: https://a13xp0p0v.github.io/img/Alexander_Popov-H2HC-2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Diving into Linux kernel security\" by Alexander Popov](https://a13xp0p0v.github.io/img/Alexander_Popov-H2HC-2024.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: fal",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://a13xp0p0v.github.io/img/Alexander_Popov-H2HC-2024.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://a13xp0p0v.github.io/img/Alexander_Popov-H2HC-2024.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://a13xp0p0v.github.io/img/Alexander_Popov-H2HC-2024.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This presentation dives into Linux kernel security and its challenges.",
      "summary_zh": "该演示深入探讨了Linux内核安全及其挑战。",
      "source_markdown": "[2024: \"Diving into Linux kernel security\" by Alexander Popov](https://a13xp0p0v.github.io/img/Alexander_Popov-H2HC-2024.pdf) [slides]",
      "search_text": "diving into linux kernel security diving into linux kernel security alexander popov   defensive  defensive primary slides https://a13xp0p0v.github.io/img/alexander_popov-h2hc-2024.pdf security kernel  defensive research this presentation dives into linux kernel security and its challenges. 该演示深入探讨了linux内核安全及其挑战。 # diving into linux kernel security record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: diving into linux kernel security resource_label: primary resource_type: slides resource_url: https://a13xp0p0v.github.io/img/alexander_popov-h2hc-2024.pdf parent_primary_url: https://a13xp0p0v.github.io/img/alexander_popov-h2hc-2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"diving into linux kernel security\" by alexander popov](https://a13xp0p0v.github.io/img/alexander_popov-h2hc-2024.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: fal no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "2abcbf83446fbc48",
      "item_id": "e495a7705b5fae7f",
      "slug": "2024-defensive-a-decade-of-low-hanging-fruit-in-the-linux-kernel-primary-29951346",
      "year": 2024,
      "title": "A Decade of Low-hanging Fruit in the Linux Kernel",
      "item_title": "A Decade of Low-hanging Fruit in the Linux Kernel",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://outflux.net/slides/2024/bsidespdx/decade.pdf",
      "primary_url": "https://outflux.net/slides/2024/bsidespdx/decade.pdf",
      "parent_primary_url": "https://outflux.net/slides/2024/bsidespdx/decade.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-a-decade-of-low-hanging-fruit-in-the-linux-kernel-primary-29951346.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Decade of Low-hanging Fruit in the Linux Kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: A Decade of Low-hanging Fruit in the Linux Kernel resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2024/bsidespdx/decade.pdf parent_primary_url: https://outflux.net/slides/2024/bsidespdx/decade.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"A Decade of Low-hanging Fruit in the Linux Kernel\" by Kees Cook](https://outflux.net/slides/2024/bsidespdx/decade.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_e",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2024/bsidespdx/decade.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2024/bsidespdx/decade.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "kernel",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This presentation discusses common vulnerabilities in the Linux kernel over the past decade.",
      "summary_zh": "本演讲讨论了过去十年Linux内核中的常见漏洞。",
      "source_markdown": "[2024: \"A Decade of Low-hanging Fruit in the Linux Kernel\" by Kees Cook](https://outflux.net/slides/2024/bsidespdx/decade.pdf) [slides]",
      "search_text": "a decade of low-hanging fruit in the linux kernel a decade of low-hanging fruit in the linux kernel kees cook   defensive  defensive primary slides https://outflux.net/slides/2024/bsidespdx/decade.pdf vulnerability kernel defensive  defensive research this presentation discusses common vulnerabilities in the linux kernel over the past decade. 本演讲讨论了过去十年linux内核中的常见漏洞。 # a decade of low-hanging fruit in the linux kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: a decade of low-hanging fruit in the linux kernel resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2024/bsidespdx/decade.pdf parent_primary_url: https://outflux.net/slides/2024/bsidespdx/decade.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"a decade of low-hanging fruit in the linux kernel\" by kees cook](https://outflux.net/slides/2024/bsidespdx/decade.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_e no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4a0787faa3aa16b1",
      "item_id": "4b0aebcf6f5f8e32",
      "slug": "2024-defensive-an-adventure-with-formal-verification-of-linux-kernel-code-primary-2d3aa279",
      "year": 2024,
      "title": "An adventure with formal verification of Linux kernel code",
      "item_title": "An adventure with formal verification of Linux kernel code",
      "authors": [
        "Julia Lawall"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://drive.google.com/file/d/1EWDPz9vUZF7qjk-f8fCP7lUMu4iSfstz/view",
      "primary_url": "https://drive.google.com/file/d/1EWDPz9vUZF7qjk-f8fCP7lUMu4iSfstz/view",
      "parent_primary_url": "https://drive.google.com/file/d/1EWDPz9vUZF7qjk-f8fCP7lUMu4iSfstz/view",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-an-adventure-with-formal-verification-of-linux-kernel-code-primary-2d3aa279.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An adventure with formal verification of Linux kernel code record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: An adventure with formal verification of Linux kernel code resource_label: primary resource_type: slides resource_url: https://drive.google.com/file/d/1EWDPz9vUZF7qjk-f8fCP7lUMu4iSfstz/view parent_primary_url: https://drive.google.com/file/d/1EWDPz9vUZF7qjk-f8fCP7lUMu4iSfstz/view source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"An adventure with formal verification of Linux kernel code\" by Julia Lawall](https://drive.google.com/file/d/1EWDPz9vUZF7qjk-f8fCP7lUMu4iSfstz/view) [slides] [[video](https://www.youtube.com/watch?v=n1Wqz1pQsY0)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://drive.google.com/file/d/1EWDPz9vUZF7qjk-f8fCP7lUMu4iSfstz/view"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=n1Wqz1pQsY0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://drive.google.com/file/d/1EWDPz9vUZF7qjk-f8fCP7lUMu4iSfstz/view"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=n1Wqz1pQsY0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "formal verification",
        "kernel",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "The slides cover the formal verification process applied to Linux kernel code.",
      "summary_zh": "这些幻灯片涵盖了应用于Linux内核代码的形式验证过程。",
      "source_markdown": "[2024: \"An adventure with formal verification of Linux kernel code\" by Julia Lawall](https://drive.google.com/file/d/1EWDPz9vUZF7qjk-f8fCP7lUMu4iSfstz/view) [slides] [[video](https://www.youtube.com/watch?v=n1Wqz1pQsY0)]",
      "search_text": "an adventure with formal verification of linux kernel code an adventure with formal verification of linux kernel code julia lawall   defensive  defensive primary slides https://drive.google.com/file/d/1ewdpz9vuzf7qjk-f8fcp7lumu4isfstz/view formal verification kernel defensive  defensive research the slides cover the formal verification process applied to linux kernel code. 这些幻灯片涵盖了应用于linux内核代码的形式验证过程。 # an adventure with formal verification of linux kernel code record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: an adventure with formal verification of linux kernel code resource_label: primary resource_type: slides resource_url: https://drive.google.com/file/d/1ewdpz9vuzf7qjk-f8fcp7lumu4isfstz/view parent_primary_url: https://drive.google.com/file/d/1ewdpz9vuzf7qjk-f8fcp7lumu4isfstz/view source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"an adventure with formal verification of linux kernel code\" by julia lawall](https://drive.google.com/file/d/1ewdpz9vuzf7qjk-f8fcp7lumu4isfstz/view) [slides] [[video](https://www.youtube.com/watch?v=n1wqz1pqsy0)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bd80493d6519d7bb",
      "item_id": "4b0aebcf6f5f8e32",
      "slug": "2024-defensive-an-adventure-with-formal-verification-of-linux-kernel-code-video-d91485a2",
      "year": 2024,
      "title": "An adventure with formal verification of Linux kernel code · video",
      "item_title": "An adventure with formal verification of Linux kernel code",
      "authors": [
        "Julia Lawall"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=n1Wqz1pQsY0",
      "primary_url": "https://www.youtube.com/watch?v=n1Wqz1pQsY0",
      "parent_primary_url": "https://drive.google.com/file/d/1EWDPz9vUZF7qjk-f8fCP7lUMu4iSfstz/view",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-an-adventure-with-formal-verification-of-linux-kernel-code-video-d91485a2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An adventure with formal verification of Linux kernel code · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: An adventure with formal verification of Linux kernel code resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=n1Wqz1pQsY0 parent_primary_url: https://drive.google.com/file/d/1EWDPz9vUZF7qjk-f8fCP7lUMu4iSfstz/view source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"An adventure with formal verification of Linux kernel code\" by Julia Lawall](https://drive.google.com/file/d/1EWDPz9vUZF7qjk-f8fCP7lUMu4iSfstz/view) [slides] [[video](https://www.youtube.com/watch?v=n1Wqz1pQsY0)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://drive.google.com/file/d/1EWDPz9vUZF7qjk-f8fCP7lUMu4iSfstz/view"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=n1Wqz1pQsY0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://drive.google.com/file/d/1EWDPz9vUZF7qjk-f8fCP7lUMu4iSfstz/view"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=n1Wqz1pQsY0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "formal verification",
        "kernel",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This video presents the formal verification of Linux kernel code.",
      "summary_zh": "该视频展示了Linux内核代码的形式验证。",
      "source_markdown": "[2024: \"An adventure with formal verification of Linux kernel code\" by Julia Lawall](https://drive.google.com/file/d/1EWDPz9vUZF7qjk-f8fCP7lUMu4iSfstz/view) [slides] [[video](https://www.youtube.com/watch?v=n1Wqz1pQsY0)]",
      "search_text": "an adventure with formal verification of linux kernel code · video an adventure with formal verification of linux kernel code julia lawall   defensive  defensive video video https://www.youtube.com/watch?v=n1wqz1pqsy0 formal verification kernel defensive  defensive research this video presents the formal verification of linux kernel code. 该视频展示了linux内核代码的形式验证。 # an adventure with formal verification of linux kernel code · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: an adventure with formal verification of linux kernel code resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=n1wqz1pqsy0 parent_primary_url: https://drive.google.com/file/d/1ewdpz9vuzf7qjk-f8fcp7lumu4isfstz/view source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"an adventure with formal verification of linux kernel code\" by julia lawall](https://drive.google.com/file/d/1ewdpz9vuzf7qjk-f8fcp7lumu4isfstz/view) [slides] [[video](https://www.youtube.com/watch?v=n1wqz1pqsy0)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f38813b7dcb8de60",
      "item_id": "b72b111d513d52ed",
      "slug": "2024-defensive-diving-into-the-kernel-mitigations-primary-4fa0e47a",
      "year": 2024,
      "title": "Diving into the kernel mitigations",
      "item_title": "Diving into the kernel mitigations",
      "authors": [
        "Breno Leitao"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=srPeMl9FZI8",
      "primary_url": "https://www.youtube.com/watch?v=srPeMl9FZI8",
      "parent_primary_url": "https://www.youtube.com/watch?v=srPeMl9FZI8",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-diving-into-the-kernel-mitigations-primary-4fa0e47a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Diving into the kernel mitigations record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Diving into the kernel mitigations resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=srPeMl9FZI8 parent_primary_url: https://www.youtube.com/watch?v=srPeMl9FZI8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Diving into the kernel mitigations\" by Breno Leitao](https://www.youtube.com/watch?v=srPeMl9FZI8) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [video] primary: ht",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=srPeMl9FZI8"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=srPeMl9FZI8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel mitigations",
        "security",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "A video discussing various kernel mitigations for enhancing security.",
      "summary_zh": "一段讨论增强安全性的各种内核缓解措施的视频。",
      "source_markdown": "[2024: \"Diving into the kernel mitigations\" by Breno Leitao](https://www.youtube.com/watch?v=srPeMl9FZI8) [video]",
      "search_text": "diving into the kernel mitigations diving into the kernel mitigations breno leitao   defensive  defensive primary video https://www.youtube.com/watch?v=srpeml9fzi8 kernel mitigations security defensive  defensive research a video discussing various kernel mitigations for enhancing security. 一段讨论增强安全性的各种内核缓解措施的视频。 # diving into the kernel mitigations record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: diving into the kernel mitigations resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=srpeml9fzi8 parent_primary_url: https://www.youtube.com/watch?v=srpeml9fzi8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"diving into the kernel mitigations\" by breno leitao](https://www.youtube.com/watch?v=srpeml9fzi8) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [video] primary: ht no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "adeb4c16f372f8c9",
      "item_id": "86806a51c55ef356",
      "slug": "2024-defensive-security-features-status-update-primary-a677f527",
      "year": 2024,
      "title": "Security Features status update",
      "item_title": "Security Features status update",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://lpc.events/event/18/contributions/1920/attachments/1547/3228/Security%20Features%20status%20update.pdf",
      "primary_url": "https://lpc.events/event/18/contributions/1920/attachments/1547/3228/Security%20Features%20status%20update.pdf",
      "parent_primary_url": "https://lpc.events/event/18/contributions/1920/attachments/1547/3228/Security%20Features%20status%20update.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-security-features-status-update-primary-a677f527.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Security Features status update record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Security Features status update resource_label: primary resource_type: slides resource_url: https://lpc.events/event/18/contributions/1920/attachments/1547/3228/Security%20Features%20status%20update.pdf parent_primary_url: https://lpc.events/event/18/contributions/1920/attachments/1547/3228/Security%20Features%20status%20update.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Security Features status update\" by Kees Cook](https://lpc.events/event/18/contributions/1920/attachments/1547/3228/Security%20Features%20status%20update.pdf) [slides] [[video](https://www.youtube.com/watch?v=68PZz_9cPms)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource m",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/18/contributions/1920/attachments/1547/3228/Security%20Features%20status%20update.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=68PZz_9cPms"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/18/contributions/1920/attachments/1547/3228/Security%20Features%20status%20update.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=68PZz_9cPms"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security features",
        "kernel",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This presentation provides an update on the status of security features in the Linux kernel.",
      "summary_zh": "本演讲提供了Linux内核安全功能状态的更新。",
      "source_markdown": "[2024: \"Security Features status update\" by Kees Cook](https://lpc.events/event/18/contributions/1920/attachments/1547/3228/Security%20Features%20status%20update.pdf) [slides] [[video](https://www.youtube.com/watch?v=68PZz_9cPms)]",
      "search_text": "security features status update security features status update kees cook   defensive  defensive primary slides https://lpc.events/event/18/contributions/1920/attachments/1547/3228/security%20features%20status%20update.pdf security features kernel defensive  defensive research this presentation provides an update on the status of security features in the linux kernel. 本演讲提供了linux内核安全功能状态的更新。 # security features status update record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: security features status update resource_label: primary resource_type: slides resource_url: https://lpc.events/event/18/contributions/1920/attachments/1547/3228/security%20features%20status%20update.pdf parent_primary_url: https://lpc.events/event/18/contributions/1920/attachments/1547/3228/security%20features%20status%20update.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"security features status update\" by kees cook](https://lpc.events/event/18/contributions/1920/attachments/1547/3228/security%20features%20status%20update.pdf) [slides] [[video](https://www.youtube.com/watch?v=68pzz_9cpms)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource m no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e54a37742f9a7053",
      "item_id": "86806a51c55ef356",
      "slug": "2024-defensive-security-features-status-update-video-296c8446",
      "year": 2024,
      "title": "Security Features status update · video",
      "item_title": "Security Features status update",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=68PZz_9cPms",
      "primary_url": "https://www.youtube.com/watch?v=68PZz_9cPms",
      "parent_primary_url": "https://lpc.events/event/18/contributions/1920/attachments/1547/3228/Security%20Features%20status%20update.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-security-features-status-update-video-296c8446.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Security Features status update · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Security Features status update resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=68PZz_9cPms parent_primary_url: https://lpc.events/event/18/contributions/1920/attachments/1547/3228/Security%20Features%20status%20update.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Security Features status update\" by Kees Cook](https://lpc.events/event/18/contributions/1920/attachments/1547/3228/Security%20Features%20status%20update.pdf) [slides] [[video](https://www.youtube.com/watch?v=68PZz_9cPms)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_imp",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/18/contributions/1920/attachments/1547/3228/Security%20Features%20status%20update.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=68PZz_9cPms"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/18/contributions/1920/attachments/1547/3228/Security%20Features%20status%20update.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=68PZz_9cPms"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security features",
        "kernel",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "A video update on the status of security features in the Linux kernel.",
      "summary_zh": "关于Linux内核安全功能状态的视频更新。",
      "source_markdown": "[2024: \"Security Features status update\" by Kees Cook](https://lpc.events/event/18/contributions/1920/attachments/1547/3228/Security%20Features%20status%20update.pdf) [slides] [[video](https://www.youtube.com/watch?v=68PZz_9cPms)]",
      "search_text": "security features status update · video security features status update kees cook   defensive  defensive video video https://www.youtube.com/watch?v=68pzz_9cpms security features kernel defensive  defensive research a video update on the status of security features in the linux kernel. 关于linux内核安全功能状态的视频更新。 # security features status update · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: security features status update resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=68pzz_9cpms parent_primary_url: https://lpc.events/event/18/contributions/1920/attachments/1547/3228/security%20features%20status%20update.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"security features status update\" by kees cook](https://lpc.events/event/18/contributions/1920/attachments/1547/3228/security%20features%20status%20update.pdf) [slides] [[video](https://www.youtube.com/watch?v=68pzz_9cpms)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_imp no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "cd247b92faa3edbd",
      "item_id": "d82b1c5ed2d496ec",
      "slug": "2024-defensive-restricting-unprivileged-user-namespaces-in-ubuntu-primary-e146b500",
      "year": 2024,
      "title": "Restricting Unprivileged User Namespaces In Ubuntu",
      "item_title": "Restricting Unprivileged User Namespaces In Ubuntu",
      "authors": [
        "John Johansen",
        "Maxime Belair"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://static.sched.com/hosted_files/lsseu2024/ed/Restricting%20Unprivileged%20User%20Namespaces%20In%20Ubuntu.pdf",
      "primary_url": "https://static.sched.com/hosted_files/lsseu2024/ed/Restricting%20Unprivileged%20User%20Namespaces%20In%20Ubuntu.pdf",
      "parent_primary_url": "https://static.sched.com/hosted_files/lsseu2024/ed/Restricting%20Unprivileged%20User%20Namespaces%20In%20Ubuntu.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-restricting-unprivileged-user-namespaces-in-ubuntu-primary-e146b500.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Restricting Unprivileged User Namespaces In Ubuntu record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Restricting Unprivileged User Namespaces In Ubuntu resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/lsseu2024/ed/Restricting%20Unprivileged%20User%20Namespaces%20In%20Ubuntu.pdf parent_primary_url: https://static.sched.com/hosted_files/lsseu2024/ed/Restricting%20Unprivileged%20User%20Namespaces%20In%20Ubuntu.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Restricting Unprivileged User Namespaces In Ubuntu\" by John Johansen and Maxime Belair](https://static.sched.com/hosted_files/lsseu2024/ed/Restricting%20Unprivileged%20User%20Namespaces%20In%20Ubuntu.pdf) [slides] [[video](https://www.youtube.com/watch?v=GcVjng8WVeg)] cves: ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lsseu2024/ed/Restricting%20Unprivileged%20User%20Namespaces%20In%20Ubuntu.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=GcVjng8WVeg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lsseu2024/ed/Restricting%20Unprivileged%20User%20Namespaces%20In%20Ubuntu.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=GcVjng8WVeg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "user namespaces",
        "Ubuntu",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This presentation discusses the restrictions on unprivileged user namespaces in Ubuntu.",
      "summary_zh": "本演讲讨论了Ubuntu中对非特权用户命名空间的限制。",
      "source_markdown": "[2024: \"Restricting Unprivileged User Namespaces In Ubuntu\" by John Johansen and Maxime Belair](https://static.sched.com/hosted_files/lsseu2024/ed/Restricting%20Unprivileged%20User%20Namespaces%20In%20Ubuntu.pdf) [slides] [[video](https://www.youtube.com/watch?v=GcVjng8WVeg)]",
      "search_text": "restricting unprivileged user namespaces in ubuntu restricting unprivileged user namespaces in ubuntu john johansen maxime belair   defensive  defensive primary slides https://static.sched.com/hosted_files/lsseu2024/ed/restricting%20unprivileged%20user%20namespaces%20in%20ubuntu.pdf user namespaces ubuntu defensive  defensive research this presentation discusses the restrictions on unprivileged user namespaces in ubuntu. 本演讲讨论了ubuntu中对非特权用户命名空间的限制。 # restricting unprivileged user namespaces in ubuntu record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: restricting unprivileged user namespaces in ubuntu resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/lsseu2024/ed/restricting%20unprivileged%20user%20namespaces%20in%20ubuntu.pdf parent_primary_url: https://static.sched.com/hosted_files/lsseu2024/ed/restricting%20unprivileged%20user%20namespaces%20in%20ubuntu.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"restricting unprivileged user namespaces in ubuntu\" by john johansen and maxime belair](https://static.sched.com/hosted_files/lsseu2024/ed/restricting%20unprivileged%20user%20namespaces%20in%20ubuntu.pdf) [slides] [[video](https://www.youtube.com/watch?v=gcvjng8wveg)] cves:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7a9c4446108b533d",
      "item_id": "d82b1c5ed2d496ec",
      "slug": "2024-defensive-restricting-unprivileged-user-namespaces-in-ubuntu-video-656440c7",
      "year": 2024,
      "title": "Restricting Unprivileged User Namespaces In Ubuntu · video",
      "item_title": "Restricting Unprivileged User Namespaces In Ubuntu",
      "authors": [
        "John Johansen",
        "Maxime Belair"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=GcVjng8WVeg",
      "primary_url": "https://www.youtube.com/watch?v=GcVjng8WVeg",
      "parent_primary_url": "https://static.sched.com/hosted_files/lsseu2024/ed/Restricting%20Unprivileged%20User%20Namespaces%20In%20Ubuntu.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-restricting-unprivileged-user-namespaces-in-ubuntu-video-656440c7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Restricting Unprivileged User Namespaces In Ubuntu · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Restricting Unprivileged User Namespaces In Ubuntu resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=GcVjng8WVeg parent_primary_url: https://static.sched.com/hosted_files/lsseu2024/ed/Restricting%20Unprivileged%20User%20Namespaces%20In%20Ubuntu.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Restricting Unprivileged User Namespaces In Ubuntu\" by John Johansen and Maxime Belair](https://static.sched.com/hosted_files/lsseu2024/ed/Restricting%20Unprivileged%20User%20Namespaces%20In%20Ubuntu.pdf) [slides] [[video](https://www.youtube.com/watch?v=GcVjng8WVeg)] cves: none android_impact_status: no android_impact_reason: Not enough ev",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lsseu2024/ed/Restricting%20Unprivileged%20User%20Namespaces%20In%20Ubuntu.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=GcVjng8WVeg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lsseu2024/ed/Restricting%20Unprivileged%20User%20Namespaces%20In%20Ubuntu.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=GcVjng8WVeg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "user namespaces",
        "Ubuntu",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "A video presentation on restricting unprivileged user namespaces in Ubuntu.",
      "summary_zh": "关于在Ubuntu中限制非特权用户命名空间的视频演讲。",
      "source_markdown": "[2024: \"Restricting Unprivileged User Namespaces In Ubuntu\" by John Johansen and Maxime Belair](https://static.sched.com/hosted_files/lsseu2024/ed/Restricting%20Unprivileged%20User%20Namespaces%20In%20Ubuntu.pdf) [slides] [[video](https://www.youtube.com/watch?v=GcVjng8WVeg)]",
      "search_text": "restricting unprivileged user namespaces in ubuntu · video restricting unprivileged user namespaces in ubuntu john johansen maxime belair   defensive  defensive video video https://www.youtube.com/watch?v=gcvjng8wveg user namespaces ubuntu defensive  defensive research a video presentation on restricting unprivileged user namespaces in ubuntu. 关于在ubuntu中限制非特权用户命名空间的视频演讲。 # restricting unprivileged user namespaces in ubuntu · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: restricting unprivileged user namespaces in ubuntu resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=gcvjng8wveg parent_primary_url: https://static.sched.com/hosted_files/lsseu2024/ed/restricting%20unprivileged%20user%20namespaces%20in%20ubuntu.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"restricting unprivileged user namespaces in ubuntu\" by john johansen and maxime belair](https://static.sched.com/hosted_files/lsseu2024/ed/restricting%20unprivileged%20user%20namespaces%20in%20ubuntu.pdf) [slides] [[video](https://www.youtube.com/watch?v=gcvjng8wveg)] cves: none android_impact_status: no android_impact_reason: not enough ev no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b6919321c3b9eb13",
      "item_id": "7e6e38ab921796b7",
      "slug": "2024-defensive-enhancing-spatial-safety-fixing-thousands-of-wflex-array-member-not-at-end-warnings-primary-de5",
      "year": 2024,
      "title": "Enhancing spatial safety: fixing thousands of -Wflex-array-member-not-at-end warnings",
      "item_title": "Enhancing spatial safety: fixing thousands of -Wflex-array-member-not-at-end warnings",
      "authors": [
        "Gustavo A. R. Silva"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://lpc.events/event/18/contributions/1722/attachments/1591/3303/Wfamnae_lpceu2024.pdf",
      "primary_url": "https://lpc.events/event/18/contributions/1722/attachments/1591/3303/Wfamnae_lpceu2024.pdf",
      "parent_primary_url": "https://lpc.events/event/18/contributions/1722/attachments/1591/3303/Wfamnae_lpceu2024.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-enhancing-spatial-safety-fixing-thousands-of-wflex-array-member-not-at-end-warnings-primary-de5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Enhancing spatial safety: fixing thousands of -Wflex-array-member-not-at-end warnings record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Enhancing spatial safety: fixing thousands of -Wflex-array-member-not-at-end warnings resource_label: primary resource_type: slides resource_url: https://lpc.events/event/18/contributions/1722/attachments/1591/3303/Wfamnae_lpceu2024.pdf parent_primary_url: https://lpc.events/event/18/contributions/1722/attachments/1591/3303/Wfamnae_lpceu2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Enhancing spatial safety: fixing thousands of -Wflex-array-member-not-at-end warnings\" by Gustavo A. R. Silva](https://lpc.events/event/18/contributions/1722/attachments/1591/3303/Wfamnae_lpceu2024.pdf) [slides] [[video](https://www.youtube.com/watch?v=k4",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/18/contributions/1722/attachments/1591/3303/Wfamnae_lpceu2024.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=k4wX5OgbhAQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/18/contributions/1722/attachments/1591/3303/Wfamnae_lpceu2024.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=k4wX5OgbhAQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "spatial safety",
        "kernel",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This presentation addresses fixing warnings related to flex-array member placement in the kernel.",
      "summary_zh": "本演讲解决了与内核中flex-array成员位置相关的警告修复问题。",
      "source_markdown": "[2024: \"Enhancing spatial safety: fixing thousands of -Wflex-array-member-not-at-end warnings\" by Gustavo A. R. Silva](https://lpc.events/event/18/contributions/1722/attachments/1591/3303/Wfamnae_lpceu2024.pdf) [slides] [[video](https://www.youtube.com/watch?v=k4wX5OgbhAQ)]",
      "search_text": "enhancing spatial safety: fixing thousands of -wflex-array-member-not-at-end warnings enhancing spatial safety: fixing thousands of -wflex-array-member-not-at-end warnings gustavo a. r. silva   defensive  defensive primary slides https://lpc.events/event/18/contributions/1722/attachments/1591/3303/wfamnae_lpceu2024.pdf spatial safety kernel defensive  defensive research this presentation addresses fixing warnings related to flex-array member placement in the kernel. 本演讲解决了与内核中flex-array成员位置相关的警告修复问题。 # enhancing spatial safety: fixing thousands of -wflex-array-member-not-at-end warnings record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: enhancing spatial safety: fixing thousands of -wflex-array-member-not-at-end warnings resource_label: primary resource_type: slides resource_url: https://lpc.events/event/18/contributions/1722/attachments/1591/3303/wfamnae_lpceu2024.pdf parent_primary_url: https://lpc.events/event/18/contributions/1722/attachments/1591/3303/wfamnae_lpceu2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"enhancing spatial safety: fixing thousands of -wflex-array-member-not-at-end warnings\" by gustavo a. r. silva](https://lpc.events/event/18/contributions/1722/attachments/1591/3303/wfamnae_lpceu2024.pdf) [slides] [[video](https://www.youtube.com/watch?v=k4 no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "8b014c1c13068a2f",
      "item_id": "7e6e38ab921796b7",
      "slug": "2024-defensive-enhancing-spatial-safety-fixing-thousands-of-wflex-array-member-not-at-end-warnings-video-0bf1c",
      "year": 2024,
      "title": "Enhancing spatial safety: fixing thousands of -Wflex-array-member-not-at-end warnings · video",
      "item_title": "Enhancing spatial safety: fixing thousands of -Wflex-array-member-not-at-end warnings",
      "authors": [
        "Gustavo A. R. Silva"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=k4wX5OgbhAQ",
      "primary_url": "https://www.youtube.com/watch?v=k4wX5OgbhAQ",
      "parent_primary_url": "https://lpc.events/event/18/contributions/1722/attachments/1591/3303/Wfamnae_lpceu2024.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-enhancing-spatial-safety-fixing-thousands-of-wflex-array-member-not-at-end-warnings-video-0bf1c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Enhancing spatial safety: fixing thousands of -Wflex-array-member-not-at-end warnings · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Enhancing spatial safety: fixing thousands of -Wflex-array-member-not-at-end warnings resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=k4wX5OgbhAQ parent_primary_url: https://lpc.events/event/18/contributions/1722/attachments/1591/3303/Wfamnae_lpceu2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Enhancing spatial safety: fixing thousands of -Wflex-array-member-not-at-end warnings\" by Gustavo A. R. Silva](https://lpc.events/event/18/contributions/1722/attachments/1591/3303/Wfamnae_lpceu2024.pdf) [slides] [[video](https://www.youtube.com/watch?v=k4wX5OgbhAQ)] cves: none android_impact_stat",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/18/contributions/1722/attachments/1591/3303/Wfamnae_lpceu2024.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=k4wX5OgbhAQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/18/contributions/1722/attachments/1591/3303/Wfamnae_lpceu2024.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=k4wX5OgbhAQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "spatial safety",
        "kernel",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "A video discussing the fixes for flex-array member placement warnings in the kernel.",
      "summary_zh": "一段讨论内核中flex-array成员位置警告修复的视频。",
      "source_markdown": "[2024: \"Enhancing spatial safety: fixing thousands of -Wflex-array-member-not-at-end warnings\" by Gustavo A. R. Silva](https://lpc.events/event/18/contributions/1722/attachments/1591/3303/Wfamnae_lpceu2024.pdf) [slides] [[video](https://www.youtube.com/watch?v=k4wX5OgbhAQ)]",
      "search_text": "enhancing spatial safety: fixing thousands of -wflex-array-member-not-at-end warnings · video enhancing spatial safety: fixing thousands of -wflex-array-member-not-at-end warnings gustavo a. r. silva   defensive  defensive video video https://www.youtube.com/watch?v=k4wx5ogbhaq spatial safety kernel defensive  defensive research a video discussing the fixes for flex-array member placement warnings in the kernel. 一段讨论内核中flex-array成员位置警告修复的视频。 # enhancing spatial safety: fixing thousands of -wflex-array-member-not-at-end warnings · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: enhancing spatial safety: fixing thousands of -wflex-array-member-not-at-end warnings resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=k4wx5ogbhaq parent_primary_url: https://lpc.events/event/18/contributions/1722/attachments/1591/3303/wfamnae_lpceu2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"enhancing spatial safety: fixing thousands of -wflex-array-member-not-at-end warnings\" by gustavo a. r. silva](https://lpc.events/event/18/contributions/1722/attachments/1591/3303/wfamnae_lpceu2024.pdf) [slides] [[video](https://www.youtube.com/watch?v=k4wx5ogbhaq)] cves: none android_impact_stat no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "745964cd0e683bbd",
      "item_id": "d5d87bd9f114a40f",
      "slug": "2024-defensive-challenges-and-innovations-towards-spatial-safety-in-the-linux-kernel-primary-02facf9c",
      "year": 2024,
      "title": "Challenges and Innovations Towards Spatial Safety in the Linux Kernel",
      "item_title": "Challenges and Innovations Towards Spatial Safety in the Linux Kernel",
      "authors": [
        "Gustavo A. R. Silva"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://embeddedor.com/slides/2024/lceu/lceu2024.pdf",
      "primary_url": "https://embeddedor.com/slides/2024/lceu/lceu2024.pdf",
      "parent_primary_url": "https://embeddedor.com/slides/2024/lceu/lceu2024.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-challenges-and-innovations-towards-spatial-safety-in-the-linux-kernel-primary-02facf9c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Challenges and Innovations Towards Spatial Safety in the Linux Kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Challenges and Innovations Towards Spatial Safety in the Linux Kernel resource_label: primary resource_type: slides resource_url: https://embeddedor.com/slides/2024/lceu/lceu2024.pdf parent_primary_url: https://embeddedor.com/slides/2024/lceu/lceu2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Challenges and Innovations Towards Spatial Safety in the Linux Kernel\" by Gustavo A. R. Silva](https://embeddedor.com/slides/2024/lceu/lceu2024.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Appl",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://embeddedor.com/slides/2024/lceu/lceu2024.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://embeddedor.com/slides/2024/lceu/lceu2024.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "spatial safety",
        "kernel",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This presentation explores challenges and innovations for spatial safety in the Linux kernel.",
      "summary_zh": "本演讲探讨了Linux内核中空间安全的挑战和创新。",
      "source_markdown": "[2024: \"Challenges and Innovations Towards Spatial Safety in the Linux Kernel\" by Gustavo A. R. Silva](https://embeddedor.com/slides/2024/lceu/lceu2024.pdf) [slides]",
      "search_text": "challenges and innovations towards spatial safety in the linux kernel challenges and innovations towards spatial safety in the linux kernel gustavo a. r. silva   defensive  defensive primary slides https://embeddedor.com/slides/2024/lceu/lceu2024.pdf spatial safety kernel defensive  defensive research this presentation explores challenges and innovations for spatial safety in the linux kernel. 本演讲探讨了linux内核中空间安全的挑战和创新。 # challenges and innovations towards spatial safety in the linux kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: challenges and innovations towards spatial safety in the linux kernel resource_label: primary resource_type: slides resource_url: https://embeddedor.com/slides/2024/lceu/lceu2024.pdf parent_primary_url: https://embeddedor.com/slides/2024/lceu/lceu2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"challenges and innovations towards spatial safety in the linux kernel\" by gustavo a. r. silva](https://embeddedor.com/slides/2024/lceu/lceu2024.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use appl no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e80debc1cf24de36",
      "item_id": "11f6e74fe02141e5",
      "slug": "2024-defensive-agni-fast-formal-verification-of-the-verifier-s-range-analysis-primary-cf02bd48",
      "year": 2024,
      "title": "Agni: Fast Formal Verification of the Verifier's Range Analysis",
      "item_title": "Agni: Fast Formal Verification of the Verifier's Range Analysis",
      "authors": [
        "Paul Chaignon"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Agni.pdf",
      "primary_url": "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Agni.pdf",
      "parent_primary_url": "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Agni.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-agni-fast-formal-verification-of-the-verifier-s-range-analysis-primary-cf02bd48.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Agni: Fast Formal Verification of the Verifier's Range Analysis record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Agni: Fast Formal Verification of the Verifier's Range Analysis resource_label: primary resource_type: slides resource_url: https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Agni.pdf parent_primary_url: https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Agni.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Agni: Fast Formal Verification of the Verifier's Range Analysis\" by Paul Chaignon](https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Agni.pdf) [slides] [[video](https://www.youtube.com/watch?v=3qH77qCl3SQ)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android de",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Agni.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=3qH77qCl3SQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Agni.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=3qH77qCl3SQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Agni.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "formal verification",
        "kernel",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "The slides present a fast formal verification method for the verifier's range analysis.",
      "summary_zh": "这些幻灯片展示了验证器范围分析的快速形式验证方法。",
      "source_markdown": "[2024: \"Agni: Fast Formal Verification of the Verifier's Range Analysis\" by Paul Chaignon](https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Agni.pdf) [slides] [[video](https://www.youtube.com/watch?v=3qH77qCl3SQ)]",
      "search_text": "agni: fast formal verification of the verifier's range analysis agni: fast formal verification of the verifier's range analysis paul chaignon   defensive  defensive primary slides https://pchaigno.github.io/assets/linux%20plumbers%202024%20agni.pdf formal verification kernel defensive  defensive research the slides present a fast formal verification method for the verifier's range analysis. 这些幻灯片展示了验证器范围分析的快速形式验证方法。 # agni: fast formal verification of the verifier's range analysis record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: agni: fast formal verification of the verifier's range analysis resource_label: primary resource_type: slides resource_url: https://pchaigno.github.io/assets/linux%20plumbers%202024%20agni.pdf parent_primary_url: https://pchaigno.github.io/assets/linux%20plumbers%202024%20agni.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"agni: fast formal verification of the verifier's range analysis\" by paul chaignon](https://pchaigno.github.io/assets/linux%20plumbers%202024%20agni.pdf) [slides] [[video](https://www.youtube.com/watch?v=3qh77qcl3sq)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android de no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "8d896c4ae8154e9c",
      "item_id": "11f6e74fe02141e5",
      "slug": "2024-defensive-agni-fast-formal-verification-of-the-verifier-s-range-analysis-video-7e4b5909",
      "year": 2024,
      "title": "Agni: Fast Formal Verification of the Verifier's Range Analysis · video",
      "item_title": "Agni: Fast Formal Verification of the Verifier's Range Analysis",
      "authors": [
        "Paul Chaignon"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=3qH77qCl3SQ",
      "primary_url": "https://www.youtube.com/watch?v=3qH77qCl3SQ",
      "parent_primary_url": "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Agni.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-agni-fast-formal-verification-of-the-verifier-s-range-analysis-video-7e4b5909.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Agni: Fast Formal Verification of the Verifier's Range Analysis · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Agni: Fast Formal Verification of the Verifier's Range Analysis resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=3qH77qCl3SQ parent_primary_url: https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Agni.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Agni: Fast Formal Verification of the Verifier's Range Analysis\" by Paul Chaignon](https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Agni.pdf) [slides] [[video](https://www.youtube.com/watch?v=3qH77qCl3SQ)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_st",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Agni.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=3qH77qCl3SQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Agni.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=3qH77qCl3SQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Agni.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "formal verification",
        "kernel",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "A video on fast formal verification of the verifier's range analysis.",
      "summary_zh": "关于验证器范围分析的快速形式验证的视频。",
      "source_markdown": "[2024: \"Agni: Fast Formal Verification of the Verifier's Range Analysis\" by Paul Chaignon](https://pchaigno.github.io/assets/Linux%20Plumbers%202024%20Agni.pdf) [slides] [[video](https://www.youtube.com/watch?v=3qH77qCl3SQ)]",
      "search_text": "agni: fast formal verification of the verifier's range analysis · video agni: fast formal verification of the verifier's range analysis paul chaignon   defensive  defensive video video https://www.youtube.com/watch?v=3qh77qcl3sq formal verification kernel defensive  defensive research a video on fast formal verification of the verifier's range analysis. 关于验证器范围分析的快速形式验证的视频。 # agni: fast formal verification of the verifier's range analysis · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: agni: fast formal verification of the verifier's range analysis resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=3qh77qcl3sq parent_primary_url: https://pchaigno.github.io/assets/linux%20plumbers%202024%20agni.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"agni: fast formal verification of the verifier's range analysis\" by paul chaignon](https://pchaigno.github.io/assets/linux%20plumbers%202024%20agni.pdf) [slides] [[video](https://www.youtube.com/watch?v=3qh77qcl3sq)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_st no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "17708c82b3fed31d",
      "item_id": "162dbc3a66d78c88",
      "slug": "2024-defensive-lazy-abstraction-refinement-with-proof-primary-43abb4cf",
      "year": 2024,
      "title": "Lazy Abstraction Refinement with Proof",
      "item_title": "Lazy Abstraction Refinement with Proof",
      "authors": [
        "Hao Sun",
        "Zhendong Su"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://lpc.events/event/18/contributions/1939/attachments/1593/3305/LPC%20'24%20(Hao%20Sun",
      "primary_url": "https://lpc.events/event/18/contributions/1939/attachments/1593/3305/LPC%20'24%20(Hao%20Sun",
      "parent_primary_url": "https://lpc.events/event/18/contributions/1939/attachments/1593/3305/LPC%20'24%20(Hao%20Sun",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-lazy-abstraction-refinement-with-proof-primary-43abb4cf.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Lazy Abstraction Refinement with Proof record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Lazy Abstraction Refinement with Proof resource_label: primary resource_type: article resource_url: https://lpc.events/event/18/contributions/1939/attachments/1593/3305/LPC%20'24%20(Hao%20Sun parent_primary_url: https://lpc.events/event/18/contributions/1939/attachments/1593/3305/LPC%20'24%20(Hao%20Sun source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Lazy Abstraction Refinement with Proof\" by Hao Sun and Zhendong Su](https://lpc.events/event/18/contributions/1939/attachments/1593/3305/LPC%20'24%20(Hao%20Sun).pdf) [[video](https://www.youtube.com/watch?v=Lz-efC4KAl0)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android d",
      "link_types": [
        "article",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://lpc.events/event/18/contributions/1939/attachments/1593/3305/LPC%20'24%20(Hao%20Sun"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Lz-efC4KAl0"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://lpc.events/event/18/contributions/1939/attachments/1593/3305/LPC%20'24%20(Hao%20Sun"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Lz-efC4KAl0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "abstraction refinement",
        "kernel",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article discusses lazy abstraction refinement with proof in the context of kernel security.",
      "summary_zh": "本文讨论了在内核安全背景下的懒惰抽象细化与证明。",
      "source_markdown": "[2024: \"Lazy Abstraction Refinement with Proof\" by Hao Sun and Zhendong Su](https://lpc.events/event/18/contributions/1939/attachments/1593/3305/LPC%20'24%20(Hao%20Sun).pdf) [[video](https://www.youtube.com/watch?v=Lz-efC4KAl0)]",
      "search_text": "lazy abstraction refinement with proof lazy abstraction refinement with proof hao sun zhendong su   defensive  defensive primary article https://lpc.events/event/18/contributions/1939/attachments/1593/3305/lpc%20'24%20(hao%20sun abstraction refinement kernel defensive  defensive research this article discusses lazy abstraction refinement with proof in the context of kernel security. 本文讨论了在内核安全背景下的懒惰抽象细化与证明。 # lazy abstraction refinement with proof record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: lazy abstraction refinement with proof resource_label: primary resource_type: article resource_url: https://lpc.events/event/18/contributions/1939/attachments/1593/3305/lpc%20'24%20(hao%20sun parent_primary_url: https://lpc.events/event/18/contributions/1939/attachments/1593/3305/lpc%20'24%20(hao%20sun source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"lazy abstraction refinement with proof\" by hao sun and zhendong su](https://lpc.events/event/18/contributions/1939/attachments/1593/3305/lpc%20'24%20(hao%20sun).pdf) [[video](https://www.youtube.com/watch?v=lz-efc4kal0)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android d no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "0f97e11165e34bed",
      "item_id": "162dbc3a66d78c88",
      "slug": "2024-defensive-lazy-abstraction-refinement-with-proof-video-91fbbd8d",
      "year": 2024,
      "title": "Lazy Abstraction Refinement with Proof · video",
      "item_title": "Lazy Abstraction Refinement with Proof",
      "authors": [
        "Hao Sun",
        "Zhendong Su"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=Lz-efC4KAl0",
      "primary_url": "https://www.youtube.com/watch?v=Lz-efC4KAl0",
      "parent_primary_url": "https://lpc.events/event/18/contributions/1939/attachments/1593/3305/LPC%20'24%20(Hao%20Sun",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-lazy-abstraction-refinement-with-proof-video-91fbbd8d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Lazy Abstraction Refinement with Proof · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Lazy Abstraction Refinement with Proof resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=Lz-efC4KAl0 parent_primary_url: https://lpc.events/event/18/contributions/1939/attachments/1593/3305/LPC%20'24%20(Hao%20Sun source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Lazy Abstraction Refinement with Proof\" by Hao Sun and Zhendong Su](https://lpc.events/event/18/contributions/1939/attachments/1593/3305/LPC%20'24%20(Hao%20Sun).pdf) [[video](https://www.youtube.com/watch?v=Lz-efC4KAl0)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_rea",
      "link_types": [
        "article",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://lpc.events/event/18/contributions/1939/attachments/1593/3305/LPC%20'24%20(Hao%20Sun"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Lz-efC4KAl0"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://lpc.events/event/18/contributions/1939/attachments/1593/3305/LPC%20'24%20(Hao%20Sun"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Lz-efC4KAl0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "abstraction refinement",
        "kernel",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "A video presentation on lazy abstraction refinement with proof for kernel security.",
      "summary_zh": "关于内核安全的懒惰抽象细化与证明的视频演讲。",
      "source_markdown": "[2024: \"Lazy Abstraction Refinement with Proof\" by Hao Sun and Zhendong Su](https://lpc.events/event/18/contributions/1939/attachments/1593/3305/LPC%20'24%20(Hao%20Sun).pdf) [[video](https://www.youtube.com/watch?v=Lz-efC4KAl0)]",
      "search_text": "lazy abstraction refinement with proof · video lazy abstraction refinement with proof hao sun zhendong su   defensive  defensive video video https://www.youtube.com/watch?v=lz-efc4kal0 abstraction refinement kernel defensive  defensive research a video presentation on lazy abstraction refinement with proof for kernel security. 关于内核安全的懒惰抽象细化与证明的视频演讲。 # lazy abstraction refinement with proof · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: lazy abstraction refinement with proof resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=lz-efc4kal0 parent_primary_url: https://lpc.events/event/18/contributions/1939/attachments/1593/3305/lpc%20'24%20(hao%20sun source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"lazy abstraction refinement with proof\" by hao sun and zhendong su](https://lpc.events/event/18/contributions/1939/attachments/1593/3305/lpc%20'24%20(hao%20sun).pdf) [[video](https://www.youtube.com/watch?v=lz-efc4kal0)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_rea no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "42eb57a888cc0217",
      "item_id": "792c3249b36f53ee",
      "slug": "2024-defensive-improving-ebpf-complexity-with-a-hardware-backed-isolation-environment-primary-b113d71c",
      "year": 2024,
      "title": "Improving eBPF Complexity with a Hardware-backed Isolation Environment",
      "item_title": "Improving eBPF Complexity with a Hardware-backed Isolation Environment",
      "authors": [
        "Zhe Wang"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://lpc.events/event/18/contributions/1947/attachments/1452/3087/Zhe%20Wang.pdf",
      "primary_url": "https://lpc.events/event/18/contributions/1947/attachments/1452/3087/Zhe%20Wang.pdf",
      "parent_primary_url": "https://lpc.events/event/18/contributions/1947/attachments/1452/3087/Zhe%20Wang.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-improving-ebpf-complexity-with-a-hardware-backed-isolation-environment-primary-b113d71c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Improving eBPF Complexity with a Hardware-backed Isolation Environment record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Improving eBPF Complexity with a Hardware-backed Isolation Environment resource_label: primary resource_type: paper resource_url: https://lpc.events/event/18/contributions/1947/attachments/1452/3087/Zhe%20Wang.pdf parent_primary_url: https://lpc.events/event/18/contributions/1947/attachments/1452/3087/Zhe%20Wang.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Improving eBPF Complexity with a Hardware-backed Isolation Environment\" by Zhe Wang](https://lpc.events/event/18/contributions/1947/attachments/1452/3087/Zhe%20Wang.pdf) [[video](https://www.youtube.com/watch?v=TGpteJoDog8)] cves: none android_impact_status: no android_impact_reason: Not enough evid",
      "link_types": [
        "paper",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://lpc.events/event/18/contributions/1947/attachments/1452/3087/Zhe%20Wang.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=TGpteJoDog8"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://lpc.events/event/18/contributions/1947/attachments/1452/3087/Zhe%20Wang.pdf"
          }
        ],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=TGpteJoDog8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "eBPF",
        "isolation",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper discusses improving eBPF complexity with a hardware-backed isolation environment.",
      "summary_zh": "本文讨论了通过硬件支持的隔离环境来改善eBPF复杂性。",
      "source_markdown": "[2024: \"Improving eBPF Complexity with a Hardware-backed Isolation Environment\" by Zhe Wang](https://lpc.events/event/18/contributions/1947/attachments/1452/3087/Zhe%20Wang.pdf) [[video](https://www.youtube.com/watch?v=TGpteJoDog8)]",
      "search_text": "improving ebpf complexity with a hardware-backed isolation environment improving ebpf complexity with a hardware-backed isolation environment zhe wang   defensive  defensive primary paper https://lpc.events/event/18/contributions/1947/attachments/1452/3087/zhe%20wang.pdf ebpf isolation defensive  defensive research this paper discusses improving ebpf complexity with a hardware-backed isolation environment. 本文讨论了通过硬件支持的隔离环境来改善ebpf复杂性。 # improving ebpf complexity with a hardware-backed isolation environment record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: improving ebpf complexity with a hardware-backed isolation environment resource_label: primary resource_type: paper resource_url: https://lpc.events/event/18/contributions/1947/attachments/1452/3087/zhe%20wang.pdf parent_primary_url: https://lpc.events/event/18/contributions/1947/attachments/1452/3087/zhe%20wang.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"improving ebpf complexity with a hardware-backed isolation environment\" by zhe wang](https://lpc.events/event/18/contributions/1947/attachments/1452/3087/zhe%20wang.pdf) [[video](https://www.youtube.com/watch?v=tgptejodog8)] cves: none android_impact_status: no android_impact_reason: not enough evid no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "21af8bfd06210786",
      "item_id": "792c3249b36f53ee",
      "slug": "2024-defensive-improving-ebpf-complexity-with-a-hardware-backed-isolation-environment-video-5dfcad65",
      "year": 2024,
      "title": "Improving eBPF Complexity with a Hardware-backed Isolation Environment · video",
      "item_title": "Improving eBPF Complexity with a Hardware-backed Isolation Environment",
      "authors": [
        "Zhe Wang"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=TGpteJoDog8",
      "primary_url": "https://www.youtube.com/watch?v=TGpteJoDog8",
      "parent_primary_url": "https://lpc.events/event/18/contributions/1947/attachments/1452/3087/Zhe%20Wang.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-improving-ebpf-complexity-with-a-hardware-backed-isolation-environment-video-5dfcad65.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Improving eBPF Complexity with a Hardware-backed Isolation Environment · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Improving eBPF Complexity with a Hardware-backed Isolation Environment resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=TGpteJoDog8 parent_primary_url: https://lpc.events/event/18/contributions/1947/attachments/1452/3087/Zhe%20Wang.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Improving eBPF Complexity with a Hardware-backed Isolation Environment\" by Zhe Wang](https://lpc.events/event/18/contributions/1947/attachments/1452/3087/Zhe%20Wang.pdf) [[video](https://www.youtube.com/watch?v=TGpteJoDog8)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to re",
      "link_types": [
        "paper",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://lpc.events/event/18/contributions/1947/attachments/1452/3087/Zhe%20Wang.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=TGpteJoDog8"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://lpc.events/event/18/contributions/1947/attachments/1452/3087/Zhe%20Wang.pdf"
          }
        ],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=TGpteJoDog8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "eBPF",
        "isolation",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "A video on improving eBPF complexity with a hardware-backed isolation environment.",
      "summary_zh": "关于通过硬件支持的隔离环境改善eBPF复杂性的视频。",
      "source_markdown": "[2024: \"Improving eBPF Complexity with a Hardware-backed Isolation Environment\" by Zhe Wang](https://lpc.events/event/18/contributions/1947/attachments/1452/3087/Zhe%20Wang.pdf) [[video](https://www.youtube.com/watch?v=TGpteJoDog8)]",
      "search_text": "improving ebpf complexity with a hardware-backed isolation environment · video improving ebpf complexity with a hardware-backed isolation environment zhe wang   defensive  defensive video video https://www.youtube.com/watch?v=tgptejodog8 ebpf isolation defensive  defensive research a video on improving ebpf complexity with a hardware-backed isolation environment. 关于通过硬件支持的隔离环境改善ebpf复杂性的视频。 # improving ebpf complexity with a hardware-backed isolation environment · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: improving ebpf complexity with a hardware-backed isolation environment resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=tgptejodog8 parent_primary_url: https://lpc.events/event/18/contributions/1947/attachments/1452/3087/zhe%20wang.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"improving ebpf complexity with a hardware-backed isolation environment\" by zhe wang](https://lpc.events/event/18/contributions/1947/attachments/1452/3087/zhe%20wang.pdf) [[video](https://www.youtube.com/watch?v=tgptejodog8)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to re no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1c4888d3c5fb1edd",
      "item_id": "a979745b99c7b2a8",
      "slug": "2024-defensive-towards-safe-kernel-extensibility-with-ebpf-primary-918055da",
      "year": 2024,
      "title": "Towards Safe Kernel Extensibility With eBPF",
      "item_title": "Towards Safe Kernel Extensibility With eBPF",
      "authors": [
        "Soo Yee Lim"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://s00y33.github.io/publication/safebpf/safebpf.pdf",
      "primary_url": "https://s00y33.github.io/publication/safebpf/safebpf.pdf",
      "parent_primary_url": "https://s00y33.github.io/publication/safebpf/safebpf.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-towards-safe-kernel-extensibility-with-ebpf-primary-918055da.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Towards Safe Kernel Extensibility With eBPF record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Towards Safe Kernel Extensibility With eBPF resource_label: primary resource_type: paper resource_url: https://s00y33.github.io/publication/safebpf/safebpf.pdf parent_primary_url: https://s00y33.github.io/publication/safebpf/safebpf.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Towards Safe Kernel Extensibility With eBPF\" by Soo Yee Lim](https://s00y33.github.io/publication/safebpf/safebpf.pdf) [paper] [[slides](https://s00y33.github.io/event/ebpf-summit/slides.pdf)] [[video](https://www.youtube.com/live/PQNDsdP27Hw?t=15042s)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://s00y33.github.io/publication/safebpf/safebpf.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://s00y33.github.io/event/ebpf-summit/slides.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/live/PQNDsdP27Hw?t=15042s"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://s00y33.github.io/publication/safebpf/safebpf.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://s00y33.github.io/event/ebpf-summit/slides.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/live/PQNDsdP27Hw?t=15042s"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://s00y33.github.io/publication/safebpf/safebpf.pdf",
        "https://s00y33.github.io/event/ebpf-summit/slides.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "eBPF",
        "kernel extensibility",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper presents methods for safe kernel extensibility using eBPF.",
      "summary_zh": "本文提出了使用eBPF实现安全内核扩展的方法。",
      "source_markdown": "[2024: \"Towards Safe Kernel Extensibility With eBPF\" by Soo Yee Lim](https://s00y33.github.io/publication/safebpf/safebpf.pdf) [paper] [[slides](https://s00y33.github.io/event/ebpf-summit/slides.pdf)] [[video](https://www.youtube.com/live/PQNDsdP27Hw?t=15042s)]",
      "search_text": "towards safe kernel extensibility with ebpf towards safe kernel extensibility with ebpf soo yee lim   defensive  defensive primary paper https://s00y33.github.io/publication/safebpf/safebpf.pdf ebpf kernel extensibility defensive  defensive research this paper presents methods for safe kernel extensibility using ebpf. 本文提出了使用ebpf实现安全内核扩展的方法。 # towards safe kernel extensibility with ebpf record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: towards safe kernel extensibility with ebpf resource_label: primary resource_type: paper resource_url: https://s00y33.github.io/publication/safebpf/safebpf.pdf parent_primary_url: https://s00y33.github.io/publication/safebpf/safebpf.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"towards safe kernel extensibility with ebpf\" by soo yee lim](https://s00y33.github.io/publication/safebpf/safebpf.pdf) [paper] [[slides](https://s00y33.github.io/event/ebpf-summit/slides.pdf)] [[video](https://www.youtube.com/live/pqndsdp27hw?t=15042s)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6b5c43bf17a43d84",
      "item_id": "a979745b99c7b2a8",
      "slug": "2024-defensive-towards-safe-kernel-extensibility-with-ebpf-slides-d032cb1e",
      "year": 2024,
      "title": "Towards Safe Kernel Extensibility With eBPF · slides",
      "item_title": "Towards Safe Kernel Extensibility With eBPF",
      "authors": [
        "Soo Yee Lim"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://s00y33.github.io/event/ebpf-summit/slides.pdf",
      "primary_url": "https://s00y33.github.io/event/ebpf-summit/slides.pdf",
      "parent_primary_url": "https://s00y33.github.io/publication/safebpf/safebpf.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-towards-safe-kernel-extensibility-with-ebpf-slides-d032cb1e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Towards Safe Kernel Extensibility With eBPF · slides record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Towards Safe Kernel Extensibility With eBPF resource_label: slides resource_type: slides resource_url: https://s00y33.github.io/event/ebpf-summit/slides.pdf parent_primary_url: https://s00y33.github.io/publication/safebpf/safebpf.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Towards Safe Kernel Extensibility With eBPF\" by Soo Yee Lim](https://s00y33.github.io/publication/safebpf/safebpf.pdf) [paper] [[slides](https://s00y33.github.io/event/ebpf-summit/slides.pdf)] [[video](https://www.youtube.com/live/PQNDsdP27Hw?t=15042s)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_stat",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://s00y33.github.io/publication/safebpf/safebpf.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://s00y33.github.io/event/ebpf-summit/slides.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/live/PQNDsdP27Hw?t=15042s"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://s00y33.github.io/publication/safebpf/safebpf.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://s00y33.github.io/event/ebpf-summit/slides.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/live/PQNDsdP27Hw?t=15042s"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://s00y33.github.io/publication/safebpf/safebpf.pdf",
        "https://s00y33.github.io/event/ebpf-summit/slides.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "eBPF",
        "kernel extensibility",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Slides discussing safe kernel extensibility with eBPF.",
      "summary_zh": "讨论使用eBPF实现安全内核扩展的幻灯片。",
      "source_markdown": "[2024: \"Towards Safe Kernel Extensibility With eBPF\" by Soo Yee Lim](https://s00y33.github.io/publication/safebpf/safebpf.pdf) [paper] [[slides](https://s00y33.github.io/event/ebpf-summit/slides.pdf)] [[video](https://www.youtube.com/live/PQNDsdP27Hw?t=15042s)]",
      "search_text": "towards safe kernel extensibility with ebpf · slides towards safe kernel extensibility with ebpf soo yee lim   defensive  defensive slides slides https://s00y33.github.io/event/ebpf-summit/slides.pdf ebpf kernel extensibility defensive  defensive research slides discussing safe kernel extensibility with ebpf. 讨论使用ebpf实现安全内核扩展的幻灯片。 # towards safe kernel extensibility with ebpf · slides record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: towards safe kernel extensibility with ebpf resource_label: slides resource_type: slides resource_url: https://s00y33.github.io/event/ebpf-summit/slides.pdf parent_primary_url: https://s00y33.github.io/publication/safebpf/safebpf.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"towards safe kernel extensibility with ebpf\" by soo yee lim](https://s00y33.github.io/publication/safebpf/safebpf.pdf) [paper] [[slides](https://s00y33.github.io/event/ebpf-summit/slides.pdf)] [[video](https://www.youtube.com/live/pqndsdp27hw?t=15042s)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_stat no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "2dc395c72333e1c9",
      "item_id": "a979745b99c7b2a8",
      "slug": "2024-defensive-towards-safe-kernel-extensibility-with-ebpf-video-c88aea91",
      "year": 2024,
      "title": "Towards Safe Kernel Extensibility With eBPF · video",
      "item_title": "Towards Safe Kernel Extensibility With eBPF",
      "authors": [
        "Soo Yee Lim"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/live/PQNDsdP27Hw?t=15042s",
      "primary_url": "https://www.youtube.com/live/PQNDsdP27Hw?t=15042s",
      "parent_primary_url": "https://s00y33.github.io/publication/safebpf/safebpf.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-towards-safe-kernel-extensibility-with-ebpf-video-c88aea91.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Towards Safe Kernel Extensibility With eBPF · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Towards Safe Kernel Extensibility With eBPF resource_label: video resource_type: video resource_url: https://www.youtube.com/live/PQNDsdP27Hw?t=15042s parent_primary_url: https://s00y33.github.io/publication/safebpf/safebpf.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Towards Safe Kernel Extensibility With eBPF\" by Soo Yee Lim](https://s00y33.github.io/publication/safebpf/safebpf.pdf) [paper] [[slides](https://s00y33.github.io/event/ebpf-summit/slides.pdf)] [[video](https://www.youtube.com/live/PQNDsdP27Hw?t=15042s)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://s00y33.github.io/publication/safebpf/safebpf.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://s00y33.github.io/event/ebpf-summit/slides.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/live/PQNDsdP27Hw?t=15042s"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://s00y33.github.io/publication/safebpf/safebpf.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://s00y33.github.io/event/ebpf-summit/slides.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/live/PQNDsdP27Hw?t=15042s"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://s00y33.github.io/publication/safebpf/safebpf.pdf",
        "https://s00y33.github.io/event/ebpf-summit/slides.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "eBPF",
        "kernel extensibility",
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "A video presentation on safe kernel extensibility with eBPF.",
      "summary_zh": "关于使用eBPF实现安全内核扩展的视频演讲。",
      "source_markdown": "[2024: \"Towards Safe Kernel Extensibility With eBPF\" by Soo Yee Lim](https://s00y33.github.io/publication/safebpf/safebpf.pdf) [paper] [[slides](https://s00y33.github.io/event/ebpf-summit/slides.pdf)] [[video](https://www.youtube.com/live/PQNDsdP27Hw?t=15042s)]",
      "search_text": "towards safe kernel extensibility with ebpf · video towards safe kernel extensibility with ebpf soo yee lim   defensive  defensive video video https://www.youtube.com/live/pqndsdp27hw?t=15042s ebpf kernel extensibility defensive  defensive research a video presentation on safe kernel extensibility with ebpf. 关于使用ebpf实现安全内核扩展的视频演讲。 # towards safe kernel extensibility with ebpf · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: towards safe kernel extensibility with ebpf resource_label: video resource_type: video resource_url: https://www.youtube.com/live/pqndsdp27hw?t=15042s parent_primary_url: https://s00y33.github.io/publication/safebpf/safebpf.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"towards safe kernel extensibility with ebpf\" by soo yee lim](https://s00y33.github.io/publication/safebpf/safebpf.pdf) [paper] [[slides](https://s00y33.github.io/event/ebpf-summit/slides.pdf)] [[video](https://www.youtube.com/live/pqndsdp27hw?t=15042s)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "57011aabf4700202",
      "item_id": "9b2733c107b00c03",
      "slug": "2024-defensive-stop-sandboxing-exploitable-functions-and-modules-using-in-kernel-machine-learning-primary-0c50",
      "year": 2024,
      "title": "Stop! Sandboxing Exploitable Functions and Modules Using In-Kernel Machine Learning",
      "item_title": "Stop! Sandboxing Exploitable Functions and Modules Using In-Kernel Machine Learning",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Dai-Stop-Sandboxing-Exploitable-Functions-and-Modules-Using-In-Kernel-Machine-Learning-Thursday.pdf",
      "primary_url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Dai-Stop-Sandboxing-Exploitable-Functions-and-Modules-Using-In-Kernel-Machine-Learning-Thursday.pdf",
      "parent_primary_url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Dai-Stop-Sandboxing-Exploitable-Functions-and-Modules-Using-In-Kernel-Machine-Learning-Thursday.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-stop-sandboxing-exploitable-functions-and-modules-using-in-kernel-machine-learning-primary-0c50.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Stop! Sandboxing Exploitable Functions and Modules Using In-Kernel Machine Learning record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Stop! Sandboxing Exploitable Functions and Modules Using In-Kernel Machine Learning resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/BH-US-24/Presentations/US24-Dai-Stop-Sandboxing-Exploitable-Functions-and-Modules-Using-In-Kernel-Machine-Learning-Thursday.pdf parent_primary_url: https://i.blackhat.com/BH-US-24/Presentations/US24-Dai-Stop-Sandboxing-Exploitable-Functions-and-Modules-Using-In-Kernel-Machine-Learning-Thursday.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Stop! Sandboxing Exploitable Functions and Modules Using In-Kernel Machine Learning\"](https://i.blackhat.com/BH-US-24/Presentations/US24-Da",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Dai-Stop-Sandboxing-Exploitable-Functions-and-Modules-Using-In-Kernel-Machine-Learning-Thursday.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/BH-US-24/Presentations/US24-Dai-Stop-Sandboxing-Exploitable-Functions-and-Modules-Using-In-Kernel-Machine-Learning-Thursday.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "sandboxing",
        "machine_learning"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This research presents a method for sandboxing exploitable functions and modules in the Linux kernel using in-kernel machine learning techniques.",
      "summary_zh": "本研究提出了一种使用内核机器学习技术对Linux内核中的可利用函数和模块进行沙箱化的方法。",
      "source_markdown": "[2024: \"Stop! Sandboxing Exploitable Functions and Modules Using In-Kernel Machine Learning\"](https://i.blackhat.com/BH-US-24/Presentations/US24-Dai-Stop-Sandboxing-Exploitable-Functions-and-Modules-Using-In-Kernel-Machine-Learning-Thursday.pdf) [slides]",
      "search_text": "stop! sandboxing exploitable functions and modules using in-kernel machine learning stop! sandboxing exploitable functions and modules using in-kernel machine learning    defensive  defensive primary slides https://i.blackhat.com/bh-us-24/presentations/us24-dai-stop-sandboxing-exploitable-functions-and-modules-using-in-kernel-machine-learning-thursday.pdf sandboxing machine_learning  defensive this research presents a method for sandboxing exploitable functions and modules in the linux kernel using in-kernel machine learning techniques. 本研究提出了一种使用内核机器学习技术对linux内核中的可利用函数和模块进行沙箱化的方法。 # stop! sandboxing exploitable functions and modules using in-kernel machine learning record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: stop! sandboxing exploitable functions and modules using in-kernel machine learning resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/bh-us-24/presentations/us24-dai-stop-sandboxing-exploitable-functions-and-modules-using-in-kernel-machine-learning-thursday.pdf parent_primary_url: https://i.blackhat.com/bh-us-24/presentations/us24-dai-stop-sandboxing-exploitable-functions-and-modules-using-in-kernel-machine-learning-thursday.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"stop! sandboxing exploitable functions and modules using in-kernel machine learning\"](https://i.blackhat.com/bh-us-24/presentations/us24-da no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "d8658a4b8589ae17",
      "item_id": "3fbe11b855a1504f",
      "slug": "2024-defensive-islab-immutable-memory-management-metadata-for-commodity-operating-system-kernels-primary-3e25e",
      "year": 2024,
      "title": "ISLAB: Immutable Memory Management Metadata for Commodity Operating System Kernels",
      "item_title": "ISLAB: Immutable Memory Management Metadata for Commodity Operating System Kernels",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://cs.brown.edu/~vpk/papers/islab.asiaccs24.pdf",
      "primary_url": "https://cs.brown.edu/~vpk/papers/islab.asiaccs24.pdf",
      "parent_primary_url": "https://cs.brown.edu/~vpk/papers/islab.asiaccs24.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-islab-immutable-memory-management-metadata-for-commodity-operating-system-kernels-primary-3e25e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ISLAB: Immutable Memory Management Metadata for Commodity Operating System Kernels record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: ISLAB: Immutable Memory Management Metadata for Commodity Operating System Kernels resource_label: primary resource_type: paper resource_url: https://cs.brown.edu/~vpk/papers/islab.asiaccs24.pdf parent_primary_url: https://cs.brown.edu/~vpk/papers/islab.asiaccs24.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"ISLAB: Immutable Memory Management Metadata for Commodity Operating System Kernels\"](https://cs.brown.edu/~vpk/papers/islab.asiaccs24.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS de",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://cs.brown.edu/~vpk/papers/islab.asiaccs24.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://cs.brown.edu/~vpk/papers/islab.asiaccs24.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory_management",
        "immutable"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "The paper introduces ISLAB, a system for immutable memory management metadata aimed at enhancing kernel security.",
      "summary_zh": "本文介绍了ISLAB，一个旨在增强内核安全性的不可变内存管理元数据系统。",
      "source_markdown": "[2024: \"ISLAB: Immutable Memory Management Metadata for Commodity Operating System Kernels\"](https://cs.brown.edu/~vpk/papers/islab.asiaccs24.pdf) [paper]",
      "search_text": "islab: immutable memory management metadata for commodity operating system kernels islab: immutable memory management metadata for commodity operating system kernels    defensive  defensive primary paper https://cs.brown.edu/~vpk/papers/islab.asiaccs24.pdf memory_management immutable  defensive the paper introduces islab, a system for immutable memory management metadata aimed at enhancing kernel security. 本文介绍了islab，一个旨在增强内核安全性的不可变内存管理元数据系统。 # islab: immutable memory management metadata for commodity operating system kernels record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: islab: immutable memory management metadata for commodity operating system kernels resource_label: primary resource_type: paper resource_url: https://cs.brown.edu/~vpk/papers/islab.asiaccs24.pdf parent_primary_url: https://cs.brown.edu/~vpk/papers/islab.asiaccs24.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"islab: immutable memory management metadata for commodity operating system kernels\"](https://cs.brown.edu/~vpk/papers/islab.asiaccs24.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios de no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d0feba334c189abc",
      "item_id": "cd292c6813407b37",
      "slug": "2024-defensive-seak-rethinking-the-design-of-a-secure-allocator-for-os-kernel-primary-a048510d",
      "year": 2024,
      "title": "SeaK: Rethinking the Design of a Secure Allocator for OS Kernel",
      "item_title": "SeaK: Rethinking the Design of a Secure Allocator for OS Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-seak-rethinking-the-design-of-a-secure-allocator-for-os-kernel-primary-a048510d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SeaK: Rethinking the Design of a Secure Allocator for OS Kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: SeaK: Rethinking the Design of a Secure Allocator for OS Kernel resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"SeaK: Rethinking the Design of a Secure Allocator for OS Kernel\"](https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf)] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf)] cves: none and",
      "link_types": [
        "paper",
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory_allocation",
        "security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "SeaK proposes a new design for a secure allocator in the OS kernel to mitigate memory-related vulnerabilities.",
      "summary_zh": "SeaK提出了一种新的操作系统内核安全分配器设计，以减轻与内存相关的漏洞。",
      "source_markdown": "[2024: \"SeaK: Rethinking the Design of a Secure Allocator for OS Kernel\"](https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf)] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf)]",
      "search_text": "seak: rethinking the design of a secure allocator for os kernel seak: rethinking the design of a secure allocator for os kernel    defensive  defensive primary paper https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf memory_allocation security  defensive seak proposes a new design for a secure allocator in the os kernel to mitigate memory-related vulnerabilities. seak提出了一种新的操作系统内核安全分配器设计，以减轻与内存相关的漏洞。 # seak: rethinking the design of a secure allocator for os kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: seak: rethinking the design of a secure allocator for os kernel resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"seak: rethinking the design of a secure allocator for os kernel\"](https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf)] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf)] cves: none and no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "4d15031e6746db4a",
      "item_id": "cd292c6813407b37",
      "slug": "2024-defensive-seak-rethinking-the-design-of-a-secure-allocator-for-os-kernel-slides-0ddeb76c",
      "year": 2024,
      "title": "SeaK: Rethinking the Design of a Secure Allocator for OS Kernel · slides",
      "item_title": "SeaK: Rethinking the Design of a Secure Allocator for OS Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-seak-rethinking-the-design-of-a-secure-allocator-for-os-kernel-slides-0ddeb76c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SeaK: Rethinking the Design of a Secure Allocator for OS Kernel · slides record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: SeaK: Rethinking the Design of a Secure Allocator for OS Kernel resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"SeaK: Rethinking the Design of a Secure Allocator for OS Kernel\"](https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf)] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf)",
      "link_types": [
        "paper",
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory_allocation",
        "security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This presentation discusses the SeaK project, focusing on the design of a secure allocator for the OS kernel.",
      "summary_zh": "本演示讨论了SeaK项目，重点介绍了操作系统内核安全分配器的设计。",
      "source_markdown": "[2024: \"SeaK: Rethinking the Design of a Secure Allocator for OS Kernel\"](https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf)] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf)]",
      "search_text": "seak: rethinking the design of a secure allocator for os kernel · slides seak: rethinking the design of a secure allocator for os kernel    defensive  defensive slides slides https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf memory_allocation security  defensive this presentation discusses the seak project, focusing on the design of a secure allocator for the os kernel. 本演示讨论了seak项目，重点介绍了操作系统内核安全分配器的设计。 # seak: rethinking the design of a secure allocator for os kernel · slides record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: seak: rethinking the design of a secure allocator for os kernel resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"seak: rethinking the design of a secure allocator for os kernel\"](https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf)] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf) no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "1f8273ee42c3e0e4",
      "item_id": "cd292c6813407b37",
      "slug": "2024-defensive-seak-rethinking-the-design-of-a-secure-allocator-for-os-kernel-artifacts-eb22bd03",
      "year": 2024,
      "title": "SeaK: Rethinking the Design of a Secure Allocator for OS Kernel · artifacts",
      "item_title": "SeaK: Rethinking the Design of a Secure Allocator for OS Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "artifacts",
      "resource_type": "artifact",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-seak-rethinking-the-design-of-a-secure-allocator-for-os-kernel-artifacts-eb22bd03.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SeaK: Rethinking the Design of a Secure Allocator for OS Kernel · artifacts record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: SeaK: Rethinking the Design of a Secure Allocator for OS Kernel resource_label: artifacts resource_type: artifact resource_url: https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"SeaK: Rethinking the Design of a Secure Allocator for OS Kernel\"](https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf)] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zi",
      "link_types": [
        "paper",
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory_allocation",
        "security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "The SeaK project includes artifacts related to the design of a secure allocator for the OS kernel.",
      "summary_zh": "SeaK项目包括与操作系统内核安全分配器设计相关的工件。",
      "source_markdown": "[2024: \"SeaK: Rethinking the Design of a Secure Allocator for OS Kernel\"](https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf)] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf)]",
      "search_text": "seak: rethinking the design of a secure allocator for os kernel · artifacts seak: rethinking the design of a secure allocator for os kernel    defensive  defensive artifacts artifact https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf memory_allocation security  defensive the seak project includes artifacts related to the design of a secure allocator for the os kernel. seak项目包括与操作系统内核安全分配器设计相关的工件。 # seak: rethinking the design of a secure allocator for os kernel · artifacts record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: seak: rethinking the design of a secure allocator for os kernel resource_label: artifacts resource_type: artifact resource_url: https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zicheng.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"seak: rethinking the design of a secure allocator for os kernel\"](https://www.usenix.org/system/files/usenixsecurity24-wang-zicheng.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-wang-zicheng.pdf)] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-wang-zi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "0fa77c6d25d840aa",
      "item_id": "5d76514d05689d4b",
      "slug": "2024-defensive-moat-towards-safe-bpf-kernel-extension-primary-92bca228",
      "year": 2024,
      "title": "MOAT: Towards Safe BPF Kernel Extension",
      "item_title": "MOAT: Towards Safe BPF Kernel Extension",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-moat-towards-safe-bpf-kernel-extension-primary-92bca228.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# MOAT: Towards Safe BPF Kernel Extension record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: MOAT: Towards Safe BPF Kernel Extension resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"MOAT: Towards Safe BPF Kernel Extension\"](https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf)] [[artifact](https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource map",
      "link_types": [
        "paper",
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf"
        },
        {
          "label": "artifact",
          "type": "artifact",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifact",
            "type": "artifact",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "BPF",
        "kernel_extension"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "MOAT aims to enhance the safety of BPF kernel extensions through innovative design approaches.",
      "summary_zh": "MOAT旨在通过创新设计方法增强BPF内核扩展的安全性。",
      "source_markdown": "[2024: \"MOAT: Towards Safe BPF Kernel Extension\"](https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf)] [[artifact](https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf)]",
      "search_text": "moat: towards safe bpf kernel extension moat: towards safe bpf kernel extension    defensive  defensive primary paper https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf bpf kernel_extension  defensive moat aims to enhance the safety of bpf kernel extensions through innovative design approaches. moat旨在通过创新设计方法增强bpf内核扩展的安全性。 # moat: towards safe bpf kernel extension record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: moat: towards safe bpf kernel extension resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"moat: towards safe bpf kernel extension\"](https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf)] [[artifact](https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource map no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "72767e850d42c8f0",
      "item_id": "5d76514d05689d4b",
      "slug": "2024-defensive-moat-towards-safe-bpf-kernel-extension-slides-eeca5e61",
      "year": 2024,
      "title": "MOAT: Towards Safe BPF Kernel Extension · slides",
      "item_title": "MOAT: Towards Safe BPF Kernel Extension",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-moat-towards-safe-bpf-kernel-extension-slides-eeca5e61.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# MOAT: Towards Safe BPF Kernel Extension · slides record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: MOAT: Towards Safe BPF Kernel Extension resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"MOAT: Towards Safe BPF Kernel Extension\"](https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf)] [[artifact](https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that t",
      "link_types": [
        "paper",
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf"
        },
        {
          "label": "artifact",
          "type": "artifact",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifact",
            "type": "artifact",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "BPF",
        "kernel_extension"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This presentation covers the MOAT project, which focuses on safe BPF kernel extensions.",
      "summary_zh": "本演示涵盖了MOAT项目，专注于安全的BPF内核扩展。",
      "source_markdown": "[2024: \"MOAT: Towards Safe BPF Kernel Extension\"](https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf)] [[artifact](https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf)]",
      "search_text": "moat: towards safe bpf kernel extension · slides moat: towards safe bpf kernel extension    defensive  defensive slides slides https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf bpf kernel_extension  defensive this presentation covers the moat project, which focuses on safe bpf kernel extensions. 本演示涵盖了moat项目，专注于安全的bpf内核扩展。 # moat: towards safe bpf kernel extension · slides record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: moat: towards safe bpf kernel extension resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"moat: towards safe bpf kernel extension\"](https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf)] [[artifact](https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf)] cves: none android_impact_status: no android_impact_reason: not enough evidence that t no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b8cbf2622d627d0b",
      "item_id": "5d76514d05689d4b",
      "slug": "2024-defensive-moat-towards-safe-bpf-kernel-extension-artifact-1fd44c6a",
      "year": 2024,
      "title": "MOAT: Towards Safe BPF Kernel Extension · artifact",
      "item_title": "MOAT: Towards Safe BPF Kernel Extension",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "artifact",
      "resource_type": "artifact",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-moat-towards-safe-bpf-kernel-extension-artifact-1fd44c6a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# MOAT: Towards Safe BPF Kernel Extension · artifact record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: MOAT: Towards Safe BPF Kernel Extension resource_label: artifact resource_type: artifact resource_url: https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"MOAT: Towards Safe BPF Kernel Extension\"](https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf)] [[artifact](https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf)] cves: none android_impact_status: no android_impact_reason: Not enough evidenc",
      "link_types": [
        "paper",
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf"
        },
        {
          "label": "artifact",
          "type": "artifact",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifact",
            "type": "artifact",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "BPF",
        "kernel_extension"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "The MOAT project includes artifacts that contribute to the safety of BPF kernel extensions.",
      "summary_zh": "MOAT项目包括有助于BPF内核扩展安全性的工件。",
      "source_markdown": "[2024: \"MOAT: Towards Safe BPF Kernel Extension\"](https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf)] [[artifact](https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf)]",
      "search_text": "moat: towards safe bpf kernel extension · artifact moat: towards safe bpf kernel extension    defensive  defensive artifact artifact https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf bpf kernel_extension  defensive the moat project includes artifacts that contribute to the safety of bpf kernel extensions. moat项目包括有助于bpf内核扩展安全性的工件。 # moat: towards safe bpf kernel extension · artifact record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: moat: towards safe bpf kernel extension resource_label: artifact resource_type: artifact resource_url: https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"moat: towards safe bpf kernel extension\"](https://www.usenix.org/system/files/usenixsecurity24-lu-hongyi.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-lu-hongyi.pdf)] [[artifact](https://www.usenix.org/system/files/usenixsecurity24-appendix-lu-hongyi.pdf)] cves: none android_impact_status: no android_impact_reason: not enough evidenc no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "7bbd24ff5b4b9697",
      "item_id": "811748d527883e88",
      "slug": "2024-defensive-safefetch-practical-double-fetch-protection-with-kernel-fetch-caching-primary-abefe232",
      "year": 2024,
      "title": "SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching",
      "item_title": "SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity24-duta.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity24-duta.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-duta.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-safefetch-practical-double-fetch-protection-with-kernel-fetch-caching-primary-abefe232.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity24-duta.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-duta.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching\"](https://www.usenix.org/system/files/usenixsecurity24-duta.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf)] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf)] cves: none android_impact_status:",
      "link_types": [
        "paper",
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-duta.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-duta.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory_management",
        "double_fetch"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "SafeFetch introduces a practical approach to double-fetch protection in kernel memory management.",
      "summary_zh": "SafeFetch在内核内存管理中引入了一种实用的双重获取保护方法。",
      "source_markdown": "[2024: \"SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching\"](https://www.usenix.org/system/files/usenixsecurity24-duta.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf)] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf)]",
      "search_text": "safefetch: practical double-fetch protection with kernel-fetch caching safefetch: practical double-fetch protection with kernel-fetch caching    defensive  defensive primary paper https://www.usenix.org/system/files/usenixsecurity24-duta.pdf memory_management double_fetch  defensive safefetch introduces a practical approach to double-fetch protection in kernel memory management. safefetch在内核内存管理中引入了一种实用的双重获取保护方法。 # safefetch: practical double-fetch protection with kernel-fetch caching record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: safefetch: practical double-fetch protection with kernel-fetch caching resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity24-duta.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-duta.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"safefetch: practical double-fetch protection with kernel-fetch caching\"](https://www.usenix.org/system/files/usenixsecurity24-duta.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf)] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf)] cves: none android_impact_status: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b13e8138a2931a00",
      "item_id": "811748d527883e88",
      "slug": "2024-defensive-safefetch-practical-double-fetch-protection-with-kernel-fetch-caching-slides-7bf11350",
      "year": 2024,
      "title": "SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching · slides",
      "item_title": "SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-duta.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-safefetch-practical-double-fetch-protection-with-kernel-fetch-caching-slides-7bf11350.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching · slides record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-duta.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching\"](https://www.usenix.org/system/files/usenixsecurity24-duta.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf)] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf)] cves: none androi",
      "link_types": [
        "paper",
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-duta.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-duta.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory_management",
        "double_fetch"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This presentation discusses SafeFetch, focusing on practical double-fetch protection techniques.",
      "summary_zh": "本演示讨论了SafeFetch，重点介绍实用的双重获取保护技术。",
      "source_markdown": "[2024: \"SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching\"](https://www.usenix.org/system/files/usenixsecurity24-duta.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf)] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf)]",
      "search_text": "safefetch: practical double-fetch protection with kernel-fetch caching · slides safefetch: practical double-fetch protection with kernel-fetch caching    defensive  defensive slides slides https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf memory_management double_fetch  defensive this presentation discusses safefetch, focusing on practical double-fetch protection techniques. 本演示讨论了safefetch，重点介绍实用的双重获取保护技术。 # safefetch: practical double-fetch protection with kernel-fetch caching · slides record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: safefetch: practical double-fetch protection with kernel-fetch caching resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-duta.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"safefetch: practical double-fetch protection with kernel-fetch caching\"](https://www.usenix.org/system/files/usenixsecurity24-duta.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf)] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf)] cves: none androi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "1dd7a27ac9bddd10",
      "item_id": "811748d527883e88",
      "slug": "2024-defensive-safefetch-practical-double-fetch-protection-with-kernel-fetch-caching-artifacts-4a89208c",
      "year": 2024,
      "title": "SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching · artifacts",
      "item_title": "SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "artifacts",
      "resource_type": "artifact",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity24-duta.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-safefetch-practical-double-fetch-protection-with-kernel-fetch-caching-artifacts-4a89208c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching · artifacts record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching resource_label: artifacts resource_type: artifact resource_url: https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-duta.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching\"](https://www.usenix.org/system/files/usenixsecurity24-duta.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf)] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf)] cves: n",
      "link_types": [
        "paper",
        "slides",
        "artifact"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-duta.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf"
        },
        {
          "label": "artifacts",
          "type": "artifact",
          "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-duta.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "artifacts",
            "type": "artifact",
            "url": "https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory_management",
        "double_fetch"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "SafeFetch includes artifacts that demonstrate practical double-fetch protection in kernel memory management.",
      "summary_zh": "SafeFetch包括展示内核内存管理中实用双重获取保护的工件。",
      "source_markdown": "[2024: \"SafeFetch: Practical Double-Fetch Protection with Kernel-Fetch Caching\"](https://www.usenix.org/system/files/usenixsecurity24-duta.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf)] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf)]",
      "search_text": "safefetch: practical double-fetch protection with kernel-fetch caching · artifacts safefetch: practical double-fetch protection with kernel-fetch caching    defensive  defensive artifacts artifact https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf memory_management double_fetch  defensive safefetch includes artifacts that demonstrate practical double-fetch protection in kernel memory management. safefetch包括展示内核内存管理中实用双重获取保护的工件。 # safefetch: practical double-fetch protection with kernel-fetch caching · artifacts record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: safefetch: practical double-fetch protection with kernel-fetch caching resource_label: artifacts resource_type: artifact resource_url: https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity24-duta.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"safefetch: practical double-fetch protection with kernel-fetch caching\"](https://www.usenix.org/system/files/usenixsecurity24-duta.pdf) [paper] [[slides](https://www.usenix.org/system/files/usenixsecurity24_slides-duta.pdf)] [[artifacts](https://www.usenix.org/system/files/usenixsecurity24-appendix-duta.pdf)] cves: n no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "59151eb57a3ddcdf",
      "item_id": "95a1c66f7a1fc82f",
      "slug": "2024-defensive-reducing-maintenance-burden-primary-326111a4",
      "year": 2024,
      "title": "Reducing Maintenance Burden",
      "item_title": "Reducing Maintenance Burden",
      "authors": [
        "Bending C\" by Mathias Krause"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://grsecurity.net/reducing_maintenance_burden_by_bending_c",
      "primary_url": "https://grsecurity.net/reducing_maintenance_burden_by_bending_c",
      "parent_primary_url": "https://grsecurity.net/reducing_maintenance_burden_by_bending_c",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-reducing-maintenance-burden-primary-326111a4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Reducing Maintenance Burden record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Reducing Maintenance Burden resource_label: primary resource_type: article resource_url: https://grsecurity.net/reducing_maintenance_burden_by_bending_c parent_primary_url: https://grsecurity.net/reducing_maintenance_burden_by_bending_c source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Reducing Maintenance Burden by Bending C\" by Mathias Krause](https://grsecurity.net/reducing_maintenance_burden_by_bending_c) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://grsecurity.net/reducing_maintenance_burden_by_bending_c"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://grsecurity.net/reducing_maintenance_burden_by_bending_c"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "maintenance",
        "kernel_development"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This article discusses strategies for reducing maintenance burdens in kernel development.",
      "summary_zh": "本文讨论了减少内核开发维护负担的策略。",
      "source_markdown": "[2024: \"Reducing Maintenance Burden by Bending C\" by Mathias Krause](https://grsecurity.net/reducing_maintenance_burden_by_bending_c) [article]",
      "search_text": "reducing maintenance burden reducing maintenance burden bending c\" by mathias krause   defensive  defensive primary article https://grsecurity.net/reducing_maintenance_burden_by_bending_c maintenance kernel_development  defensive this article discusses strategies for reducing maintenance burdens in kernel development. 本文讨论了减少内核开发维护负担的策略。 # reducing maintenance burden record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: reducing maintenance burden resource_label: primary resource_type: article resource_url: https://grsecurity.net/reducing_maintenance_burden_by_bending_c parent_primary_url: https://grsecurity.net/reducing_maintenance_burden_by_bending_c source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"reducing maintenance burden by bending c\" by mathias krause](https://grsecurity.net/reducing_maintenance_burden_by_bending_c) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "0bc4412b68dddc5a",
      "item_id": "b6560ecfdd040dd5",
      "slug": "2024-defensive-beebox-hardening-bpf-against-transient-execution-attacks-primary-9461b4e2",
      "year": 2024,
      "title": "BeeBox: Hardening BPF against Transient Execution Attacks",
      "item_title": "BeeBox: Hardening BPF against Transient Execution Attacks",
      "authors": [
        "Di Jin",
        "Alexander J. Gaidis",
        "and Vasileios P. Kemerlis"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf",
      "primary_url": "https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf",
      "parent_primary_url": "https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-beebox-hardening-bpf-against-transient-execution-attacks-primary-9461b4e2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BeeBox: Hardening BPF against Transient Execution Attacks record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: BeeBox: Hardening BPF against Transient Execution Attacks resource_label: primary resource_type: paper resource_url: https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf parent_primary_url: https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"BeeBox: Hardening BPF against Transient Execution Attacks\" by Di Jin, Alexander J. Gaidis, and Vasileios P. Kemerlis](https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf) [paper] [[code](https://gitlab.com/brown-ssl/beebox)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reaso",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://gitlab.com/brown-ssl/beebox"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://gitlab.com/brown-ssl/beebox"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://gitlab.com/brown-ssl/beebox"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "BPF",
        "transient_execution"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "BeeBox presents a method for hardening BPF against transient execution attacks.",
      "summary_zh": "BeeBox提出了一种增强BPF抵御瞬态执行攻击的方法。",
      "source_markdown": "[2024: \"BeeBox: Hardening BPF against Transient Execution Attacks\" by Di Jin, Alexander J. Gaidis, and Vasileios P. Kemerlis](https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf) [paper] [[code](https://gitlab.com/brown-ssl/beebox)]",
      "search_text": "beebox: hardening bpf against transient execution attacks beebox: hardening bpf against transient execution attacks di jin alexander j. gaidis and vasileios p. kemerlis   defensive  defensive primary paper https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf bpf transient_execution  defensive beebox presents a method for hardening bpf against transient execution attacks. beebox提出了一种增强bpf抵御瞬态执行攻击的方法。 # beebox: hardening bpf against transient execution attacks record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: beebox: hardening bpf against transient execution attacks resource_label: primary resource_type: paper resource_url: https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf parent_primary_url: https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"beebox: hardening bpf against transient execution attacks\" by di jin, alexander j. gaidis, and vasileios p. kemerlis](https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf) [paper] [[code](https://gitlab.com/brown-ssl/beebox)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reaso no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "82d0e7bdb2b0deaf",
      "item_id": "b6560ecfdd040dd5",
      "slug": "2024-defensive-beebox-hardening-bpf-against-transient-execution-attacks-code-dc16b3cd",
      "year": 2024,
      "title": "BeeBox: Hardening BPF against Transient Execution Attacks · code",
      "item_title": "BeeBox: Hardening BPF against Transient Execution Attacks",
      "authors": [
        "Di Jin",
        "Alexander J. Gaidis",
        "and Vasileios P. Kemerlis"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://gitlab.com/brown-ssl/beebox",
      "primary_url": "https://gitlab.com/brown-ssl/beebox",
      "parent_primary_url": "https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-beebox-hardening-bpf-against-transient-execution-attacks-code-dc16b3cd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BeeBox: Hardening BPF against Transient Execution Attacks · code record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: BeeBox: Hardening BPF against Transient Execution Attacks resource_label: code resource_type: code resource_url: https://gitlab.com/brown-ssl/beebox parent_primary_url: https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"BeeBox: Hardening BPF against Transient Execution Attacks\" by Di Jin, Alexander J. Gaidis, and Vasileios P. Kemerlis](https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf) [paper] [[code](https://gitlab.com/brown-ssl/beebox)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Producti",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://gitlab.com/brown-ssl/beebox"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://gitlab.com/brown-ssl/beebox"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://gitlab.com/brown-ssl/beebox"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "BPF",
        "transient_execution"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "The BeeBox project includes code aimed at hardening BPF against transient execution vulnerabilities.",
      "summary_zh": "BeeBox项目包括旨在增强BPF抵御瞬态执行漏洞的代码。",
      "source_markdown": "[2024: \"BeeBox: Hardening BPF against Transient Execution Attacks\" by Di Jin, Alexander J. Gaidis, and Vasileios P. Kemerlis](https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf) [paper] [[code](https://gitlab.com/brown-ssl/beebox)]",
      "search_text": "beebox: hardening bpf against transient execution attacks · code beebox: hardening bpf against transient execution attacks di jin alexander j. gaidis and vasileios p. kemerlis   defensive  defensive code code https://gitlab.com/brown-ssl/beebox bpf transient_execution  defensive the beebox project includes code aimed at hardening bpf against transient execution vulnerabilities. beebox项目包括旨在增强bpf抵御瞬态执行漏洞的代码。 # beebox: hardening bpf against transient execution attacks · code record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: beebox: hardening bpf against transient execution attacks resource_label: code resource_type: code resource_url: https://gitlab.com/brown-ssl/beebox parent_primary_url: https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"beebox: hardening bpf against transient execution attacks\" by di jin, alexander j. gaidis, and vasileios p. kemerlis](https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf) [paper] [[code](https://gitlab.com/brown-ssl/beebox)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: producti no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "7b6be326fc9d5138",
      "item_id": "084eaaf4ae54e04c",
      "slug": "2024-defensive-validating-the-ebpf-verifier-via-state-embedding-primary-f3c312cc",
      "year": 2024,
      "title": "Validating the eBPF Verifier via State Embedding",
      "item_title": "Validating the eBPF Verifier via State Embedding",
      "authors": [
        "Hao Sun",
        "Zhendong Su"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/osdi24-sun-hao.pdf",
      "primary_url": "https://www.usenix.org/system/files/osdi24-sun-hao.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/osdi24-sun-hao.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-validating-the-ebpf-verifier-via-state-embedding-primary-f3c312cc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Validating the eBPF Verifier via State Embedding record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Validating the eBPF Verifier via State Embedding resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/osdi24-sun-hao.pdf parent_primary_url: https://www.usenix.org/system/files/osdi24-sun-hao.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Validating the eBPF Verifier via State Embedding\" by Hao Sun and Zhendong Su](https://www.usenix.org/system/files/osdi24-sun-hao.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_p",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/osdi24-sun-hao.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/osdi24-sun-hao.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "eBPF",
        "verification"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This paper validates the eBPF verifier through state embedding techniques to enhance security.",
      "summary_zh": "本文通过状态嵌入技术验证eBPF验证器，以增强安全性。",
      "source_markdown": "[2024: \"Validating the eBPF Verifier via State Embedding\" by Hao Sun and Zhendong Su](https://www.usenix.org/system/files/osdi24-sun-hao.pdf) [paper]",
      "search_text": "validating the ebpf verifier via state embedding validating the ebpf verifier via state embedding hao sun zhendong su   defensive  defensive primary paper https://www.usenix.org/system/files/osdi24-sun-hao.pdf ebpf verification  defensive this paper validates the ebpf verifier through state embedding techniques to enhance security. 本文通过状态嵌入技术验证ebpf验证器，以增强安全性。 # validating the ebpf verifier via state embedding record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: validating the ebpf verifier via state embedding resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/osdi24-sun-hao.pdf parent_primary_url: https://www.usenix.org/system/files/osdi24-sun-hao.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"validating the ebpf verifier via state embedding\" by hao sun and zhendong su](https://www.usenix.org/system/files/osdi24-sun-hao.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_p no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4540a3a1d3378bad",
      "item_id": "a173ac8fcefa8613",
      "slug": "2024-defensive-beyond-the-edges-of-kernel-control-flow-hijacking-protection-with-hek-cfi-primary-2e695930",
      "year": 2024,
      "title": "Beyond the Edges of Kernel Control-Flow Hijacking Protection with HEK-CFI",
      "item_title": "Beyond the Edges of Kernel Control-Flow Hijacking Protection with HEK-CFI",
      "authors": [
        "Lukas Maar et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://dl.acm.org/doi/pdf/10.1145/3634737.3661135",
      "primary_url": "https://dl.acm.org/doi/pdf/10.1145/3634737.3661135",
      "parent_primary_url": "https://dl.acm.org/doi/pdf/10.1145/3634737.3661135",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-beyond-the-edges-of-kernel-control-flow-hijacking-protection-with-hek-cfi-primary-2e695930.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Beyond the Edges of Kernel Control-Flow Hijacking Protection with HEK-CFI record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Beyond the Edges of Kernel Control-Flow Hijacking Protection with HEK-CFI resource_label: primary resource_type: paper resource_url: https://dl.acm.org/doi/pdf/10.1145/3634737.3661135 parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3634737.3661135 source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Beyond the Edges of Kernel Control-Flow Hijacking Protection with HEK-CFI\" by Lukas Maar et. al](https://dl.acm.org/doi/pdf/10.1145/3634737.3661135) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Ap",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://dl.acm.org/doi/pdf/10.1145/3634737.3661135"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://dl.acm.org/doi/pdf/10.1145/3634737.3661135"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "control_flow",
        "protection"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "The paper discusses HEK-CFI, a method for enhancing kernel control-flow hijacking protection.",
      "summary_zh": "本文讨论了HEK-CFI，一种增强内核控制流劫持保护的方法。",
      "source_markdown": "[2024: \"Beyond the Edges of Kernel Control-Flow Hijacking Protection with HEK-CFI\" by Lukas Maar et. al](https://dl.acm.org/doi/pdf/10.1145/3634737.3661135) [paper]",
      "search_text": "beyond the edges of kernel control-flow hijacking protection with hek-cfi beyond the edges of kernel control-flow hijacking protection with hek-cfi lukas maar et. al   defensive  defensive primary paper https://dl.acm.org/doi/pdf/10.1145/3634737.3661135 control_flow protection  defensive the paper discusses hek-cfi, a method for enhancing kernel control-flow hijacking protection. 本文讨论了hek-cfi，一种增强内核控制流劫持保护的方法。 # beyond the edges of kernel control-flow hijacking protection with hek-cfi record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: beyond the edges of kernel control-flow hijacking protection with hek-cfi resource_label: primary resource_type: paper resource_url: https://dl.acm.org/doi/pdf/10.1145/3634737.3661135 parent_primary_url: https://dl.acm.org/doi/pdf/10.1145/3634737.3661135 source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"beyond the edges of kernel control-flow hijacking protection with hek-cfi\" by lukas maar et. al](https://dl.acm.org/doi/pdf/10.1145/3634737.3661135) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use ap no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6a5647ca6f2be906",
      "item_id": "6c767ed844b3b461",
      "slug": "2024-defensive-on-kernel-s-safety-in-the-spectre-era-and-kaslr-is-formally-dead-primary-7d831a2d",
      "year": 2024,
      "title": "On Kernel's Safety in the Spectre Era (And KASLR is Formally Dead)",
      "item_title": "On Kernel's Safety in the Spectre Era (And KASLR is Formally Dead)",
      "authors": [
        "Davide Davoli et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/2406.07278",
      "primary_url": "https://arxiv.org/pdf/2406.07278",
      "parent_primary_url": "https://arxiv.org/pdf/2406.07278",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-on-kernel-s-safety-in-the-spectre-era-and-kaslr-is-formally-dead-primary-7d831a2d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# On Kernel's Safety in the Spectre Era (And KASLR is Formally Dead) record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: On Kernel's Safety in the Spectre Era (And KASLR is Formally Dead) resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2406.07278 parent_primary_url: https://arxiv.org/pdf/2406.07278 source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"On Kernel's Safety in the Spectre Era (And KASLR is Formally Dead)\" by Davide Davoli et al.](https://arxiv.org/pdf/2406.07278) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_e",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/2406.07278"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/2406.07278"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Spectre",
        "KASLR"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This paper examines kernel safety in the context of Spectre vulnerabilities and the implications for KASLR.",
      "summary_zh": "本文研究了在Spectre漏洞背景下内核安全性及其对KASLR的影响。",
      "source_markdown": "[2024: \"On Kernel's Safety in the Spectre Era (And KASLR is Formally Dead)\" by Davide Davoli et al.](https://arxiv.org/pdf/2406.07278) [paper]",
      "search_text": "on kernel's safety in the spectre era (and kaslr is formally dead) on kernel's safety in the spectre era (and kaslr is formally dead) davide davoli et al.   defensive  defensive primary paper https://arxiv.org/pdf/2406.07278 spectre kaslr  defensive this paper examines kernel safety in the context of spectre vulnerabilities and the implications for kaslr. 本文研究了在spectre漏洞背景下内核安全性及其对kaslr的影响。 # on kernel's safety in the spectre era (and kaslr is formally dead) record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: on kernel's safety in the spectre era (and kaslr is formally dead) resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2406.07278 parent_primary_url: https://arxiv.org/pdf/2406.07278 source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"on kernel's safety in the spectre era (and kaslr is formally dead)\" by davide davoli et al.](https://arxiv.org/pdf/2406.07278) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_e no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e4b406ad2847b393",
      "item_id": "760801409b641794",
      "slug": "2024-defensive-challenges-and-innovations-towards-safer-flexible-arrays-in-the-linux-kernel-primary-05c3384f",
      "year": 2024,
      "title": "Challenges and innovations towards safer flexible arrays in the Linux Kernel",
      "item_title": "Challenges and innovations towards safer flexible arrays in the Linux Kernel",
      "authors": [
        "Gustavo A. R. Silva"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://embeddedor.com/slides/2024/llc/llc2024.pdf",
      "primary_url": "https://embeddedor.com/slides/2024/llc/llc2024.pdf",
      "parent_primary_url": "https://embeddedor.com/slides/2024/llc/llc2024.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-challenges-and-innovations-towards-safer-flexible-arrays-in-the-linux-kernel-primary-05c3384f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Challenges and innovations towards safer flexible arrays in the Linux Kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Challenges and innovations towards safer flexible arrays in the Linux Kernel resource_label: primary resource_type: slides resource_url: https://embeddedor.com/slides/2024/llc/llc2024.pdf parent_primary_url: https://embeddedor.com/slides/2024/llc/llc2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Challenges and innovations towards safer flexible arrays in the Linux Kernel\" by Gustavo A. R. Silva](https://embeddedor.com/slides/2024/llc/llc2024.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS d",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://embeddedor.com/slides/2024/llc/llc2024.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://embeddedor.com/slides/2024/llc/llc2024.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "flexible_arrays",
        "safety"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This presentation addresses challenges and innovations for safer flexible arrays in the Linux kernel.",
      "summary_zh": "本演示讨论了Linux内核中更安全的灵活数组的挑战和创新。",
      "source_markdown": "[2024: \"Challenges and innovations towards safer flexible arrays in the Linux Kernel\" by Gustavo A. R. Silva](https://embeddedor.com/slides/2024/llc/llc2024.pdf) [slides]",
      "search_text": "challenges and innovations towards safer flexible arrays in the linux kernel challenges and innovations towards safer flexible arrays in the linux kernel gustavo a. r. silva   defensive  defensive primary slides https://embeddedor.com/slides/2024/llc/llc2024.pdf flexible_arrays safety  defensive this presentation addresses challenges and innovations for safer flexible arrays in the linux kernel. 本演示讨论了linux内核中更安全的灵活数组的挑战和创新。 # challenges and innovations towards safer flexible arrays in the linux kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: challenges and innovations towards safer flexible arrays in the linux kernel resource_label: primary resource_type: slides resource_url: https://embeddedor.com/slides/2024/llc/llc2024.pdf parent_primary_url: https://embeddedor.com/slides/2024/llc/llc2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"challenges and innovations towards safer flexible arrays in the linux kernel\" by gustavo a. r. silva](https://embeddedor.com/slides/2024/llc/llc2024.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios d no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "94d72a2bde84574e",
      "item_id": "5a5db49df8bcf167",
      "slug": "2024-defensive-mitigating-integer-overflow-in-c-primary-e78d4ed9",
      "year": 2024,
      "title": "Mitigating Integer Overflow in C",
      "item_title": "Mitigating Integer Overflow in C",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://outflux.net/slides/2024/lss-na/",
      "primary_url": "https://outflux.net/slides/2024/lss-na/",
      "parent_primary_url": "https://outflux.net/slides/2024/lss-na/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-mitigating-integer-overflow-in-c-primary-e78d4ed9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mitigating Integer Overflow in C record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Mitigating Integer Overflow in C resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2024/lss-na/ parent_primary_url: https://outflux.net/slides/2024/lss-na/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Mitigating Integer Overflow in C\" by Kees Cook](https://outflux.net/slides/2024/lss-na/) [slides] [[video](https://www.youtube.com/watch?v=PLcZkgHCk90)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2024/lss-na/"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=PLcZkgHCk90"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2024/lss-na/"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=PLcZkgHCk90"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "integer_overflow",
        "C"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This presentation covers strategies for mitigating integer overflow vulnerabilities in C programming.",
      "summary_zh": "本演示涵盖了减轻C语言中整数溢出漏洞的策略。",
      "source_markdown": "[2024: \"Mitigating Integer Overflow in C\" by Kees Cook](https://outflux.net/slides/2024/lss-na/) [slides] [[video](https://www.youtube.com/watch?v=PLcZkgHCk90)]",
      "search_text": "mitigating integer overflow in c mitigating integer overflow in c kees cook   defensive  defensive primary slides https://outflux.net/slides/2024/lss-na/ integer_overflow c  defensive this presentation covers strategies for mitigating integer overflow vulnerabilities in c programming. 本演示涵盖了减轻c语言中整数溢出漏洞的策略。 # mitigating integer overflow in c record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: mitigating integer overflow in c resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2024/lss-na/ parent_primary_url: https://outflux.net/slides/2024/lss-na/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"mitigating integer overflow in c\" by kees cook](https://outflux.net/slides/2024/lss-na/) [slides] [[video](https://www.youtube.com/watch?v=plczkghck90)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2495590cb7a5d5ad",
      "item_id": "5a5db49df8bcf167",
      "slug": "2024-defensive-mitigating-integer-overflow-in-c-video-626e911d",
      "year": 2024,
      "title": "Mitigating Integer Overflow in C · video",
      "item_title": "Mitigating Integer Overflow in C",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=PLcZkgHCk90",
      "primary_url": "https://www.youtube.com/watch?v=PLcZkgHCk90",
      "parent_primary_url": "https://outflux.net/slides/2024/lss-na/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-mitigating-integer-overflow-in-c-video-626e911d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mitigating Integer Overflow in C · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Mitigating Integer Overflow in C resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=PLcZkgHCk90 parent_primary_url: https://outflux.net/slides/2024/lss-na/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Mitigating Integer Overflow in C\" by Kees Cook](https://outflux.net/slides/2024/lss-na/) [slides] [[video](https://www.youtube.com/watch?v=PLcZkgHCk90)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_ur",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2024/lss-na/"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=PLcZkgHCk90"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2024/lss-na/"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=PLcZkgHCk90"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "integer_overflow",
        "C"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This video discusses mitigating integer overflow vulnerabilities in C, providing insights and strategies.",
      "summary_zh": "本视频讨论了减轻C语言中整数溢出漏洞的方法，提供了见解和策略。",
      "source_markdown": "[2024: \"Mitigating Integer Overflow in C\" by Kees Cook](https://outflux.net/slides/2024/lss-na/) [slides] [[video](https://www.youtube.com/watch?v=PLcZkgHCk90)]",
      "search_text": "mitigating integer overflow in c · video mitigating integer overflow in c kees cook   defensive  defensive video video https://www.youtube.com/watch?v=plczkghck90 integer_overflow c  defensive this video discusses mitigating integer overflow vulnerabilities in c, providing insights and strategies. 本视频讨论了减轻c语言中整数溢出漏洞的方法，提供了见解和策略。 # mitigating integer overflow in c · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: mitigating integer overflow in c resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=plczkghck90 parent_primary_url: https://outflux.net/slides/2024/lss-na/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"mitigating integer overflow in c\" by kees cook](https://outflux.net/slides/2024/lss-na/) [slides] [[video](https://www.youtube.com/watch?v=plczkghck90)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_ur no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6541de95e6d01ff9",
      "item_id": "cfebea38a86e7f5f",
      "slug": "2024-defensive-gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel-primary-40bf26ee",
      "year": 2024,
      "title": "Gaining bounds-checking on trailing arrays in the Upstream Linux Kernel",
      "item_title": "Gaining bounds-checking on trailing arrays in the Upstream Linux Kernel",
      "authors": [
        "Gustavo A. R. Silva"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://embeddedor.com/slides/2024/eo/eo2024.pdf",
      "primary_url": "https://embeddedor.com/slides/2024/eo/eo2024.pdf",
      "parent_primary_url": "https://embeddedor.com/slides/2024/eo/eo2024.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel-primary-40bf26ee.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Gaining bounds-checking on trailing arrays in the Upstream Linux Kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Gaining bounds-checking on trailing arrays in the Upstream Linux Kernel resource_label: primary resource_type: slides resource_url: https://embeddedor.com/slides/2024/eo/eo2024.pdf parent_primary_url: https://embeddedor.com/slides/2024/eo/eo2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Gaining bounds-checking on trailing arrays in the Upstream Linux Kernel\" by Gustavo A. R. Silva](https://embeddedor.com/slides/2024/eo/eo2024.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XN",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://embeddedor.com/slides/2024/eo/eo2024.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://embeddedor.com/slides/2024/eo/eo2024.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bounds-checking",
        "kernel-hardening"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This resource discusses implementing bounds-checking on trailing arrays in the Linux Kernel to enhance security.",
      "summary_zh": "该资源讨论了在Linux内核中实现对尾部数组的边界检查以增强安全性。",
      "source_markdown": "[2024: \"Gaining bounds-checking on trailing arrays in the Upstream Linux Kernel\" by Gustavo A. R. Silva](https://embeddedor.com/slides/2024/eo/eo2024.pdf) [slides]",
      "search_text": "gaining bounds-checking on trailing arrays in the upstream linux kernel gaining bounds-checking on trailing arrays in the upstream linux kernel gustavo a. r. silva   defensive  defensive primary slides https://embeddedor.com/slides/2024/eo/eo2024.pdf bounds-checking kernel-hardening  defensive this resource discusses implementing bounds-checking on trailing arrays in the linux kernel to enhance security. 该资源讨论了在linux内核中实现对尾部数组的边界检查以增强安全性。 # gaining bounds-checking on trailing arrays in the upstream linux kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: gaining bounds-checking on trailing arrays in the upstream linux kernel resource_label: primary resource_type: slides resource_url: https://embeddedor.com/slides/2024/eo/eo2024.pdf parent_primary_url: https://embeddedor.com/slides/2024/eo/eo2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"gaining bounds-checking on trailing arrays in the upstream linux kernel\" by gustavo a. r. silva](https://embeddedor.com/slides/2024/eo/eo2024.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xn no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "73bd9778e4bab4d4",
      "item_id": "e411820cf96c5c15",
      "slug": "2024-defensive-a-hybrid-alias-analysis-framework-and-its-application-to-protecting-the-linux-kernel-primary-ad",
      "year": 2024,
      "title": "A Hybrid Alias Analysis Framework and Its Application to Protecting the Linux Kernel",
      "item_title": "A Hybrid Alias Analysis Framework and Its Application to Protecting the Linux Kernel",
      "authors": [
        "Guoren Li"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=F4L2mBqnh30",
      "primary_url": "https://www.youtube.com/watch?v=F4L2mBqnh30",
      "parent_primary_url": "https://www.youtube.com/watch?v=F4L2mBqnh30",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-a-hybrid-alias-analysis-framework-and-its-application-to-protecting-the-linux-kernel-primary-ad.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Hybrid Alias Analysis Framework and Its Application to Protecting the Linux Kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: A Hybrid Alias Analysis Framework and Its Application to Protecting the Linux Kernel resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=F4L2mBqnh30 parent_primary_url: https://www.youtube.com/watch?v=F4L2mBqnh30 source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"A Hybrid Alias Analysis Framework and Its Application to Protecting the Linux Kernel\" by Guoren Li](https://www.youtube.com/watch?v=F4L2mBqnh30) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices us",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=F4L2mBqnh30"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=F4L2mBqnh30"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "alias-analysis",
        "kernel-protection"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A presentation on a hybrid alias analysis framework aimed at protecting the Linux Kernel.",
      "summary_zh": "关于旨在保护Linux内核的混合别名分析框架的演示。",
      "source_markdown": "[2024: \"A Hybrid Alias Analysis Framework and Its Application to Protecting the Linux Kernel\" by Guoren Li](https://www.youtube.com/watch?v=F4L2mBqnh30) [video]",
      "search_text": "a hybrid alias analysis framework and its application to protecting the linux kernel a hybrid alias analysis framework and its application to protecting the linux kernel guoren li   defensive  defensive primary video https://www.youtube.com/watch?v=f4l2mbqnh30 alias-analysis kernel-protection  defensive a presentation on a hybrid alias analysis framework aimed at protecting the linux kernel. 关于旨在保护linux内核的混合别名分析框架的演示。 # a hybrid alias analysis framework and its application to protecting the linux kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: a hybrid alias analysis framework and its application to protecting the linux kernel resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=f4l2mbqnh30 parent_primary_url: https://www.youtube.com/watch?v=f4l2mbqnh30 source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"a hybrid alias analysis framework and its application to protecting the linux kernel\" by guoren li](https://www.youtube.com/watch?v=f4l2mbqnh30) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices us no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e6f0bf66fc150515",
      "item_id": "58ea26db904ddffe",
      "slug": "2024-defensive-hardening-the-kernel-against-heap-spraying-attacks-primary-c418b2f6",
      "year": 2024,
      "title": "Hardening the kernel against heap-spraying attacks",
      "item_title": "Hardening the kernel against heap-spraying attacks",
      "authors": [
        "Jonathan Corbet"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://lwn.net/Articles/965837/",
      "primary_url": "https://lwn.net/Articles/965837/",
      "parent_primary_url": "https://lwn.net/Articles/965837/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-hardening-the-kernel-against-heap-spraying-attacks-primary-c418b2f6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Hardening the kernel against heap-spraying attacks record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Hardening the kernel against heap-spraying attacks resource_label: primary resource_type: article resource_url: https://lwn.net/Articles/965837/ parent_primary_url: https://lwn.net/Articles/965837/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Hardening the kernel against heap-spraying attacks\" by Jonathan Corbet](https://lwn.net/Articles/965837/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links:",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://lwn.net/Articles/965837/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://lwn.net/Articles/965837/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "heap-spraying",
        "kernel-hardening"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This article outlines methods for hardening the Linux Kernel against heap-spraying attacks.",
      "summary_zh": "本文概述了加强Linux内核抵御堆喷射攻击的方法。",
      "source_markdown": "[2024: \"Hardening the kernel against heap-spraying attacks\" by Jonathan Corbet](https://lwn.net/Articles/965837/) [article]",
      "search_text": "hardening the kernel against heap-spraying attacks hardening the kernel against heap-spraying attacks jonathan corbet   defensive  defensive primary article https://lwn.net/articles/965837/ heap-spraying kernel-hardening  defensive this article outlines methods for hardening the linux kernel against heap-spraying attacks. 本文概述了加强linux内核抵御堆喷射攻击的方法。 # hardening the kernel against heap-spraying attacks record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: hardening the kernel against heap-spraying attacks resource_label: primary resource_type: article resource_url: https://lwn.net/articles/965837/ parent_primary_url: https://lwn.net/articles/965837/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"hardening the kernel against heap-spraying attacks\" by jonathan corbet](https://lwn.net/articles/965837/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2276a80c474383d4",
      "item_id": "6f3948b3b2113416",
      "slug": "2024-defensive-notes-on-the-slab-introduce-dedicated-bucket-allocator-series-primary-9ef44e1d",
      "year": 2024,
      "title": "Notes on the 'slab: Introduce dedicated bucket allocator' series",
      "item_title": "Notes on the 'slab: Introduce dedicated bucket allocator' series",
      "authors": [
        "Julien Voisin"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://dustri.org/b/notes-on-the-slab-introduce-dedicated-bucket-allocator-series.html",
      "primary_url": "https://dustri.org/b/notes-on-the-slab-introduce-dedicated-bucket-allocator-series.html",
      "parent_primary_url": "https://dustri.org/b/notes-on-the-slab-introduce-dedicated-bucket-allocator-series.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2024-defensive-notes-on-the-slab-introduce-dedicated-bucket-allocator-series-primary-9ef44e1d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Notes on the 'slab: Introduce dedicated bucket allocator' series record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Notes on the 'slab: Introduce dedicated bucket allocator' series resource_label: primary resource_type: article resource_url: https://dustri.org/b/notes-on-the-slab-introduce-dedicated-bucket-allocator-series.html parent_primary_url: https://dustri.org/b/notes-on-the-slab-introduce-dedicated-bucket-allocator-series.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"Notes on the 'slab: Introduce dedicated bucket allocator' series\" by Julien Voisin](https://dustri.org/b/notes-on-the-slab-introduce-dedicated-bucket-allocator-series.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released And",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://dustri.org/b/notes-on-the-slab-introduce-dedicated-bucket-allocator-series.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://dustri.org/b/notes-on-the-slab-introduce-dedicated-bucket-allocator-series.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory-management",
        "slab-allocator"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Notes on the introduction of a dedicated bucket allocator in the slab memory management system of the Linux Kernel.",
      "summary_zh": "关于在Linux内核的slab内存管理系统中引入专用桶分配器的笔记。",
      "source_markdown": "[2024: \"Notes on the 'slab: Introduce dedicated bucket allocator' series\" by Julien Voisin](https://dustri.org/b/notes-on-the-slab-introduce-dedicated-bucket-allocator-series.html) [article]",
      "search_text": "notes on the 'slab: introduce dedicated bucket allocator' series notes on the 'slab: introduce dedicated bucket allocator' series julien voisin   defensive  defensive primary article https://dustri.org/b/notes-on-the-slab-introduce-dedicated-bucket-allocator-series.html memory-management slab-allocator  defensive notes on the introduction of a dedicated bucket allocator in the slab memory management system of the linux kernel. 关于在linux内核的slab内存管理系统中引入专用桶分配器的笔记。 # notes on the 'slab: introduce dedicated bucket allocator' series record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: notes on the 'slab: introduce dedicated bucket allocator' series resource_label: primary resource_type: article resource_url: https://dustri.org/b/notes-on-the-slab-introduce-dedicated-bucket-allocator-series.html parent_primary_url: https://dustri.org/b/notes-on-the-slab-introduce-dedicated-bucket-allocator-series.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2024: \"notes on the 'slab: introduce dedicated bucket allocator' series\" by julien voisin](https://dustri.org/b/notes-on-the-slab-introduce-dedicated-bucket-allocator-series.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released and no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5793c9440c0d5783",
      "item_id": "0a6b9c69e266b20b",
      "slug": "2023-defensive-modern-linux-kernel-mitigations-primary-432c8213",
      "year": 2023,
      "title": "Modern LInux Kernel Mitigations",
      "item_title": "Modern LInux Kernel Mitigations",
      "authors": [
        "Ray Veldkamp",
        "Matthew Kurz"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=kNCtWCcixsU",
      "primary_url": "https://www.youtube.com/watch?v=kNCtWCcixsU",
      "parent_primary_url": "https://www.youtube.com/watch?v=kNCtWCcixsU",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2023-defensive-modern-linux-kernel-mitigations-primary-432c8213.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Modern LInux Kernel Mitigations record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Modern LInux Kernel Mitigations resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=kNCtWCcixsU parent_primary_url: https://www.youtube.com/watch?v=kNCtWCcixsU source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"Modern LInux Kernel Mitigations\" by Ray Veldkamp and Matthew Kurz](https://www.youtube.com/watch?v=kNCtWCcixsU) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [video] pri",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=kNCtWCcixsU"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=kNCtWCcixsU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel-mitigations",
        "defensive-research"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video presentation discussing modern mitigations implemented in the Linux Kernel.",
      "summary_zh": "一段视频演示，讨论在Linux内核中实施的现代缓解措施。",
      "source_markdown": "[2023: \"Modern LInux Kernel Mitigations\" by Ray Veldkamp and Matthew Kurz](https://www.youtube.com/watch?v=kNCtWCcixsU) [video]",
      "search_text": "modern linux kernel mitigations modern linux kernel mitigations ray veldkamp matthew kurz   defensive  defensive primary video https://www.youtube.com/watch?v=knctwccixsu kernel-mitigations defensive-research  defensive a video presentation discussing modern mitigations implemented in the linux kernel. 一段视频演示，讨论在linux内核中实施的现代缓解措施。 # modern linux kernel mitigations record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: modern linux kernel mitigations resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=knctwccixsu parent_primary_url: https://www.youtube.com/watch?v=knctwccixsu source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"modern linux kernel mitigations\" by ray veldkamp and matthew kurz](https://www.youtube.com/watch?v=knctwccixsu) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [video] pri no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2c5aa3e391cfdebd",
      "item_id": "e65d5e345a05c52f",
      "slug": "2023-defensive-an-abridged-history-of-linux-kernel-hardening-primary-291cb5a8",
      "year": 2023,
      "title": "An abridged history of Linux kernel hardening",
      "item_title": "An abridged history of Linux kernel hardening",
      "authors": [
        "Russell Currey"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=n7oUA2b15P8",
      "primary_url": "https://www.youtube.com/watch?v=n7oUA2b15P8",
      "parent_primary_url": "https://www.youtube.com/watch?v=n7oUA2b15P8",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2023-defensive-an-abridged-history-of-linux-kernel-hardening-primary-291cb5a8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An abridged history of Linux kernel hardening record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: An abridged history of Linux kernel hardening resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=n7oUA2b15P8 parent_primary_url: https://www.youtube.com/watch?v=n7oUA2b15P8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"An abridged history of Linux kernel hardening\" by Russell Currey](https://www.youtube.com/watch?v=n7oUA2b15P8) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none c",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=n7oUA2b15P8"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=n7oUA2b15P8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel-hardening",
        "historical-overview"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "An overview of the history of hardening techniques applied to the Linux Kernel.",
      "summary_zh": "关于应用于Linux内核的加固技术历史的概述。",
      "source_markdown": "[2023: \"An abridged history of Linux kernel hardening\" by Russell Currey](https://www.youtube.com/watch?v=n7oUA2b15P8) [video]",
      "search_text": "an abridged history of linux kernel hardening an abridged history of linux kernel hardening russell currey   defensive  defensive primary video https://www.youtube.com/watch?v=n7oua2b15p8 kernel-hardening historical-overview  defensive an overview of the history of hardening techniques applied to the linux kernel. 关于应用于linux内核的加固技术历史的概述。 # an abridged history of linux kernel hardening record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: an abridged history of linux kernel hardening resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=n7oua2b15p8 parent_primary_url: https://www.youtube.com/watch?v=n7oua2b15p8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"an abridged history of linux kernel hardening\" by russell currey](https://www.youtube.com/watch?v=n7oua2b15p8) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none c no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f4cd1268acb6504c",
      "item_id": "422a2f3ad88ad403",
      "slug": "2023-defensive-exploring-linux-s-new-random-kmalloc-caches-primary-69b6c22d",
      "year": 2023,
      "title": "Exploring Linux's New Random Kmalloc Caches",
      "item_title": "Exploring Linux's New Random Kmalloc Caches",
      "authors": [
        "sam4k"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://sam4k.com/exploring-linux-random-kmalloc-caches/",
      "primary_url": "https://sam4k.com/exploring-linux-random-kmalloc-caches/",
      "parent_primary_url": "https://sam4k.com/exploring-linux-random-kmalloc-caches/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2023-defensive-exploring-linux-s-new-random-kmalloc-caches-primary-69b6c22d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploring Linux's New Random Kmalloc Caches record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Exploring Linux's New Random Kmalloc Caches resource_label: primary resource_type: article resource_url: https://sam4k.com/exploring-linux-random-kmalloc-caches/ parent_primary_url: https://sam4k.com/exploring-linux-random-kmalloc-caches/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"Exploring Linux's New Random Kmalloc Caches\" by sam4k](https://sam4k.com/exploring-linux-random-kmalloc-caches/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_l",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://sam4k.com/exploring-linux-random-kmalloc-caches/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://sam4k.com/exploring-linux-random-kmalloc-caches/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kmalloc",
        "randomization"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Exploration of the new random kmalloc caches introduced in the Linux Kernel for security improvements.",
      "summary_zh": "对Linux内核中引入的新随机kmalloc缓存进行探索，以提高安全性。",
      "source_markdown": "[2023: \"Exploring Linux's New Random Kmalloc Caches\" by sam4k](https://sam4k.com/exploring-linux-random-kmalloc-caches/) [article]",
      "search_text": "exploring linux's new random kmalloc caches exploring linux's new random kmalloc caches sam4k   defensive  defensive primary article https://sam4k.com/exploring-linux-random-kmalloc-caches/ kmalloc randomization  defensive exploration of the new random kmalloc caches introduced in the linux kernel for security improvements. 对linux内核中引入的新随机kmalloc缓存进行探索，以提高安全性。 # exploring linux's new random kmalloc caches record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: exploring linux's new random kmalloc caches resource_label: primary resource_type: article resource_url: https://sam4k.com/exploring-linux-random-kmalloc-caches/ parent_primary_url: https://sam4k.com/exploring-linux-random-kmalloc-caches/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"exploring linux's new random kmalloc caches\" by sam4k](https://sam4k.com/exploring-linux-random-kmalloc-caches/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_l no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ffe1f51058b3bff3",
      "item_id": "1f2d3a74d29b567c",
      "slug": "2023-defensive-toolchain-security-features-status-update-primary-2a84d942",
      "year": 2023,
      "title": "Toolchain security features status update",
      "item_title": "Toolchain security features status update",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://outflux.net/slides/2023/lpc/features.pdf",
      "primary_url": "https://outflux.net/slides/2023/lpc/features.pdf",
      "parent_primary_url": "https://outflux.net/slides/2023/lpc/features.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2023-defensive-toolchain-security-features-status-update-primary-2a84d942.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Toolchain security features status update record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Toolchain security features status update resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2023/lpc/features.pdf parent_primary_url: https://outflux.net/slides/2023/lpc/features.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"Toolchain security features status update\"](https://outflux.net/slides/2023/lpc/features.pdf) [slides] [[video](https://www.youtube.com/watch?v=OEFFqhP5sts)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2023/lpc/features.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=OEFFqhP5sts"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2023/lpc/features.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=OEFFqhP5sts"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "toolchain-security",
        "status-update"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A status update on security features in toolchains relevant to the Linux Kernel.",
      "summary_zh": "关于与Linux内核相关的工具链安全功能的状态更新。",
      "source_markdown": "[2023: \"Toolchain security features status update\"](https://outflux.net/slides/2023/lpc/features.pdf) [slides] [[video](https://www.youtube.com/watch?v=OEFFqhP5sts)]",
      "search_text": "toolchain security features status update toolchain security features status update    defensive  defensive primary slides https://outflux.net/slides/2023/lpc/features.pdf toolchain-security status-update  defensive a status update on security features in toolchains relevant to the linux kernel. 关于与linux内核相关的工具链安全功能的状态更新。 # toolchain security features status update record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: toolchain security features status update resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2023/lpc/features.pdf parent_primary_url: https://outflux.net/slides/2023/lpc/features.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"toolchain security features status update\"](https://outflux.net/slides/2023/lpc/features.pdf) [slides] [[video](https://www.youtube.com/watch?v=oeffqhp5sts)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2452132b8015dc62",
      "item_id": "1f2d3a74d29b567c",
      "slug": "2023-defensive-toolchain-security-features-status-update-video-e7b85042",
      "year": 2023,
      "title": "Toolchain security features status update · video",
      "item_title": "Toolchain security features status update",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=OEFFqhP5sts",
      "primary_url": "https://www.youtube.com/watch?v=OEFFqhP5sts",
      "parent_primary_url": "https://outflux.net/slides/2023/lpc/features.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2023-defensive-toolchain-security-features-status-update-video-e7b85042.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Toolchain security features status update · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Toolchain security features status update resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=OEFFqhP5sts parent_primary_url: https://outflux.net/slides/2023/lpc/features.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"Toolchain security features status update\"](https://outflux.net/slides/2023/lpc/features.pdf) [slides] [[video](https://www.youtube.com/watch?v=OEFFqhP5sts)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2023/lpc/features.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=OEFFqhP5sts"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2023/lpc/features.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=OEFFqhP5sts"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Defensive",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive",
      "summary_en": "2023 Linux kernel Defensive resource \"Toolchain security features status update · video\"; URL type: video.",
      "summary_zh": "2023 年 Linux 内核Defensive资料：「Toolchain security features status update · video」；URL 类型：video。",
      "source_markdown": "[2023: \"Toolchain security features status update\"](https://outflux.net/slides/2023/lpc/features.pdf) [slides] [[video](https://www.youtube.com/watch?v=OEFFqhP5sts)]",
      "search_text": "toolchain security features status update · video toolchain security features status update    defensive  defensive video video https://www.youtube.com/watch?v=oeffqhp5sts defensive video  defensive 2023 linux kernel defensive resource \"toolchain security features status update · video\"; url type: video. 2023 年 linux 内核defensive资料：「toolchain security features status update · video」；url 类型：video。 # toolchain security features status update · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: toolchain security features status update resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=oeffqhp5sts parent_primary_url: https://outflux.net/slides/2023/lpc/features.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"toolchain security features status update\"](https://outflux.net/slides/2023/lpc/features.pdf) [slides] [[video](https://www.youtube.com/watch?v=oeffqhp5sts)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "913dc9a79dd5a119",
      "item_id": "e3e16d4b7b267d2e",
      "slug": "2023-defensive-enable-mte-on-pixel-8-primary-8d7ebd6a",
      "year": 2023,
      "title": "Enable MTE on Pixel 8",
      "item_title": "Enable MTE on Pixel 8",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://outflux.net/blog/archives/2023/10/26/enable-mte-on-pixel-8/",
      "primary_url": "https://outflux.net/blog/archives/2023/10/26/enable-mte-on-pixel-8/",
      "parent_primary_url": "https://outflux.net/blog/archives/2023/10/26/enable-mte-on-pixel-8/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2023-defensive-enable-mte-on-pixel-8-primary-8d7ebd6a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Enable MTE on Pixel 8 record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Enable MTE on Pixel 8 resource_label: primary resource_type: article resource_url: https://outflux.net/blog/archives/2023/10/26/enable-mte-on-pixel-8/ parent_primary_url: https://outflux.net/blog/archives/2023/10/26/enable-mte-on-pixel-8/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"Enable MTE on Pixel 8\" by Kees Cook](https://outflux.net/blog/archives/2023/10/26/enable-mte-on-pixel-8/) [article] cves: none android_impact_status: unknown android_impact_reason: mentions Pixel devices; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: fal",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://outflux.net/blog/archives/2023/10/26/enable-mte-on-pixel-8/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://outflux.net/blog/archives/2023/10/26/enable-mte-on-pixel-8/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Pixel devices; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "MTE",
        "android-security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "An article discussing the implementation of Memory Tagging Extension (MTE) on Pixel 8 devices.",
      "summary_zh": "一篇讨论在Pixel 8设备上实施内存标记扩展（MTE）的文章。",
      "source_markdown": "[2023: \"Enable MTE on Pixel 8\" by Kees Cook](https://outflux.net/blog/archives/2023/10/26/enable-mte-on-pixel-8/) [article]",
      "search_text": "enable mte on pixel 8 enable mte on pixel 8 kees cook   defensive  defensive primary article https://outflux.net/blog/archives/2023/10/26/enable-mte-on-pixel-8/ mte android-security  defensive an article discussing the implementation of memory tagging extension (mte) on pixel 8 devices. 一篇讨论在pixel 8设备上实施内存标记扩展（mte）的文章。 # enable mte on pixel 8 record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: enable mte on pixel 8 resource_label: primary resource_type: article resource_url: https://outflux.net/blog/archives/2023/10/26/enable-mte-on-pixel-8/ parent_primary_url: https://outflux.net/blog/archives/2023/10/26/enable-mte-on-pixel-8/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"enable mte on pixel 8\" by kees cook](https://outflux.net/blog/archives/2023/10/26/enable-mte-on-pixel-8/) [article] cves: none android_impact_status: unknown android_impact_reason: mentions pixel devices; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: fal unknown mentions pixel devices; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "48ff92b0ebc5d24a",
      "item_id": "33c73dc803f368d0",
      "slug": "2023-defensive-gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel-primary-337d2dde",
      "year": 2023,
      "title": "Gaining bounds-checking on trailing arrays in the Upstream Linux Kernel",
      "item_title": "Gaining bounds-checking on trailing arrays in the Upstream Linux Kernel",
      "authors": [
        "Gustavo A. R. Silva"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel",
      "primary_url": "https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel",
      "parent_primary_url": "https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2023-defensive-gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel-primary-337d2dde.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Gaining bounds-checking on trailing arrays in the Upstream Linux Kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Gaining bounds-checking on trailing arrays in the Upstream Linux Kernel resource_label: primary resource_type: slides resource_url: https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel parent_primary_url: https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"Gaining bounds-checking on trailing arrays in the Upstream Linux Kernel\" by Gustavo A. R. Silva](https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel) [slides] [[video](https://www.youtube.com/watch?v=bfKrLH7p",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=bfKrLH7pLBQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=bfKrLH7pLBQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bounds-checking",
        "kernel-security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A presentation on bounds-checking for trailing arrays in the Linux Kernel, focusing on security enhancements.",
      "summary_zh": "关于Linux内核中尾部数组的边界检查的演示，重点关注安全增强。",
      "source_markdown": "[2023: \"Gaining bounds-checking on trailing arrays in the Upstream Linux Kernel\" by Gustavo A. R. Silva](https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel) [slides] [[video](https://www.youtube.com/watch?v=bfKrLH7pLBQ)]",
      "search_text": "gaining bounds-checking on trailing arrays in the upstream linux kernel gaining bounds-checking on trailing arrays in the upstream linux kernel gustavo a. r. silva   defensive  defensive primary slides https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel bounds-checking kernel-security  defensive a presentation on bounds-checking for trailing arrays in the linux kernel, focusing on security enhancements. 关于linux内核中尾部数组的边界检查的演示，重点关注安全增强。 # gaining bounds-checking on trailing arrays in the upstream linux kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: gaining bounds-checking on trailing arrays in the upstream linux kernel resource_label: primary resource_type: slides resource_url: https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel parent_primary_url: https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"gaining bounds-checking on trailing arrays in the upstream linux kernel\" by gustavo a. r. silva](https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel) [slides] [[video](https://www.youtube.com/watch?v=bfkrlh7p no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6626413c572f1a56",
      "item_id": "33c73dc803f368d0",
      "slug": "2023-defensive-gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel-video-0e9a1bb5",
      "year": 2023,
      "title": "Gaining bounds-checking on trailing arrays in the Upstream Linux Kernel · video",
      "item_title": "Gaining bounds-checking on trailing arrays in the Upstream Linux Kernel",
      "authors": [
        "Gustavo A. R. Silva"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=bfKrLH7pLBQ",
      "primary_url": "https://www.youtube.com/watch?v=bfKrLH7pLBQ",
      "parent_primary_url": "https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2023-defensive-gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel-video-0e9a1bb5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Gaining bounds-checking on trailing arrays in the Upstream Linux Kernel · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Gaining bounds-checking on trailing arrays in the Upstream Linux Kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=bfKrLH7pLBQ parent_primary_url: https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"Gaining bounds-checking on trailing arrays in the Upstream Linux Kernel\" by Gustavo A. R. Silva](https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel) [slides] [[video](https://www.youtube.com/watch?v=bfKrLH7pLBQ)] cves: none android_impact_status: no android_imp",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=bfKrLH7pLBQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=bfKrLH7pLBQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bounds-checking",
        "kernel-security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video discussing bounds-checking on trailing arrays in the Linux Kernel and its security implications.",
      "summary_zh": "一段视频讨论Linux内核中尾部数组的边界检查及其安全影响。",
      "source_markdown": "[2023: \"Gaining bounds-checking on trailing arrays in the Upstream Linux Kernel\" by Gustavo A. R. Silva](https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel) [slides] [[video](https://www.youtube.com/watch?v=bfKrLH7pLBQ)]",
      "search_text": "gaining bounds-checking on trailing arrays in the upstream linux kernel · video gaining bounds-checking on trailing arrays in the upstream linux kernel gustavo a. r. silva   defensive  defensive video video https://www.youtube.com/watch?v=bfkrlh7plbq bounds-checking kernel-security  defensive a video discussing bounds-checking on trailing arrays in the linux kernel and its security implications. 一段视频讨论linux内核中尾部数组的边界检查及其安全影响。 # gaining bounds-checking on trailing arrays in the upstream linux kernel · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: gaining bounds-checking on trailing arrays in the upstream linux kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=bfkrlh7plbq parent_primary_url: https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"gaining bounds-checking on trailing arrays in the upstream linux kernel\" by gustavo a. r. silva](https://speakerdeck.com/ennael/gaining-bounds-checking-on-trailing-arrays-in-the-upstream-linux-kernel) [slides] [[video](https://www.youtube.com/watch?v=bfkrlh7plbq)] cves: none android_impact_status: no android_imp no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ee6ccaa0c28588b5",
      "item_id": "79ffede5f58eaf22",
      "slug": "2023-defensive-constify-fast-defenses-for-new-exploits-primary-19efb2cb",
      "year": 2023,
      "title": "CONSTIFY: Fast Defenses for New Exploits",
      "item_title": "CONSTIFY: Fast Defenses for New Exploits",
      "authors": [
        "Mathias Krause"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://grsecurity.net/constify_fast_defenses_for_new_exploits",
      "primary_url": "https://grsecurity.net/constify_fast_defenses_for_new_exploits",
      "parent_primary_url": "https://grsecurity.net/constify_fast_defenses_for_new_exploits",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2023-defensive-constify-fast-defenses-for-new-exploits-primary-19efb2cb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CONSTIFY: Fast Defenses for New Exploits record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: CONSTIFY: Fast Defenses for New Exploits resource_label: primary resource_type: article resource_url: https://grsecurity.net/constify_fast_defenses_for_new_exploits parent_primary_url: https://grsecurity.net/constify_fast_defenses_for_new_exploits source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"CONSTIFY: Fast Defenses for New Exploits\" by Mathias Krause](https://grsecurity.net/constify_fast_defenses_for_new_exploits) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: t",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://grsecurity.net/constify_fast_defenses_for_new_exploits"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://grsecurity.net/constify_fast_defenses_for_new_exploits"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CONSTIFY",
        "exploit-defense"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "An article introducing CONSTIFY, a method for fast defenses against new exploits in the Linux Kernel.",
      "summary_zh": "介绍CONSTIFY，一种针对Linux内核新漏洞的快速防御方法的文章。",
      "source_markdown": "[2023: \"CONSTIFY: Fast Defenses for New Exploits\" by Mathias Krause](https://grsecurity.net/constify_fast_defenses_for_new_exploits) [article]",
      "search_text": "constify: fast defenses for new exploits constify: fast defenses for new exploits mathias krause   defensive  defensive primary article https://grsecurity.net/constify_fast_defenses_for_new_exploits constify exploit-defense  defensive an article introducing constify, a method for fast defenses against new exploits in the linux kernel. 介绍constify，一种针对linux内核新漏洞的快速防御方法的文章。 # constify: fast defenses for new exploits record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: constify: fast defenses for new exploits resource_label: primary resource_type: article resource_url: https://grsecurity.net/constify_fast_defenses_for_new_exploits parent_primary_url: https://grsecurity.net/constify_fast_defenses_for_new_exploits source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"constify: fast defenses for new exploits\" by mathias krause](https://grsecurity.net/constify_fast_defenses_for_new_exploits) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: t no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    has-poc poc proof-of-concept"
    },
    {
      "id": "dc6273b2c8df4475",
      "item_id": "581e6ab619c53d3c",
      "slug": "2023-defensive-mitigating-security-risks-in-linux-with-klaus-a-method-for-evaluating-patch-correctness-primary",
      "year": 2023,
      "title": "Mitigating Security Risks in Linux with KLAUS: A Method for Evaluating Patch Correctness",
      "item_title": "Mitigating Security Risks in Linux with KLAUS: A Method for Evaluating Patch Correctness",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf",
      "primary_url": "https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2023-defensive-mitigating-security-risks-in-linux-with-klaus-a-method-for-evaluating-patch-correctness-primary.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mitigating Security Risks in Linux with KLAUS: A Method for Evaluating Patch Correctness record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Mitigating Security Risks in Linux with KLAUS: A Method for Evaluating Patch Correctness resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"Mitigating Security Risks in Linux with KLAUS: A Method for Evaluating Patch Correctness\"](https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_wu-yuhang.pdf)] cves: none android_impact_status: no android_impact_reas",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec23_slides_wu-yuhang.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec23_slides_wu-yuhang.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "patch-evaluation",
        "security-mitigation"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A paper presenting KLAUS, a method for evaluating patch correctness to mitigate security risks in Linux.",
      "summary_zh": "一篇介绍KLAUS的方法，用于评估补丁正确性以减轻Linux中的安全风险的论文。",
      "source_markdown": "[2023: \"Mitigating Security Risks in Linux with KLAUS: A Method for Evaluating Patch Correctness\"](https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_wu-yuhang.pdf)]",
      "search_text": "mitigating security risks in linux with klaus: a method for evaluating patch correctness mitigating security risks in linux with klaus: a method for evaluating patch correctness    defensive  defensive primary paper https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf patch-evaluation security-mitigation  defensive a paper presenting klaus, a method for evaluating patch correctness to mitigate security risks in linux. 一篇介绍klaus的方法，用于评估补丁正确性以减轻linux中的安全风险的论文。 # mitigating security risks in linux with klaus: a method for evaluating patch correctness record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: mitigating security risks in linux with klaus: a method for evaluating patch correctness resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"mitigating security risks in linux with klaus: a method for evaluating patch correctness\"](https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_wu-yuhang.pdf)] cves: none android_impact_status: no android_impact_reas no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d375dc37b0d23ea3",
      "item_id": "581e6ab619c53d3c",
      "slug": "2023-defensive-mitigating-security-risks-in-linux-with-klaus-a-method-for-evaluating-patch-correctness-slides-",
      "year": 2023,
      "title": "Mitigating Security Risks in Linux with KLAUS: A Method for Evaluating Patch Correctness · slides",
      "item_title": "Mitigating Security Risks in Linux with KLAUS: A Method for Evaluating Patch Correctness",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/sec23_slides_wu-yuhang.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec23_slides_wu-yuhang.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2023-defensive-mitigating-security-risks-in-linux-with-klaus-a-method-for-evaluating-patch-correctness-slides-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mitigating Security Risks in Linux with KLAUS: A Method for Evaluating Patch Correctness · slides record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Mitigating Security Risks in Linux with KLAUS: A Method for Evaluating Patch Correctness resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec23_slides_wu-yuhang.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"Mitigating Security Risks in Linux with KLAUS: A Method for Evaluating Patch Correctness\"](https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_wu-yuhang.pdf)] cves: none android_impact_status: no android_impact",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec23_slides_wu-yuhang.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec23_slides_wu-yuhang.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "patch-evaluation",
        "security-mitigation"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides accompanying a paper on KLAUS, focusing on patch correctness in Linux security.",
      "summary_zh": "与关于KLAUS的论文相关的幻灯片，重点关注Linux安全中的补丁正确性。",
      "source_markdown": "[2023: \"Mitigating Security Risks in Linux with KLAUS: A Method for Evaluating Patch Correctness\"](https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_wu-yuhang.pdf)]",
      "search_text": "mitigating security risks in linux with klaus: a method for evaluating patch correctness · slides mitigating security risks in linux with klaus: a method for evaluating patch correctness    defensive  defensive slides slides https://www.usenix.org/system/files/sec23_slides_wu-yuhang.pdf patch-evaluation security-mitigation  defensive slides accompanying a paper on klaus, focusing on patch correctness in linux security. 与关于klaus的论文相关的幻灯片，重点关注linux安全中的补丁正确性。 # mitigating security risks in linux with klaus: a method for evaluating patch correctness · slides record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: mitigating security risks in linux with klaus: a method for evaluating patch correctness resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec23_slides_wu-yuhang.pdf parent_primary_url: https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"mitigating security risks in linux with klaus: a method for evaluating patch correctness\"](https://www.usenix.org/system/files/usenixsecurity23-wu-yuhang.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec23_slides_wu-yuhang.pdf)] cves: none android_impact_status: no android_impact no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7306fbb7397c93f7",
      "item_id": "48d2cf2893a9d1ac",
      "slug": "2023-defensive-progress-on-bounds-checking-in-c-and-the-linux-kernel-primary-baf1cf99",
      "year": 2023,
      "title": "Progress On Bounds Checking in C and the Linux Kernel",
      "item_title": "Progress On Bounds Checking in C and the Linux Kernel",
      "authors": [
        "Kees Cook & Gustavo A. R. Silva"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://outflux.net/slides/2023/lss-na/bounds-checking.pdf",
      "primary_url": "https://outflux.net/slides/2023/lss-na/bounds-checking.pdf",
      "parent_primary_url": "https://outflux.net/slides/2023/lss-na/bounds-checking.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2023-defensive-progress-on-bounds-checking-in-c-and-the-linux-kernel-primary-baf1cf99.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Progress On Bounds Checking in C and the Linux Kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Progress On Bounds Checking in C and the Linux Kernel resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2023/lss-na/bounds-checking.pdf parent_primary_url: https://outflux.net/slides/2023/lss-na/bounds-checking.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"Progress On Bounds Checking in C and the Linux Kernel\" by Kees Cook & Gustavo A. R. Silva](https://outflux.net/slides/2023/lss-na/bounds-checking.pdf) [slides] [[video](https://www.youtube.com/watch?v=V2kzptQG5_A)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_re",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2023/lss-na/bounds-checking.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=V2kzptQG5_A"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2023/lss-na/bounds-checking.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=V2kzptQG5_A"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bounds-checking",
        "kernel-security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides discussing progress on bounds-checking in C and the Linux Kernel for enhanced security.",
      "summary_zh": "讨论C语言和Linux内核中边界检查进展的幻灯片，以增强安全性。",
      "source_markdown": "[2023: \"Progress On Bounds Checking in C and the Linux Kernel\" by Kees Cook & Gustavo A. R. Silva](https://outflux.net/slides/2023/lss-na/bounds-checking.pdf) [slides] [[video](https://www.youtube.com/watch?v=V2kzptQG5_A)]",
      "search_text": "progress on bounds checking in c and the linux kernel progress on bounds checking in c and the linux kernel kees cook & gustavo a. r. silva   defensive  defensive primary slides https://outflux.net/slides/2023/lss-na/bounds-checking.pdf bounds-checking kernel-security  defensive slides discussing progress on bounds-checking in c and the linux kernel for enhanced security. 讨论c语言和linux内核中边界检查进展的幻灯片，以增强安全性。 # progress on bounds checking in c and the linux kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: progress on bounds checking in c and the linux kernel resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2023/lss-na/bounds-checking.pdf parent_primary_url: https://outflux.net/slides/2023/lss-na/bounds-checking.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"progress on bounds checking in c and the linux kernel\" by kees cook & gustavo a. r. silva](https://outflux.net/slides/2023/lss-na/bounds-checking.pdf) [slides] [[video](https://www.youtube.com/watch?v=v2kzptqg5_a)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_re no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2fa99dae5cc1f1a7",
      "item_id": "48d2cf2893a9d1ac",
      "slug": "2023-defensive-progress-on-bounds-checking-in-c-and-the-linux-kernel-video-82661993",
      "year": 2023,
      "title": "Progress On Bounds Checking in C and the Linux Kernel · video",
      "item_title": "Progress On Bounds Checking in C and the Linux Kernel",
      "authors": [
        "Kees Cook & Gustavo A. R. Silva"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=V2kzptQG5_A",
      "primary_url": "https://www.youtube.com/watch?v=V2kzptQG5_A",
      "parent_primary_url": "https://outflux.net/slides/2023/lss-na/bounds-checking.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2023-defensive-progress-on-bounds-checking-in-c-and-the-linux-kernel-video-82661993.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Progress On Bounds Checking in C and the Linux Kernel · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Progress On Bounds Checking in C and the Linux Kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=V2kzptQG5_A parent_primary_url: https://outflux.net/slides/2023/lss-na/bounds-checking.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"Progress On Bounds Checking in C and the Linux Kernel\" by Kees Cook & Gustavo A. R. Silva](https://outflux.net/slides/2023/lss-na/bounds-checking.pdf) [slides] [[video](https://www.youtube.com/watch?v=V2kzptQG5_A)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Prod",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2023/lss-na/bounds-checking.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=V2kzptQG5_A"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2023/lss-na/bounds-checking.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=V2kzptQG5_A"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bounds-checking",
        "kernel-security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video presentation on the progress of bounds-checking in C and the Linux Kernel.",
      "summary_zh": "关于C语言和Linux内核中边界检查进展的视频演示。",
      "source_markdown": "[2023: \"Progress On Bounds Checking in C and the Linux Kernel\" by Kees Cook & Gustavo A. R. Silva](https://outflux.net/slides/2023/lss-na/bounds-checking.pdf) [slides] [[video](https://www.youtube.com/watch?v=V2kzptQG5_A)]",
      "search_text": "progress on bounds checking in c and the linux kernel · video progress on bounds checking in c and the linux kernel kees cook & gustavo a. r. silva   defensive  defensive video video https://www.youtube.com/watch?v=v2kzptqg5_a bounds-checking kernel-security  defensive a video presentation on the progress of bounds-checking in c and the linux kernel. 关于c语言和linux内核中边界检查进展的视频演示。 # progress on bounds checking in c and the linux kernel · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: progress on bounds checking in c and the linux kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=v2kzptqg5_a parent_primary_url: https://outflux.net/slides/2023/lss-na/bounds-checking.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"progress on bounds checking in c and the linux kernel\" by kees cook & gustavo a. r. silva](https://outflux.net/slides/2023/lss-na/bounds-checking.pdf) [slides] [[video](https://www.youtube.com/watch?v=v2kzptqg5_a)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: prod no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1af775c1cce66cbb",
      "item_id": "fe3539b7c8710a57",
      "slug": "2023-defensive-mobile-exploitation-the-past-present-and-the-future-primary-1f19c0c8",
      "year": 2023,
      "title": "Mobile Exploitation - The past, present, and the future",
      "item_title": "Mobile Exploitation - The past, present, and the future",
      "authors": [
        "Ki Chan Ahn"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://github.com/externalist/presentations/blob/master/2023%20Zer0con/Mobile%20Exploitation%2C%20the%20past%2C%20present%2C%20and%20future.pdf",
      "primary_url": "https://github.com/externalist/presentations/blob/master/2023%20Zer0con/Mobile%20Exploitation%2C%20the%20past%2C%20present%2C%20and%20future.pdf",
      "parent_primary_url": "https://github.com/externalist/presentations/blob/master/2023%20Zer0con/Mobile%20Exploitation%2C%20the%20past%2C%20present%2C%20and%20future.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2023-defensive-mobile-exploitation-the-past-present-and-the-future-primary-1f19c0c8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mobile Exploitation - The past, present, and the future record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Mobile Exploitation - The past, present, and the future resource_label: primary resource_type: slides resource_url: https://github.com/externalist/presentations/blob/master/2023%20Zer0con/Mobile%20Exploitation%2C%20the%20past%2C%20present%2C%20and%20future.pdf parent_primary_url: https://github.com/externalist/presentations/blob/master/2023%20Zer0con/Mobile%20Exploitation%2C%20the%20past%2C%20present%2C%20and%20future.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"Mobile Exploitation - The past, present, and the future\" by Ki Chan Ahn](https://github.com/externalist/presentations/blob/master/2023%20Zer0con/Mobile%20Exploitation%2C%20the%20past%2C%20present%2C%20and%20",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/externalist/presentations/blob/master/2023%20Zer0con/Mobile%20Exploitation%2C%20the%20past%2C%20present%2C%20and%20future.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/externalist/presentations/blob/master/2023%20Zer0con/Mobile%20Exploitation%2C%20the%20past%2C%20present%2C%20and%20future.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/externalist/presentations/blob/master/2023%20Zer0con/Mobile%20Exploitation%2C%20the%20past%2C%20present%2C%20and%20future.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "mobile-exploitation",
        "security-trends"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides on mobile exploitation trends, discussing past, present, and future challenges in security.",
      "summary_zh": "关于移动利用趋势的幻灯片，讨论安全中的过去、现在和未来挑战。",
      "source_markdown": "[2023: \"Mobile Exploitation - The past, present, and the future\" by Ki Chan Ahn](https://github.com/externalist/presentations/blob/master/2023%20Zer0con/Mobile%20Exploitation%2C%20the%20past%2C%20present%2C%20and%20future.pdf) [slides]",
      "search_text": "mobile exploitation - the past, present, and the future mobile exploitation - the past, present, and the future ki chan ahn   defensive  defensive primary slides https://github.com/externalist/presentations/blob/master/2023%20zer0con/mobile%20exploitation%2c%20the%20past%2c%20present%2c%20and%20future.pdf mobile-exploitation security-trends  defensive slides on mobile exploitation trends, discussing past, present, and future challenges in security. 关于移动利用趋势的幻灯片，讨论安全中的过去、现在和未来挑战。 # mobile exploitation - the past, present, and the future record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: mobile exploitation - the past, present, and the future resource_label: primary resource_type: slides resource_url: https://github.com/externalist/presentations/blob/master/2023%20zer0con/mobile%20exploitation%2c%20the%20past%2c%20present%2c%20and%20future.pdf parent_primary_url: https://github.com/externalist/presentations/blob/master/2023%20zer0con/mobile%20exploitation%2c%20the%20past%2c%20present%2c%20and%20future.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"mobile exploitation - the past, present, and the future\" by ki chan ahn](https://github.com/externalist/presentations/blob/master/2023%20zer0con/mobile%20exploitation%2c%20the%20past%2c%20present%2c%20and%20 no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "75cbff057984641c",
      "item_id": "0f272caf31a2719d",
      "slug": "2023-defensive-bounded-flexible-arrays-in-c-primary-311fb66a",
      "year": 2023,
      "title": "Bounded Flexible Arrays in C",
      "item_title": "Bounded Flexible Arrays in C",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://people.kernel.org/kees/bounded-flexible-arrays-in-c",
      "primary_url": "https://people.kernel.org/kees/bounded-flexible-arrays-in-c",
      "parent_primary_url": "https://people.kernel.org/kees/bounded-flexible-arrays-in-c",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2023-defensive-bounded-flexible-arrays-in-c-primary-311fb66a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Bounded Flexible Arrays in C record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Bounded Flexible Arrays in C resource_label: primary resource_type: article resource_url: https://people.kernel.org/kees/bounded-flexible-arrays-in-c parent_primary_url: https://people.kernel.org/kees/bounded-flexible-arrays-in-c source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"Bounded Flexible Arrays in C\" by Kees Cook](https://people.kernel.org/kees/bounded-flexible-arrays-in-c) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none conte",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://people.kernel.org/kees/bounded-flexible-arrays-in-c"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://people.kernel.org/kees/bounded-flexible-arrays-in-c"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "flexible-arrays",
        "safety-improvement"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "An article discussing the concept of bounded flexible arrays in C for improved safety.",
      "summary_zh": "讨论C语言中有界灵活数组概念以提高安全性的文章。",
      "source_markdown": "[2023: \"Bounded Flexible Arrays in C\" by Kees Cook](https://people.kernel.org/kees/bounded-flexible-arrays-in-c) [article]",
      "search_text": "bounded flexible arrays in c bounded flexible arrays in c kees cook   defensive  defensive primary article https://people.kernel.org/kees/bounded-flexible-arrays-in-c flexible-arrays safety-improvement  defensive an article discussing the concept of bounded flexible arrays in c for improved safety. 讨论c语言中有界灵活数组概念以提高安全性的文章。 # bounded flexible arrays in c record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: bounded flexible arrays in c resource_label: primary resource_type: article resource_url: https://people.kernel.org/kees/bounded-flexible-arrays-in-c parent_primary_url: https://people.kernel.org/kees/bounded-flexible-arrays-in-c source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2023: \"bounded flexible arrays in c\" by kees cook](https://people.kernel.org/kees/bounded-flexible-arrays-in-c) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none conte no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c82d0f5759e27a70",
      "item_id": "fedfeb5dc449fa6c",
      "slug": "2022-defensive-survey-of-security-mitigations-and-architectures-december-2022-primary-69f037ed",
      "year": 2022,
      "title": "Survey of security mitigations and architectures, December 2022",
      "item_title": "Survey of security mitigations and architectures, December 2022",
      "authors": [
        "Saar Amar"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://saaramar.github.io/memory_safety_blogpost_2022/",
      "primary_url": "https://saaramar.github.io/memory_safety_blogpost_2022/",
      "parent_primary_url": "https://saaramar.github.io/memory_safety_blogpost_2022/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-survey-of-security-mitigations-and-architectures-december-2022-primary-69f037ed.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Survey of security mitigations and architectures, December 2022 record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Survey of security mitigations and architectures, December 2022 resource_label: primary resource_type: article resource_url: https://saaramar.github.io/memory_safety_blogpost_2022/ parent_primary_url: https://saaramar.github.io/memory_safety_blogpost_2022/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Survey of security mitigations and architectures, December 2022\" by Saar Amar](https://saaramar.github.io/memory_safety_blogpost_2022/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel ra",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://saaramar.github.io/memory_safety_blogpost_2022/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://saaramar.github.io/memory_safety_blogpost_2022/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://saaramar.github.io/memory_safety_blogpost_2022/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security-survey",
        "Linux-architecture"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A survey of security mitigations and architectures relevant to Linux as of December 2022.",
      "summary_zh": "截至2022年12月，与Linux相关的安全缓解措施和架构的调查。",
      "source_markdown": "[2022: \"Survey of security mitigations and architectures, December 2022\" by Saar Amar](https://saaramar.github.io/memory_safety_blogpost_2022/) [article]",
      "search_text": "survey of security mitigations and architectures, december 2022 survey of security mitigations and architectures, december 2022 saar amar   defensive  defensive primary article https://saaramar.github.io/memory_safety_blogpost_2022/ security-survey linux-architecture  defensive a survey of security mitigations and architectures relevant to linux as of december 2022. 截至2022年12月，与linux相关的安全缓解措施和架构的调查。 # survey of security mitigations and architectures, december 2022 record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: survey of security mitigations and architectures, december 2022 resource_label: primary resource_type: article resource_url: https://saaramar.github.io/memory_safety_blogpost_2022/ parent_primary_url: https://saaramar.github.io/memory_safety_blogpost_2022/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"survey of security mitigations and architectures, december 2022\" by saar amar](https://saaramar.github.io/memory_safety_blogpost_2022/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel ra no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "cd4d8525ab0a2d8f",
      "item_id": "14e5a5befea2d0e9",
      "slug": "2022-defensive-canary-in-the-kernel-mine-exploiting-and-defending-against-same-type-object-reuse-primary-af289",
      "year": 2022,
      "title": "Canary in the Kernel Mine: Exploiting and Defending Against Same-Type Object Reuse",
      "item_title": "Canary in the Kernel Mine: Exploiting and Defending Against Same-Type Object Reuse",
      "authors": [
        "Mathias Krause"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse",
      "primary_url": "https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse",
      "parent_primary_url": "https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-canary-in-the-kernel-mine-exploiting-and-defending-against-same-type-object-reuse-primary-af289.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Canary in the Kernel Mine: Exploiting and Defending Against Same-Type Object Reuse record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Canary in the Kernel Mine: Exploiting and Defending Against Same-Type Object Reuse resource_label: primary resource_type: article resource_url: https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse parent_primary_url: https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Canary in the Kernel Mine: Exploiting and Defending Against Same-Type Object Reuse\" by Mathias Krause](https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse) [article] [[reference exploits](https://github.com/opensrcsec/same_type_object_reuse_exploits)] cves:",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse"
        },
        {
          "label": "reference exploits",
          "type": "exploit",
          "url": "https://github.com/opensrcsec/same_type_object_reuse_exploits"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "reference exploits",
            "type": "exploit",
            "url": "https://github.com/opensrcsec/same_type_object_reuse_exploits"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/opensrcsec/same_type_object_reuse_exploits"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "object_reuse",
        "defense",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This resource discusses exploiting and defending against same-type object reuse vulnerabilities in the Linux kernel.",
      "summary_zh": "该资源讨论了在Linux内核中利用和防御同类型对象重用漏洞。",
      "source_markdown": "[2022: \"Canary in the Kernel Mine: Exploiting and Defending Against Same-Type Object Reuse\" by Mathias Krause](https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse) [article] [[reference exploits](https://github.com/opensrcsec/same_type_object_reuse_exploits)]",
      "search_text": "canary in the kernel mine: exploiting and defending against same-type object reuse canary in the kernel mine: exploiting and defending against same-type object reuse mathias krause   defensive  defensive primary article https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse object_reuse defense vulnerability  defensive this resource discusses exploiting and defending against same-type object reuse vulnerabilities in the linux kernel. 该资源讨论了在linux内核中利用和防御同类型对象重用漏洞。 # canary in the kernel mine: exploiting and defending against same-type object reuse record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: canary in the kernel mine: exploiting and defending against same-type object reuse resource_label: primary resource_type: article resource_url: https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse parent_primary_url: https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"canary in the kernel mine: exploiting and defending against same-type object reuse\" by mathias krause](https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse) [article] [[reference exploits](https://github.com/opensrcsec/same_type_object_reuse_exploits)] cves: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "027b175a08701c1f",
      "item_id": "14e5a5befea2d0e9",
      "slug": "2022-defensive-canary-in-the-kernel-mine-exploiting-and-defending-against-same-type-object-reuse-reference-exp",
      "year": 2022,
      "title": "Canary in the Kernel Mine: Exploiting and Defending Against Same-Type Object Reuse · reference exploits",
      "item_title": "Canary in the Kernel Mine: Exploiting and Defending Against Same-Type Object Reuse",
      "authors": [
        "Mathias Krause"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "reference exploits",
      "resource_type": "exploit",
      "resource_url": "https://github.com/opensrcsec/same_type_object_reuse_exploits",
      "primary_url": "https://github.com/opensrcsec/same_type_object_reuse_exploits",
      "parent_primary_url": "https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-canary-in-the-kernel-mine-exploiting-and-defending-against-same-type-object-reuse-reference-exp.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Canary in the Kernel Mine: Exploiting and Defending Against Same-Type Object Reuse · reference exploits record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Canary in the Kernel Mine: Exploiting and Defending Against Same-Type Object Reuse resource_label: reference exploits resource_type: exploit resource_url: https://github.com/opensrcsec/same_type_object_reuse_exploits parent_primary_url: https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Canary in the Kernel Mine: Exploiting and Defending Against Same-Type Object Reuse\" by Mathias Krause](https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse) [article] [[reference exploits](https://github.com/opensrcsec/same_type_object_reuse_e",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse"
        },
        {
          "label": "reference exploits",
          "type": "exploit",
          "url": "https://github.com/opensrcsec/same_type_object_reuse_exploits"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "reference exploits",
            "type": "exploit",
            "url": "https://github.com/opensrcsec/same_type_object_reuse_exploits"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/opensrcsec/same_type_object_reuse_exploits"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "object_reuse",
        "exploit",
        "reference"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Reference exploits related to same-type object reuse vulnerabilities in the Linux kernel are provided.",
      "summary_zh": "提供了与Linux内核中同类型对象重用漏洞相关的参考利用。",
      "source_markdown": "[2022: \"Canary in the Kernel Mine: Exploiting and Defending Against Same-Type Object Reuse\" by Mathias Krause](https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse) [article] [[reference exploits](https://github.com/opensrcsec/same_type_object_reuse_exploits)]",
      "search_text": "canary in the kernel mine: exploiting and defending against same-type object reuse · reference exploits canary in the kernel mine: exploiting and defending against same-type object reuse mathias krause   defensive  defensive reference exploits exploit https://github.com/opensrcsec/same_type_object_reuse_exploits object_reuse exploit reference  exploit reference exploits related to same-type object reuse vulnerabilities in the linux kernel are provided. 提供了与linux内核中同类型对象重用漏洞相关的参考利用。 # canary in the kernel mine: exploiting and defending against same-type object reuse · reference exploits record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: canary in the kernel mine: exploiting and defending against same-type object reuse resource_label: reference exploits resource_type: exploit resource_url: https://github.com/opensrcsec/same_type_object_reuse_exploits parent_primary_url: https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"canary in the kernel mine: exploiting and defending against same-type object reuse\" by mathias krause](https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse) [article] [[reference exploits](https://github.com/opensrcsec/same_type_object_reuse_e no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "c97c814adddf97bd",
      "item_id": "e2eeb71f047633c4",
      "slug": "2022-defensive-making-linux-kernel-exploit-cooking-harder-primary-d0aeeac4",
      "year": 2022,
      "title": "Making Linux Kernel Exploit Cooking Harder",
      "item_title": "Making Linux Kernel Exploit Cooking Harder",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html",
      "primary_url": "https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html",
      "parent_primary_url": "https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-making-linux-kernel-exploit-cooking-harder-primary-d0aeeac4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Making Linux Kernel Exploit Cooking Harder record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Making Linux Kernel Exploit Cooking Harder resource_label: primary resource_type: article resource_url: https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html parent_primary_url: https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Making Linux Kernel Exploit Cooking Harder\"](https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html) [article] [[reference exploits](https://docs.google.com/document/d/1a9uUAISBzw3ur1aLQqKc5JOQLaJYiOP5pe_B4xCT1KA/edit?usp=sharing)] [[proposed mitigations](https://github.com/thejh/linux/blob/slub-virtual/MITIGATION_README)] cves: non",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html"
        },
        {
          "label": "reference exploits",
          "type": "exploit",
          "url": "https://docs.google.com/document/d/1a9uUAISBzw3ur1aLQqKc5JOQLaJYiOP5pe_B4xCT1KA/edit?usp=sharing"
        },
        {
          "label": "proposed mitigations",
          "type": "article",
          "url": "https://github.com/thejh/linux/blob/slub-virtual/MITIGATION_README"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html"
          },
          {
            "label": "proposed mitigations",
            "type": "article",
            "url": "https://github.com/thejh/linux/blob/slub-virtual/MITIGATION_README"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "reference exploits",
            "type": "exploit",
            "url": "https://docs.google.com/document/d/1a9uUAISBzw3ur1aLQqKc5JOQLaJYiOP5pe_B4xCT1KA/edit?usp=sharing"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html",
        "https://docs.google.com/document/d/1a9uUAISBzw3ur1aLQqKc5JOQLaJYiOP5pe_B4xCT1KA/edit?usp=sharing",
        "https://github.com/thejh/linux/blob/slub-virtual/MITIGATION_README"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit_hardening",
        "defense",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This article outlines methods to complicate the exploitation of Linux kernel vulnerabilities.",
      "summary_zh": "本文概述了使Linux内核漏洞利用变得更加复杂的方法。",
      "source_markdown": "[2022: \"Making Linux Kernel Exploit Cooking Harder\"](https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html) [article] [[reference exploits](https://docs.google.com/document/d/1a9uUAISBzw3ur1aLQqKc5JOQLaJYiOP5pe_B4xCT1KA/edit?usp=sharing)] [[proposed mitigations](https://github.com/thejh/linux/blob/slub-virtual/MITIGATION_README)]",
      "search_text": "making linux kernel exploit cooking harder making linux kernel exploit cooking harder    defensive  defensive primary article https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html exploit_hardening defense vulnerability  defensive this article outlines methods to complicate the exploitation of linux kernel vulnerabilities. 本文概述了使linux内核漏洞利用变得更加复杂的方法。 # making linux kernel exploit cooking harder record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: making linux kernel exploit cooking harder resource_label: primary resource_type: article resource_url: https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html parent_primary_url: https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"making linux kernel exploit cooking harder\"](https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html) [article] [[reference exploits](https://docs.google.com/document/d/1a9uuaisbzw3ur1alqqkc5joqlajyiop5pe_b4xct1ka/edit?usp=sharing)] [[proposed mitigations](https://github.com/thejh/linux/blob/slub-virtual/mitigation_readme)] cves: non no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "6c5b85b2d7da2996",
      "item_id": "e2eeb71f047633c4",
      "slug": "2022-defensive-making-linux-kernel-exploit-cooking-harder-reference-exploits-af0a959e",
      "year": 2022,
      "title": "Making Linux Kernel Exploit Cooking Harder · reference exploits",
      "item_title": "Making Linux Kernel Exploit Cooking Harder",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "reference exploits",
      "resource_type": "exploit",
      "resource_url": "https://docs.google.com/document/d/1a9uUAISBzw3ur1aLQqKc5JOQLaJYiOP5pe_B4xCT1KA/edit?usp=sharing",
      "primary_url": "https://docs.google.com/document/d/1a9uUAISBzw3ur1aLQqKc5JOQLaJYiOP5pe_B4xCT1KA/edit?usp=sharing",
      "parent_primary_url": "https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-making-linux-kernel-exploit-cooking-harder-reference-exploits-af0a959e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Making Linux Kernel Exploit Cooking Harder · reference exploits record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Making Linux Kernel Exploit Cooking Harder resource_label: reference exploits resource_type: exploit resource_url: https://docs.google.com/document/d/1a9uUAISBzw3ur1aLQqKc5JOQLaJYiOP5pe_B4xCT1KA/edit?usp=sharing parent_primary_url: https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Making Linux Kernel Exploit Cooking Harder\"](https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html) [article] [[reference exploits](https://docs.google.com/document/d/1a9uUAISBzw3ur1aLQqKc5JOQLaJYiOP5pe_B4xCT1KA/edit?usp=sharing)] [[proposed mitigations](https://github.com/thejh/linux",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html"
        },
        {
          "label": "reference exploits",
          "type": "exploit",
          "url": "https://docs.google.com/document/d/1a9uUAISBzw3ur1aLQqKc5JOQLaJYiOP5pe_B4xCT1KA/edit?usp=sharing"
        },
        {
          "label": "proposed mitigations",
          "type": "article",
          "url": "https://github.com/thejh/linux/blob/slub-virtual/MITIGATION_README"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html"
          },
          {
            "label": "proposed mitigations",
            "type": "article",
            "url": "https://github.com/thejh/linux/blob/slub-virtual/MITIGATION_README"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "reference exploits",
            "type": "exploit",
            "url": "https://docs.google.com/document/d/1a9uUAISBzw3ur1aLQqKc5JOQLaJYiOP5pe_B4xCT1KA/edit?usp=sharing"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html",
        "https://docs.google.com/document/d/1a9uUAISBzw3ur1aLQqKc5JOQLaJYiOP5pe_B4xCT1KA/edit?usp=sharing",
        "https://github.com/thejh/linux/blob/slub-virtual/MITIGATION_README"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit_hardening",
        "reference",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Reference exploits for complicating Linux kernel exploit cooking are discussed.",
      "summary_zh": "讨论了使Linux内核漏洞利用变得复杂的参考利用。",
      "source_markdown": "[2022: \"Making Linux Kernel Exploit Cooking Harder\"](https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html) [article] [[reference exploits](https://docs.google.com/document/d/1a9uUAISBzw3ur1aLQqKc5JOQLaJYiOP5pe_B4xCT1KA/edit?usp=sharing)] [[proposed mitigations](https://github.com/thejh/linux/blob/slub-virtual/MITIGATION_README)]",
      "search_text": "making linux kernel exploit cooking harder · reference exploits making linux kernel exploit cooking harder    defensive  defensive reference exploits exploit https://docs.google.com/document/d/1a9uuaisbzw3ur1alqqkc5joqlajyiop5pe_b4xct1ka/edit?usp=sharing exploit_hardening reference exploit  exploit reference exploits for complicating linux kernel exploit cooking are discussed. 讨论了使linux内核漏洞利用变得复杂的参考利用。 # making linux kernel exploit cooking harder · reference exploits record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: making linux kernel exploit cooking harder resource_label: reference exploits resource_type: exploit resource_url: https://docs.google.com/document/d/1a9uuaisbzw3ur1alqqkc5joqlajyiop5pe_b4xct1ka/edit?usp=sharing parent_primary_url: https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"making linux kernel exploit cooking harder\"](https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html) [article] [[reference exploits](https://docs.google.com/document/d/1a9uuaisbzw3ur1alqqkc5joqlajyiop5pe_b4xct1ka/edit?usp=sharing)] [[proposed mitigations](https://github.com/thejh/linux no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "9244fc77c9a87a1a",
      "item_id": "e2eeb71f047633c4",
      "slug": "2022-defensive-making-linux-kernel-exploit-cooking-harder-proposed-mitigations-75d0f762",
      "year": 2022,
      "title": "Making Linux Kernel Exploit Cooking Harder · proposed mitigations",
      "item_title": "Making Linux Kernel Exploit Cooking Harder",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "proposed mitigations",
      "resource_type": "article",
      "resource_url": "https://github.com/thejh/linux/blob/slub-virtual/MITIGATION_README",
      "primary_url": "https://github.com/thejh/linux/blob/slub-virtual/MITIGATION_README",
      "parent_primary_url": "https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-making-linux-kernel-exploit-cooking-harder-proposed-mitigations-75d0f762.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Making Linux Kernel Exploit Cooking Harder · proposed mitigations record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Making Linux Kernel Exploit Cooking Harder resource_label: proposed mitigations resource_type: article resource_url: https://github.com/thejh/linux/blob/slub-virtual/MITIGATION_README parent_primary_url: https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Making Linux Kernel Exploit Cooking Harder\"](https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html) [article] [[reference exploits](https://docs.google.com/document/d/1a9uUAISBzw3ur1aLQqKc5JOQLaJYiOP5pe_B4xCT1KA/edit?usp=sharing)] [[proposed mitigations](https://github.com/thejh/linux/blob/slub-virtual/MITIGAT",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html"
        },
        {
          "label": "reference exploits",
          "type": "exploit",
          "url": "https://docs.google.com/document/d/1a9uUAISBzw3ur1aLQqKc5JOQLaJYiOP5pe_B4xCT1KA/edit?usp=sharing"
        },
        {
          "label": "proposed mitigations",
          "type": "article",
          "url": "https://github.com/thejh/linux/blob/slub-virtual/MITIGATION_README"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html"
          },
          {
            "label": "proposed mitigations",
            "type": "article",
            "url": "https://github.com/thejh/linux/blob/slub-virtual/MITIGATION_README"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "reference exploits",
            "type": "exploit",
            "url": "https://docs.google.com/document/d/1a9uUAISBzw3ur1aLQqKc5JOQLaJYiOP5pe_B4xCT1KA/edit?usp=sharing"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html",
        "https://docs.google.com/document/d/1a9uUAISBzw3ur1aLQqKc5JOQLaJYiOP5pe_B4xCT1KA/edit?usp=sharing",
        "https://github.com/thejh/linux/blob/slub-virtual/MITIGATION_README"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit_hardening",
        "mitigation",
        "defense"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Proposed mitigations for complicating Linux kernel exploit cooking are presented.",
      "summary_zh": "提出了使Linux内核漏洞利用变得复杂的缓解措施。",
      "source_markdown": "[2022: \"Making Linux Kernel Exploit Cooking Harder\"](https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html) [article] [[reference exploits](https://docs.google.com/document/d/1a9uUAISBzw3ur1aLQqKc5JOQLaJYiOP5pe_B4xCT1KA/edit?usp=sharing)] [[proposed mitigations](https://github.com/thejh/linux/blob/slub-virtual/MITIGATION_README)]",
      "search_text": "making linux kernel exploit cooking harder · proposed mitigations making linux kernel exploit cooking harder    defensive  defensive proposed mitigations article https://github.com/thejh/linux/blob/slub-virtual/mitigation_readme exploit_hardening mitigation defense  defensive proposed mitigations for complicating linux kernel exploit cooking are presented. 提出了使linux内核漏洞利用变得复杂的缓解措施。 # making linux kernel exploit cooking harder · proposed mitigations record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: making linux kernel exploit cooking harder resource_label: proposed mitigations resource_type: article resource_url: https://github.com/thejh/linux/blob/slub-virtual/mitigation_readme parent_primary_url: https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"making linux kernel exploit cooking harder\"](https://security.googleblog.com/2022/08/making-linux-kernel-exploit-cooking.html) [article] [[reference exploits](https://docs.google.com/document/d/1a9uuaisbzw3ur1alqqkc5joqlajyiop5pe_b4xct1ka/edit?usp=sharing)] [[proposed mitigations](https://github.com/thejh/linux/blob/slub-virtual/mitigat no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "20993209adc65191",
      "item_id": "809879e51c261234",
      "slug": "2022-defensive-where-are-we-on-security-features-primary-714d6162",
      "year": 2022,
      "title": "Where are we on security features?",
      "item_title": "Where are we on security features?",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://lpc.events/event/16/contributions/1173/attachments/1099/2108/LPC22%20-%20Where%20are%20we%20on%20security%20features%3F.pdf",
      "primary_url": "https://lpc.events/event/16/contributions/1173/attachments/1099/2108/LPC22%20-%20Where%20are%20we%20on%20security%20features%3F.pdf",
      "parent_primary_url": "https://lpc.events/event/16/contributions/1173/attachments/1099/2108/LPC22%20-%20Where%20are%20we%20on%20security%20features%3F.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-where-are-we-on-security-features-primary-714d6162.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Where are we on security features? record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Where are we on security features? resource_label: primary resource_type: slides resource_url: https://lpc.events/event/16/contributions/1173/attachments/1099/2108/LPC22%20-%20Where%20are%20we%20on%20security%20features%3F.pdf parent_primary_url: https://lpc.events/event/16/contributions/1173/attachments/1099/2108/LPC22%20-%20Where%20are%20we%20on%20security%20features%3F.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Where are we on security features?\"](https://lpc.events/event/16/contributions/1173/attachments/1099/2108/LPC22%20-%20Where%20are%20we%20on%20security%20features%3F.pdf) [slides] [[video](https://www.youtube.com/watch?v=tQwv79i02ks)] cves: none android_impact_status: no andr",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/16/contributions/1173/attachments/1099/2108/LPC22%20-%20Where%20are%20we%20on%20security%20features%3F.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=tQwv79i02ks"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/16/contributions/1173/attachments/1099/2108/LPC22%20-%20Where%20are%20we%20on%20security%20features%3F.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=tQwv79i02ks"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security_features",
        "defense",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides discussing the current state of security features in the Linux kernel are available.",
      "summary_zh": "提供了关于Linux内核中安全功能当前状态的幻灯片。",
      "source_markdown": "[2022: \"Where are we on security features?\"](https://lpc.events/event/16/contributions/1173/attachments/1099/2108/LPC22%20-%20Where%20are%20we%20on%20security%20features%3F.pdf) [slides] [[video](https://www.youtube.com/watch?v=tQwv79i02ks)]",
      "search_text": "where are we on security features? where are we on security features?    defensive  defensive primary slides https://lpc.events/event/16/contributions/1173/attachments/1099/2108/lpc22%20-%20where%20are%20we%20on%20security%20features%3f.pdf security_features defense slides  defensive slides discussing the current state of security features in the linux kernel are available. 提供了关于linux内核中安全功能当前状态的幻灯片。 # where are we on security features? record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: where are we on security features? resource_label: primary resource_type: slides resource_url: https://lpc.events/event/16/contributions/1173/attachments/1099/2108/lpc22%20-%20where%20are%20we%20on%20security%20features%3f.pdf parent_primary_url: https://lpc.events/event/16/contributions/1173/attachments/1099/2108/lpc22%20-%20where%20are%20we%20on%20security%20features%3f.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"where are we on security features?\"](https://lpc.events/event/16/contributions/1173/attachments/1099/2108/lpc22%20-%20where%20are%20we%20on%20security%20features%3f.pdf) [slides] [[video](https://www.youtube.com/watch?v=tqwv79i02ks)] cves: none android_impact_status: no andr no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "973c9b2e5e734eba",
      "item_id": "809879e51c261234",
      "slug": "2022-defensive-where-are-we-on-security-features-video-a4dda8e5",
      "year": 2022,
      "title": "Where are we on security features? · video",
      "item_title": "Where are we on security features?",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=tQwv79i02ks",
      "primary_url": "https://www.youtube.com/watch?v=tQwv79i02ks",
      "parent_primary_url": "https://lpc.events/event/16/contributions/1173/attachments/1099/2108/LPC22%20-%20Where%20are%20we%20on%20security%20features%3F.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-where-are-we-on-security-features-video-a4dda8e5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Where are we on security features? · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Where are we on security features? resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=tQwv79i02ks parent_primary_url: https://lpc.events/event/16/contributions/1173/attachments/1099/2108/LPC22%20-%20Where%20are%20we%20on%20security%20features%3F.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Where are we on security features?\"](https://lpc.events/event/16/contributions/1173/attachments/1099/2108/LPC22%20-%20Where%20are%20we%20on%20security%20features%3F.pdf) [slides] [[video](https://www.youtube.com/watch?v=tQwv79i02ks)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/16/contributions/1173/attachments/1099/2108/LPC22%20-%20Where%20are%20we%20on%20security%20features%3F.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=tQwv79i02ks"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/16/contributions/1173/attachments/1099/2108/LPC22%20-%20Where%20are%20we%20on%20security%20features%3F.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=tQwv79i02ks"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security_features",
        "defense",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video presentation on the current state of security features in the Linux kernel is provided.",
      "summary_zh": "提供了关于Linux内核中安全功能当前状态的视频演示。",
      "source_markdown": "[2022: \"Where are we on security features?\"](https://lpc.events/event/16/contributions/1173/attachments/1099/2108/LPC22%20-%20Where%20are%20we%20on%20security%20features%3F.pdf) [slides] [[video](https://www.youtube.com/watch?v=tQwv79i02ks)]",
      "search_text": "where are we on security features? · video where are we on security features?    defensive  defensive video video https://www.youtube.com/watch?v=tqwv79i02ks security_features defense video  defensive a video presentation on the current state of security features in the linux kernel is provided. 提供了关于linux内核中安全功能当前状态的视频演示。 # where are we on security features? · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: where are we on security features? resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=tqwv79i02ks parent_primary_url: https://lpc.events/event/16/contributions/1173/attachments/1099/2108/lpc22%20-%20where%20are%20we%20on%20security%20features%3f.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"where are we on security features?\"](https://lpc.events/event/16/contributions/1173/attachments/1099/2108/lpc22%20-%20where%20are%20we%20on%20security%20features%3f.pdf) [slides] [[video](https://www.youtube.com/watch?v=tqwv79i02ks)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5e54f3aacaa963f6",
      "item_id": "c6f8d1ec568f621c",
      "slug": "2022-defensive-control-flow-integrity-kernel-support-primary-170aace4",
      "year": 2022,
      "title": "Control-Flow Integrity Kernel Support",
      "item_title": "Control-Flow Integrity Kernel Support",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf",
      "primary_url": "https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf",
      "parent_primary_url": "https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-control-flow-integrity-kernel-support-primary-170aace4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Control-Flow Integrity Kernel Support record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Control-Flow Integrity Kernel Support resource_label: primary resource_type: slides resource_url: https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf parent_primary_url: https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Control-Flow Integrity Kernel Support\"](https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf) [slides] [[video](https://www.youtube.com/watch?v=bmv6blX_F_g)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=bmv6blX_F_g"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=bmv6blX_F_g"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "control_flow_integrity",
        "defense",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides on Control-Flow Integrity support in the Linux kernel are available.",
      "summary_zh": "提供了关于Linux内核中控制流完整性支持的幻灯片。",
      "source_markdown": "[2022: \"Control-Flow Integrity Kernel Support\"](https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf) [slides] [[video](https://www.youtube.com/watch?v=bmv6blX_F_g)]",
      "search_text": "control-flow integrity kernel support control-flow integrity kernel support    defensive  defensive primary slides https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf control_flow_integrity defense slides  defensive slides on control-flow integrity support in the linux kernel are available. 提供了关于linux内核中控制流完整性支持的幻灯片。 # control-flow integrity kernel support record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: control-flow integrity kernel support resource_label: primary resource_type: slides resource_url: https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf parent_primary_url: https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"control-flow integrity kernel support\"](https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf) [slides] [[video](https://www.youtube.com/watch?v=bmv6blx_f_g)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b7cf21f0e5758581",
      "item_id": "c6f8d1ec568f621c",
      "slug": "2022-defensive-control-flow-integrity-kernel-support-video-2e2b91cd",
      "year": 2022,
      "title": "Control-Flow Integrity Kernel Support · video",
      "item_title": "Control-Flow Integrity Kernel Support",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=bmv6blX_F_g",
      "primary_url": "https://www.youtube.com/watch?v=bmv6blX_F_g",
      "parent_primary_url": "https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-control-flow-integrity-kernel-support-video-2e2b91cd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Control-Flow Integrity Kernel Support · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Control-Flow Integrity Kernel Support resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=bmv6blX_F_g parent_primary_url: https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Control-Flow Integrity Kernel Support\"](https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf) [slides] [[video](https://www.youtube.com/watch?v=bmv6blX_F_g)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rathe",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=bmv6blX_F_g"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=bmv6blX_F_g"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "control_flow_integrity",
        "defense",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video presentation on Control-Flow Integrity support in the Linux kernel is available.",
      "summary_zh": "提供了关于Linux内核中控制流完整性支持的视频演示。",
      "source_markdown": "[2022: \"Control-Flow Integrity Kernel Support\"](https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf) [slides] [[video](https://www.youtube.com/watch?v=bmv6blX_F_g)]",
      "search_text": "control-flow integrity kernel support · video control-flow integrity kernel support    defensive  defensive video video https://www.youtube.com/watch?v=bmv6blx_f_g control_flow_integrity defense video  defensive a video presentation on control-flow integrity support in the linux kernel is available. 提供了关于linux内核中控制流完整性支持的视频演示。 # control-flow integrity kernel support · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: control-flow integrity kernel support resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=bmv6blx_f_g parent_primary_url: https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"control-flow integrity kernel support\"](https://lpc.events/event/16/contributions/1315/attachments/1067/2169/cfi.pdf) [slides] [[video](https://www.youtube.com/watch?v=bmv6blx_f_g)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rathe no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "33ad637fe36f84f9",
      "item_id": "ea401460395ad2bd",
      "slug": "2022-defensive-hotbpf-an-on-demand-and-on-the-fly-memory-protection-for-the-linux-kernel-primary-0b9facc2",
      "year": 2022,
      "title": "HotBPF - An On-demand and On-the-fly Memory Protection for the Linux Kernel",
      "item_title": "HotBPF - An On-demand and On-the-fly Memory Protection for the Linux Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=1KSLTsgxaSU",
      "primary_url": "https://www.youtube.com/watch?v=1KSLTsgxaSU",
      "parent_primary_url": "https://www.youtube.com/watch?v=1KSLTsgxaSU",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-hotbpf-an-on-demand-and-on-the-fly-memory-protection-for-the-linux-kernel-primary-0b9facc2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# HotBPF - An On-demand and On-the-fly Memory Protection for the Linux Kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: HotBPF - An On-demand and On-the-fly Memory Protection for the Linux Kernel resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=1KSLTsgxaSU parent_primary_url: https://www.youtube.com/watch?v=1KSLTsgxaSU source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"HotBPF - An On-demand and On-the-fly Memory Protection for the Linux Kernel\"](https://www.youtube.com/watch?v=1KSLTsgxaSU) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. ",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=1KSLTsgxaSU"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=1KSLTsgxaSU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory_protection",
        "defense",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video discussing on-demand memory protection for the Linux kernel is presented.",
      "summary_zh": "提供了关于Linux内核按需内存保护的视频讨论。",
      "source_markdown": "[2022: \"HotBPF - An On-demand and On-the-fly Memory Protection for the Linux Kernel\"](https://www.youtube.com/watch?v=1KSLTsgxaSU) [video]",
      "search_text": "hotbpf - an on-demand and on-the-fly memory protection for the linux kernel hotbpf - an on-demand and on-the-fly memory protection for the linux kernel    defensive  defensive primary video https://www.youtube.com/watch?v=1ksltsgxasu memory_protection defense video  defensive a video discussing on-demand memory protection for the linux kernel is presented. 提供了关于linux内核按需内存保护的视频讨论。 # hotbpf - an on-demand and on-the-fly memory protection for the linux kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: hotbpf - an on-demand and on-the-fly memory protection for the linux kernel resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=1ksltsgxasu parent_primary_url: https://www.youtube.com/watch?v=1ksltsgxasu source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"hotbpf - an on-demand and on-the-fly memory protection for the linux kernel\"](https://www.youtube.com/watch?v=1ksltsgxasu) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux.  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "920e2617f5a5d234",
      "item_id": "43b0a47f1182525f",
      "slug": "2022-defensive-mind-the-gap-the-linux-ecosystem-kernel-patch-gap-primary-020b0f19",
      "year": 2022,
      "title": "Mind The Gap - The Linux Ecosystem Kernel Patch Gap",
      "item_title": "Mind The Gap - The Linux Ecosystem Kernel Patch Gap",
      "authors": [
        "Jakob Lell & Regina Biro"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=WkJQImkOkNk",
      "primary_url": "https://www.youtube.com/watch?v=WkJQImkOkNk",
      "parent_primary_url": "https://www.youtube.com/watch?v=WkJQImkOkNk",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-mind-the-gap-the-linux-ecosystem-kernel-patch-gap-primary-020b0f19.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mind The Gap - The Linux Ecosystem Kernel Patch Gap record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Mind The Gap - The Linux Ecosystem Kernel Patch Gap resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=WkJQImkOkNk parent_primary_url: https://www.youtube.com/watch?v=WkJQImkOkNk source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Mind The Gap - The Linux Ecosystem Kernel Patch Gap\" by Jakob Lell & Regina Biro](https://www.youtube.com/watch?v=WkJQImkOkNk) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_l",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=WkJQImkOkNk"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=WkJQImkOkNk"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "patch_management",
        "defense",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video presentation on the Linux ecosystem kernel patch gap is available.",
      "summary_zh": "提供了关于Linux生态系统内核补丁差距的视频演示。",
      "source_markdown": "[2022: \"Mind The Gap - The Linux Ecosystem Kernel Patch Gap\" by Jakob Lell & Regina Biro](https://www.youtube.com/watch?v=WkJQImkOkNk) [video]",
      "search_text": "mind the gap - the linux ecosystem kernel patch gap mind the gap - the linux ecosystem kernel patch gap jakob lell & regina biro   defensive  defensive primary video https://www.youtube.com/watch?v=wkjqimkoknk patch_management defense video  defensive a video presentation on the linux ecosystem kernel patch gap is available. 提供了关于linux生态系统内核补丁差距的视频演示。 # mind the gap - the linux ecosystem kernel patch gap record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: mind the gap - the linux ecosystem kernel patch gap resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=wkjqimkoknk parent_primary_url: https://www.youtube.com/watch?v=wkjqimkoknk source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"mind the gap - the linux ecosystem kernel patch gap\" by jakob lell & regina biro](https://www.youtube.com/watch?v=wkjqimkoknk) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_l no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7bd57e37fe80647e",
      "item_id": "6cf3d7ee82524ee6",
      "slug": "2022-defensive-the-exploit-recon-msg-msg-and-its-mitigation-in-ved-primary-2803e8b7",
      "year": 2022,
      "title": "The exploit recon 'msg_msg' and its mitigation in VED",
      "item_title": "The exploit recon 'msg_msg' and its mitigation in VED",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://hardenedvault.net/blog/2022-11-13-msg_msg-recon-mitigation-ved/",
      "primary_url": "https://hardenedvault.net/blog/2022-11-13-msg_msg-recon-mitigation-ved/",
      "parent_primary_url": "https://hardenedvault.net/blog/2022-11-13-msg_msg-recon-mitigation-ved/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-the-exploit-recon-msg-msg-and-its-mitigation-in-ved-primary-2803e8b7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The exploit recon 'msg_msg' and its mitigation in VED record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: The exploit recon 'msg_msg' and its mitigation in VED resource_label: primary resource_type: article resource_url: https://hardenedvault.net/blog/2022-11-13-msg_msg-recon-mitigation-ved/ parent_primary_url: https://hardenedvault.net/blog/2022-11-13-msg_msg-recon-mitigation-ved/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"The exploit recon 'msg_msg' and its mitigation in VED\"](https://hardenedvault.net/blog/2022-11-13-msg_msg-recon-mitigation-ved/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kern",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://hardenedvault.net/blog/2022-11-13-msg_msg-recon-mitigation-ved/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://hardenedvault.net/blog/2022-11-13-msg_msg-recon-mitigation-ved/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit_mitigation",
        "defense",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This article discusses the mitigation of the 'msg_msg' exploit in the Linux kernel.",
      "summary_zh": "本文讨论了Linux内核中'msg_msg'漏洞的缓解措施。",
      "source_markdown": "[2022: \"The exploit recon 'msg_msg' and its mitigation in VED\"](https://hardenedvault.net/blog/2022-11-13-msg_msg-recon-mitigation-ved/) [article]",
      "search_text": "the exploit recon 'msg_msg' and its mitigation in ved the exploit recon 'msg_msg' and its mitigation in ved    defensive  defensive primary article https://hardenedvault.net/blog/2022-11-13-msg_msg-recon-mitigation-ved/ exploit_mitigation defense vulnerability  defensive this article discusses the mitigation of the 'msg_msg' exploit in the linux kernel. 本文讨论了linux内核中'msg_msg'漏洞的缓解措施。 # the exploit recon 'msg_msg' and its mitigation in ved record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: the exploit recon 'msg_msg' and its mitigation in ved resource_label: primary resource_type: article resource_url: https://hardenedvault.net/blog/2022-11-13-msg_msg-recon-mitigation-ved/ parent_primary_url: https://hardenedvault.net/blog/2022-11-13-msg_msg-recon-mitigation-ved/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"the exploit recon 'msg_msg' and its mitigation in ved\"](https://hardenedvault.net/blog/2022-11-13-msg_msg-recon-mitigation-ved/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kern no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bc7145c7898b4408",
      "item_id": "acf3ddaafd1ddf1a",
      "slug": "2022-defensive-return-to-sender-detecting-kernel-exploits-with-ebpf-primary-d7476ec8",
      "year": 2022,
      "title": "Return to sender: Detecting kernel exploits with eBPF",
      "item_title": "Return to sender: Detecting kernel exploits with eBPF",
      "authors": [
        "Guillaume Fournier at Black Hat USA"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Fournier-Return-To-Sender.pdf",
      "primary_url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Fournier-Return-To-Sender.pdf",
      "parent_primary_url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Fournier-Return-To-Sender.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-return-to-sender-detecting-kernel-exploits-with-ebpf-primary-d7476ec8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Return to sender: Detecting kernel exploits with eBPF record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Return to sender: Detecting kernel exploits with eBPF resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/USA-22/Wednesday/US-22-Fournier-Return-To-Sender.pdf parent_primary_url: https://i.blackhat.com/USA-22/Wednesday/US-22-Fournier-Return-To-Sender.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Return to sender: Detecting kernel exploits with eBPF\" by Guillaume Fournier at Black Hat USA](https://i.blackhat.com/USA-22/Wednesday/US-22-Fournier-Return-To-Sender.pdf) [slides] [[code](https://github.com/Gui774ume/krie)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android ",
      "link_types": [
        "slides",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Fournier-Return-To-Sender.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/Gui774ume/krie"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Fournier-Return-To-Sender.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/Gui774ume/krie"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Gui774ume/krie"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit_detection",
        "eBPF",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides on detecting kernel exploits using eBPF are presented.",
      "summary_zh": "提供了关于使用eBPF检测内核漏洞的幻灯片。",
      "source_markdown": "[2022: \"Return to sender: Detecting kernel exploits with eBPF\" by Guillaume Fournier at Black Hat USA](https://i.blackhat.com/USA-22/Wednesday/US-22-Fournier-Return-To-Sender.pdf) [slides] [[code](https://github.com/Gui774ume/krie)]",
      "search_text": "return to sender: detecting kernel exploits with ebpf return to sender: detecting kernel exploits with ebpf guillaume fournier at black hat usa   defensive  defensive primary slides https://i.blackhat.com/usa-22/wednesday/us-22-fournier-return-to-sender.pdf exploit_detection ebpf slides  defensive slides on detecting kernel exploits using ebpf are presented. 提供了关于使用ebpf检测内核漏洞的幻灯片。 # return to sender: detecting kernel exploits with ebpf record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: return to sender: detecting kernel exploits with ebpf resource_label: primary resource_type: slides resource_url: https://i.blackhat.com/usa-22/wednesday/us-22-fournier-return-to-sender.pdf parent_primary_url: https://i.blackhat.com/usa-22/wednesday/us-22-fournier-return-to-sender.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"return to sender: detecting kernel exploits with ebpf\" by guillaume fournier at black hat usa](https://i.blackhat.com/usa-22/wednesday/us-22-fournier-return-to-sender.pdf) [slides] [[code](https://github.com/gui774ume/krie)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "0bbea6bdfd738ca2",
      "item_id": "acf3ddaafd1ddf1a",
      "slug": "2022-defensive-return-to-sender-detecting-kernel-exploits-with-ebpf-code-3e96fd9e",
      "year": 2022,
      "title": "Return to sender: Detecting kernel exploits with eBPF · code",
      "item_title": "Return to sender: Detecting kernel exploits with eBPF",
      "authors": [
        "Guillaume Fournier at Black Hat USA"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/Gui774ume/krie",
      "primary_url": "https://github.com/Gui774ume/krie",
      "parent_primary_url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Fournier-Return-To-Sender.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-return-to-sender-detecting-kernel-exploits-with-ebpf-code-3e96fd9e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Return to sender: Detecting kernel exploits with eBPF · code record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Return to sender: Detecting kernel exploits with eBPF resource_label: code resource_type: code resource_url: https://github.com/Gui774ume/krie parent_primary_url: https://i.blackhat.com/USA-22/Wednesday/US-22-Fournier-Return-To-Sender.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Return to sender: Detecting kernel exploits with eBPF\" by Guillaume Fournier at Black Hat USA](https://i.blackhat.com/USA-22/Wednesday/US-22-Fournier-Return-To-Sender.pdf) [slides] [[code](https://github.com/Gui774ume/krie)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impac",
      "link_types": [
        "slides",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Fournier-Return-To-Sender.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/Gui774ume/krie"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://i.blackhat.com/USA-22/Wednesday/US-22-Fournier-Return-To-Sender.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/Gui774ume/krie"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Gui774ume/krie"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit_detection",
        "eBPF",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Code for detecting kernel exploits with eBPF is provided.",
      "summary_zh": "提供了用于使用eBPF检测内核漏洞的代码。",
      "source_markdown": "[2022: \"Return to sender: Detecting kernel exploits with eBPF\" by Guillaume Fournier at Black Hat USA](https://i.blackhat.com/USA-22/Wednesday/US-22-Fournier-Return-To-Sender.pdf) [slides] [[code](https://github.com/Gui774ume/krie)]",
      "search_text": "return to sender: detecting kernel exploits with ebpf · code return to sender: detecting kernel exploits with ebpf guillaume fournier at black hat usa   defensive  defensive code code https://github.com/gui774ume/krie exploit_detection ebpf code  defensive code for detecting kernel exploits with ebpf is provided. 提供了用于使用ebpf检测内核漏洞的代码。 # return to sender: detecting kernel exploits with ebpf · code record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: return to sender: detecting kernel exploits with ebpf resource_label: code resource_type: code resource_url: https://github.com/gui774ume/krie parent_primary_url: https://i.blackhat.com/usa-22/wednesday/us-22-fournier-return-to-sender.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"return to sender: detecting kernel exploits with ebpf\" by guillaume fournier at black hat usa](https://i.blackhat.com/usa-22/wednesday/us-22-fournier-return-to-sender.pdf) [slides] [[code](https://github.com/gui774ume/krie)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impac no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "90285db1cf911500",
      "item_id": "1f7149b0dec9f943",
      "slug": "2022-defensive-meaningful-bounds-checking-in-the-linux-kernel-primary-64b6f569",
      "year": 2022,
      "title": "Meaningful Bounds Checking in the Linux Kernel",
      "item_title": "Meaningful Bounds Checking in the Linux Kernel",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://outflux.net/slides/2022/lss-na/",
      "primary_url": "https://outflux.net/slides/2022/lss-na/",
      "parent_primary_url": "https://outflux.net/slides/2022/lss-na/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-meaningful-bounds-checking-in-the-linux-kernel-primary-64b6f569.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Meaningful Bounds Checking in the Linux Kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Meaningful Bounds Checking in the Linux Kernel resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2022/lss-na/ parent_primary_url: https://outflux.net/slides/2022/lss-na/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Meaningful Bounds Checking in the Linux Kernel\" by Kees Cook](https://outflux.net/slides/2022/lss-na/) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2022/lss-na/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2022/lss-na/"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bounds_checking",
        "defense",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides on meaningful bounds checking in the Linux kernel are available.",
      "summary_zh": "提供了关于Linux内核中有意义的边界检查的幻灯片。",
      "source_markdown": "[2022: \"Meaningful Bounds Checking in the Linux Kernel\" by Kees Cook](https://outflux.net/slides/2022/lss-na/) [slides]",
      "search_text": "meaningful bounds checking in the linux kernel meaningful bounds checking in the linux kernel kees cook   defensive  defensive primary slides https://outflux.net/slides/2022/lss-na/ bounds_checking defense slides  defensive slides on meaningful bounds checking in the linux kernel are available. 提供了关于linux内核中有意义的边界检查的幻灯片。 # meaningful bounds checking in the linux kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: meaningful bounds checking in the linux kernel resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2022/lss-na/ parent_primary_url: https://outflux.net/slides/2022/lss-na/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"meaningful bounds checking in the linux kernel\" by kees cook](https://outflux.net/slides/2022/lss-na/) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "04e8e83a9f4f3deb",
      "item_id": "d44a0ae1ffbc9b39",
      "slug": "2022-defensive-compilers-the-old-new-security-frontier-primary-eb4deb0b",
      "year": 2022,
      "title": "Compilers: The Old New Security Frontier",
      "item_title": "Compilers: The Old New Security Frontier",
      "authors": [
        "Brad Spengler"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://grsecurity.net/Compilers_The_Old_New_Security_Frontier_BlueHat_IL_2022.pdf",
      "primary_url": "https://grsecurity.net/Compilers_The_Old_New_Security_Frontier_BlueHat_IL_2022.pdf",
      "parent_primary_url": "https://grsecurity.net/Compilers_The_Old_New_Security_Frontier_BlueHat_IL_2022.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-compilers-the-old-new-security-frontier-primary-eb4deb0b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Compilers: The Old New Security Frontier record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Compilers: The Old New Security Frontier resource_label: primary resource_type: slides resource_url: https://grsecurity.net/Compilers_The_Old_New_Security_Frontier_BlueHat_IL_2022.pdf parent_primary_url: https://grsecurity.net/Compilers_The_Old_New_Security_Frontier_BlueHat_IL_2022.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Compilers: The Old New Security Frontier\" by Brad Spengler](https://grsecurity.net/Compilers_The_Old_New_Security_Frontier_BlueHat_IL_2022.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://grsecurity.net/Compilers_The_Old_New_Security_Frontier_BlueHat_IL_2022.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://grsecurity.net/Compilers_The_Old_New_Security_Frontier_BlueHat_IL_2022.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "compiler_security",
        "defense",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides discussing the role of compilers in security are available.",
      "summary_zh": "提供了关于编译器在安全性中作用的幻灯片。",
      "source_markdown": "[2022: \"Compilers: The Old New Security Frontier\" by Brad Spengler](https://grsecurity.net/Compilers_The_Old_New_Security_Frontier_BlueHat_IL_2022.pdf) [slides]",
      "search_text": "compilers: the old new security frontier compilers: the old new security frontier brad spengler   defensive  defensive primary slides https://grsecurity.net/compilers_the_old_new_security_frontier_bluehat_il_2022.pdf compiler_security defense slides  defensive slides discussing the role of compilers in security are available. 提供了关于编译器在安全性中作用的幻灯片。 # compilers: the old new security frontier record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: compilers: the old new security frontier resource_label: primary resource_type: slides resource_url: https://grsecurity.net/compilers_the_old_new_security_frontier_bluehat_il_2022.pdf parent_primary_url: https://grsecurity.net/compilers_the_old_new_security_frontier_bluehat_il_2022.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"compilers: the old new security frontier\" by brad spengler](https://grsecurity.net/compilers_the_old_new_security_frontier_bluehat_il_2022.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "941a482175b84782",
      "item_id": "197bb6728193f409",
      "slug": "2022-defensive-in-kernel-control-flow-integrity-on-commodity-oses-using-arm-pointer-authentication-primary-457",
      "year": 2022,
      "title": "In-Kernel Control-Flow Integrity on Commodity OSes using ARM Pointer Authentication",
      "item_title": "In-Kernel Control-Flow Integrity on Commodity OSes using ARM Pointer Authentication",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec22fall_yoo.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec22fall_yoo.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec22fall_yoo.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-in-kernel-control-flow-integrity-on-commodity-oses-using-arm-pointer-authentication-primary-457.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# In-Kernel Control-Flow Integrity on Commodity OSes using ARM Pointer Authentication record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: In-Kernel Control-Flow Integrity on Commodity OSes using ARM Pointer Authentication resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec22fall_yoo.pdf parent_primary_url: https://www.usenix.org/system/files/sec22fall_yoo.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"In-Kernel Control-Flow Integrity on Commodity OSes using ARM Pointer Authentication\"](https://www.usenix.org/system/files/sec22fall_yoo.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec22_slides-yoo.pdf)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released ",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec22fall_yoo.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec22_slides-yoo.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec22fall_yoo.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec22_slides-yoo.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "control_flow_integrity",
        "ARM",
        "paper"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A paper on in-kernel control-flow integrity using ARM pointer authentication is available.",
      "summary_zh": "提供了关于使用ARM指针认证的内核控制流完整性的论文。",
      "source_markdown": "[2022: \"In-Kernel Control-Flow Integrity on Commodity OSes using ARM Pointer Authentication\"](https://www.usenix.org/system/files/sec22fall_yoo.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec22_slides-yoo.pdf)]",
      "search_text": "in-kernel control-flow integrity on commodity oses using arm pointer authentication in-kernel control-flow integrity on commodity oses using arm pointer authentication    defensive  defensive primary paper https://www.usenix.org/system/files/sec22fall_yoo.pdf control_flow_integrity arm paper  defensive a paper on in-kernel control-flow integrity using arm pointer authentication is available. 提供了关于使用arm指针认证的内核控制流完整性的论文。 # in-kernel control-flow integrity on commodity oses using arm pointer authentication record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: in-kernel control-flow integrity on commodity oses using arm pointer authentication resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec22fall_yoo.pdf parent_primary_url: https://www.usenix.org/system/files/sec22fall_yoo.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"in-kernel control-flow integrity on commodity oses using arm pointer authentication\"](https://www.usenix.org/system/files/sec22fall_yoo.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec22_slides-yoo.pdf)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "8eb02421fc1608e6",
      "item_id": "197bb6728193f409",
      "slug": "2022-defensive-in-kernel-control-flow-integrity-on-commodity-oses-using-arm-pointer-authentication-slides-d8ec",
      "year": 2022,
      "title": "In-Kernel Control-Flow Integrity on Commodity OSes using ARM Pointer Authentication · slides",
      "item_title": "In-Kernel Control-Flow Integrity on Commodity OSes using ARM Pointer Authentication",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/sec22_slides-yoo.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec22_slides-yoo.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec22fall_yoo.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-in-kernel-control-flow-integrity-on-commodity-oses-using-arm-pointer-authentication-slides-d8ec.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# In-Kernel Control-Flow Integrity on Commodity OSes using ARM Pointer Authentication · slides record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: In-Kernel Control-Flow Integrity on Commodity OSes using ARM Pointer Authentication resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec22_slides-yoo.pdf parent_primary_url: https://www.usenix.org/system/files/sec22fall_yoo.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"In-Kernel Control-Flow Integrity on Commodity OSes using ARM Pointer Authentication\"](https://www.usenix.org/system/files/sec22fall_yoo.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec22_slides-yoo.pdf)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps ",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec22fall_yoo.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec22_slides-yoo.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec22fall_yoo.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec22_slides-yoo.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "control_flow_integrity",
        "ARM",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides accompanying a paper on in-kernel control-flow integrity are available.",
      "summary_zh": "提供了关于内核控制流完整性的论文的幻灯片。",
      "source_markdown": "[2022: \"In-Kernel Control-Flow Integrity on Commodity OSes using ARM Pointer Authentication\"](https://www.usenix.org/system/files/sec22fall_yoo.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec22_slides-yoo.pdf)]",
      "search_text": "in-kernel control-flow integrity on commodity oses using arm pointer authentication · slides in-kernel control-flow integrity on commodity oses using arm pointer authentication    defensive  defensive slides slides https://www.usenix.org/system/files/sec22_slides-yoo.pdf control_flow_integrity arm slides  defensive slides accompanying a paper on in-kernel control-flow integrity are available. 提供了关于内核控制流完整性的论文的幻灯片。 # in-kernel control-flow integrity on commodity oses using arm pointer authentication · slides record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: in-kernel control-flow integrity on commodity oses using arm pointer authentication resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec22_slides-yoo.pdf parent_primary_url: https://www.usenix.org/system/files/sec22fall_yoo.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"in-kernel control-flow integrity on commodity oses using arm pointer authentication\"](https://www.usenix.org/system/files/sec22fall_yoo.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec22_slides-yoo.pdf)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "eda6a62c45868f01",
      "item_id": "b79f35e771717400",
      "slug": "2022-defensive-preventing-kernel-hacks-with-hakc-primary-071c75ce",
      "year": 2022,
      "title": "Preventing Kernel Hacks with HAKC",
      "item_title": "Preventing Kernel Hacks with HAKC",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://nebelwelt.net/files/22NDSS2.pdf",
      "primary_url": "https://nebelwelt.net/files/22NDSS2.pdf",
      "parent_primary_url": "https://nebelwelt.net/files/22NDSS2.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-preventing-kernel-hacks-with-hakc-primary-071c75ce.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Preventing Kernel Hacks with HAKC record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Preventing Kernel Hacks with HAKC resource_label: primary resource_type: paper resource_url: https://nebelwelt.net/files/22NDSS2.pdf parent_primary_url: https://nebelwelt.net/files/22NDSS2.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Preventing Kernel Hacks with HAKC\"](https://nebelwelt.net/files/22NDSS2.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [paper] primary: https://nebelwelt.net/files/22NDS",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://nebelwelt.net/files/22NDSS2.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://nebelwelt.net/files/22NDSS2.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_security",
        "defense",
        "paper"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A paper discussing preventing kernel hacks with HAKC is available.",
      "summary_zh": "提供了关于使用HAKC防止内核黑客攻击的论文。",
      "source_markdown": "[2022: \"Preventing Kernel Hacks with HAKC\"](https://nebelwelt.net/files/22NDSS2.pdf) [paper]",
      "search_text": "preventing kernel hacks with hakc preventing kernel hacks with hakc    defensive  defensive primary paper https://nebelwelt.net/files/22ndss2.pdf kernel_security defense paper  defensive a paper discussing preventing kernel hacks with hakc is available. 提供了关于使用hakc防止内核黑客攻击的论文。 # preventing kernel hacks with hakc record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: preventing kernel hacks with hakc resource_label: primary resource_type: paper resource_url: https://nebelwelt.net/files/22ndss2.pdf parent_primary_url: https://nebelwelt.net/files/22ndss2.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"preventing kernel hacks with hakc\"](https://nebelwelt.net/files/22ndss2.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [paper] primary: https://nebelwelt.net/files/22nds no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4e6a64acf8671b20",
      "item_id": "eca9f2fdf223e5a9",
      "slug": "2022-defensive-mitigating-processor-vulnerabilities-primary-b5998b0f",
      "year": 2022,
      "title": "Mitigating Processor Vulnerabilities",
      "item_title": "Mitigating Processor Vulnerabilities",
      "authors": [
        "Restructuring the Kernel Address Space\" by Sebastian Eydam"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://fosdem.org/2022/schedule/event/seydam/attachments/slides/4837/export/events/attachments/seydam/slides/4837/fosdem_pres_seydam.pdf",
      "primary_url": "https://fosdem.org/2022/schedule/event/seydam/attachments/slides/4837/export/events/attachments/seydam/slides/4837/fosdem_pres_seydam.pdf",
      "parent_primary_url": "https://fosdem.org/2022/schedule/event/seydam/attachments/slides/4837/export/events/attachments/seydam/slides/4837/fosdem_pres_seydam.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-mitigating-processor-vulnerabilities-primary-b5998b0f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mitigating Processor Vulnerabilities record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Mitigating Processor Vulnerabilities resource_label: primary resource_type: slides resource_url: https://fosdem.org/2022/schedule/event/seydam/attachments/slides/4837/export/events/attachments/seydam/slides/4837/fosdem_pres_seydam.pdf parent_primary_url: https://fosdem.org/2022/schedule/event/seydam/attachments/slides/4837/export/events/attachments/seydam/slides/4837/fosdem_pres_seydam.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Mitigating Processor Vulnerabilities by Restructuring the Kernel Address Space\" by Sebastian Eydam](https://fosdem.org/2022/schedule/event/seydam/attachments/slides/4837/export/events/attachments/seydam/slides/4837/fosdem_pres_seydam.pdf) [slides] cves: none ",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://fosdem.org/2022/schedule/event/seydam/attachments/slides/4837/export/events/attachments/seydam/slides/4837/fosdem_pres_seydam.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://fosdem.org/2022/schedule/event/seydam/attachments/slides/4837/export/events/attachments/seydam/slides/4837/fosdem_pres_seydam.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "processor_vulnerabilities",
        "defense",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides on mitigating processor vulnerabilities by restructuring the kernel address space are available.",
      "summary_zh": "提供了关于通过重构内核地址空间来缓解处理器漏洞的幻灯片。",
      "source_markdown": "[2022: \"Mitigating Processor Vulnerabilities by Restructuring the Kernel Address Space\" by Sebastian Eydam](https://fosdem.org/2022/schedule/event/seydam/attachments/slides/4837/export/events/attachments/seydam/slides/4837/fosdem_pres_seydam.pdf) [slides]",
      "search_text": "mitigating processor vulnerabilities mitigating processor vulnerabilities restructuring the kernel address space\" by sebastian eydam   defensive  defensive primary slides https://fosdem.org/2022/schedule/event/seydam/attachments/slides/4837/export/events/attachments/seydam/slides/4837/fosdem_pres_seydam.pdf processor_vulnerabilities defense slides  defensive slides on mitigating processor vulnerabilities by restructuring the kernel address space are available. 提供了关于通过重构内核地址空间来缓解处理器漏洞的幻灯片。 # mitigating processor vulnerabilities record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: mitigating processor vulnerabilities resource_label: primary resource_type: slides resource_url: https://fosdem.org/2022/schedule/event/seydam/attachments/slides/4837/export/events/attachments/seydam/slides/4837/fosdem_pres_seydam.pdf parent_primary_url: https://fosdem.org/2022/schedule/event/seydam/attachments/slides/4837/export/events/attachments/seydam/slides/4837/fosdem_pres_seydam.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"mitigating processor vulnerabilities by restructuring the kernel address space\" by sebastian eydam](https://fosdem.org/2022/schedule/event/seydam/attachments/slides/4837/export/events/attachments/seydam/slides/4837/fosdem_pres_seydam.pdf) [slides] cves: none  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a51a33420f3f39b1",
      "item_id": "c1d57da8a4a93db9",
      "slug": "2022-defensive-meaningful-bounds-checking-in-the-linux-kernel-primary-70e535db",
      "year": 2022,
      "title": "Meaningful Bounds Checking in the Linux Kernel",
      "item_title": "Meaningful Bounds Checking in the Linux Kernel",
      "authors": [
        "Kees Cook at Linux Conf AU"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://outflux.net/slides/2022/lca/",
      "primary_url": "https://outflux.net/slides/2022/lca/",
      "parent_primary_url": "https://outflux.net/slides/2022/lca/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-meaningful-bounds-checking-in-the-linux-kernel-primary-70e535db.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Meaningful Bounds Checking in the Linux Kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Meaningful Bounds Checking in the Linux Kernel resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2022/lca/ parent_primary_url: https://outflux.net/slides/2022/lca/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Meaningful Bounds Checking in the Linux Kernel\" by Kees Cook at Linux Conf AU](https://outflux.net/slides/2022/lca/) [slides] [[video](https://www.youtube.com/watch?v=17Nqwl30Ch0)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_p",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2022/lca/"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=17Nqwl30Ch0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2022/lca/"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=17Nqwl30Ch0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bounds_checking",
        "kernel_security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This presentation discusses the importance of meaningful bounds checking in the Linux kernel to enhance security.",
      "summary_zh": "本演示讨论了在Linux内核中进行有意义的边界检查以增强安全性的重要性。",
      "source_markdown": "[2022: \"Meaningful Bounds Checking in the Linux Kernel\" by Kees Cook at Linux Conf AU](https://outflux.net/slides/2022/lca/) [slides] [[video](https://www.youtube.com/watch?v=17Nqwl30Ch0)]",
      "search_text": "meaningful bounds checking in the linux kernel meaningful bounds checking in the linux kernel kees cook at linux conf au   defensive  defensive primary slides https://outflux.net/slides/2022/lca/ bounds_checking kernel_security  defensive this presentation discusses the importance of meaningful bounds checking in the linux kernel to enhance security. 本演示讨论了在linux内核中进行有意义的边界检查以增强安全性的重要性。 # meaningful bounds checking in the linux kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: meaningful bounds checking in the linux kernel resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2022/lca/ parent_primary_url: https://outflux.net/slides/2022/lca/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"meaningful bounds checking in the linux kernel\" by kees cook at linux conf au](https://outflux.net/slides/2022/lca/) [slides] [[video](https://www.youtube.com/watch?v=17nqwl30ch0)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_p no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d4e7654df7bd6f0e",
      "item_id": "c1d57da8a4a93db9",
      "slug": "2022-defensive-meaningful-bounds-checking-in-the-linux-kernel-video-6da8ea5a",
      "year": 2022,
      "title": "Meaningful Bounds Checking in the Linux Kernel · video",
      "item_title": "Meaningful Bounds Checking in the Linux Kernel",
      "authors": [
        "Kees Cook at Linux Conf AU"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=17Nqwl30Ch0",
      "primary_url": "https://www.youtube.com/watch?v=17Nqwl30Ch0",
      "parent_primary_url": "https://outflux.net/slides/2022/lca/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-meaningful-bounds-checking-in-the-linux-kernel-video-6da8ea5a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Meaningful Bounds Checking in the Linux Kernel · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Meaningful Bounds Checking in the Linux Kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=17Nqwl30Ch0 parent_primary_url: https://outflux.net/slides/2022/lca/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Meaningful Bounds Checking in the Linux Kernel\" by Kees Cook at Linux Conf AU](https://outflux.net/slides/2022/lca/) [slides] [[video](https://www.youtube.com/watch?v=17Nqwl30Ch0)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code:",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2022/lca/"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=17Nqwl30Ch0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2022/lca/"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=17Nqwl30Ch0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bounds_checking",
        "kernel_security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video presentation on the significance of meaningful bounds checking in the Linux kernel.",
      "summary_zh": "关于在Linux内核中进行有意义的边界检查的重要性的视频演示。",
      "source_markdown": "[2022: \"Meaningful Bounds Checking in the Linux Kernel\" by Kees Cook at Linux Conf AU](https://outflux.net/slides/2022/lca/) [slides] [[video](https://www.youtube.com/watch?v=17Nqwl30Ch0)]",
      "search_text": "meaningful bounds checking in the linux kernel · video meaningful bounds checking in the linux kernel kees cook at linux conf au   defensive  defensive video video https://www.youtube.com/watch?v=17nqwl30ch0 bounds_checking kernel_security  defensive a video presentation on the significance of meaningful bounds checking in the linux kernel. 关于在linux内核中进行有意义的边界检查的重要性的视频演示。 # meaningful bounds checking in the linux kernel · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: meaningful bounds checking in the linux kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=17nqwl30ch0 parent_primary_url: https://outflux.net/slides/2022/lca/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"meaningful bounds checking in the linux kernel\" by kees cook at linux conf au](https://outflux.net/slides/2022/lca/) [slides] [[video](https://www.youtube.com/watch?v=17nqwl30ch0)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d903126053a025ee",
      "item_id": "6f45947f461ebbe8",
      "slug": "2022-defensive-mitigating-kernel-risks-on-32-bit-arm-primary-3a6606cd",
      "year": 2022,
      "title": "Mitigating kernel risks on 32-bit ARM",
      "item_title": "Mitigating kernel risks on 32-bit ARM",
      "authors": [
        "Ard Biesheuvel"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://security.googleblog.com/2022/02/mitigating-kernel-risks-on-32-bit-arm.html",
      "primary_url": "https://security.googleblog.com/2022/02/mitigating-kernel-risks-on-32-bit-arm.html",
      "parent_primary_url": "https://security.googleblog.com/2022/02/mitigating-kernel-risks-on-32-bit-arm.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-mitigating-kernel-risks-on-32-bit-arm-primary-3a6606cd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mitigating kernel risks on 32-bit ARM record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Mitigating kernel risks on 32-bit ARM resource_label: primary resource_type: article resource_url: https://security.googleblog.com/2022/02/mitigating-kernel-risks-on-32-bit-arm.html parent_primary_url: https://security.googleblog.com/2022/02/mitigating-kernel-risks-on-32-bit-arm.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Mitigating kernel risks on 32-bit ARM\" by Ard Biesheuvel](https://security.googleblog.com/2022/02/mitigating-kernel-risks-on-32-bit-arm.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU k",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://security.googleblog.com/2022/02/mitigating-kernel-risks-on-32-bit-arm.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://security.googleblog.com/2022/02/mitigating-kernel-risks-on-32-bit-arm.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_risks",
        "arm"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This article outlines strategies for mitigating kernel risks specifically on 32-bit ARM architectures.",
      "summary_zh": "本文概述了在32位ARM架构上减轻内核风险的策略。",
      "source_markdown": "[2022: \"Mitigating kernel risks on 32-bit ARM\" by Ard Biesheuvel](https://security.googleblog.com/2022/02/mitigating-kernel-risks-on-32-bit-arm.html) [article]",
      "search_text": "mitigating kernel risks on 32-bit arm mitigating kernel risks on 32-bit arm ard biesheuvel   defensive  defensive primary article https://security.googleblog.com/2022/02/mitigating-kernel-risks-on-32-bit-arm.html kernel_risks arm  defensive this article outlines strategies for mitigating kernel risks specifically on 32-bit arm architectures. 本文概述了在32位arm架构上减轻内核风险的策略。 # mitigating kernel risks on 32-bit arm record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: mitigating kernel risks on 32-bit arm resource_label: primary resource_type: article resource_url: https://security.googleblog.com/2022/02/mitigating-kernel-risks-on-32-bit-arm.html parent_primary_url: https://security.googleblog.com/2022/02/mitigating-kernel-risks-on-32-bit-arm.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"mitigating kernel risks on 32-bit arm\" by ard biesheuvel](https://security.googleblog.com/2022/02/mitigating-kernel-risks-on-32-bit-arm.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu k no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "8e5371d98a28c62e",
      "item_id": "205547f647100576",
      "slug": "2022-defensive-kernel-hardening-for-32-bit-arm-processors-primary-22c4ba43",
      "year": 2022,
      "title": "Kernel Hardening for 32-bit Arm Processors",
      "item_title": "Kernel Hardening for 32-bit Arm Processors",
      "authors": [
        "Keith Packard at Linux Conf AU"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=kmMGdSVDVuQ",
      "primary_url": "https://www.youtube.com/watch?v=kmMGdSVDVuQ",
      "parent_primary_url": "https://www.youtube.com/watch?v=kmMGdSVDVuQ",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2022-defensive-kernel-hardening-for-32-bit-arm-processors-primary-22c4ba43.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Hardening for 32-bit Arm Processors record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Kernel Hardening for 32-bit Arm Processors resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=kmMGdSVDVuQ parent_primary_url: https://www.youtube.com/watch?v=kmMGdSVDVuQ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"Kernel Hardening for 32-bit Arm Processors\" by Keith Packard at Linux Conf AU](https://www.youtube.com/watch?v=kmMGdSVDVuQ) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls:",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=kmMGdSVDVuQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=kmMGdSVDVuQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_hardening",
        "arm"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video discussing kernel hardening techniques for 32-bit ARM processors.",
      "summary_zh": "讨论32位ARM处理器的内核加固技术的视频。",
      "source_markdown": "[2022: \"Kernel Hardening for 32-bit Arm Processors\" by Keith Packard at Linux Conf AU](https://www.youtube.com/watch?v=kmMGdSVDVuQ) [video]",
      "search_text": "kernel hardening for 32-bit arm processors kernel hardening for 32-bit arm processors keith packard at linux conf au   defensive  defensive primary video https://www.youtube.com/watch?v=kmmgdsvdvuq kernel_hardening arm  defensive a video discussing kernel hardening techniques for 32-bit arm processors. 讨论32位arm处理器的内核加固技术的视频。 # kernel hardening for 32-bit arm processors record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: kernel hardening for 32-bit arm processors resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=kmmgdsvdvuq parent_primary_url: https://www.youtube.com/watch?v=kmmgdsvdvuq source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2022: \"kernel hardening for 32-bit arm processors\" by keith packard at linux conf au](https://www.youtube.com/watch?v=kmmgdsvdvuq) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4bc37c2598ca246d",
      "item_id": "d7040cecd3e7f8ca",
      "slug": "2021-defensive-mitigating-linux-kernel-memory-corruptions-with-arm-memory-tagging-primary-1a36d7c5",
      "year": 2021,
      "title": "Mitigating Linux kernel memory corruptions with Arm Memory Tagging",
      "item_title": "Mitigating Linux kernel memory corruptions with Arm Memory Tagging",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://docs.google.com/presentation/d/1IpICtHR1T3oHka858cx1dSNRu2XcT79-RCRPgzCuiRk/edit?usp=sharing",
      "primary_url": "https://docs.google.com/presentation/d/1IpICtHR1T3oHka858cx1dSNRu2XcT79-RCRPgzCuiRk/edit?usp=sharing",
      "parent_primary_url": "https://docs.google.com/presentation/d/1IpICtHR1T3oHka858cx1dSNRu2XcT79-RCRPgzCuiRk/edit?usp=sharing",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-mitigating-linux-kernel-memory-corruptions-with-arm-memory-tagging-primary-1a36d7c5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mitigating Linux kernel memory corruptions with Arm Memory Tagging record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Mitigating Linux kernel memory corruptions with Arm Memory Tagging resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/1IpICtHR1T3oHka858cx1dSNRu2XcT79-RCRPgzCuiRk/edit?usp=sharing parent_primary_url: https://docs.google.com/presentation/d/1IpICtHR1T3oHka858cx1dSNRu2XcT79-RCRPgzCuiRk/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"Mitigating Linux kernel memory corruptions with Arm Memory Tagging\" by Andrey Konovalov](https://docs.google.com/presentation/d/1IpICtHR1T3oHka858cx1dSNRu2XcT79-RCRPgzCuiRk/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=UwMt0e_dC_Q)] cves: none android",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/1IpICtHR1T3oHka858cx1dSNRu2XcT79-RCRPgzCuiRk/edit?usp=sharing"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=UwMt0e_dC_Q"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/1IpICtHR1T3oHka858cx1dSNRu2XcT79-RCRPgzCuiRk/edit?usp=sharing"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=UwMt0e_dC_Q"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory_corruption",
        "arm"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This presentation addresses the mitigation of memory corruption issues in the Linux kernel using Arm Memory Tagging.",
      "summary_zh": "本演示介绍了使用Arm内存标记来减轻Linux内核中的内存损坏问题。",
      "source_markdown": "[2021: \"Mitigating Linux kernel memory corruptions with Arm Memory Tagging\" by Andrey Konovalov](https://docs.google.com/presentation/d/1IpICtHR1T3oHka858cx1dSNRu2XcT79-RCRPgzCuiRk/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=UwMt0e_dC_Q)]",
      "search_text": "mitigating linux kernel memory corruptions with arm memory tagging mitigating linux kernel memory corruptions with arm memory tagging andrey konovalov   defensive  defensive primary slides https://docs.google.com/presentation/d/1ipicthr1t3ohka858cx1dsnru2xct79-rcrpgzcuirk/edit?usp=sharing memory_corruption arm  defensive this presentation addresses the mitigation of memory corruption issues in the linux kernel using arm memory tagging. 本演示介绍了使用arm内存标记来减轻linux内核中的内存损坏问题。 # mitigating linux kernel memory corruptions with arm memory tagging record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: mitigating linux kernel memory corruptions with arm memory tagging resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/1ipicthr1t3ohka858cx1dsnru2xct79-rcrpgzcuirk/edit?usp=sharing parent_primary_url: https://docs.google.com/presentation/d/1ipicthr1t3ohka858cx1dsnru2xct79-rcrpgzcuirk/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"mitigating linux kernel memory corruptions with arm memory tagging\" by andrey konovalov](https://docs.google.com/presentation/d/1ipicthr1t3ohka858cx1dsnru2xct79-rcrpgzcuirk/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=uwmt0e_dc_q)] cves: none android no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "fb268f65d8f36778",
      "item_id": "d7040cecd3e7f8ca",
      "slug": "2021-defensive-mitigating-linux-kernel-memory-corruptions-with-arm-memory-tagging-video-ed6aaa20",
      "year": 2021,
      "title": "Mitigating Linux kernel memory corruptions with Arm Memory Tagging · video",
      "item_title": "Mitigating Linux kernel memory corruptions with Arm Memory Tagging",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=UwMt0e_dC_Q",
      "primary_url": "https://www.youtube.com/watch?v=UwMt0e_dC_Q",
      "parent_primary_url": "https://docs.google.com/presentation/d/1IpICtHR1T3oHka858cx1dSNRu2XcT79-RCRPgzCuiRk/edit?usp=sharing",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-mitigating-linux-kernel-memory-corruptions-with-arm-memory-tagging-video-ed6aaa20.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mitigating Linux kernel memory corruptions with Arm Memory Tagging · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Mitigating Linux kernel memory corruptions with Arm Memory Tagging resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=UwMt0e_dC_Q parent_primary_url: https://docs.google.com/presentation/d/1IpICtHR1T3oHka858cx1dSNRu2XcT79-RCRPgzCuiRk/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"Mitigating Linux kernel memory corruptions with Arm Memory Tagging\" by Andrey Konovalov](https://docs.google.com/presentation/d/1IpICtHR1T3oHka858cx1dSNRu2XcT79-RCRPgzCuiRk/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=UwMt0e_dC_Q)] cves: none android_impact_status: no android_impact_reason: Not enough",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/1IpICtHR1T3oHka858cx1dSNRu2XcT79-RCRPgzCuiRk/edit?usp=sharing"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=UwMt0e_dC_Q"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/1IpICtHR1T3oHka858cx1dSNRu2XcT79-RCRPgzCuiRk/edit?usp=sharing"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=UwMt0e_dC_Q"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory_corruption",
        "arm"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video on mitigating Linux kernel memory corruptions through Arm Memory Tagging techniques.",
      "summary_zh": "关于通过Arm内存标记技术减轻Linux内核内存损坏的视频。",
      "source_markdown": "[2021: \"Mitigating Linux kernel memory corruptions with Arm Memory Tagging\" by Andrey Konovalov](https://docs.google.com/presentation/d/1IpICtHR1T3oHka858cx1dSNRu2XcT79-RCRPgzCuiRk/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=UwMt0e_dC_Q)]",
      "search_text": "mitigating linux kernel memory corruptions with arm memory tagging · video mitigating linux kernel memory corruptions with arm memory tagging andrey konovalov   defensive  defensive video video https://www.youtube.com/watch?v=uwmt0e_dc_q memory_corruption arm  defensive a video on mitigating linux kernel memory corruptions through arm memory tagging techniques. 关于通过arm内存标记技术减轻linux内核内存损坏的视频。 # mitigating linux kernel memory corruptions with arm memory tagging · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: mitigating linux kernel memory corruptions with arm memory tagging resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=uwmt0e_dc_q parent_primary_url: https://docs.google.com/presentation/d/1ipicthr1t3ohka858cx1dsnru2xct79-rcrpgzcuirk/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"mitigating linux kernel memory corruptions with arm memory tagging\" by andrey konovalov](https://docs.google.com/presentation/d/1ipicthr1t3ohka858cx1dsnru2xct79-rcrpgzcuirk/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=uwmt0e_dc_q)] cves: none android_impact_status: no android_impact_reason: not enough no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bc7fc29d16576339",
      "item_id": "d7b09af7dca60ea3",
      "slug": "2021-defensive-attack-surface-analysis-of-the-linux-kernel-based-on-complexity-metrics-primary-0b8301f8",
      "year": 2021,
      "title": "Attack surface analysis of the Linux kernel based on complexity metrics",
      "item_title": "Attack surface analysis of the Linux kernel based on complexity metrics",
      "authors": [
        "Stefan Bavendiek"
      ],
      "cves": [],
      "tags": [
        "thesis"
      ],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.researchgate.net/profile/Stefan-Bavendiek/publication/365872100_Attack_surface_analysis_of_the_Linux_kernel_based_on_complexity_metrics/links/638786d9bbdef30dc9877e26/Attack-surface-analysis-of-the-Linux-kernel-based-on-complexity-metrics.pdf",
      "primary_url": "https://www.researchgate.net/profile/Stefan-Bavendiek/publication/365872100_Attack_surface_analysis_of_the_Linux_kernel_based_on_complexity_metrics/links/638786d9bbdef30dc9877e26/Attack-surface-analysis-of-the-Linux-kernel-based-on-complexity-metrics.pdf",
      "parent_primary_url": "https://www.researchgate.net/profile/Stefan-Bavendiek/publication/365872100_Attack_surface_analysis_of_the_Linux_kernel_based_on_complexity_metrics/links/638786d9bbdef30dc9877e26/Attack-surface-analysis-of-the-Linux-kernel-based-on-complexity-metrics.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-attack-surface-analysis-of-the-linux-kernel-based-on-complexity-metrics-primary-0b8301f8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Attack surface analysis of the Linux kernel based on complexity metrics record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Attack surface analysis of the Linux kernel based on complexity metrics resource_label: primary resource_type: paper resource_url: https://www.researchgate.net/profile/Stefan-Bavendiek/publication/365872100_Attack_surface_analysis_of_the_Linux_kernel_based_on_complexity_metrics/links/638786d9bbdef30dc9877e26/Attack-surface-analysis-of-the-Linux-kernel-based-on-complexity-metrics.pdf parent_primary_url: https://www.researchgate.net/profile/Stefan-Bavendiek/publication/365872100_Attack_surface_analysis_of_the_Linux_kernel_based_on_complexity_metrics/links/638786d9bbdef30dc9877e26/Attack-surface-analysis-of-the-Linux-kernel-based-on-complexity-metrics.pdf source_section_url: https://github.com/xairy/linux-kernel-",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.researchgate.net/profile/Stefan-Bavendiek/publication/365872100_Attack_surface_analysis_of_the_Linux_kernel_based_on_complexity_metrics/links/638786d9bbdef30dc9877e26/Attack-surface-analysis-of-the-Linux-kernel-based-on-complexity-metrics.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.researchgate.net/profile/Stefan-Bavendiek/publication/365872100_Attack_surface_analysis_of_the_Linux_kernel_based_on_complexity_metrics/links/638786d9bbdef30dc9877e26/Attack-surface-analysis-of-the-Linux-kernel-based-on-complexity-metrics.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "attack_surface",
        "complexity_metrics"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This thesis analyzes the attack surface of the Linux kernel using complexity metrics.",
      "summary_zh": "本论文使用复杂性指标分析Linux内核的攻击面。",
      "source_markdown": "[2021: \"Attack surface analysis of the Linux kernel based on complexity metrics\" by Stefan Bavendiek](https://www.researchgate.net/profile/Stefan-Bavendiek/publication/365872100_Attack_surface_analysis_of_the_Linux_kernel_based_on_complexity_metrics/links/638786d9bbdef30dc9877e26/Attack-surface-analysis-of-the-Linux-kernel-based-on-complexity-metrics.pdf) [thesis]",
      "search_text": "attack surface analysis of the linux kernel based on complexity metrics attack surface analysis of the linux kernel based on complexity metrics stefan bavendiek  thesis defensive  defensive primary paper https://www.researchgate.net/profile/stefan-bavendiek/publication/365872100_attack_surface_analysis_of_the_linux_kernel_based_on_complexity_metrics/links/638786d9bbdef30dc9877e26/attack-surface-analysis-of-the-linux-kernel-based-on-complexity-metrics.pdf attack_surface complexity_metrics  defensive this thesis analyzes the attack surface of the linux kernel using complexity metrics. 本论文使用复杂性指标分析linux内核的攻击面。 # attack surface analysis of the linux kernel based on complexity metrics record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: attack surface analysis of the linux kernel based on complexity metrics resource_label: primary resource_type: paper resource_url: https://www.researchgate.net/profile/stefan-bavendiek/publication/365872100_attack_surface_analysis_of_the_linux_kernel_based_on_complexity_metrics/links/638786d9bbdef30dc9877e26/attack-surface-analysis-of-the-linux-kernel-based-on-complexity-metrics.pdf parent_primary_url: https://www.researchgate.net/profile/stefan-bavendiek/publication/365872100_attack_surface_analysis_of_the_linux_kernel_based_on_complexity_metrics/links/638786d9bbdef30dc9877e26/attack-surface-analysis-of-the-linux-kernel-based-on-complexity-metrics.pdf source_section_url: https://github.com/xairy/linux-kernel- no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b9b79595be1629ed",
      "item_id": "5d2fa9939f95c2a0",
      "slug": "2021-defensive-midas-systematic-kernel-tocttou-protection-at-usenix-primary-fbe61be7",
      "year": 2021,
      "title": "Midas: Systematic Kernel TOCTTOU Protection\" at USENIX",
      "item_title": "Midas: Systematic Kernel TOCTTOU Protection\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-midas-systematic-kernel-tocttou-protection-at-usenix-primary-fbe61be7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Midas: Systematic Kernel TOCTTOU Protection\" at USENIX record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Midas: Systematic Kernel TOCTTOU Protection\" at USENIX resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf parent_primary_url: https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"Midas: Systematic Kernel TOCTTOU Protection\" at USENIX](https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec22_slides-bhattacharyya.pdf)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec22_slides-bhattacharyya.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec22_slides-bhattacharyya.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "TOCTTOU",
        "kernel_protection"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "The paper presents a systematic approach to protect against TOCTTOU vulnerabilities in the kernel.",
      "summary_zh": "本文提出了一种系统的方法来保护内核免受TOCTTOU漏洞的影响。",
      "source_markdown": "[2021: \"Midas: Systematic Kernel TOCTTOU Protection\" at USENIX](https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec22_slides-bhattacharyya.pdf)]",
      "search_text": "midas: systematic kernel tocttou protection\" at usenix midas: systematic kernel tocttou protection\" at usenix    defensive  defensive primary paper https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf tocttou kernel_protection  defensive the paper presents a systematic approach to protect against tocttou vulnerabilities in the kernel. 本文提出了一种系统的方法来保护内核免受tocttou漏洞的影响。 # midas: systematic kernel tocttou protection\" at usenix record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: midas: systematic kernel tocttou protection\" at usenix resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf parent_primary_url: https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"midas: systematic kernel tocttou protection\" at usenix](https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec22_slides-bhattacharyya.pdf)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7433d7f416e366a6",
      "item_id": "5d2fa9939f95c2a0",
      "slug": "2021-defensive-midas-systematic-kernel-tocttou-protection-at-usenix-slides-da375b8e",
      "year": 2021,
      "title": "Midas: Systematic Kernel TOCTTOU Protection\" at USENIX · slides",
      "item_title": "Midas: Systematic Kernel TOCTTOU Protection\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/sec22_slides-bhattacharyya.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec22_slides-bhattacharyya.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-midas-systematic-kernel-tocttou-protection-at-usenix-slides-da375b8e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Midas: Systematic Kernel TOCTTOU Protection\" at USENIX · slides record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Midas: Systematic Kernel TOCTTOU Protection\" at USENIX resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec22_slides-bhattacharyya.pdf parent_primary_url: https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"Midas: Systematic Kernel TOCTTOU Protection\" at USENIX](https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec22_slides-bhattacharyya.pdf)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_stat",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec22_slides-bhattacharyya.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec22_slides-bhattacharyya.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "TOCTTOU",
        "kernel_protection"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides from a presentation on systematic kernel TOCTTOU protection strategies.",
      "summary_zh": "关于系统内核TOCTTOU保护策略的演示文稿幻灯片。",
      "source_markdown": "[2021: \"Midas: Systematic Kernel TOCTTOU Protection\" at USENIX](https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec22_slides-bhattacharyya.pdf)]",
      "search_text": "midas: systematic kernel tocttou protection\" at usenix · slides midas: systematic kernel tocttou protection\" at usenix    defensive  defensive slides slides https://www.usenix.org/system/files/sec22_slides-bhattacharyya.pdf tocttou kernel_protection  defensive slides from a presentation on systematic kernel tocttou protection strategies. 关于系统内核tocttou保护策略的演示文稿幻灯片。 # midas: systematic kernel tocttou protection\" at usenix · slides record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: midas: systematic kernel tocttou protection\" at usenix resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec22_slides-bhattacharyya.pdf parent_primary_url: https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"midas: systematic kernel tocttou protection\" at usenix](https://www.usenix.org/system/files/sec22summer_bhattacharyya.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec22_slides-bhattacharyya.pdf)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_stat no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "0938f09abe66b98e",
      "item_id": "7c0fedbd14261249",
      "slug": "2021-defensive-undo-workarounds-for-kernel-bugs-at-usenix-primary-da088e39",
      "year": 2021,
      "title": "Undo Workarounds for Kernel Bugs\" at USENIX",
      "item_title": "Undo Workarounds for Kernel Bugs\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec21-talebi.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec21-talebi.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-talebi.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-undo-workarounds-for-kernel-bugs-at-usenix-primary-da088e39.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Undo Workarounds for Kernel Bugs\" at USENIX record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Undo Workarounds for Kernel Bugs\" at USENIX resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec21-talebi.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-talebi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"Undo Workarounds for Kernel Bugs\" at USENIX](https://www.usenix.org/system/files/sec21-talebi.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_talebi.pdf)] [[video](https://www.youtube.com/watch?v=4QwMMCjAll8)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Producti",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-talebi.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_talebi.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=4QwMMCjAll8"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-talebi.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_talebi.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=4QwMMCjAll8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_bugs",
        "workarounds"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This paper discusses methods for undoing workarounds for kernel bugs to enhance security.",
      "summary_zh": "本文讨论了撤销内核漏洞的变通方法以增强安全性的方法。",
      "source_markdown": "[2021: \"Undo Workarounds for Kernel Bugs\" at USENIX](https://www.usenix.org/system/files/sec21-talebi.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_talebi.pdf)] [[video](https://www.youtube.com/watch?v=4QwMMCjAll8)]",
      "search_text": "undo workarounds for kernel bugs\" at usenix undo workarounds for kernel bugs\" at usenix    defensive  defensive primary paper https://www.usenix.org/system/files/sec21-talebi.pdf kernel_bugs workarounds  defensive this paper discusses methods for undoing workarounds for kernel bugs to enhance security. 本文讨论了撤销内核漏洞的变通方法以增强安全性的方法。 # undo workarounds for kernel bugs\" at usenix record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: undo workarounds for kernel bugs\" at usenix resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec21-talebi.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-talebi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"undo workarounds for kernel bugs\" at usenix](https://www.usenix.org/system/files/sec21-talebi.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_talebi.pdf)] [[video](https://www.youtube.com/watch?v=4qwmmcjall8)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: producti no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "04edfee69ab072fc",
      "item_id": "7c0fedbd14261249",
      "slug": "2021-defensive-undo-workarounds-for-kernel-bugs-at-usenix-slides-a9136dea",
      "year": 2021,
      "title": "Undo Workarounds for Kernel Bugs\" at USENIX · slides",
      "item_title": "Undo Workarounds for Kernel Bugs\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/sec21_slides_talebi.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec21_slides_talebi.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-talebi.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-undo-workarounds-for-kernel-bugs-at-usenix-slides-a9136dea.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Undo Workarounds for Kernel Bugs\" at USENIX · slides record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Undo Workarounds for Kernel Bugs\" at USENIX resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec21_slides_talebi.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-talebi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"Undo Workarounds for Kernel Bugs\" at USENIX](https://www.usenix.org/system/files/sec21-talebi.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_talebi.pdf)] [[video](https://www.youtube.com/watch?v=4QwMMCjAll8)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-talebi.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_talebi.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=4QwMMCjAll8"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-talebi.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_talebi.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=4QwMMCjAll8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_bugs",
        "workarounds"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides detailing the methods for undoing workarounds for kernel bugs presented at USENIX.",
      "summary_zh": "在USENIX上展示的关于撤销内核漏洞变通方法的幻灯片。",
      "source_markdown": "[2021: \"Undo Workarounds for Kernel Bugs\" at USENIX](https://www.usenix.org/system/files/sec21-talebi.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_talebi.pdf)] [[video](https://www.youtube.com/watch?v=4QwMMCjAll8)]",
      "search_text": "undo workarounds for kernel bugs\" at usenix · slides undo workarounds for kernel bugs\" at usenix    defensive  defensive slides slides https://www.usenix.org/system/files/sec21_slides_talebi.pdf kernel_bugs workarounds  defensive slides detailing the methods for undoing workarounds for kernel bugs presented at usenix. 在usenix上展示的关于撤销内核漏洞变通方法的幻灯片。 # undo workarounds for kernel bugs\" at usenix · slides record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: undo workarounds for kernel bugs\" at usenix resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec21_slides_talebi.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-talebi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"undo workarounds for kernel bugs\" at usenix](https://www.usenix.org/system/files/sec21-talebi.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_talebi.pdf)] [[video](https://www.youtube.com/watch?v=4qwmmcjall8)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7f8554928b5b4317",
      "item_id": "7c0fedbd14261249",
      "slug": "2021-defensive-undo-workarounds-for-kernel-bugs-at-usenix-video-a38315a6",
      "year": 2021,
      "title": "Undo Workarounds for Kernel Bugs\" at USENIX · video",
      "item_title": "Undo Workarounds for Kernel Bugs\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=4QwMMCjAll8",
      "primary_url": "https://www.youtube.com/watch?v=4QwMMCjAll8",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-talebi.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-undo-workarounds-for-kernel-bugs-at-usenix-video-a38315a6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Undo Workarounds for Kernel Bugs\" at USENIX · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Undo Workarounds for Kernel Bugs\" at USENIX resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=4QwMMCjAll8 parent_primary_url: https://www.usenix.org/system/files/sec21-talebi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"Undo Workarounds for Kernel Bugs\" at USENIX](https://www.usenix.org/system/files/sec21-talebi.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_talebi.pdf)] [[video](https://www.youtube.com/watch?v=4QwMMCjAll8)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production ",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-talebi.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_talebi.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=4QwMMCjAll8"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-talebi.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_talebi.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=4QwMMCjAll8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_bugs",
        "workarounds"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video presentation on undoing workarounds for kernel bugs to improve security.",
      "summary_zh": "关于撤销内核漏洞变通方法以提高安全性的视频演示。",
      "source_markdown": "[2021: \"Undo Workarounds for Kernel Bugs\" at USENIX](https://www.usenix.org/system/files/sec21-talebi.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_talebi.pdf)] [[video](https://www.youtube.com/watch?v=4QwMMCjAll8)]",
      "search_text": "undo workarounds for kernel bugs\" at usenix · video undo workarounds for kernel bugs\" at usenix    defensive  defensive video video https://www.youtube.com/watch?v=4qwmmcjall8 kernel_bugs workarounds  defensive a video presentation on undoing workarounds for kernel bugs to improve security. 关于撤销内核漏洞变通方法以提高安全性的视频演示。 # undo workarounds for kernel bugs\" at usenix · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: undo workarounds for kernel bugs\" at usenix resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=4qwmmcjall8 parent_primary_url: https://www.usenix.org/system/files/sec21-talebi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"undo workarounds for kernel bugs\" at usenix](https://www.usenix.org/system/files/sec21-talebi.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_talebi.pdf)] [[video](https://www.youtube.com/watch?v=4qwmmcjall8)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2cccc6303e6b83fd",
      "item_id": "9d6677a2dbfb65fa",
      "slug": "2021-defensive-shard-fine-grained-kernel-specialization-with-context-aware-hardening-at-usenix-primary-da5c258",
      "year": 2021,
      "title": "SHARD: Fine-Grained Kernel Specialization with Context-Aware Hardening\" at USENIX",
      "item_title": "SHARD: Fine-Grained Kernel Specialization with Context-Aware Hardening\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec21-abubakar.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec21-abubakar.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-abubakar.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-shard-fine-grained-kernel-specialization-with-context-aware-hardening-at-usenix-primary-da5c258.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SHARD: Fine-Grained Kernel Specialization with Context-Aware Hardening\" at USENIX record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: SHARD: Fine-Grained Kernel Specialization with Context-Aware Hardening\" at USENIX resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec21-abubakar.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-abubakar.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"SHARD: Fine-Grained Kernel Specialization with Context-Aware Hardening\" at USENIX](https://www.usenix.org/system/files/sec21-abubakar.pdf) [[slides](https://www.usenix.org/system/files/sec21_slides_abubakar.pdf)] [[video](https://www.youtube.com/watch?v=ts3MQPTtFkg)] cves: none android_impact_status: no android_impact_reason: Not enou",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-abubakar.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_abubakar.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=ts3MQPTtFkg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-abubakar.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_abubakar.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=ts3MQPTtFkg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_specialization",
        "context_aware"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This paper introduces SHARD, a fine-grained kernel specialization technique with context-aware hardening.",
      "summary_zh": "本文介绍了SHARD，一种具有上下文感知加固的细粒度内核专业化技术。",
      "source_markdown": "[2021: \"SHARD: Fine-Grained Kernel Specialization with Context-Aware Hardening\" at USENIX](https://www.usenix.org/system/files/sec21-abubakar.pdf) [[slides](https://www.usenix.org/system/files/sec21_slides_abubakar.pdf)] [[video](https://www.youtube.com/watch?v=ts3MQPTtFkg)]",
      "search_text": "shard: fine-grained kernel specialization with context-aware hardening\" at usenix shard: fine-grained kernel specialization with context-aware hardening\" at usenix    defensive  defensive primary paper https://www.usenix.org/system/files/sec21-abubakar.pdf kernel_specialization context_aware  defensive this paper introduces shard, a fine-grained kernel specialization technique with context-aware hardening. 本文介绍了shard，一种具有上下文感知加固的细粒度内核专业化技术。 # shard: fine-grained kernel specialization with context-aware hardening\" at usenix record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: shard: fine-grained kernel specialization with context-aware hardening\" at usenix resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec21-abubakar.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-abubakar.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"shard: fine-grained kernel specialization with context-aware hardening\" at usenix](https://www.usenix.org/system/files/sec21-abubakar.pdf) [[slides](https://www.usenix.org/system/files/sec21_slides_abubakar.pdf)] [[video](https://www.youtube.com/watch?v=ts3mqpttfkg)] cves: none android_impact_status: no android_impact_reason: not enou no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a5e63f733b152cf0",
      "item_id": "9d6677a2dbfb65fa",
      "slug": "2021-defensive-shard-fine-grained-kernel-specialization-with-context-aware-hardening-at-usenix-slides-71fbff1b",
      "year": 2021,
      "title": "SHARD: Fine-Grained Kernel Specialization with Context-Aware Hardening\" at USENIX · slides",
      "item_title": "SHARD: Fine-Grained Kernel Specialization with Context-Aware Hardening\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/sec21_slides_abubakar.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec21_slides_abubakar.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-abubakar.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-shard-fine-grained-kernel-specialization-with-context-aware-hardening-at-usenix-slides-71fbff1b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SHARD: Fine-Grained Kernel Specialization with Context-Aware Hardening\" at USENIX · slides record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: SHARD: Fine-Grained Kernel Specialization with Context-Aware Hardening\" at USENIX resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec21_slides_abubakar.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-abubakar.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"SHARD: Fine-Grained Kernel Specialization with Context-Aware Hardening\" at USENIX](https://www.usenix.org/system/files/sec21-abubakar.pdf) [[slides](https://www.usenix.org/system/files/sec21_slides_abubakar.pdf)] [[video](https://www.youtube.com/watch?v=ts3MQPTtFkg)] cves: none android_impact_status: no android_impact_",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-abubakar.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_abubakar.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=ts3MQPTtFkg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-abubakar.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_abubakar.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=ts3MQPTtFkg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_specialization",
        "context_aware"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides from a presentation on SHARD, focusing on fine-grained kernel specialization and hardening.",
      "summary_zh": "关于SHARD的演示文稿幻灯片，重点介绍细粒度内核专业化和加固。",
      "source_markdown": "[2021: \"SHARD: Fine-Grained Kernel Specialization with Context-Aware Hardening\" at USENIX](https://www.usenix.org/system/files/sec21-abubakar.pdf) [[slides](https://www.usenix.org/system/files/sec21_slides_abubakar.pdf)] [[video](https://www.youtube.com/watch?v=ts3MQPTtFkg)]",
      "search_text": "shard: fine-grained kernel specialization with context-aware hardening\" at usenix · slides shard: fine-grained kernel specialization with context-aware hardening\" at usenix    defensive  defensive slides slides https://www.usenix.org/system/files/sec21_slides_abubakar.pdf kernel_specialization context_aware  defensive slides from a presentation on shard, focusing on fine-grained kernel specialization and hardening. 关于shard的演示文稿幻灯片，重点介绍细粒度内核专业化和加固。 # shard: fine-grained kernel specialization with context-aware hardening\" at usenix · slides record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: shard: fine-grained kernel specialization with context-aware hardening\" at usenix resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec21_slides_abubakar.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-abubakar.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"shard: fine-grained kernel specialization with context-aware hardening\" at usenix](https://www.usenix.org/system/files/sec21-abubakar.pdf) [[slides](https://www.usenix.org/system/files/sec21_slides_abubakar.pdf)] [[video](https://www.youtube.com/watch?v=ts3mqpttfkg)] cves: none android_impact_status: no android_impact_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "39155d8c4e04ef20",
      "item_id": "9d6677a2dbfb65fa",
      "slug": "2021-defensive-shard-fine-grained-kernel-specialization-with-context-aware-hardening-at-usenix-video-49f259cd",
      "year": 2021,
      "title": "SHARD: Fine-Grained Kernel Specialization with Context-Aware Hardening\" at USENIX · video",
      "item_title": "SHARD: Fine-Grained Kernel Specialization with Context-Aware Hardening\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=ts3MQPTtFkg",
      "primary_url": "https://www.youtube.com/watch?v=ts3MQPTtFkg",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-abubakar.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-shard-fine-grained-kernel-specialization-with-context-aware-hardening-at-usenix-video-49f259cd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SHARD: Fine-Grained Kernel Specialization with Context-Aware Hardening\" at USENIX · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: SHARD: Fine-Grained Kernel Specialization with Context-Aware Hardening\" at USENIX resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=ts3MQPTtFkg parent_primary_url: https://www.usenix.org/system/files/sec21-abubakar.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"SHARD: Fine-Grained Kernel Specialization with Context-Aware Hardening\" at USENIX](https://www.usenix.org/system/files/sec21-abubakar.pdf) [[slides](https://www.usenix.org/system/files/sec21_slides_abubakar.pdf)] [[video](https://www.youtube.com/watch?v=ts3MQPTtFkg)] cves: none android_impact_status: no android_impact_reason: Not enough ev",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-abubakar.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_abubakar.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=ts3MQPTtFkg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-abubakar.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_abubakar.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=ts3MQPTtFkg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_specialization",
        "context_aware"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video discussing the SHARD technique for fine-grained kernel specialization and context-aware hardening.",
      "summary_zh": "讨论SHARD技术的细粒度内核专业化和上下文感知加固的视频。",
      "source_markdown": "[2021: \"SHARD: Fine-Grained Kernel Specialization with Context-Aware Hardening\" at USENIX](https://www.usenix.org/system/files/sec21-abubakar.pdf) [[slides](https://www.usenix.org/system/files/sec21_slides_abubakar.pdf)] [[video](https://www.youtube.com/watch?v=ts3MQPTtFkg)]",
      "search_text": "shard: fine-grained kernel specialization with context-aware hardening\" at usenix · video shard: fine-grained kernel specialization with context-aware hardening\" at usenix    defensive  defensive video video https://www.youtube.com/watch?v=ts3mqpttfkg kernel_specialization context_aware  defensive a video discussing the shard technique for fine-grained kernel specialization and context-aware hardening. 讨论shard技术的细粒度内核专业化和上下文感知加固的视频。 # shard: fine-grained kernel specialization with context-aware hardening\" at usenix · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: shard: fine-grained kernel specialization with context-aware hardening\" at usenix resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=ts3mqpttfkg parent_primary_url: https://www.usenix.org/system/files/sec21-abubakar.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"shard: fine-grained kernel specialization with context-aware hardening\" at usenix](https://www.usenix.org/system/files/sec21-abubakar.pdf) [[slides](https://www.usenix.org/system/files/sec21_slides_abubakar.pdf)] [[video](https://www.youtube.com/watch?v=ts3mqpttfkg)] cves: none android_impact_status: no android_impact_reason: not enough ev no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a2bc7711e0b91b5a",
      "item_id": "c51dfe64dca14408",
      "slug": "2021-defensive-mitigation-of-kernel-memory-corruption-using-multiple-kernel-memory-mechanism-primary-29747214",
      "year": 2021,
      "title": "Mitigation of Kernel Memory Corruption Using Multiple Kernel Memory Mechanism",
      "item_title": "Mitigation of Kernel Memory Corruption Using Multiple Kernel Memory Mechanism",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=9502080",
      "primary_url": "https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=9502080",
      "parent_primary_url": "https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=9502080",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-mitigation-of-kernel-memory-corruption-using-multiple-kernel-memory-mechanism-primary-29747214.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mitigation of Kernel Memory Corruption Using Multiple Kernel Memory Mechanism record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Mitigation of Kernel Memory Corruption Using Multiple Kernel Memory Mechanism resource_label: primary resource_type: paper resource_url: https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=9502080 parent_primary_url: https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=9502080 source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"Mitigation of Kernel Memory Corruption Using Multiple Kernel Memory Mechanism\"](https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=9502080) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Producti",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=9502080"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=9502080"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory_corruption",
        "kernel_mechanisms"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This paper discusses multiple kernel memory mechanisms for mitigating memory corruption issues.",
      "summary_zh": "本文讨论了多种内核内存机制以减轻内存损坏问题。",
      "source_markdown": "[2021: \"Mitigation of Kernel Memory Corruption Using Multiple Kernel Memory Mechanism\"](https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=9502080) [paper]",
      "search_text": "mitigation of kernel memory corruption using multiple kernel memory mechanism mitigation of kernel memory corruption using multiple kernel memory mechanism    defensive  defensive primary paper https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=9502080 memory_corruption kernel_mechanisms  defensive this paper discusses multiple kernel memory mechanisms for mitigating memory corruption issues. 本文讨论了多种内核内存机制以减轻内存损坏问题。 # mitigation of kernel memory corruption using multiple kernel memory mechanism record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: mitigation of kernel memory corruption using multiple kernel memory mechanism resource_label: primary resource_type: paper resource_url: https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=9502080 parent_primary_url: https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=9502080 source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"mitigation of kernel memory corruption using multiple kernel memory mechanism\"](https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=9502080) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: producti no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ee47517922fc4f21",
      "item_id": "8ce212dc5938736a",
      "slug": "2021-defensive-hardware-assisted-fine-grained-control-flow-integrity-adding-lasers-to-intel-s-cet-ibt-primary-",
      "year": 2021,
      "title": "Hardware-Assisted Fine-Grained Control-Flow Integrity: Adding Lasers to Intel's CET/IBT",
      "item_title": "Hardware-Assisted Fine-Grained Control-Flow Integrity: Adding Lasers to Intel's CET/IBT",
      "authors": [
        "Joao Moreira"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://static.sched.com/hosted_files/lssna2021/8f/LSS_FINEIBT_JOAOMOREIRA.pdf",
      "primary_url": "https://static.sched.com/hosted_files/lssna2021/8f/LSS_FINEIBT_JOAOMOREIRA.pdf",
      "parent_primary_url": "https://static.sched.com/hosted_files/lssna2021/8f/LSS_FINEIBT_JOAOMOREIRA.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-hardware-assisted-fine-grained-control-flow-integrity-adding-lasers-to-intel-s-cet-ibt-primary-.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Hardware-Assisted Fine-Grained Control-Flow Integrity: Adding Lasers to Intel's CET/IBT record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Hardware-Assisted Fine-Grained Control-Flow Integrity: Adding Lasers to Intel's CET/IBT resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/lssna2021/8f/LSS_FINEIBT_JOAOMOREIRA.pdf parent_primary_url: https://static.sched.com/hosted_files/lssna2021/8f/LSS_FINEIBT_JOAOMOREIRA.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"Hardware-Assisted Fine-Grained Control-Flow Integrity: Adding Lasers to Intel's CET/IBT\" by Joao Moreira](https://static.sched.com/hosted_files/lssna2021/8f/LSS_FINEIBT_JOAOMOREIRA.pdf) [slides] [[video](https://www.youtube.com/watch?v=FzGIM1218Ok)] cves: none android_impact",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lssna2021/8f/LSS_FINEIBT_JOAOMOREIRA.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=FzGIM1218Ok"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lssna2021/8f/LSS_FINEIBT_JOAOMOREIRA.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=FzGIM1218Ok"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "control_flow_integrity",
        "kernel_security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides on hardware-assisted fine-grained control-flow integrity techniques for enhancing kernel security.",
      "summary_zh": "关于增强内核安全性的硬件辅助细粒度控制流完整性技术的幻灯片。",
      "source_markdown": "[2021: \"Hardware-Assisted Fine-Grained Control-Flow Integrity: Adding Lasers to Intel's CET/IBT\" by Joao Moreira](https://static.sched.com/hosted_files/lssna2021/8f/LSS_FINEIBT_JOAOMOREIRA.pdf) [slides] [[video](https://www.youtube.com/watch?v=FzGIM1218Ok)]",
      "search_text": "hardware-assisted fine-grained control-flow integrity: adding lasers to intel's cet/ibt hardware-assisted fine-grained control-flow integrity: adding lasers to intel's cet/ibt joao moreira   defensive  defensive primary slides https://static.sched.com/hosted_files/lssna2021/8f/lss_fineibt_joaomoreira.pdf control_flow_integrity kernel_security  defensive slides on hardware-assisted fine-grained control-flow integrity techniques for enhancing kernel security. 关于增强内核安全性的硬件辅助细粒度控制流完整性技术的幻灯片。 # hardware-assisted fine-grained control-flow integrity: adding lasers to intel's cet/ibt record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: hardware-assisted fine-grained control-flow integrity: adding lasers to intel's cet/ibt resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/lssna2021/8f/lss_fineibt_joaomoreira.pdf parent_primary_url: https://static.sched.com/hosted_files/lssna2021/8f/lss_fineibt_joaomoreira.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"hardware-assisted fine-grained control-flow integrity: adding lasers to intel's cet/ibt\" by joao moreira](https://static.sched.com/hosted_files/lssna2021/8f/lss_fineibt_joaomoreira.pdf) [slides] [[video](https://www.youtube.com/watch?v=fzgim1218ok)] cves: none android_impact no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3673b85eebeea9c7",
      "item_id": "8ce212dc5938736a",
      "slug": "2021-defensive-hardware-assisted-fine-grained-control-flow-integrity-adding-lasers-to-intel-s-cet-ibt-video-89",
      "year": 2021,
      "title": "Hardware-Assisted Fine-Grained Control-Flow Integrity: Adding Lasers to Intel's CET/IBT · video",
      "item_title": "Hardware-Assisted Fine-Grained Control-Flow Integrity: Adding Lasers to Intel's CET/IBT",
      "authors": [
        "Joao Moreira"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=FzGIM1218Ok",
      "primary_url": "https://www.youtube.com/watch?v=FzGIM1218Ok",
      "parent_primary_url": "https://static.sched.com/hosted_files/lssna2021/8f/LSS_FINEIBT_JOAOMOREIRA.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-hardware-assisted-fine-grained-control-flow-integrity-adding-lasers-to-intel-s-cet-ibt-video-89.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Hardware-Assisted Fine-Grained Control-Flow Integrity: Adding Lasers to Intel's CET/IBT · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Hardware-Assisted Fine-Grained Control-Flow Integrity: Adding Lasers to Intel's CET/IBT resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=FzGIM1218Ok parent_primary_url: https://static.sched.com/hosted_files/lssna2021/8f/LSS_FINEIBT_JOAOMOREIRA.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"Hardware-Assisted Fine-Grained Control-Flow Integrity: Adding Lasers to Intel's CET/IBT\" by Joao Moreira](https://static.sched.com/hosted_files/lssna2021/8f/LSS_FINEIBT_JOAOMOREIRA.pdf) [slides] [[video](https://www.youtube.com/watch?v=FzGIM1218Ok)] cves: none android_impact_status: no android_impact_rea",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lssna2021/8f/LSS_FINEIBT_JOAOMOREIRA.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=FzGIM1218Ok"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lssna2021/8f/LSS_FINEIBT_JOAOMOREIRA.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=FzGIM1218Ok"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "control_flow_integrity",
        "kernel_security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video presentation on hardware-assisted fine-grained control-flow integrity for kernel security.",
      "summary_zh": "关于内核安全性的硬件辅助细粒度控制流完整性的视频演示。",
      "source_markdown": "[2021: \"Hardware-Assisted Fine-Grained Control-Flow Integrity: Adding Lasers to Intel's CET/IBT\" by Joao Moreira](https://static.sched.com/hosted_files/lssna2021/8f/LSS_FINEIBT_JOAOMOREIRA.pdf) [slides] [[video](https://www.youtube.com/watch?v=FzGIM1218Ok)]",
      "search_text": "hardware-assisted fine-grained control-flow integrity: adding lasers to intel's cet/ibt · video hardware-assisted fine-grained control-flow integrity: adding lasers to intel's cet/ibt joao moreira   defensive  defensive video video https://www.youtube.com/watch?v=fzgim1218ok control_flow_integrity kernel_security  defensive a video presentation on hardware-assisted fine-grained control-flow integrity for kernel security. 关于内核安全性的硬件辅助细粒度控制流完整性的视频演示。 # hardware-assisted fine-grained control-flow integrity: adding lasers to intel's cet/ibt · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: hardware-assisted fine-grained control-flow integrity: adding lasers to intel's cet/ibt resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=fzgim1218ok parent_primary_url: https://static.sched.com/hosted_files/lssna2021/8f/lss_fineibt_joaomoreira.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"hardware-assisted fine-grained control-flow integrity: adding lasers to intel's cet/ibt\" by joao moreira](https://static.sched.com/hosted_files/lssna2021/8f/lss_fineibt_joaomoreira.pdf) [slides] [[video](https://www.youtube.com/watch?v=fzgim1218ok)] cves: none android_impact_status: no android_impact_rea no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "41cfa653b7a29496",
      "item_id": "cb26bf23f01898b8",
      "slug": "2021-defensive-kernel-self-protection-project-primary-9eb671b1",
      "year": 2021,
      "title": "Kernel Self-Protection Project",
      "item_title": "Kernel Self-Protection Project",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://outflux.net/slides/2021/lss/kspp.pdf",
      "primary_url": "https://outflux.net/slides/2021/lss/kspp.pdf",
      "parent_primary_url": "https://outflux.net/slides/2021/lss/kspp.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-kernel-self-protection-project-primary-9eb671b1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Self-Protection Project record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Kernel Self-Protection Project resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2021/lss/kspp.pdf parent_primary_url: https://outflux.net/slides/2021/lss/kspp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"Kernel Self-Protection Project\" by Kees Cook](https://outflux.net/slides/2021/lss/kspp.pdf) [slides] [[video](https://www.youtube.com/watch?v=-Binxid8t_8)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_ur",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2021/lss/kspp.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=-Binxid8t_8"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2021/lss/kspp.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=-Binxid8t_8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "self_protection",
        "kernel_security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides detailing the Kernel Self-Protection Project aimed at enhancing Linux kernel security.",
      "summary_zh": "关于旨在增强Linux内核安全性的内核自我保护项目的幻灯片。",
      "source_markdown": "[2021: \"Kernel Self-Protection Project\" by Kees Cook](https://outflux.net/slides/2021/lss/kspp.pdf) [slides] [[video](https://www.youtube.com/watch?v=-Binxid8t_8)]",
      "search_text": "kernel self-protection project kernel self-protection project kees cook   defensive  defensive primary slides https://outflux.net/slides/2021/lss/kspp.pdf self_protection kernel_security  defensive slides detailing the kernel self-protection project aimed at enhancing linux kernel security. 关于旨在增强linux内核安全性的内核自我保护项目的幻灯片。 # kernel self-protection project record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: kernel self-protection project resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2021/lss/kspp.pdf parent_primary_url: https://outflux.net/slides/2021/lss/kspp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"kernel self-protection project\" by kees cook](https://outflux.net/slides/2021/lss/kspp.pdf) [slides] [[video](https://www.youtube.com/watch?v=-binxid8t_8)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_ur no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "88e775309d615acb",
      "item_id": "cb26bf23f01898b8",
      "slug": "2021-defensive-kernel-self-protection-project-video-94346854",
      "year": 2021,
      "title": "Kernel Self-Protection Project · video",
      "item_title": "Kernel Self-Protection Project",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=-Binxid8t_8",
      "primary_url": "https://www.youtube.com/watch?v=-Binxid8t_8",
      "parent_primary_url": "https://outflux.net/slides/2021/lss/kspp.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-kernel-self-protection-project-video-94346854.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Self-Protection Project · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Kernel Self-Protection Project resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=-Binxid8t_8 parent_primary_url: https://outflux.net/slides/2021/lss/kspp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"Kernel Self-Protection Project\" by Kees Cook](https://outflux.net/slides/2021/lss/kspp.pdf) [slides] [[video](https://www.youtube.com/watch?v=-Binxid8t_8)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false cod",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2021/lss/kspp.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=-Binxid8t_8"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2021/lss/kspp.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=-Binxid8t_8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "self_protection",
        "kernel_security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video discussing the Kernel Self-Protection Project and its impact on Linux kernel security.",
      "summary_zh": "讨论内核自我保护项目及其对Linux内核安全性影响的视频。",
      "source_markdown": "[2021: \"Kernel Self-Protection Project\" by Kees Cook](https://outflux.net/slides/2021/lss/kspp.pdf) [slides] [[video](https://www.youtube.com/watch?v=-Binxid8t_8)]",
      "search_text": "kernel self-protection project · video kernel self-protection project kees cook   defensive  defensive video video https://www.youtube.com/watch?v=-binxid8t_8 self_protection kernel_security  defensive a video discussing the kernel self-protection project and its impact on linux kernel security. 讨论内核自我保护项目及其对linux内核安全性影响的视频。 # kernel self-protection project · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: kernel self-protection project resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=-binxid8t_8 parent_primary_url: https://outflux.net/slides/2021/lss/kspp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"kernel self-protection project\" by kees cook](https://outflux.net/slides/2021/lss/kspp.pdf) [slides] [[video](https://www.youtube.com/watch?v=-binxid8t_8)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false cod no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "89f58cc3fcd06b97",
      "item_id": "e2971bddd48c4184",
      "slug": "2021-defensive-compiler-features-for-kernel-security-primary-8f8b4f66",
      "year": 2021,
      "title": "Compiler Features for Kernel Security",
      "item_title": "Compiler Features for Kernel Security",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf",
      "primary_url": "https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf",
      "parent_primary_url": "https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-compiler-features-for-kernel-security-primary-8f8b4f66.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Compiler Features for Kernel Security record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Compiler Features for Kernel Security resource_label: primary resource_type: slides resource_url: https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf parent_primary_url: https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"Compiler Features for Kernel Security\" by Kees Cook](https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf) [slides] [[video](https://www.youtube.com/watch?v=txIgZ31-RHI&t=13238s)] cves: none android_impact_status: no androi",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=txIgZ31-RHI&t=13238s"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=txIgZ31-RHI&t=13238s"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "compiler",
        "security",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This presentation discusses compiler features that enhance kernel security.",
      "summary_zh": "本演示讨论了增强内核安全性的编译器特性。",
      "source_markdown": "[2021: \"Compiler Features for Kernel Security\" by Kees Cook](https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf) [slides] [[video](https://www.youtube.com/watch?v=txIgZ31-RHI&t=13238s)]",
      "search_text": "compiler features for kernel security compiler features for kernel security kees cook   defensive  defensive primary slides https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf compiler security kernel  defensive this presentation discusses compiler features that enhance kernel security. 本演示讨论了增强内核安全性的编译器特性。 # compiler features for kernel security record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: compiler features for kernel security resource_label: primary resource_type: slides resource_url: https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf parent_primary_url: https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"compiler features for kernel security\" by kees cook](https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf) [slides] [[video](https://www.youtube.com/watch?v=txigz31-rhi&t=13238s)] cves: none android_impact_status: no androi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "aa3118df94b5bb75",
      "item_id": "e2971bddd48c4184",
      "slug": "2021-defensive-compiler-features-for-kernel-security-video-d89c70dc",
      "year": 2021,
      "title": "Compiler Features for Kernel Security · video",
      "item_title": "Compiler Features for Kernel Security",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=txIgZ31-RHI&t=13238s",
      "primary_url": "https://www.youtube.com/watch?v=txIgZ31-RHI&t=13238s",
      "parent_primary_url": "https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-compiler-features-for-kernel-security-video-d89c70dc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Compiler Features for Kernel Security · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Compiler Features for Kernel Security resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=txIgZ31-RHI&t=13238s parent_primary_url: https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"Compiler Features for Kernel Security\" by Kees Cook](https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf) [slides] [[video](https://www.youtube.com/watch?v=txIgZ31-RHI&t=13238s)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=txIgZ31-RHI&t=13238s"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=txIgZ31-RHI&t=13238s"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "compiler",
        "security",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video presentation on compiler features that improve kernel security.",
      "summary_zh": "关于改善内核安全性的编译器特性的演示视频。",
      "source_markdown": "[2021: \"Compiler Features for Kernel Security\" by Kees Cook](https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf) [slides] [[video](https://www.youtube.com/watch?v=txIgZ31-RHI&t=13238s)]",
      "search_text": "compiler features for kernel security · video compiler features for kernel security kees cook   defensive  defensive video video https://www.youtube.com/watch?v=txigz31-rhi&t=13238s compiler security kernel  defensive a video presentation on compiler features that improve kernel security. 关于改善内核安全性的编译器特性的演示视频。 # compiler features for kernel security · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: compiler features for kernel security resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=txigz31-rhi&t=13238s parent_primary_url: https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"compiler features for kernel security\" by kees cook](https://linuxplumbersconf.org/event/11/contributions/1026/attachments/884/1692/compiler-features-for-kernel-security.pdf) [slides] [[video](https://www.youtube.com/watch?v=txigz31-rhi&t=13238s)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a9f3fd5e4efd7117",
      "item_id": "6782d955f9589a32",
      "slug": "2021-defensive-a-proof-carrying-approach-to-building-correct-and-flexible-in-kernel-verifiers-primary-0af8eb44",
      "year": 2021,
      "title": "A proof-carrying approach to building correct and flexible in-kernel verifiers",
      "item_title": "A proof-carrying approach to building correct and flexible in-kernel verifiers",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf",
      "primary_url": "https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf",
      "parent_primary_url": "https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-a-proof-carrying-approach-to-building-correct-and-flexible-in-kernel-verifiers-primary-0af8eb44.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A proof-carrying approach to building correct and flexible in-kernel verifiers record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: A proof-carrying approach to building correct and flexible in-kernel verifiers resource_label: primary resource_type: slides resource_url: https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf parent_primary_url: https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"A proof-carrying approach to building correct and flexible in-kernel verifiers\"](https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf) [slides] [[video](https://www.youtube.com/watch?v=WjxHKvwX8RY&t=11588s)]",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=WjxHKvwX8RY&t=11588s"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=WjxHKvwX8RY&t=11588s"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "verification",
        "kernel",
        "security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This presentation introduces a proof-carrying approach for in-kernel verifiers.",
      "summary_zh": "本演示介绍了一种用于内核验证器的证明携带方法。",
      "source_markdown": "[2021: \"A proof-carrying approach to building correct and flexible in-kernel verifiers\"](https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf) [slides] [[video](https://www.youtube.com/watch?v=WjxHKvwX8RY&t=11588s)]",
      "search_text": "a proof-carrying approach to building correct and flexible in-kernel verifiers a proof-carrying approach to building correct and flexible in-kernel verifiers    defensive  defensive primary slides https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf verification kernel security  defensive this presentation introduces a proof-carrying approach for in-kernel verifiers. 本演示介绍了一种用于内核验证器的证明携带方法。 # a proof-carrying approach to building correct and flexible in-kernel verifiers record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: a proof-carrying approach to building correct and flexible in-kernel verifiers resource_label: primary resource_type: slides resource_url: https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf parent_primary_url: https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"a proof-carrying approach to building correct and flexible in-kernel verifiers\"](https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf) [slides] [[video](https://www.youtube.com/watch?v=wjxhkvwx8ry&t=11588s)] no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7295e9dda038f30c",
      "item_id": "6782d955f9589a32",
      "slug": "2021-defensive-a-proof-carrying-approach-to-building-correct-and-flexible-in-kernel-verifiers-video-71e1cf5c",
      "year": 2021,
      "title": "A proof-carrying approach to building correct and flexible in-kernel verifiers · video",
      "item_title": "A proof-carrying approach to building correct and flexible in-kernel verifiers",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=WjxHKvwX8RY&t=11588s",
      "primary_url": "https://www.youtube.com/watch?v=WjxHKvwX8RY&t=11588s",
      "parent_primary_url": "https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-a-proof-carrying-approach-to-building-correct-and-flexible-in-kernel-verifiers-video-71e1cf5c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A proof-carrying approach to building correct and flexible in-kernel verifiers · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: A proof-carrying approach to building correct and flexible in-kernel verifiers resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=WjxHKvwX8RY&t=11588s parent_primary_url: https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"A proof-carrying approach to building correct and flexible in-kernel verifiers\"](https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf) [slides] [[video](https://www.youtube.com/watch?v=WjxHKvwX8RY&t=11588s)] cves: none android_impact_status: no and",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=WjxHKvwX8RY&t=11588s"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=WjxHKvwX8RY&t=11588s"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "verification",
        "kernel",
        "security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video on a proof-carrying approach for building in-kernel verifiers.",
      "summary_zh": "关于构建内核验证器的证明携带方法的视频。",
      "source_markdown": "[2021: \"A proof-carrying approach to building correct and flexible in-kernel verifiers\"](https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf) [slides] [[video](https://www.youtube.com/watch?v=WjxHKvwX8RY&t=11588s)]",
      "search_text": "a proof-carrying approach to building correct and flexible in-kernel verifiers · video a proof-carrying approach to building correct and flexible in-kernel verifiers    defensive  defensive video video https://www.youtube.com/watch?v=wjxhkvwx8ry&t=11588s verification kernel security  defensive a video on a proof-carrying approach for building in-kernel verifiers. 关于构建内核验证器的证明携带方法的视频。 # a proof-carrying approach to building correct and flexible in-kernel verifiers · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: a proof-carrying approach to building correct and flexible in-kernel verifiers resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=wjxhkvwx8ry&t=11588s parent_primary_url: https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"a proof-carrying approach to building correct and flexible in-kernel verifiers\"](https://linuxplumbersconf.org/event/11/contributions/944/attachments/893/1707/2021-09-23-lpc21.pdf) [slides] [[video](https://www.youtube.com/watch?v=wjxhkvwx8ry&t=11588s)] cves: none android_impact_status: no and no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "46d168c686826ea6",
      "item_id": "0ab301b1d0b86d12",
      "slug": "2021-defensive-how-autoslab-changes-the-memory-unsafety-game-primary-3b8dd2fc",
      "year": 2021,
      "title": "How AUTOSLAB Changes the Memory Unsafety Game",
      "item_title": "How AUTOSLAB Changes the Memory Unsafety Game",
      "authors": [
        "Zhenpeng Lin"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://grsecurity.net/how_autoslab_changes_the_memory_unsafety_game",
      "primary_url": "https://grsecurity.net/how_autoslab_changes_the_memory_unsafety_game",
      "parent_primary_url": "https://grsecurity.net/how_autoslab_changes_the_memory_unsafety_game",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-how-autoslab-changes-the-memory-unsafety-game-primary-3b8dd2fc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# How AUTOSLAB Changes the Memory Unsafety Game record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: How AUTOSLAB Changes the Memory Unsafety Game resource_label: primary resource_type: article resource_url: https://grsecurity.net/how_autoslab_changes_the_memory_unsafety_game parent_primary_url: https://grsecurity.net/how_autoslab_changes_the_memory_unsafety_game source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"How AUTOSLAB Changes the Memory Unsafety Game\" by Zhenpeng Lin](https://grsecurity.net/how_autoslab_changes_the_memory_unsafety_game) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Li",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://grsecurity.net/how_autoslab_changes_the_memory_unsafety_game"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://grsecurity.net/how_autoslab_changes_the_memory_unsafety_game"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory",
        "safety",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "An article discussing how AUTOSLAB addresses memory unsafety in the kernel.",
      "summary_zh": "一篇讨论AUTOSLAB如何解决内核内存不安全问题的文章。",
      "source_markdown": "[2021: \"How AUTOSLAB Changes the Memory Unsafety Game\" by Zhenpeng Lin](https://grsecurity.net/how_autoslab_changes_the_memory_unsafety_game) [article]",
      "search_text": "how autoslab changes the memory unsafety game how autoslab changes the memory unsafety game zhenpeng lin   defensive  defensive primary article https://grsecurity.net/how_autoslab_changes_the_memory_unsafety_game memory safety kernel  defensive an article discussing how autoslab addresses memory unsafety in the kernel. 一篇讨论autoslab如何解决内核内存不安全问题的文章。 # how autoslab changes the memory unsafety game record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: how autoslab changes the memory unsafety game resource_label: primary resource_type: article resource_url: https://grsecurity.net/how_autoslab_changes_the_memory_unsafety_game parent_primary_url: https://grsecurity.net/how_autoslab_changes_the_memory_unsafety_game source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"how autoslab changes the memory unsafety game\" by zhenpeng lin](https://grsecurity.net/how_autoslab_changes_the_memory_unsafety_game) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than li no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "205d780fda55dd03",
      "item_id": "36174dbfdff4e410",
      "slug": "2021-defensive-security-things-in-linux-vx-x-primary-76cdf16c",
      "year": 2021,
      "title": "security things in Linux vX.X",
      "item_title": "security things in Linux vX.X",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://outflux.net/blog/archives/2021/02/08/security-things-in-linux-v5-8/",
      "primary_url": "https://outflux.net/blog/archives/2021/02/08/security-things-in-linux-v5-8/",
      "parent_primary_url": "https://outflux.net/blog/archives/2021/02/08/security-things-in-linux-v5-8/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-security-things-in-linux-vx-x-primary-76cdf16c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# security things in Linux vX.X record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: security things in Linux vX.X resource_label: primary resource_type: article resource_url: https://outflux.net/blog/archives/2021/02/08/security-things-in-linux-v5-8/ parent_primary_url: https://outflux.net/blog/archives/2021/02/08/security-things-in-linux-v5-8/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"security things in Linux vX.X\" by Kees Cook](https://outflux.net/blog/archives/2021/02/08/security-things-in-linux-v5-8/) [articles] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc:",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://outflux.net/blog/archives/2021/02/08/security-things-in-linux-v5-8/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://outflux.net/blog/archives/2021/02/08/security-things-in-linux-v5-8/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "An article detailing security features in various Linux kernel versions.",
      "summary_zh": "一篇详细介绍各种Linux内核版本安全特性的文章。",
      "source_markdown": "[2021: \"security things in Linux vX.X\" by Kees Cook](https://outflux.net/blog/archives/2021/02/08/security-things-in-linux-v5-8/) [articles]",
      "search_text": "security things in linux vx.x security things in linux vx.x kees cook   defensive  defensive primary article https://outflux.net/blog/archives/2021/02/08/security-things-in-linux-v5-8/ security kernel  defensive an article detailing security features in various linux kernel versions. 一篇详细介绍各种linux内核版本安全特性的文章。 # security things in linux vx.x record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: security things in linux vx.x resource_label: primary resource_type: article resource_url: https://outflux.net/blog/archives/2021/02/08/security-things-in-linux-v5-8/ parent_primary_url: https://outflux.net/blog/archives/2021/02/08/security-things-in-linux-v5-8/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"security things in linux vx.x\" by kees cook](https://outflux.net/blog/archives/2021/02/08/security-things-in-linux-v5-8/) [articles] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a5fbed8b6c9d211c",
      "item_id": "cd98fca6b47f8f8a",
      "slug": "2021-defensive-undo-workarounds-for-kernel-bugs-primary-e804df12",
      "year": 2021,
      "title": "Undo Workarounds for Kernel Bugs",
      "item_title": "Undo Workarounds for Kernel Bugs",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec21fall-talebi.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec21fall-talebi.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21fall-talebi.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2021-defensive-undo-workarounds-for-kernel-bugs-primary-e804df12.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Undo Workarounds for Kernel Bugs record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Undo Workarounds for Kernel Bugs resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec21fall-talebi.pdf parent_primary_url: https://www.usenix.org/system/files/sec21fall-talebi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"Undo Workarounds for Kernel Bugs\"](https://www.usenix.org/system/files/sec21fall-talebi.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [p",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21fall-talebi.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21fall-talebi.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bug",
        "workaround",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "This paper discusses strategies for undoing workarounds for kernel bugs.",
      "summary_zh": "本文讨论了撤销内核错误的变通方法的策略。",
      "source_markdown": "[2021: \"Undo Workarounds for Kernel Bugs\"](https://www.usenix.org/system/files/sec21fall-talebi.pdf) [paper]",
      "search_text": "undo workarounds for kernel bugs undo workarounds for kernel bugs    defensive  defensive primary paper https://www.usenix.org/system/files/sec21fall-talebi.pdf bug workaround kernel  defensive this paper discusses strategies for undoing workarounds for kernel bugs. 本文讨论了撤销内核错误的变通方法的策略。 # undo workarounds for kernel bugs record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: undo workarounds for kernel bugs resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec21fall-talebi.pdf parent_primary_url: https://www.usenix.org/system/files/sec21fall-talebi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2021: \"undo workarounds for kernel bugs\"](https://www.usenix.org/system/files/sec21fall-talebi.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [p no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "cced08f784c58680",
      "item_id": "75958de491eb5dad",
      "slug": "2020-defensive-mitigating-some-use-after-frees-in-the-linux-kernel-primary-eadbc904",
      "year": 2020,
      "title": "Mitigating (Some) Use-after-frees in the Linux Kernel",
      "item_title": "Mitigating (Some) Use-after-frees in the Linux Kernel",
      "authors": [
        "Jann Horn"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://static.sched.com/hosted_files/lssna2020/0b/LSSNA_2020_Jann_Horn_UAF_Mitigation.pdf",
      "primary_url": "https://static.sched.com/hosted_files/lssna2020/0b/LSSNA_2020_Jann_Horn_UAF_Mitigation.pdf",
      "parent_primary_url": "https://static.sched.com/hosted_files/lssna2020/0b/LSSNA_2020_Jann_Horn_UAF_Mitigation.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2020-defensive-mitigating-some-use-after-frees-in-the-linux-kernel-primary-eadbc904.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mitigating (Some) Use-after-frees in the Linux Kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Mitigating (Some) Use-after-frees in the Linux Kernel resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/lssna2020/0b/LSSNA_2020_Jann_Horn_UAF_Mitigation.pdf parent_primary_url: https://static.sched.com/hosted_files/lssna2020/0b/LSSNA_2020_Jann_Horn_UAF_Mitigation.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"Mitigating (Some) Use-after-frees in the Linux Kernel\" by Jann Horn](https://static.sched.com/hosted_files/lssna2020/0b/LSSNA_2020_Jann_Horn_UAF_Mitigation.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_statu",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/lssna2020/0b/LSSNA_2020_Jann_Horn_UAF_Mitigation.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/lssna2020/0b/LSSNA_2020_Jann_Horn_UAF_Mitigation.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "use-after-free",
        "vulnerability",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides on mitigating use-after-free vulnerabilities in the Linux kernel.",
      "summary_zh": "关于缓解Linux内核中使用后释放漏洞的幻灯片。",
      "source_markdown": "[2020: \"Mitigating (Some) Use-after-frees in the Linux Kernel\" by Jann Horn](https://static.sched.com/hosted_files/lssna2020/0b/LSSNA_2020_Jann_Horn_UAF_Mitigation.pdf) [slides]",
      "search_text": "mitigating (some) use-after-frees in the linux kernel mitigating (some) use-after-frees in the linux kernel jann horn   defensive  defensive primary slides https://static.sched.com/hosted_files/lssna2020/0b/lssna_2020_jann_horn_uaf_mitigation.pdf use-after-free vulnerability kernel  defensive slides on mitigating use-after-free vulnerabilities in the linux kernel. 关于缓解linux内核中使用后释放漏洞的幻灯片。 # mitigating (some) use-after-frees in the linux kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: mitigating (some) use-after-frees in the linux kernel resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/lssna2020/0b/lssna_2020_jann_horn_uaf_mitigation.pdf parent_primary_url: https://static.sched.com/hosted_files/lssna2020/0b/lssna_2020_jann_horn_uaf_mitigation.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"mitigating (some) use-after-frees in the linux kernel\" by jann horn](https://static.sched.com/hosted_files/lssna2020/0b/lssna_2020_jann_horn_uaf_mitigation.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_statu no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "866519009fbd635d",
      "item_id": "9aab76890b9a8ffd",
      "slug": "2020-defensive-kernel-integrity-enforcement-with-hlat-in-a-virtual-machine-primary-9c83413d",
      "year": 2020,
      "title": "Kernel Integrity Enforcement with HLAT In a Virtual Machine",
      "item_title": "Kernel Integrity Enforcement with HLAT In a Virtual Machine",
      "authors": [
        "Chao Gao"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://static.sched.com/hosted_files/osseu2020/ce/LSSEU20_kernel%20integrity%20enforcement%20with%20HLAT%20in%20a%20virtual%20machine_v3.pdf",
      "primary_url": "https://static.sched.com/hosted_files/osseu2020/ce/LSSEU20_kernel%20integrity%20enforcement%20with%20HLAT%20in%20a%20virtual%20machine_v3.pdf",
      "parent_primary_url": "https://static.sched.com/hosted_files/osseu2020/ce/LSSEU20_kernel%20integrity%20enforcement%20with%20HLAT%20in%20a%20virtual%20machine_v3.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2020-defensive-kernel-integrity-enforcement-with-hlat-in-a-virtual-machine-primary-9c83413d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Integrity Enforcement with HLAT In a Virtual Machine record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Kernel Integrity Enforcement with HLAT In a Virtual Machine resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/osseu2020/ce/LSSEU20_kernel%20integrity%20enforcement%20with%20HLAT%20in%20a%20virtual%20machine_v3.pdf parent_primary_url: https://static.sched.com/hosted_files/osseu2020/ce/LSSEU20_kernel%20integrity%20enforcement%20with%20HLAT%20in%20a%20virtual%20machine_v3.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"Kernel Integrity Enforcement with HLAT In a Virtual Machine\" by Chao Gao](https://static.sched.com/hosted_files/osseu2020/ce/LSSEU20_kernel%20integrity%20enforcement%20with%20HLAT%20in%20a%20virtual%20mach",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/osseu2020/ce/LSSEU20_kernel%20integrity%20enforcement%20with%20HLAT%20in%20a%20virtual%20machine_v3.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=N8avvE_neV0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/osseu2020/ce/LSSEU20_kernel%20integrity%20enforcement%20with%20HLAT%20in%20a%20virtual%20machine_v3.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=N8avvE_neV0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "integrity",
        "virtualization",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides discussing kernel integrity enforcement using HLAT in virtual machines.",
      "summary_zh": "讨论在虚拟机中使用HLAT进行内核完整性强制的幻灯片。",
      "source_markdown": "[2020: \"Kernel Integrity Enforcement with HLAT In a Virtual Machine\" by Chao Gao](https://static.sched.com/hosted_files/osseu2020/ce/LSSEU20_kernel%20integrity%20enforcement%20with%20HLAT%20in%20a%20virtual%20machine_v3.pdf) [slides] [[video](https://www.youtube.com/watch?v=N8avvE_neV0)]",
      "search_text": "kernel integrity enforcement with hlat in a virtual machine kernel integrity enforcement with hlat in a virtual machine chao gao   defensive  defensive primary slides https://static.sched.com/hosted_files/osseu2020/ce/lsseu20_kernel%20integrity%20enforcement%20with%20hlat%20in%20a%20virtual%20machine_v3.pdf integrity virtualization kernel  defensive slides discussing kernel integrity enforcement using hlat in virtual machines. 讨论在虚拟机中使用hlat进行内核完整性强制的幻灯片。 # kernel integrity enforcement with hlat in a virtual machine record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: kernel integrity enforcement with hlat in a virtual machine resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/osseu2020/ce/lsseu20_kernel%20integrity%20enforcement%20with%20hlat%20in%20a%20virtual%20machine_v3.pdf parent_primary_url: https://static.sched.com/hosted_files/osseu2020/ce/lsseu20_kernel%20integrity%20enforcement%20with%20hlat%20in%20a%20virtual%20machine_v3.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"kernel integrity enforcement with hlat in a virtual machine\" by chao gao](https://static.sched.com/hosted_files/osseu2020/ce/lsseu20_kernel%20integrity%20enforcement%20with%20hlat%20in%20a%20virtual%20mach no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c7db546c7ae4aa75",
      "item_id": "9aab76890b9a8ffd",
      "slug": "2020-defensive-kernel-integrity-enforcement-with-hlat-in-a-virtual-machine-video-7b5e464c",
      "year": 2020,
      "title": "Kernel Integrity Enforcement with HLAT In a Virtual Machine · video",
      "item_title": "Kernel Integrity Enforcement with HLAT In a Virtual Machine",
      "authors": [
        "Chao Gao"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=N8avvE_neV0",
      "primary_url": "https://www.youtube.com/watch?v=N8avvE_neV0",
      "parent_primary_url": "https://static.sched.com/hosted_files/osseu2020/ce/LSSEU20_kernel%20integrity%20enforcement%20with%20HLAT%20in%20a%20virtual%20machine_v3.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2020-defensive-kernel-integrity-enforcement-with-hlat-in-a-virtual-machine-video-7b5e464c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Integrity Enforcement with HLAT In a Virtual Machine · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Kernel Integrity Enforcement with HLAT In a Virtual Machine resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=N8avvE_neV0 parent_primary_url: https://static.sched.com/hosted_files/osseu2020/ce/LSSEU20_kernel%20integrity%20enforcement%20with%20HLAT%20in%20a%20virtual%20machine_v3.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"Kernel Integrity Enforcement with HLAT In a Virtual Machine\" by Chao Gao](https://static.sched.com/hosted_files/osseu2020/ce/LSSEU20_kernel%20integrity%20enforcement%20with%20HLAT%20in%20a%20virtual%20machine_v3.pdf) [slides] [[video](https://www.youtube.com/watch?v=N8avvE_neV0)] cves: none androi",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/osseu2020/ce/LSSEU20_kernel%20integrity%20enforcement%20with%20HLAT%20in%20a%20virtual%20machine_v3.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=N8avvE_neV0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/osseu2020/ce/LSSEU20_kernel%20integrity%20enforcement%20with%20HLAT%20in%20a%20virtual%20machine_v3.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=N8avvE_neV0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "integrity",
        "virtualization",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video presentation on kernel integrity enforcement with HLAT in VMs.",
      "summary_zh": "关于在虚拟机中使用HLAT进行内核完整性强制的视频演示。",
      "source_markdown": "[2020: \"Kernel Integrity Enforcement with HLAT In a Virtual Machine\" by Chao Gao](https://static.sched.com/hosted_files/osseu2020/ce/LSSEU20_kernel%20integrity%20enforcement%20with%20HLAT%20in%20a%20virtual%20machine_v3.pdf) [slides] [[video](https://www.youtube.com/watch?v=N8avvE_neV0)]",
      "search_text": "kernel integrity enforcement with hlat in a virtual machine · video kernel integrity enforcement with hlat in a virtual machine chao gao   defensive  defensive video video https://www.youtube.com/watch?v=n8avve_nev0 integrity virtualization kernel  defensive a video presentation on kernel integrity enforcement with hlat in vms. 关于在虚拟机中使用hlat进行内核完整性强制的视频演示。 # kernel integrity enforcement with hlat in a virtual machine · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: kernel integrity enforcement with hlat in a virtual machine resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=n8avve_nev0 parent_primary_url: https://static.sched.com/hosted_files/osseu2020/ce/lsseu20_kernel%20integrity%20enforcement%20with%20hlat%20in%20a%20virtual%20machine_v3.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"kernel integrity enforcement with hlat in a virtual machine\" by chao gao](https://static.sched.com/hosted_files/osseu2020/ce/lsseu20_kernel%20integrity%20enforcement%20with%20hlat%20in%20a%20virtual%20machine_v3.pdf) [slides] [[video](https://www.youtube.com/watch?v=n8avve_nev0)] cves: none androi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7207af2bd0ffa5df",
      "item_id": "7ac7e25ca6327156",
      "slug": "2020-defensive-linux-kernel-heap-quarantine-versus-use-after-free-exploits-primary-f47ed9d1",
      "year": 2020,
      "title": "Linux kernel heap quarantine versus use-after-free exploits",
      "item_title": "Linux kernel heap quarantine versus use-after-free exploits",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://a13xp0p0v.github.io/2020/11/30/slab-quarantine.html",
      "primary_url": "https://a13xp0p0v.github.io/2020/11/30/slab-quarantine.html",
      "parent_primary_url": "https://a13xp0p0v.github.io/2020/11/30/slab-quarantine.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2020-defensive-linux-kernel-heap-quarantine-versus-use-after-free-exploits-primary-f47ed9d1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux kernel heap quarantine versus use-after-free exploits record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Linux kernel heap quarantine versus use-after-free exploits resource_label: primary resource_type: article resource_url: https://a13xp0p0v.github.io/2020/11/30/slab-quarantine.html parent_primary_url: https://a13xp0p0v.github.io/2020/11/30/slab-quarantine.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"Linux kernel heap quarantine versus use-after-free exploits\" by Alexander Popov](https://a13xp0p0v.github.io/2020/11/30/slab-quarantine.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ker",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://a13xp0p0v.github.io/2020/11/30/slab-quarantine.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://a13xp0p0v.github.io/2020/11/30/slab-quarantine.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://a13xp0p0v.github.io/2020/11/30/slab-quarantine.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "heap",
        "quarantine",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "An article comparing kernel heap quarantine techniques against use-after-free exploits.",
      "summary_zh": "一篇比较内核堆隔离技术与使用后释放利用的文章。",
      "source_markdown": "[2020: \"Linux kernel heap quarantine versus use-after-free exploits\" by Alexander Popov](https://a13xp0p0v.github.io/2020/11/30/slab-quarantine.html) [article]",
      "search_text": "linux kernel heap quarantine versus use-after-free exploits linux kernel heap quarantine versus use-after-free exploits alexander popov   defensive  defensive primary article https://a13xp0p0v.github.io/2020/11/30/slab-quarantine.html heap quarantine kernel  defensive an article comparing kernel heap quarantine techniques against use-after-free exploits. 一篇比较内核堆隔离技术与使用后释放利用的文章。 # linux kernel heap quarantine versus use-after-free exploits record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: linux kernel heap quarantine versus use-after-free exploits resource_label: primary resource_type: article resource_url: https://a13xp0p0v.github.io/2020/11/30/slab-quarantine.html parent_primary_url: https://a13xp0p0v.github.io/2020/11/30/slab-quarantine.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"linux kernel heap quarantine versus use-after-free exploits\" by alexander popov](https://a13xp0p0v.github.io/2020/11/30/slab-quarantine.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu ker no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3783c1fa739bdac5",
      "item_id": "195fd0bdb6a8a485",
      "slug": "2020-defensive-state-of-linux-kernel-security-primary-4a87e8c0",
      "year": 2020,
      "title": "State of Linux kernel security",
      "item_title": "State of Linux kernel security",
      "authors": [
        "Dmitry Vyukov"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/The_state_of_the_Linux_kernel_security.pdf",
      "primary_url": "https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/The_state_of_the_Linux_kernel_security.pdf",
      "parent_primary_url": "https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/The_state_of_the_Linux_kernel_security.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2020-defensive-state-of-linux-kernel-security-primary-4a87e8c0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# State of Linux kernel security record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: State of Linux kernel security resource_label: primary resource_type: slides resource_url: https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/The_state_of_the_Linux_kernel_security.pdf parent_primary_url: https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/The_state_of_the_Linux_kernel_security.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"State of Linux kernel security\" by Dmitry Vyukov](https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/The_state_of_the_Linux_kernel_security.pdf) [slides] [[video](https://www.youtube.com/watch?v=PGwFyzh2KTA&t=1233)] cves: none android_impact_status: no android_impact_reason: No",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/The_state_of_the_Linux_kernel_security.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=PGwFyzh2KTA&t=1233"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/The_state_of_the_Linux_kernel_security.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=PGwFyzh2KTA&t=1233"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/The_state_of_the_Linux_kernel_security.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides presenting the current state of Linux kernel security.",
      "summary_zh": "介绍Linux内核安全现状的幻灯片。",
      "source_markdown": "[2020: \"State of Linux kernel security\" by Dmitry Vyukov](https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/The_state_of_the_Linux_kernel_security.pdf) [slides] [[video](https://www.youtube.com/watch?v=PGwFyzh2KTA&t=1233)]",
      "search_text": "state of linux kernel security state of linux kernel security dmitry vyukov   defensive  defensive primary slides https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/the_state_of_the_linux_kernel_security.pdf security kernel  defensive slides presenting the current state of linux kernel security. 介绍linux内核安全现状的幻灯片。 # state of linux kernel security record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: state of linux kernel security resource_label: primary resource_type: slides resource_url: https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/the_state_of_the_linux_kernel_security.pdf parent_primary_url: https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/the_state_of_the_linux_kernel_security.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"state of linux kernel security\" by dmitry vyukov](https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/the_state_of_the_linux_kernel_security.pdf) [slides] [[video](https://www.youtube.com/watch?v=pgwfyzh2kta&t=1233)] cves: none android_impact_status: no android_impact_reason: no no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "162dbac18a67a3c9",
      "item_id": "195fd0bdb6a8a485",
      "slug": "2020-defensive-state-of-linux-kernel-security-video-cc4ea79e",
      "year": 2020,
      "title": "State of Linux kernel security · video",
      "item_title": "State of Linux kernel security",
      "authors": [
        "Dmitry Vyukov"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=PGwFyzh2KTA&t=1233",
      "primary_url": "https://www.youtube.com/watch?v=PGwFyzh2KTA&t=1233",
      "parent_primary_url": "https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/The_state_of_the_Linux_kernel_security.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2020-defensive-state-of-linux-kernel-security-video-cc4ea79e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# State of Linux kernel security · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: State of Linux kernel security resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=PGwFyzh2KTA&t=1233 parent_primary_url: https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/The_state_of_the_Linux_kernel_security.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"State of Linux kernel security\" by Dmitry Vyukov](https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/The_state_of_the_Linux_kernel_security.pdf) [slides] [[video](https://www.youtube.com/watch?v=PGwFyzh2KTA&t=1233)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android dev",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/The_state_of_the_Linux_kernel_security.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=PGwFyzh2KTA&t=1233"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/The_state_of_the_Linux_kernel_security.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=PGwFyzh2KTA&t=1233"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/The_state_of_the_Linux_kernel_security.pdf"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video on the current state of Linux kernel security.",
      "summary_zh": "关于Linux内核安全现状的视频。",
      "source_markdown": "[2020: \"State of Linux kernel security\" by Dmitry Vyukov](https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/The_state_of_the_Linux_kernel_security.pdf) [slides] [[video](https://www.youtube.com/watch?v=PGwFyzh2KTA&t=1233)]",
      "search_text": "state of linux kernel security · video state of linux kernel security dmitry vyukov   defensive  defensive video video https://www.youtube.com/watch?v=pgwfyzh2kta&t=1233 security kernel  defensive a video on the current state of linux kernel security. 关于linux内核安全现状的视频。 # state of linux kernel security · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: state of linux kernel security resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=pgwfyzh2kta&t=1233 parent_primary_url: https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/the_state_of_the_linux_kernel_security.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"state of linux kernel security\" by dmitry vyukov](https://github.com/ossf/wg-securing-critical-projects/blob/main/presentations/the_state_of_the_linux_kernel_security.pdf) [slides] [[video](https://www.youtube.com/watch?v=pgwfyzh2kta&t=1233)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android dev no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "704cbd840c0c6f03",
      "item_id": "7455da38a2b5dfa7",
      "slug": "2020-defensive-lkrg-in-a-nutshell-primary-3b93e2c8",
      "year": 2020,
      "title": "LKRG IN A NUTSHELL",
      "item_title": "LKRG IN A NUTSHELL",
      "authors": [
        "Adam Zabrocki at OSTconf"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.openwall.com/presentations/OSTconf2020-LKRG-In-A-Nutshell/OSTconf2020-LKRG-In-A-Nutshell.pdf",
      "primary_url": "https://www.openwall.com/presentations/OSTconf2020-LKRG-In-A-Nutshell/OSTconf2020-LKRG-In-A-Nutshell.pdf",
      "parent_primary_url": "https://www.openwall.com/presentations/OSTconf2020-LKRG-In-A-Nutshell/OSTconf2020-LKRG-In-A-Nutshell.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2020-defensive-lkrg-in-a-nutshell-primary-3b93e2c8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# LKRG IN A NUTSHELL record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: LKRG IN A NUTSHELL resource_label: primary resource_type: slides resource_url: https://www.openwall.com/presentations/OSTconf2020-LKRG-In-A-Nutshell/OSTconf2020-LKRG-In-A-Nutshell.pdf parent_primary_url: https://www.openwall.com/presentations/OSTconf2020-LKRG-In-A-Nutshell/OSTconf2020-LKRG-In-A-Nutshell.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"LKRG IN A NUTSHELL\" by Adam Zabrocki at OSTconf](https://www.openwall.com/presentations/OSTconf2020-LKRG-In-A-Nutshell/OSTconf2020-LKRG-In-A-Nutshell.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices ",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.openwall.com/presentations/OSTconf2020-LKRG-In-A-Nutshell/OSTconf2020-LKRG-In-A-Nutshell.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.openwall.com/presentations/OSTconf2020-LKRG-In-A-Nutshell/OSTconf2020-LKRG-In-A-Nutshell.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "runtime",
        "guarding",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides summarizing the LKRG project for Linux kernel runtime guarding.",
      "summary_zh": "总结Linux内核运行时保护的LKRG项目的幻灯片。",
      "source_markdown": "[2020: \"LKRG IN A NUTSHELL\" by Adam Zabrocki at OSTconf](https://www.openwall.com/presentations/OSTconf2020-LKRG-In-A-Nutshell/OSTconf2020-LKRG-In-A-Nutshell.pdf) [slides]",
      "search_text": "lkrg in a nutshell lkrg in a nutshell adam zabrocki at ostconf   defensive  defensive primary slides https://www.openwall.com/presentations/ostconf2020-lkrg-in-a-nutshell/ostconf2020-lkrg-in-a-nutshell.pdf runtime guarding kernel  defensive slides summarizing the lkrg project for linux kernel runtime guarding. 总结linux内核运行时保护的lkrg项目的幻灯片。 # lkrg in a nutshell record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: lkrg in a nutshell resource_label: primary resource_type: slides resource_url: https://www.openwall.com/presentations/ostconf2020-lkrg-in-a-nutshell/ostconf2020-lkrg-in-a-nutshell.pdf parent_primary_url: https://www.openwall.com/presentations/ostconf2020-lkrg-in-a-nutshell/ostconf2020-lkrg-in-a-nutshell.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"lkrg in a nutshell\" by adam zabrocki at ostconf](https://www.openwall.com/presentations/ostconf2020-lkrg-in-a-nutshell/ostconf2020-lkrg-in-a-nutshell.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "060aab27c7549a5b",
      "item_id": "fd7b98d026c0e935",
      "slug": "2020-defensive-following-the-linux-kernel-defence-map-primary-29834825",
      "year": 2020,
      "title": "Following the Linux Kernel Defence Map",
      "item_title": "Following the Linux Kernel Defence Map",
      "authors": [
        "Alexander Popov at Linux Plumbers"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/Following_the_Linux_Kernel_Defence_Map.pdf",
      "primary_url": "https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/Following_the_Linux_Kernel_Defence_Map.pdf",
      "parent_primary_url": "https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/Following_the_Linux_Kernel_Defence_Map.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2020-defensive-following-the-linux-kernel-defence-map-primary-29834825.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Following the Linux Kernel Defence Map record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Following the Linux Kernel Defence Map resource_label: primary resource_type: slides resource_url: https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/Following_the_Linux_Kernel_Defence_Map.pdf parent_primary_url: https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/Following_the_Linux_Kernel_Defence_Map.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"Following the Linux Kernel Defence Map\" by Alexander Popov at Linux Plumbers](https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/Following_the_Linux_Kernel_Defence_Map.pdf) [slides] [[video](https://www.youtube.com/watch?v=4c01jjbQmBc&t=8555)] cves: none android_im",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/Following_the_Linux_Kernel_Defence_Map.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=4c01jjbQmBc&t=8555"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/Following_the_Linux_Kernel_Defence_Map.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=4c01jjbQmBc&t=8555"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "defense",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides on the Linux Kernel Defence Map and its implications.",
      "summary_zh": "关于Linux内核防御地图及其影响的幻灯片。",
      "source_markdown": "[2020: \"Following the Linux Kernel Defence Map\" by Alexander Popov at Linux Plumbers](https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/Following_the_Linux_Kernel_Defence_Map.pdf) [slides] [[video](https://www.youtube.com/watch?v=4c01jjbQmBc&t=8555)]",
      "search_text": "following the linux kernel defence map following the linux kernel defence map alexander popov at linux plumbers   defensive  defensive primary slides https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/following_the_linux_kernel_defence_map.pdf defense kernel  defensive slides on the linux kernel defence map and its implications. 关于linux内核防御地图及其影响的幻灯片。 # following the linux kernel defence map record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: following the linux kernel defence map resource_label: primary resource_type: slides resource_url: https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/following_the_linux_kernel_defence_map.pdf parent_primary_url: https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/following_the_linux_kernel_defence_map.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"following the linux kernel defence map\" by alexander popov at linux plumbers](https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/following_the_linux_kernel_defence_map.pdf) [slides] [[video](https://www.youtube.com/watch?v=4c01jjbqmbc&t=8555)] cves: none android_im no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "91333e6436f13acc",
      "item_id": "fd7b98d026c0e935",
      "slug": "2020-defensive-following-the-linux-kernel-defence-map-video-5022b5d3",
      "year": 2020,
      "title": "Following the Linux Kernel Defence Map · video",
      "item_title": "Following the Linux Kernel Defence Map",
      "authors": [
        "Alexander Popov at Linux Plumbers"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=4c01jjbQmBc&t=8555",
      "primary_url": "https://www.youtube.com/watch?v=4c01jjbQmBc&t=8555",
      "parent_primary_url": "https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/Following_the_Linux_Kernel_Defence_Map.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2020-defensive-following-the-linux-kernel-defence-map-video-5022b5d3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Following the Linux Kernel Defence Map · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Following the Linux Kernel Defence Map resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=4c01jjbQmBc&t=8555 parent_primary_url: https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/Following_the_Linux_Kernel_Defence_Map.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"Following the Linux Kernel Defence Map\" by Alexander Popov at Linux Plumbers](https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/Following_the_Linux_Kernel_Defence_Map.pdf) [slides] [[video](https://www.youtube.com/watch?v=4c01jjbQmBc&t=8555)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/Following_the_Linux_Kernel_Defence_Map.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=4c01jjbQmBc&t=8555"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/Following_the_Linux_Kernel_Defence_Map.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=4c01jjbQmBc&t=8555"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "defense",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video presentation on the Linux Kernel Defence Map.",
      "summary_zh": "关于Linux内核防御地图的视频演示。",
      "source_markdown": "[2020: \"Following the Linux Kernel Defence Map\" by Alexander Popov at Linux Plumbers](https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/Following_the_Linux_Kernel_Defence_Map.pdf) [slides] [[video](https://www.youtube.com/watch?v=4c01jjbQmBc&t=8555)]",
      "search_text": "following the linux kernel defence map · video following the linux kernel defence map alexander popov at linux plumbers   defensive  defensive video video https://www.youtube.com/watch?v=4c01jjbqmbc&t=8555 defense kernel  defensive a video presentation on the linux kernel defence map. 关于linux内核防御地图的视频演示。 # following the linux kernel defence map · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: following the linux kernel defence map resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=4c01jjbqmbc&t=8555 parent_primary_url: https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/following_the_linux_kernel_defence_map.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"following the linux kernel defence map\" by alexander popov at linux plumbers](https://linuxplumbersconf.org/event/7/contributions/775/attachments/610/1096/following_the_linux_kernel_defence_map.pdf) [slides] [[video](https://www.youtube.com/watch?v=4c01jjbqmbc&t=8555)] cves: none android_impact_status: no android_impact_reason: not enough evidence that  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "af627ce10bef214a",
      "item_id": "d2d0bd80e3908e4e",
      "slug": "2020-defensive-memory-tagging-for-the-kernel-tag-based-kasan-primary-088f952c",
      "year": 2020,
      "title": "Memory Tagging for the Kernel: Tag-Based KASAN",
      "item_title": "Memory Tagging for the Kernel: Tag-Based KASAN",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://docs.google.com/presentation/d/10V_msbtEap9dNerKvTrRAzvfzYdrQFC8e2NYHCZYJDE/edit?usp=sharing",
      "primary_url": "https://docs.google.com/presentation/d/10V_msbtEap9dNerKvTrRAzvfzYdrQFC8e2NYHCZYJDE/edit?usp=sharing",
      "parent_primary_url": "https://docs.google.com/presentation/d/10V_msbtEap9dNerKvTrRAzvfzYdrQFC8e2NYHCZYJDE/edit?usp=sharing",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2020-defensive-memory-tagging-for-the-kernel-tag-based-kasan-primary-088f952c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Memory Tagging for the Kernel: Tag-Based KASAN record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Memory Tagging for the Kernel: Tag-Based KASAN resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/10V_msbtEap9dNerKvTrRAzvfzYdrQFC8e2NYHCZYJDE/edit?usp=sharing parent_primary_url: https://docs.google.com/presentation/d/10V_msbtEap9dNerKvTrRAzvfzYdrQFC8e2NYHCZYJDE/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"Memory Tagging for the Kernel: Tag-Based KASAN\" by Andrey Konovalov](https://docs.google.com/presentation/d/10V_msbtEap9dNerKvTrRAzvfzYdrQFC8e2NYHCZYJDE/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=f-Rm7JFsJGI)] cves: none android_impact_status: no android_impact_reason: Not enough evidenc",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/10V_msbtEap9dNerKvTrRAzvfzYdrQFC8e2NYHCZYJDE/edit?usp=sharing"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=f-Rm7JFsJGI"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/10V_msbtEap9dNerKvTrRAzvfzYdrQFC8e2NYHCZYJDE/edit?usp=sharing"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=f-Rm7JFsJGI"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory",
        "tagging",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides discussing memory tagging for the kernel using Tag-Based KASAN.",
      "summary_zh": "讨论使用基于标签的KASAN进行内核内存标记的幻灯片。",
      "source_markdown": "[2020: \"Memory Tagging for the Kernel: Tag-Based KASAN\" by Andrey Konovalov](https://docs.google.com/presentation/d/10V_msbtEap9dNerKvTrRAzvfzYdrQFC8e2NYHCZYJDE/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=f-Rm7JFsJGI)]",
      "search_text": "memory tagging for the kernel: tag-based kasan memory tagging for the kernel: tag-based kasan andrey konovalov   defensive  defensive primary slides https://docs.google.com/presentation/d/10v_msbteap9dnerkvtrrazvfzydrqfc8e2nyhczyjde/edit?usp=sharing memory tagging kernel  defensive slides discussing memory tagging for the kernel using tag-based kasan. 讨论使用基于标签的kasan进行内核内存标记的幻灯片。 # memory tagging for the kernel: tag-based kasan record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: memory tagging for the kernel: tag-based kasan resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/10v_msbteap9dnerkvtrrazvfzydrqfc8e2nyhczyjde/edit?usp=sharing parent_primary_url: https://docs.google.com/presentation/d/10v_msbteap9dnerkvtrrazvfzydrqfc8e2nyhczyjde/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"memory tagging for the kernel: tag-based kasan\" by andrey konovalov](https://docs.google.com/presentation/d/10v_msbteap9dnerkvtrrazvfzydrqfc8e2nyhczyjde/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=f-rm7jfsjgi)] cves: none android_impact_status: no android_impact_reason: not enough evidenc no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ca57bee64cf7a003",
      "item_id": "d2d0bd80e3908e4e",
      "slug": "2020-defensive-memory-tagging-for-the-kernel-tag-based-kasan-video-3526f17d",
      "year": 2020,
      "title": "Memory Tagging for the Kernel: Tag-Based KASAN · video",
      "item_title": "Memory Tagging for the Kernel: Tag-Based KASAN",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=f-Rm7JFsJGI",
      "primary_url": "https://www.youtube.com/watch?v=f-Rm7JFsJGI",
      "parent_primary_url": "https://docs.google.com/presentation/d/10V_msbtEap9dNerKvTrRAzvfzYdrQFC8e2NYHCZYJDE/edit?usp=sharing",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2020-defensive-memory-tagging-for-the-kernel-tag-based-kasan-video-3526f17d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Memory Tagging for the Kernel: Tag-Based KASAN · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Memory Tagging for the Kernel: Tag-Based KASAN resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=f-Rm7JFsJGI parent_primary_url: https://docs.google.com/presentation/d/10V_msbtEap9dNerKvTrRAzvfzYdrQFC8e2NYHCZYJDE/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"Memory Tagging for the Kernel: Tag-Based KASAN\" by Andrey Konovalov](https://docs.google.com/presentation/d/10V_msbtEap9dNerKvTrRAzvfzYdrQFC8e2NYHCZYJDE/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=f-Rm7JFsJGI)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android device",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/10V_msbtEap9dNerKvTrRAzvfzYdrQFC8e2NYHCZYJDE/edit?usp=sharing"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=f-Rm7JFsJGI"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/10V_msbtEap9dNerKvTrRAzvfzYdrQFC8e2NYHCZYJDE/edit?usp=sharing"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=f-Rm7JFsJGI"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory",
        "tagging",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video on memory tagging for the kernel with Tag-Based KASAN.",
      "summary_zh": "关于使用基于标签的KASAN进行内核内存标记的视频。",
      "source_markdown": "[2020: \"Memory Tagging for the Kernel: Tag-Based KASAN\" by Andrey Konovalov](https://docs.google.com/presentation/d/10V_msbtEap9dNerKvTrRAzvfzYdrQFC8e2NYHCZYJDE/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=f-Rm7JFsJGI)]",
      "search_text": "memory tagging for the kernel: tag-based kasan · video memory tagging for the kernel: tag-based kasan andrey konovalov   defensive  defensive video video https://www.youtube.com/watch?v=f-rm7jfsjgi memory tagging kernel  defensive a video on memory tagging for the kernel with tag-based kasan. 关于使用基于标签的kasan进行内核内存标记的视频。 # memory tagging for the kernel: tag-based kasan · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: memory tagging for the kernel: tag-based kasan resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=f-rm7jfsjgi parent_primary_url: https://docs.google.com/presentation/d/10v_msbteap9dnerkvtrrazvfzydrqfc8e2nyhczyjde/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"memory tagging for the kernel: tag-based kasan\" by andrey konovalov](https://docs.google.com/presentation/d/10v_msbteap9dnerkvtrrazvfzydrqfc8e2nyhczyjde/edit?usp=sharing) [slides] [[video](https://www.youtube.com/watch?v=f-rm7jfsjgi)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android device no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bd64e2605de06375",
      "item_id": "2a119a9efc079861",
      "slug": "2020-defensive-10-years-of-linux-security-a-report-card-primary-56d4bfbc",
      "year": 2020,
      "title": "10 Years of Linux Security - A Report Card",
      "item_title": "10 Years of Linux Security - A Report Card",
      "authors": [
        "Bradley Spengler"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://grsecurity.net/10_years_of_linux_security.pdf",
      "primary_url": "https://grsecurity.net/10_years_of_linux_security.pdf",
      "parent_primary_url": "https://grsecurity.net/10_years_of_linux_security.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2020-defensive-10-years-of-linux-security-a-report-card-primary-56d4bfbc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 10 Years of Linux Security - A Report Card record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: 10 Years of Linux Security - A Report Card resource_label: primary resource_type: slides resource_url: https://grsecurity.net/10_years_of_linux_security.pdf parent_primary_url: https://grsecurity.net/10_years_of_linux_security.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"10 Years of Linux Security - A Report Card\" by Bradley Spengler](https://grsecurity.net/10_years_of_linux_security.pdf) [slides] [[video](https://www.youtube.com/watch?v=F_Kza6fdkSU)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://grsecurity.net/10_years_of_linux_security.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=F_Kza6fdkSU"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://grsecurity.net/10_years_of_linux_security.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=F_Kza6fdkSU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "evaluation",
        "security",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Slides evaluating the state of Linux security over the past decade.",
      "summary_zh": "评估过去十年Linux安全状况的幻灯片。",
      "source_markdown": "[2020: \"10 Years of Linux Security - A Report Card\" by Bradley Spengler](https://grsecurity.net/10_years_of_linux_security.pdf) [slides] [[video](https://www.youtube.com/watch?v=F_Kza6fdkSU)]",
      "search_text": "10 years of linux security - a report card 10 years of linux security - a report card bradley spengler   defensive  defensive primary slides https://grsecurity.net/10_years_of_linux_security.pdf evaluation security kernel  defensive slides evaluating the state of linux security over the past decade. 评估过去十年linux安全状况的幻灯片。 # 10 years of linux security - a report card record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: 10 years of linux security - a report card resource_label: primary resource_type: slides resource_url: https://grsecurity.net/10_years_of_linux_security.pdf parent_primary_url: https://grsecurity.net/10_years_of_linux_security.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"10 years of linux security - a report card\" by bradley spengler](https://grsecurity.net/10_years_of_linux_security.pdf) [slides] [[video](https://www.youtube.com/watch?v=f_kza6fdksu)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2caee94f1443458e",
      "item_id": "2a119a9efc079861",
      "slug": "2020-defensive-10-years-of-linux-security-a-report-card-video-edff16c8",
      "year": 2020,
      "title": "10 Years of Linux Security - A Report Card · video",
      "item_title": "10 Years of Linux Security - A Report Card",
      "authors": [
        "Bradley Spengler"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=F_Kza6fdkSU",
      "primary_url": "https://www.youtube.com/watch?v=F_Kza6fdkSU",
      "parent_primary_url": "https://grsecurity.net/10_years_of_linux_security.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2020-defensive-10-years-of-linux-security-a-report-card-video-edff16c8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 10 Years of Linux Security - A Report Card · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: 10 Years of Linux Security - A Report Card resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=F_Kza6fdkSU parent_primary_url: https://grsecurity.net/10_years_of_linux_security.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"10 Years of Linux Security - A Report Card\" by Bradley Spengler](https://grsecurity.net/10_years_of_linux_security.pdf) [slides] [[video](https://www.youtube.com/watch?v=F_Kza6fdkSU)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linu",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://grsecurity.net/10_years_of_linux_security.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=F_Kza6fdkSU"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://grsecurity.net/10_years_of_linux_security.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=F_Kza6fdkSU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "evaluation",
        "security",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "A video report card on ten years of Linux security.",
      "summary_zh": "关于十年Linux安全的报告视频。",
      "source_markdown": "[2020: \"10 Years of Linux Security - A Report Card\" by Bradley Spengler](https://grsecurity.net/10_years_of_linux_security.pdf) [slides] [[video](https://www.youtube.com/watch?v=F_Kza6fdkSU)]",
      "search_text": "10 years of linux security - a report card · video 10 years of linux security - a report card bradley spengler   defensive  defensive video video https://www.youtube.com/watch?v=f_kza6fdksu evaluation security kernel  defensive a video report card on ten years of linux security. 关于十年linux安全的报告视频。 # 10 years of linux security - a report card · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: 10 years of linux security - a report card resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=f_kza6fdksu parent_primary_url: https://grsecurity.net/10_years_of_linux_security.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"10 years of linux security - a report card\" by bradley spengler](https://grsecurity.net/10_years_of_linux_security.pdf) [slides] [[video](https://www.youtube.com/watch?v=f_kza6fdksu)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linu no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d28e3d0273d46203",
      "item_id": "cb94e39b4132b1ad",
      "slug": "2020-defensive-control-flow-integrity-in-the-linux-kernel-primary-382ae3a8",
      "year": 2020,
      "title": "Control Flow Integrity in the Linux Kernel",
      "item_title": "Control Flow Integrity in the Linux Kernel",
      "authors": [
        "Kees Cook at linux.conf.au"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://outflux.net/slides/2020/lca/cfi.pdf",
      "primary_url": "https://outflux.net/slides/2020/lca/cfi.pdf",
      "parent_primary_url": "https://outflux.net/slides/2020/lca/cfi.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2020-defensive-control-flow-integrity-in-the-linux-kernel-primary-382ae3a8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Control Flow Integrity in the Linux Kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Control Flow Integrity in the Linux Kernel resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2020/lca/cfi.pdf parent_primary_url: https://outflux.net/slides/2020/lca/cfi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"Control Flow Integrity in the Linux Kernel\" by Kees Cook at linux.conf.au](https://outflux.net/slides/2020/lca/cfi.pdf) [slides] [[video](https://www.youtube.com/watch?v=0Bj6W7qrOOI)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: fa",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2020/lca/cfi.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=0Bj6W7qrOOI"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2020/lca/cfi.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=0Bj6W7qrOOI"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Control Flow Integrity",
        "Kernel Security"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "This presentation discusses the implementation of Control Flow Integrity in the Linux Kernel to enhance security.",
      "summary_zh": "本演示讨论了在Linux内核中实施控制流完整性以增强安全性。",
      "source_markdown": "[2020: \"Control Flow Integrity in the Linux Kernel\" by Kees Cook at linux.conf.au](https://outflux.net/slides/2020/lca/cfi.pdf) [slides] [[video](https://www.youtube.com/watch?v=0Bj6W7qrOOI)]",
      "search_text": "control flow integrity in the linux kernel control flow integrity in the linux kernel kees cook at linux.conf.au   defensive  defensive primary slides https://outflux.net/slides/2020/lca/cfi.pdf control flow integrity kernel security  defensive research this presentation discusses the implementation of control flow integrity in the linux kernel to enhance security. 本演示讨论了在linux内核中实施控制流完整性以增强安全性。 # control flow integrity in the linux kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: control flow integrity in the linux kernel resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2020/lca/cfi.pdf parent_primary_url: https://outflux.net/slides/2020/lca/cfi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"control flow integrity in the linux kernel\" by kees cook at linux.conf.au](https://outflux.net/slides/2020/lca/cfi.pdf) [slides] [[video](https://www.youtube.com/watch?v=0bj6w7qrooi)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: fa no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "08530670f4130816",
      "item_id": "cb94e39b4132b1ad",
      "slug": "2020-defensive-control-flow-integrity-in-the-linux-kernel-video-b34b20d1",
      "year": 2020,
      "title": "Control Flow Integrity in the Linux Kernel · video",
      "item_title": "Control Flow Integrity in the Linux Kernel",
      "authors": [
        "Kees Cook at linux.conf.au"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=0Bj6W7qrOOI",
      "primary_url": "https://www.youtube.com/watch?v=0Bj6W7qrOOI",
      "parent_primary_url": "https://outflux.net/slides/2020/lca/cfi.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2020-defensive-control-flow-integrity-in-the-linux-kernel-video-b34b20d1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Control Flow Integrity in the Linux Kernel · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Control Flow Integrity in the Linux Kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=0Bj6W7qrOOI parent_primary_url: https://outflux.net/slides/2020/lca/cfi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"Control Flow Integrity in the Linux Kernel\" by Kees Cook at linux.conf.au](https://outflux.net/slides/2020/lca/cfi.pdf) [slides] [[video](https://www.youtube.com/watch?v=0Bj6W7qrOOI)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_cod",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2020/lca/cfi.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=0Bj6W7qrOOI"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2020/lca/cfi.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=0Bj6W7qrOOI"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Control Flow Integrity",
        "Kernel Security"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "A video presentation on Control Flow Integrity in the Linux Kernel, focusing on security improvements.",
      "summary_zh": "关于Linux内核中控制流完整性的演示视频，重点介绍安全性改进。",
      "source_markdown": "[2020: \"Control Flow Integrity in the Linux Kernel\" by Kees Cook at linux.conf.au](https://outflux.net/slides/2020/lca/cfi.pdf) [slides] [[video](https://www.youtube.com/watch?v=0Bj6W7qrOOI)]",
      "search_text": "control flow integrity in the linux kernel · video control flow integrity in the linux kernel kees cook at linux.conf.au   defensive  defensive video video https://www.youtube.com/watch?v=0bj6w7qrooi control flow integrity kernel security  defensive research a video presentation on control flow integrity in the linux kernel, focusing on security improvements. 关于linux内核中控制流完整性的演示视频，重点介绍安全性改进。 # control flow integrity in the linux kernel · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: control flow integrity in the linux kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=0bj6w7qrooi parent_primary_url: https://outflux.net/slides/2020/lca/cfi.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"control flow integrity in the linux kernel\" by kees cook at linux.conf.au](https://outflux.net/slides/2020/lca/cfi.pdf) [slides] [[video](https://www.youtube.com/watch?v=0bj6w7qrooi)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_cod no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7e3ea0ac806ea141",
      "item_id": "f194a6c338538ed8",
      "slug": "2020-defensive-identification-of-kernel-memory-corruption-using-kernel-memory-secret-observation-mechanism-pri",
      "year": 2020,
      "title": "Identification of Kernel Memory Corruption Using Kernel Memory Secret Observation Mechanism",
      "item_title": "Identification of Kernel Memory Corruption Using Kernel Memory Secret Observation Mechanism",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.jstage.jst.go.jp/article/transinf/E103.D/7/E103.D_2019ICP0011/_pdf/-char/en",
      "primary_url": "https://www.jstage.jst.go.jp/article/transinf/E103.D/7/E103.D_2019ICP0011/_pdf/-char/en",
      "parent_primary_url": "https://www.jstage.jst.go.jp/article/transinf/E103.D/7/E103.D_2019ICP0011/_pdf/-char/en",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2020-defensive-identification-of-kernel-memory-corruption-using-kernel-memory-secret-observation-mechanism-pri.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Identification of Kernel Memory Corruption Using Kernel Memory Secret Observation Mechanism record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Identification of Kernel Memory Corruption Using Kernel Memory Secret Observation Mechanism resource_label: primary resource_type: paper resource_url: https://www.jstage.jst.go.jp/article/transinf/E103.D/7/E103.D_2019ICP0011/_pdf/-char/en parent_primary_url: https://www.jstage.jst.go.jp/article/transinf/E103.D/7/E103.D_2019ICP0011/_pdf/-char/en source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"Identification of Kernel Memory Corruption Using Kernel Memory Secret Observation Mechanism\"](https://www.jstage.jst.go.jp/article/transinf/E103.D/7/E103.D_2019ICP0011/_pdf/-char/en) [paper] cves: none android_impact_status: no android_impact_reason:",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.jstage.jst.go.jp/article/transinf/E103.D/7/E103.D_2019ICP0011/_pdf/-char/en"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.jstage.jst.go.jp/article/transinf/E103.D/7/E103.D_2019ICP0011/_pdf/-char/en"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Memory Corruption",
        "Kernel Security"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "This paper presents a mechanism for identifying kernel memory corruption using secret observation techniques.",
      "summary_zh": "本文提出了一种使用秘密观察技术识别内核内存损坏的机制。",
      "source_markdown": "[2020: \"Identification of Kernel Memory Corruption Using Kernel Memory Secret Observation Mechanism\"](https://www.jstage.jst.go.jp/article/transinf/E103.D/7/E103.D_2019ICP0011/_pdf/-char/en) [paper]",
      "search_text": "identification of kernel memory corruption using kernel memory secret observation mechanism identification of kernel memory corruption using kernel memory secret observation mechanism    defensive  defensive primary paper https://www.jstage.jst.go.jp/article/transinf/e103.d/7/e103.d_2019icp0011/_pdf/-char/en memory corruption kernel security  defensive research this paper presents a mechanism for identifying kernel memory corruption using secret observation techniques. 本文提出了一种使用秘密观察技术识别内核内存损坏的机制。 # identification of kernel memory corruption using kernel memory secret observation mechanism record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: identification of kernel memory corruption using kernel memory secret observation mechanism resource_label: primary resource_type: paper resource_url: https://www.jstage.jst.go.jp/article/transinf/e103.d/7/e103.d_2019icp0011/_pdf/-char/en parent_primary_url: https://www.jstage.jst.go.jp/article/transinf/e103.d/7/e103.d_2019icp0011/_pdf/-char/en source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2020: \"identification of kernel memory corruption using kernel memory secret observation mechanism\"](https://www.jstage.jst.go.jp/article/transinf/e103.d/7/e103.d_2019icp0011/_pdf/-char/en) [paper] cves: none android_impact_status: no android_impact_reason: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "140de9b6ab404c2e",
      "item_id": "681264ee6c0682b7",
      "slug": "2019-defensive-camouflage-hardware-assisted-cfi-for-the-arm-linux-kernel-primary-97913c4c",
      "year": 2019,
      "title": "Camouflage: Hardware-assisted CFI for the ARM Linux kernel",
      "item_title": "Camouflage: Hardware-assisted CFI for the ARM Linux kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/1912.04145v1.pdf",
      "primary_url": "https://arxiv.org/pdf/1912.04145v1.pdf",
      "parent_primary_url": "https://arxiv.org/pdf/1912.04145v1.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2019-defensive-camouflage-hardware-assisted-cfi-for-the-arm-linux-kernel-primary-97913c4c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Camouflage: Hardware-assisted CFI for the ARM Linux kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Camouflage: Hardware-assisted CFI for the ARM Linux kernel resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/1912.04145v1.pdf parent_primary_url: https://arxiv.org/pdf/1912.04145v1.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2019: \"Camouflage: Hardware-assisted CFI for the ARM Linux kernel\"](https://arxiv.org/pdf/1912.04145v1.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: ",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/1912.04145v1.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/1912.04145v1.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Control Flow Integrity",
        "ARM",
        "Kernel Security"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "The paper discusses a hardware-assisted Control Flow Integrity approach for the ARM Linux kernel.",
      "summary_zh": "本文讨论了一种针对ARM Linux内核的硬件辅助控制流完整性方法。",
      "source_markdown": "[2019: \"Camouflage: Hardware-assisted CFI for the ARM Linux kernel\"](https://arxiv.org/pdf/1912.04145v1.pdf) [paper]",
      "search_text": "camouflage: hardware-assisted cfi for the arm linux kernel camouflage: hardware-assisted cfi for the arm linux kernel    defensive  defensive primary paper https://arxiv.org/pdf/1912.04145v1.pdf control flow integrity arm kernel security  defensive research the paper discusses a hardware-assisted control flow integrity approach for the arm linux kernel. 本文讨论了一种针对arm linux内核的硬件辅助控制流完整性方法。 # camouflage: hardware-assisted cfi for the arm linux kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: camouflage: hardware-assisted cfi for the arm linux kernel resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/1912.04145v1.pdf parent_primary_url: https://arxiv.org/pdf/1912.04145v1.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2019: \"camouflage: hardware-assisted cfi for the arm linux kernel\"](https://arxiv.org/pdf/1912.04145v1.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "769f658452501977",
      "item_id": "7e567166c4b0b1ed",
      "slug": "2019-defensive-a-new-proposal-for-protecting-kernel-data-memory-primary-b2aa0fbb",
      "year": 2019,
      "title": "A New Proposal for Protecting Kernel Data Memory",
      "item_title": "A New Proposal for Protecting Kernel Data Memory",
      "authors": [
        "Igor Stoppa at Linux Security Summit EU"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=nPH2sQAD6RY",
      "primary_url": "https://www.youtube.com/watch?v=nPH2sQAD6RY",
      "parent_primary_url": "https://www.youtube.com/watch?v=nPH2sQAD6RY",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2019-defensive-a-new-proposal-for-protecting-kernel-data-memory-primary-b2aa0fbb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A New Proposal for Protecting Kernel Data Memory record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: A New Proposal for Protecting Kernel Data Memory resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=nPH2sQAD6RY parent_primary_url: https://www.youtube.com/watch?v=nPH2sQAD6RY source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2019: \"A New Proposal for Protecting Kernel Data Memory\" by Igor Stoppa at Linux Security Summit EU](https://www.youtube.com/watch?v=nPH2sQAD6RY) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exp",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=nPH2sQAD6RY"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=nPH2sQAD6RY"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Memory Protection",
        "Kernel Security"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "A video presentation proposing a new method for protecting kernel data memory.",
      "summary_zh": "一段视频演示提出了一种保护内核数据内存的新方法。",
      "source_markdown": "[2019: \"A New Proposal for Protecting Kernel Data Memory\" by Igor Stoppa at Linux Security Summit EU](https://www.youtube.com/watch?v=nPH2sQAD6RY) [video]",
      "search_text": "a new proposal for protecting kernel data memory a new proposal for protecting kernel data memory igor stoppa at linux security summit eu   defensive  defensive primary video https://www.youtube.com/watch?v=nph2sqad6ry memory protection kernel security  defensive research a video presentation proposing a new method for protecting kernel data memory. 一段视频演示提出了一种保护内核数据内存的新方法。 # a new proposal for protecting kernel data memory record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: a new proposal for protecting kernel data memory resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=nph2sqad6ry parent_primary_url: https://www.youtube.com/watch?v=nph2sqad6ry source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2019: \"a new proposal for protecting kernel data memory\" by igor stoppa at linux security summit eu](https://www.youtube.com/watch?v=nph2sqad6ry) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exp no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "63259a5458600d74",
      "item_id": "c3edf7e3ac345265",
      "slug": "2019-defensive-control-flow-integrity-for-the-linux-kernel-a-security-evaluation-primary-6e0769ab",
      "year": 2019,
      "title": "Control-Flow Integrity for the Linux kernel: A Security Evaluation",
      "item_title": "Control-Flow Integrity for the Linux kernel: A Security Evaluation",
      "authors": [
        "Federico Manuel Bento"
      ],
      "cves": [],
      "tags": [
        "thesis"
      ],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "http://www.alunos.dcc.fc.up.pt/~up201407890/Thesis.pdf",
      "primary_url": "http://www.alunos.dcc.fc.up.pt/~up201407890/Thesis.pdf",
      "parent_primary_url": "http://www.alunos.dcc.fc.up.pt/~up201407890/Thesis.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2019-defensive-control-flow-integrity-for-the-linux-kernel-a-security-evaluation-primary-6e0769ab.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Control-Flow Integrity for the Linux kernel: A Security Evaluation record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Control-Flow Integrity for the Linux kernel: A Security Evaluation resource_label: primary resource_type: paper resource_url: http://www.alunos.dcc.fc.up.pt/~up201407890/Thesis.pdf parent_primary_url: http://www.alunos.dcc.fc.up.pt/~up201407890/Thesis.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2019: \"Control-Flow Integrity for the Linux kernel: A Security Evaluation\" by Federico Manuel Bento](http://www.alunos.dcc.fc.up.pt/~up201407890/Thesis.pdf) [thesis] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple'",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "http://www.alunos.dcc.fc.up.pt/~up201407890/Thesis.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "http://www.alunos.dcc.fc.up.pt/~up201407890/Thesis.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Control Flow Integrity",
        "Thesis"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "This thesis evaluates the security of Control Flow Integrity implementations in the Linux kernel.",
      "summary_zh": "本论文评估了Linux内核中控制流完整性实现的安全性。",
      "source_markdown": "[2019: \"Control-Flow Integrity for the Linux kernel: A Security Evaluation\" by Federico Manuel Bento](http://www.alunos.dcc.fc.up.pt/~up201407890/Thesis.pdf) [thesis]",
      "search_text": "control-flow integrity for the linux kernel: a security evaluation control-flow integrity for the linux kernel: a security evaluation federico manuel bento  thesis defensive  defensive primary paper http://www.alunos.dcc.fc.up.pt/~up201407890/thesis.pdf control flow integrity thesis  defensive research this thesis evaluates the security of control flow integrity implementations in the linux kernel. 本论文评估了linux内核中控制流完整性实现的安全性。 # control-flow integrity for the linux kernel: a security evaluation record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: control-flow integrity for the linux kernel: a security evaluation resource_label: primary resource_type: paper resource_url: http://www.alunos.dcc.fc.up.pt/~up201407890/thesis.pdf parent_primary_url: http://www.alunos.dcc.fc.up.pt/~up201407890/thesis.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2019: \"control-flow integrity for the linux kernel: a security evaluation\" by federico manuel bento](http://www.alunos.dcc.fc.up.pt/~up201407890/thesis.pdf) [thesis] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple' no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7f6af89007ec75dd",
      "item_id": "f977ab007948f4af",
      "slug": "2019-defensive-kernel-self-protection-project-primary-cd03e156",
      "year": 2019,
      "title": "Kernel Self-Protection Project",
      "item_title": "Kernel Self-Protection Project",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://outflux.net/slides/2019/lss/kspp.pdf",
      "primary_url": "https://outflux.net/slides/2019/lss/kspp.pdf",
      "parent_primary_url": "https://outflux.net/slides/2019/lss/kspp.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2019-defensive-kernel-self-protection-project-primary-cd03e156.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Self-Protection Project record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Kernel Self-Protection Project resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2019/lss/kspp.pdf parent_primary_url: https://outflux.net/slides/2019/lss/kspp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2019: \"Kernel Self-Protection Project\" by Kees Cook](https://outflux.net/slides/2019/lss/kspp.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [slides] primary: https://out",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2019/lss/kspp.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2019/lss/kspp.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Kernel Self-Protection",
        "Kernel Security"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "Slides presenting the Kernel Self-Protection Project aimed at enhancing kernel security.",
      "summary_zh": "演示文稿介绍了旨在增强内核安全性的内核自我保护项目。",
      "source_markdown": "[2019: \"Kernel Self-Protection Project\" by Kees Cook](https://outflux.net/slides/2019/lss/kspp.pdf) [slides]",
      "search_text": "kernel self-protection project kernel self-protection project kees cook   defensive  defensive primary slides https://outflux.net/slides/2019/lss/kspp.pdf kernel self-protection kernel security  defensive research slides presenting the kernel self-protection project aimed at enhancing kernel security. 演示文稿介绍了旨在增强内核安全性的内核自我保护项目。 # kernel self-protection project record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: kernel self-protection project resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2019/lss/kspp.pdf parent_primary_url: https://outflux.net/slides/2019/lss/kspp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2019: \"kernel self-protection project\" by kees cook](https://outflux.net/slides/2019/lss/kspp.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [slides] primary: https://out no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f0b18f73b8fdf368",
      "item_id": "2378fce217a9d33a",
      "slug": "2019-defensive-touch-but-don-t-look-running-the-kernel-in-execute-only-memory-primary-5c4af34a",
      "year": 2019,
      "title": "Touch but don’t look - Running the Kernel in Execute-only memory",
      "item_title": "Touch but don’t look - Running the Kernel in Execute-only memory",
      "authors": [
        "Rick Edgecombe"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://linuxplumbersconf.org/event/4/contributions/283/attachments/357/588/Touch_but_dont_look__Running_the_kernel_in_execute_only_memory-presented.pdf",
      "primary_url": "https://linuxplumbersconf.org/event/4/contributions/283/attachments/357/588/Touch_but_dont_look__Running_the_kernel_in_execute_only_memory-presented.pdf",
      "parent_primary_url": "https://linuxplumbersconf.org/event/4/contributions/283/attachments/357/588/Touch_but_dont_look__Running_the_kernel_in_execute_only_memory-presented.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2019-defensive-touch-but-don-t-look-running-the-kernel-in-execute-only-memory-primary-5c4af34a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Touch but don’t look - Running the Kernel in Execute-only memory record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Touch but don’t look - Running the Kernel in Execute-only memory resource_label: primary resource_type: slides resource_url: https://linuxplumbersconf.org/event/4/contributions/283/attachments/357/588/Touch_but_dont_look__Running_the_kernel_in_execute_only_memory-presented.pdf parent_primary_url: https://linuxplumbersconf.org/event/4/contributions/283/attachments/357/588/Touch_but_dont_look__Running_the_kernel_in_execute_only_memory-presented.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2019: \"Touch but don’t look - Running the Kernel in Execute-only memory\" by Rick Edgecombe](https://linuxplumbersconf.org/event/4/contributions/283/attachments/357/588/Touch_but_do",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://linuxplumbersconf.org/event/4/contributions/283/attachments/357/588/Touch_but_dont_look__Running_the_kernel_in_execute_only_memory-presented.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://linuxplumbersconf.org/event/4/contributions/283/attachments/357/588/Touch_but_dont_look__Running_the_kernel_in_execute_only_memory-presented.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Memory Protection",
        "Kernel Security"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "Slides discussing the concept of running the kernel in execute-only memory to enhance security.",
      "summary_zh": "讨论在执行仅内存中运行内核以增强安全性的概念的幻灯片。",
      "source_markdown": "[2019: \"Touch but don’t look - Running the Kernel in Execute-only memory\" by Rick Edgecombe](https://linuxplumbersconf.org/event/4/contributions/283/attachments/357/588/Touch_but_dont_look__Running_the_kernel_in_execute_only_memory-presented.pdf) [slides]",
      "search_text": "touch but don’t look - running the kernel in execute-only memory touch but don’t look - running the kernel in execute-only memory rick edgecombe   defensive  defensive primary slides https://linuxplumbersconf.org/event/4/contributions/283/attachments/357/588/touch_but_dont_look__running_the_kernel_in_execute_only_memory-presented.pdf memory protection kernel security  defensive research slides discussing the concept of running the kernel in execute-only memory to enhance security. 讨论在执行仅内存中运行内核以增强安全性的概念的幻灯片。 # touch but don’t look - running the kernel in execute-only memory record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: touch but don’t look - running the kernel in execute-only memory resource_label: primary resource_type: slides resource_url: https://linuxplumbersconf.org/event/4/contributions/283/attachments/357/588/touch_but_dont_look__running_the_kernel_in_execute_only_memory-presented.pdf parent_primary_url: https://linuxplumbersconf.org/event/4/contributions/283/attachments/357/588/touch_but_dont_look__running_the_kernel_in_execute_only_memory-presented.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2019: \"touch but don’t look - running the kernel in execute-only memory\" by rick edgecombe](https://linuxplumbersconf.org/event/4/contributions/283/attachments/357/588/touch_but_do no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "11345e06d2acc671",
      "item_id": "07b1e54d5ffdf2dd",
      "slug": "2019-defensive-breaking-and-protecting-linux-kernel-stack-primary-2896c944",
      "year": 2019,
      "title": "Breaking and Protecting Linux Kernel Stack",
      "item_title": "Breaking and Protecting Linux Kernel Stack",
      "authors": [
        "Elena Reshetova"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=FacpjoQbMhU",
      "primary_url": "https://www.youtube.com/watch?v=FacpjoQbMhU",
      "parent_primary_url": "https://www.youtube.com/watch?v=FacpjoQbMhU",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2019-defensive-breaking-and-protecting-linux-kernel-stack-primary-2896c944.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Breaking and Protecting Linux Kernel Stack record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Breaking and Protecting Linux Kernel Stack resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=FacpjoQbMhU parent_primary_url: https://www.youtube.com/watch?v=FacpjoQbMhU source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2019: \"Breaking and Protecting Linux Kernel Stack\" by Elena Reshetova](https://www.youtube.com/watch?v=FacpjoQbMhU) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_l",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=FacpjoQbMhU"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=FacpjoQbMhU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Stack Protection",
        "Kernel Security"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "A video presentation on breaking and protecting the Linux kernel stack.",
      "summary_zh": "关于破坏和保护Linux内核栈的视频演示。",
      "source_markdown": "[2019: \"Breaking and Protecting Linux Kernel Stack\" by Elena Reshetova](https://www.youtube.com/watch?v=FacpjoQbMhU) [video]",
      "search_text": "breaking and protecting linux kernel stack breaking and protecting linux kernel stack elena reshetova   defensive  defensive primary video https://www.youtube.com/watch?v=facpjoqbmhu stack protection kernel security  defensive research a video presentation on breaking and protecting the linux kernel stack. 关于破坏和保护linux内核栈的视频演示。 # breaking and protecting linux kernel stack record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: breaking and protecting linux kernel stack resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=facpjoqbmhu parent_primary_url: https://www.youtube.com/watch?v=facpjoqbmhu source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2019: \"breaking and protecting linux kernel stack\" by elena reshetova](https://www.youtube.com/watch?v=facpjoqbmhu) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_l no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6cad8622348c6f5a",
      "item_id": "df9dce99dd528002",
      "slug": "2019-defensive-making-c-less-dangerous-in-the-linux-kernel-primary-9b5fa3c6",
      "year": 2019,
      "title": "Making C Less Dangerous in the Linux Kernel",
      "item_title": "Making C Less Dangerous in the Linux Kernel",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://outflux.net/slides/2019/lca/danger.pdf",
      "primary_url": "https://outflux.net/slides/2019/lca/danger.pdf",
      "parent_primary_url": "https://outflux.net/slides/2019/lca/danger.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2019-defensive-making-c-less-dangerous-in-the-linux-kernel-primary-9b5fa3c6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Making C Less Dangerous in the Linux Kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Making C Less Dangerous in the Linux Kernel resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2019/lca/danger.pdf parent_primary_url: https://outflux.net/slides/2019/lca/danger.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2019: \"Making C Less Dangerous in the Linux Kernel\" by Kees Cook](https://outflux.net/slides/2019/lca/danger.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none c",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2019/lca/danger.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2019/lca/danger.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "C Language Safety",
        "Kernel Security"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "Slides on making the C programming language less dangerous in the context of the Linux kernel.",
      "summary_zh": "关于在Linux内核上下文中使C编程语言不那么危险的幻灯片。",
      "source_markdown": "[2019: \"Making C Less Dangerous in the Linux Kernel\" by Kees Cook](https://outflux.net/slides/2019/lca/danger.pdf) [slides]",
      "search_text": "making c less dangerous in the linux kernel making c less dangerous in the linux kernel kees cook   defensive  defensive primary slides https://outflux.net/slides/2019/lca/danger.pdf c language safety kernel security  defensive research slides on making the c programming language less dangerous in the context of the linux kernel. 关于在linux内核上下文中使c编程语言不那么危险的幻灯片。 # making c less dangerous in the linux kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: making c less dangerous in the linux kernel resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2019/lca/danger.pdf parent_primary_url: https://outflux.net/slides/2019/lca/danger.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2019: \"making c less dangerous in the linux kernel\" by kees cook](https://outflux.net/slides/2019/lca/danger.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none c no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5764812141151023",
      "item_id": "cb2b6f02d9edb501",
      "slug": "2019-defensive-mitigation-for-the-kernel-space-mirroring-attack-primary-1d6a97cb",
      "year": 2019,
      "title": "Mitigation for the Kernel Space Mirroring Attack (内核镜像攻击的缓解措施)",
      "item_title": "Mitigation for the Kernel Space Mirroring Attack (内核镜像攻击的缓解措施)",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://c0reteam.org/2019/01/02/ksma",
      "primary_url": "http://c0reteam.org/2019/01/02/ksma",
      "parent_primary_url": "http://c0reteam.org/2019/01/02/ksma",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2019-defensive-mitigation-for-the-kernel-space-mirroring-attack-primary-1d6a97cb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mitigation for the Kernel Space Mirroring Attack (内核镜像攻击的缓解措施) record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Mitigation for the Kernel Space Mirroring Attack (内核镜像攻击的缓解措施) resource_label: primary resource_type: article resource_url: http://c0reteam.org/2019/01/02/ksma parent_primary_url: http://c0reteam.org/2019/01/02/ksma source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2019: \"Mitigation for the Kernel Space Mirroring Attack (内核镜像攻击的缓解措施)\"](http://c0reteam.org/2019/01/02/ksma) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://c0reteam.org/2019/01/02/ksma"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://c0reteam.org/2019/01/02/ksma"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Kernel Security",
        "Mitigation"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "An article discussing mitigations for kernel space mirroring attacks.",
      "summary_zh": "讨论内核空间镜像攻击缓解措施的文章。",
      "source_markdown": "[2019: \"Mitigation for the Kernel Space Mirroring Attack (内核镜像攻击的缓解措施)\"](http://c0reteam.org/2019/01/02/ksma) [article]",
      "search_text": "mitigation for the kernel space mirroring attack (内核镜像攻击的缓解措施) mitigation for the kernel space mirroring attack (内核镜像攻击的缓解措施)    defensive  defensive primary article http://c0reteam.org/2019/01/02/ksma kernel security mitigation  defensive research an article discussing mitigations for kernel space mirroring attacks. 讨论内核空间镜像攻击缓解措施的文章。 # mitigation for the kernel space mirroring attack (内核镜像攻击的缓解措施) record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: mitigation for the kernel space mirroring attack (内核镜像攻击的缓解措施) resource_label: primary resource_type: article resource_url: http://c0reteam.org/2019/01/02/ksma parent_primary_url: http://c0reteam.org/2019/01/02/ksma source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2019: \"mitigation for the kernel space mirroring attack (内核镜像攻击的缓解措施)\"](http://c0reteam.org/2019/01/02/ksma) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2f2e93f5cddb5048",
      "item_id": "a9f45d3e621e14be",
      "slug": "2018-defensive-the-state-of-kernel-self-protection-primary-11898925",
      "year": 2018,
      "title": "The State of Kernel Self Protection",
      "item_title": "The State of Kernel Self Protection",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://outflux.net/slides/2018/lss/kspp.pdf",
      "primary_url": "https://outflux.net/slides/2018/lss/kspp.pdf",
      "parent_primary_url": "https://outflux.net/slides/2018/lss/kspp.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2018-defensive-the-state-of-kernel-self-protection-primary-11898925.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The State of Kernel Self Protection record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: The State of Kernel Self Protection resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2018/lss/kspp.pdf parent_primary_url: https://outflux.net/slides/2018/lss/kspp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"The State of Kernel Self Protection\" by Kees Cook](https://outflux.net/slides/2018/lss/kspp.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [slides] prima",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2018/lss/kspp.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2018/lss/kspp.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Kernel Self-Protection",
        "Kernel Security"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "Slides summarizing the current state of kernel self-protection efforts.",
      "summary_zh": "总结内核自我保护工作当前状态的幻灯片。",
      "source_markdown": "[2018: \"The State of Kernel Self Protection\" by Kees Cook](https://outflux.net/slides/2018/lss/kspp.pdf) [slides]",
      "search_text": "the state of kernel self protection the state of kernel self protection kees cook   defensive  defensive primary slides https://outflux.net/slides/2018/lss/kspp.pdf kernel self-protection kernel security  defensive research slides summarizing the current state of kernel self-protection efforts. 总结内核自我保护工作当前状态的幻灯片。 # the state of kernel self protection record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: the state of kernel self protection resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2018/lss/kspp.pdf parent_primary_url: https://outflux.net/slides/2018/lss/kspp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"the state of kernel self protection\" by kees cook](https://outflux.net/slides/2018/lss/kspp.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [slides] prima no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c15b1af015d8d4d3",
      "item_id": "b4ff78efed9879c0",
      "slug": "2018-defensive-android-kernel-control-flow-integrity-analysis-primary-2c3e4038",
      "year": 2018,
      "title": "Android Kernel Control Flow Integrity Analysis (分析)",
      "item_title": "Android Kernel Control Flow Integrity Analysis (分析)",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://c0reteam.org/2018/09/17/kcfi",
      "primary_url": "http://c0reteam.org/2018/09/17/kcfi",
      "parent_primary_url": "http://c0reteam.org/2018/09/17/kcfi",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2018-defensive-android-kernel-control-flow-integrity-analysis-primary-2c3e4038.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Android Kernel Control Flow Integrity Analysis (分析) record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Android Kernel Control Flow Integrity Analysis (分析) resource_label: primary resource_type: article resource_url: http://c0reteam.org/2018/09/17/kcfi parent_primary_url: http://c0reteam.org/2018/09/17/kcfi source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"Android Kernel Control Flow Integrity Analysis (分析)\"](http://c0reteam.org/2018/09/17/kcfi) [article] cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: fals",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://c0reteam.org/2018/09/17/kcfi"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://c0reteam.org/2018/09/17/kcfi"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Control Flow Integrity",
        "Android",
        "Kernel Security"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "An article analyzing Control Flow Integrity in Android kernels.",
      "summary_zh": "分析Android内核中控制流完整性的文章。",
      "source_markdown": "[2018: \"Android Kernel Control Flow Integrity Analysis (分析)\"](http://c0reteam.org/2018/09/17/kcfi) [article]",
      "search_text": "android kernel control flow integrity analysis (分析) android kernel control flow integrity analysis (分析)    defensive  defensive primary article http://c0reteam.org/2018/09/17/kcfi control flow integrity android kernel security  defensive research an article analyzing control flow integrity in android kernels. 分析android内核中控制流完整性的文章。 # android kernel control flow integrity analysis (分析) record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: android kernel control flow integrity analysis (分析) resource_label: primary resource_type: article resource_url: http://c0reteam.org/2018/09/17/kcfi parent_primary_url: http://c0reteam.org/2018/09/17/kcfi source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"android kernel control flow integrity analysis (分析)\"](http://c0reteam.org/2018/09/17/kcfi) [article] cves: none android_impact_status: unknown android_impact_reason: mentions android; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: fals unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "edd07035665f7e03",
      "item_id": "f755ab5d98e1b1f1",
      "slug": "2018-defensive-overview-and-recent-developments-kernel-self-protection-project-primary-57ea945a",
      "year": 2018,
      "title": "Overview and Recent Developments: Kernel Self-Protection Project",
      "item_title": "Overview and Recent Developments: Kernel Self-Protection Project",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://outflux.net/slides/2018/lss-eu/kspp.pdf",
      "primary_url": "https://outflux.net/slides/2018/lss-eu/kspp.pdf",
      "parent_primary_url": "https://outflux.net/slides/2018/lss-eu/kspp.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2018-defensive-overview-and-recent-developments-kernel-self-protection-project-primary-57ea945a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Overview and Recent Developments: Kernel Self-Protection Project record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Overview and Recent Developments: Kernel Self-Protection Project resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2018/lss-eu/kspp.pdf parent_primary_url: https://outflux.net/slides/2018/lss-eu/kspp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"Overview and Recent Developments: Kernel Self-Protection Project\" by Kees Cook](https://outflux.net/slides/2018/lss-eu/kspp.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_co",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2018/lss-eu/kspp.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2018/lss-eu/kspp.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Kernel Self-Protection",
        "Kernel Security"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "Slides covering recent developments in the Kernel Self-Protection Project.",
      "summary_zh": "涵盖内核自我保护项目最近发展的幻灯片。",
      "source_markdown": "[2018: \"Overview and Recent Developments: Kernel Self-Protection Project\" by Kees Cook](https://outflux.net/slides/2018/lss-eu/kspp.pdf) [slides]",
      "search_text": "overview and recent developments: kernel self-protection project overview and recent developments: kernel self-protection project kees cook   defensive  defensive primary slides https://outflux.net/slides/2018/lss-eu/kspp.pdf kernel self-protection kernel security  defensive research slides covering recent developments in the kernel self-protection project. 涵盖内核自我保护项目最近发展的幻灯片。 # overview and recent developments: kernel self-protection project record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: overview and recent developments: kernel self-protection project resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2018/lss-eu/kspp.pdf parent_primary_url: https://outflux.net/slides/2018/lss-eu/kspp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"overview and recent developments: kernel self-protection project\" by kees cook](https://outflux.net/slides/2018/lss-eu/kspp.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_co no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d69d4d829f819c03",
      "item_id": "98cdb7eab6fff966",
      "slug": "2018-defensive-the-last-man-standing-the-only-practical-lightweight-and-hypervisor-based-kernel-protector-stru",
      "year": 2018,
      "title": "The Last Man Standing: The Only Practical, Lightweight and Hypervisor-Based Kernel Protector Struggling with the Real World Alone",
      "item_title": "The Last Man Standing: The Only Practical, Lightweight and Hypervisor-Based Kernel Protector Struggling with the Real World Alone",
      "authors": [
        "Seunghun Han at beVX"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://github.com/kkamagui/papers/blob/master/bevx-2018/presentation.pdf",
      "primary_url": "https://github.com/kkamagui/papers/blob/master/bevx-2018/presentation.pdf",
      "parent_primary_url": "https://github.com/kkamagui/papers/blob/master/bevx-2018/presentation.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2018-defensive-the-last-man-standing-the-only-practical-lightweight-and-hypervisor-based-kernel-protector-stru.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Last Man Standing: The Only Practical, Lightweight and Hypervisor-Based Kernel Protector Struggling with the Real World Alone record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: The Last Man Standing: The Only Practical, Lightweight and Hypervisor-Based Kernel Protector Struggling with the Real World Alone resource_label: primary resource_type: video resource_url: https://github.com/kkamagui/papers/blob/master/bevx-2018/presentation.pdf parent_primary_url: https://github.com/kkamagui/papers/blob/master/bevx-2018/presentation.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"The Last Man Standing: The Only Practical, Lightweight and Hypervisor-Based Kernel Protector Struggling with the Real World Alone\" by Seunghun Han at beVX](https://github.com/kkamagui/papers/blob/master",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://github.com/kkamagui/papers/blob/master/bevx-2018/presentation.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://github.com/kkamagui/papers/blob/master/bevx-2018/presentation.pdf"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/kkamagui/papers/blob/master/bevx-2018/presentation.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Hypervisor",
        "Kernel Protection"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "A video presentation on a lightweight hypervisor-based kernel protector.",
      "summary_zh": "关于轻量级基于虚拟机的内核保护程序的视频演示。",
      "source_markdown": "[2018: \"The Last Man Standing: The Only Practical, Lightweight and Hypervisor-Based Kernel Protector Struggling with the Real World Alone\" by Seunghun Han at beVX](https://github.com/kkamagui/papers/blob/master/bevx-2018/presentation.pdf) [video]",
      "search_text": "the last man standing: the only practical, lightweight and hypervisor-based kernel protector struggling with the real world alone the last man standing: the only practical, lightweight and hypervisor-based kernel protector struggling with the real world alone seunghun han at bevx   defensive  defensive primary video https://github.com/kkamagui/papers/blob/master/bevx-2018/presentation.pdf hypervisor kernel protection  defensive research a video presentation on a lightweight hypervisor-based kernel protector. 关于轻量级基于虚拟机的内核保护程序的视频演示。 # the last man standing: the only practical, lightweight and hypervisor-based kernel protector struggling with the real world alone record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: the last man standing: the only practical, lightweight and hypervisor-based kernel protector struggling with the real world alone resource_label: primary resource_type: video resource_url: https://github.com/kkamagui/papers/blob/master/bevx-2018/presentation.pdf parent_primary_url: https://github.com/kkamagui/papers/blob/master/bevx-2018/presentation.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"the last man standing: the only practical, lightweight and hypervisor-based kernel protector struggling with the real world alone\" by seunghun han at bevx](https://github.com/kkamagui/papers/blob/master no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "99a215ce41b8c10a",
      "item_id": "c4fa64dcf0aef0b5",
      "slug": "2018-defensive-linux-kernel-runtime-guard-lkrg-under-the-hood-primary-4ee10914",
      "year": 2018,
      "title": "Linux Kernel Runtime Guard (LKRG) under the hood",
      "item_title": "Linux Kernel Runtime Guard (LKRG) under the hood",
      "authors": [
        "Adam Zabrocki at CONFidence"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.openwall.com/presentations/CONFidence2018-LKRG-Under-The-Hood/CONFidence2018-LKRG-Under-The-Hood.pdf",
      "primary_url": "https://www.openwall.com/presentations/CONFidence2018-LKRG-Under-The-Hood/CONFidence2018-LKRG-Under-The-Hood.pdf",
      "parent_primary_url": "https://www.openwall.com/presentations/CONFidence2018-LKRG-Under-The-Hood/CONFidence2018-LKRG-Under-The-Hood.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2018-defensive-linux-kernel-runtime-guard-lkrg-under-the-hood-primary-4ee10914.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Runtime Guard (LKRG) under the hood record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Linux Kernel Runtime Guard (LKRG) under the hood resource_label: primary resource_type: paper resource_url: https://www.openwall.com/presentations/CONFidence2018-LKRG-Under-The-Hood/CONFidence2018-LKRG-Under-The-Hood.pdf parent_primary_url: https://www.openwall.com/presentations/CONFidence2018-LKRG-Under-The-Hood/CONFidence2018-LKRG-Under-The-Hood.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"Linux Kernel Runtime Guard (LKRG) under the hood\" by Adam Zabrocki at CONFidence](https://www.openwall.com/presentations/CONFidence2018-LKRG-Under-The-Hood/CONFidence2018-LKRG-Under-The-Hood.pdf) [slides, [video](https://www.youtube.com/watch?v=tOiPM692DOM)] cves: none android_impact_s",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.openwall.com/presentations/CONFidence2018-LKRG-Under-The-Hood/CONFidence2018-LKRG-Under-The-Hood.pdf"
        },
        {
          "label": "slides, [video",
          "type": "slides",
          "url": "https://www.youtube.com/watch?v=tOiPM692DOM"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.openwall.com/presentations/CONFidence2018-LKRG-Under-The-Hood/CONFidence2018-LKRG-Under-The-Hood.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides, [video",
            "type": "slides",
            "url": "https://www.youtube.com/watch?v=tOiPM692DOM"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Runtime Guard",
        "Kernel Security"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "A video discussing the inner workings of the Linux Kernel Runtime Guard.",
      "summary_zh": "讨论Linux内核运行时保护的内部工作原理的视频。",
      "source_markdown": "[2018: \"Linux Kernel Runtime Guard (LKRG) under the hood\" by Adam Zabrocki at CONFidence](https://www.openwall.com/presentations/CONFidence2018-LKRG-Under-The-Hood/CONFidence2018-LKRG-Under-The-Hood.pdf) [slides, [video](https://www.youtube.com/watch?v=tOiPM692DOM)]",
      "search_text": "linux kernel runtime guard (lkrg) under the hood linux kernel runtime guard (lkrg) under the hood adam zabrocki at confidence   defensive  defensive primary paper https://www.openwall.com/presentations/confidence2018-lkrg-under-the-hood/confidence2018-lkrg-under-the-hood.pdf runtime guard kernel security  defensive research a video discussing the inner workings of the linux kernel runtime guard. 讨论linux内核运行时保护的内部工作原理的视频。 # linux kernel runtime guard (lkrg) under the hood record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: linux kernel runtime guard (lkrg) under the hood resource_label: primary resource_type: paper resource_url: https://www.openwall.com/presentations/confidence2018-lkrg-under-the-hood/confidence2018-lkrg-under-the-hood.pdf parent_primary_url: https://www.openwall.com/presentations/confidence2018-lkrg-under-the-hood/confidence2018-lkrg-under-the-hood.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"linux kernel runtime guard (lkrg) under the hood\" by adam zabrocki at confidence](https://www.openwall.com/presentations/confidence2018-lkrg-under-the-hood/confidence2018-lkrg-under-the-hood.pdf) [slides, [video](https://www.youtube.com/watch?v=toipm692dom)] cves: none android_impact_s no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ac5b9475576eeaa0",
      "item_id": "c4fa64dcf0aef0b5",
      "slug": "2018-defensive-linux-kernel-runtime-guard-lkrg-under-the-hood-slides-video-51795527",
      "year": 2018,
      "title": "Linux Kernel Runtime Guard (LKRG) under the hood · slides, [video",
      "item_title": "Linux Kernel Runtime Guard (LKRG) under the hood",
      "authors": [
        "Adam Zabrocki at CONFidence"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "slides, [video",
      "resource_type": "slides",
      "resource_url": "https://www.youtube.com/watch?v=tOiPM692DOM",
      "primary_url": "https://www.youtube.com/watch?v=tOiPM692DOM",
      "parent_primary_url": "https://www.openwall.com/presentations/CONFidence2018-LKRG-Under-The-Hood/CONFidence2018-LKRG-Under-The-Hood.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2018-defensive-linux-kernel-runtime-guard-lkrg-under-the-hood-slides-video-51795527.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Runtime Guard (LKRG) under the hood · slides, [video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Linux Kernel Runtime Guard (LKRG) under the hood resource_label: slides, [video resource_type: slides resource_url: https://www.youtube.com/watch?v=tOiPM692DOM parent_primary_url: https://www.openwall.com/presentations/CONFidence2018-LKRG-Under-The-Hood/CONFidence2018-LKRG-Under-The-Hood.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"Linux Kernel Runtime Guard (LKRG) under the hood\" by Adam Zabrocki at CONFidence](https://www.openwall.com/presentations/CONFidence2018-LKRG-Under-The-Hood/CONFidence2018-LKRG-Under-The-Hood.pdf) [slides, [video](https://www.youtube.com/watch?v=tOiPM692DOM)] cves: none android_impact_status: no android_impact_reason: Not enough ",
      "link_types": [
        "paper",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.openwall.com/presentations/CONFidence2018-LKRG-Under-The-Hood/CONFidence2018-LKRG-Under-The-Hood.pdf"
        },
        {
          "label": "slides, [video",
          "type": "slides",
          "url": "https://www.youtube.com/watch?v=tOiPM692DOM"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.openwall.com/presentations/CONFidence2018-LKRG-Under-The-Hood/CONFidence2018-LKRG-Under-The-Hood.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides, [video",
            "type": "slides",
            "url": "https://www.youtube.com/watch?v=tOiPM692DOM"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "defensive"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Linux Kernel Runtime Guard (LKRG) provides defensive measures against kernel vulnerabilities.",
      "summary_zh": "Linux内核运行时保护（LKRG）提供了针对内核漏洞的防御措施。",
      "source_markdown": "[2018: \"Linux Kernel Runtime Guard (LKRG) under the hood\" by Adam Zabrocki at CONFidence](https://www.openwall.com/presentations/CONFidence2018-LKRG-Under-The-Hood/CONFidence2018-LKRG-Under-The-Hood.pdf) [slides, [video](https://www.youtube.com/watch?v=tOiPM692DOM)]",
      "search_text": "linux kernel runtime guard (lkrg) under the hood · slides, [video linux kernel runtime guard (lkrg) under the hood adam zabrocki at confidence   defensive  defensive slides, [video slides https://www.youtube.com/watch?v=toipm692dom defensive  defensive linux kernel runtime guard (lkrg) provides defensive measures against kernel vulnerabilities. linux内核运行时保护（lkrg）提供了针对内核漏洞的防御措施。 # linux kernel runtime guard (lkrg) under the hood · slides, [video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: linux kernel runtime guard (lkrg) under the hood resource_label: slides, [video resource_type: slides resource_url: https://www.youtube.com/watch?v=toipm692dom parent_primary_url: https://www.openwall.com/presentations/confidence2018-lkrg-under-the-hood/confidence2018-lkrg-under-the-hood.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"linux kernel runtime guard (lkrg) under the hood\" by adam zabrocki at confidence](https://www.openwall.com/presentations/confidence2018-lkrg-under-the-hood/confidence2018-lkrg-under-the-hood.pdf) [slides, [video](https://www.youtube.com/watch?v=toipm692dom)] cves: none android_impact_status: no android_impact_reason: not enough  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d28df07d65c51a42",
      "item_id": "750f50db5b259ee0",
      "slug": "2018-defensive-guardion-practical-mitigation-of-dma-based-rowhammer-attacks-on-arm-primary-bb94e64a",
      "year": 2018,
      "title": "GuardION: Practical Mitigation of DMA-based Rowhammer Attacks on ARM",
      "item_title": "GuardION: Practical Mitigation of DMA-based Rowhammer Attacks on ARM",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://vvdveen.com/publications/dimva2018.pdf",
      "primary_url": "https://vvdveen.com/publications/dimva2018.pdf",
      "parent_primary_url": "https://vvdveen.com/publications/dimva2018.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2018-defensive-guardion-practical-mitigation-of-dma-based-rowhammer-attacks-on-arm-primary-bb94e64a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# GuardION: Practical Mitigation of DMA-based Rowhammer Attacks on ARM record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: GuardION: Practical Mitigation of DMA-based Rowhammer Attacks on ARM resource_label: primary resource_type: paper resource_url: https://vvdveen.com/publications/dimva2018.pdf parent_primary_url: https://vvdveen.com/publications/dimva2018.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"GuardION: Practical Mitigation of DMA-based Rowhammer Attacks on ARM\"](https://vvdveen.com/publications/dimva2018.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: fa",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://vvdveen.com/publications/dimva2018.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://vvdveen.com/publications/dimva2018.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Rowhammer",
        "ARM",
        "Mitigation"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "This paper presents a practical mitigation for DMA-based Rowhammer attacks on ARM.",
      "summary_zh": "本文提出了一种针对ARM的基于DMA的Rowhammer攻击的实用缓解措施。",
      "source_markdown": "[2018: \"GuardION: Practical Mitigation of DMA-based Rowhammer Attacks on ARM\"](https://vvdveen.com/publications/dimva2018.pdf) [paper]",
      "search_text": "guardion: practical mitigation of dma-based rowhammer attacks on arm guardion: practical mitigation of dma-based rowhammer attacks on arm    defensive  defensive primary paper https://vvdveen.com/publications/dimva2018.pdf rowhammer arm mitigation  defensive research this paper presents a practical mitigation for dma-based rowhammer attacks on arm. 本文提出了一种针对arm的基于dma的rowhammer攻击的实用缓解措施。 # guardion: practical mitigation of dma-based rowhammer attacks on arm record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: guardion: practical mitigation of dma-based rowhammer attacks on arm resource_label: primary resource_type: paper resource_url: https://vvdveen.com/publications/dimva2018.pdf parent_primary_url: https://vvdveen.com/publications/dimva2018.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"guardion: practical mitigation of dma-based rowhammer attacks on arm\"](https://vvdveen.com/publications/dimva2018.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: fa no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "22bf78da258e5ca2",
      "item_id": "32cd93823db35bcf",
      "slug": "2018-defensive-kr-x-comprehensive-kernel-protection-against-just-in-time-code-reuse-at-blackhat-primary-61ec8b",
      "year": 2018,
      "title": "kR^X: Comprehensive Kernel Protection Against Just-In-Time Code Reuse\" at BlackHat",
      "item_title": "kR^X: Comprehensive Kernel Protection Against Just-In-Time Code Reuse\" at BlackHat",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=L-3eCmZ8s3A",
      "primary_url": "https://www.youtube.com/watch?v=L-3eCmZ8s3A",
      "parent_primary_url": "https://www.youtube.com/watch?v=L-3eCmZ8s3A",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2018-defensive-kr-x-comprehensive-kernel-protection-against-just-in-time-code-reuse-at-blackhat-primary-61ec8b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# kR^X: Comprehensive Kernel Protection Against Just-In-Time Code Reuse\" at BlackHat record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: kR^X: Comprehensive Kernel Protection Against Just-In-Time Code Reuse\" at BlackHat resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=L-3eCmZ8s3A parent_primary_url: https://www.youtube.com/watch?v=L-3eCmZ8s3A source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"kR^X: Comprehensive Kernel Protection Against Just-In-Time Code Reuse\" at BlackHat](https://www.youtube.com/watch?v=L-3eCmZ8s3A) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=L-3eCmZ8s3A"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=L-3eCmZ8s3A"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Just-In-Time",
        "Kernel Protection"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "A video presentation on comprehensive kernel protection against Just-In-Time code reuse.",
      "summary_zh": "关于针对即时代码重用的全面内核保护的视频演示。",
      "source_markdown": "[2018: \"kR^X: Comprehensive Kernel Protection Against Just-In-Time Code Reuse\" at BlackHat](https://www.youtube.com/watch?v=L-3eCmZ8s3A) [video]",
      "search_text": "kr^x: comprehensive kernel protection against just-in-time code reuse\" at blackhat kr^x: comprehensive kernel protection against just-in-time code reuse\" at blackhat    defensive  defensive primary video https://www.youtube.com/watch?v=l-3ecmz8s3a just-in-time kernel protection  defensive research a video presentation on comprehensive kernel protection against just-in-time code reuse. 关于针对即时代码重用的全面内核保护的视频演示。 # kr^x: comprehensive kernel protection against just-in-time code reuse\" at blackhat record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: kr^x: comprehensive kernel protection against just-in-time code reuse\" at blackhat resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=l-3ecmz8s3a parent_primary_url: https://www.youtube.com/watch?v=l-3ecmz8s3a source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"kr^x: comprehensive kernel protection against just-in-time code reuse\" at blackhat](https://www.youtube.com/watch?v=l-3ecmz8s3a) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "58d50918638b92c8",
      "item_id": "96a7a36d6f64f550",
      "slug": "2018-defensive-kasr-a-reliable-and-practical-approach-to-attack-surface-reduction-of-commodity-os-kernels-prim",
      "year": 2018,
      "title": "KASR: A Reliable and Practical Approach to Attack Surface Reduction of Commodity OS Kernels",
      "item_title": "KASR: A Reliable and Practical Approach to Attack Surface Reduction of Commodity OS Kernels",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/1802.07062.pdf",
      "primary_url": "https://arxiv.org/pdf/1802.07062.pdf",
      "parent_primary_url": "https://arxiv.org/pdf/1802.07062.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2018-defensive-kasr-a-reliable-and-practical-approach-to-attack-surface-reduction-of-commodity-os-kernels-prim.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KASR: A Reliable and Practical Approach to Attack Surface Reduction of Commodity OS Kernels record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: KASR: A Reliable and Practical Approach to Attack Surface Reduction of Commodity OS Kernels resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/1802.07062.pdf parent_primary_url: https://arxiv.org/pdf/1802.07062.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"KASR: A Reliable and Practical Approach to Attack Surface Reduction of Commodity OS Kernels\"](https://arxiv.org/pdf/1802.07062.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/1802.07062.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/1802.07062.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Attack Surface Reduction",
        "Kernel Security"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "This paper proposes a reliable approach to attack surface reduction in commodity OS kernels.",
      "summary_zh": "本文提出了一种在商品操作系统内核中减少攻击面的方法。",
      "source_markdown": "[2018: \"KASR: A Reliable and Practical Approach to Attack Surface Reduction of Commodity OS Kernels\"](https://arxiv.org/pdf/1802.07062.pdf) [paper]",
      "search_text": "kasr: a reliable and practical approach to attack surface reduction of commodity os kernels kasr: a reliable and practical approach to attack surface reduction of commodity os kernels    defensive  defensive primary paper https://arxiv.org/pdf/1802.07062.pdf attack surface reduction kernel security  defensive research this paper proposes a reliable approach to attack surface reduction in commodity os kernels. 本文提出了一种在商品操作系统内核中减少攻击面的方法。 # kasr: a reliable and practical approach to attack surface reduction of commodity os kernels record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: kasr: a reliable and practical approach to attack surface reduction of commodity os kernels resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/1802.07062.pdf parent_primary_url: https://arxiv.org/pdf/1802.07062.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"kasr: a reliable and practical approach to attack surface reduction of commodity os kernels\"](https://arxiv.org/pdf/1802.07062.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7e748a8db39be233",
      "item_id": "ea522fecbb5e5af5",
      "slug": "2018-defensive-the-state-of-kernel-self-protection-primary-0a4b565b",
      "year": 2018,
      "title": "The State of Kernel Self Protection",
      "item_title": "The State of Kernel Self Protection",
      "authors": [
        "Kees Cook at Linux Conf AU"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://outflux.net/slides/2018/lca/kspp.pdf",
      "primary_url": "https://outflux.net/slides/2018/lca/kspp.pdf",
      "parent_primary_url": "https://outflux.net/slides/2018/lca/kspp.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2018-defensive-the-state-of-kernel-self-protection-primary-0a4b565b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The State of Kernel Self Protection record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: The State of Kernel Self Protection resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2018/lca/kspp.pdf parent_primary_url: https://outflux.net/slides/2018/lca/kspp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"The State of Kernel Self Protection\" by Kees Cook at Linux Conf AU](https://outflux.net/slides/2018/lca/kspp.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links:",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2018/lca/kspp.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2018/lca/kspp.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Kernel Self-Protection",
        "Kernel Security"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive Research",
      "summary_en": "Slides summarizing the state of kernel self-protection efforts presented at Linux Conf AU.",
      "summary_zh": "在Linux Conf AU上介绍的内核自我保护工作状态的幻灯片。",
      "source_markdown": "[2018: \"The State of Kernel Self Protection\" by Kees Cook at Linux Conf AU](https://outflux.net/slides/2018/lca/kspp.pdf) [slides]",
      "search_text": "the state of kernel self protection the state of kernel self protection kees cook at linux conf au   defensive  defensive primary slides https://outflux.net/slides/2018/lca/kspp.pdf kernel self-protection kernel security  defensive research slides summarizing the state of kernel self-protection efforts presented at linux conf au. 在linux conf au上介绍的内核自我保护工作状态的幻灯片。 # the state of kernel self protection record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: the state of kernel self protection resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2018/lca/kspp.pdf parent_primary_url: https://outflux.net/slides/2018/lca/kspp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2018: \"the state of kernel self protection\" by kees cook at linux conf au](https://outflux.net/slides/2018/lca/kspp.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2751fc6c65a0b0cc",
      "item_id": "5cd78e04c126e1a6",
      "slug": "2017-defensive-kr-x-comprehensive-kernel-protection-against-just-in-time-code-reuse-primary-5e8e894a",
      "year": 2017,
      "title": "kR^X: Comprehensive Kernel Protection against Just-In-Time Code Reuse",
      "item_title": "kR^X: Comprehensive Kernel Protection against Just-In-Time Code Reuse",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://cs.brown.edu/~vpk/papers/krx.eurosys17.pdf",
      "primary_url": "https://cs.brown.edu/~vpk/papers/krx.eurosys17.pdf",
      "parent_primary_url": "https://cs.brown.edu/~vpk/papers/krx.eurosys17.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2017-defensive-kr-x-comprehensive-kernel-protection-against-just-in-time-code-reuse-primary-5e8e894a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# kR^X: Comprehensive Kernel Protection against Just-In-Time Code Reuse record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: kR^X: Comprehensive Kernel Protection against Just-In-Time Code Reuse resource_label: primary resource_type: paper resource_url: https://cs.brown.edu/~vpk/papers/krx.eurosys17.pdf parent_primary_url: https://cs.brown.edu/~vpk/papers/krx.eurosys17.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"kR^X: Comprehensive Kernel Protection against Just-In-Time Code Reuse\"](https://cs.brown.edu/~vpk/papers/krx.eurosys17.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linu",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://cs.brown.edu/~vpk/papers/krx.eurosys17.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://cs.brown.edu/~vpk/papers/krx.eurosys17.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_protection",
        "JIT",
        "defensive_research"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "kR^X provides a comprehensive approach to protect the kernel against Just-In-Time code reuse attacks.",
      "summary_zh": "kR^X提供了一种全面的方法来保护内核免受即时代码重用攻击。",
      "source_markdown": "[2017: \"kR^X: Comprehensive Kernel Protection against Just-In-Time Code Reuse\"](https://cs.brown.edu/~vpk/papers/krx.eurosys17.pdf) [paper]",
      "search_text": "kr^x: comprehensive kernel protection against just-in-time code reuse kr^x: comprehensive kernel protection against just-in-time code reuse    defensive  defensive primary paper https://cs.brown.edu/~vpk/papers/krx.eurosys17.pdf kernel_protection jit defensive_research  defensive research kr^x provides a comprehensive approach to protect the kernel against just-in-time code reuse attacks. kr^x提供了一种全面的方法来保护内核免受即时代码重用攻击。 # kr^x: comprehensive kernel protection against just-in-time code reuse record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: kr^x: comprehensive kernel protection against just-in-time code reuse resource_label: primary resource_type: paper resource_url: https://cs.brown.edu/~vpk/papers/krx.eurosys17.pdf parent_primary_url: https://cs.brown.edu/~vpk/papers/krx.eurosys17.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"kr^x: comprehensive kernel protection against just-in-time code reuse\"](https://cs.brown.edu/~vpk/papers/krx.eurosys17.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linu no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c591e6eeed4f306c",
      "item_id": "6c9a9c5945421289",
      "slug": "2017-defensive-how-stackleak-improves-linux-kernel-security-primary-8d36a34c",
      "year": 2017,
      "title": "How STACKLEAK improves Linux kernel security",
      "item_title": "How STACKLEAK improves Linux kernel security",
      "authors": [
        "Alexander Popov at Linux Piter"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://linuxpiter.com/system/attachments/files/000/001/376/original/Alexander_Popov_LinuxPiter2017.pdf",
      "primary_url": "https://linuxpiter.com/system/attachments/files/000/001/376/original/Alexander_Popov_LinuxPiter2017.pdf",
      "parent_primary_url": "https://linuxpiter.com/system/attachments/files/000/001/376/original/Alexander_Popov_LinuxPiter2017.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2017-defensive-how-stackleak-improves-linux-kernel-security-primary-8d36a34c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# How STACKLEAK improves Linux kernel security record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: How STACKLEAK improves Linux kernel security resource_label: primary resource_type: slides resource_url: https://linuxpiter.com/system/attachments/files/000/001/376/original/Alexander_Popov_LinuxPiter2017.pdf parent_primary_url: https://linuxpiter.com/system/attachments/files/000/001/376/original/Alexander_Popov_LinuxPiter2017.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"How STACKLEAK improves Linux kernel security\" by Alexander Popov at Linux Piter](https://linuxpiter.com/system/attachments/files/000/001/376/original/Alexander_Popov_LinuxPiter2017.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released ",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://linuxpiter.com/system/attachments/files/000/001/376/original/Alexander_Popov_LinuxPiter2017.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://linuxpiter.com/system/attachments/files/000/001/376/original/Alexander_Popov_LinuxPiter2017.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory_safety",
        "kernel_security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "STACKLEAK enhances Linux kernel security by preventing stack memory disclosure.",
      "summary_zh": "STACKLEAK通过防止堆栈内存泄露来增强Linux内核安全性。",
      "source_markdown": "[2017: \"How STACKLEAK improves Linux kernel security\" by Alexander Popov at Linux Piter](https://linuxpiter.com/system/attachments/files/000/001/376/original/Alexander_Popov_LinuxPiter2017.pdf) [slides]",
      "search_text": "how stackleak improves linux kernel security how stackleak improves linux kernel security alexander popov at linux piter   defensive  defensive primary slides https://linuxpiter.com/system/attachments/files/000/001/376/original/alexander_popov_linuxpiter2017.pdf memory_safety kernel_security  defensive research stackleak enhances linux kernel security by preventing stack memory disclosure. stackleak通过防止堆栈内存泄露来增强linux内核安全性。 # how stackleak improves linux kernel security record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: how stackleak improves linux kernel security resource_label: primary resource_type: slides resource_url: https://linuxpiter.com/system/attachments/files/000/001/376/original/alexander_popov_linuxpiter2017.pdf parent_primary_url: https://linuxpiter.com/system/attachments/files/000/001/376/original/alexander_popov_linuxpiter2017.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"how stackleak improves linux kernel security\" by alexander popov at linux piter](https://linuxpiter.com/system/attachments/files/000/001/376/original/alexander_popov_linuxpiter2017.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "16a0ba0441b12a70",
      "item_id": "e47e7372cbfa2f5d",
      "slug": "2017-defensive-shadow-box-the-practical-and-omnipotent-sandbox-primary-7473104a",
      "year": 2017,
      "title": "Shadow-Box: The Practical and Omnipotent Sandbox",
      "item_title": "Shadow-Box: The Practical and Omnipotent Sandbox",
      "authors": [
        "Seunghun Han at HitB"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "http://conference.hitb.org/hitbsecconf2017ams/materials/D1T2%20-%20Seunghun%20Han%20-%20Shadow-Box%20-%20The%20Practical%20and%20Omnipotent%20Sandbox.pdf",
      "primary_url": "http://conference.hitb.org/hitbsecconf2017ams/materials/D1T2%20-%20Seunghun%20Han%20-%20Shadow-Box%20-%20The%20Practical%20and%20Omnipotent%20Sandbox.pdf",
      "parent_primary_url": "http://conference.hitb.org/hitbsecconf2017ams/materials/D1T2%20-%20Seunghun%20Han%20-%20Shadow-Box%20-%20The%20Practical%20and%20Omnipotent%20Sandbox.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2017-defensive-shadow-box-the-practical-and-omnipotent-sandbox-primary-7473104a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Shadow-Box: The Practical and Omnipotent Sandbox record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Shadow-Box: The Practical and Omnipotent Sandbox resource_label: primary resource_type: slides resource_url: http://conference.hitb.org/hitbsecconf2017ams/materials/D1T2%20-%20Seunghun%20Han%20-%20Shadow-Box%20-%20The%20Practical%20and%20Omnipotent%20Sandbox.pdf parent_primary_url: http://conference.hitb.org/hitbsecconf2017ams/materials/D1T2%20-%20Seunghun%20Han%20-%20Shadow-Box%20-%20The%20Practical%20and%20Omnipotent%20Sandbox.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"Shadow-Box: The Practical and Omnipotent Sandbox\" by Seunghun Han at HitB](http://conference.hitb.org/hitbsecconf2017ams/materials/D1T2%20-%20Seunghun%20Han%20-%20Shadow-Box%20-%20The%20Practical%20and%2",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "http://conference.hitb.org/hitbsecconf2017ams/materials/D1T2%20-%20Seunghun%20Han%20-%20Shadow-Box%20-%20The%20Practical%20and%20Omnipotent%20Sandbox.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "http://conference.hitb.org/hitbsecconf2017ams/materials/D1T2%20-%20Seunghun%20Han%20-%20Shadow-Box%20-%20The%20Practical%20and%20Omnipotent%20Sandbox.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "sandboxing",
        "kernel_security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Shadow-Box introduces a versatile sandboxing solution for kernel security.",
      "summary_zh": "Shadow-Box为内核安全引入了一种多功能的沙箱解决方案。",
      "source_markdown": "[2017: \"Shadow-Box: The Practical and Omnipotent Sandbox\" by Seunghun Han at HitB](http://conference.hitb.org/hitbsecconf2017ams/materials/D1T2%20-%20Seunghun%20Han%20-%20Shadow-Box%20-%20The%20Practical%20and%20Omnipotent%20Sandbox.pdf) [slides]",
      "search_text": "shadow-box: the practical and omnipotent sandbox shadow-box: the practical and omnipotent sandbox seunghun han at hitb   defensive  defensive primary slides http://conference.hitb.org/hitbsecconf2017ams/materials/d1t2%20-%20seunghun%20han%20-%20shadow-box%20-%20the%20practical%20and%20omnipotent%20sandbox.pdf sandboxing kernel_security  defensive research shadow-box introduces a versatile sandboxing solution for kernel security. shadow-box为内核安全引入了一种多功能的沙箱解决方案。 # shadow-box: the practical and omnipotent sandbox record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: shadow-box: the practical and omnipotent sandbox resource_label: primary resource_type: slides resource_url: http://conference.hitb.org/hitbsecconf2017ams/materials/d1t2%20-%20seunghun%20han%20-%20shadow-box%20-%20the%20practical%20and%20omnipotent%20sandbox.pdf parent_primary_url: http://conference.hitb.org/hitbsecconf2017ams/materials/d1t2%20-%20seunghun%20han%20-%20shadow-box%20-%20the%20practical%20and%20omnipotent%20sandbox.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"shadow-box: the practical and omnipotent sandbox\" by seunghun han at hitb](http://conference.hitb.org/hitbsecconf2017ams/materials/d1t2%20-%20seunghun%20han%20-%20shadow-box%20-%20the%20practical%20and%2 no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "091912d4b0c9ac81",
      "item_id": "af935524f77f1dc6",
      "slug": "2017-defensive-towards-linux-kernel-memory-safety-primary-532cef0f",
      "year": 2017,
      "title": "Towards Linux Kernel Memory Safety",
      "item_title": "Towards Linux Kernel Memory Safety",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/1710.06175.pdf",
      "primary_url": "https://arxiv.org/pdf/1710.06175.pdf",
      "parent_primary_url": "https://arxiv.org/pdf/1710.06175.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2017-defensive-towards-linux-kernel-memory-safety-primary-532cef0f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Towards Linux Kernel Memory Safety record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Towards Linux Kernel Memory Safety resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/1710.06175.pdf parent_primary_url: https://arxiv.org/pdf/1710.06175.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"Towards Linux Kernel Memory Safety\"](https://arxiv.org/pdf/1710.06175.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [paper] primary: https://arxiv.org/pdf/1710.06175.pdf fe",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/1710.06175.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/1710.06175.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory_safety",
        "kernel_security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper discusses approaches towards achieving memory safety in the Linux kernel.",
      "summary_zh": "本文讨论了实现Linux内核内存安全的方法。",
      "source_markdown": "[2017: \"Towards Linux Kernel Memory Safety\"](https://arxiv.org/pdf/1710.06175.pdf) [paper]",
      "search_text": "towards linux kernel memory safety towards linux kernel memory safety    defensive  defensive primary paper https://arxiv.org/pdf/1710.06175.pdf memory_safety kernel_security  defensive research this paper discusses approaches towards achieving memory safety in the linux kernel. 本文讨论了实现linux内核内存安全的方法。 # towards linux kernel memory safety record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: towards linux kernel memory safety resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/1710.06175.pdf parent_primary_url: https://arxiv.org/pdf/1710.06175.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"towards linux kernel memory safety\"](https://arxiv.org/pdf/1710.06175.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [paper] primary: https://arxiv.org/pdf/1710.06175.pdf fe no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "212652f09ad632d7",
      "item_id": "c9bfdd22c502deea",
      "slug": "2017-defensive-proposal-of-a-method-to-prevent-privilege-escalation-attacks-for-linux-kernel-primary-db5bcefc",
      "year": 2017,
      "title": "Proposal of a Method to Prevent Privilege Escalation Attacks for Linux Kernel",
      "item_title": "Proposal of a Method to Prevent Privilege Escalation Attacks for Linux Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://events.linuxfoundation.org/sites/events/files/slides/nakamura_20170831_1.pdf",
      "primary_url": "https://events.linuxfoundation.org/sites/events/files/slides/nakamura_20170831_1.pdf",
      "parent_primary_url": "https://events.linuxfoundation.org/sites/events/files/slides/nakamura_20170831_1.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2017-defensive-proposal-of-a-method-to-prevent-privilege-escalation-attacks-for-linux-kernel-primary-db5bcefc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Proposal of a Method to Prevent Privilege Escalation Attacks for Linux Kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Proposal of a Method to Prevent Privilege Escalation Attacks for Linux Kernel resource_label: primary resource_type: slides resource_url: https://events.linuxfoundation.org/sites/events/files/slides/nakamura_20170831_1.pdf parent_primary_url: https://events.linuxfoundation.org/sites/events/files/slides/nakamura_20170831_1.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"Proposal of a Method to Prevent Privilege Escalation Attacks for Linux Kernel\"](https://events.linuxfoundation.org/sites/events/files/slides/nakamura_20170831_1.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to r",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://events.linuxfoundation.org/sites/events/files/slides/nakamura_20170831_1.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://events.linuxfoundation.org/sites/events/files/slides/nakamura_20170831_1.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "privilege_escalation",
        "kernel_security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This proposal outlines a method to prevent privilege escalation attacks in the Linux kernel.",
      "summary_zh": "该提案概述了一种防止Linux内核特权提升攻击的方法。",
      "source_markdown": "[2017: \"Proposal of a Method to Prevent Privilege Escalation Attacks for Linux Kernel\"](https://events.linuxfoundation.org/sites/events/files/slides/nakamura_20170831_1.pdf) [slides]",
      "search_text": "proposal of a method to prevent privilege escalation attacks for linux kernel proposal of a method to prevent privilege escalation attacks for linux kernel    defensive  defensive primary slides https://events.linuxfoundation.org/sites/events/files/slides/nakamura_20170831_1.pdf privilege_escalation kernel_security  defensive research this proposal outlines a method to prevent privilege escalation attacks in the linux kernel. 该提案概述了一种防止linux内核特权提升攻击的方法。 # proposal of a method to prevent privilege escalation attacks for linux kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: proposal of a method to prevent privilege escalation attacks for linux kernel resource_label: primary resource_type: slides resource_url: https://events.linuxfoundation.org/sites/events/files/slides/nakamura_20170831_1.pdf parent_primary_url: https://events.linuxfoundation.org/sites/events/files/slides/nakamura_20170831_1.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"proposal of a method to prevent privilege escalation attacks for linux kernel\"](https://events.linuxfoundation.org/sites/events/files/slides/nakamura_20170831_1.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to r no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7ba9230360310bba",
      "item_id": "077af49f5620e2ef",
      "slug": "2017-defensive-linux-kernel-self-protection-project-primary-4557e8d4",
      "year": 2017,
      "title": "Linux Kernel Self Protection Project",
      "item_title": "Linux Kernel Self Protection Project",
      "authors": [
        "Kees Cook"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://outflux.net/slides/2017/lss/kspp.pdf",
      "primary_url": "https://outflux.net/slides/2017/lss/kspp.pdf",
      "parent_primary_url": "https://outflux.net/slides/2017/lss/kspp.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2017-defensive-linux-kernel-self-protection-project-primary-4557e8d4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Self Protection Project record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Linux Kernel Self Protection Project resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2017/lss/kspp.pdf parent_primary_url: https://outflux.net/slides/2017/lss/kspp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"Linux Kernel Self Protection Project\" by Kees Cook](https://outflux.net/slides/2017/lss/kspp.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [slides] pr",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://outflux.net/slides/2017/lss/kspp.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://outflux.net/slides/2017/lss/kspp.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_protection",
        "defensive_research"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "The Linux Kernel Self Protection Project aims to enhance kernel security through various techniques.",
      "summary_zh": "Linux内核自我保护项目旨在通过各种技术增强内核安全性。",
      "source_markdown": "[2017: \"Linux Kernel Self Protection Project\" by Kees Cook](https://outflux.net/slides/2017/lss/kspp.pdf) [slides]",
      "search_text": "linux kernel self protection project linux kernel self protection project kees cook   defensive  defensive primary slides https://outflux.net/slides/2017/lss/kspp.pdf kernel_protection defensive_research  defensive research the linux kernel self protection project aims to enhance kernel security through various techniques. linux内核自我保护项目旨在通过各种技术增强内核安全性。 # linux kernel self protection project record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: linux kernel self protection project resource_label: primary resource_type: slides resource_url: https://outflux.net/slides/2017/lss/kspp.pdf parent_primary_url: https://outflux.net/slides/2017/lss/kspp.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"linux kernel self protection project\" by kees cook](https://outflux.net/slides/2017/lss/kspp.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [slides] pr no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5d090ae62a567bc1",
      "item_id": "9ce74f02746e3d74",
      "slug": "2017-defensive-pt-rand-practical-mitigation-of-data-only-attacks-against-page-tables-primary-fba8c012",
      "year": 2017,
      "title": "PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables",
      "item_title": "PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf",
      "primary_url": "https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf",
      "parent_primary_url": "https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2017-defensive-pt-rand-practical-mitigation-of-data-only-attacks-against-page-tables-primary-fba8c012.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables resource_label: primary resource_type: paper resource_url: https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf parent_primary_url: https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables\"](https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05B-4-liebchen_slides.pdf)] [[video](https://www.youtube.com/wa",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05B-4-liebchen_slides.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=l-ou5LqOOy4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05B-4-liebchen_slides.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=l-ou5LqOOy4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory_safety",
        "data_protection"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "PT-Rand proposes a practical mitigation strategy against data-only attacks on page tables.",
      "summary_zh": "PT-Rand提出了一种针对页面表数据攻击的实用缓解策略。",
      "source_markdown": "[2017: \"PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables\"](https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05B-4-liebchen_slides.pdf)] [[video](https://www.youtube.com/watch?v=l-ou5LqOOy4)]",
      "search_text": "pt-rand: practical mitigation of data-only attacks against page tables pt-rand: practical mitigation of data-only attacks against page tables    defensive  defensive primary paper https://www.internetsociety.org/sites/default/files/ndss2017_05b-4_davi_paper.pdf memory_safety data_protection  defensive research pt-rand proposes a practical mitigation strategy against data-only attacks on page tables. pt-rand提出了一种针对页面表数据攻击的实用缓解策略。 # pt-rand: practical mitigation of data-only attacks against page tables record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: pt-rand: practical mitigation of data-only attacks against page tables resource_label: primary resource_type: paper resource_url: https://www.internetsociety.org/sites/default/files/ndss2017_05b-4_davi_paper.pdf parent_primary_url: https://www.internetsociety.org/sites/default/files/ndss2017_05b-4_davi_paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"pt-rand: practical mitigation of data-only attacks against page tables\"](https://www.internetsociety.org/sites/default/files/ndss2017_05b-4_davi_paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05b-4-liebchen_slides.pdf)] [[video](https://www.youtube.com/wa no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "173a7e8f129adb59",
      "item_id": "9ce74f02746e3d74",
      "slug": "2017-defensive-pt-rand-practical-mitigation-of-data-only-attacks-against-page-tables-slides-9b5dca23",
      "year": 2017,
      "title": "PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables · slides",
      "item_title": "PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05B-4-liebchen_slides.pdf",
      "primary_url": "https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05B-4-liebchen_slides.pdf",
      "parent_primary_url": "https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2017-defensive-pt-rand-practical-mitigation-of-data-only-attacks-against-page-tables-slides-9b5dca23.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables · slides record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables resource_label: slides resource_type: slides resource_url: https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05B-4-liebchen_slides.pdf parent_primary_url: https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables\"](https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05B-4-liebchen_slides.pdf)] [[video](https:",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05B-4-liebchen_slides.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=l-ou5LqOOy4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05B-4-liebchen_slides.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=l-ou5LqOOy4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KASLR",
        "kernel_security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This presentation discusses the implications of KASLR and its effectiveness in kernel security.",
      "summary_zh": "本演示讨论了KASLR的影响及其在内核安全中的有效性。",
      "source_markdown": "[2017: \"PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables\"](https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05B-4-liebchen_slides.pdf)] [[video](https://www.youtube.com/watch?v=l-ou5LqOOy4)]",
      "search_text": "pt-rand: practical mitigation of data-only attacks against page tables · slides pt-rand: practical mitigation of data-only attacks against page tables    defensive  defensive slides slides https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05b-4-liebchen_slides.pdf kaslr kernel_security  defensive research this presentation discusses the implications of kaslr and its effectiveness in kernel security. 本演示讨论了kaslr的影响及其在内核安全中的有效性。 # pt-rand: practical mitigation of data-only attacks against page tables · slides record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: pt-rand: practical mitigation of data-only attacks against page tables resource_label: slides resource_type: slides resource_url: https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05b-4-liebchen_slides.pdf parent_primary_url: https://www.internetsociety.org/sites/default/files/ndss2017_05b-4_davi_paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"pt-rand: practical mitigation of data-only attacks against page tables\"](https://www.internetsociety.org/sites/default/files/ndss2017_05b-4_davi_paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05b-4-liebchen_slides.pdf)] [[video](https: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "740e0891234cde4d",
      "item_id": "9ce74f02746e3d74",
      "slug": "2017-defensive-pt-rand-practical-mitigation-of-data-only-attacks-against-page-tables-video-64aa35f0",
      "year": 2017,
      "title": "PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables · video",
      "item_title": "PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=l-ou5LqOOy4",
      "primary_url": "https://www.youtube.com/watch?v=l-ou5LqOOy4",
      "parent_primary_url": "https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2017-defensive-pt-rand-practical-mitigation-of-data-only-attacks-against-page-tables-video-64aa35f0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables · video record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=l-ou5LqOOy4 parent_primary_url: https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables\"](https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05B-4-liebchen_slides.pdf)] [[video](https://www.youtube.com/watch?v=l-ou5LqOOy4)] cves: none a",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05B-4-liebchen_slides.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=l-ou5LqOOy4"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05B-4-liebchen_slides.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=l-ou5LqOOy4"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Defensive",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive",
      "summary_en": "2017 Linux kernel Defensive resource \"PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables · video\"; URL type: video.",
      "summary_zh": "2017 年 Linux 内核Defensive资料：「PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables · video」；URL 类型：video。",
      "source_markdown": "[2017: \"PT-Rand: Practical Mitigation of Data-only Attacks against Page Tables\"](https://www.internetsociety.org/sites/default/files/ndss2017_05B-4_Davi_paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05B-4-liebchen_slides.pdf)] [[video](https://www.youtube.com/watch?v=l-ou5LqOOy4)]",
      "search_text": "pt-rand: practical mitigation of data-only attacks against page tables · video pt-rand: practical mitigation of data-only attacks against page tables    defensive  defensive video video https://www.youtube.com/watch?v=l-ou5lqooy4 defensive video  defensive 2017 linux kernel defensive resource \"pt-rand: practical mitigation of data-only attacks against page tables · video\"; url type: video. 2017 年 linux 内核defensive资料：「pt-rand: practical mitigation of data-only attacks against page tables · video」；url 类型：video。 # pt-rand: practical mitigation of data-only attacks against page tables · video record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: pt-rand: practical mitigation of data-only attacks against page tables resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=l-ou5lqooy4 parent_primary_url: https://www.internetsociety.org/sites/default/files/ndss2017_05b-4_davi_paper.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"pt-rand: practical mitigation of data-only attacks against page tables\"](https://www.internetsociety.org/sites/default/files/ndss2017_05b-4_davi_paper.pdf) [paper] [[slides](https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017-05b-4-liebchen_slides.pdf)] [[video](https://www.youtube.com/watch?v=l-ou5lqooy4)] cves: none a no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "21ff72807805277d",
      "item_id": "5d5b918b11055c05",
      "slug": "2017-defensive-kaslr-is-dead-long-live-kaslr-primary-9736f37a",
      "year": 2017,
      "title": "KASLR is Dead: Long Live KASLR",
      "item_title": "KASLR is Dead: Long Live KASLR",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://gruss.cc/files/kaiser.pdf",
      "primary_url": "https://gruss.cc/files/kaiser.pdf",
      "parent_primary_url": "https://gruss.cc/files/kaiser.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2017-defensive-kaslr-is-dead-long-live-kaslr-primary-9736f37a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KASLR is Dead: Long Live KASLR record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: KASLR is Dead: Long Live KASLR resource_label: primary resource_type: paper resource_url: https://gruss.cc/files/kaiser.pdf parent_primary_url: https://gruss.cc/files/kaiser.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"KASLR is Dead: Long Live KASLR\"](https://gruss.cc/files/kaiser.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [paper] primary: https://gruss.cc/files/kaiser.pdf fetch_status: skipped fetc",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://gruss.cc/files/kaiser.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://gruss.cc/files/kaiser.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Defensive",
        "paper"
      ],
      "affected_area": "",
      "exploit_stage": "Defensive",
      "summary_en": "2017 Linux kernel Defensive resource \"KASLR is Dead: Long Live KASLR\"; URL type: paper.",
      "summary_zh": "2017 年 Linux 内核Defensive资料：「KASLR is Dead: Long Live KASLR」；URL 类型：paper。",
      "source_markdown": "[2017: \"KASLR is Dead: Long Live KASLR\"](https://gruss.cc/files/kaiser.pdf) [paper]",
      "search_text": "kaslr is dead: long live kaslr kaslr is dead: long live kaslr    defensive  defensive primary paper https://gruss.cc/files/kaiser.pdf defensive paper  defensive 2017 linux kernel defensive resource \"kaslr is dead: long live kaslr\"; url type: paper. 2017 年 linux 内核defensive资料：「kaslr is dead: long live kaslr」；url 类型：paper。 # kaslr is dead: long live kaslr record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: kaslr is dead: long live kaslr resource_label: primary resource_type: paper resource_url: https://gruss.cc/files/kaiser.pdf parent_primary_url: https://gruss.cc/files/kaiser.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"kaslr is dead: long live kaslr\"](https://gruss.cc/files/kaiser.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [paper] primary: https://gruss.cc/files/kaiser.pdf fetch_status: skipped fetc no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7d0ca5baf06a2e6e",
      "item_id": "4935784cd3bc0db9",
      "slug": "2017-defensive-honey-i-shrunk-the-attack-surface-adventures-in-android-security-hardening-primary-005a6c02",
      "year": 2017,
      "title": "Honey, I shrunk the attack surface – Adventures in Android security hardening",
      "item_title": "Honey, I shrunk the attack surface – Adventures in Android security hardening",
      "authors": [
        "Nick Kralevich"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=ITL6VHOFQj8",
      "primary_url": "https://www.youtube.com/watch?v=ITL6VHOFQj8",
      "parent_primary_url": "https://www.youtube.com/watch?v=ITL6VHOFQj8",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2017-defensive-honey-i-shrunk-the-attack-surface-adventures-in-android-security-hardening-primary-005a6c02.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Honey, I shrunk the attack surface – Adventures in Android security hardening record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Honey, I shrunk the attack surface – Adventures in Android security hardening resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=ITL6VHOFQj8 parent_primary_url: https://www.youtube.com/watch?v=ITL6VHOFQj8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"Honey, I shrunk the attack surface – Adventures in Android security hardening\" by Nick Kralevich](https://www.youtube.com/watch?v=ITL6VHOFQj8) [video] cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Pr",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=ITL6VHOFQj8"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=ITL6VHOFQj8"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "android_security",
        "hardening"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This video explores security hardening techniques applied to Android systems.",
      "summary_zh": "该视频探讨了应用于Android系统的安全加固技术。",
      "source_markdown": "[2017: \"Honey, I shrunk the attack surface – Adventures in Android security hardening\" by Nick Kralevich](https://www.youtube.com/watch?v=ITL6VHOFQj8) [video]",
      "search_text": "honey, i shrunk the attack surface – adventures in android security hardening honey, i shrunk the attack surface – adventures in android security hardening nick kralevich   defensive  defensive primary video https://www.youtube.com/watch?v=itl6vhofqj8 android_security hardening  defensive research this video explores security hardening techniques applied to android systems. 该视频探讨了应用于android系统的安全加固技术。 # honey, i shrunk the attack surface – adventures in android security hardening record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: honey, i shrunk the attack surface – adventures in android security hardening resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=itl6vhofqj8 parent_primary_url: https://www.youtube.com/watch?v=itl6vhofqj8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"honey, i shrunk the attack surface – adventures in android security hardening\" by nick kralevich](https://www.youtube.com/watch?v=itl6vhofqj8) [video] cves: none android_impact_status: unknown android_impact_reason: mentions android; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: pr unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "3fe46e88219f1266",
      "item_id": "355b4eb68fbfe5cf",
      "slug": "2017-defensive-fine-grained-control-flow-integrity-for-the-linux-kernel-primary-eb6672a8",
      "year": 2017,
      "title": "Fine Grained Control-Flow Integrity for The Linux Kernel",
      "item_title": "Fine Grained Control-Flow Integrity for The Linux Kernel",
      "authors": [
        "Sandro Rigo",
        "Michalis Polychronakis",
        "Vasileios Kemerlis"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.blackhat.com/docs/asia-17/materials/asia-17-Moreira-Drop-The-Rop-Fine-Grained-Control-Flow-Integrity-For-The-Linux-Kernel.pdf",
      "primary_url": "https://www.blackhat.com/docs/asia-17/materials/asia-17-Moreira-Drop-The-Rop-Fine-Grained-Control-Flow-Integrity-For-The-Linux-Kernel.pdf",
      "parent_primary_url": "https://www.blackhat.com/docs/asia-17/materials/asia-17-Moreira-Drop-The-Rop-Fine-Grained-Control-Flow-Integrity-For-The-Linux-Kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2017-defensive-fine-grained-control-flow-integrity-for-the-linux-kernel-primary-eb6672a8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fine Grained Control-Flow Integrity for The Linux Kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Fine Grained Control-Flow Integrity for The Linux Kernel resource_label: primary resource_type: slides resource_url: https://www.blackhat.com/docs/asia-17/materials/asia-17-Moreira-Drop-The-Rop-Fine-Grained-Control-Flow-Integrity-For-The-Linux-Kernel.pdf parent_primary_url: https://www.blackhat.com/docs/asia-17/materials/asia-17-Moreira-Drop-The-Rop-Fine-Grained-Control-Flow-Integrity-For-The-Linux-Kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"Fine Grained Control-Flow Integrity for The Linux Kernel\" by Sandro Rigo, Michalis Polychronakis, Vasileios Kemerlis](https://www.blackhat.com/docs/asia-17/materials/asia-17-Moreira-Drop-The-Rop-Fine-Grained-Control-Flo",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.blackhat.com/docs/asia-17/materials/asia-17-Moreira-Drop-The-Rop-Fine-Grained-Control-Flow-Integrity-For-The-Linux-Kernel.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.blackhat.com/docs/asia-17/materials/asia-17-Moreira-Drop-The-Rop-Fine-Grained-Control-Flow-Integrity-For-The-Linux-Kernel.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "control_flow_integrity",
        "kernel_security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Fine Grained Control-Flow Integrity aims to enhance control flow security in the Linux kernel.",
      "summary_zh": "细粒度控制流完整性旨在增强Linux内核中的控制流安全性。",
      "source_markdown": "[2017: \"Fine Grained Control-Flow Integrity for The Linux Kernel\" by Sandro Rigo, Michalis Polychronakis, Vasileios Kemerlis](https://www.blackhat.com/docs/asia-17/materials/asia-17-Moreira-Drop-The-Rop-Fine-Grained-Control-Flow-Integrity-For-The-Linux-Kernel.pdf) [slides]",
      "search_text": "fine grained control-flow integrity for the linux kernel fine grained control-flow integrity for the linux kernel sandro rigo michalis polychronakis vasileios kemerlis   defensive  defensive primary slides https://www.blackhat.com/docs/asia-17/materials/asia-17-moreira-drop-the-rop-fine-grained-control-flow-integrity-for-the-linux-kernel.pdf control_flow_integrity kernel_security  defensive research fine grained control-flow integrity aims to enhance control flow security in the linux kernel. 细粒度控制流完整性旨在增强linux内核中的控制流安全性。 # fine grained control-flow integrity for the linux kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: fine grained control-flow integrity for the linux kernel resource_label: primary resource_type: slides resource_url: https://www.blackhat.com/docs/asia-17/materials/asia-17-moreira-drop-the-rop-fine-grained-control-flow-integrity-for-the-linux-kernel.pdf parent_primary_url: https://www.blackhat.com/docs/asia-17/materials/asia-17-moreira-drop-the-rop-fine-grained-control-flow-integrity-for-the-linux-kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2017: \"fine grained control-flow integrity for the linux kernel\" by sandro rigo, michalis polychronakis, vasileios kemerlis](https://www.blackhat.com/docs/asia-17/materials/asia-17-moreira-drop-the-rop-fine-grained-control-flo no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6e2e643f06af3a81",
      "item_id": "e325946b9d98f1af",
      "slug": "2016-defensive-enforcing-kernel-security-invariants-with-data-flow-integrity-primary-db68189d",
      "year": 2016,
      "title": "Enforcing Kernel Security Invariants with Data Flow Integrity",
      "item_title": "Enforcing Kernel Security Invariants with Data Flow Integrity",
      "authors": [
        "Chengyu Song et. al"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://taesoo.kim/pubs/2016/song:kenali.pdf",
      "primary_url": "https://taesoo.kim/pubs/2016/song:kenali.pdf",
      "parent_primary_url": "https://taesoo.kim/pubs/2016/song:kenali.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2016-defensive-enforcing-kernel-security-invariants-with-data-flow-integrity-primary-db68189d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Enforcing Kernel Security Invariants with Data Flow Integrity record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Enforcing Kernel Security Invariants with Data Flow Integrity resource_label: primary resource_type: paper resource_url: https://taesoo.kim/pubs/2016/song:kenali.pdf parent_primary_url: https://taesoo.kim/pubs/2016/song:kenali.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2016: \"Enforcing Kernel Security Invariants with Data Flow Integrity\" by Chengyu Song et. al](https://taesoo.kim/pubs/2016/song:kenali.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false ",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://taesoo.kim/pubs/2016/song:kenali.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://taesoo.kim/pubs/2016/song:kenali.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "data_flow_integrity",
        "kernel_security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper presents a method for enforcing kernel security invariants using data flow integrity.",
      "summary_zh": "本文提出了一种使用数据流完整性来强制执行内核安全不变的方法。",
      "source_markdown": "[2016: \"Enforcing Kernel Security Invariants with Data Flow Integrity\" by Chengyu Song et. al](https://taesoo.kim/pubs/2016/song:kenali.pdf) [paper]",
      "search_text": "enforcing kernel security invariants with data flow integrity enforcing kernel security invariants with data flow integrity chengyu song et. al   defensive  defensive primary paper https://taesoo.kim/pubs/2016/song:kenali.pdf data_flow_integrity kernel_security  defensive research this paper presents a method for enforcing kernel security invariants using data flow integrity. 本文提出了一种使用数据流完整性来强制执行内核安全不变的方法。 # enforcing kernel security invariants with data flow integrity record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: enforcing kernel security invariants with data flow integrity resource_label: primary resource_type: paper resource_url: https://taesoo.kim/pubs/2016/song:kenali.pdf parent_primary_url: https://taesoo.kim/pubs/2016/song:kenali.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2016: \"enforcing kernel security invariants with data flow integrity\" by chengyu song et. al](https://taesoo.kim/pubs/2016/song:kenali.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1f938b7c489c0a7c",
      "item_id": "4377f2041b26e1d1",
      "slug": "2016-defensive-thwarting-unknown-bugs-hardening-features-in-the-mainline-linux-kernel-primary-d010273c",
      "year": 2016,
      "title": "Thwarting unknown bugs: hardening features in the mainline Linux kernel",
      "item_title": "Thwarting unknown bugs: hardening features in the mainline Linux kernel",
      "authors": [
        "Mark Rutland"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://events.static.linuxfound.org/sites/events/files/slides/slides_21.pdf",
      "primary_url": "https://events.static.linuxfound.org/sites/events/files/slides/slides_21.pdf",
      "parent_primary_url": "https://events.static.linuxfound.org/sites/events/files/slides/slides_21.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2016-defensive-thwarting-unknown-bugs-hardening-features-in-the-mainline-linux-kernel-primary-d010273c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Thwarting unknown bugs: hardening features in the mainline Linux kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Thwarting unknown bugs: hardening features in the mainline Linux kernel resource_label: primary resource_type: slides resource_url: https://events.static.linuxfound.org/sites/events/files/slides/slides_21.pdf parent_primary_url: https://events.static.linuxfound.org/sites/events/files/slides/slides_21.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2016: \"Thwarting unknown bugs: hardening features in the mainline Linux kernel\" by Mark Rutland](https://events.static.linuxfound.org/sites/events/files/slides/slides_21.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. i",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://events.static.linuxfound.org/sites/events/files/slides/slides_21.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://events.static.linuxfound.org/sites/events/files/slides/slides_21.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_hardening",
        "defensive_research"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This presentation covers hardening features in the mainline Linux kernel to thwart unknown bugs.",
      "summary_zh": "本演示涵盖了主线Linux内核中的加固功能，以抵御未知漏洞。",
      "source_markdown": "[2016: \"Thwarting unknown bugs: hardening features in the mainline Linux kernel\" by Mark Rutland](https://events.static.linuxfound.org/sites/events/files/slides/slides_21.pdf) [slides]",
      "search_text": "thwarting unknown bugs: hardening features in the mainline linux kernel thwarting unknown bugs: hardening features in the mainline linux kernel mark rutland   defensive  defensive primary slides https://events.static.linuxfound.org/sites/events/files/slides/slides_21.pdf kernel_hardening defensive_research  defensive research this presentation covers hardening features in the mainline linux kernel to thwart unknown bugs. 本演示涵盖了主线linux内核中的加固功能，以抵御未知漏洞。 # thwarting unknown bugs: hardening features in the mainline linux kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: thwarting unknown bugs: hardening features in the mainline linux kernel resource_label: primary resource_type: slides resource_url: https://events.static.linuxfound.org/sites/events/files/slides/slides_21.pdf parent_primary_url: https://events.static.linuxfound.org/sites/events/files/slides/slides_21.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2016: \"thwarting unknown bugs: hardening features in the mainline linux kernel\" by mark rutland](https://events.static.linuxfound.org/sites/events/files/slides/slides_21.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. i no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "843bb2c7552c2864",
      "item_id": "50f9c55a02803d99",
      "slug": "2016-defensive-emerging-defense-in-android-kernel-primary-e5f6dc2b",
      "year": 2016,
      "title": "Emerging Defense in Android Kernel",
      "item_title": "Emerging Defense in Android Kernel",
      "authors": [
        "James Fang"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://keenlab.tencent.com/en/2016/06/01/Emerging-Defense-in-Android-Kernel/",
      "primary_url": "http://keenlab.tencent.com/en/2016/06/01/Emerging-Defense-in-Android-Kernel/",
      "parent_primary_url": "http://keenlab.tencent.com/en/2016/06/01/Emerging-Defense-in-Android-Kernel/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2016-defensive-emerging-defense-in-android-kernel-primary-e5f6dc2b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Emerging Defense in Android Kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Emerging Defense in Android Kernel resource_label: primary resource_type: article resource_url: http://keenlab.tencent.com/en/2016/06/01/Emerging-Defense-in-Android-Kernel/ parent_primary_url: http://keenlab.tencent.com/en/2016/06/01/Emerging-Defense-in-Android-Kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2016: \"Emerging Defense in Android Kernel\" by James Fang](http://keenlab.tencent.com/en/2016/06/01/Emerging-Defense-in-Android-Kernel/) [article] cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://keenlab.tencent.com/en/2016/06/01/Emerging-Defense-in-Android-Kernel/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://keenlab.tencent.com/en/2016/06/01/Emerging-Defense-in-Android-Kernel/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "android_security",
        "kernel_defense"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Emerging defenses in the Android kernel are discussed to enhance security measures.",
      "summary_zh": "讨论了Android内核中的新兴防御措施，以增强安全性。",
      "source_markdown": "[2016: \"Emerging Defense in Android Kernel\" by James Fang](http://keenlab.tencent.com/en/2016/06/01/Emerging-Defense-in-Android-Kernel/) [article]",
      "search_text": "emerging defense in android kernel emerging defense in android kernel james fang   defensive  defensive primary article http://keenlab.tencent.com/en/2016/06/01/emerging-defense-in-android-kernel/ android_security kernel_defense  defensive research emerging defenses in the android kernel are discussed to enhance security measures. 讨论了android内核中的新兴防御措施，以增强安全性。 # emerging defense in android kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: emerging defense in android kernel resource_label: primary resource_type: article resource_url: http://keenlab.tencent.com/en/2016/06/01/emerging-defense-in-android-kernel/ parent_primary_url: http://keenlab.tencent.com/en/2016/06/01/emerging-defense-in-android-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2016: \"emerging defense in android kernel\" by james fang](http://keenlab.tencent.com/en/2016/06/01/emerging-defense-in-android-kernel/) [article] cves: none android_impact_status: unknown android_impact_reason: mentions android; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "ecefaeebd2aa6cb6",
      "item_id": "6f21cfb4f3640e3f",
      "slug": "2016-defensive-randomizing-the-linux-kernel-heap-freelists-primary-f6c5b8cb",
      "year": 2016,
      "title": "Randomizing the Linux kernel heap freelists",
      "item_title": "Randomizing the Linux kernel heap freelists",
      "authors": [
        "Thomas Garnier"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://medium.com/@mxatone/randomizing-the-linux-kernel-heap-freelists-b899bb99c767#.3csq8t23s",
      "primary_url": "https://medium.com/@mxatone/randomizing-the-linux-kernel-heap-freelists-b899bb99c767#.3csq8t23s",
      "parent_primary_url": "https://medium.com/@mxatone/randomizing-the-linux-kernel-heap-freelists-b899bb99c767#.3csq8t23s",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2016-defensive-randomizing-the-linux-kernel-heap-freelists-primary-f6c5b8cb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Randomizing the Linux kernel heap freelists record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Randomizing the Linux kernel heap freelists resource_label: primary resource_type: article resource_url: https://medium.com/@mxatone/randomizing-the-linux-kernel-heap-freelists-b899bb99c767#.3csq8t23s parent_primary_url: https://medium.com/@mxatone/randomizing-the-linux-kernel-heap-freelists-b899bb99c767#.3csq8t23s source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2016: \"Randomizing the Linux kernel heap freelists\" by Thomas Garnier](https://medium.com/@mxatone/randomizing-the-linux-kernel-heap-freelists-b899bb99c767#.3csq8t23s) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no io",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://medium.com/@mxatone/randomizing-the-linux-kernel-heap-freelists-b899bb99c767#.3csq8t23s"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://medium.com/@mxatone/randomizing-the-linux-kernel-heap-freelists-b899bb99c767#.3csq8t23s"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "heap_randomization",
        "kernel_security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article discusses the randomization of Linux kernel heap freelists to improve security.",
      "summary_zh": "本文讨论了Linux内核堆空闲列表的随机化以提高安全性。",
      "source_markdown": "[2016: \"Randomizing the Linux kernel heap freelists\" by Thomas Garnier](https://medium.com/@mxatone/randomizing-the-linux-kernel-heap-freelists-b899bb99c767#.3csq8t23s) [article]",
      "search_text": "randomizing the linux kernel heap freelists randomizing the linux kernel heap freelists thomas garnier   defensive  defensive primary article https://medium.com/@mxatone/randomizing-the-linux-kernel-heap-freelists-b899bb99c767#.3csq8t23s heap_randomization kernel_security  defensive research this article discusses the randomization of linux kernel heap freelists to improve security. 本文讨论了linux内核堆空闲列表的随机化以提高安全性。 # randomizing the linux kernel heap freelists record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: randomizing the linux kernel heap freelists resource_label: primary resource_type: article resource_url: https://medium.com/@mxatone/randomizing-the-linux-kernel-heap-freelists-b899bb99c767#.3csq8t23s parent_primary_url: https://medium.com/@mxatone/randomizing-the-linux-kernel-heap-freelists-b899bb99c767#.3csq8t23s source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2016: \"randomizing the linux kernel heap freelists\" by thomas garnier](https://medium.com/@mxatone/randomizing-the-linux-kernel-heap-freelists-b899bb99c767#.3csq8t23s) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no io no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "66a1154b3df322f6",
      "item_id": "d5874baa8f4d4815",
      "slug": "2015-defensive-rap-rip-rop-primary-0e9c1dde",
      "year": 2015,
      "title": "RAP: RIP ROP",
      "item_title": "RAP: RIP ROP",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://pax.grsecurity.net/docs/PaXTeam-H2HC15-RAP-RIP-ROP.pdf",
      "primary_url": "https://pax.grsecurity.net/docs/PaXTeam-H2HC15-RAP-RIP-ROP.pdf",
      "parent_primary_url": "https://pax.grsecurity.net/docs/PaXTeam-H2HC15-RAP-RIP-ROP.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2015-defensive-rap-rip-rop-primary-0e9c1dde.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# RAP: RIP ROP record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: RAP: RIP ROP resource_label: primary resource_type: slides resource_url: https://pax.grsecurity.net/docs/PaXTeam-H2HC15-RAP-RIP-ROP.pdf parent_primary_url: https://pax.grsecurity.net/docs/PaXTeam-H2HC15-RAP-RIP-ROP.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2015: \"RAP: RIP ROP\"](https://pax.grsecurity.net/docs/PaXTeam-H2HC15-RAP-RIP-ROP.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [slides] primary: https://pax.grsecurity.n",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://pax.grsecurity.net/docs/PaXTeam-H2HC15-RAP-RIP-ROP.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://pax.grsecurity.net/docs/PaXTeam-H2HC15-RAP-RIP-ROP.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "ROP_mitigation",
        "kernel_security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "RAP: RIP ROP presents techniques to mitigate return-oriented programming attacks.",
      "summary_zh": "RAP: RIP ROP提出了减轻面向返回的编程攻击的技术。",
      "source_markdown": "[2015: \"RAP: RIP ROP\"](https://pax.grsecurity.net/docs/PaXTeam-H2HC15-RAP-RIP-ROP.pdf) [slides]",
      "search_text": "rap: rip rop rap: rip rop    defensive  defensive primary slides https://pax.grsecurity.net/docs/paxteam-h2hc15-rap-rip-rop.pdf rop_mitigation kernel_security  defensive research rap: rip rop presents techniques to mitigate return-oriented programming attacks. rap: rip rop提出了减轻面向返回的编程攻击的技术。 # rap: rip rop record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: rap: rip rop resource_label: primary resource_type: slides resource_url: https://pax.grsecurity.net/docs/paxteam-h2hc15-rap-rip-rop.pdf parent_primary_url: https://pax.grsecurity.net/docs/paxteam-h2hc15-rap-rip-rop.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2015: \"rap: rip rop\"](https://pax.grsecurity.net/docs/paxteam-h2hc15-rap-rip-rop.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [slides] primary: https://pax.grsecurity.n no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "46f6226bd1f35945",
      "item_id": "64bf04679837114e",
      "slug": "2015-defensive-protecting-commodity-operating-systems-through-strong-kernel-isolation-primary-47fbf306",
      "year": 2015,
      "title": "Protecting Commodity Operating Systems through Strong Kernel Isolation",
      "item_title": "Protecting Commodity Operating Systems through Strong Kernel Isolation",
      "authors": [
        "Vasileios Kemerlis"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "http://www.cs.columbia.edu/~angelos/Papers/theses/vpk_thesis.pdf",
      "primary_url": "http://www.cs.columbia.edu/~angelos/Papers/theses/vpk_thesis.pdf",
      "parent_primary_url": "http://www.cs.columbia.edu/~angelos/Papers/theses/vpk_thesis.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2015-defensive-protecting-commodity-operating-systems-through-strong-kernel-isolation-primary-47fbf306.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Protecting Commodity Operating Systems through Strong Kernel Isolation record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Protecting Commodity Operating Systems through Strong Kernel Isolation resource_label: primary resource_type: paper resource_url: http://www.cs.columbia.edu/~angelos/Papers/theses/vpk_thesis.pdf parent_primary_url: http://www.cs.columbia.edu/~angelos/Papers/theses/vpk_thesis.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2015: \"Protecting Commodity Operating Systems through Strong Kernel Isolation\" by Vasileios Kemerlis](http://www.cs.columbia.edu/~angelos/Papers/theses/vpk_thesis.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_rea",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "http://www.cs.columbia.edu/~angelos/Papers/theses/vpk_thesis.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "http://www.cs.columbia.edu/~angelos/Papers/theses/vpk_thesis.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel_isolation",
        "defensive_research"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper discusses strong kernel isolation techniques to protect commodity operating systems.",
      "summary_zh": "本文讨论了保护商品操作系统的强内核隔离技术。",
      "source_markdown": "[2015: \"Protecting Commodity Operating Systems through Strong Kernel Isolation\" by Vasileios Kemerlis](http://www.cs.columbia.edu/~angelos/Papers/theses/vpk_thesis.pdf) [paper]",
      "search_text": "protecting commodity operating systems through strong kernel isolation protecting commodity operating systems through strong kernel isolation vasileios kemerlis   defensive  defensive primary paper http://www.cs.columbia.edu/~angelos/papers/theses/vpk_thesis.pdf kernel_isolation defensive_research  defensive research this paper discusses strong kernel isolation techniques to protect commodity operating systems. 本文讨论了保护商品操作系统的强内核隔离技术。 # protecting commodity operating systems through strong kernel isolation record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: protecting commodity operating systems through strong kernel isolation resource_label: primary resource_type: paper resource_url: http://www.cs.columbia.edu/~angelos/papers/theses/vpk_thesis.pdf parent_primary_url: http://www.cs.columbia.edu/~angelos/papers/theses/vpk_thesis.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2015: \"protecting commodity operating systems through strong kernel isolation\" by vasileios kemerlis](http://www.cs.columbia.edu/~angelos/papers/theses/vpk_thesis.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_rea no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b6afddda02c63b4b",
      "item_id": "f6f0c75e077544e3",
      "slug": "2014-defensive-kernel-self-protection-through-quantified-attack-surface-reduction-primary-fde01f7c",
      "year": 2014,
      "title": "Kernel Self-Protection through Quantified Attack Surface Reduction",
      "item_title": "Kernel Self-Protection through Quantified Attack Surface Reduction",
      "authors": [
        "Anil Kurmus"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://publikationsserver.tu-braunschweig.de/servlets/MCRFileNodeServlet/digibib_derivate_00036154/Diss_Kurmus_Anil.pdf",
      "primary_url": "https://publikationsserver.tu-braunschweig.de/servlets/MCRFileNodeServlet/digibib_derivate_00036154/Diss_Kurmus_Anil.pdf",
      "parent_primary_url": "https://publikationsserver.tu-braunschweig.de/servlets/MCRFileNodeServlet/digibib_derivate_00036154/Diss_Kurmus_Anil.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2014-defensive-kernel-self-protection-through-quantified-attack-surface-reduction-primary-fde01f7c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Self-Protection through Quantified Attack Surface Reduction record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Kernel Self-Protection through Quantified Attack Surface Reduction resource_label: primary resource_type: paper resource_url: https://publikationsserver.tu-braunschweig.de/servlets/MCRFileNodeServlet/digibib_derivate_00036154/Diss_Kurmus_Anil.pdf parent_primary_url: https://publikationsserver.tu-braunschweig.de/servlets/MCRFileNodeServlet/digibib_derivate_00036154/Diss_Kurmus_Anil.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2014: \"Kernel Self-Protection through Quantified Attack Surface Reduction\" by Anil Kurmus](https://publikationsserver.tu-braunschweig.de/servlets/MCRFileNodeServlet/digibib_derivate_00036154/Diss_Kurmus_Anil.pdf) [paper] cves: none android_i",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://publikationsserver.tu-braunschweig.de/servlets/MCRFileNodeServlet/digibib_derivate_00036154/Diss_Kurmus_Anil.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://publikationsserver.tu-braunschweig.de/servlets/MCRFileNodeServlet/digibib_derivate_00036154/Diss_Kurmus_Anil.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "attack_surface_reduction",
        "kernel_protection"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper explores quantified attack surface reduction for kernel self-protection.",
      "summary_zh": "本文探讨了内核自我保护的量化攻击面减少。",
      "source_markdown": "[2014: \"Kernel Self-Protection through Quantified Attack Surface Reduction\" by Anil Kurmus](https://publikationsserver.tu-braunschweig.de/servlets/MCRFileNodeServlet/digibib_derivate_00036154/Diss_Kurmus_Anil.pdf) [paper]",
      "search_text": "kernel self-protection through quantified attack surface reduction kernel self-protection through quantified attack surface reduction anil kurmus   defensive  defensive primary paper https://publikationsserver.tu-braunschweig.de/servlets/mcrfilenodeservlet/digibib_derivate_00036154/diss_kurmus_anil.pdf attack_surface_reduction kernel_protection  defensive research this paper explores quantified attack surface reduction for kernel self-protection. 本文探讨了内核自我保护的量化攻击面减少。 # kernel self-protection through quantified attack surface reduction record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: kernel self-protection through quantified attack surface reduction resource_label: primary resource_type: paper resource_url: https://publikationsserver.tu-braunschweig.de/servlets/mcrfilenodeservlet/digibib_derivate_00036154/diss_kurmus_anil.pdf parent_primary_url: https://publikationsserver.tu-braunschweig.de/servlets/mcrfilenodeservlet/digibib_derivate_00036154/diss_kurmus_anil.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2014: \"kernel self-protection through quantified attack surface reduction\" by anil kurmus](https://publikationsserver.tu-braunschweig.de/servlets/mcrfilenodeservlet/digibib_derivate_00036154/diss_kurmus_anil.pdf) [paper] cves: none android_i no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a974b63d61eff6c4",
      "item_id": "74581e727aadd3b5",
      "slug": "2014-defensive-a-tale-of-two-kernels-towards-ending-kernel-hardening-wars-with-split-kernel-primary-f4635cc0",
      "year": 2014,
      "title": "A Tale of Two Kernels: Towards Ending Kernel Hardening Wars with Split Kernel",
      "item_title": "A Tale of Two Kernels: Towards Ending Kernel Hardening Wars with Split Kernel",
      "authors": [
        "Anil Kurmus",
        "Robby Zippel"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "http://static.securegoose.org/papers/ccs14.pdf",
      "primary_url": "http://static.securegoose.org/papers/ccs14.pdf",
      "parent_primary_url": "http://static.securegoose.org/papers/ccs14.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2014-defensive-a-tale-of-two-kernels-towards-ending-kernel-hardening-wars-with-split-kernel-primary-f4635cc0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Tale of Two Kernels: Towards Ending Kernel Hardening Wars with Split Kernel record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: A Tale of Two Kernels: Towards Ending Kernel Hardening Wars with Split Kernel resource_label: primary resource_type: paper resource_url: http://static.securegoose.org/papers/ccs14.pdf parent_primary_url: http://static.securegoose.org/papers/ccs14.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2014: \"A Tale of Two Kernels: Towards Ending Kernel Hardening Wars with Split Kernel\" by Anil Kurmus and Robby Zippel](http://static.securegoose.org/papers/ccs14.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS dev",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "http://static.securegoose.org/papers/ccs14.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "http://static.securegoose.org/papers/ccs14.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "split_kernel",
        "kernel_hardening"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper advocates for a split kernel approach to resolve kernel hardening conflicts.",
      "summary_zh": "本文提倡采用分裂内核的方法来解决内核加固冲突。",
      "source_markdown": "[2014: \"A Tale of Two Kernels: Towards Ending Kernel Hardening Wars with Split Kernel\" by Anil Kurmus and Robby Zippel](http://static.securegoose.org/papers/ccs14.pdf) [paper]",
      "search_text": "a tale of two kernels: towards ending kernel hardening wars with split kernel a tale of two kernels: towards ending kernel hardening wars with split kernel anil kurmus robby zippel   defensive  defensive primary paper http://static.securegoose.org/papers/ccs14.pdf split_kernel kernel_hardening  defensive research this paper advocates for a split kernel approach to resolve kernel hardening conflicts. 本文提倡采用分裂内核的方法来解决内核加固冲突。 # a tale of two kernels: towards ending kernel hardening wars with split kernel record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: a tale of two kernels: towards ending kernel hardening wars with split kernel resource_label: primary resource_type: paper resource_url: http://static.securegoose.org/papers/ccs14.pdf parent_primary_url: http://static.securegoose.org/papers/ccs14.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2014: \"a tale of two kernels: towards ending kernel hardening wars with split kernel\" by anil kurmus and robby zippel](http://static.securegoose.org/papers/ccs14.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios dev no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e161114b2795f0b2",
      "item_id": "a6c77f55adf7902c",
      "slug": "2013-defensive-kaslr-an-exercise-in-cargo-cult-security-primary-1df5dd54",
      "year": 2013,
      "title": "KASLR: An Exercise in Cargo Cult Security",
      "item_title": "KASLR: An Exercise in Cargo Cult Security",
      "authors": [
        "Brad Spengler"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://forums.grsecurity.net/viewtopic.php?f=7&t=3367",
      "primary_url": "https://forums.grsecurity.net/viewtopic.php?f=7&t=3367",
      "parent_primary_url": "https://forums.grsecurity.net/viewtopic.php?f=7&t=3367",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2013-defensive-kaslr-an-exercise-in-cargo-cult-security-primary-1df5dd54.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KASLR: An Exercise in Cargo Cult Security record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: KASLR: An Exercise in Cargo Cult Security resource_label: primary resource_type: article resource_url: https://forums.grsecurity.net/viewtopic.php?f=7&t=3367 parent_primary_url: https://forums.grsecurity.net/viewtopic.php?f=7&t=3367 source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2013: \"KASLR: An Exercise in Cargo Cult Security\" by Brad Spengler](https://forums.grsecurity.net/viewtopic.php?f=7&t=3367) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link:",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://forums.grsecurity.net/viewtopic.php?f=7&t=3367"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://forums.grsecurity.net/viewtopic.php?f=7&t=3367"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KASLR",
        "security",
        "defense"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article discusses the limitations of Kernel Address Space Layout Randomization (KASLR) as a security measure.",
      "summary_zh": "本文讨论了内核地址空间布局随机化（KASLR）作为安全措施的局限性。",
      "source_markdown": "[2013: \"KASLR: An Exercise in Cargo Cult Security\" by Brad Spengler](https://forums.grsecurity.net/viewtopic.php?f=7&t=3367) [article]",
      "search_text": "kaslr: an exercise in cargo cult security kaslr: an exercise in cargo cult security brad spengler   defensive  defensive primary article https://forums.grsecurity.net/viewtopic.php?f=7&t=3367 kaslr security defense  defensive research this article discusses the limitations of kernel address space layout randomization (kaslr) as a security measure. 本文讨论了内核地址空间布局随机化（kaslr）作为安全措施的局限性。 # kaslr: an exercise in cargo cult security record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: kaslr: an exercise in cargo cult security resource_label: primary resource_type: article resource_url: https://forums.grsecurity.net/viewtopic.php?f=7&t=3367 parent_primary_url: https://forums.grsecurity.net/viewtopic.php?f=7&t=3367 source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2013: \"kaslr: an exercise in cargo cult security\" by brad spengler](https://forums.grsecurity.net/viewtopic.php?f=7&t=3367) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "02a8b9fbe95f8056",
      "item_id": "dd1cfe403514a215",
      "slug": "2012-defensive-how-do-i-mitigate-against-null-pointer-dereference-vulnerabilities-primary-eb2ca23e",
      "year": 2012,
      "title": "How do I mitigate against NULL pointer dereference vulnerabilities?",
      "item_title": "How do I mitigate against NULL pointer dereference vulnerabilities?",
      "authors": [
        "RedHat"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://access.redhat.com/articles/20484",
      "primary_url": "https://access.redhat.com/articles/20484",
      "parent_primary_url": "https://access.redhat.com/articles/20484",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2012-defensive-how-do-i-mitigate-against-null-pointer-dereference-vulnerabilities-primary-eb2ca23e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# How do I mitigate against NULL pointer dereference vulnerabilities? record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: How do I mitigate against NULL pointer dereference vulnerabilities? resource_label: primary resource_type: article resource_url: https://access.redhat.com/articles/20484 parent_primary_url: https://access.redhat.com/articles/20484 source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2012: \"How do I mitigate against NULL pointer dereference vulnerabilities?\" by RedHat](https://access.redhat.com/articles/20484) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://access.redhat.com/articles/20484"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://access.redhat.com/articles/20484"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "NULL pointer",
        "vulnerability",
        "mitigation"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article provides strategies to mitigate NULL pointer dereference vulnerabilities in the Linux kernel.",
      "summary_zh": "本文提供了缓解Linux内核中NULL指针解引用漏洞的策略。",
      "source_markdown": "[2012: \"How do I mitigate against NULL pointer dereference vulnerabilities?\" by RedHat](https://access.redhat.com/articles/20484) [article]",
      "search_text": "how do i mitigate against null pointer dereference vulnerabilities? how do i mitigate against null pointer dereference vulnerabilities? redhat   defensive  defensive primary article https://access.redhat.com/articles/20484 null pointer vulnerability mitigation  defensive research this article provides strategies to mitigate null pointer dereference vulnerabilities in the linux kernel. 本文提供了缓解linux内核中null指针解引用漏洞的策略。 # how do i mitigate against null pointer dereference vulnerabilities? record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: how do i mitigate against null pointer dereference vulnerabilities? resource_label: primary resource_type: article resource_url: https://access.redhat.com/articles/20484 parent_primary_url: https://access.redhat.com/articles/20484 source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2012: \"how do i mitigate against null pointer dereference vulnerabilities?\" by redhat](https://access.redhat.com/articles/20484) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "70587bbe5fb99375",
      "item_id": "3de91b574010dc4c",
      "slug": "2011-defensive-linux-kernel-vulnerabilities-state-of-the-art-defenses-and-open-problems-primary-9e738229",
      "year": 2011,
      "title": "Linux kernel vulnerabilities: State-of-the-art defenses and open problems",
      "item_title": "Linux kernel vulnerabilities: State-of-the-art defenses and open problems",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://pdos.csail.mit.edu/papers/chen-kbugs.pdf",
      "primary_url": "https://pdos.csail.mit.edu/papers/chen-kbugs.pdf",
      "parent_primary_url": "https://pdos.csail.mit.edu/papers/chen-kbugs.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2011-defensive-linux-kernel-vulnerabilities-state-of-the-art-defenses-and-open-problems-primary-9e738229.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux kernel vulnerabilities: State-of-the-art defenses and open problems record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Linux kernel vulnerabilities: State-of-the-art defenses and open problems resource_label: primary resource_type: paper resource_url: https://pdos.csail.mit.edu/papers/chen-kbugs.pdf parent_primary_url: https://pdos.csail.mit.edu/papers/chen-kbugs.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2011: \"Linux kernel vulnerabilities: State-of-the-art defenses and open problems\"](https://pdos.csail.mit.edu/papers/chen-kbugs.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather tha",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://pdos.csail.mit.edu/papers/chen-kbugs.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://pdos.csail.mit.edu/papers/chen-kbugs.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "defense",
        "vulnerabilities",
        "research"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This paper reviews current defenses against Linux kernel vulnerabilities and identifies open problems in the field.",
      "summary_zh": "本文回顾了针对Linux内核漏洞的当前防御措施，并识别了该领域的开放问题。",
      "source_markdown": "[2011: \"Linux kernel vulnerabilities: State-of-the-art defenses and open problems\"](https://pdos.csail.mit.edu/papers/chen-kbugs.pdf) [paper]",
      "search_text": "linux kernel vulnerabilities: state-of-the-art defenses and open problems linux kernel vulnerabilities: state-of-the-art defenses and open problems    defensive  defensive primary paper https://pdos.csail.mit.edu/papers/chen-kbugs.pdf defense vulnerabilities research  defensive research this paper reviews current defenses against linux kernel vulnerabilities and identifies open problems in the field. 本文回顾了针对linux内核漏洞的当前防御措施，并识别了该领域的开放问题。 # linux kernel vulnerabilities: state-of-the-art defenses and open problems record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: linux kernel vulnerabilities: state-of-the-art defenses and open problems resource_label: primary resource_type: paper resource_url: https://pdos.csail.mit.edu/papers/chen-kbugs.pdf parent_primary_url: https://pdos.csail.mit.edu/papers/chen-kbugs.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2011: \"linux kernel vulnerabilities: state-of-the-art defenses and open problems\"](https://pdos.csail.mit.edu/papers/chen-kbugs.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather tha no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ffbb5126c8c474a5",
      "item_id": "088f67e27d60e048",
      "slug": "2009-defensive-linux-kernel-heap-tampering-detection-primary-45ad0b74",
      "year": 2009,
      "title": "Linux Kernel Heap Tampering Detection",
      "item_title": "Linux Kernel Heap Tampering Detection",
      "authors": [
        "Larry Highsmith"
      ],
      "cves": [],
      "tags": [],
      "section": "Defensive",
      "subsection": "",
      "section_path": "Defensive",
      "category": "Defensive",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://phrack.org/archives/issues/66/15.txt",
      "primary_url": "http://phrack.org/archives/issues/66/15.txt",
      "parent_primary_url": "http://phrack.org/archives/issues/66/15.txt",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#defensive",
      "raw_path": "/raw/2009-defensive-linux-kernel-heap-tampering-detection-primary-45ad0b74.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Heap Tampering Detection record_kind: linux-kernel-resource-url section: Defensive subsection: none category: Defensive item_title: Linux Kernel Heap Tampering Detection resource_label: primary resource_type: article resource_url: http://phrack.org/archives/issues/66/15.txt parent_primary_url: http://phrack.org/archives/issues/66/15.txt source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2009: \"Linux Kernel Heap Tampering Detection\" by Larry Highsmith](http://phrack.org/archives/issues/66/15.txt) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [ar",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://phrack.org/archives/issues/66/15.txt"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://phrack.org/archives/issues/66/15.txt"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "heap",
        "tampering",
        "detection"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article discusses methods for detecting heap tampering in the Linux kernel.",
      "summary_zh": "本文讨论了检测Linux内核中堆篡改的方法。",
      "source_markdown": "[2009: \"Linux Kernel Heap Tampering Detection\" by Larry Highsmith](http://phrack.org/archives/issues/66/15.txt) [article]",
      "search_text": "linux kernel heap tampering detection linux kernel heap tampering detection larry highsmith   defensive  defensive primary article http://phrack.org/archives/issues/66/15.txt heap tampering detection  defensive research this article discusses methods for detecting heap tampering in the linux kernel. 本文讨论了检测linux内核中堆篡改的方法。 # linux kernel heap tampering detection record_kind: linux-kernel-resource-url section: defensive subsection: none category: defensive item_title: linux kernel heap tampering detection resource_label: primary resource_type: article resource_url: http://phrack.org/archives/issues/66/15.txt parent_primary_url: http://phrack.org/archives/issues/66/15.txt source_section_url: https://github.com/xairy/linux-kernel-exploitation#defensive source_item: [2009: \"linux kernel heap tampering detection\" by larry highsmith](http://phrack.org/archives/issues/66/15.txt) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [ar no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "af6d03acd11d58e5",
      "item_id": "b78f1cabf5fb7678",
      "slug": "undated-exploits-bsauce-kernel-exploit-factory-primary-fe5981ac",
      "year": null,
      "title": "bsauce/kernel-exploit-factory",
      "item_title": "bsauce/kernel-exploit-factory",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/bsauce/kernel-exploit-factory",
      "primary_url": "https://github.com/bsauce/kernel-exploit-factory",
      "parent_primary_url": "https://github.com/bsauce/kernel-exploit-factory",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-bsauce-kernel-exploit-factory-primary-fe5981ac.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# bsauce/kernel-exploit-factory record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: bsauce/kernel-exploit-factory resource_label: primary resource_type: exploit resource_url: https://github.com/bsauce/kernel-exploit-factory parent_primary_url: https://github.com/bsauce/kernel-exploit-factory source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/bsauce/kernel-exploit-factory cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/bsauce/kernel-exploit-factory context_link",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/bsauce/kernel-exploit-factory"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/bsauce/kernel-exploit-factory"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/bsauce/kernel-exploit-factory"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "repository",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The kernel-exploit-factory repository contains various kernel exploits for research purposes.",
      "summary_zh": "kernel-exploit-factory库包含各种内核漏洞供研究使用。",
      "source_markdown": "https://github.com/bsauce/kernel-exploit-factory",
      "search_text": "bsauce/kernel-exploit-factory bsauce/kernel-exploit-factory    exploits  exploits primary exploit https://github.com/bsauce/kernel-exploit-factory exploit repository kernel  exploitation the kernel-exploit-factory repository contains various kernel exploits for research purposes. kernel-exploit-factory库包含各种内核漏洞供研究使用。 # bsauce/kernel-exploit-factory record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: bsauce/kernel-exploit-factory resource_label: primary resource_type: exploit resource_url: https://github.com/bsauce/kernel-exploit-factory parent_primary_url: https://github.com/bsauce/kernel-exploit-factory source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/bsauce/kernel-exploit-factory cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/bsauce/kernel-exploit-factory context_link unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "961338db528f4175",
      "item_id": "98aecb6641cb3c66",
      "slug": "undated-exploits-search-primary-bb7135d1",
      "year": null,
      "title": "search",
      "item_title": "search",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.exploit-db.com/search/?action=search&description=linux+kernel",
      "primary_url": "https://www.exploit-db.com/search/?action=search&description=linux+kernel",
      "parent_primary_url": "https://www.exploit-db.com/search/?action=search&description=linux+kernel",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-search-primary-bb7135d1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# search record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: search resource_label: primary resource_type: article resource_url: https://www.exploit-db.com/search/?action=search&description=linux+kernel parent_primary_url: https://www.exploit-db.com/search/?action=search&description=linux+kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://www.exploit-db.com/search/?action=search&description=linux+kernel cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://www.exploit-db.com/searc",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.exploit-db.com/search/?action=search&description=linux+kernel"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.exploit-db.com/search/?action=search&description=linux+kernel"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://www.exploit-db.com/search/?action=search&description=linux+kernel"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "database",
        "search"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The search tool provides a database of Linux kernel exploits for reference.",
      "summary_zh": "搜索工具提供Linux内核漏洞的数据库以供参考。",
      "source_markdown": "https://www.exploit-db.com/search/?action=search&description=linux+kernel",
      "search_text": "search search    exploits  exploits primary article https://www.exploit-db.com/search/?action=search&description=linux+kernel exploit database search  exploitation the search tool provides a database of linux kernel exploits for reference. 搜索工具提供linux内核漏洞的数据库以供参考。 # search record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: search resource_label: primary resource_type: article resource_url: https://www.exploit-db.com/search/?action=search&description=linux+kernel parent_primary_url: https://www.exploit-db.com/search/?action=search&description=linux+kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://www.exploit-db.com/search/?action=search&description=linux+kernel cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://www.exploit-db.com/searc unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "65d6202ee7277917",
      "item_id": "2b56e36c1b6bc095",
      "slug": "undated-exploits-offensive-security-exploit-database-primary-1fa7c448",
      "year": null,
      "title": "offensive-security/exploit-database",
      "item_title": "offensive-security/exploit-database",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/offensive-security/exploit-database/tree/master/platforms/linux/local",
      "primary_url": "https://github.com/offensive-security/exploit-database/tree/master/platforms/linux/local",
      "parent_primary_url": "https://github.com/offensive-security/exploit-database/tree/master/platforms/linux/local",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-offensive-security-exploit-database-primary-1fa7c448.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# offensive-security/exploit-database record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: offensive-security/exploit-database resource_label: primary resource_type: exploit resource_url: https://github.com/offensive-security/exploit-database/tree/master/platforms/linux/local parent_primary_url: https://github.com/offensive-security/exploit-database/tree/master/platforms/linux/local source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/offensive-security/exploit-database/tree/master/platforms/linux/local cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/offensive-security/exploit-database/tree/master/platforms/linux/local"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/offensive-security/exploit-database/tree/master/platforms/linux/local"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/offensive-security/exploit-database/tree/master/platforms/linux/local"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "database",
        "local"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The exploit-database repository contains local Linux exploits for security research.",
      "summary_zh": "exploit-database库包含用于安全研究的本地Linux漏洞。",
      "source_markdown": "https://github.com/offensive-security/exploit-database/tree/master/platforms/linux/local",
      "search_text": "offensive-security/exploit-database offensive-security/exploit-database    exploits  exploits primary exploit https://github.com/offensive-security/exploit-database/tree/master/platforms/linux/local exploit database local  exploitation the exploit-database repository contains local linux exploits for security research. exploit-database库包含用于安全研究的本地linux漏洞。 # offensive-security/exploit-database record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: offensive-security/exploit-database resource_label: primary resource_type: exploit resource_url: https://github.com/offensive-security/exploit-database/tree/master/platforms/linux/local parent_primary_url: https://github.com/offensive-security/exploit-database/tree/master/platforms/linux/local source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/offensive-security/exploit-database/tree/master/platforms/linux/local cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "88cb75cb7add918d",
      "item_id": "628d97b8ac83c059",
      "slug": "2010-exploits-exploits-primary-9d9aab23",
      "year": 2010,
      "title": "exploits",
      "item_title": "exploits",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "http://vulnfactory.org/exploits/",
      "primary_url": "http://vulnfactory.org/exploits/",
      "parent_primary_url": "http://vulnfactory.org/exploits/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2010-exploits-exploits-primary-9d9aab23.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# exploits record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: exploits resource_label: primary resource_type: exploit resource_url: http://vulnfactory.org/exploits/ parent_primary_url: http://vulnfactory.org/exploits/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: http://vulnfactory.org/exploits/ [2010-2011] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: http://vulnfactory.org/exploits/ context_links: - [exploit] primary: http://vulnfactory.org/exploits/ fetch_status: skipped fetch_note: ori",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "http://vulnfactory.org/exploits/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "http://vulnfactory.org/exploits/"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "http://vulnfactory.org/exploits/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "collection",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "The vulnfactory site hosts a collection of exploits for various vulnerabilities.",
      "summary_zh": "vulnfactory网站托管各种漏洞的漏洞集合。",
      "source_markdown": "http://vulnfactory.org/exploits/ [2010-2011]",
      "search_text": "exploits exploits    exploits  exploits primary exploit http://vulnfactory.org/exploits/ exploit collection vulnerability  exploitation the vulnfactory site hosts a collection of exploits for various vulnerabilities. vulnfactory网站托管各种漏洞的漏洞集合。 # exploits record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: exploits resource_label: primary resource_type: exploit resource_url: http://vulnfactory.org/exploits/ parent_primary_url: http://vulnfactory.org/exploits/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: http://vulnfactory.org/exploits/ [2010-2011] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: http://vulnfactory.org/exploits/ context_links: - [exploit] primary: http://vulnfactory.org/exploits/ fetch_status: skipped fetch_note: ori unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "dd7d83aa3cf7a14e",
      "item_id": "ff47a425ba47b6bf",
      "slug": "undated-exploits-scottybauer-android-kernel-cve-pocs-primary-51ba3c05",
      "year": null,
      "title": "ScottyBauer/Android_Kernel_CVE_POCs",
      "item_title": "ScottyBauer/Android_Kernel_CVE_POCs",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "poc",
      "resource_url": "https://github.com/ScottyBauer/Android_Kernel_CVE_POCs",
      "primary_url": "https://github.com/ScottyBauer/Android_Kernel_CVE_POCs",
      "parent_primary_url": "https://github.com/ScottyBauer/Android_Kernel_CVE_POCs",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-scottybauer-android-kernel-cve-pocs-primary-51ba3c05.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ScottyBauer/Android_Kernel_CVE_POCs record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: ScottyBauer/Android_Kernel_CVE_POCs resource_label: primary resource_type: poc resource_url: https://github.com/ScottyBauer/Android_Kernel_CVE_POCs parent_primary_url: https://github.com/ScottyBauer/Android_Kernel_CVE_POCs source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/ScottyBauer/Android_Kernel_CVE_POCs cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: false code_urls: https://github.com/ScottyBauer/And",
      "link_types": [
        "poc"
      ],
      "links": [
        {
          "label": "primary",
          "type": "poc",
          "url": "https://github.com/ScottyBauer/Android_Kernel_CVE_POCs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [
          {
            "label": "primary",
            "type": "poc",
            "url": "https://github.com/ScottyBauer/Android_Kernel_CVE_POCs"
          }
        ],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ScottyBauer/Android_Kernel_CVE_POCs"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "POC",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "A collection of proof-of-concept exploits for Android kernel vulnerabilities.",
      "summary_zh": "一组针对Android内核漏洞的概念验证利用代码。",
      "source_markdown": "https://github.com/ScottyBauer/Android_Kernel_CVE_POCs",
      "search_text": "scottybauer/android_kernel_cve_pocs scottybauer/android_kernel_cve_pocs    exploits  exploits primary poc https://github.com/scottybauer/android_kernel_cve_pocs poc android  exploit a collection of proof-of-concept exploits for android kernel vulnerabilities. 一组针对android内核漏洞的概念验证利用代码。 # scottybauer/android_kernel_cve_pocs record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: scottybauer/android_kernel_cve_pocs resource_label: primary resource_type: poc resource_url: https://github.com/scottybauer/android_kernel_cve_pocs parent_primary_url: https://github.com/scottybauer/android_kernel_cve_pocs source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/scottybauer/android_kernel_cve_pocs cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: false code_urls: https://github.com/scottybauer/and unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "b1082146c6bb601f",
      "item_id": "a7dcf0041007e121",
      "slug": "undated-exploits-f47h3r-hackingteam-exploits-primary-03f8ec8c",
      "year": null,
      "title": "f47h3r/hackingteam_exploits",
      "item_title": "f47h3r/hackingteam_exploits",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/f47h3r/hackingteam_exploits",
      "primary_url": "https://github.com/f47h3r/hackingteam_exploits",
      "parent_primary_url": "https://github.com/f47h3r/hackingteam_exploits",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-f47h3r-hackingteam-exploits-primary-03f8ec8c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# f47h3r/hackingteam_exploits record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: f47h3r/hackingteam_exploits resource_label: primary resource_type: exploit resource_url: https://github.com/f47h3r/hackingteam_exploits parent_primary_url: https://github.com/f47h3r/hackingteam_exploits source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/f47h3r/hackingteam_exploits cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/f47h3r/hackingteam_exploits context_links: - [exploi",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/f47h3r/hackingteam_exploits"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/f47h3r/hackingteam_exploits"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/f47h3r/hackingteam_exploits"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Exploits related to Hacking Team vulnerabilities.",
      "summary_zh": "与Hacking Team漏洞相关的利用代码。",
      "source_markdown": "https://github.com/f47h3r/hackingteam_exploits",
      "search_text": "f47h3r/hackingteam_exploits f47h3r/hackingteam_exploits    exploits  exploits primary exploit https://github.com/f47h3r/hackingteam_exploits exploit  exploit exploits related to hacking team vulnerabilities. 与hacking team漏洞相关的利用代码。 # f47h3r/hackingteam_exploits record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: f47h3r/hackingteam_exploits resource_label: primary resource_type: exploit resource_url: https://github.com/f47h3r/hackingteam_exploits parent_primary_url: https://github.com/f47h3r/hackingteam_exploits source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/f47h3r/hackingteam_exploits cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/f47h3r/hackingteam_exploits context_links: - [exploi unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "c31d46f11c0c8635",
      "item_id": "f7eb1d3dc2b1ca88",
      "slug": "undated-exploits-xairy-kernel-exploits-primary-e7256d2f",
      "year": null,
      "title": "xairy/kernel-exploits",
      "item_title": "xairy/kernel-exploits",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/xairy/kernel-exploits",
      "primary_url": "https://github.com/xairy/kernel-exploits",
      "parent_primary_url": "https://github.com/xairy/kernel-exploits",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-xairy-kernel-exploits-primary-e7256d2f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# xairy/kernel-exploits record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: xairy/kernel-exploits resource_label: primary resource_type: exploit resource_url: https://github.com/xairy/kernel-exploits parent_primary_url: https://github.com/xairy/kernel-exploits source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/xairy/kernel-exploits cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/xairy/kernel-exploits context_links: - [exploit] primary: https://github.com/xairy",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/xairy/kernel-exploits"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/xairy/kernel-exploits"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/xairy/kernel-exploits"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "A repository of various kernel exploits.",
      "summary_zh": "一个包含多种内核利用代码的库。",
      "source_markdown": "https://github.com/xairy/kernel-exploits",
      "search_text": "xairy/kernel-exploits xairy/kernel-exploits    exploits  exploits primary exploit https://github.com/xairy/kernel-exploits exploit  exploit a repository of various kernel exploits. 一个包含多种内核利用代码的库。 # xairy/kernel-exploits record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: xairy/kernel-exploits resource_label: primary resource_type: exploit resource_url: https://github.com/xairy/kernel-exploits parent_primary_url: https://github.com/xairy/kernel-exploits source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/xairy/kernel-exploits cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/xairy/kernel-exploits context_links: - [exploit] primary: https://github.com/xairy unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "779fae5aea38edb6",
      "item_id": "a596a50f3993c745",
      "slug": "2017-exploits-cve-2017-1000112-exploit-with-lkrg-bypass-primary-444a1329",
      "year": 2017,
      "title": "(CVE-2017-1000112 exploit with LKRG bypass)",
      "item_title": "(CVE-2017-1000112 exploit with LKRG bypass)",
      "authors": [],
      "cves": [
        "CVE-2017-1000112"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/milabs/kernel-exploits/blob/master/CVE-2017-1000112/poc.c",
      "primary_url": "https://github.com/milabs/kernel-exploits/blob/master/CVE-2017-1000112/poc.c",
      "parent_primary_url": "https://github.com/milabs/kernel-exploits/blob/master/CVE-2017-1000112/poc.c",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2017-exploits-cve-2017-1000112-exploit-with-lkrg-bypass-primary-444a1329.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# (CVE-2017-1000112 exploit with LKRG bypass) record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: (CVE-2017-1000112 exploit with LKRG bypass) resource_label: primary resource_type: exploit resource_url: https://github.com/milabs/kernel-exploits/blob/master/CVE-2017-1000112/poc.c parent_primary_url: https://github.com/milabs/kernel-exploits/blob/master/CVE-2017-1000112/poc.c source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/milabs/kernel-exploits/blob/master/CVE-2017-1000112/poc.c (CVE-2017-1000112 exploit with LKRG bypass) cves: CVE-2017-1000112 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS device",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/milabs/kernel-exploits/blob/master/CVE-2017-1000112/poc.c"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/milabs/kernel-exploits/blob/master/CVE-2017-1000112/poc.c"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/milabs/kernel-exploits/blob/master/CVE-2017-1000112/poc.c"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Exploit for CVE-2017-1000112 with a bypass for LKRG.",
      "summary_zh": "针对CVE-2017-1000112的利用代码，包含LKRG绕过。",
      "source_markdown": "https://github.com/milabs/kernel-exploits/blob/master/CVE-2017-1000112/poc.c (CVE-2017-1000112 exploit with LKRG bypass)",
      "search_text": "(cve-2017-1000112 exploit with lkrg bypass) (cve-2017-1000112 exploit with lkrg bypass)  cve-2017-1000112  exploits  exploits primary exploit https://github.com/milabs/kernel-exploits/blob/master/cve-2017-1000112/poc.c cve exploit  exploit exploit for cve-2017-1000112 with a bypass for lkrg. 针对cve-2017-1000112的利用代码，包含lkrg绕过。 # (cve-2017-1000112 exploit with lkrg bypass) record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: (cve-2017-1000112 exploit with lkrg bypass) resource_label: primary resource_type: exploit resource_url: https://github.com/milabs/kernel-exploits/blob/master/cve-2017-1000112/poc.c parent_primary_url: https://github.com/milabs/kernel-exploits/blob/master/cve-2017-1000112/poc.c source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/milabs/kernel-exploits/blob/master/cve-2017-1000112/poc.c (cve-2017-1000112 exploit with lkrg bypass) cves: cve-2017-1000112 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios device unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "103506f9adb99ea8",
      "item_id": "561a50463812b99a",
      "slug": "undated-exploits-kabot-unix-privilege-escalation-exploits-pack-primary-d2d31a9f",
      "year": null,
      "title": "Kabot/Unix-Privilege-Escalation-Exploits-Pack",
      "item_title": "Kabot/Unix-Privilege-Escalation-Exploits-Pack",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/Kabot/Unix-Privilege-Escalation-Exploits-Pack",
      "primary_url": "https://github.com/Kabot/Unix-Privilege-Escalation-Exploits-Pack",
      "parent_primary_url": "https://github.com/Kabot/Unix-Privilege-Escalation-Exploits-Pack",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-kabot-unix-privilege-escalation-exploits-pack-primary-d2d31a9f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kabot/Unix-Privilege-Escalation-Exploits-Pack record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: Kabot/Unix-Privilege-Escalation-Exploits-Pack resource_label: primary resource_type: exploit resource_url: https://github.com/Kabot/Unix-Privilege-Escalation-Exploits-Pack parent_primary_url: https://github.com/Kabot/Unix-Privilege-Escalation-Exploits-Pack source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/Kabot/Unix-Privilege-Escalation-Exploits-Pack cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_lin",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/Kabot/Unix-Privilege-Escalation-Exploits-Pack"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/Kabot/Unix-Privilege-Escalation-Exploits-Pack"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Kabot/Unix-Privilege-Escalation-Exploits-Pack"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "A pack of Unix privilege escalation exploits.",
      "summary_zh": "一组Unix特权提升利用代码。",
      "source_markdown": "https://github.com/Kabot/Unix-Privilege-Escalation-Exploits-Pack",
      "search_text": "kabot/unix-privilege-escalation-exploits-pack kabot/unix-privilege-escalation-exploits-pack    exploits  exploits primary exploit https://github.com/kabot/unix-privilege-escalation-exploits-pack exploit  exploit a pack of unix privilege escalation exploits. 一组unix特权提升利用代码。 # kabot/unix-privilege-escalation-exploits-pack record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: kabot/unix-privilege-escalation-exploits-pack resource_label: primary resource_type: exploit resource_url: https://github.com/kabot/unix-privilege-escalation-exploits-pack parent_primary_url: https://github.com/kabot/unix-privilege-escalation-exploits-pack source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/kabot/unix-privilege-escalation-exploits-pack cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_lin unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "9e25352ecd721559",
      "item_id": "41bc45272e455c5a",
      "slug": "undated-exploits-secwiki-linux-kernel-exploits-primary-77a754c5",
      "year": null,
      "title": "SecWiki/linux-kernel-exploits",
      "item_title": "SecWiki/linux-kernel-exploits",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/SecWiki/linux-kernel-exploits",
      "primary_url": "https://github.com/SecWiki/linux-kernel-exploits",
      "parent_primary_url": "https://github.com/SecWiki/linux-kernel-exploits",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-secwiki-linux-kernel-exploits-primary-77a754c5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SecWiki/linux-kernel-exploits record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: SecWiki/linux-kernel-exploits resource_label: primary resource_type: exploit resource_url: https://github.com/SecWiki/linux-kernel-exploits parent_primary_url: https://github.com/SecWiki/linux-kernel-exploits source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/SecWiki/linux-kernel-exploits cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/SecWiki/linux-kernel-exploits context_link",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/SecWiki/linux-kernel-exploits"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/SecWiki/linux-kernel-exploits"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/SecWiki/linux-kernel-exploits"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "A collection of Linux kernel exploits.",
      "summary_zh": "一个包含Linux内核利用代码的集合。",
      "source_markdown": "https://github.com/SecWiki/linux-kernel-exploits",
      "search_text": "secwiki/linux-kernel-exploits secwiki/linux-kernel-exploits    exploits  exploits primary exploit https://github.com/secwiki/linux-kernel-exploits exploit  exploit a collection of linux kernel exploits. 一个包含linux内核利用代码的集合。 # secwiki/linux-kernel-exploits record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: secwiki/linux-kernel-exploits resource_label: primary resource_type: exploit resource_url: https://github.com/secwiki/linux-kernel-exploits parent_primary_url: https://github.com/secwiki/linux-kernel-exploits source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/secwiki/linux-kernel-exploits cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/secwiki/linux-kernel-exploits context_link unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "12b73afd749e4ff2",
      "item_id": "30daaf8184fceb67",
      "slug": "undated-exploits-exploits-primary-f92e8d51",
      "year": null,
      "title": "exploits",
      "item_title": "exploits",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://grsecurity.net/~spender/exploits/",
      "primary_url": "https://grsecurity.net/~spender/exploits/",
      "parent_primary_url": "https://grsecurity.net/~spender/exploits/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-exploits-primary-f92e8d51.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# exploits record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: exploits resource_label: primary resource_type: exploit resource_url: https://grsecurity.net/~spender/exploits/ parent_primary_url: https://grsecurity.net/~spender/exploits/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://grsecurity.net/~spender/exploits/ cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://grsecurity.net/~spender/exploits/ context_links: - [exploit] primary: https://grsecurity.net/~spender/exploits/ fetc",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://grsecurity.net/~spender/exploits/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://grsecurity.net/~spender/exploits/"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://grsecurity.net/~spender/exploits/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "A collection of various exploits.",
      "summary_zh": "一个包含各种利用代码的集合。",
      "source_markdown": "https://grsecurity.net/~spender/exploits/",
      "search_text": "exploits exploits    exploits  exploits primary exploit https://grsecurity.net/~spender/exploits/ exploit  exploit a collection of various exploits. 一个包含各种利用代码的集合。 # exploits record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: exploits resource_label: primary resource_type: exploit resource_url: https://grsecurity.net/~spender/exploits/ parent_primary_url: https://grsecurity.net/~spender/exploits/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://grsecurity.net/~spender/exploits/ cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://grsecurity.net/~spender/exploits/ context_links: - [exploit] primary: https://grsecurity.net/~spender/exploits/ fetc unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "8baf588a49a33ded",
      "item_id": "89c8d853d68aa507",
      "slug": "undated-exploits-jiayy-android-vuln-poc-exp-primary-cd79fdf7",
      "year": null,
      "title": "jiayy/android_vuln_poc-exp",
      "item_title": "jiayy/android_vuln_poc-exp",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "poc",
      "resource_url": "https://github.com/jiayy/android_vuln_poc-exp",
      "primary_url": "https://github.com/jiayy/android_vuln_poc-exp",
      "parent_primary_url": "https://github.com/jiayy/android_vuln_poc-exp",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-jiayy-android-vuln-poc-exp-primary-cd79fdf7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# jiayy/android_vuln_poc-exp record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: jiayy/android_vuln_poc-exp resource_label: primary resource_type: poc resource_url: https://github.com/jiayy/android_vuln_poc-exp parent_primary_url: https://github.com/jiayy/android_vuln_poc-exp source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/jiayy/android_vuln_poc-exp cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: false code_urls: https://github.com/jiayy/android_vuln_poc-exp context_links: - [poc] primary: h",
      "link_types": [
        "poc"
      ],
      "links": [
        {
          "label": "primary",
          "type": "poc",
          "url": "https://github.com/jiayy/android_vuln_poc-exp"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [
          {
            "label": "primary",
            "type": "poc",
            "url": "https://github.com/jiayy/android_vuln_poc-exp"
          }
        ],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/jiayy/android_vuln_poc-exp"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "POC",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Proof-of-concept exploits for Android vulnerabilities.",
      "summary_zh": "针对Android漏洞的概念验证利用代码。",
      "source_markdown": "https://github.com/jiayy/android_vuln_poc-exp",
      "search_text": "jiayy/android_vuln_poc-exp jiayy/android_vuln_poc-exp    exploits  exploits primary poc https://github.com/jiayy/android_vuln_poc-exp poc android  exploit proof-of-concept exploits for android vulnerabilities. 针对android漏洞的概念验证利用代码。 # jiayy/android_vuln_poc-exp record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: jiayy/android_vuln_poc-exp resource_label: primary resource_type: poc resource_url: https://github.com/jiayy/android_vuln_poc-exp parent_primary_url: https://github.com/jiayy/android_vuln_poc-exp source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/jiayy/android_vuln_poc-exp cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: false code_urls: https://github.com/jiayy/android_vuln_poc-exp context_links: - [poc] primary: h unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "1d76f93e40264d35",
      "item_id": "f304bb10c9f59980",
      "slug": "undated-exploits-marsyy-littl-tools-primary-e58f0a93",
      "year": null,
      "title": "marsyy/littl_tools",
      "item_title": "marsyy/littl_tools",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "tool",
      "resource_url": "https://github.com/marsyy/littl_tools/tree/master/bluetooth",
      "primary_url": "https://github.com/marsyy/littl_tools/tree/master/bluetooth",
      "parent_primary_url": "https://github.com/marsyy/littl_tools/tree/master/bluetooth",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-marsyy-littl-tools-primary-e58f0a93.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# marsyy/littl_tools record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: marsyy/littl_tools resource_label: primary resource_type: tool resource_url: https://github.com/marsyy/littl_tools/tree/master/bluetooth parent_primary_url: https://github.com/marsyy/littl_tools/tree/master/bluetooth source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/marsyy/littl_tools/tree/master/bluetooth cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/marsyy/littl_tools/tree/master/b",
      "link_types": [
        "tool"
      ],
      "links": [
        {
          "label": "primary",
          "type": "tool",
          "url": "https://github.com/marsyy/littl_tools/tree/master/bluetooth"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "tool",
            "url": "https://github.com/marsyy/littl_tools/tree/master/bluetooth"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/marsyy/littl_tools/tree/master/bluetooth"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tool",
        "Bluetooth"
      ],
      "affected_area": "",
      "exploit_stage": "tool",
      "summary_en": "Tools for exploiting Bluetooth vulnerabilities.",
      "summary_zh": "用于利用蓝牙漏洞的工具。",
      "source_markdown": "https://github.com/marsyy/littl_tools/tree/master/bluetooth",
      "search_text": "marsyy/littl_tools marsyy/littl_tools    exploits  exploits primary tool https://github.com/marsyy/littl_tools/tree/master/bluetooth tool bluetooth  tool tools for exploiting bluetooth vulnerabilities. 用于利用蓝牙漏洞的工具。 # marsyy/littl_tools record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: marsyy/littl_tools resource_label: primary resource_type: tool resource_url: https://github.com/marsyy/littl_tools/tree/master/bluetooth parent_primary_url: https://github.com/marsyy/littl_tools/tree/master/bluetooth source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/marsyy/littl_tools/tree/master/bluetooth cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/marsyy/littl_tools/tree/master/b unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "e3aae56b78c895b3",
      "item_id": "49b796b40c243aea",
      "slug": "2017-exploits-nongiach-cve-primary-6bd194bc",
      "year": 2017,
      "title": "nongiach/CVE",
      "item_title": "nongiach/CVE",
      "authors": [],
      "cves": [
        "CVE-2017-5123"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/nongiach/CVE/tree/master/CVE-2017-5123",
      "primary_url": "https://github.com/nongiach/CVE/tree/master/CVE-2017-5123",
      "parent_primary_url": "https://github.com/nongiach/CVE/tree/master/CVE-2017-5123",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2017-exploits-nongiach-cve-primary-6bd194bc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# nongiach/CVE record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: nongiach/CVE resource_label: primary resource_type: code resource_url: https://github.com/nongiach/CVE/tree/master/CVE-2017-5123 parent_primary_url: https://github.com/nongiach/CVE/tree/master/CVE-2017-5123 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/nongiach/CVE/tree/master/CVE-2017-5123 cves: CVE-2017-5123 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/nongiach/CVE/tree/master/CVE-2017-5123 co",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/nongiach/CVE/tree/master/CVE-2017-5123"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/nongiach/CVE/tree/master/CVE-2017-5123"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/nongiach/CVE/tree/master/CVE-2017-5123"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE"
      ],
      "affected_area": "",
      "exploit_stage": "code",
      "summary_en": "Code related to CVE-2017-5123.",
      "summary_zh": "与CVE-2017-5123相关的代码。",
      "source_markdown": "https://github.com/nongiach/CVE/tree/master/CVE-2017-5123",
      "search_text": "nongiach/cve nongiach/cve  cve-2017-5123  exploits  exploits primary code https://github.com/nongiach/cve/tree/master/cve-2017-5123 cve  code code related to cve-2017-5123. 与cve-2017-5123相关的代码。 # nongiach/cve record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: nongiach/cve resource_label: primary resource_type: code resource_url: https://github.com/nongiach/cve/tree/master/cve-2017-5123 parent_primary_url: https://github.com/nongiach/cve/tree/master/cve-2017-5123 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/nongiach/cve/tree/master/cve-2017-5123 cves: cve-2017-5123 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/nongiach/cve/tree/master/cve-2017-5123 co unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "a82863580fbf6bc7",
      "item_id": "02faf83afafd68af",
      "slug": "2010-exploits-268-primary-81dda913",
      "year": 2010,
      "title": "268",
      "item_title": "268",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://seclists.org/fulldisclosure/2010/Sep/268",
      "primary_url": "http://seclists.org/fulldisclosure/2010/Sep/268",
      "parent_primary_url": "http://seclists.org/fulldisclosure/2010/Sep/268",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2010-exploits-268-primary-81dda913.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 268 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: 268 resource_label: primary resource_type: article resource_url: http://seclists.org/fulldisclosure/2010/Sep/268 parent_primary_url: http://seclists.org/fulldisclosure/2010/Sep/268 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: http://seclists.org/fulldisclosure/2010/Sep/268 cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: http://seclists.org/fulldisclosure/2010/Sep/268 fetch_status: skipped fe",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://seclists.org/fulldisclosure/2010/Sep/268"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://seclists.org/fulldisclosure/2010/Sep/268"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "An article discussing various exploits.",
      "summary_zh": "一篇讨论各种利用代码的文章。",
      "source_markdown": "http://seclists.org/fulldisclosure/2010/Sep/268",
      "search_text": "268 268    exploits  exploits primary article http://seclists.org/fulldisclosure/2010/sep/268   article an article discussing various exploits. 一篇讨论各种利用代码的文章。 # 268 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: 268 resource_label: primary resource_type: article resource_url: http://seclists.org/fulldisclosure/2010/sep/268 parent_primary_url: http://seclists.org/fulldisclosure/2010/sep/268 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: http://seclists.org/fulldisclosure/2010/sep/268 cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: http://seclists.org/fulldisclosure/2010/sep/268 fetch_status: skipped fe unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "72d2a45786d33ed4",
      "item_id": "fe639d5fad202afe",
      "slug": "undated-exploits-hardenedlinux-offensive-poc-primary-1615992c",
      "year": null,
      "title": "hardenedlinux/offensive_poc",
      "item_title": "hardenedlinux/offensive_poc",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "poc",
      "resource_url": "https://github.com/hardenedlinux/offensive_poc",
      "primary_url": "https://github.com/hardenedlinux/offensive_poc",
      "parent_primary_url": "https://github.com/hardenedlinux/offensive_poc",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-hardenedlinux-offensive-poc-primary-1615992c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# hardenedlinux/offensive_poc record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: hardenedlinux/offensive_poc resource_label: primary resource_type: poc resource_url: https://github.com/hardenedlinux/offensive_poc parent_primary_url: https://github.com/hardenedlinux/offensive_poc source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/hardenedlinux/offensive_poc cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: false code_urls: https://github.com/hardenedlinux/offensive_poc context_links: - [poc] prim",
      "link_types": [
        "poc"
      ],
      "links": [
        {
          "label": "primary",
          "type": "poc",
          "url": "https://github.com/hardenedlinux/offensive_poc"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [
          {
            "label": "primary",
            "type": "poc",
            "url": "https://github.com/hardenedlinux/offensive_poc"
          }
        ],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/hardenedlinux/offensive_poc"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "POC"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Proof-of-concept exploits for various vulnerabilities.",
      "summary_zh": "针对各种漏洞的概念验证利用代码。",
      "source_markdown": "https://github.com/hardenedlinux/offensive_poc",
      "search_text": "hardenedlinux/offensive_poc hardenedlinux/offensive_poc    exploits  exploits primary poc https://github.com/hardenedlinux/offensive_poc poc  exploit proof-of-concept exploits for various vulnerabilities. 针对各种漏洞的概念验证利用代码。 # hardenedlinux/offensive_poc record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: hardenedlinux/offensive_poc resource_label: primary resource_type: poc resource_url: https://github.com/hardenedlinux/offensive_poc parent_primary_url: https://github.com/hardenedlinux/offensive_poc source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/hardenedlinux/offensive_poc cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: false code_urls: https://github.com/hardenedlinux/offensive_poc context_links: - [poc] prim unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "d89b59836f3ff957",
      "item_id": "2160bcef8aebc684",
      "slug": "undated-exploits-brl-grlh-primary-04e25d05",
      "year": null,
      "title": "brl/grlh",
      "item_title": "brl/grlh",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/brl/grlh",
      "primary_url": "https://github.com/brl/grlh",
      "parent_primary_url": "https://github.com/brl/grlh",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-brl-grlh-primary-04e25d05.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# brl/grlh record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: brl/grlh resource_label: primary resource_type: code resource_url: https://github.com/brl/grlh parent_primary_url: https://github.com/brl/grlh source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/brl/grlh cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/brl/grlh context_links: - [code] primary: https://github.com/brl/grlh fetch_status: skipped fetch_note: original URL is preserved; public dataset st",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/brl/grlh"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/brl/grlh"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/brl/grlh"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "code",
      "summary_en": "Code repository for various exploits.",
      "summary_zh": "包含各种利用代码的代码库。",
      "source_markdown": "https://github.com/brl/grlh",
      "search_text": "brl/grlh brl/grlh    exploits  exploits primary code https://github.com/brl/grlh code  code code repository for various exploits. 包含各种利用代码的代码库。 # brl/grlh record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: brl/grlh resource_label: primary resource_type: code resource_url: https://github.com/brl/grlh parent_primary_url: https://github.com/brl/grlh source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/brl/grlh cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/brl/grlh context_links: - [code] primary: https://github.com/brl/grlh fetch_status: skipped fetch_note: original url is preserved; public dataset st unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "0f2702b905bf6e64",
      "item_id": "9c940ec644f9bc2d",
      "slug": "undated-exploits-externalist-exploit-playground-primary-27f8da8c",
      "year": null,
      "title": "externalist/exploit_playground",
      "item_title": "externalist/exploit_playground",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/externalist/exploit_playground",
      "primary_url": "https://github.com/externalist/exploit_playground",
      "parent_primary_url": "https://github.com/externalist/exploit_playground",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-externalist-exploit-playground-primary-27f8da8c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# externalist/exploit_playground record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: externalist/exploit_playground resource_label: primary resource_type: exploit resource_url: https://github.com/externalist/exploit_playground parent_primary_url: https://github.com/externalist/exploit_playground source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/externalist/exploit_playground cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/externalist/exploit_playground contex",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/externalist/exploit_playground"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/externalist/exploit_playground"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/externalist/exploit_playground"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "A playground for testing various exploits.",
      "summary_zh": "用于测试各种利用代码的实验场。",
      "source_markdown": "https://github.com/externalist/exploit_playground",
      "search_text": "externalist/exploit_playground externalist/exploit_playground    exploits  exploits primary exploit https://github.com/externalist/exploit_playground exploit  exploit a playground for testing various exploits. 用于测试各种利用代码的实验场。 # externalist/exploit_playground record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: externalist/exploit_playground resource_label: primary resource_type: exploit resource_url: https://github.com/externalist/exploit_playground parent_primary_url: https://github.com/externalist/exploit_playground source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/externalist/exploit_playground cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/externalist/exploit_playground contex unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "18552273e1275893",
      "item_id": "fac8a4b16f9b25cd",
      "slug": "undated-exploits-ww9210-linux-kernel-exploits-primary-e8ef3910",
      "year": null,
      "title": "ww9210/Linux_kernel_exploits",
      "item_title": "ww9210/Linux_kernel_exploits",
      "authors": [],
      "cves": [],
      "tags": [
        "FUZE"
      ],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/ww9210/Linux_kernel_exploits",
      "primary_url": "https://github.com/ww9210/Linux_kernel_exploits",
      "parent_primary_url": "https://github.com/ww9210/Linux_kernel_exploits",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-ww9210-linux-kernel-exploits-primary-e8ef3910.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ww9210/Linux_kernel_exploits record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: ww9210/Linux_kernel_exploits resource_label: primary resource_type: exploit resource_url: https://github.com/ww9210/Linux_kernel_exploits parent_primary_url: https://github.com/ww9210/Linux_kernel_exploits source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/ww9210/Linux_kernel_exploits [FUZE] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/ww9210/Linux_kernel_exploits context_lin",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/ww9210/Linux_kernel_exploits"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/ww9210/Linux_kernel_exploits"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ww9210/Linux_kernel_exploits"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "FUZE"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "A collection of Linux kernel exploits tagged with FUZE.",
      "summary_zh": "标记为FUZE的Linux内核利用代码集合。",
      "source_markdown": "https://github.com/ww9210/Linux_kernel_exploits [FUZE]",
      "search_text": "ww9210/linux_kernel_exploits ww9210/linux_kernel_exploits   fuze exploits  exploits primary exploit https://github.com/ww9210/linux_kernel_exploits exploit fuze  exploit a collection of linux kernel exploits tagged with fuze. 标记为fuze的linux内核利用代码集合。 # ww9210/linux_kernel_exploits record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: ww9210/linux_kernel_exploits resource_label: primary resource_type: exploit resource_url: https://github.com/ww9210/linux_kernel_exploits parent_primary_url: https://github.com/ww9210/linux_kernel_exploits source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/ww9210/linux_kernel_exploits [fuze] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/ww9210/linux_kernel_exploits context_lin unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "0d83b8e4f85c34c4",
      "item_id": "53597fe2f30fca9a",
      "slug": "undated-exploits-ww9210-kepler-cfhp-primary-07cb118c",
      "year": null,
      "title": "ww9210/kepler-cfhp",
      "item_title": "ww9210/kepler-cfhp",
      "authors": [],
      "cves": [],
      "tags": [
        "KEPLER"
      ],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/ww9210/kepler-cfhp",
      "primary_url": "https://github.com/ww9210/kepler-cfhp",
      "parent_primary_url": "https://github.com/ww9210/kepler-cfhp",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-ww9210-kepler-cfhp-primary-07cb118c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ww9210/kepler-cfhp record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: ww9210/kepler-cfhp resource_label: primary resource_type: code resource_url: https://github.com/ww9210/kepler-cfhp parent_primary_url: https://github.com/ww9210/kepler-cfhp source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/ww9210/kepler-cfhp [KEPLER] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/ww9210/kepler-cfhp context_links: - [code] primary: https://github.com/ww9210/kepler-cfhp",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/ww9210/kepler-cfhp"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/ww9210/kepler-cfhp"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ww9210/kepler-cfhp"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "code",
        "KEPLER"
      ],
      "affected_area": "",
      "exploit_stage": "code",
      "summary_en": "Code related to the KEPLER project.",
      "summary_zh": "与KEPLER项目相关的代码。",
      "source_markdown": "https://github.com/ww9210/kepler-cfhp [KEPLER]",
      "search_text": "ww9210/kepler-cfhp ww9210/kepler-cfhp   kepler exploits  exploits primary code https://github.com/ww9210/kepler-cfhp code kepler  code code related to the kepler project. 与kepler项目相关的代码。 # ww9210/kepler-cfhp record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: ww9210/kepler-cfhp resource_label: primary resource_type: code resource_url: https://github.com/ww9210/kepler-cfhp parent_primary_url: https://github.com/ww9210/kepler-cfhp source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/ww9210/kepler-cfhp [kepler] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/ww9210/kepler-cfhp context_links: - [code] primary: https://github.com/ww9210/kepler-cfhp unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "cb5fca7d070827bc",
      "item_id": "d56ba37df78a7b92",
      "slug": "undated-exploits-yzimhao-godpock-primary-183a6064",
      "year": null,
      "title": "yzimhao/godpock",
      "item_title": "yzimhao/godpock",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "poc",
      "resource_url": "https://github.com/yzimhao/godpock",
      "primary_url": "https://github.com/yzimhao/godpock",
      "parent_primary_url": "https://github.com/yzimhao/godpock",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-yzimhao-godpock-primary-183a6064.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# yzimhao/godpock record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: yzimhao/godpock resource_label: primary resource_type: poc resource_url: https://github.com/yzimhao/godpock parent_primary_url: https://github.com/yzimhao/godpock source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/yzimhao/godpock cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: false code_urls: https://github.com/yzimhao/godpock context_links: - [poc] primary: https://github.com/yzimhao/godpock fetch_status: skipped fetch_note",
      "link_types": [
        "poc"
      ],
      "links": [
        {
          "label": "primary",
          "type": "poc",
          "url": "https://github.com/yzimhao/godpock"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [
          {
            "label": "primary",
            "type": "poc",
            "url": "https://github.com/yzimhao/godpock"
          }
        ],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/yzimhao/godpock"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "POC"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Proof-of-concept exploits for various vulnerabilities.",
      "summary_zh": "针对各种漏洞的概念验证利用代码。",
      "source_markdown": "https://github.com/yzimhao/godpock",
      "search_text": "yzimhao/godpock yzimhao/godpock    exploits  exploits primary poc https://github.com/yzimhao/godpock poc  exploit proof-of-concept exploits for various vulnerabilities. 针对各种漏洞的概念验证利用代码。 # yzimhao/godpock record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: yzimhao/godpock resource_label: primary resource_type: poc resource_url: https://github.com/yzimhao/godpock parent_primary_url: https://github.com/yzimhao/godpock source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/yzimhao/godpock cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: false code_urls: https://github.com/yzimhao/godpock context_links: - [poc] primary: https://github.com/yzimhao/godpock fetch_status: skipped fetch_note unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "ba8bbd25b4ba6f7c",
      "item_id": "9902b22ac970c4c1",
      "slug": "undated-exploits-packetforger-localroot-primary-9b28bb63",
      "year": null,
      "title": "packetforger/localroot",
      "item_title": "packetforger/localroot",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/packetforger/localroot",
      "primary_url": "https://github.com/packetforger/localroot",
      "parent_primary_url": "https://github.com/packetforger/localroot",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-packetforger-localroot-primary-9b28bb63.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# packetforger/localroot record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: packetforger/localroot resource_label: primary resource_type: code resource_url: https://github.com/packetforger/localroot parent_primary_url: https://github.com/packetforger/localroot source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/packetforger/localroot cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/packetforger/localroot context_links: - [code] primary: https://github.com/pac",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/packetforger/localroot"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/packetforger/localroot"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/packetforger/localroot"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "code",
      "summary_en": "Code for local root exploits.",
      "summary_zh": "用于本地根权限提升的利用代码。",
      "source_markdown": "https://github.com/packetforger/localroot",
      "search_text": "packetforger/localroot packetforger/localroot    exploits  exploits primary code https://github.com/packetforger/localroot code  code code for local root exploits. 用于本地根权限提升的利用代码。 # packetforger/localroot record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: packetforger/localroot resource_label: primary resource_type: code resource_url: https://github.com/packetforger/localroot parent_primary_url: https://github.com/packetforger/localroot source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/packetforger/localroot cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/packetforger/localroot context_links: - [code] primary: https://github.com/pac unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "19bf9c744ba60e8d",
      "item_id": "0f574b515e50cd1c",
      "slug": "undated-exploits-ret2dir-primary-e9ac039b",
      "year": null,
      "title": "ret2dir",
      "item_title": "ret2dir",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://www.cs.columbia.edu/~vpk/research/ret2dir/",
      "primary_url": "http://www.cs.columbia.edu/~vpk/research/ret2dir/",
      "parent_primary_url": "http://www.cs.columbia.edu/~vpk/research/ret2dir/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-ret2dir-primary-e9ac039b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ret2dir record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: ret2dir resource_label: primary resource_type: article resource_url: http://www.cs.columbia.edu/~vpk/research/ret2dir/ parent_primary_url: http://www.cs.columbia.edu/~vpk/research/ret2dir/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: http://www.cs.columbia.edu/~vpk/research/ret2dir/ cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: http://www.cs.columbia.edu/~vpk/research/ret2dir/ fetch_st",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://www.cs.columbia.edu/~vpk/research/ret2dir/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://www.cs.columbia.edu/~vpk/research/ret2dir/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "An article discussing the ret2dir exploit technique.",
      "summary_zh": "一篇讨论ret2dir利用技术的文章。",
      "source_markdown": "http://www.cs.columbia.edu/~vpk/research/ret2dir/",
      "search_text": "ret2dir ret2dir    exploits  exploits primary article http://www.cs.columbia.edu/~vpk/research/ret2dir/   article an article discussing the ret2dir exploit technique. 一篇讨论ret2dir利用技术的文章。 # ret2dir record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: ret2dir resource_label: primary resource_type: article resource_url: http://www.cs.columbia.edu/~vpk/research/ret2dir/ parent_primary_url: http://www.cs.columbia.edu/~vpk/research/ret2dir/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: http://www.cs.columbia.edu/~vpk/research/ret2dir/ cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: http://www.cs.columbia.edu/~vpk/research/ret2dir/ fetch_st unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1e4a38ea20e71d81",
      "item_id": "58f48f14d0c87562",
      "slug": "undated-exploits-w0lfzhang-kernel-exploit-primary-dbd476e3",
      "year": null,
      "title": "w0lfzhang/kernel_exploit",
      "item_title": "w0lfzhang/kernel_exploit",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/w0lfzhang/kernel_exploit",
      "primary_url": "https://github.com/w0lfzhang/kernel_exploit",
      "parent_primary_url": "https://github.com/w0lfzhang/kernel_exploit",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-w0lfzhang-kernel-exploit-primary-dbd476e3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# w0lfzhang/kernel_exploit record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: w0lfzhang/kernel_exploit resource_label: primary resource_type: exploit resource_url: https://github.com/w0lfzhang/kernel_exploit parent_primary_url: https://github.com/w0lfzhang/kernel_exploit source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/w0lfzhang/kernel_exploit cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/w0lfzhang/kernel_exploit context_links: - [exploit] primary: https:",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/w0lfzhang/kernel_exploit"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/w0lfzhang/kernel_exploit"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/w0lfzhang/kernel_exploit"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "A repository of kernel exploit techniques.",
      "summary_zh": "一个包含内核利用技术的代码库。",
      "source_markdown": "https://github.com/w0lfzhang/kernel_exploit",
      "search_text": "w0lfzhang/kernel_exploit w0lfzhang/kernel_exploit    exploits  exploits primary exploit https://github.com/w0lfzhang/kernel_exploit exploit  exploit a repository of kernel exploit techniques. 一个包含内核利用技术的代码库。 # w0lfzhang/kernel_exploit record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: w0lfzhang/kernel_exploit resource_label: primary resource_type: exploit resource_url: https://github.com/w0lfzhang/kernel_exploit parent_primary_url: https://github.com/w0lfzhang/kernel_exploit source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/w0lfzhang/kernel_exploit cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/w0lfzhang/kernel_exploit context_links: - [exploit] primary: https: unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "961bfc2182b2851e",
      "item_id": "7b0b85541ee6aee5",
      "slug": "undated-exploits-jinb-park-linux-exploit-primary-6a3e20d0",
      "year": null,
      "title": "jinb-park/linux-exploit",
      "item_title": "jinb-park/linux-exploit",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/jinb-park/linux-exploit",
      "primary_url": "https://github.com/jinb-park/linux-exploit",
      "parent_primary_url": "https://github.com/jinb-park/linux-exploit",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-jinb-park-linux-exploit-primary-6a3e20d0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# jinb-park/linux-exploit record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: jinb-park/linux-exploit resource_label: primary resource_type: exploit resource_url: https://github.com/jinb-park/linux-exploit parent_primary_url: https://github.com/jinb-park/linux-exploit source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/jinb-park/linux-exploit cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/jinb-park/linux-exploit context_links: - [exploit] primary: https://gith",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/jinb-park/linux-exploit"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/jinb-park/linux-exploit"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/jinb-park/linux-exploit"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "linux",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "A repository containing various Linux kernel exploits.",
      "summary_zh": "一个包含各种Linux内核漏洞利用的库。",
      "source_markdown": "https://github.com/jinb-park/linux-exploit",
      "search_text": "jinb-park/linux-exploit jinb-park/linux-exploit    exploits  exploits primary exploit https://github.com/jinb-park/linux-exploit exploit linux kernel  exploit a repository containing various linux kernel exploits. 一个包含各种linux内核漏洞利用的库。 # jinb-park/linux-exploit record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: jinb-park/linux-exploit resource_label: primary resource_type: exploit resource_url: https://github.com/jinb-park/linux-exploit parent_primary_url: https://github.com/jinb-park/linux-exploit source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/jinb-park/linux-exploit cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/jinb-park/linux-exploit context_links: - [exploit] primary: https://gith unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "6bdee6c5fd47d9ef",
      "item_id": "63613609c9dd1b68",
      "slug": "undated-exploits-bcoles-kernel-exploits-primary-fb3be628",
      "year": null,
      "title": "bcoles/kernel-exploits",
      "item_title": "bcoles/kernel-exploits",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/bcoles/kernel-exploits",
      "primary_url": "https://github.com/bcoles/kernel-exploits",
      "parent_primary_url": "https://github.com/bcoles/kernel-exploits",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-bcoles-kernel-exploits-primary-fb3be628.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# bcoles/kernel-exploits record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: bcoles/kernel-exploits resource_label: primary resource_type: exploit resource_url: https://github.com/bcoles/kernel-exploits parent_primary_url: https://github.com/bcoles/kernel-exploits source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/bcoles/kernel-exploits cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/bcoles/kernel-exploits context_links: - [exploit] primary: https://github.com",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/bcoles/kernel-exploits"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/bcoles/kernel-exploits"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/bcoles/kernel-exploits"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Collection of kernel exploits for various vulnerabilities.",
      "summary_zh": "各种漏洞的内核利用集合。",
      "source_markdown": "https://github.com/bcoles/kernel-exploits",
      "search_text": "bcoles/kernel-exploits bcoles/kernel-exploits    exploits  exploits primary exploit https://github.com/bcoles/kernel-exploits exploit kernel  exploit collection of kernel exploits for various vulnerabilities. 各种漏洞的内核利用集合。 # bcoles/kernel-exploits record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: bcoles/kernel-exploits resource_label: primary resource_type: exploit resource_url: https://github.com/bcoles/kernel-exploits parent_primary_url: https://github.com/bcoles/kernel-exploits source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/bcoles/kernel-exploits cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/bcoles/kernel-exploits context_links: - [exploit] primary: https://github.com unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "cc5a4c62c1375819",
      "item_id": "a13136655f4beda1",
      "slug": "undated-exploits-jollheef-lpe-primary-948fc72f",
      "year": null,
      "title": "jollheef/lpe",
      "item_title": "jollheef/lpe",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/jollheef/lpe",
      "primary_url": "https://github.com/jollheef/lpe",
      "parent_primary_url": "https://github.com/jollheef/lpe",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-jollheef-lpe-primary-948fc72f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# jollheef/lpe record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: jollheef/lpe resource_label: primary resource_type: code resource_url: https://github.com/jollheef/lpe parent_primary_url: https://github.com/jollheef/lpe source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/jollheef/lpe cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/jollheef/lpe context_links: - [code] primary: https://github.com/jollheef/lpe fetch_status: skipped fetch_note: original URL is ",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/jollheef/lpe"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/jollheef/lpe"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/jollheef/lpe"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "lpe",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Code repository for local privilege escalation exploits.",
      "summary_zh": "本地权限提升漏洞利用的代码库。",
      "source_markdown": "https://github.com/jollheef/lpe",
      "search_text": "jollheef/lpe jollheef/lpe    exploits  exploits primary code https://github.com/jollheef/lpe lpe exploit  exploit code repository for local privilege escalation exploits. 本地权限提升漏洞利用的代码库。 # jollheef/lpe record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: jollheef/lpe resource_label: primary resource_type: code resource_url: https://github.com/jollheef/lpe parent_primary_url: https://github.com/jollheef/lpe source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/jollheef/lpe cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/jollheef/lpe context_links: - [code] primary: https://github.com/jollheef/lpe fetch_status: skipped fetch_note: original url is  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ef3d50baca4cf30d",
      "item_id": "5a34561e2b267017",
      "slug": "undated-exploits-tangsilian-android-vuln-primary-6c669a04",
      "year": null,
      "title": "tangsilian/android-vuln",
      "item_title": "tangsilian/android-vuln",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/tangsilian/android-vuln",
      "primary_url": "https://github.com/tangsilian/android-vuln",
      "parent_primary_url": "https://github.com/tangsilian/android-vuln",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-tangsilian-android-vuln-primary-6c669a04.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# tangsilian/android-vuln record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: tangsilian/android-vuln resource_label: primary resource_type: code resource_url: https://github.com/tangsilian/android-vuln parent_primary_url: https://github.com/tangsilian/android-vuln source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/tangsilian/android-vuln cves: none android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/tangsilian/android-vuln context_links: - [code] primary: https://github.com/tangsilian/android-vuln fetch_status: skipped fetch_note: original URL is preserved; public dataset s",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/tangsilian/android-vuln"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/tangsilian/android-vuln"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/tangsilian/android-vuln"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "android"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Exploit code targeting Android vulnerabilities.",
      "summary_zh": "针对Android漏洞的利用代码。",
      "source_markdown": "https://github.com/tangsilian/android-vuln",
      "search_text": "tangsilian/android-vuln tangsilian/android-vuln    exploits  exploits primary code https://github.com/tangsilian/android-vuln exploit android  exploit exploit code targeting android vulnerabilities. 针对android漏洞的利用代码。 # tangsilian/android-vuln record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: tangsilian/android-vuln resource_label: primary resource_type: code resource_url: https://github.com/tangsilian/android-vuln parent_primary_url: https://github.com/tangsilian/android-vuln source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/tangsilian/android-vuln cves: none android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/tangsilian/android-vuln context_links: - [code] primary: https://github.com/tangsilian/android-vuln fetch_status: skipped fetch_note: original url is preserved; public dataset s yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "b763e1d1c5fc2541",
      "item_id": "bd5e59943ae21206",
      "slug": "undated-exploits-grant-h-qu1ckr00t-primary-581b7d7d",
      "year": null,
      "title": "grant-h/qu1ckr00t",
      "item_title": "grant-h/qu1ckr00t",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/grant-h/qu1ckr00t",
      "primary_url": "https://github.com/grant-h/qu1ckr00t",
      "parent_primary_url": "https://github.com/grant-h/qu1ckr00t",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-grant-h-qu1ckr00t-primary-581b7d7d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# grant-h/qu1ckr00t record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: grant-h/qu1ckr00t resource_label: primary resource_type: code resource_url: https://github.com/grant-h/qu1ckr00t parent_primary_url: https://github.com/grant-h/qu1ckr00t source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/grant-h/qu1ckr00t cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/grant-h/qu1ckr00t context_links: - [code] primary: https://github.com/grant-h/qu1ckr00t fetch_status: s",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/grant-h/qu1ckr00t"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/grant-h/qu1ckr00t"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/grant-h/qu1ckr00t"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "android"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Exploit code for gaining root access on Android devices.",
      "summary_zh": "用于获取Android设备root访问权限的利用代码。",
      "source_markdown": "https://github.com/grant-h/qu1ckr00t",
      "search_text": "grant-h/qu1ckr00t grant-h/qu1ckr00t    exploits  exploits primary code https://github.com/grant-h/qu1ckr00t exploit android  exploit exploit code for gaining root access on android devices. 用于获取android设备root访问权限的利用代码。 # grant-h/qu1ckr00t record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: grant-h/qu1ckr00t resource_label: primary resource_type: code resource_url: https://github.com/grant-h/qu1ckr00t parent_primary_url: https://github.com/grant-h/qu1ckr00t source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/grant-h/qu1ckr00t cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/grant-h/qu1ckr00t context_links: - [code] primary: https://github.com/grant-h/qu1ckr00t fetch_status: s unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "e2fbea62b53081c3",
      "item_id": "d9e8edf0e03656fd",
      "slug": "2019-exploits-kangtastic-cve-2019-2215-primary-7afa1782",
      "year": 2019,
      "title": "kangtastic/cve-2019-2215",
      "item_title": "kangtastic/cve-2019-2215",
      "authors": [],
      "cves": [
        "CVE-2019-2215"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/kangtastic/cve-2019-2215",
      "primary_url": "https://github.com/kangtastic/cve-2019-2215",
      "parent_primary_url": "https://github.com/kangtastic/cve-2019-2215",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2019-exploits-kangtastic-cve-2019-2215-primary-7afa1782.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# kangtastic/cve-2019-2215 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: kangtastic/cve-2019-2215 resource_label: primary resource_type: code resource_url: https://github.com/kangtastic/cve-2019-2215 parent_primary_url: https://github.com/kangtastic/cve-2019-2215 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/kangtastic/cve-2019-2215 cves: CVE-2019-2215 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/kangtastic/cve-2019-2215 context_links: - [code] primary: h",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/kangtastic/cve-2019-2215"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/kangtastic/cve-2019-2215"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/kangtastic/cve-2019-2215"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "cve"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Exploit code for CVE-2019-2215 vulnerability.",
      "summary_zh": "CVE-2019-2215漏洞的利用代码。",
      "source_markdown": "https://github.com/kangtastic/cve-2019-2215",
      "search_text": "kangtastic/cve-2019-2215 kangtastic/cve-2019-2215  cve-2019-2215  exploits  exploits primary code https://github.com/kangtastic/cve-2019-2215 exploit cve  exploit exploit code for cve-2019-2215 vulnerability. cve-2019-2215漏洞的利用代码。 # kangtastic/cve-2019-2215 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: kangtastic/cve-2019-2215 resource_label: primary resource_type: code resource_url: https://github.com/kangtastic/cve-2019-2215 parent_primary_url: https://github.com/kangtastic/cve-2019-2215 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/kangtastic/cve-2019-2215 cves: cve-2019-2215 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/kangtastic/cve-2019-2215 context_links: - [code] primary: h unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "73642f7c92c050ad",
      "item_id": "772c0d5f7905b756",
      "slug": "undated-exploits-questescape-exploit-primary-57d49202",
      "year": null,
      "title": "QuestEscape/exploit",
      "item_title": "QuestEscape/exploit",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/QuestEscape/exploit",
      "primary_url": "https://github.com/QuestEscape/exploit",
      "parent_primary_url": "https://github.com/QuestEscape/exploit",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-questescape-exploit-primary-57d49202.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# QuestEscape/exploit record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: QuestEscape/exploit resource_label: primary resource_type: exploit resource_url: https://github.com/QuestEscape/exploit parent_primary_url: https://github.com/QuestEscape/exploit source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/QuestEscape/exploit cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/QuestEscape/exploit context_links: - [exploit] primary: https://github.com/QuestEscape/explo",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/QuestEscape/exploit"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/QuestEscape/exploit"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/QuestEscape/exploit"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "linux",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "A repository of various exploits for Linux kernel vulnerabilities.",
      "summary_zh": "一个包含多种Linux内核漏洞利用的库。",
      "source_markdown": "https://github.com/QuestEscape/exploit",
      "search_text": "questescape/exploit questescape/exploit    exploits  exploits primary exploit https://github.com/questescape/exploit exploit linux kernel  exploit a repository of various exploits for linux kernel vulnerabilities. 一个包含多种linux内核漏洞利用的库。 # questescape/exploit record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: questescape/exploit resource_label: primary resource_type: exploit resource_url: https://github.com/questescape/exploit parent_primary_url: https://github.com/questescape/exploit source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/questescape/exploit cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/questescape/exploit context_links: - [exploit] primary: https://github.com/questescape/explo unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "21361cc451d5742e",
      "item_id": "ecc08192034bc60a",
      "slug": "undated-exploits-duasynt-xfrm-poc-primary-f03c82fb",
      "year": null,
      "title": "duasynt/xfrm_poc",
      "item_title": "duasynt/xfrm_poc",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "poc",
      "resource_url": "https://github.com/duasynt/xfrm_poc",
      "primary_url": "https://github.com/duasynt/xfrm_poc",
      "parent_primary_url": "https://github.com/duasynt/xfrm_poc",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-duasynt-xfrm-poc-primary-f03c82fb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# duasynt/xfrm_poc record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: duasynt/xfrm_poc resource_label: primary resource_type: poc resource_url: https://github.com/duasynt/xfrm_poc parent_primary_url: https://github.com/duasynt/xfrm_poc source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/duasynt/xfrm_poc cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: false code_urls: https://github.com/duasynt/xfrm_poc context_links: - [poc] primary: https://github.com/duasynt/xfrm_poc fetch_status: skipped fet",
      "link_types": [
        "poc"
      ],
      "links": [
        {
          "label": "primary",
          "type": "poc",
          "url": "https://github.com/duasynt/xfrm_poc"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [
          {
            "label": "primary",
            "type": "poc",
            "url": "https://github.com/duasynt/xfrm_poc"
          }
        ],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/duasynt/xfrm_poc"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "poc",
        "linux"
      ],
      "affected_area": "",
      "exploit_stage": "poc",
      "summary_en": "Proof of concept for xfrm vulnerabilities in Linux.",
      "summary_zh": "Linux中xfrm漏洞的概念验证。",
      "source_markdown": "https://github.com/duasynt/xfrm_poc",
      "search_text": "duasynt/xfrm_poc duasynt/xfrm_poc    exploits  exploits primary poc https://github.com/duasynt/xfrm_poc poc linux  poc proof of concept for xfrm vulnerabilities in linux. linux中xfrm漏洞的概念验证。 # duasynt/xfrm_poc record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: duasynt/xfrm_poc resource_label: primary resource_type: poc resource_url: https://github.com/duasynt/xfrm_poc parent_primary_url: https://github.com/duasynt/xfrm_poc source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/duasynt/xfrm_poc cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: false code_urls: https://github.com/duasynt/xfrm_poc context_links: - [poc] primary: https://github.com/duasynt/xfrm_poc fetch_status: skipped fet unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "bb70438275d3cf98",
      "item_id": "7dadeb6e587f3bd8",
      "slug": "undated-exploits-snorez-exploits-primary-79e5c554",
      "year": null,
      "title": "snorez/exploits",
      "item_title": "snorez/exploits",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/snorez/exploits/",
      "primary_url": "https://github.com/snorez/exploits/",
      "parent_primary_url": "https://github.com/snorez/exploits/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-snorez-exploits-primary-79e5c554.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# snorez/exploits record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: snorez/exploits resource_label: primary resource_type: exploit resource_url: https://github.com/snorez/exploits/ parent_primary_url: https://github.com/snorez/exploits/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/snorez/exploits/ cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/snorez/exploits/ context_links: - [exploit] primary: https://github.com/snorez/exploits/ fetch_status: skippe",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/snorez/exploits/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/snorez/exploits/"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/snorez/exploits/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "linux",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Collection of exploits targeting various Linux kernel vulnerabilities.",
      "summary_zh": "针对各种Linux内核漏洞的利用集合。",
      "source_markdown": "https://github.com/snorez/exploits/",
      "search_text": "snorez/exploits snorez/exploits    exploits  exploits primary exploit https://github.com/snorez/exploits/ exploit linux kernel  exploit collection of exploits targeting various linux kernel vulnerabilities. 针对各种linux内核漏洞的利用集合。 # snorez/exploits record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: snorez/exploits resource_label: primary resource_type: exploit resource_url: https://github.com/snorez/exploits/ parent_primary_url: https://github.com/snorez/exploits/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/snorez/exploits/ cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/snorez/exploits/ context_links: - [exploit] primary: https://github.com/snorez/exploits/ fetch_status: skippe unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "312fe0ec78fa48ee",
      "item_id": "696fce5b56a48ec9",
      "slug": "2014-exploits-saelo-cve-2014-0038-primary-5abd6bf3",
      "year": 2014,
      "title": "saelo/cve-2014-0038",
      "item_title": "saelo/cve-2014-0038",
      "authors": [],
      "cves": [
        "CVE-2014-0038"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/saelo/cve-2014-0038",
      "primary_url": "https://github.com/saelo/cve-2014-0038",
      "parent_primary_url": "https://github.com/saelo/cve-2014-0038",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2014-exploits-saelo-cve-2014-0038-primary-5abd6bf3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# saelo/cve-2014-0038 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: saelo/cve-2014-0038 resource_label: primary resource_type: code resource_url: https://github.com/saelo/cve-2014-0038 parent_primary_url: https://github.com/saelo/cve-2014-0038 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/saelo/cve-2014-0038 cves: CVE-2014-0038 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/saelo/cve-2014-0038 context_links: - [code] primary: https://github.com/saelo/cve-20",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/saelo/cve-2014-0038"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/saelo/cve-2014-0038"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/saelo/cve-2014-0038"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "cve"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Exploit code for CVE-2014-0038 vulnerability.",
      "summary_zh": "CVE-2014-0038漏洞的利用代码。",
      "source_markdown": "https://github.com/saelo/cve-2014-0038",
      "search_text": "saelo/cve-2014-0038 saelo/cve-2014-0038  cve-2014-0038  exploits  exploits primary code https://github.com/saelo/cve-2014-0038 exploit cve  exploit exploit code for cve-2014-0038 vulnerability. cve-2014-0038漏洞的利用代码。 # saelo/cve-2014-0038 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: saelo/cve-2014-0038 resource_label: primary resource_type: code resource_url: https://github.com/saelo/cve-2014-0038 parent_primary_url: https://github.com/saelo/cve-2014-0038 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/saelo/cve-2014-0038 cves: cve-2014-0038 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/saelo/cve-2014-0038 context_links: - [code] primary: https://github.com/saelo/cve-20 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "0864d5f8fd6c0f98",
      "item_id": "3b33b1938f9a79f9",
      "slug": "2020-exploits-bluefrostsecurity-cve-2020-0041-primary-fc97baaf",
      "year": 2020,
      "title": "bluefrostsecurity/CVE-2020-0041",
      "item_title": "bluefrostsecurity/CVE-2020-0041",
      "authors": [],
      "cves": [
        "CVE-2020-0041"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/bluefrostsecurity/CVE-2020-0041/",
      "primary_url": "https://github.com/bluefrostsecurity/CVE-2020-0041/",
      "parent_primary_url": "https://github.com/bluefrostsecurity/CVE-2020-0041/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2020-exploits-bluefrostsecurity-cve-2020-0041-primary-fc97baaf.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# bluefrostsecurity/CVE-2020-0041 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: bluefrostsecurity/CVE-2020-0041 resource_label: primary resource_type: code resource_url: https://github.com/bluefrostsecurity/CVE-2020-0041/ parent_primary_url: https://github.com/bluefrostsecurity/CVE-2020-0041/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/bluefrostsecurity/CVE-2020-0041/ cves: CVE-2020-0041 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/bluefrostsecurity/CVE",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/bluefrostsecurity/CVE-2020-0041/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/bluefrostsecurity/CVE-2020-0041/"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/bluefrostsecurity/CVE-2020-0041/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "cve"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Exploit code for CVE-2020-0041 vulnerability.",
      "summary_zh": "CVE-2020-0041漏洞的利用代码。",
      "source_markdown": "https://github.com/bluefrostsecurity/CVE-2020-0041/",
      "search_text": "bluefrostsecurity/cve-2020-0041 bluefrostsecurity/cve-2020-0041  cve-2020-0041  exploits  exploits primary code https://github.com/bluefrostsecurity/cve-2020-0041/ exploit cve  exploit exploit code for cve-2020-0041 vulnerability. cve-2020-0041漏洞的利用代码。 # bluefrostsecurity/cve-2020-0041 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: bluefrostsecurity/cve-2020-0041 resource_label: primary resource_type: code resource_url: https://github.com/bluefrostsecurity/cve-2020-0041/ parent_primary_url: https://github.com/bluefrostsecurity/cve-2020-0041/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/bluefrostsecurity/cve-2020-0041/ cves: cve-2020-0041 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/bluefrostsecurity/cve unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "d071ef7da8599d4f",
      "item_id": "5e8db7351411e73a",
      "slug": "undated-exploits-chompie1337-s8-2019-2215-poc-primary-154be7ee",
      "year": null,
      "title": "chompie1337/s8_2019_2215_poc",
      "item_title": "chompie1337/s8_2019_2215_poc",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "poc",
      "resource_url": "https://github.com/chompie1337/s8_2019_2215_poc/",
      "primary_url": "https://github.com/chompie1337/s8_2019_2215_poc/",
      "parent_primary_url": "https://github.com/chompie1337/s8_2019_2215_poc/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-chompie1337-s8-2019-2215-poc-primary-154be7ee.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# chompie1337/s8_2019_2215_poc record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: chompie1337/s8_2019_2215_poc resource_label: primary resource_type: poc resource_url: https://github.com/chompie1337/s8_2019_2215_poc/ parent_primary_url: https://github.com/chompie1337/s8_2019_2215_poc/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/chompie1337/s8_2019_2215_poc/ cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: false code_urls: https://github.com/chompie1337/s8_2019_2215_poc/ context_links: - ",
      "link_types": [
        "poc"
      ],
      "links": [
        {
          "label": "primary",
          "type": "poc",
          "url": "https://github.com/chompie1337/s8_2019_2215_poc/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [
          {
            "label": "primary",
            "type": "poc",
            "url": "https://github.com/chompie1337/s8_2019_2215_poc/"
          }
        ],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/chompie1337/s8_2019_2215_poc/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "poc",
        "cve"
      ],
      "affected_area": "",
      "exploit_stage": "poc",
      "summary_en": "Proof of concept for CVE-2019-2215 vulnerability.",
      "summary_zh": "CVE-2019-2215漏洞的概念验证。",
      "source_markdown": "https://github.com/chompie1337/s8_2019_2215_poc/",
      "search_text": "chompie1337/s8_2019_2215_poc chompie1337/s8_2019_2215_poc    exploits  exploits primary poc https://github.com/chompie1337/s8_2019_2215_poc/ poc cve  poc proof of concept for cve-2019-2215 vulnerability. cve-2019-2215漏洞的概念验证。 # chompie1337/s8_2019_2215_poc record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: chompie1337/s8_2019_2215_poc resource_label: primary resource_type: poc resource_url: https://github.com/chompie1337/s8_2019_2215_poc/ parent_primary_url: https://github.com/chompie1337/s8_2019_2215_poc/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/chompie1337/s8_2019_2215_poc/ cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: false code_urls: https://github.com/chompie1337/s8_2019_2215_poc/ context_links: -  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "8bc5936e4d4f5683",
      "item_id": "910e14903c811f4c",
      "slug": "2017-exploits-c3r34lk1ll3r-cve-2017-5123-primary-4c29bcd6",
      "year": 2017,
      "title": "c3r34lk1ll3r/CVE-2017-5123",
      "item_title": "c3r34lk1ll3r/CVE-2017-5123",
      "authors": [],
      "cves": [
        "CVE-2017-5123"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/c3r34lk1ll3r/CVE-2017-5123",
      "primary_url": "https://github.com/c3r34lk1ll3r/CVE-2017-5123",
      "parent_primary_url": "https://github.com/c3r34lk1ll3r/CVE-2017-5123",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2017-exploits-c3r34lk1ll3r-cve-2017-5123-primary-4c29bcd6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# c3r34lk1ll3r/CVE-2017-5123 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: c3r34lk1ll3r/CVE-2017-5123 resource_label: primary resource_type: code resource_url: https://github.com/c3r34lk1ll3r/CVE-2017-5123 parent_primary_url: https://github.com/c3r34lk1ll3r/CVE-2017-5123 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/c3r34lk1ll3r/CVE-2017-5123 cves: CVE-2017-5123 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/c3r34lk1ll3r/CVE-2017-5123 context_links: - [code",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/c3r34lk1ll3r/CVE-2017-5123"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/c3r34lk1ll3r/CVE-2017-5123"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/c3r34lk1ll3r/CVE-2017-5123"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "cve"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Exploit code for CVE-2017-5123 vulnerability.",
      "summary_zh": "CVE-2017-5123漏洞的利用代码。",
      "source_markdown": "https://github.com/c3r34lk1ll3r/CVE-2017-5123",
      "search_text": "c3r34lk1ll3r/cve-2017-5123 c3r34lk1ll3r/cve-2017-5123  cve-2017-5123  exploits  exploits primary code https://github.com/c3r34lk1ll3r/cve-2017-5123 exploit cve  exploit exploit code for cve-2017-5123 vulnerability. cve-2017-5123漏洞的利用代码。 # c3r34lk1ll3r/cve-2017-5123 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: c3r34lk1ll3r/cve-2017-5123 resource_label: primary resource_type: code resource_url: https://github.com/c3r34lk1ll3r/cve-2017-5123 parent_primary_url: https://github.com/c3r34lk1ll3r/cve-2017-5123 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/c3r34lk1ll3r/cve-2017-5123 cves: cve-2017-5123 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/c3r34lk1ll3r/cve-2017-5123 context_links: - [code unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "2ef763aad3f91bdc",
      "item_id": "44f9614a607369a3",
      "slug": "undated-exploits-blasty-vs-ebpf-primary-706a261e",
      "year": null,
      "title": "blasty vs ebpf",
      "item_title": "blasty vs ebpf",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://haxx.in/blasty-vs-ebpf.c",
      "primary_url": "https://haxx.in/blasty-vs-ebpf.c",
      "parent_primary_url": "https://haxx.in/blasty-vs-ebpf.c",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-blasty-vs-ebpf-primary-706a261e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# blasty vs ebpf record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: blasty vs ebpf resource_label: primary resource_type: article resource_url: https://haxx.in/blasty-vs-ebpf.c parent_primary_url: https://haxx.in/blasty-vs-ebpf.c source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://haxx.in/blasty-vs-ebpf.c cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://haxx.in/blasty-vs-ebpf.c fetch_status: skipped fetch_note: original URL is preserved; p",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://haxx.in/blasty-vs-ebpf.c"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://haxx.in/blasty-vs-ebpf.c"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "article",
        "ebpf"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "An article discussing the interaction between blasty and eBPF.",
      "summary_zh": "讨论blasty与eBPF之间相互作用的文章。",
      "source_markdown": "https://haxx.in/blasty-vs-ebpf.c",
      "search_text": "blasty vs ebpf blasty vs ebpf    exploits  exploits primary article https://haxx.in/blasty-vs-ebpf.c article ebpf  article an article discussing the interaction between blasty and ebpf. 讨论blasty与ebpf之间相互作用的文章。 # blasty vs ebpf record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: blasty vs ebpf resource_label: primary resource_type: article resource_url: https://haxx.in/blasty-vs-ebpf.c parent_primary_url: https://haxx.in/blasty-vs-ebpf.c source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://haxx.in/blasty-vs-ebpf.c cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://haxx.in/blasty-vs-ebpf.c fetch_status: skipped fetch_note: original url is preserved; p unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2913c71b5055f349",
      "item_id": "8933e6d9c279a076",
      "slug": "2020-exploits-scannells-exploits-primary-0e1a1e72",
      "year": 2020,
      "title": "scannells/exploits",
      "item_title": "scannells/exploits",
      "authors": [],
      "cves": [
        "CVE-2020-27194"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/scannells/exploits/tree/master/CVE-2020-27194",
      "primary_url": "https://github.com/scannells/exploits/tree/master/CVE-2020-27194",
      "parent_primary_url": "https://github.com/scannells/exploits/tree/master/CVE-2020-27194",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2020-exploits-scannells-exploits-primary-0e1a1e72.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# scannells/exploits record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: scannells/exploits resource_label: primary resource_type: exploit resource_url: https://github.com/scannells/exploits/tree/master/CVE-2020-27194 parent_primary_url: https://github.com/scannells/exploits/tree/master/CVE-2020-27194 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/scannells/exploits/tree/master/CVE-2020-27194 cves: CVE-2020-27194 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/scanne",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/scannells/exploits/tree/master/CVE-2020-27194"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/scannells/exploits/tree/master/CVE-2020-27194"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/scannells/exploits/tree/master/CVE-2020-27194"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "cve"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Exploit code for CVE-2020-27194 vulnerability.",
      "summary_zh": "CVE-2020-27194漏洞的利用代码。",
      "source_markdown": "https://github.com/scannells/exploits/tree/master/CVE-2020-27194",
      "search_text": "scannells/exploits scannells/exploits  cve-2020-27194  exploits  exploits primary exploit https://github.com/scannells/exploits/tree/master/cve-2020-27194 exploit cve  exploit exploit code for cve-2020-27194 vulnerability. cve-2020-27194漏洞的利用代码。 # scannells/exploits record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: scannells/exploits resource_label: primary resource_type: exploit resource_url: https://github.com/scannells/exploits/tree/master/cve-2020-27194 parent_primary_url: https://github.com/scannells/exploits/tree/master/cve-2020-27194 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/scannells/exploits/tree/master/cve-2020-27194 cves: cve-2020-27194 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/scanne unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "253dd6bc54140471",
      "item_id": "c2b3e6977736da39",
      "slug": "2021-exploits-lntrx-cve-2021-28663-primary-38800152",
      "year": 2021,
      "title": "lntrx/CVE-2021-28663",
      "item_title": "lntrx/CVE-2021-28663",
      "authors": [],
      "cves": [
        "CVE-2021-28663"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/lntrx/CVE-2021-28663",
      "primary_url": "https://github.com/lntrx/CVE-2021-28663",
      "parent_primary_url": "https://github.com/lntrx/CVE-2021-28663",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2021-exploits-lntrx-cve-2021-28663-primary-38800152.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# lntrx/CVE-2021-28663 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: lntrx/CVE-2021-28663 resource_label: primary resource_type: code resource_url: https://github.com/lntrx/CVE-2021-28663 parent_primary_url: https://github.com/lntrx/CVE-2021-28663 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/lntrx/CVE-2021-28663 cves: CVE-2021-28663 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/lntrx/CVE-2021-28663 context_links: - [code] primary: https://github.com/lntrx",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/lntrx/CVE-2021-28663"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/lntrx/CVE-2021-28663"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/lntrx/CVE-2021-28663"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "cve"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Exploit code for CVE-2021-28663 vulnerability.",
      "summary_zh": "CVE-2021-28663漏洞的利用代码。",
      "source_markdown": "https://github.com/lntrx/CVE-2021-28663",
      "search_text": "lntrx/cve-2021-28663 lntrx/cve-2021-28663  cve-2021-28663  exploits  exploits primary code https://github.com/lntrx/cve-2021-28663 exploit cve  exploit exploit code for cve-2021-28663 vulnerability. cve-2021-28663漏洞的利用代码。 # lntrx/cve-2021-28663 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: lntrx/cve-2021-28663 resource_label: primary resource_type: code resource_url: https://github.com/lntrx/cve-2021-28663 parent_primary_url: https://github.com/lntrx/cve-2021-28663 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/lntrx/cve-2021-28663 cves: cve-2021-28663 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/lntrx/cve-2021-28663 context_links: - [code] primary: https://github.com/lntrx unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "87d3f88fb8663027",
      "item_id": "b0febfe457a06963",
      "slug": "undated-exploits-dirtypipez-primary-f1788643",
      "year": null,
      "title": "dirtypipez",
      "item_title": "dirtypipez",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://haxx.in/files/dirtypipez.c",
      "primary_url": "https://haxx.in/files/dirtypipez.c",
      "parent_primary_url": "https://haxx.in/files/dirtypipez.c",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-dirtypipez-primary-f1788643.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# dirtypipez record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: dirtypipez resource_label: primary resource_type: article resource_url: https://haxx.in/files/dirtypipez.c parent_primary_url: https://haxx.in/files/dirtypipez.c source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://haxx.in/files/dirtypipez.c cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://haxx.in/files/dirtypipez.c fetch_status: skipped fetch_note: original URL is preserved; p",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://haxx.in/files/dirtypipez.c"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://haxx.in/files/dirtypipez.c"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "article",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "An article detailing the DirtyPipe exploit.",
      "summary_zh": "详细介绍DirtyPipe漏洞的文章。",
      "source_markdown": "https://haxx.in/files/dirtypipez.c",
      "search_text": "dirtypipez dirtypipez    exploits  exploits primary article https://haxx.in/files/dirtypipez.c article exploit  article an article detailing the dirtypipe exploit. 详细介绍dirtypipe漏洞的文章。 # dirtypipez record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: dirtypipez resource_label: primary resource_type: article resource_url: https://haxx.in/files/dirtypipez.c parent_primary_url: https://haxx.in/files/dirtypipez.c source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://haxx.in/files/dirtypipez.c cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://haxx.in/files/dirtypipez.c fetch_status: skipped fetch_note: original url is preserved; p unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6efb6c56393de5ba",
      "item_id": "d5c912cc7a0b9450",
      "slug": "2022-exploits-arinerron-cve-2022-0847-dirtypipe-exploit-primary-d7a244d6",
      "year": 2022,
      "title": "Arinerron/CVE-2022-0847-DirtyPipe-Exploit",
      "item_title": "Arinerron/CVE-2022-0847-DirtyPipe-Exploit",
      "authors": [],
      "cves": [
        "CVE-2022-0847"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/Arinerron/CVE-2022-0847-DirtyPipe-Exploit",
      "primary_url": "https://github.com/Arinerron/CVE-2022-0847-DirtyPipe-Exploit",
      "parent_primary_url": "https://github.com/Arinerron/CVE-2022-0847-DirtyPipe-Exploit",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2022-exploits-arinerron-cve-2022-0847-dirtypipe-exploit-primary-d7a244d6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Arinerron/CVE-2022-0847-DirtyPipe-Exploit record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: Arinerron/CVE-2022-0847-DirtyPipe-Exploit resource_label: primary resource_type: exploit resource_url: https://github.com/Arinerron/CVE-2022-0847-DirtyPipe-Exploit parent_primary_url: https://github.com/Arinerron/CVE-2022-0847-DirtyPipe-Exploit source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/Arinerron/CVE-2022-0847-DirtyPipe-Exploit cves: CVE-2022-0847 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true cod",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/Arinerron/CVE-2022-0847-DirtyPipe-Exploit"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/Arinerron/CVE-2022-0847-DirtyPipe-Exploit"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Arinerron/CVE-2022-0847-DirtyPipe-Exploit"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "cve"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Exploit code for CVE-2022-0847 (DirtyPipe) vulnerability.",
      "summary_zh": "CVE-2022-0847（DirtyPipe）漏洞的利用代码。",
      "source_markdown": "https://github.com/Arinerron/CVE-2022-0847-DirtyPipe-Exploit",
      "search_text": "arinerron/cve-2022-0847-dirtypipe-exploit arinerron/cve-2022-0847-dirtypipe-exploit  cve-2022-0847  exploits  exploits primary exploit https://github.com/arinerron/cve-2022-0847-dirtypipe-exploit exploit cve  exploit exploit code for cve-2022-0847 (dirtypipe) vulnerability. cve-2022-0847（dirtypipe）漏洞的利用代码。 # arinerron/cve-2022-0847-dirtypipe-exploit record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: arinerron/cve-2022-0847-dirtypipe-exploit resource_label: primary resource_type: exploit resource_url: https://github.com/arinerron/cve-2022-0847-dirtypipe-exploit parent_primary_url: https://github.com/arinerron/cve-2022-0847-dirtypipe-exploit source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/arinerron/cve-2022-0847-dirtypipe-exploit cves: cve-2022-0847 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true cod unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "fe72bb6e94a79fde",
      "item_id": "2b1c7096dc394801",
      "slug": "undated-exploits-polygraphene-dirtypipe-android-primary-8e24e759",
      "year": null,
      "title": "polygraphene/DirtyPipe-Android",
      "item_title": "polygraphene/DirtyPipe-Android",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/polygraphene/DirtyPipe-Android",
      "primary_url": "https://github.com/polygraphene/DirtyPipe-Android",
      "parent_primary_url": "https://github.com/polygraphene/DirtyPipe-Android",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-polygraphene-dirtypipe-android-primary-8e24e759.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# polygraphene/DirtyPipe-Android record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: polygraphene/DirtyPipe-Android resource_label: primary resource_type: code resource_url: https://github.com/polygraphene/DirtyPipe-Android parent_primary_url: https://github.com/polygraphene/DirtyPipe-Android source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/polygraphene/DirtyPipe-Android cves: none android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/polygraphene/DirtyPipe-Android context_links: - [code] primary: https://github.com/polygraphene/DirtyPipe-Android fetch_status: skipped fetch_",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/polygraphene/DirtyPipe-Android"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/polygraphene/DirtyPipe-Android"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/polygraphene/DirtyPipe-Android"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "android"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Exploit code for DirtyPipe vulnerability targeting Android.",
      "summary_zh": "针对Android的DirtyPipe漏洞的利用代码。",
      "source_markdown": "https://github.com/polygraphene/DirtyPipe-Android",
      "search_text": "polygraphene/dirtypipe-android polygraphene/dirtypipe-android    exploits  exploits primary code https://github.com/polygraphene/dirtypipe-android exploit android  exploit exploit code for dirtypipe vulnerability targeting android. 针对android的dirtypipe漏洞的利用代码。 # polygraphene/dirtypipe-android record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: polygraphene/dirtypipe-android resource_label: primary resource_type: code resource_url: https://github.com/polygraphene/dirtypipe-android parent_primary_url: https://github.com/polygraphene/dirtypipe-android source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/polygraphene/dirtypipe-android cves: none android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/polygraphene/dirtypipe-android context_links: - [code] primary: https://github.com/polygraphene/dirtypipe-android fetch_status: skipped fetch_ yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "4334acd405deeb5d",
      "item_id": "85559d5919eb5e1c",
      "slug": "2022-exploits-bonfee-cve-2022-25636-primary-e998ef65",
      "year": 2022,
      "title": "Bonfee/CVE-2022-25636",
      "item_title": "Bonfee/CVE-2022-25636",
      "authors": [],
      "cves": [
        "CVE-2022-25636"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/Bonfee/CVE-2022-25636",
      "primary_url": "https://github.com/Bonfee/CVE-2022-25636",
      "parent_primary_url": "https://github.com/Bonfee/CVE-2022-25636",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2022-exploits-bonfee-cve-2022-25636-primary-e998ef65.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Bonfee/CVE-2022-25636 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: Bonfee/CVE-2022-25636 resource_label: primary resource_type: code resource_url: https://github.com/Bonfee/CVE-2022-25636 parent_primary_url: https://github.com/Bonfee/CVE-2022-25636 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/Bonfee/CVE-2022-25636 cves: CVE-2022-25636 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/Bonfee/CVE-2022-25636 context_links: - [code] primary: https://github.com",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/Bonfee/CVE-2022-25636"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/Bonfee/CVE-2022-25636"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Bonfee/CVE-2022-25636"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "cve"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Exploit code for CVE-2022-25636 vulnerability.",
      "summary_zh": "CVE-2022-25636漏洞的利用代码。",
      "source_markdown": "https://github.com/Bonfee/CVE-2022-25636",
      "search_text": "bonfee/cve-2022-25636 bonfee/cve-2022-25636  cve-2022-25636  exploits  exploits primary code https://github.com/bonfee/cve-2022-25636 exploit cve  exploit exploit code for cve-2022-25636 vulnerability. cve-2022-25636漏洞的利用代码。 # bonfee/cve-2022-25636 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: bonfee/cve-2022-25636 resource_label: primary resource_type: code resource_url: https://github.com/bonfee/cve-2022-25636 parent_primary_url: https://github.com/bonfee/cve-2022-25636 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/bonfee/cve-2022-25636 cves: cve-2022-25636 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/bonfee/cve-2022-25636 context_links: - [code] primary: https://github.com unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "df0d9b2d27d023b9",
      "item_id": "0ff520435b1f5e92",
      "slug": "2022-exploits-bonfee-cve-2022-0995-primary-562bcefb",
      "year": 2022,
      "title": "Bonfee/CVE-2022-0995",
      "item_title": "Bonfee/CVE-2022-0995",
      "authors": [],
      "cves": [
        "CVE-2022-0995"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/Bonfee/CVE-2022-0995",
      "primary_url": "https://github.com/Bonfee/CVE-2022-0995",
      "parent_primary_url": "https://github.com/Bonfee/CVE-2022-0995",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2022-exploits-bonfee-cve-2022-0995-primary-562bcefb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Bonfee/CVE-2022-0995 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: Bonfee/CVE-2022-0995 resource_label: primary resource_type: code resource_url: https://github.com/Bonfee/CVE-2022-0995 parent_primary_url: https://github.com/Bonfee/CVE-2022-0995 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/Bonfee/CVE-2022-0995 cves: CVE-2022-0995 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/Bonfee/CVE-2022-0995 context_links: - [code] primary: https://github.com/Bonfee",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/Bonfee/CVE-2022-0995"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/Bonfee/CVE-2022-0995"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Bonfee/CVE-2022-0995"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE",
        "remote",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "CVE-2022-0995 is a Linux kernel vulnerability that can be exploited remotely.",
      "summary_zh": "CVE-2022-0995是一个可以被远程利用的Linux内核漏洞。",
      "source_markdown": "https://github.com/Bonfee/CVE-2022-0995",
      "search_text": "bonfee/cve-2022-0995 bonfee/cve-2022-0995  cve-2022-0995  exploits  exploits primary code https://github.com/bonfee/cve-2022-0995 cve remote vulnerability  exploit cve-2022-0995 is a linux kernel vulnerability that can be exploited remotely. cve-2022-0995是一个可以被远程利用的linux内核漏洞。 # bonfee/cve-2022-0995 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: bonfee/cve-2022-0995 resource_label: primary resource_type: code resource_url: https://github.com/bonfee/cve-2022-0995 parent_primary_url: https://github.com/bonfee/cve-2022-0995 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/bonfee/cve-2022-0995 cves: cve-2022-0995 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/bonfee/cve-2022-0995 context_links: - [code] primary: https://github.com/bonfee unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b169255afec7ab3a",
      "item_id": "e7db3ceeef019297",
      "slug": "2022-exploits-tr3ee-cve-2022-23222-primary-c86ac175",
      "year": 2022,
      "title": "tr3ee/CVE-2022-23222",
      "item_title": "tr3ee/CVE-2022-23222",
      "authors": [],
      "cves": [
        "CVE-2022-23222"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/tr3ee/CVE-2022-23222",
      "primary_url": "https://github.com/tr3ee/CVE-2022-23222",
      "parent_primary_url": "https://github.com/tr3ee/CVE-2022-23222",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2022-exploits-tr3ee-cve-2022-23222-primary-c86ac175.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# tr3ee/CVE-2022-23222 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: tr3ee/CVE-2022-23222 resource_label: primary resource_type: code resource_url: https://github.com/tr3ee/CVE-2022-23222 parent_primary_url: https://github.com/tr3ee/CVE-2022-23222 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/tr3ee/CVE-2022-23222 cves: CVE-2022-23222 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/tr3ee/CVE-2022-23222 context_links: - [code] primary: https://github.com/tr3ee",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/tr3ee/CVE-2022-23222"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/tr3ee/CVE-2022-23222"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/tr3ee/CVE-2022-23222"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE",
        "remote",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "CVE-2022-23222 is a Linux kernel vulnerability that can be exploited remotely.",
      "summary_zh": "CVE-2022-23222是一个可以被远程利用的Linux内核漏洞。",
      "source_markdown": "https://github.com/tr3ee/CVE-2022-23222",
      "search_text": "tr3ee/cve-2022-23222 tr3ee/cve-2022-23222  cve-2022-23222  exploits  exploits primary code https://github.com/tr3ee/cve-2022-23222 cve remote vulnerability  exploit cve-2022-23222 is a linux kernel vulnerability that can be exploited remotely. cve-2022-23222是一个可以被远程利用的linux内核漏洞。 # tr3ee/cve-2022-23222 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: tr3ee/cve-2022-23222 resource_label: primary resource_type: code resource_url: https://github.com/tr3ee/cve-2022-23222 parent_primary_url: https://github.com/tr3ee/cve-2022-23222 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/tr3ee/cve-2022-23222 cves: cve-2022-23222 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/tr3ee/cve-2022-23222 context_links: - [code] primary: https://github.com/tr3ee unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "5b4920110255d6c9",
      "item_id": "dd5b39694f8b6e5d",
      "slug": "2021-exploits-tr3ee-cve-2021-4204-primary-7d19cef5",
      "year": 2021,
      "title": "tr3ee/CVE-2021-4204",
      "item_title": "tr3ee/CVE-2021-4204",
      "authors": [],
      "cves": [
        "CVE-2021-4204"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/tr3ee/CVE-2021-4204",
      "primary_url": "https://github.com/tr3ee/CVE-2021-4204",
      "parent_primary_url": "https://github.com/tr3ee/CVE-2021-4204",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2021-exploits-tr3ee-cve-2021-4204-primary-7d19cef5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# tr3ee/CVE-2021-4204 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: tr3ee/CVE-2021-4204 resource_label: primary resource_type: code resource_url: https://github.com/tr3ee/CVE-2021-4204 parent_primary_url: https://github.com/tr3ee/CVE-2021-4204 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/tr3ee/CVE-2021-4204 cves: CVE-2021-4204 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/tr3ee/CVE-2021-4204 context_links: - [code] primary: https://github.com/tr3ee/CVE-20",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/tr3ee/CVE-2021-4204"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/tr3ee/CVE-2021-4204"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/tr3ee/CVE-2021-4204"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE",
        "remote",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "CVE-2021-4204 is a Linux kernel vulnerability that can be exploited remotely.",
      "summary_zh": "CVE-2021-4204是一个可以被远程利用的Linux内核漏洞。",
      "source_markdown": "https://github.com/tr3ee/CVE-2021-4204",
      "search_text": "tr3ee/cve-2021-4204 tr3ee/cve-2021-4204  cve-2021-4204  exploits  exploits primary code https://github.com/tr3ee/cve-2021-4204 cve remote vulnerability  exploit cve-2021-4204 is a linux kernel vulnerability that can be exploited remotely. cve-2021-4204是一个可以被远程利用的linux内核漏洞。 # tr3ee/cve-2021-4204 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: tr3ee/cve-2021-4204 resource_label: primary resource_type: code resource_url: https://github.com/tr3ee/cve-2021-4204 parent_primary_url: https://github.com/tr3ee/cve-2021-4204 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/tr3ee/cve-2021-4204 cves: cve-2021-4204 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/tr3ee/cve-2021-4204 context_links: - [code] primary: https://github.com/tr3ee/cve-20 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "a01b97eb3e1d6602",
      "item_id": "de3ee438b487b547",
      "slug": "2009-exploits-linux-kernel-sctp-forward-tsn-chunk-memory-corruption-remote-exploit-primary-aa51081e",
      "year": 2009,
      "title": "Linux Kernel SCTP FORWARD-TSN Chunk Memory Corruption Remote Exploit",
      "item_title": "Linux Kernel SCTP FORWARD-TSN Chunk Memory Corruption Remote Exploit",
      "authors": [],
      "cves": [
        "CVE-2009-0065"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://subreption.com/offensive-security/exploits/sctp_thermite/",
      "primary_url": "https://subreption.com/offensive-security/exploits/sctp_thermite/",
      "parent_primary_url": "https://subreption.com/offensive-security/exploits/sctp_thermite/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2009-exploits-linux-kernel-sctp-forward-tsn-chunk-memory-corruption-remote-exploit-primary-aa51081e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel SCTP FORWARD-TSN Chunk Memory Corruption Remote Exploit record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: Linux Kernel SCTP FORWARD-TSN Chunk Memory Corruption Remote Exploit resource_label: primary resource_type: exploit resource_url: https://subreption.com/offensive-security/exploits/sctp_thermite/ parent_primary_url: https://subreption.com/offensive-security/exploits/sctp_thermite/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: [Linux Kernel SCTP FORWARD-TSN Chunk Memory Corruption Remote Exploit](https://subreption.com/offensive-security/exploits/sctp_thermite/) [CVE-2009-0065] cves: CVE-2009-0065 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://subreption.com/offensive-security/exploits/sctp_thermite/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://subreption.com/offensive-security/exploits/sctp_thermite/"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://subreption.com/offensive-security/exploits/sctp_thermite/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE",
        "memory corruption",
        "SCTP"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "CVE-2009-0065 is a memory corruption vulnerability in the Linux kernel's SCTP implementation.",
      "summary_zh": "CVE-2009-0065是Linux内核SCTP实现中的内存损坏漏洞。",
      "source_markdown": "[Linux Kernel SCTP FORWARD-TSN Chunk Memory Corruption Remote Exploit](https://subreption.com/offensive-security/exploits/sctp_thermite/) [CVE-2009-0065]",
      "search_text": "linux kernel sctp forward-tsn chunk memory corruption remote exploit linux kernel sctp forward-tsn chunk memory corruption remote exploit  cve-2009-0065  exploits  exploits primary exploit https://subreption.com/offensive-security/exploits/sctp_thermite/ cve memory corruption sctp  exploit cve-2009-0065 is a memory corruption vulnerability in the linux kernel's sctp implementation. cve-2009-0065是linux内核sctp实现中的内存损坏漏洞。 # linux kernel sctp forward-tsn chunk memory corruption remote exploit record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: linux kernel sctp forward-tsn chunk memory corruption remote exploit resource_label: primary resource_type: exploit resource_url: https://subreption.com/offensive-security/exploits/sctp_thermite/ parent_primary_url: https://subreption.com/offensive-security/exploits/sctp_thermite/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: [linux kernel sctp forward-tsn chunk memory corruption remote exploit](https://subreption.com/offensive-security/exploits/sctp_thermite/) [cve-2009-0065] cves: cve-2009-0065 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "99d1cf83a5a3becb",
      "item_id": "8bf487581c0dfa4f",
      "slug": "2023-exploits-xkaneiki-cve-2023-0386-primary-0e2fb77b",
      "year": 2023,
      "title": "xkaneiki/CVE-2023-0386",
      "item_title": "xkaneiki/CVE-2023-0386",
      "authors": [],
      "cves": [
        "CVE-2023-0386"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/xkaneiki/CVE-2023-0386",
      "primary_url": "https://github.com/xkaneiki/CVE-2023-0386",
      "parent_primary_url": "https://github.com/xkaneiki/CVE-2023-0386",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2023-exploits-xkaneiki-cve-2023-0386-primary-0e2fb77b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# xkaneiki/CVE-2023-0386 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: xkaneiki/CVE-2023-0386 resource_label: primary resource_type: code resource_url: https://github.com/xkaneiki/CVE-2023-0386 parent_primary_url: https://github.com/xkaneiki/CVE-2023-0386 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/xkaneiki/CVE-2023-0386 cves: CVE-2023-0386 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/xkaneiki/CVE-2023-0386 context_links: - [code] primary: https://githu",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/xkaneiki/CVE-2023-0386"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/xkaneiki/CVE-2023-0386"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/xkaneiki/CVE-2023-0386"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE",
        "remote",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "CVE-2023-0386 is a Linux kernel vulnerability that can be exploited remotely.",
      "summary_zh": "CVE-2023-0386是一个可以被远程利用的Linux内核漏洞。",
      "source_markdown": "https://github.com/xkaneiki/CVE-2023-0386",
      "search_text": "xkaneiki/cve-2023-0386 xkaneiki/cve-2023-0386  cve-2023-0386  exploits  exploits primary code https://github.com/xkaneiki/cve-2023-0386 cve remote vulnerability  exploit cve-2023-0386 is a linux kernel vulnerability that can be exploited remotely. cve-2023-0386是一个可以被远程利用的linux内核漏洞。 # xkaneiki/cve-2023-0386 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: xkaneiki/cve-2023-0386 resource_label: primary resource_type: code resource_url: https://github.com/xkaneiki/cve-2023-0386 parent_primary_url: https://github.com/xkaneiki/cve-2023-0386 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/xkaneiki/cve-2023-0386 cves: cve-2023-0386 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/xkaneiki/cve-2023-0386 context_links: - [code] primary: https://githu unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b9b8689d709e2d0c",
      "item_id": "8569b381a4c365ff",
      "slug": "2023-exploits-3-primary-264b0234",
      "year": 2023,
      "title": "3",
      "item_title": "3",
      "authors": [],
      "cves": [
        "CVE-2023-2598"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.openwall.com/lists/oss-security/2023/05/08/3",
      "primary_url": "https://www.openwall.com/lists/oss-security/2023/05/08/3",
      "parent_primary_url": "https://www.openwall.com/lists/oss-security/2023/05/08/3",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2023-exploits-3-primary-264b0234.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 3 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: 3 resource_label: primary resource_type: article resource_url: https://www.openwall.com/lists/oss-security/2023/05/08/3 parent_primary_url: https://www.openwall.com/lists/oss-security/2023/05/08/3 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://www.openwall.com/lists/oss-security/2023/05/08/3 [CVE-2023-2598] cves: CVE-2023-2598 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://www.openwall.com",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.openwall.com/lists/oss-security/2023/05/08/3"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.openwall.com/lists/oss-security/2023/05/08/3"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE",
        "remote",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "CVE-2023-2598 is a Linux kernel vulnerability that can be exploited remotely.",
      "summary_zh": "CVE-2023-2598是一个可以被远程利用的Linux内核漏洞。",
      "source_markdown": "https://www.openwall.com/lists/oss-security/2023/05/08/3 [CVE-2023-2598]",
      "search_text": "3 3  cve-2023-2598  exploits  exploits primary article https://www.openwall.com/lists/oss-security/2023/05/08/3 cve remote vulnerability  exploit cve-2023-2598 is a linux kernel vulnerability that can be exploited remotely. cve-2023-2598是一个可以被远程利用的linux内核漏洞。 # 3 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: 3 resource_label: primary resource_type: article resource_url: https://www.openwall.com/lists/oss-security/2023/05/08/3 parent_primary_url: https://www.openwall.com/lists/oss-security/2023/05/08/3 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://www.openwall.com/lists/oss-security/2023/05/08/3 [cve-2023-2598] cves: cve-2023-2598 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://www.openwall.com unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "0a69b6f490c27a3d",
      "item_id": "4899b24881e14010",
      "slug": "2023-exploits-5-primary-b4aa28a2",
      "year": 2023,
      "title": "5",
      "item_title": "5",
      "authors": [],
      "cves": [
        "CVE-2023-32233"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.openwall.com/lists/oss-security/2023/05/15/5",
      "primary_url": "https://www.openwall.com/lists/oss-security/2023/05/15/5",
      "parent_primary_url": "https://www.openwall.com/lists/oss-security/2023/05/15/5",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2023-exploits-5-primary-b4aa28a2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 5 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: 5 resource_label: primary resource_type: article resource_url: https://www.openwall.com/lists/oss-security/2023/05/15/5 parent_primary_url: https://www.openwall.com/lists/oss-security/2023/05/15/5 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://www.openwall.com/lists/oss-security/2023/05/15/5 [CVE-2023-32233] cves: CVE-2023-32233 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://www.openwall.c",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.openwall.com/lists/oss-security/2023/05/15/5"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.openwall.com/lists/oss-security/2023/05/15/5"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE",
        "remote",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "CVE-2023-32233 is a Linux kernel vulnerability that can be exploited remotely.",
      "summary_zh": "CVE-2023-32233是一个可以被远程利用的Linux内核漏洞。",
      "source_markdown": "https://www.openwall.com/lists/oss-security/2023/05/15/5 [CVE-2023-32233]",
      "search_text": "5 5  cve-2023-32233  exploits  exploits primary article https://www.openwall.com/lists/oss-security/2023/05/15/5 cve remote vulnerability  exploit cve-2023-32233 is a linux kernel vulnerability that can be exploited remotely. cve-2023-32233是一个可以被远程利用的linux内核漏洞。 # 5 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: 5 resource_label: primary resource_type: article resource_url: https://www.openwall.com/lists/oss-security/2023/05/15/5 parent_primary_url: https://www.openwall.com/lists/oss-security/2023/05/15/5 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://www.openwall.com/lists/oss-security/2023/05/15/5 [cve-2023-32233] cves: cve-2023-32233 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://www.openwall.c unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a6fdd321bc581c2d",
      "item_id": "bb0b3a72140f7771",
      "slug": "2023-exploits-liuk3r-cve-2023-32233-primary-0d0e1f96",
      "year": 2023,
      "title": "Liuk3r/CVE-2023-32233",
      "item_title": "Liuk3r/CVE-2023-32233",
      "authors": [],
      "cves": [
        "CVE-2023-32233"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/Liuk3r/CVE-2023-32233",
      "primary_url": "https://github.com/Liuk3r/CVE-2023-32233",
      "parent_primary_url": "https://github.com/Liuk3r/CVE-2023-32233",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2023-exploits-liuk3r-cve-2023-32233-primary-0d0e1f96.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Liuk3r/CVE-2023-32233 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: Liuk3r/CVE-2023-32233 resource_label: primary resource_type: code resource_url: https://github.com/Liuk3r/CVE-2023-32233 parent_primary_url: https://github.com/Liuk3r/CVE-2023-32233 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/Liuk3r/CVE-2023-32233 cves: CVE-2023-32233 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/Liuk3r/CVE-2023-32233 context_links: - [code] primary: https://github.com",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/Liuk3r/CVE-2023-32233"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/Liuk3r/CVE-2023-32233"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Liuk3r/CVE-2023-32233"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE",
        "remote",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "CVE-2023-32233 is a Linux kernel vulnerability that can be exploited remotely.",
      "summary_zh": "CVE-2023-32233是一个可以被远程利用的Linux内核漏洞。",
      "source_markdown": "https://github.com/Liuk3r/CVE-2023-32233",
      "search_text": "liuk3r/cve-2023-32233 liuk3r/cve-2023-32233  cve-2023-32233  exploits  exploits primary code https://github.com/liuk3r/cve-2023-32233 cve remote vulnerability  exploit cve-2023-32233 is a linux kernel vulnerability that can be exploited remotely. cve-2023-32233是一个可以被远程利用的linux内核漏洞。 # liuk3r/cve-2023-32233 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: liuk3r/cve-2023-32233 resource_label: primary resource_type: code resource_url: https://github.com/liuk3r/cve-2023-32233 parent_primary_url: https://github.com/liuk3r/cve-2023-32233 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/liuk3r/cve-2023-32233 cves: cve-2023-32233 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/liuk3r/cve-2023-32233 context_links: - [code] primary: https://github.com unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "01e4461eb406cd3d",
      "item_id": "b2caae4e4c1fbe8c",
      "slug": "undated-exploits-lanleft-cve2023-1829-primary-4586193d",
      "year": null,
      "title": "lanleft/CVE2023-1829",
      "item_title": "lanleft/CVE2023-1829",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/lanleft/CVE2023-1829",
      "primary_url": "https://github.com/lanleft/CVE2023-1829",
      "parent_primary_url": "https://github.com/lanleft/CVE2023-1829",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-lanleft-cve2023-1829-primary-4586193d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# lanleft/CVE2023-1829 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: lanleft/CVE2023-1829 resource_label: primary resource_type: code resource_url: https://github.com/lanleft/CVE2023-1829 parent_primary_url: https://github.com/lanleft/CVE2023-1829 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/lanleft/CVE2023-1829 cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/lanleft/CVE2023-1829 context_links: - [code] primary: https://github.com/lanleft/CVE2023",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/lanleft/CVE2023-1829"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/lanleft/CVE2023-1829"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/lanleft/CVE2023-1829"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE",
        "remote",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "CVE-2023-1829 is a Linux kernel vulnerability that can be exploited remotely.",
      "summary_zh": "CVE-2023-1829是一个可以被远程利用的Linux内核漏洞。",
      "source_markdown": "https://github.com/lanleft/CVE2023-1829",
      "search_text": "lanleft/cve2023-1829 lanleft/cve2023-1829    exploits  exploits primary code https://github.com/lanleft/cve2023-1829 cve remote vulnerability  exploit cve-2023-1829 is a linux kernel vulnerability that can be exploited remotely. cve-2023-1829是一个可以被远程利用的linux内核漏洞。 # lanleft/cve2023-1829 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: lanleft/cve2023-1829 resource_label: primary resource_type: code resource_url: https://github.com/lanleft/cve2023-1829 parent_primary_url: https://github.com/lanleft/cve2023-1829 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/lanleft/cve2023-1829 cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/lanleft/cve2023-1829 context_links: - [code] primary: https://github.com/lanleft/cve2023 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "382e789b6c5bcd27",
      "item_id": "f510a02e1c10a741",
      "slug": "2023-exploits-turtlearm-cve-2023-3338-decpwn-primary-5013fb0c",
      "year": 2023,
      "title": "TurtleARM/CVE-2023-3338-DECPwn",
      "item_title": "TurtleARM/CVE-2023-3338-DECPwn",
      "authors": [],
      "cves": [
        "CVE-2023-3338"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/TurtleARM/CVE-2023-3338-DECPwn",
      "primary_url": "https://github.com/TurtleARM/CVE-2023-3338-DECPwn",
      "parent_primary_url": "https://github.com/TurtleARM/CVE-2023-3338-DECPwn",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2023-exploits-turtlearm-cve-2023-3338-decpwn-primary-5013fb0c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TurtleARM/CVE-2023-3338-DECPwn record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: TurtleARM/CVE-2023-3338-DECPwn resource_label: primary resource_type: code resource_url: https://github.com/TurtleARM/CVE-2023-3338-DECPwn parent_primary_url: https://github.com/TurtleARM/CVE-2023-3338-DECPwn source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/TurtleARM/CVE-2023-3338-DECPwn cves: CVE-2023-3338 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/TurtleARM/CVE-2023-3338-DECPw",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/TurtleARM/CVE-2023-3338-DECPwn"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/TurtleARM/CVE-2023-3338-DECPwn"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/TurtleARM/CVE-2023-3338-DECPwn"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE",
        "remote",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "CVE-2023-3338 is a Linux kernel vulnerability that can be exploited remotely.",
      "summary_zh": "CVE-2023-3338是一个可以被远程利用的Linux内核漏洞。",
      "source_markdown": "https://github.com/TurtleARM/CVE-2023-3338-DECPwn",
      "search_text": "turtlearm/cve-2023-3338-decpwn turtlearm/cve-2023-3338-decpwn  cve-2023-3338  exploits  exploits primary code https://github.com/turtlearm/cve-2023-3338-decpwn cve remote vulnerability  exploit cve-2023-3338 is a linux kernel vulnerability that can be exploited remotely. cve-2023-3338是一个可以被远程利用的linux内核漏洞。 # turtlearm/cve-2023-3338-decpwn record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: turtlearm/cve-2023-3338-decpwn resource_label: primary resource_type: code resource_url: https://github.com/turtlearm/cve-2023-3338-decpwn parent_primary_url: https://github.com/turtlearm/cve-2023-3338-decpwn source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/turtlearm/cve-2023-3338-decpwn cves: cve-2023-3338 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/turtlearm/cve-2023-3338-decpw unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "86f52e8a7f87756a",
      "item_id": "7ad58181d8df9aa1",
      "slug": "undated-exploits-kungfulon-nf-tables-lpe-primary-68315b71",
      "year": null,
      "title": "kungfulon/nf-tables-lpe",
      "item_title": "kungfulon/nf-tables-lpe",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/kungfulon/nf-tables-lpe",
      "primary_url": "https://github.com/kungfulon/nf-tables-lpe",
      "parent_primary_url": "https://github.com/kungfulon/nf-tables-lpe",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-kungfulon-nf-tables-lpe-primary-68315b71.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# kungfulon/nf-tables-lpe record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: kungfulon/nf-tables-lpe resource_label: primary resource_type: code resource_url: https://github.com/kungfulon/nf-tables-lpe parent_primary_url: https://github.com/kungfulon/nf-tables-lpe source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/kungfulon/nf-tables-lpe cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/kungfulon/nf-tables-lpe context_links: - [code] primary: https://github.c",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/kungfulon/nf-tables-lpe"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/kungfulon/nf-tables-lpe"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/kungfulon/nf-tables-lpe"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "local",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "nf-tables-lpe is a Linux kernel vulnerability that can be exploited locally.",
      "summary_zh": "nf-tables-lpe是一个可以被本地利用的Linux内核漏洞。",
      "source_markdown": "https://github.com/kungfulon/nf-tables-lpe",
      "search_text": "kungfulon/nf-tables-lpe kungfulon/nf-tables-lpe    exploits  exploits primary code https://github.com/kungfulon/nf-tables-lpe local vulnerability  exploit nf-tables-lpe is a linux kernel vulnerability that can be exploited locally. nf-tables-lpe是一个可以被本地利用的linux内核漏洞。 # kungfulon/nf-tables-lpe record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: kungfulon/nf-tables-lpe resource_label: primary resource_type: code resource_url: https://github.com/kungfulon/nf-tables-lpe parent_primary_url: https://github.com/kungfulon/nf-tables-lpe source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/kungfulon/nf-tables-lpe cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/kungfulon/nf-tables-lpe context_links: - [code] primary: https://github.c unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "eea401a46797067e",
      "item_id": "99c27882a7ef6d67",
      "slug": "2024-exploits-ysanatomic-io-uring-lpe-cve-2024-0582-primary-60a7fd10",
      "year": 2024,
      "title": "ysanatomic/io_uring_LPE-CVE-2024-0582",
      "item_title": "ysanatomic/io_uring_LPE-CVE-2024-0582",
      "authors": [],
      "cves": [
        "CVE-2024-0582"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/ysanatomic/io_uring_LPE-CVE-2024-0582",
      "primary_url": "https://github.com/ysanatomic/io_uring_LPE-CVE-2024-0582",
      "parent_primary_url": "https://github.com/ysanatomic/io_uring_LPE-CVE-2024-0582",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2024-exploits-ysanatomic-io-uring-lpe-cve-2024-0582-primary-60a7fd10.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ysanatomic/io_uring_LPE-CVE-2024-0582 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: ysanatomic/io_uring_LPE-CVE-2024-0582 resource_label: primary resource_type: code resource_url: https://github.com/ysanatomic/io_uring_LPE-CVE-2024-0582 parent_primary_url: https://github.com/ysanatomic/io_uring_LPE-CVE-2024-0582 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/ysanatomic/io_uring_LPE-CVE-2024-0582 cves: CVE-2024-0582 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://githu",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/ysanatomic/io_uring_LPE-CVE-2024-0582"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/ysanatomic/io_uring_LPE-CVE-2024-0582"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ysanatomic/io_uring_LPE-CVE-2024-0582"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Exploits",
        "code",
        "CVE-2024-0582"
      ],
      "affected_area": "",
      "exploit_stage": "Exploits",
      "summary_en": "2024 Linux kernel Exploits resource \"ysanatomic/io_uring_LPE-CVE-2024-0582\" (CVE-2024-0582); URL type: code.",
      "summary_zh": "2024 年 Linux 内核Exploits资料：「ysanatomic/io_uring_LPE-CVE-2024-0582」（CVE-2024-0582）；URL 类型：code。",
      "source_markdown": "https://github.com/ysanatomic/io_uring_LPE-CVE-2024-0582",
      "search_text": "ysanatomic/io_uring_lpe-cve-2024-0582 ysanatomic/io_uring_lpe-cve-2024-0582  cve-2024-0582  exploits  exploits primary code https://github.com/ysanatomic/io_uring_lpe-cve-2024-0582 exploits code cve-2024-0582  exploits 2024 linux kernel exploits resource \"ysanatomic/io_uring_lpe-cve-2024-0582\" (cve-2024-0582); url type: code. 2024 年 linux 内核exploits资料：「ysanatomic/io_uring_lpe-cve-2024-0582」（cve-2024-0582）；url 类型：code。 # ysanatomic/io_uring_lpe-cve-2024-0582 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: ysanatomic/io_uring_lpe-cve-2024-0582 resource_label: primary resource_type: code resource_url: https://github.com/ysanatomic/io_uring_lpe-cve-2024-0582 parent_primary_url: https://github.com/ysanatomic/io_uring_lpe-cve-2024-0582 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/ysanatomic/io_uring_lpe-cve-2024-0582 cves: cve-2024-0582 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://githu unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "46b1a0e0b0f67886",
      "item_id": "752a2de49e1aa6ee",
      "slug": "2024-exploits-112251322421680553-primary-c7aceb53",
      "year": 2024,
      "title": "112251322421680553",
      "item_title": "112251322421680553",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://mastodon.social/@gabe_k/112251322421680553",
      "primary_url": "https://mastodon.social/@gabe_k/112251322421680553",
      "parent_primary_url": "https://mastodon.social/@gabe_k/112251322421680553",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2024-exploits-112251322421680553-primary-c7aceb53.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 112251322421680553 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: 112251322421680553 resource_label: primary resource_type: article resource_url: https://mastodon.social/@gabe_k/112251322421680553 parent_primary_url: https://mastodon.social/@gabe_k/112251322421680553 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/YuriiCrimson/ExploitGSM/ [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: t",
      "link_types": [
        "article",
        "discussion",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://mastodon.social/@gabe_k/112251322421680553"
        },
        {
          "label": "discussion",
          "type": "discussion",
          "url": "https://www.openwall.com/lists/oss-security/2024/04/10/18"
        },
        {
          "label": "YuriiCrimson/ExploitGSM",
          "type": "exploit",
          "url": "https://github.com/YuriiCrimson/ExploitGSM/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://mastodon.social/@gabe_k/112251322421680553"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "YuriiCrimson/ExploitGSM",
            "type": "exploit",
            "url": "https://github.com/YuriiCrimson/ExploitGSM/"
          }
        ],
        "poc": [],
        "other": [
          {
            "label": "discussion",
            "type": "discussion",
            "url": "https://www.openwall.com/lists/oss-security/2024/04/10/18"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/YuriiCrimson/ExploitGSM/"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Exploits",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Exploits",
      "summary_en": "2024 Linux kernel Exploits resource \"112251322421680553\"; URL type: article.",
      "summary_zh": "2024 年 Linux 内核Exploits资料：「112251322421680553」；URL 类型：article。",
      "source_markdown": "https://github.com/YuriiCrimson/ExploitGSM/ [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)]",
      "search_text": "112251322421680553 112251322421680553    exploits  exploits primary article https://mastodon.social/@gabe_k/112251322421680553 exploits article  exploits 2024 linux kernel exploits resource \"112251322421680553\"; url type: article. 2024 年 linux 内核exploits资料：「112251322421680553」；url 类型：article。 # 112251322421680553 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: 112251322421680553 resource_label: primary resource_type: article resource_url: https://mastodon.social/@gabe_k/112251322421680553 parent_primary_url: https://mastodon.social/@gabe_k/112251322421680553 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/yuriicrimson/exploitgsm/ [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: t unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "b19687abf209c17a",
      "item_id": "752a2de49e1aa6ee",
      "slug": "2024-exploits-112251322421680553-discussion-c61f5a0a",
      "year": 2024,
      "title": "112251322421680553 · discussion",
      "item_title": "112251322421680553",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "discussion",
      "resource_type": "discussion",
      "resource_url": "https://www.openwall.com/lists/oss-security/2024/04/10/18",
      "primary_url": "https://www.openwall.com/lists/oss-security/2024/04/10/18",
      "parent_primary_url": "https://mastodon.social/@gabe_k/112251322421680553",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2024-exploits-112251322421680553-discussion-c61f5a0a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 112251322421680553 · discussion record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: 112251322421680553 resource_label: discussion resource_type: discussion resource_url: https://www.openwall.com/lists/oss-security/2024/04/10/18 parent_primary_url: https://mastodon.social/@gabe_k/112251322421680553 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/YuriiCrimson/ExploitGSM/ [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rath",
      "link_types": [
        "article",
        "discussion",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://mastodon.social/@gabe_k/112251322421680553"
        },
        {
          "label": "discussion",
          "type": "discussion",
          "url": "https://www.openwall.com/lists/oss-security/2024/04/10/18"
        },
        {
          "label": "YuriiCrimson/ExploitGSM",
          "type": "exploit",
          "url": "https://github.com/YuriiCrimson/ExploitGSM/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://mastodon.social/@gabe_k/112251322421680553"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "YuriiCrimson/ExploitGSM",
            "type": "exploit",
            "url": "https://github.com/YuriiCrimson/ExploitGSM/"
          }
        ],
        "poc": [],
        "other": [
          {
            "label": "discussion",
            "type": "discussion",
            "url": "https://www.openwall.com/lists/oss-security/2024/04/10/18"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/YuriiCrimson/ExploitGSM/"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "discussion",
        "remote",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "discussion",
      "summary_en": "Discussion on a Linux kernel vulnerability that can be exploited remotely.",
      "summary_zh": "关于一个可以被远程利用的Linux内核漏洞的讨论。",
      "source_markdown": "https://github.com/YuriiCrimson/ExploitGSM/ [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)]",
      "search_text": "112251322421680553 · discussion 112251322421680553    exploits  exploits discussion discussion https://www.openwall.com/lists/oss-security/2024/04/10/18 discussion remote vulnerability  discussion discussion on a linux kernel vulnerability that can be exploited remotely. 关于一个可以被远程利用的linux内核漏洞的讨论。 # 112251322421680553 · discussion record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: 112251322421680553 resource_label: discussion resource_type: discussion resource_url: https://www.openwall.com/lists/oss-security/2024/04/10/18 parent_primary_url: https://mastodon.social/@gabe_k/112251322421680553 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/yuriicrimson/exploitgsm/ [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rath unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "69dcb9716975a1ec",
      "item_id": "752a2de49e1aa6ee",
      "slug": "2024-exploits-112251322421680553-yuriicrimson-exploitgsm-25224617",
      "year": 2024,
      "title": "112251322421680553 · YuriiCrimson/ExploitGSM",
      "item_title": "112251322421680553",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "YuriiCrimson/ExploitGSM",
      "resource_type": "exploit",
      "resource_url": "https://github.com/YuriiCrimson/ExploitGSM/",
      "primary_url": "https://github.com/YuriiCrimson/ExploitGSM/",
      "parent_primary_url": "https://mastodon.social/@gabe_k/112251322421680553",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2024-exploits-112251322421680553-yuriicrimson-exploitgsm-25224617.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 112251322421680553 · YuriiCrimson/ExploitGSM record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: 112251322421680553 resource_label: YuriiCrimson/ExploitGSM resource_type: exploit resource_url: https://github.com/YuriiCrimson/ExploitGSM/ parent_primary_url: https://mastodon.social/@gabe_k/112251322421680553 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/YuriiCrimson/ExploitGSM/ [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ke",
      "link_types": [
        "article",
        "discussion",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://mastodon.social/@gabe_k/112251322421680553"
        },
        {
          "label": "discussion",
          "type": "discussion",
          "url": "https://www.openwall.com/lists/oss-security/2024/04/10/18"
        },
        {
          "label": "YuriiCrimson/ExploitGSM",
          "type": "exploit",
          "url": "https://github.com/YuriiCrimson/ExploitGSM/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://mastodon.social/@gabe_k/112251322421680553"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "YuriiCrimson/ExploitGSM",
            "type": "exploit",
            "url": "https://github.com/YuriiCrimson/ExploitGSM/"
          }
        ],
        "poc": [],
        "other": [
          {
            "label": "discussion",
            "type": "discussion",
            "url": "https://www.openwall.com/lists/oss-security/2024/04/10/18"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/YuriiCrimson/ExploitGSM/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Exploits",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "Exploits",
      "summary_en": "2024 Linux kernel Exploits resource \"112251322421680553 · YuriiCrimson/ExploitGSM\"; URL type: exploit.",
      "summary_zh": "2024 年 Linux 内核Exploits资料：「112251322421680553 · YuriiCrimson/ExploitGSM」；URL 类型：exploit。",
      "source_markdown": "https://github.com/YuriiCrimson/ExploitGSM/ [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)]",
      "search_text": "112251322421680553 · yuriicrimson/exploitgsm 112251322421680553    exploits  exploits yuriicrimson/exploitgsm exploit https://github.com/yuriicrimson/exploitgsm/ exploits exploit  exploits 2024 linux kernel exploits resource \"112251322421680553 · yuriicrimson/exploitgsm\"; url type: exploit. 2024 年 linux 内核exploits资料：「112251322421680553 · yuriicrimson/exploitgsm」；url 类型：exploit。 # 112251322421680553 · yuriicrimson/exploitgsm record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: 112251322421680553 resource_label: yuriicrimson/exploitgsm resource_type: exploit resource_url: https://github.com/yuriicrimson/exploitgsm/ parent_primary_url: https://mastodon.social/@gabe_k/112251322421680553 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/yuriicrimson/exploitgsm/ [[notes](https://mastodon.social/@gabe_k/112251322421680553)] [[discussion](https://www.openwall.com/lists/oss-security/2024/04/10/18)] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu ke unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "7d3fad9e89617599",
      "item_id": "b1d24fed2b56263a",
      "slug": "undated-exploits-roddux-germy-primary-ca281d50",
      "year": null,
      "title": "roddux/germy",
      "item_title": "roddux/germy",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/roddux/germy",
      "primary_url": "https://github.com/roddux/germy",
      "parent_primary_url": "https://github.com/roddux/germy",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-roddux-germy-primary-ca281d50.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# roddux/germy record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: roddux/germy resource_label: primary resource_type: code resource_url: https://github.com/roddux/germy parent_primary_url: https://github.com/roddux/germy source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/roddux/germy cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/roddux/germy context_links: - [code] primary: https://github.com/roddux/germy fetch_status: skipped fetch_note: original URL is ",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/roddux/germy"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/roddux/germy"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/roddux/germy"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "local",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "germy is a Linux kernel vulnerability that can be exploited locally.",
      "summary_zh": "germy是一个可以被本地利用的Linux内核漏洞。",
      "source_markdown": "https://github.com/roddux/germy",
      "search_text": "roddux/germy roddux/germy    exploits  exploits primary code https://github.com/roddux/germy local vulnerability  exploit germy is a linux kernel vulnerability that can be exploited locally. germy是一个可以被本地利用的linux内核漏洞。 # roddux/germy record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: roddux/germy resource_label: primary resource_type: code resource_url: https://github.com/roddux/germy parent_primary_url: https://github.com/roddux/germy source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/roddux/germy cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/roddux/germy context_links: - [code] primary: https://github.com/roddux/germy fetch_status: skipped fetch_note: original url is  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "1a33e8dea90173a7",
      "item_id": "6a6e3c85d7c59a7f",
      "slug": "undated-exploits-renorobert-tagbleedvmm-primary-5b25fb97",
      "year": null,
      "title": "renorobert/tagbleedvmm",
      "item_title": "renorobert/tagbleedvmm",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/renorobert/tagbleedvmm",
      "primary_url": "https://github.com/renorobert/tagbleedvmm",
      "parent_primary_url": "https://github.com/renorobert/tagbleedvmm",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-renorobert-tagbleedvmm-primary-5b25fb97.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# renorobert/tagbleedvmm record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: renorobert/tagbleedvmm resource_label: primary resource_type: code resource_url: https://github.com/renorobert/tagbleedvmm parent_primary_url: https://github.com/renorobert/tagbleedvmm source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/renorobert/tagbleedvmm cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/renorobert/tagbleedvmm context_links: - [code] primary: https://github.com/ren",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/renorobert/tagbleedvmm"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/renorobert/tagbleedvmm"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/renorobert/tagbleedvmm"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "local",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "tagbleedvmm is a Linux kernel vulnerability that can be exploited locally.",
      "summary_zh": "tagbleedvmm是一个可以被本地利用的Linux内核漏洞。",
      "source_markdown": "https://github.com/renorobert/tagbleedvmm",
      "search_text": "renorobert/tagbleedvmm renorobert/tagbleedvmm    exploits  exploits primary code https://github.com/renorobert/tagbleedvmm local vulnerability  exploit tagbleedvmm is a linux kernel vulnerability that can be exploited locally. tagbleedvmm是一个可以被本地利用的linux内核漏洞。 # renorobert/tagbleedvmm record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: renorobert/tagbleedvmm resource_label: primary resource_type: code resource_url: https://github.com/renorobert/tagbleedvmm parent_primary_url: https://github.com/renorobert/tagbleedvmm source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/renorobert/tagbleedvmm cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/renorobert/tagbleedvmm context_links: - [code] primary: https://github.com/ren unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "be03fde0543d9839",
      "item_id": "176dd144779fd795",
      "slug": "undated-exploits-roddux-ixode-primary-8c0b5452",
      "year": null,
      "title": "roddux/ixode",
      "item_title": "roddux/ixode",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/roddux/ixode",
      "primary_url": "https://github.com/roddux/ixode",
      "parent_primary_url": "https://github.com/roddux/ixode",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-roddux-ixode-primary-8c0b5452.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# roddux/ixode record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: roddux/ixode resource_label: primary resource_type: code resource_url: https://github.com/roddux/ixode parent_primary_url: https://github.com/roddux/ixode source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/roddux/ixode cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/roddux/ixode context_links: - [code] primary: https://github.com/roddux/ixode fetch_status: skipped fetch_note: original URL is ",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/roddux/ixode"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/roddux/ixode"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/roddux/ixode"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "local",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "ixode is a Linux kernel vulnerability that can be exploited locally.",
      "summary_zh": "ixode是一个可以被本地利用的Linux内核漏洞。",
      "source_markdown": "https://github.com/roddux/ixode",
      "search_text": "roddux/ixode roddux/ixode    exploits  exploits primary code https://github.com/roddux/ixode local vulnerability  exploit ixode is a linux kernel vulnerability that can be exploited locally. ixode是一个可以被本地利用的linux内核漏洞。 # roddux/ixode record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: roddux/ixode resource_label: primary resource_type: code resource_url: https://github.com/roddux/ixode parent_primary_url: https://github.com/roddux/ixode source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/roddux/ixode cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/roddux/ixode context_links: - [code] primary: https://github.com/roddux/ixode fetch_status: skipped fetch_note: original url is  unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "5df24c7e5e6174f4",
      "item_id": "b04754216b1f7cee",
      "slug": "undated-exploits-b17fr13nds-kernel-exploits-primary-8756efaa",
      "year": null,
      "title": "b17fr13nds/kernel-exploits",
      "item_title": "b17fr13nds/kernel-exploits",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/b17fr13nds/kernel-exploits",
      "primary_url": "https://github.com/b17fr13nds/kernel-exploits",
      "parent_primary_url": "https://github.com/b17fr13nds/kernel-exploits",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-b17fr13nds-kernel-exploits-primary-8756efaa.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# b17fr13nds/kernel-exploits record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: b17fr13nds/kernel-exploits resource_label: primary resource_type: exploit resource_url: https://github.com/b17fr13nds/kernel-exploits parent_primary_url: https://github.com/b17fr13nds/kernel-exploits source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/b17fr13nds/kernel-exploits cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/b17fr13nds/kernel-exploits context_links: - [exploit] pri",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/b17fr13nds/kernel-exploits"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/b17fr13nds/kernel-exploits"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/b17fr13nds/kernel-exploits"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "collection",
        "vulnerabilities"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "kernel-exploits is a collection of Linux kernel vulnerabilities that can be exploited.",
      "summary_zh": "kernel-exploits是一个可以被利用的Linux内核漏洞集合。",
      "source_markdown": "https://github.com/b17fr13nds/kernel-exploits",
      "search_text": "b17fr13nds/kernel-exploits b17fr13nds/kernel-exploits    exploits  exploits primary exploit https://github.com/b17fr13nds/kernel-exploits collection vulnerabilities  exploit kernel-exploits is a collection of linux kernel vulnerabilities that can be exploited. kernel-exploits是一个可以被利用的linux内核漏洞集合。 # b17fr13nds/kernel-exploits record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: b17fr13nds/kernel-exploits resource_label: primary resource_type: exploit resource_url: https://github.com/b17fr13nds/kernel-exploits parent_primary_url: https://github.com/b17fr13nds/kernel-exploits source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/b17fr13nds/kernel-exploits cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/b17fr13nds/kernel-exploits context_links: - [exploit] pri unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "9ebdfe5f364f203b",
      "item_id": "5878b2b00a3d0a3f",
      "slug": "undated-exploits-llfam-foob-primary-030faf96",
      "year": null,
      "title": "LLfam/foob",
      "item_title": "LLfam/foob",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/LLfam/foob",
      "primary_url": "https://github.com/LLfam/foob",
      "parent_primary_url": "https://github.com/LLfam/foob",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-llfam-foob-primary-030faf96.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# LLfam/foob record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: LLfam/foob resource_label: primary resource_type: code resource_url: https://github.com/LLfam/foob parent_primary_url: https://github.com/LLfam/foob source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/LLfam/foob cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/LLfam/foob context_links: - [code] primary: https://github.com/LLfam/foob fetch_status: skipped fetch_note: original URL is preserved; pub",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/LLfam/foob"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/LLfam/foob"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/LLfam/foob"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "local",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "foob is a Linux kernel vulnerability that can be exploited locally.",
      "summary_zh": "foob是一个可以被本地利用的Linux内核漏洞。",
      "source_markdown": "https://github.com/LLfam/foob",
      "search_text": "llfam/foob llfam/foob    exploits  exploits primary code https://github.com/llfam/foob local vulnerability  exploit foob is a linux kernel vulnerability that can be exploited locally. foob是一个可以被本地利用的linux内核漏洞。 # llfam/foob record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: llfam/foob resource_label: primary resource_type: code resource_url: https://github.com/llfam/foob parent_primary_url: https://github.com/llfam/foob source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/llfam/foob cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/llfam/foob context_links: - [code] primary: https://github.com/llfam/foob fetch_status: skipped fetch_note: original url is preserved; pub unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "037403fc1108d224",
      "item_id": "1a29d2ab94a7e8ef",
      "slug": "undated-exploits-zhuowei-cheese-primary-472a85a9",
      "year": null,
      "title": "zhuowei/cheese",
      "item_title": "zhuowei/cheese",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/zhuowei/cheese",
      "primary_url": "https://github.com/zhuowei/cheese",
      "parent_primary_url": "https://github.com/zhuowei/cheese",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-zhuowei-cheese-primary-472a85a9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# zhuowei/cheese record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: zhuowei/cheese resource_label: primary resource_type: code resource_url: https://github.com/zhuowei/cheese parent_primary_url: https://github.com/zhuowei/cheese source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/zhuowei/cheese cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/zhuowei/cheese context_links: - [code] primary: https://github.com/zhuowei/cheese fetch_status: skipped fetch_note: or",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/zhuowei/cheese"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/zhuowei/cheese"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/zhuowei/cheese"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Exploit"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit",
      "summary_en": "A repository containing code for an exploit named 'cheese'.",
      "summary_zh": "一个包含名为'cheese'的漏洞利用代码的库。",
      "source_markdown": "https://github.com/zhuowei/cheese",
      "search_text": "zhuowei/cheese zhuowei/cheese    exploits  exploits primary code https://github.com/zhuowei/cheese exploit  exploit a repository containing code for an exploit named 'cheese'. 一个包含名为'cheese'的漏洞利用代码的库。 # zhuowei/cheese record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: zhuowei/cheese resource_label: primary resource_type: code resource_url: https://github.com/zhuowei/cheese parent_primary_url: https://github.com/zhuowei/cheese source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/zhuowei/cheese cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/zhuowei/cheese context_links: - [code] primary: https://github.com/zhuowei/cheese fetch_status: skipped fetch_note: or unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "559e5882c0ff8557",
      "item_id": "d8eedb93fd726bf5",
      "slug": "2025-exploits-freexr-eureka-panther-adreno-gpu-exploit-1-primary-60b387b5",
      "year": 2025,
      "title": "FreeXR/eureka_panther-adreno-gpu-exploit-1",
      "item_title": "FreeXR/eureka_panther-adreno-gpu-exploit-1",
      "authors": [],
      "cves": [
        "CVE-2025-21479"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/FreeXR/eureka_panther-adreno-gpu-exploit-1",
      "primary_url": "https://github.com/FreeXR/eureka_panther-adreno-gpu-exploit-1",
      "parent_primary_url": "https://github.com/FreeXR/eureka_panther-adreno-gpu-exploit-1",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2025-exploits-freexr-eureka-panther-adreno-gpu-exploit-1-primary-60b387b5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# FreeXR/eureka_panther-adreno-gpu-exploit-1 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: FreeXR/eureka_panther-adreno-gpu-exploit-1 resource_label: primary resource_type: exploit resource_url: https://github.com/FreeXR/eureka_panther-adreno-gpu-exploit-1 parent_primary_url: https://github.com/FreeXR/eureka_panther-adreno-gpu-exploit-1 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/FreeXR/eureka_panther-adreno-gpu-exploit-1 [CVE-2025-21479] cves: CVE-2025-21479 android_impact_status: possible android_impact_reason: mentions Qualcomm/Adreno Android SoC components ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/FreeXR/eureka_pant",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/FreeXR/eureka_panther-adreno-gpu-exploit-1"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/FreeXR/eureka_panther-adreno-gpu-exploit-1"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/FreeXR/eureka_panther-adreno-gpu-exploit-1"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "possible",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": false,
      "android_impact_reason": "mentions Qualcomm/Adreno Android SoC components",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Exploit"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit",
      "summary_en": "An exploit targeting CVE-2025-21479 related to the Adreno GPU.",
      "summary_zh": "针对与Adreno GPU相关的CVE-2025-21479的漏洞利用。",
      "source_markdown": "https://github.com/FreeXR/eureka_panther-adreno-gpu-exploit-1 [CVE-2025-21479]",
      "search_text": "freexr/eureka_panther-adreno-gpu-exploit-1 freexr/eureka_panther-adreno-gpu-exploit-1  cve-2025-21479  exploits  exploits primary exploit https://github.com/freexr/eureka_panther-adreno-gpu-exploit-1 exploit  exploit an exploit targeting cve-2025-21479 related to the adreno gpu. 针对与adreno gpu相关的cve-2025-21479的漏洞利用。 # freexr/eureka_panther-adreno-gpu-exploit-1 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: freexr/eureka_panther-adreno-gpu-exploit-1 resource_label: primary resource_type: exploit resource_url: https://github.com/freexr/eureka_panther-adreno-gpu-exploit-1 parent_primary_url: https://github.com/freexr/eureka_panther-adreno-gpu-exploit-1 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/freexr/eureka_panther-adreno-gpu-exploit-1 [cve-2025-21479] cves: cve-2025-21479 android_impact_status: possible android_impact_reason: mentions qualcomm/adreno android soc components ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/freexr/eureka_pant possible mentions qualcomm/adreno android soc components no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "857674d39696875a",
      "item_id": "42034ee0e649eb26",
      "slug": "2022-exploits-polygraphene-dirtypipe-android-primary-8e24e759",
      "year": 2022,
      "title": "polygraphene/DirtyPipe-Android",
      "item_title": "polygraphene/DirtyPipe-Android",
      "authors": [],
      "cves": [
        "CVE-2022-0847"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/polygraphene/DirtyPipe-Android",
      "primary_url": "https://github.com/polygraphene/DirtyPipe-Android",
      "parent_primary_url": "https://github.com/polygraphene/DirtyPipe-Android",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2022-exploits-polygraphene-dirtypipe-android-primary-8e24e759.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# polygraphene/DirtyPipe-Android record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: polygraphene/DirtyPipe-Android resource_label: primary resource_type: code resource_url: https://github.com/polygraphene/DirtyPipe-Android parent_primary_url: https://github.com/polygraphene/DirtyPipe-Android source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/polygraphene/DirtyPipe-Android [CVE-2022-0847] cves: CVE-2022-0847 android_impact_status: yes android_impact_reason: mentions Android ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/polygraphene/DirtyPipe-Android context_links: - [code] primary: https://github.com/polygraphene/DirtyPipe-Android fet",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/polygraphene/DirtyPipe-Android"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/polygraphene/DirtyPipe-Android"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/polygraphene/DirtyPipe-Android"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "yes",
      "android_related": true,
      "android_affected": true,
      "android_confirmed": true,
      "android_impact_reason": "mentions Android",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Exploit"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit",
      "summary_en": "A code repository for exploiting CVE-2022-0847 known as DirtyPipe.",
      "summary_zh": "一个用于利用CVE-2022-0847（DirtyPipe）的代码库。",
      "source_markdown": "https://github.com/polygraphene/DirtyPipe-Android [CVE-2022-0847]",
      "search_text": "polygraphene/dirtypipe-android polygraphene/dirtypipe-android  cve-2022-0847  exploits  exploits primary code https://github.com/polygraphene/dirtypipe-android exploit  exploit a code repository for exploiting cve-2022-0847 known as dirtypipe. 一个用于利用cve-2022-0847（dirtypipe）的代码库。 # polygraphene/dirtypipe-android record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: polygraphene/dirtypipe-android resource_label: primary resource_type: code resource_url: https://github.com/polygraphene/dirtypipe-android parent_primary_url: https://github.com/polygraphene/dirtypipe-android source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/polygraphene/dirtypipe-android [cve-2022-0847] cves: cve-2022-0847 android_impact_status: yes android_impact_reason: mentions android ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/polygraphene/dirtypipe-android context_links: - [code] primary: https://github.com/polygraphene/dirtypipe-android fet yes mentions android no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "5244de76eca52065",
      "item_id": "4ac9aa673fe43f75",
      "slug": "2023-exploits-spiralbl0ck-cve-2023-1206-cve-2025-40040-cve-2024-49882-primary-6f406acf",
      "year": 2023,
      "title": "SpiralBL0CK/CVE-2023-1206-CVE-2025-40040-CVE-2024-49882",
      "item_title": "SpiralBL0CK/CVE-2023-1206-CVE-2025-40040-CVE-2024-49882",
      "authors": [],
      "cves": [
        "CVE-2023-1206",
        "CVE-2025-40040",
        "CVE-2024-49882"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/SpiralBL0CK/CVE-2023-1206-CVE-2025-40040-CVE-2024-49882",
      "primary_url": "https://github.com/SpiralBL0CK/CVE-2023-1206-CVE-2025-40040-CVE-2024-49882",
      "parent_primary_url": "https://github.com/SpiralBL0CK/CVE-2023-1206-CVE-2025-40040-CVE-2024-49882",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2023-exploits-spiralbl0ck-cve-2023-1206-cve-2025-40040-cve-2024-49882-primary-6f406acf.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SpiralBL0CK/CVE-2023-1206-CVE-2025-40040-CVE-2024-49882 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: SpiralBL0CK/CVE-2023-1206-CVE-2025-40040-CVE-2024-49882 resource_label: primary resource_type: code resource_url: https://github.com/SpiralBL0CK/CVE-2023-1206-CVE-2025-40040-CVE-2024-49882 parent_primary_url: https://github.com/SpiralBL0CK/CVE-2023-1206-CVE-2025-40040-CVE-2024-49882 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/SpiralBL0CK/CVE-2023-1206-CVE-2025-40040-CVE-2024-49882 cves: CVE-2023-1206, CVE-2025-40040, CVE-2024-49882 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS device",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/SpiralBL0CK/CVE-2023-1206-CVE-2025-40040-CVE-2024-49882"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/SpiralBL0CK/CVE-2023-1206-CVE-2025-40040-CVE-2024-49882"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/SpiralBL0CK/CVE-2023-1206-CVE-2025-40040-CVE-2024-49882"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Exploit"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit",
      "summary_en": "A repository containing exploits for multiple CVEs including CVE-2023-1206.",
      "summary_zh": "一个包含多个CVE（包括CVE-2023-1206）漏洞利用的库。",
      "source_markdown": "https://github.com/SpiralBL0CK/CVE-2023-1206-CVE-2025-40040-CVE-2024-49882",
      "search_text": "spiralbl0ck/cve-2023-1206-cve-2025-40040-cve-2024-49882 spiralbl0ck/cve-2023-1206-cve-2025-40040-cve-2024-49882  cve-2023-1206 cve-2025-40040 cve-2024-49882  exploits  exploits primary code https://github.com/spiralbl0ck/cve-2023-1206-cve-2025-40040-cve-2024-49882 exploit  exploit a repository containing exploits for multiple cves including cve-2023-1206. 一个包含多个cve（包括cve-2023-1206）漏洞利用的库。 # spiralbl0ck/cve-2023-1206-cve-2025-40040-cve-2024-49882 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: spiralbl0ck/cve-2023-1206-cve-2025-40040-cve-2024-49882 resource_label: primary resource_type: code resource_url: https://github.com/spiralbl0ck/cve-2023-1206-cve-2025-40040-cve-2024-49882 parent_primary_url: https://github.com/spiralbl0ck/cve-2023-1206-cve-2025-40040-cve-2024-49882 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/spiralbl0ck/cve-2023-1206-cve-2025-40040-cve-2024-49882 cves: cve-2023-1206, cve-2025-40040, cve-2024-49882 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios device unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "4cafe191ca2aa5c9",
      "item_id": "5350f7686aac9bdb",
      "slug": "2024-exploits-kuzeyardabulut-cve-2024-0582-primary-5e6a0941",
      "year": 2024,
      "title": "kuzeyardabulut/CVE-2024-0582",
      "item_title": "kuzeyardabulut/CVE-2024-0582",
      "authors": [],
      "cves": [
        "CVE-2024-0582"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/kuzeyardabulut/CVE-2024-0582",
      "primary_url": "https://github.com/kuzeyardabulut/CVE-2024-0582",
      "parent_primary_url": "https://github.com/kuzeyardabulut/CVE-2024-0582",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2024-exploits-kuzeyardabulut-cve-2024-0582-primary-5e6a0941.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# kuzeyardabulut/CVE-2024-0582 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: kuzeyardabulut/CVE-2024-0582 resource_label: primary resource_type: code resource_url: https://github.com/kuzeyardabulut/CVE-2024-0582 parent_primary_url: https://github.com/kuzeyardabulut/CVE-2024-0582 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/kuzeyardabulut/CVE-2024-0582 cves: CVE-2024-0582 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/kuzeyardabulut/CVE-2024-0582 context_li",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/kuzeyardabulut/CVE-2024-0582"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/kuzeyardabulut/CVE-2024-0582"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/kuzeyardabulut/CVE-2024-0582"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Exploit"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit",
      "summary_en": "An exploit repository for CVE-2024-0582.",
      "summary_zh": "一个针对CVE-2024-0582的漏洞利用库。",
      "source_markdown": "https://github.com/kuzeyardabulut/CVE-2024-0582",
      "search_text": "kuzeyardabulut/cve-2024-0582 kuzeyardabulut/cve-2024-0582  cve-2024-0582  exploits  exploits primary code https://github.com/kuzeyardabulut/cve-2024-0582 exploit  exploit an exploit repository for cve-2024-0582. 一个针对cve-2024-0582的漏洞利用库。 # kuzeyardabulut/cve-2024-0582 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: kuzeyardabulut/cve-2024-0582 resource_label: primary resource_type: code resource_url: https://github.com/kuzeyardabulut/cve-2024-0582 parent_primary_url: https://github.com/kuzeyardabulut/cve-2024-0582 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/kuzeyardabulut/cve-2024-0582 cves: cve-2024-0582 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/kuzeyardabulut/cve-2024-0582 context_li unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "760c98020442d293",
      "item_id": "e5471f697dd40147",
      "slug": "2024-exploits-lcfr-eth-cve-2024-14027-slop-primary-ad915504",
      "year": 2024,
      "title": "lcfr-eth/CVE-2024-14027_slop",
      "item_title": "lcfr-eth/CVE-2024-14027_slop",
      "authors": [],
      "cves": [
        "CVE-2024-14027"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/lcfr-eth/CVE-2024-14027_slop/",
      "primary_url": "https://github.com/lcfr-eth/CVE-2024-14027_slop/",
      "parent_primary_url": "https://github.com/lcfr-eth/CVE-2024-14027_slop/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2024-exploits-lcfr-eth-cve-2024-14027-slop-primary-ad915504.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# lcfr-eth/CVE-2024-14027_slop record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: lcfr-eth/CVE-2024-14027_slop resource_label: primary resource_type: code resource_url: https://github.com/lcfr-eth/CVE-2024-14027_slop/ parent_primary_url: https://github.com/lcfr-eth/CVE-2024-14027_slop/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/lcfr-eth/CVE-2024-14027_slop/ [CVE-2024-14027] cves: CVE-2024-14027 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/lcfr-eth/CVE-2024-",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/lcfr-eth/CVE-2024-14027_slop/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/lcfr-eth/CVE-2024-14027_slop/"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/lcfr-eth/CVE-2024-14027_slop/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Exploit"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit",
      "summary_en": "A code repository for exploiting CVE-2024-14027.",
      "summary_zh": "一个用于利用CVE-2024-14027的代码库。",
      "source_markdown": "https://github.com/lcfr-eth/CVE-2024-14027_slop/ [CVE-2024-14027]",
      "search_text": "lcfr-eth/cve-2024-14027_slop lcfr-eth/cve-2024-14027_slop  cve-2024-14027  exploits  exploits primary code https://github.com/lcfr-eth/cve-2024-14027_slop/ exploit  exploit a code repository for exploiting cve-2024-14027. 一个用于利用cve-2024-14027的代码库。 # lcfr-eth/cve-2024-14027_slop record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: lcfr-eth/cve-2024-14027_slop resource_label: primary resource_type: code resource_url: https://github.com/lcfr-eth/cve-2024-14027_slop/ parent_primary_url: https://github.com/lcfr-eth/cve-2024-14027_slop/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/lcfr-eth/cve-2024-14027_slop/ [cve-2024-14027] cves: cve-2024-14027 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/lcfr-eth/cve-2024- unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "f48f97cfcf204bc3",
      "item_id": "16c8e696ba8f0f1b",
      "slug": "2016-exploits-scumjr-dirtycow-vdso-primary-73212eeb",
      "year": 2016,
      "title": "scumjr/dirtycow-vdso",
      "item_title": "scumjr/dirtycow-vdso",
      "authors": [],
      "cves": [
        "CVE-2016-5195"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/scumjr/dirtycow-vdso",
      "primary_url": "https://github.com/scumjr/dirtycow-vdso",
      "parent_primary_url": "https://github.com/scumjr/dirtycow-vdso",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2016-exploits-scumjr-dirtycow-vdso-primary-73212eeb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# scumjr/dirtycow-vdso record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: scumjr/dirtycow-vdso resource_label: primary resource_type: code resource_url: https://github.com/scumjr/dirtycow-vdso parent_primary_url: https://github.com/scumjr/dirtycow-vdso source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/scumjr/dirtycow-vdso [CVE-2016-5195] cves: CVE-2016-5195 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/scumjr/dirtycow-vdso context_links: - [code] primary: https://g",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/scumjr/dirtycow-vdso"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/scumjr/dirtycow-vdso"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/scumjr/dirtycow-vdso"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Exploit"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit",
      "summary_en": "A repository for the Dirty COW exploit, CVE-2016-5195.",
      "summary_zh": "一个用于Dirty COW漏洞（CVE-2016-5195）的库。",
      "source_markdown": "https://github.com/scumjr/dirtycow-vdso [CVE-2016-5195]",
      "search_text": "scumjr/dirtycow-vdso scumjr/dirtycow-vdso  cve-2016-5195  exploits  exploits primary code https://github.com/scumjr/dirtycow-vdso exploit  exploit a repository for the dirty cow exploit, cve-2016-5195. 一个用于dirty cow漏洞（cve-2016-5195）的库。 # scumjr/dirtycow-vdso record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: scumjr/dirtycow-vdso resource_label: primary resource_type: code resource_url: https://github.com/scumjr/dirtycow-vdso parent_primary_url: https://github.com/scumjr/dirtycow-vdso source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/scumjr/dirtycow-vdso [cve-2016-5195] cves: cve-2016-5195 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/scumjr/dirtycow-vdso context_links: - [code] primary: https://g unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "83f4b703a4b70014",
      "item_id": "38b0e4acd752840b",
      "slug": "2026-exploits-0xdeadbeefnetwork-ssh-keysign-pwn-primary-970a1260",
      "year": 2026,
      "title": "0xdeadbeefnetwork/ssh-keysign-pwn",
      "item_title": "0xdeadbeefnetwork/ssh-keysign-pwn",
      "authors": [],
      "cves": [
        "CVE-2026-46333"
      ],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/0xdeadbeefnetwork/ssh-keysign-pwn",
      "primary_url": "https://github.com/0xdeadbeefnetwork/ssh-keysign-pwn",
      "parent_primary_url": "https://github.com/0xdeadbeefnetwork/ssh-keysign-pwn",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2026-exploits-0xdeadbeefnetwork-ssh-keysign-pwn-primary-970a1260.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 0xdeadbeefnetwork/ssh-keysign-pwn record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: 0xdeadbeefnetwork/ssh-keysign-pwn resource_label: primary resource_type: code resource_url: https://github.com/0xdeadbeefnetwork/ssh-keysign-pwn parent_primary_url: https://github.com/0xdeadbeefnetwork/ssh-keysign-pwn source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/0xdeadbeefnetwork/ssh-keysign-pwn [CVE-2026-46333] cves: CVE-2026-46333 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/0xdeadbeefnetwork/ssh-keysign-pwn"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/0xdeadbeefnetwork/ssh-keysign-pwn"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/0xdeadbeefnetwork/ssh-keysign-pwn"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Exploit"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit",
      "summary_en": "An exploit targeting CVE-2026-46333 related to ssh-keysign.",
      "summary_zh": "一个针对与ssh-keysign相关的CVE-2026-46333的漏洞利用。",
      "source_markdown": "https://github.com/0xdeadbeefnetwork/ssh-keysign-pwn [CVE-2026-46333]",
      "search_text": "0xdeadbeefnetwork/ssh-keysign-pwn 0xdeadbeefnetwork/ssh-keysign-pwn  cve-2026-46333  exploits  exploits primary code https://github.com/0xdeadbeefnetwork/ssh-keysign-pwn exploit  exploit an exploit targeting cve-2026-46333 related to ssh-keysign. 一个针对与ssh-keysign相关的cve-2026-46333的漏洞利用。 # 0xdeadbeefnetwork/ssh-keysign-pwn record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: 0xdeadbeefnetwork/ssh-keysign-pwn resource_label: primary resource_type: code resource_url: https://github.com/0xdeadbeefnetwork/ssh-keysign-pwn parent_primary_url: https://github.com/0xdeadbeefnetwork/ssh-keysign-pwn source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/0xdeadbeefnetwork/ssh-keysign-pwn [cve-2026-46333] cves: cve-2026-46333 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github. unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "58935cfbbf522d76",
      "item_id": "fdc4c8626de556c7",
      "slug": "2026-exploits-rootsecdev-cve-2026-31431-primary-75356607",
      "year": 2026,
      "title": "rootsecdev/cve_2026_31431",
      "item_title": "rootsecdev/cve_2026_31431",
      "authors": [],
      "cves": [
        "CVE-2026-31431"
      ],
      "tags": [
        "Copy Fail"
      ],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/rootsecdev/cve_2026_31431",
      "primary_url": "https://github.com/rootsecdev/cve_2026_31431",
      "parent_primary_url": "https://github.com/rootsecdev/cve_2026_31431",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2026-exploits-rootsecdev-cve-2026-31431-primary-75356607.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# rootsecdev/cve_2026_31431 record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: rootsecdev/cve_2026_31431 resource_label: primary resource_type: code resource_url: https://github.com/rootsecdev/cve_2026_31431 parent_primary_url: https://github.com/rootsecdev/cve_2026_31431 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/rootsecdev/cve_2026_31431 [CVE-2026-31431] [Copy Fail] cves: CVE-2026-31431 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/rootsecdev/cve_2026_3143",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/rootsecdev/cve_2026_31431"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/rootsecdev/cve_2026_31431"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/rootsecdev/cve_2026_31431"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Exploit",
        "Copy Fail"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit",
      "summary_en": "A repository for exploiting CVE-2026-31431 with a focus on Copy Fail.",
      "summary_zh": "一个针对CVE-2026-31431（Copy Fail）的漏洞利用库。",
      "source_markdown": "https://github.com/rootsecdev/cve_2026_31431 [CVE-2026-31431] [Copy Fail]",
      "search_text": "rootsecdev/cve_2026_31431 rootsecdev/cve_2026_31431  cve-2026-31431 copy fail exploits  exploits primary code https://github.com/rootsecdev/cve_2026_31431 exploit copy fail  exploit a repository for exploiting cve-2026-31431 with a focus on copy fail. 一个针对cve-2026-31431（copy fail）的漏洞利用库。 # rootsecdev/cve_2026_31431 record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: rootsecdev/cve_2026_31431 resource_label: primary resource_type: code resource_url: https://github.com/rootsecdev/cve_2026_31431 parent_primary_url: https://github.com/rootsecdev/cve_2026_31431 source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/rootsecdev/cve_2026_31431 [cve-2026-31431] [copy fail] cves: cve-2026-31431 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/rootsecdev/cve_2026_3143 unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "abc1ffb0a41c679b",
      "item_id": "e279351ef8493195",
      "slug": "2026-exploits-badsectorlabs-copyfail-go-primary-d5053fca",
      "year": 2026,
      "title": "badsectorlabs/copyfail-go",
      "item_title": "badsectorlabs/copyfail-go",
      "authors": [],
      "cves": [
        "CVE-2026-31431"
      ],
      "tags": [
        "Copy Fail"
      ],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/badsectorlabs/copyfail-go",
      "primary_url": "https://github.com/badsectorlabs/copyfail-go",
      "parent_primary_url": "https://github.com/badsectorlabs/copyfail-go",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2026-exploits-badsectorlabs-copyfail-go-primary-d5053fca.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# badsectorlabs/copyfail-go record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: badsectorlabs/copyfail-go resource_label: primary resource_type: code resource_url: https://github.com/badsectorlabs/copyfail-go parent_primary_url: https://github.com/badsectorlabs/copyfail-go source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/badsectorlabs/copyfail-go [CVE-2026-31431] [Copy Fail] cves: CVE-2026-31431 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/badsectorlabs/copyfail-g",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/badsectorlabs/copyfail-go"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/badsectorlabs/copyfail-go"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/badsectorlabs/copyfail-go"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Exploit",
        "Copy Fail"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit",
      "summary_en": "Another repository for exploiting CVE-2026-31431 with Copy Fail focus.",
      "summary_zh": "另一个针对CVE-2026-31431（Copy Fail）的漏洞利用库。",
      "source_markdown": "https://github.com/badsectorlabs/copyfail-go [CVE-2026-31431] [Copy Fail]",
      "search_text": "badsectorlabs/copyfail-go badsectorlabs/copyfail-go  cve-2026-31431 copy fail exploits  exploits primary code https://github.com/badsectorlabs/copyfail-go exploit copy fail  exploit another repository for exploiting cve-2026-31431 with copy fail focus. 另一个针对cve-2026-31431（copy fail）的漏洞利用库。 # badsectorlabs/copyfail-go record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: badsectorlabs/copyfail-go resource_label: primary resource_type: code resource_url: https://github.com/badsectorlabs/copyfail-go parent_primary_url: https://github.com/badsectorlabs/copyfail-go source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/badsectorlabs/copyfail-go [cve-2026-31431] [copy fail] cves: cve-2026-31431 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/badsectorlabs/copyfail-g unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "f8edf484062adf80",
      "item_id": "91c1852772210ebe",
      "slug": "2026-exploits-d7b5d0599b154c9ec83c182acbd56e8b-primary-1ca37bfb",
      "year": 2026,
      "title": "d7b5d0599b154c9ec83c182acbd56e8b",
      "item_title": "d7b5d0599b154c9ec83c182acbd56e8b",
      "authors": [],
      "cves": [
        "CVE-2026-31431"
      ],
      "tags": [
        "Copy Fail"
      ],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://gist.github.com/blasty/d7b5d0599b154c9ec83c182acbd56e8b",
      "primary_url": "https://gist.github.com/blasty/d7b5d0599b154c9ec83c182acbd56e8b",
      "parent_primary_url": "https://gist.github.com/blasty/d7b5d0599b154c9ec83c182acbd56e8b",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2026-exploits-d7b5d0599b154c9ec83c182acbd56e8b-primary-1ca37bfb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# d7b5d0599b154c9ec83c182acbd56e8b record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: d7b5d0599b154c9ec83c182acbd56e8b resource_label: primary resource_type: code resource_url: https://gist.github.com/blasty/d7b5d0599b154c9ec83c182acbd56e8b parent_primary_url: https://gist.github.com/blasty/d7b5d0599b154c9ec83c182acbd56e8b source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://gist.github.com/blasty/d7b5d0599b154c9ec83c182acbd56e8b [CVE-2026-31431] [Copy Fail] cves: CVE-2026-31431 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exp",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://gist.github.com/blasty/d7b5d0599b154c9ec83c182acbd56e8b"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://gist.github.com/blasty/d7b5d0599b154c9ec83c182acbd56e8b"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://gist.github.com/blasty/d7b5d0599b154c9ec83c182acbd56e8b"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Exploit",
        "Copy Fail"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit",
      "summary_en": "A code repository for exploiting CVE-2026-31431.",
      "summary_zh": "一个用于利用CVE-2026-31431的代码库。",
      "source_markdown": "https://gist.github.com/blasty/d7b5d0599b154c9ec83c182acbd56e8b [CVE-2026-31431] [Copy Fail]",
      "search_text": "d7b5d0599b154c9ec83c182acbd56e8b d7b5d0599b154c9ec83c182acbd56e8b  cve-2026-31431 copy fail exploits  exploits primary code https://gist.github.com/blasty/d7b5d0599b154c9ec83c182acbd56e8b exploit copy fail  exploit a code repository for exploiting cve-2026-31431. 一个用于利用cve-2026-31431的代码库。 # d7b5d0599b154c9ec83c182acbd56e8b record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: d7b5d0599b154c9ec83c182acbd56e8b resource_label: primary resource_type: code resource_url: https://gist.github.com/blasty/d7b5d0599b154c9ec83c182acbd56e8b parent_primary_url: https://gist.github.com/blasty/d7b5d0599b154c9ec83c182acbd56e8b source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://gist.github.com/blasty/d7b5d0599b154c9ec83c182acbd56e8b [cve-2026-31431] [copy fail] cves: cve-2026-31431 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exp unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "0b0e9fbf77e993cc",
      "item_id": "afda8ae4788ba550",
      "slug": "2026-exploits-tgies-copy-fail-c-primary-15ba1edd",
      "year": 2026,
      "title": "tgies/copy-fail-c",
      "item_title": "tgies/copy-fail-c",
      "authors": [],
      "cves": [
        "CVE-2026-31431"
      ],
      "tags": [
        "Copy Fail"
      ],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/tgies/copy-fail-c",
      "primary_url": "https://github.com/tgies/copy-fail-c",
      "parent_primary_url": "https://github.com/tgies/copy-fail-c",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2026-exploits-tgies-copy-fail-c-primary-15ba1edd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# tgies/copy-fail-c record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: tgies/copy-fail-c resource_label: primary resource_type: code resource_url: https://github.com/tgies/copy-fail-c parent_primary_url: https://github.com/tgies/copy-fail-c source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/tgies/copy-fail-c [CVE-2026-31431] [Copy Fail] cves: CVE-2026-31431 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/tgies/copy-fail-c context_links: - [code] primary: https://githu",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/tgies/copy-fail-c"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/tgies/copy-fail-c"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/tgies/copy-fail-c"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Exploit",
        "Copy Fail"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit",
      "summary_en": "A repository for exploiting CVE-2026-31431 in C language.",
      "summary_zh": "一个用于利用C语言的CVE-2026-31431的库。",
      "source_markdown": "https://github.com/tgies/copy-fail-c [CVE-2026-31431] [Copy Fail]",
      "search_text": "tgies/copy-fail-c tgies/copy-fail-c  cve-2026-31431 copy fail exploits  exploits primary code https://github.com/tgies/copy-fail-c exploit copy fail  exploit a repository for exploiting cve-2026-31431 in c language. 一个用于利用c语言的cve-2026-31431的库。 # tgies/copy-fail-c record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: tgies/copy-fail-c resource_label: primary resource_type: code resource_url: https://github.com/tgies/copy-fail-c parent_primary_url: https://github.com/tgies/copy-fail-c source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/tgies/copy-fail-c [cve-2026-31431] [copy fail] cves: cve-2026-31431 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/tgies/copy-fail-c context_links: - [code] primary: https://githu unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6fcc882c1fa6fab7",
      "item_id": "c3f391c0dfc7d3e6",
      "slug": "2026-exploits-0xbruno-copyoverlayfail-primary-e259f22e",
      "year": 2026,
      "title": "0xBruno/CopyOverlayFail",
      "item_title": "0xBruno/CopyOverlayFail",
      "authors": [],
      "cves": [
        "CVE-2026-31431"
      ],
      "tags": [
        "Copy Fail"
      ],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/0xBruno/CopyOverlayFail",
      "primary_url": "https://github.com/0xBruno/CopyOverlayFail",
      "parent_primary_url": "https://github.com/0xBruno/CopyOverlayFail",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/2026-exploits-0xbruno-copyoverlayfail-primary-e259f22e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 0xBruno/CopyOverlayFail record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: 0xBruno/CopyOverlayFail resource_label: primary resource_type: code resource_url: https://github.com/0xBruno/CopyOverlayFail parent_primary_url: https://github.com/0xBruno/CopyOverlayFail source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/0xBruno/CopyOverlayFail [CVE-2026-31431] [Copy Fail] cves: CVE-2026-31431 android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/0xBruno/CopyOverlayFail context_li",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/0xBruno/CopyOverlayFail"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/0xBruno/CopyOverlayFail"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/0xBruno/CopyOverlayFail"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Exploit",
        "Copy Fail"
      ],
      "affected_area": "",
      "exploit_stage": "Exploit",
      "summary_en": "A repository for exploiting CVE-2026-31431 with a focus on Copy Overlay Fail.",
      "summary_zh": "一个针对CVE-2026-31431（Copy Overlay Fail）的漏洞利用库。",
      "source_markdown": "https://github.com/0xBruno/CopyOverlayFail [CVE-2026-31431] [Copy Fail]",
      "search_text": "0xbruno/copyoverlayfail 0xbruno/copyoverlayfail  cve-2026-31431 copy fail exploits  exploits primary code https://github.com/0xbruno/copyoverlayfail exploit copy fail  exploit a repository for exploiting cve-2026-31431 with a focus on copy overlay fail. 一个针对cve-2026-31431（copy overlay fail）的漏洞利用库。 # 0xbruno/copyoverlayfail record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: 0xbruno/copyoverlayfail resource_label: primary resource_type: code resource_url: https://github.com/0xbruno/copyoverlayfail parent_primary_url: https://github.com/0xbruno/copyoverlayfail source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/0xbruno/copyoverlayfail [cve-2026-31431] [copy fail] cves: cve-2026-31431 android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/0xbruno/copyoverlayfail context_li unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "2628c5d4fcf5846f",
      "item_id": "13fa24eabf2b1bae",
      "slug": "undated-exploits-v12-security-pocs-primary-a150484b",
      "year": null,
      "title": "v12-security/pocs",
      "item_title": "v12-security/pocs",
      "authors": [],
      "cves": [],
      "tags": [
        "Dirty CBC",
        "Dirty Decrypt"
      ],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "poc",
      "resource_url": "https://github.com/v12-security/pocs/tree/main/dirtydecrypt",
      "primary_url": "https://github.com/v12-security/pocs/tree/main/dirtydecrypt",
      "parent_primary_url": "https://github.com/v12-security/pocs/tree/main/dirtydecrypt",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-v12-security-pocs-primary-a150484b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# v12-security/pocs record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: v12-security/pocs resource_label: primary resource_type: poc resource_url: https://github.com/v12-security/pocs/tree/main/dirtydecrypt parent_primary_url: https://github.com/v12-security/pocs/tree/main/dirtydecrypt source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/v12-security/pocs/tree/main/dirtydecrypt [Dirty CBC] [Dirty Decrypt] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: false code_urls: https://github.com/v12-secu",
      "link_types": [
        "poc"
      ],
      "links": [
        {
          "label": "primary",
          "type": "poc",
          "url": "https://github.com/v12-security/pocs/tree/main/dirtydecrypt"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [
          {
            "label": "primary",
            "type": "poc",
            "url": "https://github.com/v12-security/pocs/tree/main/dirtydecrypt"
          }
        ],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/v12-security/pocs/tree/main/dirtydecrypt"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "POC",
        "Dirty CBC",
        "Dirty Decrypt"
      ],
      "affected_area": "",
      "exploit_stage": "POC",
      "summary_en": "A collection of proofs of concept related to Dirty CBC and Dirty Decrypt.",
      "summary_zh": "与Dirty CBC和Dirty Decrypt相关的概念验证集合。",
      "source_markdown": "https://github.com/v12-security/pocs/tree/main/dirtydecrypt [Dirty CBC] [Dirty Decrypt]",
      "search_text": "v12-security/pocs v12-security/pocs   dirty cbc dirty decrypt exploits  exploits primary poc https://github.com/v12-security/pocs/tree/main/dirtydecrypt poc dirty cbc dirty decrypt  poc a collection of proofs of concept related to dirty cbc and dirty decrypt. 与dirty cbc和dirty decrypt相关的概念验证集合。 # v12-security/pocs record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: v12-security/pocs resource_label: primary resource_type: poc resource_url: https://github.com/v12-security/pocs/tree/main/dirtydecrypt parent_primary_url: https://github.com/v12-security/pocs/tree/main/dirtydecrypt source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://github.com/v12-security/pocs/tree/main/dirtydecrypt [dirty cbc] [dirty decrypt] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: false code_urls: https://github.com/v12-secu unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "2636672a55098703",
      "item_id": "0ec25c3e60d6b0f4",
      "slug": "undated-exploits-agvpisasherjhtyg-sultan-box-primary-1c62c346",
      "year": null,
      "title": "agVpIsaSherjHTYg@sultan box",
      "item_title": "agVpIsaSherjHTYg@sultan box",
      "authors": [],
      "cves": [],
      "tags": [
        "Fragnesia GRO"
      ],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://lore.kernel.org/netdev/agVpIsaSherjHTYg@sultan-box/",
      "primary_url": "https://lore.kernel.org/netdev/agVpIsaSherjHTYg@sultan-box/",
      "parent_primary_url": "https://lore.kernel.org/netdev/agVpIsaSherjHTYg@sultan-box/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-agvpisasherjhtyg-sultan-box-primary-1c62c346.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# agVpIsaSherjHTYg@sultan box record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: agVpIsaSherjHTYg@sultan box resource_label: primary resource_type: article resource_url: https://lore.kernel.org/netdev/agVpIsaSherjHTYg@sultan-box/ parent_primary_url: https://lore.kernel.org/netdev/agVpIsaSherjHTYg@sultan-box/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://lore.kernel.org/netdev/agVpIsaSherjHTYg@sultan-box/ [Fragnesia GRO] cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://lore.kernel.org/netdev/agVpIsaSherjHTYg@sultan-box/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://lore.kernel.org/netdev/agVpIsaSherjHTYg@sultan-box/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Fragnesia GRO"
      ],
      "affected_area": "",
      "exploit_stage": "Article",
      "summary_en": "An article discussing Fragnesia GRO vulnerabilities.",
      "summary_zh": "讨论Fragnesia GRO漏洞的文章。",
      "source_markdown": "https://lore.kernel.org/netdev/agVpIsaSherjHTYg@sultan-box/ [Fragnesia GRO]",
      "search_text": "agvpisasherjhtyg@sultan box agvpisasherjhtyg@sultan box   fragnesia gro exploits  exploits primary article https://lore.kernel.org/netdev/agvpisasherjhtyg@sultan-box/ fragnesia gro  article an article discussing fragnesia gro vulnerabilities. 讨论fragnesia gro漏洞的文章。 # agvpisasherjhtyg@sultan box record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: agvpisasherjhtyg@sultan box resource_label: primary resource_type: article resource_url: https://lore.kernel.org/netdev/agvpisasherjhtyg@sultan-box/ parent_primary_url: https://lore.kernel.org/netdev/agvpisasherjhtyg@sultan-box/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://lore.kernel.org/netdev/agvpisasherjhtyg@sultan-box/ [fragnesia gro] cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_ unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "23439f8de301c032",
      "item_id": "0d25dda950708ea2",
      "slug": "undated-exploits-11cfb15a7d4a497c3b78790843f61dbc-primary-8c94df54",
      "year": null,
      "title": "11cfb15a7d4a497c3b78790843f61dbc",
      "item_title": "11cfb15a7d4a497c3b78790843f61dbc",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://gist.github.com/lcfr-eth/11cfb15a7d4a497c3b78790843f61dbc",
      "primary_url": "https://gist.github.com/lcfr-eth/11cfb15a7d4a497c3b78790843f61dbc",
      "parent_primary_url": "https://gist.github.com/lcfr-eth/11cfb15a7d4a497c3b78790843f61dbc",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-11cfb15a7d4a497c3b78790843f61dbc-primary-8c94df54.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 11cfb15a7d4a497c3b78790843f61dbc record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: 11cfb15a7d4a497c3b78790843f61dbc resource_label: primary resource_type: code resource_url: https://gist.github.com/lcfr-eth/11cfb15a7d4a497c3b78790843f61dbc parent_primary_url: https://gist.github.com/lcfr-eth/11cfb15a7d4a497c3b78790843f61dbc source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://gist.github.com/lcfr-eth/11cfb15a7d4a497c3b78790843f61dbc cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://gist.github.com/lcfr-eth/11cfb15a7d4a497c3b78790843f61dbc"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://gist.github.com/lcfr-eth/11cfb15a7d4a497c3b78790843f61dbc"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://gist.github.com/lcfr-eth/11cfb15a7d4a497c3b78790843f61dbc"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Exploits",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "Exploits",
      "summary_en": "Undated Linux kernel Exploits resource \"11cfb15a7d4a497c3b78790843f61dbc\"; URL type: code.",
      "summary_zh": "未标年份 Linux 内核Exploits资料：「11cfb15a7d4a497c3b78790843f61dbc」；URL 类型：code。",
      "source_markdown": "https://gist.github.com/lcfr-eth/11cfb15a7d4a497c3b78790843f61dbc",
      "search_text": "11cfb15a7d4a497c3b78790843f61dbc 11cfb15a7d4a497c3b78790843f61dbc    exploits  exploits primary code https://gist.github.com/lcfr-eth/11cfb15a7d4a497c3b78790843f61dbc exploits code  exploits undated linux kernel exploits resource \"11cfb15a7d4a497c3b78790843f61dbc\"; url type: code. 未标年份 linux 内核exploits资料：「11cfb15a7d4a497c3b78790843f61dbc」；url 类型：code。 # 11cfb15a7d4a497c3b78790843f61dbc record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: 11cfb15a7d4a497c3b78790843f61dbc resource_label: primary resource_type: code resource_url: https://gist.github.com/lcfr-eth/11cfb15a7d4a497c3b78790843f61dbc parent_primary_url: https://gist.github.com/lcfr-eth/11cfb15a7d4a497c3b78790843f61dbc source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://gist.github.com/lcfr-eth/11cfb15a7d4a497c3b78790843f61dbc cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "8f7d1c3d1813a682",
      "item_id": "8b04b9158f852396",
      "slug": "undated-exploits-2566a5cef312c94a5ff8d62fa417955f-primary-8b39118a",
      "year": null,
      "title": "2566a5cef312c94a5ff8d62fa417955f",
      "item_title": "2566a5cef312c94a5ff8d62fa417955f",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Exploits",
      "subsection": "",
      "section_path": "Exploits",
      "category": "Exploits",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://gist.github.com/lcfr-eth/2566a5cef312c94a5ff8d62fa417955f",
      "primary_url": "https://gist.github.com/lcfr-eth/2566a5cef312c94a5ff8d62fa417955f",
      "parent_primary_url": "https://gist.github.com/lcfr-eth/2566a5cef312c94a5ff8d62fa417955f",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#exploits",
      "raw_path": "/raw/undated-exploits-2566a5cef312c94a5ff8d62fa417955f-primary-8b39118a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 2566a5cef312c94a5ff8d62fa417955f record_kind: linux-kernel-resource-url section: Exploits subsection: none category: Exploits item_title: 2566a5cef312c94a5ff8d62fa417955f resource_label: primary resource_type: code resource_url: https://gist.github.com/lcfr-eth/2566a5cef312c94a5ff8d62fa417955f parent_primary_url: https://gist.github.com/lcfr-eth/2566a5cef312c94a5ff8d62fa417955f source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://gist.github.com/lcfr-eth/2566a5cef312c94a5ff8d62fa417955f cves: none android_impact_status: unknown android_impact_reason: Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://gist.github.com/lcfr-eth/2566a5cef312c94a5ff8d62fa417955f"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://gist.github.com/lcfr-eth/2566a5cef312c94a5ff8d62fa417955f"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://gist.github.com/lcfr-eth/2566a5cef312c94a5ff8d62fa417955f"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Linux kernel vulnerability/exploit entry; Android production impact needs kernel-version and vendor-backport review.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Exploits",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "Exploits",
      "summary_en": "Undated Linux kernel Exploits resource \"2566a5cef312c94a5ff8d62fa417955f\"; URL type: code.",
      "summary_zh": "未标年份 Linux 内核Exploits资料：「2566a5cef312c94a5ff8d62fa417955f」；URL 类型：code。",
      "source_markdown": "https://gist.github.com/lcfr-eth/2566a5cef312c94a5ff8d62fa417955f",
      "search_text": "2566a5cef312c94a5ff8d62fa417955f 2566a5cef312c94a5ff8d62fa417955f    exploits  exploits primary code https://gist.github.com/lcfr-eth/2566a5cef312c94a5ff8d62fa417955f exploits code  exploits undated linux kernel exploits resource \"2566a5cef312c94a5ff8d62fa417955f\"; url type: code. 未标年份 linux 内核exploits资料：「2566a5cef312c94a5ff8d62fa417955f」；url 类型：code。 # 2566a5cef312c94a5ff8d62fa417955f record_kind: linux-kernel-resource-url section: exploits subsection: none category: exploits item_title: 2566a5cef312c94a5ff8d62fa417955f resource_label: primary resource_type: code resource_url: https://gist.github.com/lcfr-eth/2566a5cef312c94a5ff8d62fa417955f parent_primary_url: https://gist.github.com/lcfr-eth/2566a5cef312c94a5ff8d62fa417955f source_section_url: https://github.com/xairy/linux-kernel-exploitation#exploits source_item: https://gist.github.com/lcfr-eth/2566a5cef312c94a5ff8d62fa417955f cves: none android_impact_status: unknown android_impact_reason: linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https unknown linux kernel vulnerability/exploit entry; android production impact needs kernel-version and vendor-backport review. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "90e4a6093068074b",
      "item_id": "84a9cc6d5a605045",
      "slug": "undated-tools-fuzzers-google-syzkaller-primary-eee87c31",
      "year": null,
      "title": "google/syzkaller",
      "item_title": "google/syzkaller",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/google/syzkaller",
      "primary_url": "https://github.com/google/syzkaller",
      "parent_primary_url": "https://github.com/google/syzkaller",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-google-syzkaller-primary-eee87c31.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# google/syzkaller record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: google/syzkaller resource_label: primary resource_type: code resource_url: https://github.com/google/syzkaller parent_primary_url: https://github.com/google/syzkaller source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/google/syzkaller cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/google/syzkaller context_links: - [code] primary: https://github.com/google/syzkaller fetch_status: skipped fetch_note: original URL is preserved; public",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/google/syzkaller"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/google/syzkaller"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/syzkaller"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Fuzzer"
      ],
      "affected_area": "",
      "exploit_stage": "Tool",
      "summary_en": "A fuzzing tool called syzkaller for testing Linux kernel vulnerabilities.",
      "summary_zh": "一个名为syzkaller的模糊测试工具，用于测试Linux内核漏洞。",
      "source_markdown": "https://github.com/google/syzkaller",
      "search_text": "google/syzkaller google/syzkaller    tools fuzzers tool: fuzzers primary code https://github.com/google/syzkaller fuzzer  tool a fuzzing tool called syzkaller for testing linux kernel vulnerabilities. 一个名为syzkaller的模糊测试工具，用于测试linux内核漏洞。 # google/syzkaller record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: google/syzkaller resource_label: primary resource_type: code resource_url: https://github.com/google/syzkaller parent_primary_url: https://github.com/google/syzkaller source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/google/syzkaller cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/google/syzkaller context_links: - [code] primary: https://github.com/google/syzkaller fetch_status: skipped fetch_note: original url is preserved; public no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6aac950f7b3580c7",
      "item_id": "64bebfdfd4b65013",
      "slug": "undated-tools-fuzzers-kernelslacker-trinity-primary-3f1bc027",
      "year": null,
      "title": "kernelslacker/trinity",
      "item_title": "kernelslacker/trinity",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/kernelslacker/trinity",
      "primary_url": "https://github.com/kernelslacker/trinity",
      "parent_primary_url": "https://github.com/kernelslacker/trinity",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-kernelslacker-trinity-primary-3f1bc027.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# kernelslacker/trinity record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: kernelslacker/trinity resource_label: primary resource_type: code resource_url: https://github.com/kernelslacker/trinity parent_primary_url: https://github.com/kernelslacker/trinity source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/kernelslacker/trinity cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/kernelslacker/trinity context_links: - [code] primary: https://github.com/kernelslacker/trinity fetch_status: skipped fetch_note",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/kernelslacker/trinity"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/kernelslacker/trinity"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/kernelslacker/trinity"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Fuzzer"
      ],
      "affected_area": "",
      "exploit_stage": "Tool",
      "summary_en": "A fuzzing tool named trinity for kernel testing.",
      "summary_zh": "一个名为trinity的内核测试模糊工具。",
      "source_markdown": "https://github.com/kernelslacker/trinity",
      "search_text": "kernelslacker/trinity kernelslacker/trinity    tools fuzzers tool: fuzzers primary code https://github.com/kernelslacker/trinity fuzzer  tool a fuzzing tool named trinity for kernel testing. 一个名为trinity的内核测试模糊工具。 # kernelslacker/trinity record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: kernelslacker/trinity resource_label: primary resource_type: code resource_url: https://github.com/kernelslacker/trinity parent_primary_url: https://github.com/kernelslacker/trinity source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/kernelslacker/trinity cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/kernelslacker/trinity context_links: - [code] primary: https://github.com/kernelslacker/trinity fetch_status: skipped fetch_note no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "adabbd33c9a31f50",
      "item_id": "032c705f375d2372",
      "slug": "undated-tools-fuzzers-fuzzer-primary-1fd14878",
      "year": null,
      "title": "fuzzer",
      "item_title": "fuzzer",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "tool",
      "resource_url": "http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/",
      "primary_url": "http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/",
      "parent_primary_url": "http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-fuzzer-primary-1fd14878.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# fuzzer record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: fuzzer resource_label: primary resource_type: tool resource_url: http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/ parent_primary_url: http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/ cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/ context_links: - [tool] primary: http://web.",
      "link_types": [
        "tool"
      ],
      "links": [
        {
          "label": "primary",
          "type": "tool",
          "url": "http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "tool",
            "url": "http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Fuzzer"
      ],
      "affected_area": "",
      "exploit_stage": "Tool",
      "summary_en": "A fuzzer tool for performance events in the Linux kernel.",
      "summary_zh": "一个用于Linux内核性能事件的模糊测试工具。",
      "source_markdown": "http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/",
      "search_text": "fuzzer fuzzer    tools fuzzers tool: fuzzers primary tool http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/ fuzzer  tool a fuzzer tool for performance events in the linux kernel. 一个用于linux内核性能事件的模糊测试工具。 # fuzzer record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: fuzzer resource_label: primary resource_type: tool resource_url: http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/ parent_primary_url: http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/ cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: http://web.eece.maine.edu/~vweaver/projects/perf_events/fuzzer/ context_links: - [tool] primary: http://web. no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "26ed8e9d44315356",
      "item_id": "2da754b1f0a50348",
      "slug": "undated-tools-fuzzers-nccgroup-triforcelinuxsyscallfuzzer-primary-48b61aaf",
      "year": null,
      "title": "nccgroup/TriforceLinuxSyscallFuzzer",
      "item_title": "nccgroup/TriforceLinuxSyscallFuzzer",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/nccgroup/TriforceLinuxSyscallFuzzer",
      "primary_url": "https://github.com/nccgroup/TriforceLinuxSyscallFuzzer",
      "parent_primary_url": "https://github.com/nccgroup/TriforceLinuxSyscallFuzzer",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-nccgroup-triforcelinuxsyscallfuzzer-primary-48b61aaf.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# nccgroup/TriforceLinuxSyscallFuzzer record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: nccgroup/TriforceLinuxSyscallFuzzer resource_label: primary resource_type: code resource_url: https://github.com/nccgroup/TriforceLinuxSyscallFuzzer parent_primary_url: https://github.com/nccgroup/TriforceLinuxSyscallFuzzer source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/nccgroup/TriforceLinuxSyscallFuzzer cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/nccgroup/TriforceLinuxSyscallFuzzer context_links: - [code",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/nccgroup/TriforceLinuxSyscallFuzzer"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/nccgroup/TriforceLinuxSyscallFuzzer"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/nccgroup/TriforceLinuxSyscallFuzzer"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "TriforceLinuxSyscallFuzzer is a tool for fuzzing Linux system calls.",
      "summary_zh": "TriforceLinuxSyscallFuzzer是一个用于模糊测试Linux系统调用的工具。",
      "source_markdown": "https://github.com/nccgroup/TriforceLinuxSyscallFuzzer",
      "search_text": "nccgroup/triforcelinuxsyscallfuzzer nccgroup/triforcelinuxsyscallfuzzer    tools fuzzers tool: fuzzers primary code https://github.com/nccgroup/triforcelinuxsyscallfuzzer fuzzing  tooling triforcelinuxsyscallfuzzer is a tool for fuzzing linux system calls. triforcelinuxsyscallfuzzer是一个用于模糊测试linux系统调用的工具。 # nccgroup/triforcelinuxsyscallfuzzer record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: nccgroup/triforcelinuxsyscallfuzzer resource_label: primary resource_type: code resource_url: https://github.com/nccgroup/triforcelinuxsyscallfuzzer parent_primary_url: https://github.com/nccgroup/triforcelinuxsyscallfuzzer source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/nccgroup/triforcelinuxsyscallfuzzer cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/nccgroup/triforcelinuxsyscallfuzzer context_links: - [code no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "fc7277bd6fe331e3",
      "item_id": "ba1f290b4fbe9cae",
      "slug": "undated-tools-fuzzers-oracle-kernel-fuzzing-primary-435e618a",
      "year": null,
      "title": "oracle/kernel-fuzzing",
      "item_title": "oracle/kernel-fuzzing",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/oracle/kernel-fuzzing",
      "primary_url": "https://github.com/oracle/kernel-fuzzing",
      "parent_primary_url": "https://github.com/oracle/kernel-fuzzing",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-oracle-kernel-fuzzing-primary-435e618a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# oracle/kernel-fuzzing record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: oracle/kernel-fuzzing resource_label: primary resource_type: code resource_url: https://github.com/oracle/kernel-fuzzing parent_primary_url: https://github.com/oracle/kernel-fuzzing source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/oracle/kernel-fuzzing cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/oracle/kernel-fuzzing context_links: - [code] primary: https://github.com/oracle/kernel-fuzzing fetch_status: skipped fetch_note",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/oracle/kernel-fuzzing"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/oracle/kernel-fuzzing"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/oracle/kernel-fuzzing"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Oracle's kernel-fuzzing tool aims to discover vulnerabilities in the Linux kernel.",
      "summary_zh": "Oracle的kernel-fuzzing工具旨在发现Linux内核中的漏洞。",
      "source_markdown": "https://github.com/oracle/kernel-fuzzing",
      "search_text": "oracle/kernel-fuzzing oracle/kernel-fuzzing    tools fuzzers tool: fuzzers primary code https://github.com/oracle/kernel-fuzzing fuzzing  tooling oracle's kernel-fuzzing tool aims to discover vulnerabilities in the linux kernel. oracle的kernel-fuzzing工具旨在发现linux内核中的漏洞。 # oracle/kernel-fuzzing record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: oracle/kernel-fuzzing resource_label: primary resource_type: code resource_url: https://github.com/oracle/kernel-fuzzing parent_primary_url: https://github.com/oracle/kernel-fuzzing source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/oracle/kernel-fuzzing cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/oracle/kernel-fuzzing context_links: - [code] primary: https://github.com/oracle/kernel-fuzzing fetch_status: skipped fetch_note no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "854ac7be0d35114e",
      "item_id": "d7f30881d53ae551",
      "slug": "undated-tools-fuzzers-rgbkrk-iknowthis-primary-6bc52ccd",
      "year": null,
      "title": "rgbkrk/iknowthis",
      "item_title": "rgbkrk/iknowthis",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/rgbkrk/iknowthis",
      "primary_url": "https://github.com/rgbkrk/iknowthis",
      "parent_primary_url": "https://github.com/rgbkrk/iknowthis",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-rgbkrk-iknowthis-primary-6bc52ccd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# rgbkrk/iknowthis record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: rgbkrk/iknowthis resource_label: primary resource_type: code resource_url: https://github.com/rgbkrk/iknowthis parent_primary_url: https://github.com/rgbkrk/iknowthis source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/rgbkrk/iknowthis cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/rgbkrk/iknowthis context_links: - [code] primary: https://github.com/rgbkrk/iknowthis fetch_status: skipped fetch_note: original URL is preserved; public",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/rgbkrk/iknowthis"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/rgbkrk/iknowthis"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/rgbkrk/iknowthis"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "iknowthis is a fuzzing tool designed for testing Linux kernel components.",
      "summary_zh": "iknowthis是一个旨在测试Linux内核组件的模糊测试工具。",
      "source_markdown": "https://github.com/rgbkrk/iknowthis",
      "search_text": "rgbkrk/iknowthis rgbkrk/iknowthis    tools fuzzers tool: fuzzers primary code https://github.com/rgbkrk/iknowthis fuzzing  tooling iknowthis is a fuzzing tool designed for testing linux kernel components. iknowthis是一个旨在测试linux内核组件的模糊测试工具。 # rgbkrk/iknowthis record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: rgbkrk/iknowthis resource_label: primary resource_type: code resource_url: https://github.com/rgbkrk/iknowthis parent_primary_url: https://github.com/rgbkrk/iknowthis source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/rgbkrk/iknowthis cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/rgbkrk/iknowthis context_links: - [code] primary: https://github.com/rgbkrk/iknowthis fetch_status: skipped fetch_note: original url is preserved; public no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "650fcc4ccffb37e0",
      "item_id": "bdfd31c86eb0e8c0",
      "slug": "undated-tools-fuzzers-schumilo-vusbf-primary-9de8a5aa",
      "year": null,
      "title": "schumilo/vUSBf",
      "item_title": "schumilo/vUSBf",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/schumilo/vUSBf",
      "primary_url": "https://github.com/schumilo/vUSBf",
      "parent_primary_url": "https://github.com/schumilo/vUSBf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-schumilo-vusbf-primary-9de8a5aa.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# schumilo/vUSBf record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: schumilo/vUSBf resource_label: primary resource_type: code resource_url: https://github.com/schumilo/vUSBf parent_primary_url: https://github.com/schumilo/vUSBf source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/schumilo/vUSBf cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/schumilo/vUSBf context_links: - [code] primary: https://github.com/schumilo/vUSBf fetch_status: skipped fetch_note: original URL is preserved; public dataset store",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/schumilo/vUSBf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/schumilo/vUSBf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/schumilo/vUSBf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "vUSBf is a fuzzing tool focused on USB-related vulnerabilities in the Linux kernel.",
      "summary_zh": "vUSBf是一个专注于Linux内核中USB相关漏洞的模糊测试工具。",
      "source_markdown": "https://github.com/schumilo/vUSBf",
      "search_text": "schumilo/vusbf schumilo/vusbf    tools fuzzers tool: fuzzers primary code https://github.com/schumilo/vusbf fuzzing  tooling vusbf is a fuzzing tool focused on usb-related vulnerabilities in the linux kernel. vusbf是一个专注于linux内核中usb相关漏洞的模糊测试工具。 # schumilo/vusbf record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: schumilo/vusbf resource_label: primary resource_type: code resource_url: https://github.com/schumilo/vusbf parent_primary_url: https://github.com/schumilo/vusbf source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/schumilo/vusbf cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/schumilo/vusbf context_links: - [code] primary: https://github.com/schumilo/vusbf fetch_status: skipped fetch_note: original url is preserved; public dataset store no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "961765cfa72c47de",
      "item_id": "3ef8e16a2bb9c134",
      "slug": "undated-tools-fuzzers-ucsb-seclab-difuze-primary-860c0a67",
      "year": null,
      "title": "ucsb-seclab/difuze",
      "item_title": "ucsb-seclab/difuze",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/ucsb-seclab/difuze",
      "primary_url": "https://github.com/ucsb-seclab/difuze",
      "parent_primary_url": "https://github.com/ucsb-seclab/difuze",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-ucsb-seclab-difuze-primary-860c0a67.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ucsb-seclab/difuze record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: ucsb-seclab/difuze resource_label: primary resource_type: code resource_url: https://github.com/ucsb-seclab/difuze parent_primary_url: https://github.com/ucsb-seclab/difuze source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/ucsb-seclab/difuze cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/ucsb-seclab/difuze context_links: - [code] primary: https://github.com/ucsb-seclab/difuze fetch_status: skipped fetch_note: original URL is pre",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/ucsb-seclab/difuze"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/ucsb-seclab/difuze"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ucsb-seclab/difuze"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Difuze is a fuzzing tool aimed at enhancing the security of Linux kernel drivers.",
      "summary_zh": "Difuze是一个旨在增强Linux内核驱动程序安全性的模糊测试工具。",
      "source_markdown": "https://github.com/ucsb-seclab/difuze",
      "search_text": "ucsb-seclab/difuze ucsb-seclab/difuze    tools fuzzers tool: fuzzers primary code https://github.com/ucsb-seclab/difuze fuzzing  tooling difuze is a fuzzing tool aimed at enhancing the security of linux kernel drivers. difuze是一个旨在增强linux内核驱动程序安全性的模糊测试工具。 # ucsb-seclab/difuze record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: ucsb-seclab/difuze resource_label: primary resource_type: code resource_url: https://github.com/ucsb-seclab/difuze parent_primary_url: https://github.com/ucsb-seclab/difuze source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/ucsb-seclab/difuze cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/ucsb-seclab/difuze context_links: - [code] primary: https://github.com/ucsb-seclab/difuze fetch_status: skipped fetch_note: original url is pre no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "febbee0a52a5ee9e",
      "item_id": "f8d276eab220226a",
      "slug": "undated-tools-fuzzers-compsec-snu-razzer-primary-7b598884",
      "year": null,
      "title": "compsec-snu/razzer",
      "item_title": "compsec-snu/razzer",
      "authors": [],
      "cves": [],
      "tags": [
        "race-condition"
      ],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/compsec-snu/razzer",
      "primary_url": "https://github.com/compsec-snu/razzer",
      "parent_primary_url": "https://github.com/compsec-snu/razzer",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-compsec-snu-razzer-primary-7b598884.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# compsec-snu/razzer record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: compsec-snu/razzer resource_label: primary resource_type: code resource_url: https://github.com/compsec-snu/razzer parent_primary_url: https://github.com/compsec-snu/razzer source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/compsec-snu/razzer [race-condition] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/compsec-snu/razzer context_links: - [code] primary: https://github.com/compsec-snu/razzer fetch_status: skipped fetch_note: or",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/compsec-snu/razzer"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/compsec-snu/razzer"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/compsec-snu/razzer"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "race-condition"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Razzer is a fuzzing tool that targets race conditions in the Linux kernel.",
      "summary_zh": "Razzer是一个针对Linux内核中的竞争条件的模糊测试工具。",
      "source_markdown": "https://github.com/compsec-snu/razzer [race-condition]",
      "search_text": "compsec-snu/razzer compsec-snu/razzer   race-condition tools fuzzers tool: fuzzers primary code https://github.com/compsec-snu/razzer fuzzing race-condition  tooling razzer is a fuzzing tool that targets race conditions in the linux kernel. razzer是一个针对linux内核中的竞争条件的模糊测试工具。 # compsec-snu/razzer record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: compsec-snu/razzer resource_label: primary resource_type: code resource_url: https://github.com/compsec-snu/razzer parent_primary_url: https://github.com/compsec-snu/razzer source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/compsec-snu/razzer [race-condition] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/compsec-snu/razzer context_links: - [code] primary: https://github.com/compsec-snu/razzer fetch_status: skipped fetch_note: or no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "88bbeba900267b2e",
      "item_id": "b9930cbb553d1e9d",
      "slug": "undated-tools-fuzzers-fgsect-unicorefuzz-primary-1aa3aa0c",
      "year": null,
      "title": "fgsect/unicorefuzz",
      "item_title": "fgsect/unicorefuzz",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/fgsect/unicorefuzz",
      "primary_url": "https://github.com/fgsect/unicorefuzz",
      "parent_primary_url": "https://github.com/fgsect/unicorefuzz",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-fgsect-unicorefuzz-primary-1aa3aa0c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# fgsect/unicorefuzz record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: fgsect/unicorefuzz resource_label: primary resource_type: code resource_url: https://github.com/fgsect/unicorefuzz parent_primary_url: https://github.com/fgsect/unicorefuzz source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/fgsect/unicorefuzz cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/fgsect/unicorefuzz context_links: - [code] primary: https://github.com/fgsect/unicorefuzz fetch_status: skipped fetch_note: original URL is pre",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/fgsect/unicorefuzz"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/fgsect/unicorefuzz"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/fgsect/unicorefuzz"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "unicorefuzz is a fuzzing tool designed for testing various Linux kernel components.",
      "summary_zh": "unicorefuzz是一个旨在测试各种Linux内核组件的模糊测试工具。",
      "source_markdown": "https://github.com/fgsect/unicorefuzz",
      "search_text": "fgsect/unicorefuzz fgsect/unicorefuzz    tools fuzzers tool: fuzzers primary code https://github.com/fgsect/unicorefuzz fuzzing  tooling unicorefuzz is a fuzzing tool designed for testing various linux kernel components. unicorefuzz是一个旨在测试各种linux内核组件的模糊测试工具。 # fgsect/unicorefuzz record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: fgsect/unicorefuzz resource_label: primary resource_type: code resource_url: https://github.com/fgsect/unicorefuzz parent_primary_url: https://github.com/fgsect/unicorefuzz source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/fgsect/unicorefuzz cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/fgsect/unicorefuzz context_links: - [code] primary: https://github.com/fgsect/unicorefuzz fetch_status: skipped fetch_note: original url is pre no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "c4a559b61818cdbc",
      "item_id": "60b93915f7847808",
      "slug": "undated-tools-fuzzers-sunhao-0-healer-primary-c44437de",
      "year": null,
      "title": "SunHao-0/healer",
      "item_title": "SunHao-0/healer",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/SunHao-0/healer",
      "primary_url": "https://github.com/SunHao-0/healer",
      "parent_primary_url": "https://github.com/SunHao-0/healer",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-sunhao-0-healer-primary-c44437de.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SunHao-0/healer record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: SunHao-0/healer resource_label: primary resource_type: code resource_url: https://github.com/SunHao-0/healer parent_primary_url: https://github.com/SunHao-0/healer source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/SunHao-0/healer cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/SunHao-0/healer context_links: - [code] primary: https://github.com/SunHao-0/healer fetch_status: skipped fetch_note: original URL is preserved; public datase",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/SunHao-0/healer"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/SunHao-0/healer"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/SunHao-0/healer"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Healer is a fuzzing tool that focuses on improving the robustness of Linux kernel components.",
      "summary_zh": "Healer是一个专注于提高Linux内核组件健壮性的模糊测试工具。",
      "source_markdown": "https://github.com/SunHao-0/healer",
      "search_text": "sunhao-0/healer sunhao-0/healer    tools fuzzers tool: fuzzers primary code https://github.com/sunhao-0/healer fuzzing  tooling healer is a fuzzing tool that focuses on improving the robustness of linux kernel components. healer是一个专注于提高linux内核组件健壮性的模糊测试工具。 # sunhao-0/healer record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: sunhao-0/healer resource_label: primary resource_type: code resource_url: https://github.com/sunhao-0/healer parent_primary_url: https://github.com/sunhao-0/healer source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/sunhao-0/healer cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/sunhao-0/healer context_links: - [code] primary: https://github.com/sunhao-0/healer fetch_status: skipped fetch_note: original url is preserved; public datase no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "302e58bba579d9e2",
      "item_id": "0d5413d6cb193ae3",
      "slug": "undated-tools-fuzzers-atrosinenko-kbdysch-primary-80a1ecbc",
      "year": null,
      "title": "atrosinenko/kbdysch",
      "item_title": "atrosinenko/kbdysch",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/atrosinenko/kbdysch",
      "primary_url": "https://github.com/atrosinenko/kbdysch",
      "parent_primary_url": "https://github.com/atrosinenko/kbdysch",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-atrosinenko-kbdysch-primary-80a1ecbc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# atrosinenko/kbdysch record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: atrosinenko/kbdysch resource_label: primary resource_type: code resource_url: https://github.com/atrosinenko/kbdysch parent_primary_url: https://github.com/atrosinenko/kbdysch source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/atrosinenko/kbdysch cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/atrosinenko/kbdysch context_links: - [code] primary: https://github.com/atrosinenko/kbdysch fetch_status: skipped fetch_note: original URL",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/atrosinenko/kbdysch"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/atrosinenko/kbdysch"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/atrosinenko/kbdysch"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "kbdysch is a fuzzing tool for keyboard-related components in the Linux kernel.",
      "summary_zh": "kbdysch是一个针对Linux内核中与键盘相关组件的模糊测试工具。",
      "source_markdown": "https://github.com/atrosinenko/kbdysch",
      "search_text": "atrosinenko/kbdysch atrosinenko/kbdysch    tools fuzzers tool: fuzzers primary code https://github.com/atrosinenko/kbdysch fuzzing  tooling kbdysch is a fuzzing tool for keyboard-related components in the linux kernel. kbdysch是一个针对linux内核中与键盘相关组件的模糊测试工具。 # atrosinenko/kbdysch record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: atrosinenko/kbdysch resource_label: primary resource_type: code resource_url: https://github.com/atrosinenko/kbdysch parent_primary_url: https://github.com/atrosinenko/kbdysch source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/atrosinenko/kbdysch cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/atrosinenko/kbdysch context_links: - [code] primary: https://github.com/atrosinenko/kbdysch fetch_status: skipped fetch_note: original url no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3f0d589e266a8dc8",
      "item_id": "f9e2acb73367b2e2",
      "slug": "undated-tools-fuzzers-intel-kernel-fuzzer-for-xen-project-primary-168603a2",
      "year": null,
      "title": "intel/kernel-fuzzer-for-xen-project",
      "item_title": "intel/kernel-fuzzer-for-xen-project",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/intel/kernel-fuzzer-for-xen-project",
      "primary_url": "https://github.com/intel/kernel-fuzzer-for-xen-project",
      "parent_primary_url": "https://github.com/intel/kernel-fuzzer-for-xen-project",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-intel-kernel-fuzzer-for-xen-project-primary-168603a2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# intel/kernel-fuzzer-for-xen-project record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: intel/kernel-fuzzer-for-xen-project resource_label: primary resource_type: code resource_url: https://github.com/intel/kernel-fuzzer-for-xen-project parent_primary_url: https://github.com/intel/kernel-fuzzer-for-xen-project source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/intel/kernel-fuzzer-for-xen-project cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/intel/kernel-fuzzer-for-xen-project context_links: - [code",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/intel/kernel-fuzzer-for-xen-project"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/intel/kernel-fuzzer-for-xen-project"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/intel/kernel-fuzzer-for-xen-project"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Intel's kernel-fuzzer-for-xen-project is designed to discover vulnerabilities in Xen-related Linux kernel components.",
      "summary_zh": "Intel的kernel-fuzzer-for-xen-project旨在发现与Xen相关的Linux内核组件中的漏洞。",
      "source_markdown": "https://github.com/intel/kernel-fuzzer-for-xen-project",
      "search_text": "intel/kernel-fuzzer-for-xen-project intel/kernel-fuzzer-for-xen-project    tools fuzzers tool: fuzzers primary code https://github.com/intel/kernel-fuzzer-for-xen-project fuzzing  tooling intel's kernel-fuzzer-for-xen-project is designed to discover vulnerabilities in xen-related linux kernel components. intel的kernel-fuzzer-for-xen-project旨在发现与xen相关的linux内核组件中的漏洞。 # intel/kernel-fuzzer-for-xen-project record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: intel/kernel-fuzzer-for-xen-project resource_label: primary resource_type: code resource_url: https://github.com/intel/kernel-fuzzer-for-xen-project parent_primary_url: https://github.com/intel/kernel-fuzzer-for-xen-project source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/intel/kernel-fuzzer-for-xen-project cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/intel/kernel-fuzzer-for-xen-project context_links: - [code no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b7a477cf57e9b99b",
      "item_id": "82f8a6d840bdb5da",
      "slug": "undated-tools-fuzzers-intellabs-kafl-primary-a7740d0b",
      "year": null,
      "title": "IntelLabs/kAFL",
      "item_title": "IntelLabs/kAFL",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/IntelLabs/kAFL/",
      "primary_url": "https://github.com/IntelLabs/kAFL/",
      "parent_primary_url": "https://github.com/IntelLabs/kAFL/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-intellabs-kafl-primary-a7740d0b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# IntelLabs/kAFL record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: IntelLabs/kAFL resource_label: primary resource_type: code resource_url: https://github.com/IntelLabs/kAFL/ parent_primary_url: https://github.com/IntelLabs/kAFL/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/IntelLabs/kAFL/ cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/IntelLabs/kAFL/ context_links: - [code] primary: https://github.com/IntelLabs/kAFL/ fetch_status: skipped fetch_note: original URL is preserved; public dataset ",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/IntelLabs/kAFL/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/IntelLabs/kAFL/"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/IntelLabs/kAFL/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "kAFL is a fuzzing tool developed by Intel Labs for kernel security testing.",
      "summary_zh": "kAFL是Intel Labs开发的用于内核安全测试的模糊测试工具。",
      "source_markdown": "https://github.com/IntelLabs/kAFL/",
      "search_text": "intellabs/kafl intellabs/kafl    tools fuzzers tool: fuzzers primary code https://github.com/intellabs/kafl/ fuzzing  tooling kafl is a fuzzing tool developed by intel labs for kernel security testing. kafl是intel labs开发的用于内核安全测试的模糊测试工具。 # intellabs/kafl record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: intellabs/kafl resource_label: primary resource_type: code resource_url: https://github.com/intellabs/kafl/ parent_primary_url: https://github.com/intellabs/kafl/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/intellabs/kafl/ cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/intellabs/kafl/ context_links: - [code] primary: https://github.com/intellabs/kafl/ fetch_status: skipped fetch_note: original url is preserved; public dataset  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ffac562ffc0309fe",
      "item_id": "94da427002a9448a",
      "slug": "undated-tools-fuzzers-snorez-ebpf-fuzzer-primary-b5913e99",
      "year": null,
      "title": "snorez/ebpf-fuzzer",
      "item_title": "snorez/ebpf-fuzzer",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/snorez/ebpf-fuzzer",
      "primary_url": "https://github.com/snorez/ebpf-fuzzer",
      "parent_primary_url": "https://github.com/snorez/ebpf-fuzzer",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-snorez-ebpf-fuzzer-primary-b5913e99.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# snorez/ebpf-fuzzer record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: snorez/ebpf-fuzzer resource_label: primary resource_type: code resource_url: https://github.com/snorez/ebpf-fuzzer parent_primary_url: https://github.com/snorez/ebpf-fuzzer source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/snorez/ebpf-fuzzer cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/snorez/ebpf-fuzzer context_links: - [code] primary: https://github.com/snorez/ebpf-fuzzer fetch_status: skipped fetch_note: original URL is pre",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/snorez/ebpf-fuzzer"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/snorez/ebpf-fuzzer"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/snorez/ebpf-fuzzer"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "ebpf-fuzzer is a tool for fuzzing eBPF programs in the Linux kernel.",
      "summary_zh": "ebpf-fuzzer是一个用于模糊测试Linux内核中eBPF程序的工具。",
      "source_markdown": "https://github.com/snorez/ebpf-fuzzer",
      "search_text": "snorez/ebpf-fuzzer snorez/ebpf-fuzzer    tools fuzzers tool: fuzzers primary code https://github.com/snorez/ebpf-fuzzer fuzzing  tooling ebpf-fuzzer is a tool for fuzzing ebpf programs in the linux kernel. ebpf-fuzzer是一个用于模糊测试linux内核中ebpf程序的工具。 # snorez/ebpf-fuzzer record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: snorez/ebpf-fuzzer resource_label: primary resource_type: code resource_url: https://github.com/snorez/ebpf-fuzzer parent_primary_url: https://github.com/snorez/ebpf-fuzzer source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/snorez/ebpf-fuzzer cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/snorez/ebpf-fuzzer context_links: - [code] primary: https://github.com/snorez/ebpf-fuzzer fetch_status: skipped fetch_note: original url is pre no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b1529190a0cbf521",
      "item_id": "2b7457cbb9942a98",
      "slug": "undated-tools-fuzzers-smoothhacker-lateregistration-primary-37e97b36",
      "year": null,
      "title": "SmoothHacker/LateRegistration",
      "item_title": "SmoothHacker/LateRegistration",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/SmoothHacker/LateRegistration",
      "primary_url": "https://github.com/SmoothHacker/LateRegistration",
      "parent_primary_url": "https://github.com/SmoothHacker/LateRegistration",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-smoothhacker-lateregistration-primary-37e97b36.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SmoothHacker/LateRegistration record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: SmoothHacker/LateRegistration resource_label: primary resource_type: code resource_url: https://github.com/SmoothHacker/LateRegistration parent_primary_url: https://github.com/SmoothHacker/LateRegistration source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/SmoothHacker/LateRegistration cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/SmoothHacker/LateRegistration context_links: - [code] primary: https://github.com/Smooth",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/SmoothHacker/LateRegistration"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/SmoothHacker/LateRegistration"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/SmoothHacker/LateRegistration"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "LateRegistration is a fuzzing tool aimed at enhancing the security of Linux kernel modules.",
      "summary_zh": "LateRegistration是一个旨在增强Linux内核模块安全性的模糊测试工具。",
      "source_markdown": "https://github.com/SmoothHacker/LateRegistration",
      "search_text": "smoothhacker/lateregistration smoothhacker/lateregistration    tools fuzzers tool: fuzzers primary code https://github.com/smoothhacker/lateregistration fuzzing  tooling lateregistration is a fuzzing tool aimed at enhancing the security of linux kernel modules. lateregistration是一个旨在增强linux内核模块安全性的模糊测试工具。 # smoothhacker/lateregistration record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: smoothhacker/lateregistration resource_label: primary resource_type: code resource_url: https://github.com/smoothhacker/lateregistration parent_primary_url: https://github.com/smoothhacker/lateregistration source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/smoothhacker/lateregistration cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/smoothhacker/lateregistration context_links: - [code] primary: https://github.com/smooth no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6dd4b08297f9ffd9",
      "item_id": "e381c055b6b62874",
      "slug": "undated-tools-fuzzers-sslab-gatech-janus-primary-d9d930ae",
      "year": null,
      "title": "sslab-gatech/janus",
      "item_title": "sslab-gatech/janus",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/sslab-gatech/janus",
      "primary_url": "https://github.com/sslab-gatech/janus",
      "parent_primary_url": "https://github.com/sslab-gatech/janus",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-sslab-gatech-janus-primary-d9d930ae.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# sslab-gatech/janus record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: sslab-gatech/janus resource_label: primary resource_type: code resource_url: https://github.com/sslab-gatech/janus parent_primary_url: https://github.com/sslab-gatech/janus source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/sslab-gatech/janus cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/sslab-gatech/janus context_links: - [code] primary: https://github.com/sslab-gatech/janus fetch_status: skipped fetch_note: original URL is pre",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/sslab-gatech/janus"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/sslab-gatech/janus"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/sslab-gatech/janus"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Janus is a fuzzing tool designed for testing various aspects of the Linux kernel.",
      "summary_zh": "Janus是一个旨在测试Linux内核各个方面的模糊测试工具。",
      "source_markdown": "https://github.com/sslab-gatech/janus",
      "search_text": "sslab-gatech/janus sslab-gatech/janus    tools fuzzers tool: fuzzers primary code https://github.com/sslab-gatech/janus fuzzing  tooling janus is a fuzzing tool designed for testing various aspects of the linux kernel. janus是一个旨在测试linux内核各个方面的模糊测试工具。 # sslab-gatech/janus record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: sslab-gatech/janus resource_label: primary resource_type: code resource_url: https://github.com/sslab-gatech/janus parent_primary_url: https://github.com/sslab-gatech/janus source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/sslab-gatech/janus cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/sslab-gatech/janus context_links: - [code] primary: https://github.com/sslab-gatech/janus fetch_status: skipped fetch_note: original url is pre no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6de66f9dc13e30b8",
      "item_id": "e4a9c13101ca51ee",
      "slug": "undated-tools-fuzzers-google-buzzer-primary-f3003e0a",
      "year": null,
      "title": "google/buzzer",
      "item_title": "google/buzzer",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/google/buzzer",
      "primary_url": "https://github.com/google/buzzer",
      "parent_primary_url": "https://github.com/google/buzzer",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-google-buzzer-primary-f3003e0a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# google/buzzer record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: google/buzzer resource_label: primary resource_type: code resource_url: https://github.com/google/buzzer parent_primary_url: https://github.com/google/buzzer source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/google/buzzer cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/google/buzzer context_links: - [code] primary: https://github.com/google/buzzer fetch_status: skipped fetch_note: original URL is preserved; public dataset stores metad",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/google/buzzer"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/google/buzzer"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/buzzer"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Buzzer is a fuzzing tool that focuses on improving the security of Linux kernel components.",
      "summary_zh": "Buzzer是一个专注于提高Linux内核组件安全性的模糊测试工具。",
      "source_markdown": "https://github.com/google/buzzer",
      "search_text": "google/buzzer google/buzzer    tools fuzzers tool: fuzzers primary code https://github.com/google/buzzer fuzzing  tooling buzzer is a fuzzing tool that focuses on improving the security of linux kernel components. buzzer是一个专注于提高linux内核组件安全性的模糊测试工具。 # google/buzzer record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: google/buzzer resource_label: primary resource_type: code resource_url: https://github.com/google/buzzer parent_primary_url: https://github.com/google/buzzer source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/google/buzzer cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/google/buzzer context_links: - [code] primary: https://github.com/google/buzzer fetch_status: skipped fetch_note: original url is preserved; public dataset stores metad no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "69683213b8f318d9",
      "item_id": "bd16483c6c4d3e36",
      "slug": "undated-tools-fuzzers-h0mbre-lucid-primary-0194b7f3",
      "year": null,
      "title": "h0mbre/Lucid",
      "item_title": "h0mbre/Lucid",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/h0mbre/Lucid",
      "primary_url": "https://github.com/h0mbre/Lucid",
      "parent_primary_url": "https://github.com/h0mbre/Lucid",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-h0mbre-lucid-primary-0194b7f3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# h0mbre/Lucid record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: h0mbre/Lucid resource_label: primary resource_type: code resource_url: https://github.com/h0mbre/Lucid parent_primary_url: https://github.com/h0mbre/Lucid source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/h0mbre/Lucid cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/h0mbre/Lucid context_links: - [code] primary: https://github.com/h0mbre/Lucid fetch_status: skipped fetch_note: original URL is preserved; public dataset stores metadata and",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/h0mbre/Lucid"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/h0mbre/Lucid"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/h0mbre/Lucid"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Lucid is a fuzzing tool aimed at discovering vulnerabilities in the Linux kernel.",
      "summary_zh": "Lucid是一个旨在发现Linux内核中漏洞的模糊测试工具。",
      "source_markdown": "https://github.com/h0mbre/Lucid",
      "search_text": "h0mbre/lucid h0mbre/lucid    tools fuzzers tool: fuzzers primary code https://github.com/h0mbre/lucid fuzzing  tooling lucid is a fuzzing tool aimed at discovering vulnerabilities in the linux kernel. lucid是一个旨在发现linux内核中漏洞的模糊测试工具。 # h0mbre/lucid record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: h0mbre/lucid resource_label: primary resource_type: code resource_url: https://github.com/h0mbre/lucid parent_primary_url: https://github.com/h0mbre/lucid source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/h0mbre/lucid cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/h0mbre/lucid context_links: - [code] primary: https://github.com/h0mbre/lucid fetch_status: skipped fetch_note: original url is preserved; public dataset stores metadata and no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b6c65be4e6e7be05",
      "item_id": "fe3a63d288e6078a",
      "slug": "undated-tools-fuzzers-kernel-fuzzer-lxfuzz-primary-622e49aa",
      "year": null,
      "title": "kernel fuzzer lxfuzz",
      "item_title": "kernel fuzzer lxfuzz",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/",
      "primary_url": "https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/",
      "parent_primary_url": "https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-kernel-fuzzer-lxfuzz-primary-622e49aa.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# kernel fuzzer lxfuzz record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: kernel fuzzer lxfuzz resource_label: primary resource_type: article resource_url: https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/ parent_primary_url: https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/b17fr13nds/lxfuzz [[notes](https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://b17fr13nds.github.io/posts/kernel_fuzzer_l",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/"
        },
        {
          "label": "b17fr13nds/lxfuzz",
          "type": "code",
          "url": "https://github.com/b17fr13nds/lxfuzz"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "b17fr13nds/lxfuzz",
            "type": "code",
            "url": "https://github.com/b17fr13nds/lxfuzz"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/",
        "https://github.com/b17fr13nds/lxfuzz"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "lxfuzz is a kernel fuzzing tool designed to identify vulnerabilities in Linux kernel subsystems.",
      "summary_zh": "lxfuzz是一个旨在识别Linux内核子系统中漏洞的内核模糊测试工具。",
      "source_markdown": "https://github.com/b17fr13nds/lxfuzz [[notes](https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/)]",
      "search_text": "kernel fuzzer lxfuzz kernel fuzzer lxfuzz    tools fuzzers tool: fuzzers primary article https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/ fuzzing  tooling lxfuzz is a kernel fuzzing tool designed to identify vulnerabilities in linux kernel subsystems. lxfuzz是一个旨在识别linux内核子系统中漏洞的内核模糊测试工具。 # kernel fuzzer lxfuzz record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: kernel fuzzer lxfuzz resource_label: primary resource_type: article resource_url: https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/ parent_primary_url: https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/b17fr13nds/lxfuzz [[notes](https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://b17fr13nds.github.io/posts/kernel_fuzzer_l no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "0c6d6db79d40bbae",
      "item_id": "fe3a63d288e6078a",
      "slug": "undated-tools-fuzzers-kernel-fuzzer-lxfuzz-b17fr13nds-lxfuzz-aabe9c5e",
      "year": null,
      "title": "kernel fuzzer lxfuzz · b17fr13nds/lxfuzz",
      "item_title": "kernel fuzzer lxfuzz",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "b17fr13nds/lxfuzz",
      "resource_type": "code",
      "resource_url": "https://github.com/b17fr13nds/lxfuzz",
      "primary_url": "https://github.com/b17fr13nds/lxfuzz",
      "parent_primary_url": "https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-kernel-fuzzer-lxfuzz-b17fr13nds-lxfuzz-aabe9c5e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# kernel fuzzer lxfuzz · b17fr13nds/lxfuzz record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: kernel fuzzer lxfuzz resource_label: b17fr13nds/lxfuzz resource_type: code resource_url: https://github.com/b17fr13nds/lxfuzz parent_primary_url: https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/b17fr13nds/lxfuzz [[notes](https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://b17fr13nds.github.io/posts/kernel_f",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/"
        },
        {
          "label": "b17fr13nds/lxfuzz",
          "type": "code",
          "url": "https://github.com/b17fr13nds/lxfuzz"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "b17fr13nds/lxfuzz",
            "type": "code",
            "url": "https://github.com/b17fr13nds/lxfuzz"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/",
        "https://github.com/b17fr13nds/lxfuzz"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "lxfuzz is a kernel fuzzing tool that aims to enhance the security of Linux kernel components.",
      "summary_zh": "lxfuzz是一个旨在增强Linux内核组件安全性的内核模糊测试工具。",
      "source_markdown": "https://github.com/b17fr13nds/lxfuzz [[notes](https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/)]",
      "search_text": "kernel fuzzer lxfuzz · b17fr13nds/lxfuzz kernel fuzzer lxfuzz    tools fuzzers tool: fuzzers b17fr13nds/lxfuzz code https://github.com/b17fr13nds/lxfuzz fuzzing  tooling lxfuzz is a kernel fuzzing tool that aims to enhance the security of linux kernel components. lxfuzz是一个旨在增强linux内核组件安全性的内核模糊测试工具。 # kernel fuzzer lxfuzz · b17fr13nds/lxfuzz record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: kernel fuzzer lxfuzz resource_label: b17fr13nds/lxfuzz resource_type: code resource_url: https://github.com/b17fr13nds/lxfuzz parent_primary_url: https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/b17fr13nds/lxfuzz [[notes](https://b17fr13nds.github.io/posts/kernel_fuzzer_lxfuzz/)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://b17fr13nds.github.io/posts/kernel_f no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b5c159e227bcaf0e",
      "item_id": "e15dc6f9f31371fb",
      "slug": "undated-tools-fuzzers-worthdoingbadly-hid-parser-harness-primary-046e342f",
      "year": null,
      "title": "worthdoingbadly/hid-parser-harness",
      "item_title": "worthdoingbadly/hid-parser-harness",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/worthdoingbadly/hid-parser-harness",
      "primary_url": "https://github.com/worthdoingbadly/hid-parser-harness",
      "parent_primary_url": "https://github.com/worthdoingbadly/hid-parser-harness",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-worthdoingbadly-hid-parser-harness-primary-046e342f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# worthdoingbadly/hid-parser-harness record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: worthdoingbadly/hid-parser-harness resource_label: primary resource_type: code resource_url: https://github.com/worthdoingbadly/hid-parser-harness parent_primary_url: https://github.com/worthdoingbadly/hid-parser-harness source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/worthdoingbadly/hid-parser-harness cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/worthdoingbadly/hid-parser-harness context_links: - [code] prim",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/worthdoingbadly/hid-parser-harness"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/worthdoingbadly/hid-parser-harness"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/worthdoingbadly/hid-parser-harness"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "hid-parser-harness is a fuzzing tool for testing HID-related components in the Linux kernel.",
      "summary_zh": "hid-parser-harness是一个用于测试Linux内核中HID相关组件的模糊测试工具。",
      "source_markdown": "https://github.com/worthdoingbadly/hid-parser-harness",
      "search_text": "worthdoingbadly/hid-parser-harness worthdoingbadly/hid-parser-harness    tools fuzzers tool: fuzzers primary code https://github.com/worthdoingbadly/hid-parser-harness fuzzing  tooling hid-parser-harness is a fuzzing tool for testing hid-related components in the linux kernel. hid-parser-harness是一个用于测试linux内核中hid相关组件的模糊测试工具。 # worthdoingbadly/hid-parser-harness record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: worthdoingbadly/hid-parser-harness resource_label: primary resource_type: code resource_url: https://github.com/worthdoingbadly/hid-parser-harness parent_primary_url: https://github.com/worthdoingbadly/hid-parser-harness source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/worthdoingbadly/hid-parser-harness cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/worthdoingbadly/hid-parser-harness context_links: - [code] prim no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "fdd80f19c49025e8",
      "item_id": "1f7eec7d2c29134d",
      "slug": "undated-tools-fuzzers-lkl-linux-primary-e01631c1",
      "year": null,
      "title": "lkl/linux",
      "item_title": "lkl/linux",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/lkl/linux/pull/564",
      "primary_url": "https://github.com/lkl/linux/pull/564",
      "parent_primary_url": "https://github.com/lkl/linux/pull/564",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/undated-tools-fuzzers-lkl-linux-primary-e01631c1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# lkl/linux record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: lkl/linux resource_label: primary resource_type: code resource_url: https://github.com/lkl/linux/pull/564 parent_primary_url: https://github.com/lkl/linux/pull/564 source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/lkl/linux/pull/564 cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/lkl/linux/pull/564 context_links: - [code] primary: https://github.com/lkl/linux/pull/564 fetch_status: skipped fetch_note: original URL is preserved; public dat",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/lkl/linux/pull/564"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/lkl/linux/pull/564"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/lkl/linux/pull/564"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "linux is a repository containing various fuzzing tools for Linux kernel testing.",
      "summary_zh": "linux是一个包含各种Linux内核测试模糊测试工具的代码库。",
      "source_markdown": "https://github.com/lkl/linux/pull/564",
      "search_text": "lkl/linux lkl/linux    tools fuzzers tool: fuzzers primary code https://github.com/lkl/linux/pull/564 fuzzing  tooling linux is a repository containing various fuzzing tools for linux kernel testing. linux是一个包含各种linux内核测试模糊测试工具的代码库。 # lkl/linux record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: lkl/linux resource_label: primary resource_type: code resource_url: https://github.com/lkl/linux/pull/564 parent_primary_url: https://github.com/lkl/linux/pull/564 source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/lkl/linux/pull/564 cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/lkl/linux/pull/564 context_links: - [code] primary: https://github.com/lkl/linux/pull/564 fetch_status: skipped fetch_note: original url is preserved; public dat no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "d44cbd0bf7d6c2f6",
      "item_id": "5822a92b230854bc",
      "slug": "2025-tools-fuzzers-slow-syzkalls-locator-primary-5d0ea421",
      "year": 2025,
      "title": "Slow Syzkalls Locator",
      "item_title": "Slow Syzkalls Locator",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://n132.github.io/2025/12/20/Slow-Syzkalls-Locator.html",
      "primary_url": "https://n132.github.io/2025/12/20/Slow-Syzkalls-Locator.html",
      "parent_primary_url": "https://n132.github.io/2025/12/20/Slow-Syzkalls-Locator.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/2025-tools-fuzzers-slow-syzkalls-locator-primary-5d0ea421.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Slow Syzkalls Locator record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: Slow Syzkalls Locator resource_label: primary resource_type: article resource_url: https://n132.github.io/2025/12/20/Slow-Syzkalls-Locator.html parent_primary_url: https://n132.github.io/2025/12/20/Slow-Syzkalls-Locator.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/n132/slow-syzkall-locator [[article](https://n132.github.io/2025/12/20/Slow-Syzkalls-Locator.html)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://n132.github.io/202",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://n132.github.io/2025/12/20/Slow-Syzkalls-Locator.html"
        },
        {
          "label": "n132/slow-syzkall-locator",
          "type": "code",
          "url": "https://github.com/n132/slow-syzkall-locator"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://n132.github.io/2025/12/20/Slow-Syzkalls-Locator.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "n132/slow-syzkall-locator",
            "type": "code",
            "url": "https://github.com/n132/slow-syzkall-locator"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://n132.github.io/2025/12/20/Slow-Syzkalls-Locator.html",
        "https://github.com/n132/slow-syzkall-locator"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "testing",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Slow Syzkalls Locator is a tool designed to enhance the efficiency of fuzz testing in the Linux kernel.",
      "summary_zh": "Slow Syzkalls Locator 是一个旨在提高 Linux 内核模糊测试效率的工具。",
      "source_markdown": "https://github.com/n132/slow-syzkall-locator [[article](https://n132.github.io/2025/12/20/Slow-Syzkalls-Locator.html)]",
      "search_text": "slow syzkalls locator slow syzkalls locator    tools fuzzers tool: fuzzers primary article https://n132.github.io/2025/12/20/slow-syzkalls-locator.html fuzzing testing tool  defensive research slow syzkalls locator is a tool designed to enhance the efficiency of fuzz testing in the linux kernel. slow syzkalls locator 是一个旨在提高 linux 内核模糊测试效率的工具。 # slow syzkalls locator record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: slow syzkalls locator resource_label: primary resource_type: article resource_url: https://n132.github.io/2025/12/20/slow-syzkalls-locator.html parent_primary_url: https://n132.github.io/2025/12/20/slow-syzkalls-locator.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/n132/slow-syzkall-locator [[article](https://n132.github.io/2025/12/20/slow-syzkalls-locator.html)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://n132.github.io/202 no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "e5e2fa3bb859b1e9",
      "item_id": "5822a92b230854bc",
      "slug": "2025-tools-fuzzers-slow-syzkalls-locator-n132-slow-syzkall-locator-ec26a1cc",
      "year": 2025,
      "title": "Slow Syzkalls Locator · n132/slow-syzkall-locator",
      "item_title": "Slow Syzkalls Locator",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Fuzzers",
      "section_path": "Tools / Fuzzers",
      "category": "Tool: Fuzzers",
      "vulnerability_class": "",
      "resource_label": "n132/slow-syzkall-locator",
      "resource_type": "code",
      "resource_url": "https://github.com/n132/slow-syzkall-locator",
      "primary_url": "https://github.com/n132/slow-syzkall-locator",
      "parent_primary_url": "https://n132.github.io/2025/12/20/Slow-Syzkalls-Locator.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#fuzzers",
      "raw_path": "/raw/2025-tools-fuzzers-slow-syzkalls-locator-n132-slow-syzkall-locator-ec26a1cc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Slow Syzkalls Locator · n132/slow-syzkall-locator record_kind: linux-kernel-resource-url section: Tools subsection: Fuzzers category: Tool: Fuzzers item_title: Slow Syzkalls Locator resource_label: n132/slow-syzkall-locator resource_type: code resource_url: https://github.com/n132/slow-syzkall-locator parent_primary_url: https://n132.github.io/2025/12/20/Slow-Syzkalls-Locator.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/n132/slow-syzkall-locator [[article](https://n132.github.io/2025/12/20/Slow-Syzkalls-Locator.html)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls:",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://n132.github.io/2025/12/20/Slow-Syzkalls-Locator.html"
        },
        {
          "label": "n132/slow-syzkall-locator",
          "type": "code",
          "url": "https://github.com/n132/slow-syzkall-locator"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://n132.github.io/2025/12/20/Slow-Syzkalls-Locator.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "n132/slow-syzkall-locator",
            "type": "code",
            "url": "https://github.com/n132/slow-syzkall-locator"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://n132.github.io/2025/12/20/Slow-Syzkalls-Locator.html",
        "https://github.com/n132/slow-syzkall-locator"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "testing",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Slow Syzkalls Locator is a tool designed to enhance the efficiency of fuzz testing in the Linux kernel.",
      "summary_zh": "Slow Syzkalls Locator 是一个旨在提高 Linux 内核模糊测试效率的工具。",
      "source_markdown": "https://github.com/n132/slow-syzkall-locator [[article](https://n132.github.io/2025/12/20/Slow-Syzkalls-Locator.html)]",
      "search_text": "slow syzkalls locator · n132/slow-syzkall-locator slow syzkalls locator    tools fuzzers tool: fuzzers n132/slow-syzkall-locator code https://github.com/n132/slow-syzkall-locator fuzzing testing tool  defensive research slow syzkalls locator is a tool designed to enhance the efficiency of fuzz testing in the linux kernel. slow syzkalls locator 是一个旨在提高 linux 内核模糊测试效率的工具。 # slow syzkalls locator · n132/slow-syzkall-locator record_kind: linux-kernel-resource-url section: tools subsection: fuzzers category: tool: fuzzers item_title: slow syzkalls locator resource_label: n132/slow-syzkall-locator resource_type: code resource_url: https://github.com/n132/slow-syzkall-locator parent_primary_url: https://n132.github.io/2025/12/20/slow-syzkalls-locator.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#fuzzers source_item: https://github.com/n132/slow-syzkall-locator [[article](https://n132.github.io/2025/12/20/slow-syzkalls-locator.html)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "385ec55b77b0622b",
      "item_id": "f851dc257e405ca0",
      "slug": "undated-tools-assorted-jonoberheide-ksymhunter-primary-589fb6c3",
      "year": null,
      "title": "jonoberheide/ksymhunter",
      "item_title": "jonoberheide/ksymhunter",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/jonoberheide/ksymhunter",
      "primary_url": "https://github.com/jonoberheide/ksymhunter",
      "parent_primary_url": "https://github.com/jonoberheide/ksymhunter",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-jonoberheide-ksymhunter-primary-589fb6c3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# jonoberheide/ksymhunter record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: jonoberheide/ksymhunter resource_label: primary resource_type: code resource_url: https://github.com/jonoberheide/ksymhunter parent_primary_url: https://github.com/jonoberheide/ksymhunter source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/jonoberheide/ksymhunter cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/jonoberheide/ksymhunter context_links: - [code] primary: https://github.com/jonoberheide/ksymhunter fetch_status: s",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/jonoberheide/ksymhunter"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/jonoberheide/ksymhunter"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/jonoberheide/ksymhunter"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Ksymhunter is a tool for identifying kernel symbols and their vulnerabilities.",
      "summary_zh": "Ksymhunter 是一个用于识别内核符号及其漏洞的工具。",
      "source_markdown": "https://github.com/jonoberheide/ksymhunter",
      "search_text": "jonoberheide/ksymhunter jonoberheide/ksymhunter    tools assorted tool: assorted primary code https://github.com/jonoberheide/ksymhunter vulnerability tool  defensive research ksymhunter is a tool for identifying kernel symbols and their vulnerabilities. ksymhunter 是一个用于识别内核符号及其漏洞的工具。 # jonoberheide/ksymhunter record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: jonoberheide/ksymhunter resource_label: primary resource_type: code resource_url: https://github.com/jonoberheide/ksymhunter parent_primary_url: https://github.com/jonoberheide/ksymhunter source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/jonoberheide/ksymhunter cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/jonoberheide/ksymhunter context_links: - [code] primary: https://github.com/jonoberheide/ksymhunter fetch_status: s no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3a77a9730f29b071",
      "item_id": "782cb6586cdd0058",
      "slug": "undated-tools-assorted-jonoberheide-kstructhunter-primary-4c49b494",
      "year": null,
      "title": "jonoberheide/kstructhunter",
      "item_title": "jonoberheide/kstructhunter",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/jonoberheide/kstructhunter",
      "primary_url": "https://github.com/jonoberheide/kstructhunter",
      "parent_primary_url": "https://github.com/jonoberheide/kstructhunter",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-jonoberheide-kstructhunter-primary-4c49b494.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# jonoberheide/kstructhunter record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: jonoberheide/kstructhunter resource_label: primary resource_type: code resource_url: https://github.com/jonoberheide/kstructhunter parent_primary_url: https://github.com/jonoberheide/kstructhunter source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/jonoberheide/kstructhunter cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/jonoberheide/kstructhunter context_links: - [code] primary: https://github.com/jonoberheide/kstructh",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/jonoberheide/kstructhunter"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/jonoberheide/kstructhunter"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/jonoberheide/kstructhunter"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Kstructhunter is a tool for analyzing kernel structures for potential vulnerabilities.",
      "summary_zh": "Kstructhunter 是一个用于分析内核结构以发现潜在漏洞的工具。",
      "source_markdown": "https://github.com/jonoberheide/kstructhunter",
      "search_text": "jonoberheide/kstructhunter jonoberheide/kstructhunter    tools assorted tool: assorted primary code https://github.com/jonoberheide/kstructhunter vulnerability tool  defensive research kstructhunter is a tool for analyzing kernel structures for potential vulnerabilities. kstructhunter 是一个用于分析内核结构以发现潜在漏洞的工具。 # jonoberheide/kstructhunter record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: jonoberheide/kstructhunter resource_label: primary resource_type: code resource_url: https://github.com/jonoberheide/kstructhunter parent_primary_url: https://github.com/jonoberheide/kstructhunter source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/jonoberheide/kstructhunter cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/jonoberheide/kstructhunter context_links: - [code] primary: https://github.com/jonoberheide/kstructh no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ad2b6fdd2227ea81",
      "item_id": "a1b466b4275ac59d",
      "slug": "undated-tools-assorted-ngalongc-autolocalprivilegeescalation-primary-4222d5a9",
      "year": null,
      "title": "ngalongc/AutoLocalPrivilegeEscalation",
      "item_title": "ngalongc/AutoLocalPrivilegeEscalation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/ngalongc/AutoLocalPrivilegeEscalation",
      "primary_url": "https://github.com/ngalongc/AutoLocalPrivilegeEscalation",
      "parent_primary_url": "https://github.com/ngalongc/AutoLocalPrivilegeEscalation",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-ngalongc-autolocalprivilegeescalation-primary-4222d5a9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ngalongc/AutoLocalPrivilegeEscalation record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: ngalongc/AutoLocalPrivilegeEscalation resource_label: primary resource_type: code resource_url: https://github.com/ngalongc/AutoLocalPrivilegeEscalation parent_primary_url: https://github.com/ngalongc/AutoLocalPrivilegeEscalation source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/ngalongc/AutoLocalPrivilegeEscalation cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/ngalongc/AutoLocalPrivilegeEscalation context",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/ngalongc/AutoLocalPrivilegeEscalation"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/ngalongc/AutoLocalPrivilegeEscalation"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ngalongc/AutoLocalPrivilegeEscalation"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "privilege escalation",
        "automation",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "AutoLocalPrivilegeEscalation automates the process of finding local privilege escalation vulnerabilities.",
      "summary_zh": "AutoLocalPrivilegeEscalation 自动化查找本地权限提升漏洞的过程。",
      "source_markdown": "https://github.com/ngalongc/AutoLocalPrivilegeEscalation",
      "search_text": "ngalongc/autolocalprivilegeescalation ngalongc/autolocalprivilegeescalation    tools assorted tool: assorted primary code https://github.com/ngalongc/autolocalprivilegeescalation privilege escalation automation tool  defensive research autolocalprivilegeescalation automates the process of finding local privilege escalation vulnerabilities. autolocalprivilegeescalation 自动化查找本地权限提升漏洞的过程。 # ngalongc/autolocalprivilegeescalation record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: ngalongc/autolocalprivilegeescalation resource_label: primary resource_type: code resource_url: https://github.com/ngalongc/autolocalprivilegeescalation parent_primary_url: https://github.com/ngalongc/autolocalprivilegeescalation source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/ngalongc/autolocalprivilegeescalation cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/ngalongc/autolocalprivilegeescalation context no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "360c6e16b114942d",
      "item_id": "b9d5493e2ced8b40",
      "slug": "undated-tools-assorted-penturalabs-linux-exploit-suggester-primary-482bd4a3",
      "year": null,
      "title": "PenturaLabs/Linux_Exploit_Suggester",
      "item_title": "PenturaLabs/Linux_Exploit_Suggester",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/PenturaLabs/Linux_Exploit_Suggester",
      "primary_url": "https://github.com/PenturaLabs/Linux_Exploit_Suggester",
      "parent_primary_url": "https://github.com/PenturaLabs/Linux_Exploit_Suggester",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-penturalabs-linux-exploit-suggester-primary-482bd4a3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PenturaLabs/Linux_Exploit_Suggester record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: PenturaLabs/Linux_Exploit_Suggester resource_label: primary resource_type: exploit resource_url: https://github.com/PenturaLabs/Linux_Exploit_Suggester parent_primary_url: https://github.com/PenturaLabs/Linux_Exploit_Suggester source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/PenturaLabs/Linux_Exploit_Suggester cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/PenturaLabs/Linux_Exploit_Suggester context_links: - [",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/PenturaLabs/Linux_Exploit_Suggester"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/PenturaLabs/Linux_Exploit_Suggester"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/PenturaLabs/Linux_Exploit_Suggester"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit suggestion",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "exploit development",
      "summary_en": "Linux Exploit Suggester provides suggestions for potential local exploits based on kernel version.",
      "summary_zh": "Linux Exploit Suggester 根据内核版本提供潜在本地漏洞的建议。",
      "source_markdown": "https://github.com/PenturaLabs/Linux_Exploit_Suggester",
      "search_text": "penturalabs/linux_exploit_suggester penturalabs/linux_exploit_suggester    tools assorted tool: assorted primary exploit https://github.com/penturalabs/linux_exploit_suggester exploit suggestion tool  exploit development linux exploit suggester provides suggestions for potential local exploits based on kernel version. linux exploit suggester 根据内核版本提供潜在本地漏洞的建议。 # penturalabs/linux_exploit_suggester record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: penturalabs/linux_exploit_suggester resource_label: primary resource_type: exploit resource_url: https://github.com/penturalabs/linux_exploit_suggester parent_primary_url: https://github.com/penturalabs/linux_exploit_suggester source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/penturalabs/linux_exploit_suggester cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/penturalabs/linux_exploit_suggester context_links: - [ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "251315d3ae959131",
      "item_id": "156e6f3dbbb791a0",
      "slug": "undated-tools-assorted-jondonas-linux-exploit-suggester-2-primary-a4c308a2",
      "year": null,
      "title": "jondonas/linux-exploit-suggester-2",
      "item_title": "jondonas/linux-exploit-suggester-2",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/jondonas/linux-exploit-suggester-2",
      "primary_url": "https://github.com/jondonas/linux-exploit-suggester-2",
      "parent_primary_url": "https://github.com/jondonas/linux-exploit-suggester-2",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-jondonas-linux-exploit-suggester-2-primary-a4c308a2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# jondonas/linux-exploit-suggester-2 record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: jondonas/linux-exploit-suggester-2 resource_label: primary resource_type: exploit resource_url: https://github.com/jondonas/linux-exploit-suggester-2 parent_primary_url: https://github.com/jondonas/linux-exploit-suggester-2 source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/jondonas/linux-exploit-suggester-2 cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/jondonas/linux-exploit-suggester-2 context_links: - [exploi",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/jondonas/linux-exploit-suggester-2"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/jondonas/linux-exploit-suggester-2"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/jondonas/linux-exploit-suggester-2"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit suggestion",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "exploit development",
      "summary_en": "Linux Exploit Suggester 2 offers enhanced suggestions for local exploits based on kernel configurations.",
      "summary_zh": "Linux Exploit Suggester 2 根据内核配置提供增强的本地漏洞建议。",
      "source_markdown": "https://github.com/jondonas/linux-exploit-suggester-2",
      "search_text": "jondonas/linux-exploit-suggester-2 jondonas/linux-exploit-suggester-2    tools assorted tool: assorted primary exploit https://github.com/jondonas/linux-exploit-suggester-2 exploit suggestion tool  exploit development linux exploit suggester 2 offers enhanced suggestions for local exploits based on kernel configurations. linux exploit suggester 2 根据内核配置提供增强的本地漏洞建议。 # jondonas/linux-exploit-suggester-2 record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: jondonas/linux-exploit-suggester-2 resource_label: primary resource_type: exploit resource_url: https://github.com/jondonas/linux-exploit-suggester-2 parent_primary_url: https://github.com/jondonas/linux-exploit-suggester-2 source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/jondonas/linux-exploit-suggester-2 cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/jondonas/linux-exploit-suggester-2 context_links: - [exploi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "eb2a93177372fabb",
      "item_id": "6941ce69a7490d6c",
      "slug": "undated-tools-assorted-mzet-linux-exploit-suggester-primary-88924238",
      "year": null,
      "title": "mzet-/linux-exploit-suggester",
      "item_title": "mzet-/linux-exploit-suggester",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/mzet-/linux-exploit-suggester",
      "primary_url": "https://github.com/mzet-/linux-exploit-suggester",
      "parent_primary_url": "https://github.com/mzet-/linux-exploit-suggester",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-mzet-linux-exploit-suggester-primary-88924238.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# mzet-/linux-exploit-suggester record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: mzet-/linux-exploit-suggester resource_label: primary resource_type: exploit resource_url: https://github.com/mzet-/linux-exploit-suggester parent_primary_url: https://github.com/mzet-/linux-exploit-suggester source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/mzet-/linux-exploit-suggester cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/mzet-/linux-exploit-suggester context_links: - [exploit] primary: https://github.com",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/mzet-/linux-exploit-suggester"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/mzet-/linux-exploit-suggester"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/mzet-/linux-exploit-suggester"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit suggestion",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "exploit development",
      "summary_en": "mzet-/linux-exploit-suggester is a tool that suggests local exploits for Linux systems.",
      "summary_zh": "mzet-/linux-exploit-suggester 是一个为 Linux 系统建议本地漏洞的工具。",
      "source_markdown": "https://github.com/mzet-/linux-exploit-suggester",
      "search_text": "mzet-/linux-exploit-suggester mzet-/linux-exploit-suggester    tools assorted tool: assorted primary exploit https://github.com/mzet-/linux-exploit-suggester exploit suggestion tool  exploit development mzet-/linux-exploit-suggester is a tool that suggests local exploits for linux systems. mzet-/linux-exploit-suggester 是一个为 linux 系统建议本地漏洞的工具。 # mzet-/linux-exploit-suggester record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: mzet-/linux-exploit-suggester resource_label: primary resource_type: exploit resource_url: https://github.com/mzet-/linux-exploit-suggester parent_primary_url: https://github.com/mzet-/linux-exploit-suggester source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/mzet-/linux-exploit-suggester cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/mzet-/linux-exploit-suggester context_links: - [exploit] primary: https://github.com no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "94b6ca1d1c3f35ee",
      "item_id": "9448bdc8e5633a45",
      "slug": "undated-tools-assorted-spencerdodd-kernelpop-primary-7dc46240",
      "year": null,
      "title": "spencerdodd/kernelpop",
      "item_title": "spencerdodd/kernelpop",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/spencerdodd/kernelpop",
      "primary_url": "https://github.com/spencerdodd/kernelpop",
      "parent_primary_url": "https://github.com/spencerdodd/kernelpop",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-spencerdodd-kernelpop-primary-7dc46240.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# spencerdodd/kernelpop record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: spencerdodd/kernelpop resource_label: primary resource_type: code resource_url: https://github.com/spencerdodd/kernelpop parent_primary_url: https://github.com/spencerdodd/kernelpop source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/spencerdodd/kernelpop cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/spencerdodd/kernelpop context_links: - [code] primary: https://github.com/spencerdodd/kernelpop fetch_status: skipped fetch_n",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/spencerdodd/kernelpop"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/spencerdodd/kernelpop"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/spencerdodd/kernelpop"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "analysis",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "exploit development",
      "summary_en": "Kernelpop is a tool designed for kernel exploitation and analysis.",
      "summary_zh": "Kernelpop 是一个用于内核利用和分析的工具。",
      "source_markdown": "https://github.com/spencerdodd/kernelpop",
      "search_text": "spencerdodd/kernelpop spencerdodd/kernelpop    tools assorted tool: assorted primary code https://github.com/spencerdodd/kernelpop exploitation analysis tool  exploit development kernelpop is a tool designed for kernel exploitation and analysis. kernelpop 是一个用于内核利用和分析的工具。 # spencerdodd/kernelpop record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: spencerdodd/kernelpop resource_label: primary resource_type: code resource_url: https://github.com/spencerdodd/kernelpop parent_primary_url: https://github.com/spencerdodd/kernelpop source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/spencerdodd/kernelpop cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/spencerdodd/kernelpop context_links: - [code] primary: https://github.com/spencerdodd/kernelpop fetch_status: skipped fetch_n no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b1ac55d279718e59",
      "item_id": "ce0acebbd474e465",
      "slug": "undated-tools-assorted-vnik5287-kaslr-tsx-bypass-primary-f481aff5",
      "year": null,
      "title": "vnik5287/kaslr_tsx_bypass",
      "item_title": "vnik5287/kaslr_tsx_bypass",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/vnik5287/kaslr_tsx_bypass",
      "primary_url": "https://github.com/vnik5287/kaslr_tsx_bypass",
      "parent_primary_url": "https://github.com/vnik5287/kaslr_tsx_bypass",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-vnik5287-kaslr-tsx-bypass-primary-f481aff5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# vnik5287/kaslr_tsx_bypass record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: vnik5287/kaslr_tsx_bypass resource_label: primary resource_type: code resource_url: https://github.com/vnik5287/kaslr_tsx_bypass parent_primary_url: https://github.com/vnik5287/kaslr_tsx_bypass source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/vnik5287/kaslr_tsx_bypass cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/vnik5287/kaslr_tsx_bypass context_links: - [code] primary: https://github.com/vnik5287/kaslr_tsx_bypass f",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/vnik5287/kaslr_tsx_bypass"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/vnik5287/kaslr_tsx_bypass"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/vnik5287/kaslr_tsx_bypass"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bypass",
        "KASLR",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "exploit development",
      "summary_en": "kaslr_tsx_bypass is a tool aimed at bypassing KASLR protections in the Linux kernel.",
      "summary_zh": "kaslr_tsx_bypass 是一个旨在绕过 Linux 内核中 KASLR 保护的工具。",
      "source_markdown": "https://github.com/vnik5287/kaslr_tsx_bypass",
      "search_text": "vnik5287/kaslr_tsx_bypass vnik5287/kaslr_tsx_bypass    tools assorted tool: assorted primary code https://github.com/vnik5287/kaslr_tsx_bypass bypass kaslr tool  exploit development kaslr_tsx_bypass is a tool aimed at bypassing kaslr protections in the linux kernel. kaslr_tsx_bypass 是一个旨在绕过 linux 内核中 kaslr 保护的工具。 # vnik5287/kaslr_tsx_bypass record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: vnik5287/kaslr_tsx_bypass resource_label: primary resource_type: code resource_url: https://github.com/vnik5287/kaslr_tsx_bypass parent_primary_url: https://github.com/vnik5287/kaslr_tsx_bypass source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/vnik5287/kaslr_tsx_bypass cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/vnik5287/kaslr_tsx_bypass context_links: - [code] primary: https://github.com/vnik5287/kaslr_tsx_bypass f no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "8b78221f2baffd42",
      "item_id": "68244243c4b09974",
      "slug": "undated-tools-assorted-lkrg-primary-5ef03adc",
      "year": null,
      "title": "lkrg",
      "item_title": "lkrg",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://www.openwall.com/lkrg/",
      "primary_url": "http://www.openwall.com/lkrg/",
      "parent_primary_url": "http://www.openwall.com/lkrg/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-lkrg-primary-5ef03adc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# lkrg record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: lkrg resource_label: primary resource_type: article resource_url: http://www.openwall.com/lkrg/ parent_primary_url: http://www.openwall.com/lkrg/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: http://www.openwall.com/lkrg/ cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: http://www.openwall.com/lkrg/ fetch_status: skipped fetch_note: original URL is preserved; public dataset stores metadata and short excerpts rather than republishing ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://www.openwall.com/lkrg/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://www.openwall.com/lkrg/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "defense",
        "protection",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "lkrg is a Linux kernel runtime guard that helps in detecting and preventing kernel-level attacks.",
      "summary_zh": "lkrg 是一个 Linux 内核运行时保护工具，帮助检测和防止内核级攻击。",
      "source_markdown": "http://www.openwall.com/lkrg/",
      "search_text": "lkrg lkrg    tools assorted tool: assorted primary article http://www.openwall.com/lkrg/ defense protection tool  defensive research lkrg is a linux kernel runtime guard that helps in detecting and preventing kernel-level attacks. lkrg 是一个 linux 内核运行时保护工具，帮助检测和防止内核级攻击。 # lkrg record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: lkrg resource_label: primary resource_type: article resource_url: http://www.openwall.com/lkrg/ parent_primary_url: http://www.openwall.com/lkrg/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: http://www.openwall.com/lkrg/ cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: http://www.openwall.com/lkrg/ fetch_status: skipped fetch_note: original url is preserved; public dataset stores metadata and short excerpts rather than republishing  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3e51ea2449c316de",
      "item_id": "945920057203a335",
      "slug": "undated-tools-assorted-iaik-meltdown-primary-e252a6c5",
      "year": null,
      "title": "IAIK/meltdown",
      "item_title": "IAIK/meltdown",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/IAIK/meltdown",
      "primary_url": "https://github.com/IAIK/meltdown",
      "parent_primary_url": "https://github.com/IAIK/meltdown",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-iaik-meltdown-primary-e252a6c5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# IAIK/meltdown record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: IAIK/meltdown resource_label: primary resource_type: code resource_url: https://github.com/IAIK/meltdown parent_primary_url: https://github.com/IAIK/meltdown source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/IAIK/meltdown cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/IAIK/meltdown context_links: - [code] primary: https://github.com/IAIK/meltdown fetch_status: skipped fetch_note: original URL is preserved; public dataset stores me",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/IAIK/meltdown"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/IAIK/meltdown"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/IAIK/meltdown"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "vulnerability",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "exploit development",
      "summary_en": "meltdown is a tool for exploiting the Meltdown vulnerability in modern processors.",
      "summary_zh": "meltdown 是一个用于利用现代处理器中的 Meltdown 漏洞的工具。",
      "source_markdown": "https://github.com/IAIK/meltdown",
      "search_text": "iaik/meltdown iaik/meltdown    tools assorted tool: assorted primary code https://github.com/iaik/meltdown exploitation vulnerability tool  exploit development meltdown is a tool for exploiting the meltdown vulnerability in modern processors. meltdown 是一个用于利用现代处理器中的 meltdown 漏洞的工具。 # iaik/meltdown record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: iaik/meltdown resource_label: primary resource_type: code resource_url: https://github.com/iaik/meltdown parent_primary_url: https://github.com/iaik/meltdown source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/iaik/meltdown cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/iaik/meltdown context_links: - [code] primary: https://github.com/iaik/meltdown fetch_status: skipped fetch_note: original url is preserved; public dataset stores me no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3cae2fa8eecb8db0",
      "item_id": "29a11851f730c02b",
      "slug": "undated-tools-assorted-nforest-droidimg-primary-c96ba032",
      "year": null,
      "title": "nforest/droidimg",
      "item_title": "nforest/droidimg",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/nforest/droidimg",
      "primary_url": "https://github.com/nforest/droidimg",
      "parent_primary_url": "https://github.com/nforest/droidimg",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-nforest-droidimg-primary-c96ba032.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# nforest/droidimg record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: nforest/droidimg resource_label: primary resource_type: code resource_url: https://github.com/nforest/droidimg parent_primary_url: https://github.com/nforest/droidimg source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/nforest/droidimg cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/nforest/droidimg context_links: - [code] primary: https://github.com/nforest/droidimg fetch_status: skipped fetch_note: original URL is preserved; pub",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/nforest/droidimg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/nforest/droidimg"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/nforest/droidimg"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "analysis",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "droidimg is a tool for analyzing Android images and extracting kernel information.",
      "summary_zh": "droidimg 是一个用于分析 Android 镜像并提取内核信息的工具。",
      "source_markdown": "https://github.com/nforest/droidimg",
      "search_text": "nforest/droidimg nforest/droidimg    tools assorted tool: assorted primary code https://github.com/nforest/droidimg analysis tool  defensive research droidimg is a tool for analyzing android images and extracting kernel information. droidimg 是一个用于分析 android 镜像并提取内核信息的工具。 # nforest/droidimg record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: nforest/droidimg resource_label: primary resource_type: code resource_url: https://github.com/nforest/droidimg parent_primary_url: https://github.com/nforest/droidimg source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/nforest/droidimg cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/nforest/droidimg context_links: - [code] primary: https://github.com/nforest/droidimg fetch_status: skipped fetch_note: original url is preserved; pub no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "bc6e8e56c93995d6",
      "item_id": "d4c9ef92cc7ff365",
      "slug": "undated-tools-assorted-a13xp0p0v-kconfig-hardened-check-primary-8560c0ab",
      "year": null,
      "title": "a13xp0p0v/kconfig-hardened-check",
      "item_title": "a13xp0p0v/kconfig-hardened-check",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/a13xp0p0v/kconfig-hardened-check",
      "primary_url": "https://github.com/a13xp0p0v/kconfig-hardened-check",
      "parent_primary_url": "https://github.com/a13xp0p0v/kconfig-hardened-check",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-a13xp0p0v-kconfig-hardened-check-primary-8560c0ab.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# a13xp0p0v/kconfig-hardened-check record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: a13xp0p0v/kconfig-hardened-check resource_label: primary resource_type: code resource_url: https://github.com/a13xp0p0v/kconfig-hardened-check parent_primary_url: https://github.com/a13xp0p0v/kconfig-hardened-check source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/a13xp0p0v/kconfig-hardened-check cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/a13xp0p0v/kconfig-hardened-check context_links: - [code] primary: http",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/a13xp0p0v/kconfig-hardened-check"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/a13xp0p0v/kconfig-hardened-check"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/a13xp0p0v/kconfig-hardened-check"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security",
        "hardening",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "kconfig-hardened-check is a tool for checking kernel configuration for security hardening.",
      "summary_zh": "kconfig-hardened-check 是一个用于检查内核配置以增强安全性的工具。",
      "source_markdown": "https://github.com/a13xp0p0v/kconfig-hardened-check",
      "search_text": "a13xp0p0v/kconfig-hardened-check a13xp0p0v/kconfig-hardened-check    tools assorted tool: assorted primary code https://github.com/a13xp0p0v/kconfig-hardened-check security hardening tool  defensive research kconfig-hardened-check is a tool for checking kernel configuration for security hardening. kconfig-hardened-check 是一个用于检查内核配置以增强安全性的工具。 # a13xp0p0v/kconfig-hardened-check record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: a13xp0p0v/kconfig-hardened-check resource_label: primary resource_type: code resource_url: https://github.com/a13xp0p0v/kconfig-hardened-check parent_primary_url: https://github.com/a13xp0p0v/kconfig-hardened-check source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/a13xp0p0v/kconfig-hardened-check cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/a13xp0p0v/kconfig-hardened-check context_links: - [code] primary: http no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "dcbc6013c39aa9ee",
      "item_id": "0951c7f6d6755aba",
      "slug": "undated-tools-assorted-paolomonti42-salt-primary-892388af",
      "year": null,
      "title": "PaoloMonti42/salt",
      "item_title": "PaoloMonti42/salt",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/PaoloMonti42/salt",
      "primary_url": "https://github.com/PaoloMonti42/salt",
      "parent_primary_url": "https://github.com/PaoloMonti42/salt",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-paolomonti42-salt-primary-892388af.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PaoloMonti42/salt record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: PaoloMonti42/salt resource_label: primary resource_type: code resource_url: https://github.com/PaoloMonti42/salt parent_primary_url: https://github.com/PaoloMonti42/salt source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/PaoloMonti42/salt cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/PaoloMonti42/salt context_links: - [code] primary: https://github.com/PaoloMonti42/salt fetch_status: skipped fetch_note: original URL is preserv",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/PaoloMonti42/salt"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/PaoloMonti42/salt"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/PaoloMonti42/salt"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "salt is a tool for enhancing the security of Linux kernels through various checks.",
      "summary_zh": "salt 是一个通过各种检查增强 Linux 内核安全性的工具。",
      "source_markdown": "https://github.com/PaoloMonti42/salt",
      "search_text": "paolomonti42/salt paolomonti42/salt    tools assorted tool: assorted primary code https://github.com/paolomonti42/salt security tool  defensive research salt is a tool for enhancing the security of linux kernels through various checks. salt 是一个通过各种检查增强 linux 内核安全性的工具。 # paolomonti42/salt record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: paolomonti42/salt resource_label: primary resource_type: code resource_url: https://github.com/paolomonti42/salt parent_primary_url: https://github.com/paolomonti42/salt source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/paolomonti42/salt cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/paolomonti42/salt context_links: - [code] primary: https://github.com/paolomonti42/salt fetch_status: skipped fetch_note: original url is preserv no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "e499956c78173472",
      "item_id": "68b2d280436b0fc3",
      "slug": "undated-tools-assorted-jollheef-out-of-tree-primary-67f6e4ce",
      "year": null,
      "title": "jollheef/out-of-tree",
      "item_title": "jollheef/out-of-tree",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/jollheef/out-of-tree",
      "primary_url": "https://github.com/jollheef/out-of-tree",
      "parent_primary_url": "https://github.com/jollheef/out-of-tree",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-jollheef-out-of-tree-primary-67f6e4ce.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# jollheef/out-of-tree record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: jollheef/out-of-tree resource_label: primary resource_type: code resource_url: https://github.com/jollheef/out-of-tree parent_primary_url: https://github.com/jollheef/out-of-tree source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/jollheef/out-of-tree cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/jollheef/out-of-tree context_links: - [code] primary: https://github.com/jollheef/out-of-tree fetch_status: skipped fetch_note: or",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/jollheef/out-of-tree"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/jollheef/out-of-tree"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/jollheef/out-of-tree"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "module management",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "out-of-tree is a tool for managing out-of-tree kernel modules.",
      "summary_zh": "out-of-tree 是一个用于管理树外内核模块的工具。",
      "source_markdown": "https://github.com/jollheef/out-of-tree",
      "search_text": "jollheef/out-of-tree jollheef/out-of-tree    tools assorted tool: assorted primary code https://github.com/jollheef/out-of-tree module management tool  defensive research out-of-tree is a tool for managing out-of-tree kernel modules. out-of-tree 是一个用于管理树外内核模块的工具。 # jollheef/out-of-tree record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: jollheef/out-of-tree resource_label: primary resource_type: code resource_url: https://github.com/jollheef/out-of-tree parent_primary_url: https://github.com/jollheef/out-of-tree source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/jollheef/out-of-tree cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/jollheef/out-of-tree context_links: - [code] primary: https://github.com/jollheef/out-of-tree fetch_status: skipped fetch_note: or no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "1a315753bf3244a4",
      "item_id": "cef8847d5873d26f",
      "slug": "undated-tools-assorted-elfmaster-kdress-primary-0d616cac",
      "year": null,
      "title": "elfmaster/kdress",
      "item_title": "elfmaster/kdress",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/elfmaster/kdress",
      "primary_url": "https://github.com/elfmaster/kdress",
      "parent_primary_url": "https://github.com/elfmaster/kdress",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-elfmaster-kdress-primary-0d616cac.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# elfmaster/kdress record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: elfmaster/kdress resource_label: primary resource_type: code resource_url: https://github.com/elfmaster/kdress parent_primary_url: https://github.com/elfmaster/kdress source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/elfmaster/kdress cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/elfmaster/kdress context_links: - [code] primary: https://github.com/elfmaster/kdress fetch_status: skipped fetch_note: original URL is preserved; pub",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/elfmaster/kdress"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/elfmaster/kdress"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/elfmaster/kdress"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "analysis",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "kdress is a tool for analyzing kernel binaries and their structures.",
      "summary_zh": "kdress 是一个用于分析内核二进制文件及其结构的工具。",
      "source_markdown": "https://github.com/elfmaster/kdress",
      "search_text": "elfmaster/kdress elfmaster/kdress    tools assorted tool: assorted primary code https://github.com/elfmaster/kdress analysis tool  defensive research kdress is a tool for analyzing kernel binaries and their structures. kdress 是一个用于分析内核二进制文件及其结构的工具。 # elfmaster/kdress record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: elfmaster/kdress resource_label: primary resource_type: code resource_url: https://github.com/elfmaster/kdress parent_primary_url: https://github.com/elfmaster/kdress source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/elfmaster/kdress cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/elfmaster/kdress context_links: - [code] primary: https://github.com/elfmaster/kdress fetch_status: skipped fetch_note: original url is preserved; pub no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "5f5bdbaf830180b8",
      "item_id": "e55b1db50d424632",
      "slug": "undated-tools-assorted-mephi42-ida-kallsyms-primary-09ef91e0",
      "year": null,
      "title": "mephi42/ida-kallsyms",
      "item_title": "mephi42/ida-kallsyms",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/mephi42/ida-kallsyms/",
      "primary_url": "https://github.com/mephi42/ida-kallsyms/",
      "parent_primary_url": "https://github.com/mephi42/ida-kallsyms/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-mephi42-ida-kallsyms-primary-09ef91e0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# mephi42/ida-kallsyms record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: mephi42/ida-kallsyms resource_label: primary resource_type: code resource_url: https://github.com/mephi42/ida-kallsyms/ parent_primary_url: https://github.com/mephi42/ida-kallsyms/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/mephi42/ida-kallsyms/ cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/mephi42/ida-kallsyms/ context_links: - [code] primary: https://github.com/mephi42/ida-kallsyms/ fetch_status: skipped fetch_not",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/mephi42/ida-kallsyms/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/mephi42/ida-kallsyms/"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/mephi42/ida-kallsyms/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "analysis",
        "IDA Pro",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "ida-kallsyms is a tool for analyzing kernel symbols in IDA Pro.",
      "summary_zh": "ida-kallsyms 是一个用于在 IDA Pro 中分析内核符号的工具。",
      "source_markdown": "https://github.com/mephi42/ida-kallsyms/",
      "search_text": "mephi42/ida-kallsyms mephi42/ida-kallsyms    tools assorted tool: assorted primary code https://github.com/mephi42/ida-kallsyms/ analysis ida pro tool  defensive research ida-kallsyms is a tool for analyzing kernel symbols in ida pro. ida-kallsyms 是一个用于在 ida pro 中分析内核符号的工具。 # mephi42/ida-kallsyms record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: mephi42/ida-kallsyms resource_label: primary resource_type: code resource_url: https://github.com/mephi42/ida-kallsyms/ parent_primary_url: https://github.com/mephi42/ida-kallsyms/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/mephi42/ida-kallsyms/ cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/mephi42/ida-kallsyms/ context_links: - [code] primary: https://github.com/mephi42/ida-kallsyms/ fetch_status: skipped fetch_not no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "dab5b6377eef0e5e",
      "item_id": "040a731ae92ee740",
      "slug": "undated-tools-assorted-kernel-address-space-layout-derandomization-kasld-primary-cb5a0d16",
      "year": null,
      "title": "Kernel Address Space Layout Derandomization (KASLD)",
      "item_title": "Kernel Address Space Layout Derandomization (KASLD)",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/bcoles/kasld",
      "primary_url": "https://github.com/bcoles/kasld",
      "parent_primary_url": "https://github.com/bcoles/kasld",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-kernel-address-space-layout-derandomization-kasld-primary-cb5a0d16.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Address Space Layout Derandomization (KASLD) record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: Kernel Address Space Layout Derandomization (KASLD) resource_label: primary resource_type: code resource_url: https://github.com/bcoles/kasld parent_primary_url: https://github.com/bcoles/kasld source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: [Kernel Address Space Layout Derandomization (KASLD)](https://github.com/bcoles/kasld) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/bcoles/kasld context_links: - [code] ",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/bcoles/kasld"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/bcoles/kasld"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/bcoles/kasld"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security",
        "randomization",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Kernel Address Space Layout Derandomization (KASLD) is a tool aimed at improving kernel security through layout randomization.",
      "summary_zh": "内核地址空间布局去随机化 (KASLD) 是一个旨在通过布局随机化提高内核安全性的工具。",
      "source_markdown": "[Kernel Address Space Layout Derandomization (KASLD)](https://github.com/bcoles/kasld)",
      "search_text": "kernel address space layout derandomization (kasld) kernel address space layout derandomization (kasld)    tools assorted tool: assorted primary code https://github.com/bcoles/kasld security randomization tool  defensive research kernel address space layout derandomization (kasld) is a tool aimed at improving kernel security through layout randomization. 内核地址空间布局去随机化 (kasld) 是一个旨在通过布局随机化提高内核安全性的工具。 # kernel address space layout derandomization (kasld) record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: kernel address space layout derandomization (kasld) resource_label: primary resource_type: code resource_url: https://github.com/bcoles/kasld parent_primary_url: https://github.com/bcoles/kasld source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: [kernel address space layout derandomization (kasld)](https://github.com/bcoles/kasld) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/bcoles/kasld context_links: - [code]  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "947d11bcc5fa5c9e",
      "item_id": "af3daefde966eece",
      "slug": "undated-tools-assorted-duasynt-gdb-scripts-primary-4d3e52d1",
      "year": null,
      "title": "duasynt/gdb_scripts",
      "item_title": "duasynt/gdb_scripts",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/duasynt/gdb_scripts/",
      "primary_url": "https://github.com/duasynt/gdb_scripts/",
      "parent_primary_url": "https://github.com/duasynt/gdb_scripts/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-duasynt-gdb-scripts-primary-4d3e52d1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# duasynt/gdb_scripts record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: duasynt/gdb_scripts resource_label: primary resource_type: code resource_url: https://github.com/duasynt/gdb_scripts/ parent_primary_url: https://github.com/duasynt/gdb_scripts/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/duasynt/gdb_scripts/ cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/duasynt/gdb_scripts/ context_links: - [code] primary: https://github.com/duasynt/gdb_scripts/ fetch_status: skipped fetch_note: orig",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/duasynt/gdb_scripts/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/duasynt/gdb_scripts/"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/duasynt/gdb_scripts/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "debugging",
        "GDB",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "gdb_scripts provides scripts for enhancing GDB's functionality for kernel debugging.",
      "summary_zh": "gdb_scripts 提供增强 GDB 功能以进行内核调试的脚本。",
      "source_markdown": "https://github.com/duasynt/gdb_scripts/",
      "search_text": "duasynt/gdb_scripts duasynt/gdb_scripts    tools assorted tool: assorted primary code https://github.com/duasynt/gdb_scripts/ debugging gdb tool  defensive research gdb_scripts provides scripts for enhancing gdb's functionality for kernel debugging. gdb_scripts 提供增强 gdb 功能以进行内核调试的脚本。 # duasynt/gdb_scripts record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: duasynt/gdb_scripts resource_label: primary resource_type: code resource_url: https://github.com/duasynt/gdb_scripts/ parent_primary_url: https://github.com/duasynt/gdb_scripts/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/duasynt/gdb_scripts/ cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/duasynt/gdb_scripts/ context_links: - [code] primary: https://github.com/duasynt/gdb_scripts/ fetch_status: skipped fetch_note: orig no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "2729dd647e9b09b3",
      "item_id": "5abf2d7fbb7e3782",
      "slug": "undated-tools-assorted-evdenis-cvehound-primary-31675488",
      "year": null,
      "title": "evdenis/cvehound",
      "item_title": "evdenis/cvehound",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/evdenis/cvehound",
      "primary_url": "https://github.com/evdenis/cvehound",
      "parent_primary_url": "https://github.com/evdenis/cvehound",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-evdenis-cvehound-primary-31675488.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# evdenis/cvehound record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: evdenis/cvehound resource_label: primary resource_type: code resource_url: https://github.com/evdenis/cvehound parent_primary_url: https://github.com/evdenis/cvehound source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/evdenis/cvehound cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/evdenis/cvehound context_links: - [code] primary: https://github.com/evdenis/cvehound fetch_status: skipped fetch_note: original URL is preserved; pub",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/evdenis/cvehound"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/evdenis/cvehound"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/evdenis/cvehound"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tool",
        "analysis"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Cvehound is a tool for analyzing kernel vulnerabilities.",
      "summary_zh": "Cvehound是一个用于分析内核漏洞的工具。",
      "source_markdown": "https://github.com/evdenis/cvehound",
      "search_text": "evdenis/cvehound evdenis/cvehound    tools assorted tool: assorted primary code https://github.com/evdenis/cvehound tool analysis  tooling cvehound is a tool for analyzing kernel vulnerabilities. cvehound是一个用于分析内核漏洞的工具。 # evdenis/cvehound record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: evdenis/cvehound resource_label: primary resource_type: code resource_url: https://github.com/evdenis/cvehound parent_primary_url: https://github.com/evdenis/cvehound source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/evdenis/cvehound cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/evdenis/cvehound context_links: - [code] primary: https://github.com/evdenis/cvehound fetch_status: skipped fetch_note: original url is preserved; pub no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "eb0c804f5984b80d",
      "item_id": "7a8ad06fc6b13e2d",
      "slug": "undated-tools-assorted-redplait-lkcd-primary-56c3d433",
      "year": null,
      "title": "redplait/lkcd",
      "item_title": "redplait/lkcd",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/redplait/lkcd",
      "primary_url": "https://github.com/redplait/lkcd",
      "parent_primary_url": "https://github.com/redplait/lkcd",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-redplait-lkcd-primary-56c3d433.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# redplait/lkcd record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: redplait/lkcd resource_label: primary resource_type: code resource_url: https://github.com/redplait/lkcd parent_primary_url: https://github.com/redplait/lkcd source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/redplait/lkcd cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/redplait/lkcd context_links: - [code] primary: https://github.com/redplait/lkcd fetch_status: skipped fetch_note: original URL is preserved; public dataset stores me",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/redplait/lkcd"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/redplait/lkcd"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/redplait/lkcd"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tool",
        "debugging"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "LKCD is a Linux Kernel Crash Dump tool for debugging.",
      "summary_zh": "LKCD是一个用于调试的Linux内核崩溃转储工具。",
      "source_markdown": "https://github.com/redplait/lkcd",
      "search_text": "redplait/lkcd redplait/lkcd    tools assorted tool: assorted primary code https://github.com/redplait/lkcd tool debugging  tooling lkcd is a linux kernel crash dump tool for debugging. lkcd是一个用于调试的linux内核崩溃转储工具。 # redplait/lkcd record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: redplait/lkcd resource_label: primary resource_type: code resource_url: https://github.com/redplait/lkcd parent_primary_url: https://github.com/redplait/lkcd source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/redplait/lkcd cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/redplait/lkcd context_links: - [code] primary: https://github.com/redplait/lkcd fetch_status: skipped fetch_note: original url is preserved; public dataset stores me no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "2933751675e3c35e",
      "item_id": "f857322454820c10",
      "slug": "undated-tools-assorted-kyle-kyle-pwning-toolset-primary-b32440c1",
      "year": null,
      "title": "Kyle-Kyle/pwning-toolset",
      "item_title": "Kyle-Kyle/pwning-toolset",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "tool",
      "resource_url": "https://github.com/Kyle-Kyle/pwning-toolset/blob/main/linux-kernel/fgkaslr_gadgets.py",
      "primary_url": "https://github.com/Kyle-Kyle/pwning-toolset/blob/main/linux-kernel/fgkaslr_gadgets.py",
      "parent_primary_url": "https://github.com/Kyle-Kyle/pwning-toolset/blob/main/linux-kernel/fgkaslr_gadgets.py",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-kyle-kyle-pwning-toolset-primary-b32440c1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kyle-Kyle/pwning-toolset record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: Kyle-Kyle/pwning-toolset resource_label: primary resource_type: tool resource_url: https://github.com/Kyle-Kyle/pwning-toolset/blob/main/linux-kernel/fgkaslr_gadgets.py parent_primary_url: https://github.com/Kyle-Kyle/pwning-toolset/blob/main/linux-kernel/fgkaslr_gadgets.py source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/Kyle-Kyle/pwning-toolset/blob/main/linux-kernel/fgkaslr_gadgets.py cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: htt",
      "link_types": [
        "tool"
      ],
      "links": [
        {
          "label": "primary",
          "type": "tool",
          "url": "https://github.com/Kyle-Kyle/pwning-toolset/blob/main/linux-kernel/fgkaslr_gadgets.py"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "tool",
            "url": "https://github.com/Kyle-Kyle/pwning-toolset/blob/main/linux-kernel/fgkaslr_gadgets.py"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Kyle-Kyle/pwning-toolset/blob/main/linux-kernel/fgkaslr_gadgets.py"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tool",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "PwnToolset provides various tools for kernel exploitation.",
      "summary_zh": "PwnToolset提供了多种内核利用工具。",
      "source_markdown": "https://github.com/Kyle-Kyle/pwning-toolset/blob/main/linux-kernel/fgkaslr_gadgets.py",
      "search_text": "kyle-kyle/pwning-toolset kyle-kyle/pwning-toolset    tools assorted tool: assorted primary tool https://github.com/kyle-kyle/pwning-toolset/blob/main/linux-kernel/fgkaslr_gadgets.py tool exploitation  tooling pwntoolset provides various tools for kernel exploitation. pwntoolset提供了多种内核利用工具。 # kyle-kyle/pwning-toolset record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: kyle-kyle/pwning-toolset resource_label: primary resource_type: tool resource_url: https://github.com/kyle-kyle/pwning-toolset/blob/main/linux-kernel/fgkaslr_gadgets.py parent_primary_url: https://github.com/kyle-kyle/pwning-toolset/blob/main/linux-kernel/fgkaslr_gadgets.py source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/kyle-kyle/pwning-toolset/blob/main/linux-kernel/fgkaslr_gadgets.py cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: htt no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "f264e8603b672531",
      "item_id": "bc0fa1b91f7a7abb",
      "slug": "undated-tools-assorted-vusec-kasper-primary-5b038ee5",
      "year": null,
      "title": "vusec/kasper",
      "item_title": "vusec/kasper",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/vusec/kasper",
      "primary_url": "https://github.com/vusec/kasper",
      "parent_primary_url": "https://github.com/vusec/kasper",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-vusec-kasper-primary-5b038ee5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# vusec/kasper record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: vusec/kasper resource_label: primary resource_type: code resource_url: https://github.com/vusec/kasper parent_primary_url: https://github.com/vusec/kasper source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/vusec/kasper cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/vusec/kasper context_links: - [code] primary: https://github.com/vusec/kasper fetch_status: skipped fetch_note: original URL is preserved; public dataset stores metadata ",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/vusec/kasper"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/vusec/kasper"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/vusec/kasper"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tool",
        "security"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Kasper is a tool for kernel security analysis.",
      "summary_zh": "Kasper是一个用于内核安全分析的工具。",
      "source_markdown": "https://github.com/vusec/kasper",
      "search_text": "vusec/kasper vusec/kasper    tools assorted tool: assorted primary code https://github.com/vusec/kasper tool security  tooling kasper is a tool for kernel security analysis. kasper是一个用于内核安全分析的工具。 # vusec/kasper record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: vusec/kasper resource_label: primary resource_type: code resource_url: https://github.com/vusec/kasper parent_primary_url: https://github.com/vusec/kasper source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/vusec/kasper cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/vusec/kasper context_links: - [code] primary: https://github.com/vusec/kasper fetch_status: skipped fetch_note: original url is preserved; public dataset stores metadata  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "a9639f6785d56be9",
      "item_id": "254e8ddb05a2e657",
      "slug": "undated-tools-assorted-martinradev-gdb-pt-dump-primary-439be073",
      "year": null,
      "title": "martinradev/gdb-pt-dump",
      "item_title": "martinradev/gdb-pt-dump",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/martinradev/gdb-pt-dump",
      "primary_url": "https://github.com/martinradev/gdb-pt-dump",
      "parent_primary_url": "https://github.com/martinradev/gdb-pt-dump",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-martinradev-gdb-pt-dump-primary-439be073.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# martinradev/gdb-pt-dump record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: martinradev/gdb-pt-dump resource_label: primary resource_type: code resource_url: https://github.com/martinradev/gdb-pt-dump parent_primary_url: https://github.com/martinradev/gdb-pt-dump source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/martinradev/gdb-pt-dump cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/martinradev/gdb-pt-dump context_links: - [code] primary: https://github.com/martinradev/gdb-pt-dump fetch_status: s",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/martinradev/gdb-pt-dump"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/martinradev/gdb-pt-dump"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/martinradev/gdb-pt-dump"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tool",
        "debugging"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "GDB-PT-Dump is a tool for dumping process tracing information.",
      "summary_zh": "GDB-PT-Dump是一个用于转储进程跟踪信息的工具。",
      "source_markdown": "https://github.com/martinradev/gdb-pt-dump",
      "search_text": "martinradev/gdb-pt-dump martinradev/gdb-pt-dump    tools assorted tool: assorted primary code https://github.com/martinradev/gdb-pt-dump tool debugging  tooling gdb-pt-dump is a tool for dumping process tracing information. gdb-pt-dump是一个用于转储进程跟踪信息的工具。 # martinradev/gdb-pt-dump record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: martinradev/gdb-pt-dump resource_label: primary resource_type: code resource_url: https://github.com/martinradev/gdb-pt-dump parent_primary_url: https://github.com/martinradev/gdb-pt-dump source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/martinradev/gdb-pt-dump cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/martinradev/gdb-pt-dump context_links: - [code] primary: https://github.com/martinradev/gdb-pt-dump fetch_status: s no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "238a5982cef21e24",
      "item_id": "0c5d62acb2f62707",
      "slug": "undated-tools-assorted-chompie1337-kernel-obj-finder-primary-6f73e2d9",
      "year": null,
      "title": "chompie1337/kernel_obj_finder",
      "item_title": "chompie1337/kernel_obj_finder",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/chompie1337/kernel_obj_finder",
      "primary_url": "https://github.com/chompie1337/kernel_obj_finder",
      "parent_primary_url": "https://github.com/chompie1337/kernel_obj_finder",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-chompie1337-kernel-obj-finder-primary-6f73e2d9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# chompie1337/kernel_obj_finder record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: chompie1337/kernel_obj_finder resource_label: primary resource_type: code resource_url: https://github.com/chompie1337/kernel_obj_finder parent_primary_url: https://github.com/chompie1337/kernel_obj_finder source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/chompie1337/kernel_obj_finder cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/chompie1337/kernel_obj_finder context_links: - [code] primary: https://github.com/cho",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/chompie1337/kernel_obj_finder"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/chompie1337/kernel_obj_finder"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/chompie1337/kernel_obj_finder"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tool",
        "memory"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Kernel Object Finder helps locate kernel objects in memory.",
      "summary_zh": "Kernel Object Finder帮助定位内存中的内核对象。",
      "source_markdown": "https://github.com/chompie1337/kernel_obj_finder",
      "search_text": "chompie1337/kernel_obj_finder chompie1337/kernel_obj_finder    tools assorted tool: assorted primary code https://github.com/chompie1337/kernel_obj_finder tool memory  tooling kernel object finder helps locate kernel objects in memory. kernel object finder帮助定位内存中的内核对象。 # chompie1337/kernel_obj_finder record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: chompie1337/kernel_obj_finder resource_label: primary resource_type: code resource_url: https://github.com/chompie1337/kernel_obj_finder parent_primary_url: https://github.com/chompie1337/kernel_obj_finder source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/chompie1337/kernel_obj_finder cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/chompie1337/kernel_obj_finder context_links: - [code] primary: https://github.com/cho no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "f3e052ba76006f3a",
      "item_id": "fd51351a8a5c108a",
      "slug": "undated-tools-assorted-marin-m-vmlinux-to-elf-primary-b8d6707d",
      "year": null,
      "title": "marin-m/vmlinux-to-elf",
      "item_title": "marin-m/vmlinux-to-elf",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/marin-m/vmlinux-to-elf",
      "primary_url": "https://github.com/marin-m/vmlinux-to-elf",
      "parent_primary_url": "https://github.com/marin-m/vmlinux-to-elf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-marin-m-vmlinux-to-elf-primary-b8d6707d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# marin-m/vmlinux-to-elf record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: marin-m/vmlinux-to-elf resource_label: primary resource_type: code resource_url: https://github.com/marin-m/vmlinux-to-elf parent_primary_url: https://github.com/marin-m/vmlinux-to-elf source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/marin-m/vmlinux-to-elf cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/marin-m/vmlinux-to-elf context_links: - [code] primary: https://github.com/marin-m/vmlinux-to-elf fetch_status: skipped ",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/marin-m/vmlinux-to-elf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/marin-m/vmlinux-to-elf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/marin-m/vmlinux-to-elf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tool",
        "conversion"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Vmlinux-to-elf converts vmlinux files to ELF format.",
      "summary_zh": "Vmlinux-to-elf将vmlinux文件转换为ELF格式。",
      "source_markdown": "https://github.com/marin-m/vmlinux-to-elf",
      "search_text": "marin-m/vmlinux-to-elf marin-m/vmlinux-to-elf    tools assorted tool: assorted primary code https://github.com/marin-m/vmlinux-to-elf tool conversion  tooling vmlinux-to-elf converts vmlinux files to elf format. vmlinux-to-elf将vmlinux文件转换为elf格式。 # marin-m/vmlinux-to-elf record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: marin-m/vmlinux-to-elf resource_label: primary resource_type: code resource_url: https://github.com/marin-m/vmlinux-to-elf parent_primary_url: https://github.com/marin-m/vmlinux-to-elf source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/marin-m/vmlinux-to-elf cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/marin-m/vmlinux-to-elf context_links: - [code] primary: https://github.com/marin-m/vmlinux-to-elf fetch_status: skipped  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "bf500a8eb892bd5e",
      "item_id": "ec551ca5ce3e7003",
      "slug": "undated-tools-assorted-nccgroup-libslub-primary-bd7d2af0",
      "year": null,
      "title": "nccgroup/libslub",
      "item_title": "nccgroup/libslub",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/nccgroup/libslub",
      "primary_url": "https://github.com/nccgroup/libslub",
      "parent_primary_url": "https://github.com/nccgroup/libslub",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-nccgroup-libslub-primary-bd7d2af0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# nccgroup/libslub record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: nccgroup/libslub resource_label: primary resource_type: code resource_url: https://github.com/nccgroup/libslub parent_primary_url: https://github.com/nccgroup/libslub source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/nccgroup/libslub cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/nccgroup/libslub context_links: - [code] primary: https://github.com/nccgroup/libslub fetch_status: skipped fetch_note: original URL is preserved; pub",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/nccgroup/libslub"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/nccgroup/libslub"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/nccgroup/libslub"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tool",
        "memory"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Libslub is a library for kernel memory allocation analysis.",
      "summary_zh": "Libslub是一个用于内核内存分配分析的库。",
      "source_markdown": "https://github.com/nccgroup/libslub",
      "search_text": "nccgroup/libslub nccgroup/libslub    tools assorted tool: assorted primary code https://github.com/nccgroup/libslub tool memory  tooling libslub is a library for kernel memory allocation analysis. libslub是一个用于内核内存分配分析的库。 # nccgroup/libslub record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: nccgroup/libslub resource_label: primary resource_type: code resource_url: https://github.com/nccgroup/libslub parent_primary_url: https://github.com/nccgroup/libslub source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/nccgroup/libslub cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/nccgroup/libslub context_links: - [code] primary: https://github.com/nccgroup/libslub fetch_status: skipped fetch_note: original url is preserved; pub no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "257b452ae3221df7",
      "item_id": "02be4dbdb5427390",
      "slug": "undated-tools-assorted-a13xp0p0v-kernel-hardening-checker-primary-82d1f578",
      "year": null,
      "title": "a13xp0p0v/kernel-hardening-checker",
      "item_title": "a13xp0p0v/kernel-hardening-checker",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/a13xp0p0v/kernel-hardening-checker",
      "primary_url": "https://github.com/a13xp0p0v/kernel-hardening-checker",
      "parent_primary_url": "https://github.com/a13xp0p0v/kernel-hardening-checker",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-a13xp0p0v-kernel-hardening-checker-primary-82d1f578.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# a13xp0p0v/kernel-hardening-checker record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: a13xp0p0v/kernel-hardening-checker resource_label: primary resource_type: code resource_url: https://github.com/a13xp0p0v/kernel-hardening-checker parent_primary_url: https://github.com/a13xp0p0v/kernel-hardening-checker source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/a13xp0p0v/kernel-hardening-checker cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/a13xp0p0v/kernel-hardening-checker context_links: - [code] p",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/a13xp0p0v/kernel-hardening-checker"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/a13xp0p0v/kernel-hardening-checker"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/a13xp0p0v/kernel-hardening-checker"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tool",
        "hardening"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Kernel Hardening Checker assesses kernel hardening features.",
      "summary_zh": "Kernel Hardening Checker评估内核强化功能。",
      "source_markdown": "https://github.com/a13xp0p0v/kernel-hardening-checker",
      "search_text": "a13xp0p0v/kernel-hardening-checker a13xp0p0v/kernel-hardening-checker    tools assorted tool: assorted primary code https://github.com/a13xp0p0v/kernel-hardening-checker tool hardening  tooling kernel hardening checker assesses kernel hardening features. kernel hardening checker评估内核强化功能。 # a13xp0p0v/kernel-hardening-checker record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: a13xp0p0v/kernel-hardening-checker resource_label: primary resource_type: code resource_url: https://github.com/a13xp0p0v/kernel-hardening-checker parent_primary_url: https://github.com/a13xp0p0v/kernel-hardening-checker source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/a13xp0p0v/kernel-hardening-checker cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/a13xp0p0v/kernel-hardening-checker context_links: - [code] p no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b6bf1694a19e6ad9",
      "item_id": "fc4a02b6f61dff47",
      "slug": "undated-tools-assorted-heki-linux-primary-7cc87b01",
      "year": null,
      "title": "heki linux",
      "item_title": "heki linux",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/heki-linux",
      "primary_url": "https://github.com/heki-linux",
      "parent_primary_url": "https://github.com/heki-linux",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-heki-linux-primary-7cc87b01.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# heki linux record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: heki linux resource_label: primary resource_type: code resource_url: https://github.com/heki-linux parent_primary_url: https://github.com/heki-linux source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/heki-linux cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/heki-linux context_links: - [code] primary: https://github.com/heki-linux fetch_status: skipped fetch_note: original URL is preserved; public dataset stores metadata and short exce",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/heki-linux"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/heki-linux"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/heki-linux"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tool",
        "development"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Heki Linux is a collection of tools for kernel development.",
      "summary_zh": "Heki Linux是一个用于内核开发的工具集合。",
      "source_markdown": "https://github.com/heki-linux",
      "search_text": "heki linux heki linux    tools assorted tool: assorted primary code https://github.com/heki-linux tool development  tooling heki linux is a collection of tools for kernel development. heki linux是一个用于内核开发的工具集合。 # heki linux record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: heki linux resource_label: primary resource_type: code resource_url: https://github.com/heki-linux parent_primary_url: https://github.com/heki-linux source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/heki-linux cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/heki-linux context_links: - [code] primary: https://github.com/heki-linux fetch_status: skipped fetch_note: original url is preserved; public dataset stores metadata and short exce no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "bff2f498d3c1364f",
      "item_id": "6bbf70894b65780a",
      "slug": "undated-tools-assorted-oswalpalash-linux-kernel-regression-tests-primary-c8fe6974",
      "year": null,
      "title": "oswalpalash/linux-kernel-regression-tests",
      "item_title": "oswalpalash/linux-kernel-regression-tests",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/oswalpalash/linux-kernel-regression-tests",
      "primary_url": "https://github.com/oswalpalash/linux-kernel-regression-tests",
      "parent_primary_url": "https://github.com/oswalpalash/linux-kernel-regression-tests",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-oswalpalash-linux-kernel-regression-tests-primary-c8fe6974.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# oswalpalash/linux-kernel-regression-tests record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: oswalpalash/linux-kernel-regression-tests resource_label: primary resource_type: code resource_url: https://github.com/oswalpalash/linux-kernel-regression-tests parent_primary_url: https://github.com/oswalpalash/linux-kernel-regression-tests source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/oswalpalash/linux-kernel-regression-tests cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/oswalpalash/linux-kernel-",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/oswalpalash/linux-kernel-regression-tests"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/oswalpalash/linux-kernel-regression-tests"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/oswalpalash/linux-kernel-regression-tests"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tool",
        "testing"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Linux Kernel Regression Tests provide a framework for testing kernel changes.",
      "summary_zh": "Linux Kernel Regression Tests提供了一个测试内核更改的框架。",
      "source_markdown": "https://github.com/oswalpalash/linux-kernel-regression-tests",
      "search_text": "oswalpalash/linux-kernel-regression-tests oswalpalash/linux-kernel-regression-tests    tools assorted tool: assorted primary code https://github.com/oswalpalash/linux-kernel-regression-tests tool testing  tooling linux kernel regression tests provide a framework for testing kernel changes. linux kernel regression tests提供了一个测试内核更改的框架。 # oswalpalash/linux-kernel-regression-tests record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: oswalpalash/linux-kernel-regression-tests resource_label: primary resource_type: code resource_url: https://github.com/oswalpalash/linux-kernel-regression-tests parent_primary_url: https://github.com/oswalpalash/linux-kernel-regression-tests source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/oswalpalash/linux-kernel-regression-tests cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/oswalpalash/linux-kernel- no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ac251dc4c5041320",
      "item_id": "e17c9414c0f2ef3c",
      "slug": "undated-tools-assorted-milabs-kiddy-primary-c3e41ff0",
      "year": null,
      "title": "milabs/kiddy",
      "item_title": "milabs/kiddy",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/milabs/kiddy",
      "primary_url": "https://github.com/milabs/kiddy",
      "parent_primary_url": "https://github.com/milabs/kiddy",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-milabs-kiddy-primary-c3e41ff0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# milabs/kiddy record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: milabs/kiddy resource_label: primary resource_type: code resource_url: https://github.com/milabs/kiddy parent_primary_url: https://github.com/milabs/kiddy source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/milabs/kiddy cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/milabs/kiddy context_links: - [code] primary: https://github.com/milabs/kiddy fetch_status: skipped fetch_note: original URL is preserved; public dataset stores metadata ",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/milabs/kiddy"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/milabs/kiddy"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/milabs/kiddy"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tool",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Kiddy is a tool for kernel exploitation research.",
      "summary_zh": "Kiddy是一个用于内核利用研究的工具。",
      "source_markdown": "https://github.com/milabs/kiddy",
      "search_text": "milabs/kiddy milabs/kiddy    tools assorted tool: assorted primary code https://github.com/milabs/kiddy tool exploitation  tooling kiddy is a tool for kernel exploitation research. kiddy是一个用于内核利用研究的工具。 # milabs/kiddy record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: milabs/kiddy resource_label: primary resource_type: code resource_url: https://github.com/milabs/kiddy parent_primary_url: https://github.com/milabs/kiddy source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/milabs/kiddy cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/milabs/kiddy context_links: - [code] primary: https://github.com/milabs/kiddy fetch_status: skipped fetch_note: original url is preserved; public dataset stores metadata  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "8ede86fe00fd08bc",
      "item_id": "0a5746fb9d19cb4c",
      "slug": "undated-tools-assorted-androidoffsec-art-kernel-toolkit-primary-abd30cc9",
      "year": null,
      "title": "androidoffsec/art-kernel-toolkit",
      "item_title": "androidoffsec/art-kernel-toolkit",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "tool",
      "resource_url": "https://github.com/androidoffsec/art-kernel-toolkit",
      "primary_url": "https://github.com/androidoffsec/art-kernel-toolkit",
      "parent_primary_url": "https://github.com/androidoffsec/art-kernel-toolkit",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-androidoffsec-art-kernel-toolkit-primary-abd30cc9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# androidoffsec/art-kernel-toolkit record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: androidoffsec/art-kernel-toolkit resource_label: primary resource_type: tool resource_url: https://github.com/androidoffsec/art-kernel-toolkit parent_primary_url: https://github.com/androidoffsec/art-kernel-toolkit source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/androidoffsec/art-kernel-toolkit cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/androidoffsec/art-kernel-toolkit context_links: - [tool] primary: http",
      "link_types": [
        "tool"
      ],
      "links": [
        {
          "label": "primary",
          "type": "tool",
          "url": "https://github.com/androidoffsec/art-kernel-toolkit"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "tool",
            "url": "https://github.com/androidoffsec/art-kernel-toolkit"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/androidoffsec/art-kernel-toolkit"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tool",
        "android"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "ART Kernel Toolkit is designed for Android kernel exploitation.",
      "summary_zh": "ART Kernel Toolkit旨在用于Android内核利用。",
      "source_markdown": "https://github.com/androidoffsec/art-kernel-toolkit",
      "search_text": "androidoffsec/art-kernel-toolkit androidoffsec/art-kernel-toolkit    tools assorted tool: assorted primary tool https://github.com/androidoffsec/art-kernel-toolkit tool android  tooling art kernel toolkit is designed for android kernel exploitation. art kernel toolkit旨在用于android内核利用。 # androidoffsec/art-kernel-toolkit record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: androidoffsec/art-kernel-toolkit resource_label: primary resource_type: tool resource_url: https://github.com/androidoffsec/art-kernel-toolkit parent_primary_url: https://github.com/androidoffsec/art-kernel-toolkit source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/androidoffsec/art-kernel-toolkit cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/androidoffsec/art-kernel-toolkit context_links: - [tool] primary: http no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ca4778cea0b81c1b",
      "item_id": "ff0aaa02d621ee63",
      "slug": "undated-tools-assorted-notselwyn-get-sig-primary-3e32c631",
      "year": null,
      "title": "notselwyn/get-sig",
      "item_title": "notselwyn/get-sig",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/notselwyn/get-sig",
      "primary_url": "https://github.com/notselwyn/get-sig",
      "parent_primary_url": "https://github.com/notselwyn/get-sig",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-notselwyn-get-sig-primary-3e32c631.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# notselwyn/get-sig record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: notselwyn/get-sig resource_label: primary resource_type: code resource_url: https://github.com/notselwyn/get-sig parent_primary_url: https://github.com/notselwyn/get-sig source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/notselwyn/get-sig cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/notselwyn/get-sig context_links: - [code] primary: https://github.com/notselwyn/get-sig fetch_status: skipped fetch_note: original URL is preserv",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/notselwyn/get-sig"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/notselwyn/get-sig"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/notselwyn/get-sig"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tool",
        "signature"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Get-Sig is a tool for extracting kernel signatures.",
      "summary_zh": "Get-Sig是一个用于提取内核签名的工具。",
      "source_markdown": "https://github.com/notselwyn/get-sig",
      "search_text": "notselwyn/get-sig notselwyn/get-sig    tools assorted tool: assorted primary code https://github.com/notselwyn/get-sig tool signature  tooling get-sig is a tool for extracting kernel signatures. get-sig是一个用于提取内核签名的工具。 # notselwyn/get-sig record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: notselwyn/get-sig resource_label: primary resource_type: code resource_url: https://github.com/notselwyn/get-sig parent_primary_url: https://github.com/notselwyn/get-sig source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/notselwyn/get-sig cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/notselwyn/get-sig context_links: - [code] primary: https://github.com/notselwyn/get-sig fetch_status: skipped fetch_note: original url is preserv no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ef8e98bd67b9ff74",
      "item_id": "0bd32f499564ddd6",
      "slug": "undated-tools-assorted-gsingh93-linux-exploit-dev-env-primary-bd09f50e",
      "year": null,
      "title": "gsingh93/linux-exploit-dev-env",
      "item_title": "gsingh93/linux-exploit-dev-env",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/gsingh93/linux-exploit-dev-env",
      "primary_url": "https://github.com/gsingh93/linux-exploit-dev-env",
      "parent_primary_url": "https://github.com/gsingh93/linux-exploit-dev-env",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-gsingh93-linux-exploit-dev-env-primary-bd09f50e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# gsingh93/linux-exploit-dev-env record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: gsingh93/linux-exploit-dev-env resource_label: primary resource_type: exploit resource_url: https://github.com/gsingh93/linux-exploit-dev-env parent_primary_url: https://github.com/gsingh93/linux-exploit-dev-env source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/gsingh93/linux-exploit-dev-env cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/gsingh93/linux-exploit-dev-env context_links: - [exploit] primary: https://gith",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/gsingh93/linux-exploit-dev-env"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/gsingh93/linux-exploit-dev-env"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/gsingh93/linux-exploit-dev-env"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "development"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "Linux Exploit Dev Env sets up an environment for developing Linux exploits.",
      "summary_zh": "Linux Exploit Dev Env建立了一个用于开发Linux利用的环境。",
      "source_markdown": "https://github.com/gsingh93/linux-exploit-dev-env",
      "search_text": "gsingh93/linux-exploit-dev-env gsingh93/linux-exploit-dev-env    tools assorted tool: assorted primary exploit https://github.com/gsingh93/linux-exploit-dev-env exploit development  exploit linux exploit dev env sets up an environment for developing linux exploits. linux exploit dev env建立了一个用于开发linux利用的环境。 # gsingh93/linux-exploit-dev-env record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: gsingh93/linux-exploit-dev-env resource_label: primary resource_type: exploit resource_url: https://github.com/gsingh93/linux-exploit-dev-env parent_primary_url: https://github.com/gsingh93/linux-exploit-dev-env source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/gsingh93/linux-exploit-dev-env cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/gsingh93/linux-exploit-dev-env context_links: - [exploit] primary: https://gith no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "860527a18e520488",
      "item_id": "410bba495c5e1c01",
      "slug": "undated-tools-assorted-nus-curiosity-kernjc-primary-6fa9edb4",
      "year": null,
      "title": "NUS-Curiosity/KernJC",
      "item_title": "NUS-Curiosity/KernJC",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/NUS-Curiosity/KernJC",
      "primary_url": "https://github.com/NUS-Curiosity/KernJC",
      "parent_primary_url": "https://github.com/NUS-Curiosity/KernJC",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-nus-curiosity-kernjc-primary-6fa9edb4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# NUS-Curiosity/KernJC record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: NUS-Curiosity/KernJC resource_label: primary resource_type: code resource_url: https://github.com/NUS-Curiosity/KernJC parent_primary_url: https://github.com/NUS-Curiosity/KernJC source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/NUS-Curiosity/KernJC cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/NUS-Curiosity/KernJC context_links: - [code] primary: https://github.com/NUS-Curiosity/KernJC fetch_status: skipped fetch_note: or",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/NUS-Curiosity/KernJC"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/NUS-Curiosity/KernJC"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/NUS-Curiosity/KernJC"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tool",
        "analysis"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "KernJC is a tool for kernel code analysis and manipulation.",
      "summary_zh": "KernJC是一个用于内核代码分析和操作的工具。",
      "source_markdown": "https://github.com/NUS-Curiosity/KernJC",
      "search_text": "nus-curiosity/kernjc nus-curiosity/kernjc    tools assorted tool: assorted primary code https://github.com/nus-curiosity/kernjc tool analysis  tooling kernjc is a tool for kernel code analysis and manipulation. kernjc是一个用于内核代码分析和操作的工具。 # nus-curiosity/kernjc record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: nus-curiosity/kernjc resource_label: primary resource_type: code resource_url: https://github.com/nus-curiosity/kernjc parent_primary_url: https://github.com/nus-curiosity/kernjc source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/nus-curiosity/kernjc cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/nus-curiosity/kernjc context_links: - [code] primary: https://github.com/nus-curiosity/kernjc fetch_status: skipped fetch_note: or no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "61766b0c2bd2b1e5",
      "item_id": "40ad25cf5a717983",
      "slug": "undated-tools-assorted-kconfigs-primary-64a9b8ad",
      "year": null,
      "title": "kconfigs",
      "item_title": "kconfigs",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://oracle.github.io/kconfigs/",
      "primary_url": "https://oracle.github.io/kconfigs/",
      "parent_primary_url": "https://oracle.github.io/kconfigs/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-kconfigs-primary-64a9b8ad.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# kconfigs record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: kconfigs resource_label: primary resource_type: article resource_url: https://oracle.github.io/kconfigs/ parent_primary_url: https://oracle.github.io/kconfigs/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://oracle.github.io/kconfigs/ cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://oracle.github.io/kconfigs/ context_links: - [article] primary: https://oracle.github.io/kconfigs/ fetch_status: skipped fetch_note: original URL is preserved; public dataset sto",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://oracle.github.io/kconfigs/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://oracle.github.io/kconfigs/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://oracle.github.io/kconfigs/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "article",
        "configuration"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Kconfigs provides a guide for kernel configuration management.",
      "summary_zh": "Kconfigs提供了内核配置管理的指南。",
      "source_markdown": "https://oracle.github.io/kconfigs/",
      "search_text": "kconfigs kconfigs    tools assorted tool: assorted primary article https://oracle.github.io/kconfigs/ article configuration  tooling kconfigs provides a guide for kernel configuration management. kconfigs提供了内核配置管理的指南。 # kconfigs record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: kconfigs resource_label: primary resource_type: article resource_url: https://oracle.github.io/kconfigs/ parent_primary_url: https://oracle.github.io/kconfigs/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://oracle.github.io/kconfigs/ cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://oracle.github.io/kconfigs/ context_links: - [article] primary: https://oracle.github.io/kconfigs/ fetch_status: skipped fetch_note: original url is preserved; public dataset sto no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "e24f14d881f6c8d9",
      "item_id": "31a15d389cc558ea",
      "slug": "undated-tools-assorted-google-kernel-research-primary-0c3e60c5",
      "year": null,
      "title": "google/kernel-research",
      "item_title": "google/kernel-research",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/google/kernel-research",
      "primary_url": "https://github.com/google/kernel-research",
      "parent_primary_url": "https://github.com/google/kernel-research",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-google-kernel-research-primary-0c3e60c5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# google/kernel-research record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: google/kernel-research resource_label: primary resource_type: code resource_url: https://github.com/google/kernel-research parent_primary_url: https://github.com/google/kernel-research source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/google/kernel-research cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/google/kernel-research context_links: - [code] primary: https://github.com/google/kernel-research fetch_status: skipped ",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/google/kernel-research"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/google/kernel-research"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/kernel-research"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tool",
        "research"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Google Kernel Research focuses on kernel security and vulnerabilities.",
      "summary_zh": "Google Kernel Research专注于内核安全和漏洞。",
      "source_markdown": "https://github.com/google/kernel-research",
      "search_text": "google/kernel-research google/kernel-research    tools assorted tool: assorted primary code https://github.com/google/kernel-research tool research  tooling google kernel research focuses on kernel security and vulnerabilities. google kernel research专注于内核安全和漏洞。 # google/kernel-research record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: google/kernel-research resource_label: primary resource_type: code resource_url: https://github.com/google/kernel-research parent_primary_url: https://github.com/google/kernel-research source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/google/kernel-research cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/google/kernel-research context_links: - [code] primary: https://github.com/google/kernel-research fetch_status: skipped  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "58cf0e82e9fa1019",
      "item_id": "26a0f2469f8537db",
      "slug": "undated-tools-assorted-bariskizilkaya-ophthalmosmono-primary-91cd746f",
      "year": null,
      "title": "Bariskizilkaya/OphthalmosMono",
      "item_title": "Bariskizilkaya/OphthalmosMono",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/Bariskizilkaya/OphthalmosMono",
      "primary_url": "https://github.com/Bariskizilkaya/OphthalmosMono",
      "parent_primary_url": "https://github.com/Bariskizilkaya/OphthalmosMono",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-bariskizilkaya-ophthalmosmono-primary-91cd746f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Bariskizilkaya/OphthalmosMono record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: Bariskizilkaya/OphthalmosMono resource_label: primary resource_type: code resource_url: https://github.com/Bariskizilkaya/OphthalmosMono parent_primary_url: https://github.com/Bariskizilkaya/OphthalmosMono source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/Bariskizilkaya/OphthalmosMono cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/Bariskizilkaya/OphthalmosMono context_links: - [code] primary: https://github.com/Bar",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/Bariskizilkaya/OphthalmosMono"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/Bariskizilkaya/OphthalmosMono"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Bariskizilkaya/OphthalmosMono"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tool",
        "monitoring"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "OphthalmosMono is a tool for kernel monitoring and analysis.",
      "summary_zh": "OphthalmosMono是一个用于内核监控和分析的工具。",
      "source_markdown": "https://github.com/Bariskizilkaya/OphthalmosMono",
      "search_text": "bariskizilkaya/ophthalmosmono bariskizilkaya/ophthalmosmono    tools assorted tool: assorted primary code https://github.com/bariskizilkaya/ophthalmosmono tool monitoring  tooling ophthalmosmono is a tool for kernel monitoring and analysis. ophthalmosmono是一个用于内核监控和分析的工具。 # bariskizilkaya/ophthalmosmono record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: bariskizilkaya/ophthalmosmono resource_label: primary resource_type: code resource_url: https://github.com/bariskizilkaya/ophthalmosmono parent_primary_url: https://github.com/bariskizilkaya/ophthalmosmono source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/bariskizilkaya/ophthalmosmono cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/bariskizilkaya/ophthalmosmono context_links: - [code] primary: https://github.com/bar no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ecb87de4e1730543",
      "item_id": "0810a5b3a53eed40",
      "slug": "undated-tools-assorted-watch-primary-ee584390",
      "year": null,
      "title": "watch",
      "item_title": "watch",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=QvWtFuQy2r8",
      "primary_url": "https://www.youtube.com/watch?v=QvWtFuQy2r8",
      "parent_primary_url": "https://www.youtube.com/watch?v=QvWtFuQy2r8",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-watch-primary-ee584390.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# watch record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: watch resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=QvWtFuQy2r8 parent_primary_url: https://www.youtube.com/watch?v=QvWtFuQy2r8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/kzall0c/vock [[demo video](https://www.youtube.com/watch?v=QvWtFuQy2r8)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/kzall0c/vock context_links: - [video] primary: https://www.youtube.com/watch?v=QvWtFuQy2r8 - [code]",
      "link_types": [
        "video",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=QvWtFuQy2r8"
        },
        {
          "label": "kzall0c/vock",
          "type": "code",
          "url": "https://github.com/kzall0c/vock"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=QvWtFuQy2r8"
          }
        ],
        "audio": [],
        "code": [
          {
            "label": "kzall0c/vock",
            "type": "code",
            "url": "https://github.com/kzall0c/vock"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/kzall0c/vock"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "video",
        "education"
      ],
      "affected_area": "",
      "exploit_stage": "tooling",
      "summary_en": "Watch is a video resource for kernel exploitation techniques.",
      "summary_zh": "Watch是一个关于内核利用技术的视频资源。",
      "source_markdown": "https://github.com/kzall0c/vock [[demo video](https://www.youtube.com/watch?v=QvWtFuQy2r8)]",
      "search_text": "watch watch    tools assorted tool: assorted primary video https://www.youtube.com/watch?v=qvwtfuqy2r8 video education  tooling watch is a video resource for kernel exploitation techniques. watch是一个关于内核利用技术的视频资源。 # watch record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: watch resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=qvwtfuqy2r8 parent_primary_url: https://www.youtube.com/watch?v=qvwtfuqy2r8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/kzall0c/vock [[demo video](https://www.youtube.com/watch?v=qvwtfuqy2r8)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/kzall0c/vock context_links: - [video] primary: https://www.youtube.com/watch?v=qvwtfuqy2r8 - [code] no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6d14eaac246f8b4d",
      "item_id": "0810a5b3a53eed40",
      "slug": "undated-tools-assorted-watch-kzall0c-vock-f1825d75",
      "year": null,
      "title": "watch · kzall0c/vock",
      "item_title": "watch",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "kzall0c/vock",
      "resource_type": "code",
      "resource_url": "https://github.com/kzall0c/vock",
      "primary_url": "https://github.com/kzall0c/vock",
      "parent_primary_url": "https://www.youtube.com/watch?v=QvWtFuQy2r8",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-watch-kzall0c-vock-f1825d75.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# watch · kzall0c/vock record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: watch resource_label: kzall0c/vock resource_type: code resource_url: https://github.com/kzall0c/vock parent_primary_url: https://www.youtube.com/watch?v=QvWtFuQy2r8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/kzall0c/vock [[demo video](https://www.youtube.com/watch?v=QvWtFuQy2r8)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/kzall0c/vock context_links: - [video] primary: https://www.youtube.com/watch?v=QvWtFuQy2r8 -",
      "link_types": [
        "video",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=QvWtFuQy2r8"
        },
        {
          "label": "kzall0c/vock",
          "type": "code",
          "url": "https://github.com/kzall0c/vock"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=QvWtFuQy2r8"
          }
        ],
        "audio": [],
        "code": [
          {
            "label": "kzall0c/vock",
            "type": "code",
            "url": "https://github.com/kzall0c/vock"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/kzall0c/vock"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "monitoring",
        "kernel",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "tool",
      "summary_en": "A tool for monitoring kernel vulnerabilities and exploits.",
      "summary_zh": "一个用于监控内核漏洞和利用的工具。",
      "source_markdown": "https://github.com/kzall0c/vock [[demo video](https://www.youtube.com/watch?v=QvWtFuQy2r8)]",
      "search_text": "watch · kzall0c/vock watch    tools assorted tool: assorted kzall0c/vock code https://github.com/kzall0c/vock monitoring kernel vulnerability  tool a tool for monitoring kernel vulnerabilities and exploits. 一个用于监控内核漏洞和利用的工具。 # watch · kzall0c/vock record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: watch resource_label: kzall0c/vock resource_type: code resource_url: https://github.com/kzall0c/vock parent_primary_url: https://www.youtube.com/watch?v=qvwtfuqy2r8 source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/kzall0c/vock [[demo video](https://www.youtube.com/watch?v=qvwtfuqy2r8)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/kzall0c/vock context_links: - [video] primary: https://www.youtube.com/watch?v=qvwtfuqy2r8 - no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "9398bd29b5debdc0",
      "item_id": "b34aaf8f3f65b62b",
      "slug": "undated-tools-assorted-bcoles-rootkit-signal-hunter-primary-27e8e402",
      "year": null,
      "title": "bcoles/rootkit-signal-hunter",
      "item_title": "bcoles/rootkit-signal-hunter",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/bcoles/rootkit-signal-hunter",
      "primary_url": "https://github.com/bcoles/rootkit-signal-hunter",
      "parent_primary_url": "https://github.com/bcoles/rootkit-signal-hunter",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-bcoles-rootkit-signal-hunter-primary-27e8e402.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# bcoles/rootkit-signal-hunter record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: bcoles/rootkit-signal-hunter resource_label: primary resource_type: code resource_url: https://github.com/bcoles/rootkit-signal-hunter parent_primary_url: https://github.com/bcoles/rootkit-signal-hunter source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/bcoles/rootkit-signal-hunter cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/bcoles/rootkit-signal-hunter context_links: - [code] primary: https://github.com/bcoles/ro",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/bcoles/rootkit-signal-hunter"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/bcoles/rootkit-signal-hunter"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/bcoles/rootkit-signal-hunter"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "rootkit",
        "detection",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "tool",
      "summary_en": "A tool designed to detect rootkit signals in the kernel.",
      "summary_zh": "一个旨在检测内核中rootkit信号的工具。",
      "source_markdown": "https://github.com/bcoles/rootkit-signal-hunter",
      "search_text": "bcoles/rootkit-signal-hunter bcoles/rootkit-signal-hunter    tools assorted tool: assorted primary code https://github.com/bcoles/rootkit-signal-hunter rootkit detection kernel  tool a tool designed to detect rootkit signals in the kernel. 一个旨在检测内核中rootkit信号的工具。 # bcoles/rootkit-signal-hunter record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: bcoles/rootkit-signal-hunter resource_label: primary resource_type: code resource_url: https://github.com/bcoles/rootkit-signal-hunter parent_primary_url: https://github.com/bcoles/rootkit-signal-hunter source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/bcoles/rootkit-signal-hunter cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/bcoles/rootkit-signal-hunter context_links: - [code] primary: https://github.com/bcoles/ro no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "62105babf5b28565",
      "item_id": "f28329b3c74babba",
      "slug": "undated-tools-assorted-mellow-hype-mt7622-qemu-vm-primary-76c59bf6",
      "year": null,
      "title": "mellow-hype/mt7622-qemu-vm",
      "item_title": "mellow-hype/mt7622-qemu-vm",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/mellow-hype/mt7622-qemu-vm",
      "primary_url": "https://github.com/mellow-hype/mt7622-qemu-vm",
      "parent_primary_url": "https://github.com/mellow-hype/mt7622-qemu-vm",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-mellow-hype-mt7622-qemu-vm-primary-76c59bf6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# mellow-hype/mt7622-qemu-vm record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: mellow-hype/mt7622-qemu-vm resource_label: primary resource_type: code resource_url: https://github.com/mellow-hype/mt7622-qemu-vm parent_primary_url: https://github.com/mellow-hype/mt7622-qemu-vm source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/mellow-hype/mt7622-qemu-vm cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/mellow-hype/mt7622-qemu-vm context_links: - [code] primary: https://github.com/mellow-hype/mt7622-qe",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/mellow-hype/mt7622-qemu-vm"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/mellow-hype/mt7622-qemu-vm"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/mellow-hype/mt7622-qemu-vm"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "virtualization",
        "testing",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "tool",
      "summary_en": "A QEMU virtual machine setup for testing the MT7622 kernel.",
      "summary_zh": "一个用于测试MT7622内核的QEMU虚拟机设置。",
      "source_markdown": "https://github.com/mellow-hype/mt7622-qemu-vm",
      "search_text": "mellow-hype/mt7622-qemu-vm mellow-hype/mt7622-qemu-vm    tools assorted tool: assorted primary code https://github.com/mellow-hype/mt7622-qemu-vm virtualization testing kernel  tool a qemu virtual machine setup for testing the mt7622 kernel. 一个用于测试mt7622内核的qemu虚拟机设置。 # mellow-hype/mt7622-qemu-vm record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: mellow-hype/mt7622-qemu-vm resource_label: primary resource_type: code resource_url: https://github.com/mellow-hype/mt7622-qemu-vm parent_primary_url: https://github.com/mellow-hype/mt7622-qemu-vm source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/mellow-hype/mt7622-qemu-vm cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/mellow-hype/mt7622-qemu-vm context_links: - [code] primary: https://github.com/mellow-hype/mt7622-qe no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "40f1c30505f08e78",
      "item_id": "e1b08ce1dc2f4e1f",
      "slug": "undated-tools-assorted-angr-angrop-primary-baec2e5e",
      "year": null,
      "title": "angr/angrop",
      "item_title": "angr/angrop",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/angr/angrop/blob/master/examples/linux_escape_chain/solve.py",
      "primary_url": "https://github.com/angr/angrop/blob/master/examples/linux_escape_chain/solve.py",
      "parent_primary_url": "https://github.com/angr/angrop/blob/master/examples/linux_escape_chain/solve.py",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-angr-angrop-primary-baec2e5e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# angr/angrop record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: angr/angrop resource_label: primary resource_type: code resource_url: https://github.com/angr/angrop/blob/master/examples/linux_escape_chain/solve.py parent_primary_url: https://github.com/angr/angrop/blob/master/examples/linux_escape_chain/solve.py source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/angr/angrop/blob/master/examples/linux_escape_chain/solve.py cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/angr/angrop/blob/master/exam",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/angr/angrop/blob/master/examples/linux_escape_chain/solve.py"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/angr/angrop/blob/master/examples/linux_escape_chain/solve.py"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/angr/angrop/blob/master/examples/linux_escape_chain/solve.py"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "solving",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "tool",
      "summary_en": "A tool for solving Linux escape chain problems in kernel exploitation.",
      "summary_zh": "一个用于解决内核利用中的Linux逃逸链问题的工具。",
      "source_markdown": "https://github.com/angr/angrop/blob/master/examples/linux_escape_chain/solve.py",
      "search_text": "angr/angrop angr/angrop    tools assorted tool: assorted primary code https://github.com/angr/angrop/blob/master/examples/linux_escape_chain/solve.py exploitation solving kernel  tool a tool for solving linux escape chain problems in kernel exploitation. 一个用于解决内核利用中的linux逃逸链问题的工具。 # angr/angrop record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: angr/angrop resource_label: primary resource_type: code resource_url: https://github.com/angr/angrop/blob/master/examples/linux_escape_chain/solve.py parent_primary_url: https://github.com/angr/angrop/blob/master/examples/linux_escape_chain/solve.py source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/angr/angrop/blob/master/examples/linux_escape_chain/solve.py cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/angr/angrop/blob/master/exam no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "d0c00f8646cba268",
      "item_id": "6906d8b5fc5c417d",
      "slug": "undated-tools-assorted-quic-crash-plugins-primary-5abcc4b8",
      "year": null,
      "title": "quic/crash-plugins",
      "item_title": "quic/crash-plugins",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/quic/crash-plugins",
      "primary_url": "https://github.com/quic/crash-plugins",
      "parent_primary_url": "https://github.com/quic/crash-plugins",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-quic-crash-plugins-primary-5abcc4b8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# quic/crash-plugins record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: quic/crash-plugins resource_label: primary resource_type: code resource_url: https://github.com/quic/crash-plugins parent_primary_url: https://github.com/quic/crash-plugins source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/quic/crash-plugins cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/quic/crash-plugins context_links: - [code] primary: https://github.com/quic/crash-plugins fetch_status: skipped fetch_note: original URL is ",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/quic/crash-plugins"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/quic/crash-plugins"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/quic/crash-plugins"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "crash",
        "testing",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "tool",
      "summary_en": "Plugins for generating crashes to test kernel stability.",
      "summary_zh": "用于生成崩溃以测试内核稳定性的插件。",
      "source_markdown": "https://github.com/quic/crash-plugins",
      "search_text": "quic/crash-plugins quic/crash-plugins    tools assorted tool: assorted primary code https://github.com/quic/crash-plugins crash testing kernel  tool plugins for generating crashes to test kernel stability. 用于生成崩溃以测试内核稳定性的插件。 # quic/crash-plugins record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: quic/crash-plugins resource_label: primary resource_type: code resource_url: https://github.com/quic/crash-plugins parent_primary_url: https://github.com/quic/crash-plugins source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/quic/crash-plugins cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/quic/crash-plugins context_links: - [code] primary: https://github.com/quic/crash-plugins fetch_status: skipped fetch_note: original url is  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b1f9f80b914bfe8c",
      "item_id": "4849dd1d05ef0e66",
      "slug": "undated-tools-assorted-zolutal-kropr-primary-8cea0c40",
      "year": null,
      "title": "zolutal/kropr",
      "item_title": "zolutal/kropr",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/zolutal/kropr",
      "primary_url": "https://github.com/zolutal/kropr",
      "parent_primary_url": "https://github.com/zolutal/kropr",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-zolutal-kropr-primary-8cea0c40.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# zolutal/kropr record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: zolutal/kropr resource_label: primary resource_type: code resource_url: https://github.com/zolutal/kropr parent_primary_url: https://github.com/zolutal/kropr source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/zolutal/kropr cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/zolutal/kropr context_links: - [code] primary: https://github.com/zolutal/kropr fetch_status: skipped fetch_note: original URL is preserved; public dataset stores me",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/zolutal/kropr"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/zolutal/kropr"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/zolutal/kropr"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "privilege",
        "escalation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "tool",
      "summary_en": "A tool for kernel root privilege escalation research.",
      "summary_zh": "一个用于内核root权限提升研究的工具。",
      "source_markdown": "https://github.com/zolutal/kropr",
      "search_text": "zolutal/kropr zolutal/kropr    tools assorted tool: assorted primary code https://github.com/zolutal/kropr privilege escalation kernel  tool a tool for kernel root privilege escalation research. 一个用于内核root权限提升研究的工具。 # zolutal/kropr record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: zolutal/kropr resource_label: primary resource_type: code resource_url: https://github.com/zolutal/kropr parent_primary_url: https://github.com/zolutal/kropr source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/zolutal/kropr cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/zolutal/kropr context_links: - [code] primary: https://github.com/zolutal/kropr fetch_status: skipped fetch_note: original url is preserved; public dataset stores me no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "50495b9433e1712b",
      "item_id": "65ef24093ec2cf3d",
      "slug": "undated-tools-assorted-matheuzsecurity-ksentinel-primary-3a54aa16",
      "year": null,
      "title": "MatheuZSecurity/ksentinel",
      "item_title": "MatheuZSecurity/ksentinel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Tools",
      "subsection": "Assorted",
      "section_path": "Tools / Assorted",
      "category": "Tool: Assorted",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/MatheuZSecurity/ksentinel",
      "primary_url": "https://github.com/MatheuZSecurity/ksentinel",
      "parent_primary_url": "https://github.com/MatheuZSecurity/ksentinel",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#assorted",
      "raw_path": "/raw/undated-tools-assorted-matheuzsecurity-ksentinel-primary-3a54aa16.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# MatheuZSecurity/ksentinel record_kind: linux-kernel-resource-url section: Tools subsection: Assorted category: Tool: Assorted item_title: MatheuZSecurity/ksentinel resource_label: primary resource_type: code resource_url: https://github.com/MatheuZSecurity/ksentinel parent_primary_url: https://github.com/MatheuZSecurity/ksentinel source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/MatheuZSecurity/ksentinel cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/MatheuZSecurity/ksentinel context_links: - [code] primary: https://github.com/MatheuZSecurity/ksentinel f",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/MatheuZSecurity/ksentinel"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/MatheuZSecurity/ksentinel"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/MatheuZSecurity/ksentinel"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "monitoring",
        "security",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "tool",
      "summary_en": "A kernel security monitoring tool for detecting vulnerabilities.",
      "summary_zh": "一个用于检测漏洞的内核安全监控工具。",
      "source_markdown": "https://github.com/MatheuZSecurity/ksentinel",
      "search_text": "matheuzsecurity/ksentinel matheuzsecurity/ksentinel    tools assorted tool: assorted primary code https://github.com/matheuzsecurity/ksentinel monitoring security kernel  tool a kernel security monitoring tool for detecting vulnerabilities. 一个用于检测漏洞的内核安全监控工具。 # matheuzsecurity/ksentinel record_kind: linux-kernel-resource-url section: tools subsection: assorted category: tool: assorted item_title: matheuzsecurity/ksentinel resource_label: primary resource_type: code resource_url: https://github.com/matheuzsecurity/ksentinel parent_primary_url: https://github.com/matheuzsecurity/ksentinel source_section_url: https://github.com/xairy/linux-kernel-exploitation#assorted source_item: https://github.com/matheuzsecurity/ksentinel cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/matheuzsecurity/ksentinel context_links: - [code] primary: https://github.com/matheuzsecurity/ksentinel f no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3d229dfca363e794",
      "item_id": "1b1e5f4717242d2e",
      "slug": "undated-practice-workshops-pwn-college-kernel-security-primary-b7c9fea1",
      "year": null,
      "title": "pwn.college: Kernel Security",
      "item_title": "pwn.college: Kernel Security",
      "authors": [],
      "cves": [],
      "tags": [
        "workshop"
      ],
      "section": "Practice",
      "subsection": "Workshops",
      "section_path": "Practice / Workshops",
      "category": "Practice: Workshops",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://pwn.college/system-security/kernel-security",
      "primary_url": "https://pwn.college/system-security/kernel-security",
      "parent_primary_url": "https://pwn.college/system-security/kernel-security",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#workshops",
      "raw_path": "/raw/undated-practice-workshops-pwn-college-kernel-security-primary-b7c9fea1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# pwn.college: Kernel Security record_kind: linux-kernel-resource-url section: Practice subsection: Workshops category: Practice: Workshops item_title: pwn.college: Kernel Security resource_label: primary resource_type: article resource_url: https://pwn.college/system-security/kernel-security parent_primary_url: https://pwn.college/system-security/kernel-security source_section_url: https://github.com/xairy/linux-kernel-exploitation#workshops source_item: [\"pwn.college: Kernel Security\"](https://pwn.college/system-security/kernel-security) [workshop] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primar",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://pwn.college/system-security/kernel-security"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://pwn.college/system-security/kernel-security"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "workshop",
        "security",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "A workshop focused on kernel security practices.",
      "summary_zh": "一个专注于内核安全实践的研讨会。",
      "source_markdown": "[\"pwn.college: Kernel Security\"](https://pwn.college/system-security/kernel-security) [workshop]",
      "search_text": "pwn.college: kernel security pwn.college: kernel security   workshop practice workshops practice: workshops primary article https://pwn.college/system-security/kernel-security workshop security kernel  practice a workshop focused on kernel security practices. 一个专注于内核安全实践的研讨会。 # pwn.college: kernel security record_kind: linux-kernel-resource-url section: practice subsection: workshops category: practice: workshops item_title: pwn.college: kernel security resource_label: primary resource_type: article resource_url: https://pwn.college/system-security/kernel-security parent_primary_url: https://pwn.college/system-security/kernel-security source_section_url: https://github.com/xairy/linux-kernel-exploitation#workshops source_item: [\"pwn.college: kernel security\"](https://pwn.college/system-security/kernel-security) [workshop] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primar no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1cd993c01d9f3744",
      "item_id": "9c8328f46027e051",
      "slug": "undated-practice-workshops-pwn-college-kernel-exploitation-primary-53ffbb02",
      "year": null,
      "title": "pwn.college: Kernel Exploitation",
      "item_title": "pwn.college: Kernel Exploitation",
      "authors": [],
      "cves": [],
      "tags": [
        "workshop"
      ],
      "section": "Practice",
      "subsection": "Workshops",
      "section_path": "Practice / Workshops",
      "category": "Practice: Workshops",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://pwn.college/software-exploitation/kernel-exploitation/",
      "primary_url": "https://pwn.college/software-exploitation/kernel-exploitation/",
      "parent_primary_url": "https://pwn.college/software-exploitation/kernel-exploitation/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#workshops",
      "raw_path": "/raw/undated-practice-workshops-pwn-college-kernel-exploitation-primary-53ffbb02.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# pwn.college: Kernel Exploitation record_kind: linux-kernel-resource-url section: Practice subsection: Workshops category: Practice: Workshops item_title: pwn.college: Kernel Exploitation resource_label: primary resource_type: exploit resource_url: https://pwn.college/software-exploitation/kernel-exploitation/ parent_primary_url: https://pwn.college/software-exploitation/kernel-exploitation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#workshops source_item: [\"pwn.college: Kernel Exploitation\"](https://pwn.college/software-exploitation/kernel-exploitation/) [workshop] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_ur",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://pwn.college/software-exploitation/kernel-exploitation/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://pwn.college/software-exploitation/kernel-exploitation/"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://pwn.college/software-exploitation/kernel-exploitation/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "workshop",
        "exploitation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "A workshop dedicated to kernel exploitation techniques.",
      "summary_zh": "一个专门针对内核利用技术的研讨会。",
      "source_markdown": "[\"pwn.college: Kernel Exploitation\"](https://pwn.college/software-exploitation/kernel-exploitation/) [workshop]",
      "search_text": "pwn.college: kernel exploitation pwn.college: kernel exploitation   workshop practice workshops practice: workshops primary exploit https://pwn.college/software-exploitation/kernel-exploitation/ workshop exploitation kernel  practice a workshop dedicated to kernel exploitation techniques. 一个专门针对内核利用技术的研讨会。 # pwn.college: kernel exploitation record_kind: linux-kernel-resource-url section: practice subsection: workshops category: practice: workshops item_title: pwn.college: kernel exploitation resource_label: primary resource_type: exploit resource_url: https://pwn.college/software-exploitation/kernel-exploitation/ parent_primary_url: https://pwn.college/software-exploitation/kernel-exploitation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#workshops source_item: [\"pwn.college: kernel exploitation\"](https://pwn.college/software-exploitation/kernel-exploitation/) [workshop] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_ur no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "ec656f9adf4f7cf9",
      "item_id": "f68e662560aeeefb",
      "slug": "2021-practice-workshops-linux-kernel-exploit-development-primary-d96089de",
      "year": 2021,
      "title": "Linux kernel exploit development",
      "item_title": "Linux kernel exploit development",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "Workshops",
      "section_path": "Practice / Workshops",
      "category": "Practice: Workshops",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "workshop",
      "resource_url": "https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development",
      "primary_url": "https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development",
      "parent_primary_url": "https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#workshops",
      "raw_path": "/raw/2021-practice-workshops-linux-kernel-exploit-development-primary-d96089de.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux kernel exploit development record_kind: linux-kernel-resource-url section: Practice subsection: Workshops category: Practice: Workshops item_title: Linux kernel exploit development resource_label: primary resource_type: workshop resource_url: https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development parent_primary_url: https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development source_section_url: https://github.com/xairy/linux-kernel-exploitation#workshops source_item: [2021: \"Linux kernel exploit development\"](https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development) [workshop] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Produc",
      "link_types": [
        "workshop"
      ],
      "links": [
        {
          "label": "primary",
          "type": "workshop",
          "url": "https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "workshop",
            "url": "https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "development",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This workshop covers the development of exploits targeting the Linux kernel.",
      "summary_zh": "本研讨会涵盖了针对Linux内核的漏洞开发。",
      "source_markdown": "[2021: \"Linux kernel exploit development\"](https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development) [workshop]",
      "search_text": "linux kernel exploit development linux kernel exploit development    practice workshops practice: workshops primary workshop https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development exploit development kernel  practice this workshop covers the development of exploits targeting the linux kernel. 本研讨会涵盖了针对linux内核的漏洞开发。 # linux kernel exploit development record_kind: linux-kernel-resource-url section: practice subsection: workshops category: practice: workshops item_title: linux kernel exploit development resource_label: primary resource_type: workshop resource_url: https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development parent_primary_url: https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development source_section_url: https://github.com/xairy/linux-kernel-exploitation#workshops source_item: [2021: \"linux kernel exploit development\"](https://breaking-bits.gitbook.io/breaking-bits/exploit-development/linux-kernel-exploit-development) [workshop] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: produc no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "1c2d18d6cb6a51ed",
      "item_id": "ef62298adb78578c",
      "slug": "2020-practice-workshops-android-kernel-exploitation-primary-518007b4",
      "year": 2020,
      "title": "Android Kernel Exploitation",
      "item_title": "Android Kernel Exploitation",
      "authors": [
        "Ashfaq Ansari"
      ],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "Workshops",
      "section_path": "Practice / Workshops",
      "category": "Practice: Workshops",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "workshop",
      "resource_url": "https://github.com/cloudfuzz/android-kernel-exploitation",
      "primary_url": "https://github.com/cloudfuzz/android-kernel-exploitation",
      "parent_primary_url": "https://github.com/cloudfuzz/android-kernel-exploitation",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#workshops",
      "raw_path": "/raw/2020-practice-workshops-android-kernel-exploitation-primary-518007b4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Android Kernel Exploitation record_kind: linux-kernel-resource-url section: Practice subsection: Workshops category: Practice: Workshops item_title: Android Kernel Exploitation resource_label: primary resource_type: workshop resource_url: https://github.com/cloudfuzz/android-kernel-exploitation parent_primary_url: https://github.com/cloudfuzz/android-kernel-exploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#workshops source_item: [2020: \"Android Kernel Exploitation\" by Ashfaq Ansari](https://github.com/cloudfuzz/android-kernel-exploitation) [workshop] [[video](https://www.youtube.com/watch?v=8ySHpVCYcbk)] cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ",
      "link_types": [
        "workshop",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "workshop",
          "url": "https://github.com/cloudfuzz/android-kernel-exploitation"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=8ySHpVCYcbk"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=8ySHpVCYcbk"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "workshop",
            "url": "https://github.com/cloudfuzz/android-kernel-exploitation"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/cloudfuzz/android-kernel-exploitation"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Android",
        "exploitation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This workshop focuses on exploiting vulnerabilities in the Android kernel.",
      "summary_zh": "本研讨会专注于利用Android内核中的漏洞。",
      "source_markdown": "[2020: \"Android Kernel Exploitation\" by Ashfaq Ansari](https://github.com/cloudfuzz/android-kernel-exploitation) [workshop] [[video](https://www.youtube.com/watch?v=8ySHpVCYcbk)]",
      "search_text": "android kernel exploitation android kernel exploitation ashfaq ansari   practice workshops practice: workshops primary workshop https://github.com/cloudfuzz/android-kernel-exploitation android exploitation kernel  practice this workshop focuses on exploiting vulnerabilities in the android kernel. 本研讨会专注于利用android内核中的漏洞。 # android kernel exploitation record_kind: linux-kernel-resource-url section: practice subsection: workshops category: practice: workshops item_title: android kernel exploitation resource_label: primary resource_type: workshop resource_url: https://github.com/cloudfuzz/android-kernel-exploitation parent_primary_url: https://github.com/cloudfuzz/android-kernel-exploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#workshops source_item: [2020: \"android kernel exploitation\" by ashfaq ansari](https://github.com/cloudfuzz/android-kernel-exploitation) [workshop] [[video](https://www.youtube.com/watch?v=8yshpvcycbk)] cves: none android_impact_status: unknown android_impact_reason: mentions android; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu  unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "06e1f4704f6d4e0b",
      "item_id": "ef62298adb78578c",
      "slug": "2020-practice-workshops-android-kernel-exploitation-video-601131fe",
      "year": 2020,
      "title": "Android Kernel Exploitation · video",
      "item_title": "Android Kernel Exploitation",
      "authors": [
        "Ashfaq Ansari"
      ],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "Workshops",
      "section_path": "Practice / Workshops",
      "category": "Practice: Workshops",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=8ySHpVCYcbk",
      "primary_url": "https://www.youtube.com/watch?v=8ySHpVCYcbk",
      "parent_primary_url": "https://github.com/cloudfuzz/android-kernel-exploitation",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#workshops",
      "raw_path": "/raw/2020-practice-workshops-android-kernel-exploitation-video-601131fe.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Android Kernel Exploitation · video record_kind: linux-kernel-resource-url section: Practice subsection: Workshops category: Practice: Workshops item_title: Android Kernel Exploitation resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=8ySHpVCYcbk parent_primary_url: https://github.com/cloudfuzz/android-kernel-exploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#workshops source_item: [2020: \"Android Kernel Exploitation\" by Ashfaq Ansari](https://github.com/cloudfuzz/android-kernel-exploitation) [workshop] [[video](https://www.youtube.com/watch?v=8ySHpVCYcbk)] cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rat",
      "link_types": [
        "workshop",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "workshop",
          "url": "https://github.com/cloudfuzz/android-kernel-exploitation"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=8ySHpVCYcbk"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=8ySHpVCYcbk"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "workshop",
            "url": "https://github.com/cloudfuzz/android-kernel-exploitation"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/cloudfuzz/android-kernel-exploitation"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Android",
        "exploitation",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This video workshop provides insights into Android kernel exploitation techniques.",
      "summary_zh": "本视频研讨会提供了关于Android内核利用技术的见解。",
      "source_markdown": "[2020: \"Android Kernel Exploitation\" by Ashfaq Ansari](https://github.com/cloudfuzz/android-kernel-exploitation) [workshop] [[video](https://www.youtube.com/watch?v=8ySHpVCYcbk)]",
      "search_text": "android kernel exploitation · video android kernel exploitation ashfaq ansari   practice workshops practice: workshops video video https://www.youtube.com/watch?v=8yshpvcycbk android exploitation video  practice this video workshop provides insights into android kernel exploitation techniques. 本视频研讨会提供了关于android内核利用技术的见解。 # android kernel exploitation · video record_kind: linux-kernel-resource-url section: practice subsection: workshops category: practice: workshops item_title: android kernel exploitation resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=8yshpvcycbk parent_primary_url: https://github.com/cloudfuzz/android-kernel-exploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#workshops source_item: [2020: \"android kernel exploitation\" by ashfaq ansari](https://github.com/cloudfuzz/android-kernel-exploitation) [workshop] [[video](https://www.youtube.com/watch?v=8yshpvcycbk)] cves: none android_impact_status: unknown android_impact_reason: mentions android; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rat unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "1c5c9745f921db2f",
      "item_id": "58d0d8d261b68ed9",
      "slug": "undated-practice-ctf-tasks-github-com-smallkirby-kernelpwn-primary-9e5c8c99",
      "year": null,
      "title": "github.com/smallkirby/kernelpwn",
      "item_title": "github.com/smallkirby/kernelpwn",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/smallkirby/kernelpwn",
      "primary_url": "https://github.com/smallkirby/kernelpwn",
      "parent_primary_url": "https://github.com/smallkirby/kernelpwn",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/undated-practice-ctf-tasks-github-com-smallkirby-kernelpwn-primary-9e5c8c99.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# github.com/smallkirby/kernelpwn record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: github.com/smallkirby/kernelpwn resource_label: primary resource_type: code resource_url: https://github.com/smallkirby/kernelpwn parent_primary_url: https://github.com/smallkirby/kernelpwn source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: [github.com/smallkirby/kernelpwn](https://github.com/smallkirby/kernelpwn) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/smallkirby/kernelpwn context_links: - [code] primary: https://g",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/smallkirby/kernelpwn"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/smallkirby/kernelpwn"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/smallkirby/kernelpwn"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "challenges",
        "exploitation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "A repository containing various kernel exploitation challenges.",
      "summary_zh": "一个包含各种内核利用挑战的库。",
      "source_markdown": "[github.com/smallkirby/kernelpwn](https://github.com/smallkirby/kernelpwn)",
      "search_text": "github.com/smallkirby/kernelpwn github.com/smallkirby/kernelpwn    practice ctf tasks practice: ctf tasks primary code https://github.com/smallkirby/kernelpwn challenges exploitation kernel  practice a repository containing various kernel exploitation challenges. 一个包含各种内核利用挑战的库。 # github.com/smallkirby/kernelpwn record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: github.com/smallkirby/kernelpwn resource_label: primary resource_type: code resource_url: https://github.com/smallkirby/kernelpwn parent_primary_url: https://github.com/smallkirby/kernelpwn source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: [github.com/smallkirby/kernelpwn](https://github.com/smallkirby/kernelpwn) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/smallkirby/kernelpwn context_links: - [code] primary: https://g no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "230e5f96b03e9a87",
      "item_id": "bd26d83950f38864",
      "slug": "undated-practice-ctf-tasks-github-com-maherazzouzi-linuxkernelexploitation-primary-3b0a9058",
      "year": null,
      "title": "github.com/MaherAzzouzi/LinuxKernelExploitation",
      "item_title": "github.com/MaherAzzouzi/LinuxKernelExploitation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/MaherAzzouzi/LinuxKernelExploitation",
      "primary_url": "https://github.com/MaherAzzouzi/LinuxKernelExploitation",
      "parent_primary_url": "https://github.com/MaherAzzouzi/LinuxKernelExploitation",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/undated-practice-ctf-tasks-github-com-maherazzouzi-linuxkernelexploitation-primary-3b0a9058.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# github.com/MaherAzzouzi/LinuxKernelExploitation record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: github.com/MaherAzzouzi/LinuxKernelExploitation resource_label: primary resource_type: exploit resource_url: https://github.com/MaherAzzouzi/LinuxKernelExploitation parent_primary_url: https://github.com/MaherAzzouzi/LinuxKernelExploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: [github.com/MaherAzzouzi/LinuxKernelExploitation](https://github.com/MaherAzzouzi/LinuxKernelExploitation) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: t",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/MaherAzzouzi/LinuxKernelExploitation"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/MaherAzzouzi/LinuxKernelExploitation"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/MaherAzzouzi/LinuxKernelExploitation"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "linux",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "A repository focused on Linux kernel exploitation techniques.",
      "summary_zh": "一个专注于Linux内核利用技术的库。",
      "source_markdown": "[github.com/MaherAzzouzi/LinuxKernelExploitation](https://github.com/MaherAzzouzi/LinuxKernelExploitation)",
      "search_text": "github.com/maherazzouzi/linuxkernelexploitation github.com/maherazzouzi/linuxkernelexploitation    practice ctf tasks practice: ctf tasks primary exploit https://github.com/maherazzouzi/linuxkernelexploitation exploitation linux kernel  practice a repository focused on linux kernel exploitation techniques. 一个专注于linux内核利用技术的库。 # github.com/maherazzouzi/linuxkernelexploitation record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: github.com/maherazzouzi/linuxkernelexploitation resource_label: primary resource_type: exploit resource_url: https://github.com/maherazzouzi/linuxkernelexploitation parent_primary_url: https://github.com/maherazzouzi/linuxkernelexploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: [github.com/maherazzouzi/linuxkernelexploitation](https://github.com/maherazzouzi/linuxkernelexploitation) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: t no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "59bb55431f054d35",
      "item_id": "36258a98d25ab5f7",
      "slug": "undated-practice-ctf-tasks-github-com-aravgarg-kernel-hacking-ctf-challs-primary-29ed8195",
      "year": null,
      "title": "github.com/AravGarg/kernel-hacking/ctf-challs",
      "item_title": "github.com/AravGarg/kernel-hacking/ctf-challs",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/AravGarg/kernel-hacking/tree/master/ctf-challs",
      "primary_url": "https://github.com/AravGarg/kernel-hacking/tree/master/ctf-challs",
      "parent_primary_url": "https://github.com/AravGarg/kernel-hacking/tree/master/ctf-challs",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/undated-practice-ctf-tasks-github-com-aravgarg-kernel-hacking-ctf-challs-primary-29ed8195.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# github.com/AravGarg/kernel-hacking/ctf-challs record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: github.com/AravGarg/kernel-hacking/ctf-challs resource_label: primary resource_type: code resource_url: https://github.com/AravGarg/kernel-hacking/tree/master/ctf-challs parent_primary_url: https://github.com/AravGarg/kernel-hacking/tree/master/ctf-challs source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: [github.com/AravGarg/kernel-hacking/ctf-challs](https://github.com/AravGarg/kernel-hacking/tree/master/ctf-challs) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: fal",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/AravGarg/kernel-hacking/tree/master/ctf-challs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/AravGarg/kernel-hacking/tree/master/ctf-challs"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/AravGarg/kernel-hacking/tree/master/ctf-challs"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "challenges",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "A collection of CTF challenges related to kernel hacking.",
      "summary_zh": "与内核黑客相关的CTF挑战集合。",
      "source_markdown": "[github.com/AravGarg/kernel-hacking/ctf-challs](https://github.com/AravGarg/kernel-hacking/tree/master/ctf-challs)",
      "search_text": "github.com/aravgarg/kernel-hacking/ctf-challs github.com/aravgarg/kernel-hacking/ctf-challs    practice ctf tasks practice: ctf tasks primary code https://github.com/aravgarg/kernel-hacking/tree/master/ctf-challs ctf challenges kernel  practice a collection of ctf challenges related to kernel hacking. 与内核黑客相关的ctf挑战集合。 # github.com/aravgarg/kernel-hacking/ctf-challs record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: github.com/aravgarg/kernel-hacking/ctf-challs resource_label: primary resource_type: code resource_url: https://github.com/aravgarg/kernel-hacking/tree/master/ctf-challs parent_primary_url: https://github.com/aravgarg/kernel-hacking/tree/master/ctf-challs source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: [github.com/aravgarg/kernel-hacking/ctf-challs](https://github.com/aravgarg/kernel-hacking/tree/master/ctf-challs) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: fal no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "814e28a34e68e770",
      "item_id": "0e2b60a0e4f32e68",
      "slug": "undated-practice-ctf-tasks-francescolucarini-linux-kernel-ctf-exploits-primary-05fa326f",
      "year": null,
      "title": "FrancescoLucarini/Linux-Kernel-CTF-exploits",
      "item_title": "FrancescoLucarini/Linux-Kernel-CTF-exploits",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/FrancescoLucarini/Linux-Kernel-CTF-exploits",
      "primary_url": "https://github.com/FrancescoLucarini/Linux-Kernel-CTF-exploits",
      "parent_primary_url": "https://github.com/FrancescoLucarini/Linux-Kernel-CTF-exploits",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/undated-practice-ctf-tasks-francescolucarini-linux-kernel-ctf-exploits-primary-05fa326f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# FrancescoLucarini/Linux-Kernel-CTF-exploits record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: FrancescoLucarini/Linux-Kernel-CTF-exploits resource_label: primary resource_type: exploit resource_url: https://github.com/FrancescoLucarini/Linux-Kernel-CTF-exploits parent_primary_url: https://github.com/FrancescoLucarini/Linux-Kernel-CTF-exploits source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: [FrancescoLucarini/Linux-Kernel-CTF-exploits](https://github.com/FrancescoLucarini/Linux-Kernel-CTF-exploits) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploi",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/FrancescoLucarini/Linux-Kernel-CTF-exploits"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/FrancescoLucarini/Linux-Kernel-CTF-exploits"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/FrancescoLucarini/Linux-Kernel-CTF-exploits"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "exploits",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "A repository of CTF exploits targeting Linux kernel vulnerabilities.",
      "summary_zh": "一个针对Linux内核漏洞的CTF利用库。",
      "source_markdown": "[FrancescoLucarini/Linux-Kernel-CTF-exploits](https://github.com/FrancescoLucarini/Linux-Kernel-CTF-exploits)",
      "search_text": "francescolucarini/linux-kernel-ctf-exploits francescolucarini/linux-kernel-ctf-exploits    practice ctf tasks practice: ctf tasks primary exploit https://github.com/francescolucarini/linux-kernel-ctf-exploits ctf exploits kernel  practice a repository of ctf exploits targeting linux kernel vulnerabilities. 一个针对linux内核漏洞的ctf利用库。 # francescolucarini/linux-kernel-ctf-exploits record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: francescolucarini/linux-kernel-ctf-exploits resource_label: primary resource_type: exploit resource_url: https://github.com/francescolucarini/linux-kernel-ctf-exploits parent_primary_url: https://github.com/francescolucarini/linux-kernel-ctf-exploits source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: [francescolucarini/linux-kernel-ctf-exploits](https://github.com/francescolucarini/linux-kernel-ctf-exploits) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "d0050c52991705a5",
      "item_id": "83ae75537d14c3b9",
      "slug": "undated-practice-ctf-tasks-mephi42-ctf-primary-e926471d",
      "year": null,
      "title": "mephi42/ctf",
      "item_title": "mephi42/ctf",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "ctf",
      "resource_url": "https://github.com/mephi42/ctf",
      "primary_url": "https://github.com/mephi42/ctf",
      "parent_primary_url": "https://github.com/mephi42/ctf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/undated-practice-ctf-tasks-mephi42-ctf-primary-e926471d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# mephi42/ctf record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: mephi42/ctf resource_label: primary resource_type: ctf resource_url: https://github.com/mephi42/ctf parent_primary_url: https://github.com/mephi42/ctf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: [mephi42/ctf](https://github.com/mephi42/ctf) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/mephi42/ctf context_links: - [ctf] primary: https://github.com/mephi42/ctf fetch_status: skipped fetch_note: original URL is preserved; public dataset ",
      "link_types": [
        "ctf"
      ],
      "links": [
        {
          "label": "primary",
          "type": "ctf",
          "url": "https://github.com/mephi42/ctf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "ctf",
            "url": "https://github.com/mephi42/ctf"
          }
        ]
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/mephi42/ctf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "challenges"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "A repository for various CTF challenges.",
      "summary_zh": "一个包含各种CTF挑战的库。",
      "source_markdown": "[mephi42/ctf](https://github.com/mephi42/ctf)",
      "search_text": "mephi42/ctf mephi42/ctf    practice ctf tasks practice: ctf tasks primary ctf https://github.com/mephi42/ctf ctf challenges  practice a repository for various ctf challenges. 一个包含各种ctf挑战的库。 # mephi42/ctf record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: mephi42/ctf resource_label: primary resource_type: ctf resource_url: https://github.com/mephi42/ctf parent_primary_url: https://github.com/mephi42/ctf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: [mephi42/ctf](https://github.com/mephi42/ctf) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/mephi42/ctf context_links: - [ctf] primary: https://github.com/mephi42/ctf fetch_status: skipped fetch_note: original url is preserved; public dataset  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "431390c43c77574d",
      "item_id": "1ceb414a43f0a288",
      "slug": "undated-practice-ctf-tasks-hackthebox-knote-primary-5414149b",
      "year": null,
      "title": "HackTheBox (knote):",
      "item_title": "HackTheBox (knote):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://pwning.tech/knote/",
      "primary_url": "https://pwning.tech/knote/",
      "parent_primary_url": "https://pwning.tech/knote/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/undated-practice-ctf-tasks-hackthebox-knote-primary-5414149b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# HackTheBox (knote): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: HackTheBox (knote): resource_label: primary resource_type: article resource_url: https://pwning.tech/knote/ parent_primary_url: https://pwning.tech/knote/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: HackTheBox (knote): [writeup](https://pwning.tech/knote/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://pwning.tech/knote/ fetch_status: skipped fetch_note: original URL is preserved; public dataset s",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://pwning.tech/knote/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://pwning.tech/knote/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "writeup",
        "CTF",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "A writeup of a HackTheBox kernel exploitation challenge.",
      "summary_zh": "HackTheBox内核利用挑战的写作。",
      "source_markdown": "HackTheBox (knote): [writeup](https://pwning.tech/knote/)",
      "search_text": "hackthebox (knote): hackthebox (knote):    practice ctf tasks practice: ctf tasks primary article https://pwning.tech/knote/ writeup ctf kernel  practice a writeup of a hackthebox kernel exploitation challenge. hackthebox内核利用挑战的写作。 # hackthebox (knote): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: hackthebox (knote): resource_label: primary resource_type: article resource_url: https://pwning.tech/knote/ parent_primary_url: https://pwning.tech/knote/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hackthebox (knote): [writeup](https://pwning.tech/knote/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://pwning.tech/knote/ fetch_status: skipped fetch_note: original url is preserved; public dataset s no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "26b904b45b5d0671",
      "item_id": "f65d72dfe3ce0ccd",
      "slug": "2026-practice-ctf-tasks-dicectf-quals-2026-cornelslop-primary-dcab90b5",
      "year": 2026,
      "title": "DiceCTF Quals 2026 (cornelslop): ,",
      "item_title": "DiceCTF Quals 2026 (cornelslop): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://kqx.io/writeups/cornelslop/",
      "primary_url": "https://kqx.io/writeups/cornelslop/",
      "parent_primary_url": "https://kqx.io/writeups/cornelslop/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2026-practice-ctf-tasks-dicectf-quals-2026-cornelslop-primary-dcab90b5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DiceCTF Quals 2026 (cornelslop): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: DiceCTF Quals 2026 (cornelslop): , resource_label: primary resource_type: article resource_url: https://kqx.io/writeups/cornelslop/ parent_primary_url: https://kqx.io/writeups/cornelslop/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: DiceCTF Quals 2026 (cornelslop): [writeup](https://kqx.io/writeups/cornelslop/), [writeup 2](https://ptr-yudai.hatenablog.com/entry/2026/03/16/174349) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kqx.io/writeups/cornelslop/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://ptr-yudai.hatenablog.com/entry/2026/03/16/174349"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kqx.io/writeups/cornelslop/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://ptr-yudai.hatenablog.com/entry/2026/03/16/174349"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "writeup",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "Writeups for DiceCTF Quals 2026 challenges.",
      "summary_zh": "DiceCTF Quals 2026挑战的写作。",
      "source_markdown": "DiceCTF Quals 2026 (cornelslop): [writeup](https://kqx.io/writeups/cornelslop/), [writeup 2](https://ptr-yudai.hatenablog.com/entry/2026/03/16/174349)",
      "search_text": "dicectf quals 2026 (cornelslop): , dicectf quals 2026 (cornelslop): ,    practice ctf tasks practice: ctf tasks primary article https://kqx.io/writeups/cornelslop/ writeup ctf  practice writeups for dicectf quals 2026 challenges. dicectf quals 2026挑战的写作。 # dicectf quals 2026 (cornelslop): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: dicectf quals 2026 (cornelslop): , resource_label: primary resource_type: article resource_url: https://kqx.io/writeups/cornelslop/ parent_primary_url: https://kqx.io/writeups/cornelslop/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: dicectf quals 2026 (cornelslop): [writeup](https://kqx.io/writeups/cornelslop/), [writeup 2](https://ptr-yudai.hatenablog.com/entry/2026/03/16/174349) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f95f3970f0b8a14a",
      "item_id": "f65d72dfe3ce0ccd",
      "slug": "2026-practice-ctf-tasks-dicectf-quals-2026-cornelslop-writeup-2-97bea4ab",
      "year": 2026,
      "title": "DiceCTF Quals 2026 (cornelslop): , · writeup 2",
      "item_title": "DiceCTF Quals 2026 (cornelslop): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup 2",
      "resource_type": "article",
      "resource_url": "https://ptr-yudai.hatenablog.com/entry/2026/03/16/174349",
      "primary_url": "https://ptr-yudai.hatenablog.com/entry/2026/03/16/174349",
      "parent_primary_url": "https://kqx.io/writeups/cornelslop/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2026-practice-ctf-tasks-dicectf-quals-2026-cornelslop-writeup-2-97bea4ab.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DiceCTF Quals 2026 (cornelslop): , · writeup 2 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: DiceCTF Quals 2026 (cornelslop): , resource_label: writeup 2 resource_type: article resource_url: https://ptr-yudai.hatenablog.com/entry/2026/03/16/174349 parent_primary_url: https://kqx.io/writeups/cornelslop/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: DiceCTF Quals 2026 (cornelslop): [writeup](https://kqx.io/writeups/cornelslop/), [writeup 2](https://ptr-yudai.hatenablog.com/entry/2026/03/16/174349) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kqx.io/writeups/cornelslop/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://ptr-yudai.hatenablog.com/entry/2026/03/16/174349"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kqx.io/writeups/cornelslop/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://ptr-yudai.hatenablog.com/entry/2026/03/16/174349"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "writeup",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "Additional writeups for DiceCTF Quals 2026 challenges.",
      "summary_zh": "DiceCTF Quals 2026挑战的额外写作。",
      "source_markdown": "DiceCTF Quals 2026 (cornelslop): [writeup](https://kqx.io/writeups/cornelslop/), [writeup 2](https://ptr-yudai.hatenablog.com/entry/2026/03/16/174349)",
      "search_text": "dicectf quals 2026 (cornelslop): , · writeup 2 dicectf quals 2026 (cornelslop): ,    practice ctf tasks practice: ctf tasks writeup 2 article https://ptr-yudai.hatenablog.com/entry/2026/03/16/174349 writeup ctf  practice additional writeups for dicectf quals 2026 challenges. dicectf quals 2026挑战的额外写作。 # dicectf quals 2026 (cornelslop): , · writeup 2 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: dicectf quals 2026 (cornelslop): , resource_label: writeup 2 resource_type: article resource_url: https://ptr-yudai.hatenablog.com/entry/2026/03/16/174349 parent_primary_url: https://kqx.io/writeups/cornelslop/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: dicectf quals 2026 (cornelslop): [writeup](https://kqx.io/writeups/cornelslop/), [writeup 2](https://ptr-yudai.hatenablog.com/entry/2026/03/16/174349) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "34c3007df508b8ae",
      "item_id": "5783f8cb0c9bd7e5",
      "slug": "2026-practice-ctf-tasks-trx-ctf-quals-2026-krwd-primary-2ab19b82",
      "year": 2026,
      "title": "TRX CTF Quals 2026 (krwd):",
      "item_title": "TRX CTF Quals 2026 (krwd):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://kqx.io/writeups/krwd/",
      "primary_url": "https://kqx.io/writeups/krwd/",
      "parent_primary_url": "https://kqx.io/writeups/krwd/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2026-practice-ctf-tasks-trx-ctf-quals-2026-krwd-primary-2ab19b82.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TRX CTF Quals 2026 (krwd): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: TRX CTF Quals 2026 (krwd): resource_label: primary resource_type: article resource_url: https://kqx.io/writeups/krwd/ parent_primary_url: https://kqx.io/writeups/krwd/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: TRX CTF Quals 2026 (krwd): [writeup](https://kqx.io/writeups/krwd/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://kqx.io/writeups/krwd/ fetch_status: skipped fetch_note: original U",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kqx.io/writeups/krwd/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kqx.io/writeups/krwd/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "writeup",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "A writeup for TRX CTF Quals 2026 challenges.",
      "summary_zh": "TRX CTF Quals 2026挑战的写作。",
      "source_markdown": "TRX CTF Quals 2026 (krwd): [writeup](https://kqx.io/writeups/krwd/)",
      "search_text": "trx ctf quals 2026 (krwd): trx ctf quals 2026 (krwd):    practice ctf tasks practice: ctf tasks primary article https://kqx.io/writeups/krwd/ writeup ctf  practice a writeup for trx ctf quals 2026 challenges. trx ctf quals 2026挑战的写作。 # trx ctf quals 2026 (krwd): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: trx ctf quals 2026 (krwd): resource_label: primary resource_type: article resource_url: https://kqx.io/writeups/krwd/ parent_primary_url: https://kqx.io/writeups/krwd/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: trx ctf quals 2026 (krwd): [writeup](https://kqx.io/writeups/krwd/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://kqx.io/writeups/krwd/ fetch_status: skipped fetch_note: original u no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b4110f16e9bdfa09",
      "item_id": "f72093af2c389622",
      "slug": "2026-practice-ctf-tasks-trx-ctf-quals-2026-baby-smallest-primary-300f609b",
      "year": 2026,
      "title": "TRX CTF Quals 2026 (baby_smallest):",
      "item_title": "TRX CTF Quals 2026 (baby_smallest):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://kqx.io/writeups/baby_smallest/",
      "primary_url": "https://kqx.io/writeups/baby_smallest/",
      "parent_primary_url": "https://kqx.io/writeups/baby_smallest/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2026-practice-ctf-tasks-trx-ctf-quals-2026-baby-smallest-primary-300f609b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TRX CTF Quals 2026 (baby_smallest): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: TRX CTF Quals 2026 (baby_smallest): resource_label: primary resource_type: article resource_url: https://kqx.io/writeups/baby_smallest/ parent_primary_url: https://kqx.io/writeups/baby_smallest/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: TRX CTF Quals 2026 (baby_smallest): [writeup](https://kqx.io/writeups/baby_smallest/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://kqx.io/write",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kqx.io/writeups/baby_smallest/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kqx.io/writeups/baby_smallest/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "writeup",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "A writeup for TRX CTF Quals 2026 challenges.",
      "summary_zh": "TRX CTF Quals 2026挑战的写作。",
      "source_markdown": "TRX CTF Quals 2026 (baby_smallest): [writeup](https://kqx.io/writeups/baby_smallest/)",
      "search_text": "trx ctf quals 2026 (baby_smallest): trx ctf quals 2026 (baby_smallest):    practice ctf tasks practice: ctf tasks primary article https://kqx.io/writeups/baby_smallest/ writeup ctf  practice a writeup for trx ctf quals 2026 challenges. trx ctf quals 2026挑战的写作。 # trx ctf quals 2026 (baby_smallest): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: trx ctf quals 2026 (baby_smallest): resource_label: primary resource_type: article resource_url: https://kqx.io/writeups/baby_smallest/ parent_primary_url: https://kqx.io/writeups/baby_smallest/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: trx ctf quals 2026 (baby_smallest): [writeup](https://kqx.io/writeups/baby_smallest/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://kqx.io/write no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7f9607498fb9a309",
      "item_id": "1fde0391775a52cc",
      "slug": "2025-practice-ctf-tasks-asis-ctf-2025-fileno-primary-ee0568fd",
      "year": 2025,
      "title": "ASIS CTF 2025 (FileNo):",
      "item_title": "ASIS CTF 2025 (FileNo):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://kqx.io/writeups/fileno/",
      "primary_url": "https://kqx.io/writeups/fileno/",
      "parent_primary_url": "https://kqx.io/writeups/fileno/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2025-practice-ctf-tasks-asis-ctf-2025-fileno-primary-ee0568fd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ASIS CTF 2025 (FileNo): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: ASIS CTF 2025 (FileNo): resource_label: primary resource_type: article resource_url: https://kqx.io/writeups/fileno/ parent_primary_url: https://kqx.io/writeups/fileno/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: ASIS CTF 2025 (FileNo): [writeup](https://kqx.io/writeups/fileno/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://kqx.io/writeups/fileno/ fetch_status: skipped fetch_note: original UR",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kqx.io/writeups/fileno/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kqx.io/writeups/fileno/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "writeup",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "A writeup for ASIS CTF 2025 challenges.",
      "summary_zh": "ASIS CTF 2025挑战的写作。",
      "source_markdown": "ASIS CTF 2025 (FileNo): [writeup](https://kqx.io/writeups/fileno/)",
      "search_text": "asis ctf 2025 (fileno): asis ctf 2025 (fileno):    practice ctf tasks practice: ctf tasks primary article https://kqx.io/writeups/fileno/ writeup ctf  practice a writeup for asis ctf 2025 challenges. asis ctf 2025挑战的写作。 # asis ctf 2025 (fileno): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: asis ctf 2025 (fileno): resource_label: primary resource_type: article resource_url: https://kqx.io/writeups/fileno/ parent_primary_url: https://kqx.io/writeups/fileno/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: asis ctf 2025 (fileno): [writeup](https://kqx.io/writeups/fileno/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://kqx.io/writeups/fileno/ fetch_status: skipped fetch_note: original ur no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ec8d93a78f6edb5a",
      "item_id": "4a9c3141caff4d66",
      "slug": "2025-practice-ctf-tasks-trxctf-2025-dev-mem-primary-54efbdee",
      "year": 2025,
      "title": "TRXCTF 2025 (/dev/mem):",
      "item_title": "TRXCTF 2025 (/dev/mem):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://kqx.io/writeups/dev_mem/",
      "primary_url": "https://kqx.io/writeups/dev_mem/",
      "parent_primary_url": "https://kqx.io/writeups/dev_mem/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2025-practice-ctf-tasks-trxctf-2025-dev-mem-primary-54efbdee.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TRXCTF 2025 (/dev/mem): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: TRXCTF 2025 (/dev/mem): resource_label: primary resource_type: article resource_url: https://kqx.io/writeups/dev_mem/ parent_primary_url: https://kqx.io/writeups/dev_mem/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: TRXCTF 2025 (/dev/mem): [writeup](https://kqx.io/writeups/dev_mem/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://kqx.io/writeups/dev_mem/ fetch_status: skipped fetch_note: origina",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kqx.io/writeups/dev_mem/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kqx.io/writeups/dev_mem/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "dev_mem"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup discusses a challenge involving the /dev/mem interface in a CTF context.",
      "summary_zh": "该写作讨论了在CTF环境中涉及/dev/mem接口的挑战。",
      "source_markdown": "TRXCTF 2025 (/dev/mem): [writeup](https://kqx.io/writeups/dev_mem/)",
      "search_text": "trxctf 2025 (/dev/mem): trxctf 2025 (/dev/mem):    practice ctf tasks practice: ctf tasks primary article https://kqx.io/writeups/dev_mem/ ctf dev_mem  practice this writeup discusses a challenge involving the /dev/mem interface in a ctf context. 该写作讨论了在ctf环境中涉及/dev/mem接口的挑战。 # trxctf 2025 (/dev/mem): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: trxctf 2025 (/dev/mem): resource_label: primary resource_type: article resource_url: https://kqx.io/writeups/dev_mem/ parent_primary_url: https://kqx.io/writeups/dev_mem/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: trxctf 2025 (/dev/mem): [writeup](https://kqx.io/writeups/dev_mem/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://kqx.io/writeups/dev_mem/ fetch_status: skipped fetch_note: origina no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6416b44819b843f9",
      "item_id": "ac925e7b6802a7a2",
      "slug": "2025-practice-ctf-tasks-trxctf-2025-baby-small-primary-cc8cc2f8",
      "year": 2025,
      "title": "TRXCTF 2025 (baby_small):",
      "item_title": "TRXCTF 2025 (baby_small):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://kqx.io/writeups/baby_small/",
      "primary_url": "https://kqx.io/writeups/baby_small/",
      "parent_primary_url": "https://kqx.io/writeups/baby_small/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2025-practice-ctf-tasks-trxctf-2025-baby-small-primary-cc8cc2f8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TRXCTF 2025 (baby_small): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: TRXCTF 2025 (baby_small): resource_label: primary resource_type: article resource_url: https://kqx.io/writeups/baby_small/ parent_primary_url: https://kqx.io/writeups/baby_small/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: TRXCTF 2025 (baby_small): [writeup](https://kqx.io/writeups/baby_small/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://kqx.io/writeups/baby_small/ fetch_status: skipped f",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kqx.io/writeups/baby_small/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kqx.io/writeups/baby_small/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "baby_small"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup covers a CTF challenge named baby_small.",
      "summary_zh": "该写作涵盖了一个名为baby_small的CTF挑战。",
      "source_markdown": "TRXCTF 2025 (baby_small): [writeup](https://kqx.io/writeups/baby_small/)",
      "search_text": "trxctf 2025 (baby_small): trxctf 2025 (baby_small):    practice ctf tasks practice: ctf tasks primary article https://kqx.io/writeups/baby_small/ ctf baby_small  practice this writeup covers a ctf challenge named baby_small. 该写作涵盖了一个名为baby_small的ctf挑战。 # trxctf 2025 (baby_small): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: trxctf 2025 (baby_small): resource_label: primary resource_type: article resource_url: https://kqx.io/writeups/baby_small/ parent_primary_url: https://kqx.io/writeups/baby_small/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: trxctf 2025 (baby_small): [writeup](https://kqx.io/writeups/baby_small/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://kqx.io/writeups/baby_small/ fetch_status: skipped f no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "04309276ee927b01",
      "item_id": "c7e71a6fad623bd7",
      "slug": "2025-practice-ctf-tasks-tohctf-2025-krwx-primary-684f8af0",
      "year": 2025,
      "title": "ToHCTF 2025 (krwx):",
      "item_title": "ToHCTF 2025 (krwx):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://kqx.io/writeups/krwx/",
      "primary_url": "https://kqx.io/writeups/krwx/",
      "parent_primary_url": "https://kqx.io/writeups/krwx/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2025-practice-ctf-tasks-tohctf-2025-krwx-primary-684f8af0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ToHCTF 2025 (krwx): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: ToHCTF 2025 (krwx): resource_label: primary resource_type: article resource_url: https://kqx.io/writeups/krwx/ parent_primary_url: https://kqx.io/writeups/krwx/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: ToHCTF 2025 (krwx): [writeup](https://kqx.io/writeups/krwx/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://kqx.io/writeups/krwx/ fetch_status: skipped fetch_note: original URL is preserved; publ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kqx.io/writeups/krwx/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kqx.io/writeups/krwx/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "krwx"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup details a CTF challenge called krwx.",
      "summary_zh": "该写作详细介绍了一个名为krwx的CTF挑战。",
      "source_markdown": "ToHCTF 2025 (krwx): [writeup](https://kqx.io/writeups/krwx/)",
      "search_text": "tohctf 2025 (krwx): tohctf 2025 (krwx):    practice ctf tasks practice: ctf tasks primary article https://kqx.io/writeups/krwx/ ctf krwx  practice this writeup details a ctf challenge called krwx. 该写作详细介绍了一个名为krwx的ctf挑战。 # tohctf 2025 (krwx): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: tohctf 2025 (krwx): resource_label: primary resource_type: article resource_url: https://kqx.io/writeups/krwx/ parent_primary_url: https://kqx.io/writeups/krwx/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: tohctf 2025 (krwx): [writeup](https://kqx.io/writeups/krwx/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://kqx.io/writeups/krwx/ fetch_status: skipped fetch_note: original url is preserved; publ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "15c98523817ffa49",
      "item_id": "02b7b1211d3e1151",
      "slug": "2025-practice-ctf-tasks-backdoor-ctf-2025-vibe-kode-primary-74c15f82",
      "year": 2025,
      "title": "backdoor CTF 2025 (vibe-kode):",
      "item_title": "backdoor CTF 2025 (vibe-kode):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://kqx.io/writeups/vibe_kode/",
      "primary_url": "https://kqx.io/writeups/vibe_kode/",
      "parent_primary_url": "https://kqx.io/writeups/vibe_kode/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2025-practice-ctf-tasks-backdoor-ctf-2025-vibe-kode-primary-74c15f82.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# backdoor CTF 2025 (vibe-kode): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: backdoor CTF 2025 (vibe-kode): resource_label: primary resource_type: article resource_url: https://kqx.io/writeups/vibe_kode/ parent_primary_url: https://kqx.io/writeups/vibe_kode/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: backdoor CTF 2025 (vibe-kode): [writeup](https://kqx.io/writeups/vibe_kode/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://kqx.io/writeups/vibe_kode/ fetch_status",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kqx.io/writeups/vibe_kode/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kqx.io/writeups/vibe_kode/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "vibe_kode"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup presents a CTF challenge titled vibe-kode.",
      "summary_zh": "该写作展示了一个名为vibe-kode的CTF挑战。",
      "source_markdown": "backdoor CTF 2025 (vibe-kode): [writeup](https://kqx.io/writeups/vibe_kode/)",
      "search_text": "backdoor ctf 2025 (vibe-kode): backdoor ctf 2025 (vibe-kode):    practice ctf tasks practice: ctf tasks primary article https://kqx.io/writeups/vibe_kode/ ctf vibe_kode  practice this writeup presents a ctf challenge titled vibe-kode. 该写作展示了一个名为vibe-kode的ctf挑战。 # backdoor ctf 2025 (vibe-kode): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: backdoor ctf 2025 (vibe-kode): resource_label: primary resource_type: article resource_url: https://kqx.io/writeups/vibe_kode/ parent_primary_url: https://kqx.io/writeups/vibe_kode/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: backdoor ctf 2025 (vibe-kode): [writeup](https://kqx.io/writeups/vibe_kode/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://kqx.io/writeups/vibe_kode/ fetch_status no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b7033c7ab0d961c3",
      "item_id": "478a8268b6bab91d",
      "slug": "2025-practice-ctf-tasks-wmctf-2025-wm-easyker-primary-c91f9b4c",
      "year": 2025,
      "title": "WMCTF 2025 (wm_easyker):",
      "item_title": "WMCTF 2025 (wm_easyker):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.xmcve.com/2025/09/22/WMCTF2025-Writeup/#title-5",
      "primary_url": "https://blog.xmcve.com/2025/09/22/WMCTF2025-Writeup/#title-5",
      "parent_primary_url": "https://blog.xmcve.com/2025/09/22/WMCTF2025-Writeup/#title-5",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2025-practice-ctf-tasks-wmctf-2025-wm-easyker-primary-c91f9b4c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# WMCTF 2025 (wm_easyker): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: WMCTF 2025 (wm_easyker): resource_label: primary resource_type: article resource_url: https://blog.xmcve.com/2025/09/22/WMCTF2025-Writeup/#title-5 parent_primary_url: https://blog.xmcve.com/2025/09/22/WMCTF2025-Writeup/#title-5 source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: WMCTF 2025 (wm_easyker): [writeup](https://blog.xmcve.com/2025/09/22/WMCTF2025-Writeup/#title-5) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [artic",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.xmcve.com/2025/09/22/WMCTF2025-Writeup/#title-5"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.xmcve.com/2025/09/22/WMCTF2025-Writeup/#title-5"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "wm_easyker"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup discusses the wm_easyker challenge in a CTF event.",
      "summary_zh": "该写作讨论了CTF事件中的wm_easyker挑战。",
      "source_markdown": "WMCTF 2025 (wm_easyker): [writeup](https://blog.xmcve.com/2025/09/22/WMCTF2025-Writeup/#title-5)",
      "search_text": "wmctf 2025 (wm_easyker): wmctf 2025 (wm_easyker):    practice ctf tasks practice: ctf tasks primary article https://blog.xmcve.com/2025/09/22/wmctf2025-writeup/#title-5 ctf wm_easyker  practice this writeup discusses the wm_easyker challenge in a ctf event. 该写作讨论了ctf事件中的wm_easyker挑战。 # wmctf 2025 (wm_easyker): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: wmctf 2025 (wm_easyker): resource_label: primary resource_type: article resource_url: https://blog.xmcve.com/2025/09/22/wmctf2025-writeup/#title-5 parent_primary_url: https://blog.xmcve.com/2025/09/22/wmctf2025-writeup/#title-5 source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: wmctf 2025 (wm_easyker): [writeup](https://blog.xmcve.com/2025/09/22/wmctf2025-writeup/#title-5) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [artic no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ce40823fd245c1bc",
      "item_id": "5c7fbfc94e7d0cfc",
      "slug": "2025-practice-ctf-tasks-star-labs-summer-pwnables-2025-paradox-engine-primary-0eeecfe4",
      "year": 2025,
      "title": "STAR Labs Summer Pwnables 2025 (paradox_engine):",
      "item_title": "STAR Labs Summer Pwnables 2025 (paradox_engine):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/09/01/starlabs-summer-pwnables-linux-kernel-challenge-writeup.html",
      "primary_url": "https://u1f383.github.io/linux/2025/09/01/starlabs-summer-pwnables-linux-kernel-challenge-writeup.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/09/01/starlabs-summer-pwnables-linux-kernel-challenge-writeup.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2025-practice-ctf-tasks-star-labs-summer-pwnables-2025-paradox-engine-primary-0eeecfe4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# STAR Labs Summer Pwnables 2025 (paradox_engine): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: STAR Labs Summer Pwnables 2025 (paradox_engine): resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/09/01/starlabs-summer-pwnables-linux-kernel-challenge-writeup.html parent_primary_url: https://u1f383.github.io/linux/2025/09/01/starlabs-summer-pwnables-linux-kernel-challenge-writeup.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: STAR Labs Summer Pwnables 2025 (paradox_engine): [writeup](https://u1f383.github.io/linux/2025/09/01/starlabs-summer-pwnables-linux-kernel-challenge-writeup.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. io",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/09/01/starlabs-summer-pwnables-linux-kernel-challenge-writeup.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/09/01/starlabs-summer-pwnables-linux-kernel-challenge-writeup.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/09/01/starlabs-summer-pwnables-linux-kernel-challenge-writeup.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "paradox_engine"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup covers the paradox_engine challenge from STAR Labs Summer Pwnables.",
      "summary_zh": "该写作涵盖了STAR Labs Summer Pwnables中的paradox_engine挑战。",
      "source_markdown": "STAR Labs Summer Pwnables 2025 (paradox_engine): [writeup](https://u1f383.github.io/linux/2025/09/01/starlabs-summer-pwnables-linux-kernel-challenge-writeup.html)",
      "search_text": "star labs summer pwnables 2025 (paradox_engine): star labs summer pwnables 2025 (paradox_engine):    practice ctf tasks practice: ctf tasks primary article https://u1f383.github.io/linux/2025/09/01/starlabs-summer-pwnables-linux-kernel-challenge-writeup.html ctf paradox_engine  practice this writeup covers the paradox_engine challenge from star labs summer pwnables. 该写作涵盖了star labs summer pwnables中的paradox_engine挑战。 # star labs summer pwnables 2025 (paradox_engine): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: star labs summer pwnables 2025 (paradox_engine): resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/09/01/starlabs-summer-pwnables-linux-kernel-challenge-writeup.html parent_primary_url: https://u1f383.github.io/linux/2025/09/01/starlabs-summer-pwnables-linux-kernel-challenge-writeup.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: star labs summer pwnables 2025 (paradox_engine): [writeup](https://u1f383.github.io/linux/2025/09/01/starlabs-summer-pwnables-linux-kernel-challenge-writeup.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. io no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "aaea0adcef614732",
      "item_id": "97a61085bfc148eb",
      "slug": "2025-practice-ctf-tasks-blackhat-mea-2025-quals-kinc-primary-5e19d69c",
      "year": 2025,
      "title": "BlackHat MEA 2025 Quals (Kinc): ,",
      "item_title": "BlackHat MEA 2025 Quals (Kinc): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326",
      "primary_url": "https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326",
      "parent_primary_url": "https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2025-practice-ctf-tasks-blackhat-mea-2025-quals-kinc-primary-5e19d69c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BlackHat MEA 2025 Quals (Kinc): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: BlackHat MEA 2025 Quals (Kinc): , resource_label: primary resource_type: article resource_url: https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326 parent_primary_url: https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326 source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: BlackHat MEA 2025 Quals (Kinc): [writeup1](https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326), [writeup 2](https://blog.bushwhackers.ru/blackhat-mea-ctf-qualification-kinc/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://blog.bushwhackers.ru/blackhat-mea-ctf-qualification-kinc/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://blog.bushwhackers.ru/blackhat-mea-ctf-qualification-kinc/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "Kinc"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup presents the Kinc challenge from BlackHat MEA 2025 Quals.",
      "summary_zh": "该写作展示了BlackHat MEA 2025 Quals中的Kinc挑战。",
      "source_markdown": "BlackHat MEA 2025 Quals (Kinc): [writeup1](https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326), [writeup 2](https://blog.bushwhackers.ru/blackhat-mea-ctf-qualification-kinc/)",
      "search_text": "blackhat mea 2025 quals (kinc): , blackhat mea 2025 quals (kinc): ,    practice ctf tasks practice: ctf tasks primary article https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326 ctf kinc  practice this writeup presents the kinc challenge from blackhat mea 2025 quals. 该写作展示了blackhat mea 2025 quals中的kinc挑战。 # blackhat mea 2025 quals (kinc): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: blackhat mea 2025 quals (kinc): , resource_label: primary resource_type: article resource_url: https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326 parent_primary_url: https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326 source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: blackhat mea 2025 quals (kinc): [writeup1](https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326), [writeup 2](https://blog.bushwhackers.ru/blackhat-mea-ctf-qualification-kinc/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux.  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4bc67cd3870a3432",
      "item_id": "97a61085bfc148eb",
      "slug": "2025-practice-ctf-tasks-blackhat-mea-2025-quals-kinc-writeup-2-a6ae0f55",
      "year": 2025,
      "title": "BlackHat MEA 2025 Quals (Kinc): , · writeup 2",
      "item_title": "BlackHat MEA 2025 Quals (Kinc): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup 2",
      "resource_type": "article",
      "resource_url": "https://blog.bushwhackers.ru/blackhat-mea-ctf-qualification-kinc/",
      "primary_url": "https://blog.bushwhackers.ru/blackhat-mea-ctf-qualification-kinc/",
      "parent_primary_url": "https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2025-practice-ctf-tasks-blackhat-mea-2025-quals-kinc-writeup-2-a6ae0f55.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BlackHat MEA 2025 Quals (Kinc): , · writeup 2 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: BlackHat MEA 2025 Quals (Kinc): , resource_label: writeup 2 resource_type: article resource_url: https://blog.bushwhackers.ru/blackhat-mea-ctf-qualification-kinc/ parent_primary_url: https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326 source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: BlackHat MEA 2025 Quals (Kinc): [writeup1](https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326), [writeup 2](https://blog.bushwhackers.ru/blackhat-mea-ctf-qualification-kinc/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ker",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://blog.bushwhackers.ru/blackhat-mea-ctf-qualification-kinc/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://blog.bushwhackers.ru/blackhat-mea-ctf-qualification-kinc/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "Kinc"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup provides insights into the Kinc challenge from BlackHat MEA 2025 Quals.",
      "summary_zh": "该写作提供了关于BlackHat MEA 2025 Quals中Kinc挑战的见解。",
      "source_markdown": "BlackHat MEA 2025 Quals (Kinc): [writeup1](https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326), [writeup 2](https://blog.bushwhackers.ru/blackhat-mea-ctf-qualification-kinc/)",
      "search_text": "blackhat mea 2025 quals (kinc): , · writeup 2 blackhat mea 2025 quals (kinc): ,    practice ctf tasks practice: ctf tasks writeup 2 article https://blog.bushwhackers.ru/blackhat-mea-ctf-qualification-kinc/ ctf kinc  practice this writeup provides insights into the kinc challenge from blackhat mea 2025 quals. 该写作提供了关于blackhat mea 2025 quals中kinc挑战的见解。 # blackhat mea 2025 quals (kinc): , · writeup 2 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: blackhat mea 2025 quals (kinc): , resource_label: writeup 2 resource_type: article resource_url: https://blog.bushwhackers.ru/blackhat-mea-ctf-qualification-kinc/ parent_primary_url: https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326 source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: blackhat mea 2025 quals (kinc): [writeup1](https://ptr-yudai.hatenablog.com/entry/2025/09/14/180326), [writeup 2](https://blog.bushwhackers.ru/blackhat-mea-ctf-qualification-kinc/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu ker no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "59fb487d1fa23c8b",
      "item_id": "e799067183ca35de",
      "slug": "2025-practice-ctf-tasks-corctf-2025-corphone-primary-2da823b4",
      "year": 2025,
      "title": "corCTF 2025 (corphone):",
      "item_title": "corCTF 2025 (corphone):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/android/2025/09/08/corCTF-2025-corphone.html",
      "primary_url": "https://u1f383.github.io/android/2025/09/08/corCTF-2025-corphone.html",
      "parent_primary_url": "https://u1f383.github.io/android/2025/09/08/corCTF-2025-corphone.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2025-practice-ctf-tasks-corctf-2025-corphone-primary-2da823b4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# corCTF 2025 (corphone): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: corCTF 2025 (corphone): resource_label: primary resource_type: article resource_url: https://u1f383.github.io/android/2025/09/08/corCTF-2025-corphone.html parent_primary_url: https://u1f383.github.io/android/2025/09/08/corCTF-2025-corphone.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corCTF 2025 (corphone): [writeup](https://u1f383.github.io/android/2025/09/08/corCTF-2025-corphone.html) cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false h",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/android/2025/09/08/corCTF-2025-corphone.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/android/2025/09/08/corCTF-2025-corphone.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/android/2025/09/08/corCTF-2025-corphone.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "corphone"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup discusses the corphone challenge from corCTF 2025.",
      "summary_zh": "该写作讨论了corCTF 2025中的corphone挑战。",
      "source_markdown": "corCTF 2025 (corphone): [writeup](https://u1f383.github.io/android/2025/09/08/corCTF-2025-corphone.html)",
      "search_text": "corctf 2025 (corphone): corctf 2025 (corphone):    practice ctf tasks practice: ctf tasks primary article https://u1f383.github.io/android/2025/09/08/corctf-2025-corphone.html ctf corphone  practice this writeup discusses the corphone challenge from corctf 2025. 该写作讨论了corctf 2025中的corphone挑战。 # corctf 2025 (corphone): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: corctf 2025 (corphone): resource_label: primary resource_type: article resource_url: https://u1f383.github.io/android/2025/09/08/corctf-2025-corphone.html parent_primary_url: https://u1f383.github.io/android/2025/09/08/corctf-2025-corphone.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corctf 2025 (corphone): [writeup](https://u1f383.github.io/android/2025/09/08/corctf-2025-corphone.html) cves: none android_impact_status: unknown android_impact_reason: mentions android; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false h unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "7d20c7272e2e004f",
      "item_id": "668fa50db918d215",
      "slug": "2025-practice-ctf-tasks-mctf-2025-sec-mem-primary-c8bd81f2",
      "year": 2025,
      "title": "MCTF 2025 (Sec Mem):",
      "item_title": "MCTF 2025 (Sec Mem):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.itarow.xyz/posts/mctf_2025_sec_mem/",
      "primary_url": "https://blog.itarow.xyz/posts/mctf_2025_sec_mem/",
      "parent_primary_url": "https://blog.itarow.xyz/posts/mctf_2025_sec_mem/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2025-practice-ctf-tasks-mctf-2025-sec-mem-primary-c8bd81f2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# MCTF 2025 (Sec Mem): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: MCTF 2025 (Sec Mem): resource_label: primary resource_type: article resource_url: https://blog.itarow.xyz/posts/mctf_2025_sec_mem/ parent_primary_url: https://blog.itarow.xyz/posts/mctf_2025_sec_mem/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: MCTF 2025 (Sec Mem): [writeup](https://blog.itarow.xyz/posts/mctf_2025_sec_mem/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://blog.itarow.xyz/posts/mctf_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.itarow.xyz/posts/mctf_2025_sec_mem/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.itarow.xyz/posts/mctf_2025_sec_mem/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "Sec Mem"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup covers the Sec Mem challenge in MCTF 2025.",
      "summary_zh": "该写作涵盖了MCTF 2025中的Sec Mem挑战。",
      "source_markdown": "MCTF 2025 (Sec Mem): [writeup](https://blog.itarow.xyz/posts/mctf_2025_sec_mem/)",
      "search_text": "mctf 2025 (sec mem): mctf 2025 (sec mem):    practice ctf tasks practice: ctf tasks primary article https://blog.itarow.xyz/posts/mctf_2025_sec_mem/ ctf sec mem  practice this writeup covers the sec mem challenge in mctf 2025. 该写作涵盖了mctf 2025中的sec mem挑战。 # mctf 2025 (sec mem): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: mctf 2025 (sec mem): resource_label: primary resource_type: article resource_url: https://blog.itarow.xyz/posts/mctf_2025_sec_mem/ parent_primary_url: https://blog.itarow.xyz/posts/mctf_2025_sec_mem/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: mctf 2025 (sec mem): [writeup](https://blog.itarow.xyz/posts/mctf_2025_sec_mem/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://blog.itarow.xyz/posts/mctf_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "3c2b85ebc137ad38",
      "item_id": "4d452d558085acb3",
      "slug": "2025-practice-ctf-tasks-tsukuctf-2025-easy-kernel-xcache-new-era-primary-5f83faf3",
      "year": 2025,
      "title": "TsukuCTF 2025 (easy_kernel, xcache, new_era):",
      "item_title": "TsukuCTF 2025 (easy_kernel, xcache, new_era):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://iwancof.github.io/about-me/writeups/TsukuCTF2025/",
      "primary_url": "https://iwancof.github.io/about-me/writeups/TsukuCTF2025/",
      "parent_primary_url": "https://iwancof.github.io/about-me/writeups/TsukuCTF2025/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2025-practice-ctf-tasks-tsukuctf-2025-easy-kernel-xcache-new-era-primary-5f83faf3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TsukuCTF 2025 (easy_kernel, xcache, new_era): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: TsukuCTF 2025 (easy_kernel, xcache, new_era): resource_label: primary resource_type: article resource_url: https://iwancof.github.io/about-me/writeups/TsukuCTF2025/ parent_primary_url: https://iwancof.github.io/about-me/writeups/TsukuCTF2025/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: TsukuCTF 2025 (easy_kernel, xcache, new_era): [writeup](https://iwancof.github.io/about-me/writeups/TsukuCTF2025/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploi",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://iwancof.github.io/about-me/writeups/TsukuCTF2025/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://iwancof.github.io/about-me/writeups/TsukuCTF2025/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://iwancof.github.io/about-me/writeups/TsukuCTF2025/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "easy_kernel",
        "xcache",
        "new_era"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup discusses the easy_kernel, xcache, new_era challenges from TsukuCTF 2025.",
      "summary_zh": "该写作讨论了TsukuCTF 2025中的easy_kernel、xcache和new_era挑战。",
      "source_markdown": "TsukuCTF 2025 (easy_kernel, xcache, new_era): [writeup](https://iwancof.github.io/about-me/writeups/TsukuCTF2025/)",
      "search_text": "tsukuctf 2025 (easy_kernel, xcache, new_era): tsukuctf 2025 (easy_kernel, xcache, new_era):    practice ctf tasks practice: ctf tasks primary article https://iwancof.github.io/about-me/writeups/tsukuctf2025/ ctf easy_kernel xcache new_era  practice this writeup discusses the easy_kernel, xcache, new_era challenges from tsukuctf 2025. 该写作讨论了tsukuctf 2025中的easy_kernel、xcache和new_era挑战。 # tsukuctf 2025 (easy_kernel, xcache, new_era): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: tsukuctf 2025 (easy_kernel, xcache, new_era): resource_label: primary resource_type: article resource_url: https://iwancof.github.io/about-me/writeups/tsukuctf2025/ parent_primary_url: https://iwancof.github.io/about-me/writeups/tsukuctf2025/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: tsukuctf 2025 (easy_kernel, xcache, new_era): [writeup](https://iwancof.github.io/about-me/writeups/tsukuctf2025/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "16ab895d009997c8",
      "item_id": "b9551fccc497433c",
      "slug": "2025-practice-ctf-tasks-lactf-2025-messenger-primary-b9bfc9e8",
      "year": 2025,
      "title": "LACTF 2025 (messenger):",
      "item_title": "LACTF 2025 (messenger):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://terawhiz.github.io/2025/2/oob-write-to-page-uaf-lactf-2025/",
      "primary_url": "https://terawhiz.github.io/2025/2/oob-write-to-page-uaf-lactf-2025/",
      "parent_primary_url": "https://terawhiz.github.io/2025/2/oob-write-to-page-uaf-lactf-2025/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2025-practice-ctf-tasks-lactf-2025-messenger-primary-b9bfc9e8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# LACTF 2025 (messenger): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: LACTF 2025 (messenger): resource_label: primary resource_type: article resource_url: https://terawhiz.github.io/2025/2/oob-write-to-page-uaf-lactf-2025/ parent_primary_url: https://terawhiz.github.io/2025/2/oob-write-to-page-uaf-lactf-2025/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: LACTF 2025 (messenger): [writeup](https://terawhiz.github.io/2025/2/oob-write-to-page-uaf-lactf-2025/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://ter",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://terawhiz.github.io/2025/2/oob-write-to-page-uaf-lactf-2025/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://terawhiz.github.io/2025/2/oob-write-to-page-uaf-lactf-2025/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://terawhiz.github.io/2025/2/oob-write-to-page-uaf-lactf-2025/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "messenger"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup presents the messenger challenge from LACTF 2025.",
      "summary_zh": "该写作展示了LACTF 2025中的messenger挑战。",
      "source_markdown": "LACTF 2025 (messenger): [writeup](https://terawhiz.github.io/2025/2/oob-write-to-page-uaf-lactf-2025/)",
      "search_text": "lactf 2025 (messenger): lactf 2025 (messenger):    practice ctf tasks practice: ctf tasks primary article https://terawhiz.github.io/2025/2/oob-write-to-page-uaf-lactf-2025/ ctf messenger  practice this writeup presents the messenger challenge from lactf 2025. 该写作展示了lactf 2025中的messenger挑战。 # lactf 2025 (messenger): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: lactf 2025 (messenger): resource_label: primary resource_type: article resource_url: https://terawhiz.github.io/2025/2/oob-write-to-page-uaf-lactf-2025/ parent_primary_url: https://terawhiz.github.io/2025/2/oob-write-to-page-uaf-lactf-2025/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: lactf 2025 (messenger): [writeup](https://terawhiz.github.io/2025/2/oob-write-to-page-uaf-lactf-2025/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://ter no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "65f39853460835a4",
      "item_id": "dc4e519fbea94334",
      "slug": "2024-practice-ctf-tasks-avss-2024-final-primary-9fa5c9c3",
      "year": 2024,
      "title": "AVSS 2024 Final:",
      "item_title": "AVSS 2024 Final:",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.xmcve.com/2024/10/25/AVSS-2024-Final-Writeup",
      "primary_url": "https://blog.xmcve.com/2024/10/25/AVSS-2024-Final-Writeup",
      "parent_primary_url": "https://blog.xmcve.com/2024/10/25/AVSS-2024-Final-Writeup",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2024-practice-ctf-tasks-avss-2024-final-primary-9fa5c9c3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# AVSS 2024 Final: record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: AVSS 2024 Final: resource_label: primary resource_type: article resource_url: https://blog.xmcve.com/2024/10/25/AVSS-2024-Final-Writeup parent_primary_url: https://blog.xmcve.com/2024/10/25/AVSS-2024-Final-Writeup source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: AVSS 2024 Final: [writeups](https://blog.xmcve.com/2024/10/25/AVSS-2024-Final-Writeup) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://blog.xmcve.",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.xmcve.com/2024/10/25/AVSS-2024-Final-Writeup"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.xmcve.com/2024/10/25/AVSS-2024-Final-Writeup"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "AVSS 2024"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup provides insights into the AVSS 2024 Final CTF tasks.",
      "summary_zh": "该写作提供了关于AVSS 2024 Final CTF任务的见解。",
      "source_markdown": "AVSS 2024 Final: [writeups](https://blog.xmcve.com/2024/10/25/AVSS-2024-Final-Writeup)",
      "search_text": "avss 2024 final: avss 2024 final:    practice ctf tasks practice: ctf tasks primary article https://blog.xmcve.com/2024/10/25/avss-2024-final-writeup ctf avss 2024  practice this writeup provides insights into the avss 2024 final ctf tasks. 该写作提供了关于avss 2024 final ctf任务的见解。 # avss 2024 final: record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: avss 2024 final: resource_label: primary resource_type: article resource_url: https://blog.xmcve.com/2024/10/25/avss-2024-final-writeup parent_primary_url: https://blog.xmcve.com/2024/10/25/avss-2024-final-writeup source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: avss 2024 final: [writeups](https://blog.xmcve.com/2024/10/25/avss-2024-final-writeup) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://blog.xmcve. no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "37ea5167919893e2",
      "item_id": "a039ef8d84d0df4d",
      "slug": "2024-practice-ctf-tasks-crewctf-2024-kulele-primary-d1a88572",
      "year": 2024,
      "title": "crewCTF 2024 (kUlele):",
      "item_title": "crewCTF 2024 (kUlele):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://n132.github.io/2024/08/14/kUlele.html",
      "primary_url": "https://n132.github.io/2024/08/14/kUlele.html",
      "parent_primary_url": "https://n132.github.io/2024/08/14/kUlele.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2024-practice-ctf-tasks-crewctf-2024-kulele-primary-d1a88572.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# crewCTF 2024 (kUlele): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: crewCTF 2024 (kUlele): resource_label: primary resource_type: article resource_url: https://n132.github.io/2024/08/14/kUlele.html parent_primary_url: https://n132.github.io/2024/08/14/kUlele.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: crewCTF 2024 (kUlele): [writeup](https://n132.github.io/2024/08/14/kUlele.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://n132.github.io/2024/08/14/kUlele.html context_links: - [article] primary",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://n132.github.io/2024/08/14/kUlele.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://n132.github.io/2024/08/14/kUlele.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://n132.github.io/2024/08/14/kUlele.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kUlele"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup discusses the kUlele challenge from crewCTF 2024.",
      "summary_zh": "该写作讨论了crewCTF 2024中的kUlele挑战。",
      "source_markdown": "crewCTF 2024 (kUlele): [writeup](https://n132.github.io/2024/08/14/kUlele.html)",
      "search_text": "crewctf 2024 (kulele): crewctf 2024 (kulele):    practice ctf tasks practice: ctf tasks primary article https://n132.github.io/2024/08/14/kulele.html ctf kulele  practice this writeup discusses the kulele challenge from crewctf 2024. 该写作讨论了crewctf 2024中的kulele挑战。 # crewctf 2024 (kulele): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: crewctf 2024 (kulele): resource_label: primary resource_type: article resource_url: https://n132.github.io/2024/08/14/kulele.html parent_primary_url: https://n132.github.io/2024/08/14/kulele.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: crewctf 2024 (kulele): [writeup](https://n132.github.io/2024/08/14/kulele.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://n132.github.io/2024/08/14/kulele.html context_links: - [article] primary no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "d57d42420f670df1",
      "item_id": "f119d96e809b5ad7",
      "slug": "2024-practice-ctf-tasks-hitcon-ctf-qual-2024-halloween-primary-7b64aceb",
      "year": 2024,
      "title": "HITCON CTF QUAL 2024 (Halloween):",
      "item_title": "HITCON CTF QUAL 2024 (Halloween):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/ctf/2024/07/16/hitcon-ctf-qual-2024-pwn-challenge-part-1-halloween-and-v8sbx.html",
      "primary_url": "https://u1f383.github.io/ctf/2024/07/16/hitcon-ctf-qual-2024-pwn-challenge-part-1-halloween-and-v8sbx.html",
      "parent_primary_url": "https://u1f383.github.io/ctf/2024/07/16/hitcon-ctf-qual-2024-pwn-challenge-part-1-halloween-and-v8sbx.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2024-practice-ctf-tasks-hitcon-ctf-qual-2024-halloween-primary-7b64aceb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# HITCON CTF QUAL 2024 (Halloween): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: HITCON CTF QUAL 2024 (Halloween): resource_label: primary resource_type: article resource_url: https://u1f383.github.io/ctf/2024/07/16/hitcon-ctf-qual-2024-pwn-challenge-part-1-halloween-and-v8sbx.html parent_primary_url: https://u1f383.github.io/ctf/2024/07/16/hitcon-ctf-qual-2024-pwn-challenge-part-1-halloween-and-v8sbx.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: HITCON CTF QUAL 2024 (Halloween): [writeup](https://u1f383.github.io/ctf/2024/07/16/hitcon-ctf-qual-2024-pwn-challenge-part-1-halloween-and-v8sbx.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_re",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/ctf/2024/07/16/hitcon-ctf-qual-2024-pwn-challenge-part-1-halloween-and-v8sbx.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/ctf/2024/07/16/hitcon-ctf-qual-2024-pwn-challenge-part-1-halloween-and-v8sbx.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/ctf/2024/07/16/hitcon-ctf-qual-2024-pwn-challenge-part-1-halloween-and-v8sbx.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "Halloween"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup covers the Halloween challenge from HITCON CTF QUAL 2024.",
      "summary_zh": "该写作涵盖了HITCON CTF QUAL 2024中的Halloween挑战。",
      "source_markdown": "HITCON CTF QUAL 2024 (Halloween): [writeup](https://u1f383.github.io/ctf/2024/07/16/hitcon-ctf-qual-2024-pwn-challenge-part-1-halloween-and-v8sbx.html)",
      "search_text": "hitcon ctf qual 2024 (halloween): hitcon ctf qual 2024 (halloween):    practice ctf tasks practice: ctf tasks primary article https://u1f383.github.io/ctf/2024/07/16/hitcon-ctf-qual-2024-pwn-challenge-part-1-halloween-and-v8sbx.html ctf halloween  practice this writeup covers the halloween challenge from hitcon ctf qual 2024. 该写作涵盖了hitcon ctf qual 2024中的halloween挑战。 # hitcon ctf qual 2024 (halloween): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: hitcon ctf qual 2024 (halloween): resource_label: primary resource_type: article resource_url: https://u1f383.github.io/ctf/2024/07/16/hitcon-ctf-qual-2024-pwn-challenge-part-1-halloween-and-v8sbx.html parent_primary_url: https://u1f383.github.io/ctf/2024/07/16/hitcon-ctf-qual-2024-pwn-challenge-part-1-halloween-and-v8sbx.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hitcon ctf qual 2024 (halloween): [writeup](https://u1f383.github.io/ctf/2024/07/16/hitcon-ctf-qual-2024-pwn-challenge-part-1-halloween-and-v8sbx.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_re no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "caf627480a76d961",
      "item_id": "11570b5fdb0e4f91",
      "slug": "2024-practice-ctf-tasks-euskalhack-2024-gau-hack-primary-263393eb",
      "year": 2024,
      "title": "EuskalHack 2024 Gau-Hack:",
      "item_title": "EuskalHack 2024 Gau-Hack:",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://gum3t.xyz/posts/a-gau-hack-from-euskalhack/",
      "primary_url": "https://gum3t.xyz/posts/a-gau-hack-from-euskalhack/",
      "parent_primary_url": "https://gum3t.xyz/posts/a-gau-hack-from-euskalhack/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2024-practice-ctf-tasks-euskalhack-2024-gau-hack-primary-263393eb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# EuskalHack 2024 Gau-Hack: record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: EuskalHack 2024 Gau-Hack: resource_label: primary resource_type: article resource_url: https://gum3t.xyz/posts/a-gau-hack-from-euskalhack/ parent_primary_url: https://gum3t.xyz/posts/a-gau-hack-from-euskalhack/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: EuskalHack 2024 Gau-Hack: [writeup](https://gum3t.xyz/posts/a-gau-hack-from-euskalhack/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://gum",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://gum3t.xyz/posts/a-gau-hack-from-euskalhack/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://gum3t.xyz/posts/a-gau-hack-from-euskalhack/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "Gau-Hack"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup discusses the Gau-Hack challenge from EuskalHack 2024.",
      "summary_zh": "该写作讨论了EuskalHack 2024中的Gau-Hack挑战。",
      "source_markdown": "EuskalHack 2024 Gau-Hack: [writeup](https://gum3t.xyz/posts/a-gau-hack-from-euskalhack/)",
      "search_text": "euskalhack 2024 gau-hack: euskalhack 2024 gau-hack:    practice ctf tasks practice: ctf tasks primary article https://gum3t.xyz/posts/a-gau-hack-from-euskalhack/ ctf gau-hack  practice this writeup discusses the gau-hack challenge from euskalhack 2024. 该写作讨论了euskalhack 2024中的gau-hack挑战。 # euskalhack 2024 gau-hack: record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: euskalhack 2024 gau-hack: resource_label: primary resource_type: article resource_url: https://gum3t.xyz/posts/a-gau-hack-from-euskalhack/ parent_primary_url: https://gum3t.xyz/posts/a-gau-hack-from-euskalhack/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: euskalhack 2024 gau-hack: [writeup](https://gum3t.xyz/posts/a-gau-hack-from-euskalhack/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://gum no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "867fe44a492e7821",
      "item_id": "c46451161040c8c3",
      "slug": "2024-practice-ctf-tasks-rwctf-2024-riptc-primary-80336e59",
      "year": 2024,
      "title": "RWCTF 2024 (RIPTC): , ,",
      "item_title": "RWCTF 2024 (RIPTC): , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC",
      "primary_url": "https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC",
      "parent_primary_url": "https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2024-practice-ctf-tasks-rwctf-2024-riptc-primary-80336e59.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# RWCTF 2024 (RIPTC): , , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: RWCTF 2024 (RIPTC): , , resource_label: primary resource_type: code resource_url: https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC parent_primary_url: https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: RWCTF 2024 (RIPTC): [source](https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC), [writeup](https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/), [writeup 2](https://github.com/N1ghtu/RWCTF6th-RIPTC) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://github.com/N1ghtu/RWCTF6th-RIPTC"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://github.com/N1ghtu/RWCTF6th-RIPTC"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC",
        "https://github.com/N1ghtu/RWCTF6th-RIPTC"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "RIPTC"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup provides insights into the RIPTC challenge from RWCTF 2024.",
      "summary_zh": "该写作提供了关于RWCTF 2024中RIPTC挑战的见解。",
      "source_markdown": "RWCTF 2024 (RIPTC): [source](https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC), [writeup](https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/), [writeup 2](https://github.com/N1ghtu/RWCTF6th-RIPTC)",
      "search_text": "rwctf 2024 (riptc): , , rwctf 2024 (riptc): , ,    practice ctf tasks practice: ctf tasks primary code https://github.com/chaitin/real-world-ctf-6th-challenges/tree/main/riptc ctf riptc  practice this writeup provides insights into the riptc challenge from rwctf 2024. 该写作提供了关于rwctf 2024中riptc挑战的见解。 # rwctf 2024 (riptc): , , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: rwctf 2024 (riptc): , , resource_label: primary resource_type: code resource_url: https://github.com/chaitin/real-world-ctf-6th-challenges/tree/main/riptc parent_primary_url: https://github.com/chaitin/real-world-ctf-6th-challenges/tree/main/riptc source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: rwctf 2024 (riptc): [source](https://github.com/chaitin/real-world-ctf-6th-challenges/tree/main/riptc), [writeup](https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/), [writeup 2](https://github.com/n1ghtu/rwctf6th-riptc) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "091b26ae9310a37e",
      "item_id": "c46451161040c8c3",
      "slug": "2024-practice-ctf-tasks-rwctf-2024-riptc-writeup-ad27eaf5",
      "year": 2024,
      "title": "RWCTF 2024 (RIPTC): , , · writeup",
      "item_title": "RWCTF 2024 (RIPTC): , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup",
      "resource_type": "article",
      "resource_url": "https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/",
      "primary_url": "https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/",
      "parent_primary_url": "https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2024-practice-ctf-tasks-rwctf-2024-riptc-writeup-ad27eaf5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# RWCTF 2024 (RIPTC): , , · writeup record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: RWCTF 2024 (RIPTC): , , resource_label: writeup resource_type: article resource_url: https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/ parent_primary_url: https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: RWCTF 2024 (RIPTC): [source](https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC), [writeup](https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/), [writeup 2](https://github.com/N1ghtu/RWCTF6th-RIPTC) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS device",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://github.com/N1ghtu/RWCTF6th-RIPTC"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://github.com/N1ghtu/RWCTF6th-RIPTC"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC",
        "https://github.com/N1ghtu/RWCTF6th-RIPTC"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "RIPTC"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup discusses the RIPTC challenge from RWCTF 2024.",
      "summary_zh": "该写作讨论了RWCTF 2024中的RIPTC挑战。",
      "source_markdown": "RWCTF 2024 (RIPTC): [source](https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC), [writeup](https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/), [writeup 2](https://github.com/N1ghtu/RWCTF6th-RIPTC)",
      "search_text": "rwctf 2024 (riptc): , , · writeup rwctf 2024 (riptc): , ,    practice ctf tasks practice: ctf tasks writeup article https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/ ctf riptc  practice this writeup discusses the riptc challenge from rwctf 2024. 该写作讨论了rwctf 2024中的riptc挑战。 # rwctf 2024 (riptc): , , · writeup record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: rwctf 2024 (riptc): , , resource_label: writeup resource_type: article resource_url: https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/ parent_primary_url: https://github.com/chaitin/real-world-ctf-6th-challenges/tree/main/riptc source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: rwctf 2024 (riptc): [source](https://github.com/chaitin/real-world-ctf-6th-challenges/tree/main/riptc), [writeup](https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/), [writeup 2](https://github.com/n1ghtu/rwctf6th-riptc) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios device no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b34802a3d419c49f",
      "item_id": "c46451161040c8c3",
      "slug": "2024-practice-ctf-tasks-rwctf-2024-riptc-writeup-2-745c7134",
      "year": 2024,
      "title": "RWCTF 2024 (RIPTC): , , · writeup 2",
      "item_title": "RWCTF 2024 (RIPTC): , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup 2",
      "resource_type": "article",
      "resource_url": "https://github.com/N1ghtu/RWCTF6th-RIPTC",
      "primary_url": "https://github.com/N1ghtu/RWCTF6th-RIPTC",
      "parent_primary_url": "https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2024-practice-ctf-tasks-rwctf-2024-riptc-writeup-2-745c7134.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# RWCTF 2024 (RIPTC): , , · writeup 2 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: RWCTF 2024 (RIPTC): , , resource_label: writeup 2 resource_type: article resource_url: https://github.com/N1ghtu/RWCTF6th-RIPTC parent_primary_url: https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: RWCTF 2024 (RIPTC): [source](https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC), [writeup](https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/), [writeup 2](https://github.com/N1ghtu/RWCTF6th-RIPTC) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Ap",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://github.com/N1ghtu/RWCTF6th-RIPTC"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://github.com/N1ghtu/RWCTF6th-RIPTC"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC",
        "https://github.com/N1ghtu/RWCTF6th-RIPTC"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "RIPTC"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup provides additional insights into the RIPTC challenge from RWCTF 2024.",
      "summary_zh": "该写作提供了关于RWCTF 2024中RIPTC挑战的额外见解。",
      "source_markdown": "RWCTF 2024 (RIPTC): [source](https://github.com/chaitin/Real-World-CTF-6th-Challenges/tree/main/RIPTC), [writeup](https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/), [writeup 2](https://github.com/N1ghtu/RWCTF6th-RIPTC)",
      "search_text": "rwctf 2024 (riptc): , , · writeup 2 rwctf 2024 (riptc): , ,    practice ctf tasks practice: ctf tasks writeup 2 article https://github.com/n1ghtu/rwctf6th-riptc ctf riptc  practice this writeup provides additional insights into the riptc challenge from rwctf 2024. 该写作提供了关于rwctf 2024中riptc挑战的额外见解。 # rwctf 2024 (riptc): , , · writeup 2 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: rwctf 2024 (riptc): , , resource_label: writeup 2 resource_type: article resource_url: https://github.com/n1ghtu/rwctf6th-riptc parent_primary_url: https://github.com/chaitin/real-world-ctf-6th-challenges/tree/main/riptc source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: rwctf 2024 (riptc): [source](https://github.com/chaitin/real-world-ctf-6th-challenges/tree/main/riptc), [writeup](https://aslr.io/2024/02/04/rwctf-6th-riptc-write-up/), [writeup 2](https://github.com/n1ghtu/rwctf6th-riptc) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use ap no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "eea4d6e9330cb96a",
      "item_id": "787e35503e2a6427",
      "slug": "2024-practice-ctf-tasks-downunderctf-2024-faulty-kernel-primary-5448210d",
      "year": 2024,
      "title": "DownUnderCTF 2024 (Faulty Kernel):",
      "item_title": "DownUnderCTF 2024 (Faulty Kernel):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://n132.github.io/2024/07/18/Faulty-Kernel.html",
      "primary_url": "https://n132.github.io/2024/07/18/Faulty-Kernel.html",
      "parent_primary_url": "https://n132.github.io/2024/07/18/Faulty-Kernel.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2024-practice-ctf-tasks-downunderctf-2024-faulty-kernel-primary-5448210d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DownUnderCTF 2024 (Faulty Kernel): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: DownUnderCTF 2024 (Faulty Kernel): resource_label: primary resource_type: article resource_url: https://n132.github.io/2024/07/18/Faulty-Kernel.html parent_primary_url: https://n132.github.io/2024/07/18/Faulty-Kernel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: DownUnderCTF 2024 (Faulty Kernel): [writeup](https://n132.github.io/2024/07/18/Faulty-Kernel.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://n132.github.io/",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://n132.github.io/2024/07/18/Faulty-Kernel.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://n132.github.io/2024/07/18/Faulty-Kernel.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://n132.github.io/2024/07/18/Faulty-Kernel.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "Faulty Kernel"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup discusses the Faulty Kernel challenge from DownUnderCTF 2024.",
      "summary_zh": "该写作讨论了DownUnderCTF 2024中的Faulty Kernel挑战。",
      "source_markdown": "DownUnderCTF 2024 (Faulty Kernel): [writeup](https://n132.github.io/2024/07/18/Faulty-Kernel.html)",
      "search_text": "downunderctf 2024 (faulty kernel): downunderctf 2024 (faulty kernel):    practice ctf tasks practice: ctf tasks primary article https://n132.github.io/2024/07/18/faulty-kernel.html ctf faulty kernel  practice this writeup discusses the faulty kernel challenge from downunderctf 2024. 该写作讨论了downunderctf 2024中的faulty kernel挑战。 # downunderctf 2024 (faulty kernel): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: downunderctf 2024 (faulty kernel): resource_label: primary resource_type: article resource_url: https://n132.github.io/2024/07/18/faulty-kernel.html parent_primary_url: https://n132.github.io/2024/07/18/faulty-kernel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: downunderctf 2024 (faulty kernel): [writeup](https://n132.github.io/2024/07/18/faulty-kernel.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://n132.github.io/ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "136fe66bca97b695",
      "item_id": "e334e6f41f79687c",
      "slug": "2023-practice-ctf-tasks-d-3ctf-2023-d3kcache-primary-208ab43c",
      "year": 2023,
      "title": "D^3CTF 2023 (d3kcache): ,",
      "item_title": "D^3CTF 2023 (d3kcache): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/",
      "primary_url": "https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/",
      "parent_primary_url": "https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2023-practice-ctf-tasks-d-3ctf-2023-d3kcache-primary-208ab43c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# D^3CTF 2023 (d3kcache): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: D^3CTF 2023 (d3kcache): , resource_label: primary resource_type: article resource_url: https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/ parent_primary_url: https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: D^3CTF 2023 (d3kcache): [writeup](https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/), [source](https://github.com/arttnba3/D3CTF2023_d3kcache) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc:",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/"
        },
        {
          "label": "source",
          "type": "code",
          "url": "https://github.com/arttnba3/D3CTF2023_d3kcache"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "source",
            "type": "code",
            "url": "https://github.com/arttnba3/D3CTF2023_d3kcache"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/arttnba3/D3CTF2023_d3kcache"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2023 Linux kernel Practice: CTF Tasks resource \"D^3CTF 2023 (d3kcache): ,\"; URL type: article.",
      "summary_zh": "2023 年 Linux 内核Practice: CTF Tasks资料：「D^3CTF 2023 (d3kcache): ,」；URL 类型：article。",
      "source_markdown": "D^3CTF 2023 (d3kcache): [writeup](https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/), [source](https://github.com/arttnba3/D3CTF2023_d3kcache)",
      "search_text": "d^3ctf 2023 (d3kcache): , d^3ctf 2023 (d3kcache): ,    practice ctf tasks practice: ctf tasks primary article https://blog.arttnba3.cn/2023/05/02/ctf-0x08_d3ctf2023_d3kcache/ practice ctf tasks article  practice: ctf tasks 2023 linux kernel practice: ctf tasks resource \"d^3ctf 2023 (d3kcache): ,\"; url type: article. 2023 年 linux 内核practice: ctf tasks资料：「d^3ctf 2023 (d3kcache): ,」；url 类型：article。 # d^3ctf 2023 (d3kcache): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: d^3ctf 2023 (d3kcache): , resource_label: primary resource_type: article resource_url: https://blog.arttnba3.cn/2023/05/02/ctf-0x08_d3ctf2023_d3kcache/ parent_primary_url: https://blog.arttnba3.cn/2023/05/02/ctf-0x08_d3ctf2023_d3kcache/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: d^3ctf 2023 (d3kcache): [writeup](https://blog.arttnba3.cn/2023/05/02/ctf-0x08_d3ctf2023_d3kcache/), [source](https://github.com/arttnba3/d3ctf2023_d3kcache) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "e633987a369f4323",
      "item_id": "e334e6f41f79687c",
      "slug": "2023-practice-ctf-tasks-d-3ctf-2023-d3kcache-source-bb9c1467",
      "year": 2023,
      "title": "D^3CTF 2023 (d3kcache): , · source",
      "item_title": "D^3CTF 2023 (d3kcache): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "source",
      "resource_type": "code",
      "resource_url": "https://github.com/arttnba3/D3CTF2023_d3kcache",
      "primary_url": "https://github.com/arttnba3/D3CTF2023_d3kcache",
      "parent_primary_url": "https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2023-practice-ctf-tasks-d-3ctf-2023-d3kcache-source-bb9c1467.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# D^3CTF 2023 (d3kcache): , · source record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: D^3CTF 2023 (d3kcache): , resource_label: source resource_type: code resource_url: https://github.com/arttnba3/D3CTF2023_d3kcache parent_primary_url: https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: D^3CTF 2023 (d3kcache): [writeup](https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/), [source](https://github.com/arttnba3/D3CTF2023_d3kcache) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_ex",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/"
        },
        {
          "label": "source",
          "type": "code",
          "url": "https://github.com/arttnba3/D3CTF2023_d3kcache"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "source",
            "type": "code",
            "url": "https://github.com/arttnba3/D3CTF2023_d3kcache"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/arttnba3/D3CTF2023_d3kcache"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2023 Linux kernel Practice: CTF Tasks resource \"D^3CTF 2023 (d3kcache): , · source\"; URL type: code.",
      "summary_zh": "2023 年 Linux 内核Practice: CTF Tasks资料：「D^3CTF 2023 (d3kcache): , · source」；URL 类型：code。",
      "source_markdown": "D^3CTF 2023 (d3kcache): [writeup](https://blog.arttnba3.cn/2023/05/02/CTF-0X08_D3CTF2023_D3KCACHE/), [source](https://github.com/arttnba3/D3CTF2023_d3kcache)",
      "search_text": "d^3ctf 2023 (d3kcache): , · source d^3ctf 2023 (d3kcache): ,    practice ctf tasks practice: ctf tasks source code https://github.com/arttnba3/d3ctf2023_d3kcache practice ctf tasks code  practice: ctf tasks 2023 linux kernel practice: ctf tasks resource \"d^3ctf 2023 (d3kcache): , · source\"; url type: code. 2023 年 linux 内核practice: ctf tasks资料：「d^3ctf 2023 (d3kcache): , · source」；url 类型：code。 # d^3ctf 2023 (d3kcache): , · source record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: d^3ctf 2023 (d3kcache): , resource_label: source resource_type: code resource_url: https://github.com/arttnba3/d3ctf2023_d3kcache parent_primary_url: https://blog.arttnba3.cn/2023/05/02/ctf-0x08_d3ctf2023_d3kcache/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: d^3ctf 2023 (d3kcache): [writeup](https://blog.arttnba3.cn/2023/05/02/ctf-0x08_d3ctf2023_d3kcache/), [source](https://github.com/arttnba3/d3ctf2023_d3kcache) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_ex no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "c809eaff07d7c5aa",
      "item_id": "f09e05ecfdec1a8e",
      "slug": "2023-practice-ctf-tasks-imaginary-ctf-2023-windows-of-opportunity-primary-934baad6",
      "year": 2023,
      "title": "Imaginary CTF 2023 (Windows of Opportunity): ,",
      "item_title": "Imaginary CTF 2023 (Windows of Opportunity): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://francescolucarini.github.io/Windows-of-Opportunity/",
      "primary_url": "https://francescolucarini.github.io/Windows-of-Opportunity/",
      "parent_primary_url": "https://francescolucarini.github.io/Windows-of-Opportunity/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2023-practice-ctf-tasks-imaginary-ctf-2023-windows-of-opportunity-primary-934baad6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Imaginary CTF 2023 (Windows of Opportunity): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Imaginary CTF 2023 (Windows of Opportunity): , resource_label: primary resource_type: article resource_url: https://francescolucarini.github.io/Windows-of-Opportunity/ parent_primary_url: https://francescolucarini.github.io/Windows-of-Opportunity/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Imaginary CTF 2023 (Windows of Opportunity): [writeup 1](https://francescolucarini.github.io/Windows-of-Opportunity/), [writeup 2](https://ctftime.org/writeup/37670) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel ra",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://francescolucarini.github.io/Windows-of-Opportunity/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://ctftime.org/writeup/37670"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://francescolucarini.github.io/Windows-of-Opportunity/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://ctftime.org/writeup/37670"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://francescolucarini.github.io/Windows-of-Opportunity/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2023 Linux kernel Practice: CTF Tasks resource \"Imaginary CTF 2023 (Windows of Opportunity): ,\"; URL type: article.",
      "summary_zh": "2023 年 Linux 内核Practice: CTF Tasks资料：「Imaginary CTF 2023 (Windows of Opportunity): ,」；URL 类型：article。",
      "source_markdown": "Imaginary CTF 2023 (Windows of Opportunity): [writeup 1](https://francescolucarini.github.io/Windows-of-Opportunity/), [writeup 2](https://ctftime.org/writeup/37670)",
      "search_text": "imaginary ctf 2023 (windows of opportunity): , imaginary ctf 2023 (windows of opportunity): ,    practice ctf tasks practice: ctf tasks primary article https://francescolucarini.github.io/windows-of-opportunity/ practice ctf tasks article  practice: ctf tasks 2023 linux kernel practice: ctf tasks resource \"imaginary ctf 2023 (windows of opportunity): ,\"; url type: article. 2023 年 linux 内核practice: ctf tasks资料：「imaginary ctf 2023 (windows of opportunity): ,」；url 类型：article。 # imaginary ctf 2023 (windows of opportunity): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: imaginary ctf 2023 (windows of opportunity): , resource_label: primary resource_type: article resource_url: https://francescolucarini.github.io/windows-of-opportunity/ parent_primary_url: https://francescolucarini.github.io/windows-of-opportunity/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: imaginary ctf 2023 (windows of opportunity): [writeup 1](https://francescolucarini.github.io/windows-of-opportunity/), [writeup 2](https://ctftime.org/writeup/37670) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel ra no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "56eab2022ad5c48a",
      "item_id": "f09e05ecfdec1a8e",
      "slug": "2023-practice-ctf-tasks-imaginary-ctf-2023-windows-of-opportunity-writeup-2-773e86f2",
      "year": 2023,
      "title": "Imaginary CTF 2023 (Windows of Opportunity): , · writeup 2",
      "item_title": "Imaginary CTF 2023 (Windows of Opportunity): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup 2",
      "resource_type": "article",
      "resource_url": "https://ctftime.org/writeup/37670",
      "primary_url": "https://ctftime.org/writeup/37670",
      "parent_primary_url": "https://francescolucarini.github.io/Windows-of-Opportunity/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2023-practice-ctf-tasks-imaginary-ctf-2023-windows-of-opportunity-writeup-2-773e86f2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Imaginary CTF 2023 (Windows of Opportunity): , · writeup 2 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Imaginary CTF 2023 (Windows of Opportunity): , resource_label: writeup 2 resource_type: article resource_url: https://ctftime.org/writeup/37670 parent_primary_url: https://francescolucarini.github.io/Windows-of-Opportunity/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Imaginary CTF 2023 (Windows of Opportunity): [writeup 1](https://francescolucarini.github.io/Windows-of-Opportunity/), [writeup 2](https://ctftime.org/writeup/37670) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Li",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://francescolucarini.github.io/Windows-of-Opportunity/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://ctftime.org/writeup/37670"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://francescolucarini.github.io/Windows-of-Opportunity/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://ctftime.org/writeup/37670"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://francescolucarini.github.io/Windows-of-Opportunity/"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2023 Linux kernel Practice: CTF Tasks resource \"Imaginary CTF 2023 (Windows of Opportunity): , · writeup 2\"; URL type: article.",
      "summary_zh": "2023 年 Linux 内核Practice: CTF Tasks资料：「Imaginary CTF 2023 (Windows of Opportunity): , · writeup 2」；URL 类型：article。",
      "source_markdown": "Imaginary CTF 2023 (Windows of Opportunity): [writeup 1](https://francescolucarini.github.io/Windows-of-Opportunity/), [writeup 2](https://ctftime.org/writeup/37670)",
      "search_text": "imaginary ctf 2023 (windows of opportunity): , · writeup 2 imaginary ctf 2023 (windows of opportunity): ,    practice ctf tasks practice: ctf tasks writeup 2 article https://ctftime.org/writeup/37670 practice ctf tasks article  practice: ctf tasks 2023 linux kernel practice: ctf tasks resource \"imaginary ctf 2023 (windows of opportunity): , · writeup 2\"; url type: article. 2023 年 linux 内核practice: ctf tasks资料：「imaginary ctf 2023 (windows of opportunity): , · writeup 2」；url 类型：article。 # imaginary ctf 2023 (windows of opportunity): , · writeup 2 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: imaginary ctf 2023 (windows of opportunity): , resource_label: writeup 2 resource_type: article resource_url: https://ctftime.org/writeup/37670 parent_primary_url: https://francescolucarini.github.io/windows-of-opportunity/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: imaginary ctf 2023 (windows of opportunity): [writeup 1](https://francescolucarini.github.io/windows-of-opportunity/), [writeup 2](https://ctftime.org/writeup/37670) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than li no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "83eaaeece2b5ad20",
      "item_id": "f5d04d25bab843ff",
      "slug": "2023-practice-ctf-tasks-hitcon-ctf-2023-wall-rose-primary-84975fc7",
      "year": 2023,
      "title": "HITCON CTF 2023 (wall-rose):",
      "item_title": "HITCON CTF 2023 (wall-rose):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://n132.github.io/2024/09/29/rose.html",
      "primary_url": "https://n132.github.io/2024/09/29/rose.html",
      "parent_primary_url": "https://n132.github.io/2024/09/29/rose.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2023-practice-ctf-tasks-hitcon-ctf-2023-wall-rose-primary-84975fc7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# HITCON CTF 2023 (wall-rose): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: HITCON CTF 2023 (wall-rose): resource_label: primary resource_type: article resource_url: https://n132.github.io/2024/09/29/rose.html parent_primary_url: https://n132.github.io/2024/09/29/rose.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: HITCON CTF 2023 (wall-rose): [writeup](https://n132.github.io/2024/09/29/rose.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://n132.github.io/2024/09/29/rose.html context_links: - [articl",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://n132.github.io/2024/09/29/rose.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://n132.github.io/2024/09/29/rose.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://n132.github.io/2024/09/29/rose.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2023 Linux kernel Practice: CTF Tasks resource \"HITCON CTF 2023 (wall-rose):\"; URL type: article.",
      "summary_zh": "2023 年 Linux 内核Practice: CTF Tasks资料：「HITCON CTF 2023 (wall-rose):」；URL 类型：article。",
      "source_markdown": "HITCON CTF 2023 (wall-rose): [writeup](https://n132.github.io/2024/09/29/rose.html)",
      "search_text": "hitcon ctf 2023 (wall-rose): hitcon ctf 2023 (wall-rose):    practice ctf tasks practice: ctf tasks primary article https://n132.github.io/2024/09/29/rose.html practice ctf tasks article  practice: ctf tasks 2023 linux kernel practice: ctf tasks resource \"hitcon ctf 2023 (wall-rose):\"; url type: article. 2023 年 linux 内核practice: ctf tasks资料：「hitcon ctf 2023 (wall-rose):」；url 类型：article。 # hitcon ctf 2023 (wall-rose): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: hitcon ctf 2023 (wall-rose): resource_label: primary resource_type: article resource_url: https://n132.github.io/2024/09/29/rose.html parent_primary_url: https://n132.github.io/2024/09/29/rose.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hitcon ctf 2023 (wall-rose): [writeup](https://n132.github.io/2024/09/29/rose.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://n132.github.io/2024/09/29/rose.html context_links: - [articl no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "7544428c04b3fd3c",
      "item_id": "d95424dfbdbae7d2",
      "slug": "2023-practice-ctf-tasks-corctf-2023-sysruption-primary-92d4d31f",
      "year": 2023,
      "title": "corCTF 2023 (sysruption): ,",
      "item_title": "corCTF 2023 (sysruption): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.willsroot.io/2023/08/sysruption.html",
      "primary_url": "https://www.willsroot.io/2023/08/sysruption.html",
      "parent_primary_url": "https://www.willsroot.io/2023/08/sysruption.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2023-practice-ctf-tasks-corctf-2023-sysruption-primary-92d4d31f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# corCTF 2023 (sysruption): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: corCTF 2023 (sysruption): , resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2023/08/sysruption.html parent_primary_url: https://www.willsroot.io/2023/08/sysruption.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corCTF 2023 (sysruption): [writeup](https://www.willsroot.io/2023/08/sysruption.html), [writeup 2](https://n132.github.io/2024/09/28/sysruption.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.willsroot.io/2023/08/sysruption.html"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://n132.github.io/2024/09/28/sysruption.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.willsroot.io/2023/08/sysruption.html"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://n132.github.io/2024/09/28/sysruption.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://n132.github.io/2024/09/28/sysruption.html"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2023 Linux kernel Practice: CTF Tasks resource \"corCTF 2023 (sysruption): ,\"; URL type: article.",
      "summary_zh": "2023 年 Linux 内核Practice: CTF Tasks资料：「corCTF 2023 (sysruption): ,」；URL 类型：article。",
      "source_markdown": "corCTF 2023 (sysruption): [writeup](https://www.willsroot.io/2023/08/sysruption.html), [writeup 2](https://n132.github.io/2024/09/28/sysruption.html)",
      "search_text": "corctf 2023 (sysruption): , corctf 2023 (sysruption): ,    practice ctf tasks practice: ctf tasks primary article https://www.willsroot.io/2023/08/sysruption.html practice ctf tasks article  practice: ctf tasks 2023 linux kernel practice: ctf tasks resource \"corctf 2023 (sysruption): ,\"; url type: article. 2023 年 linux 内核practice: ctf tasks资料：「corctf 2023 (sysruption): ,」；url 类型：article。 # corctf 2023 (sysruption): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: corctf 2023 (sysruption): , resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2023/08/sysruption.html parent_primary_url: https://www.willsroot.io/2023/08/sysruption.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corctf 2023 (sysruption): [writeup](https://www.willsroot.io/2023/08/sysruption.html), [writeup 2](https://n132.github.io/2024/09/28/sysruption.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "10037bc651e56258",
      "item_id": "d95424dfbdbae7d2",
      "slug": "2023-practice-ctf-tasks-corctf-2023-sysruption-writeup-2-61cf3181",
      "year": 2023,
      "title": "corCTF 2023 (sysruption): , · writeup 2",
      "item_title": "corCTF 2023 (sysruption): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup 2",
      "resource_type": "article",
      "resource_url": "https://n132.github.io/2024/09/28/sysruption.html",
      "primary_url": "https://n132.github.io/2024/09/28/sysruption.html",
      "parent_primary_url": "https://www.willsroot.io/2023/08/sysruption.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2023-practice-ctf-tasks-corctf-2023-sysruption-writeup-2-61cf3181.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# corCTF 2023 (sysruption): , · writeup 2 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: corCTF 2023 (sysruption): , resource_label: writeup 2 resource_type: article resource_url: https://n132.github.io/2024/09/28/sysruption.html parent_primary_url: https://www.willsroot.io/2023/08/sysruption.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corCTF 2023 (sysruption): [writeup](https://www.willsroot.io/2023/08/sysruption.html), [writeup 2](https://n132.github.io/2024/09/28/sysruption.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_li",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.willsroot.io/2023/08/sysruption.html"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://n132.github.io/2024/09/28/sysruption.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.willsroot.io/2023/08/sysruption.html"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://n132.github.io/2024/09/28/sysruption.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://n132.github.io/2024/09/28/sysruption.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2023 Linux kernel Practice: CTF Tasks resource \"corCTF 2023 (sysruption): , · writeup 2\"; URL type: article.",
      "summary_zh": "2023 年 Linux 内核Practice: CTF Tasks资料：「corCTF 2023 (sysruption): , · writeup 2」；URL 类型：article。",
      "source_markdown": "corCTF 2023 (sysruption): [writeup](https://www.willsroot.io/2023/08/sysruption.html), [writeup 2](https://n132.github.io/2024/09/28/sysruption.html)",
      "search_text": "corctf 2023 (sysruption): , · writeup 2 corctf 2023 (sysruption): ,    practice ctf tasks practice: ctf tasks writeup 2 article https://n132.github.io/2024/09/28/sysruption.html practice ctf tasks article  practice: ctf tasks 2023 linux kernel practice: ctf tasks resource \"corctf 2023 (sysruption): , · writeup 2\"; url type: article. 2023 年 linux 内核practice: ctf tasks资料：「corctf 2023 (sysruption): , · writeup 2」；url 类型：article。 # corctf 2023 (sysruption): , · writeup 2 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: corctf 2023 (sysruption): , resource_label: writeup 2 resource_type: article resource_url: https://n132.github.io/2024/09/28/sysruption.html parent_primary_url: https://www.willsroot.io/2023/08/sysruption.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corctf 2023 (sysruption): [writeup](https://www.willsroot.io/2023/08/sysruption.html), [writeup 2](https://n132.github.io/2024/09/28/sysruption.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_li no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ffd5ca12d8371324",
      "item_id": "5b4d855803deae2b",
      "slug": "2023-practice-ctf-tasks-corctf-2023-zeroday-kcipher-primary-5a8503fd",
      "year": 2023,
      "title": "corCTF 2023 (zeroday, kcipher):",
      "item_title": "corCTF 2023 (zeroday, kcipher):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.libh0ps.so/2023/08/02/corCTF2023.html",
      "primary_url": "https://blog.libh0ps.so/2023/08/02/corCTF2023.html",
      "parent_primary_url": "https://blog.libh0ps.so/2023/08/02/corCTF2023.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2023-practice-ctf-tasks-corctf-2023-zeroday-kcipher-primary-5a8503fd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# corCTF 2023 (zeroday, kcipher): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: corCTF 2023 (zeroday, kcipher): resource_label: primary resource_type: article resource_url: https://blog.libh0ps.so/2023/08/02/corCTF2023.html parent_primary_url: https://blog.libh0ps.so/2023/08/02/corCTF2023.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corCTF 2023 (zeroday, kcipher): [writeup](https://blog.libh0ps.so/2023/08/02/corCTF2023.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] prima",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.libh0ps.so/2023/08/02/corCTF2023.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.libh0ps.so/2023/08/02/corCTF2023.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2023 Linux kernel Practice: CTF Tasks resource \"corCTF 2023 (zeroday, kcipher):\"; URL type: article.",
      "summary_zh": "2023 年 Linux 内核Practice: CTF Tasks资料：「corCTF 2023 (zeroday, kcipher):」；URL 类型：article。",
      "source_markdown": "corCTF 2023 (zeroday, kcipher): [writeup](https://blog.libh0ps.so/2023/08/02/corCTF2023.html)",
      "search_text": "corctf 2023 (zeroday, kcipher): corctf 2023 (zeroday, kcipher):    practice ctf tasks practice: ctf tasks primary article https://blog.libh0ps.so/2023/08/02/corctf2023.html practice ctf tasks article  practice: ctf tasks 2023 linux kernel practice: ctf tasks resource \"corctf 2023 (zeroday, kcipher):\"; url type: article. 2023 年 linux 内核practice: ctf tasks资料：「corctf 2023 (zeroday, kcipher):」；url 类型：article。 # corctf 2023 (zeroday, kcipher): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: corctf 2023 (zeroday, kcipher): resource_label: primary resource_type: article resource_url: https://blog.libh0ps.so/2023/08/02/corctf2023.html parent_primary_url: https://blog.libh0ps.so/2023/08/02/corctf2023.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corctf 2023 (zeroday, kcipher): [writeup](https://blog.libh0ps.so/2023/08/02/corctf2023.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] prima no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7869ca3baac1a141",
      "item_id": "c303e29b943b9578",
      "slug": "2023-practice-ctf-tasks-corctf-2023-kcipher-primary-c87ff474",
      "year": 2023,
      "title": "corCTF 2023 (kcipher):",
      "item_title": "corCTF 2023 (kcipher):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://rockrid3r.github.io/2023/09/26/kcipher-writeup-corctf-2023.html",
      "primary_url": "https://rockrid3r.github.io/2023/09/26/kcipher-writeup-corctf-2023.html",
      "parent_primary_url": "https://rockrid3r.github.io/2023/09/26/kcipher-writeup-corctf-2023.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2023-practice-ctf-tasks-corctf-2023-kcipher-primary-c87ff474.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# corCTF 2023 (kcipher): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: corCTF 2023 (kcipher): resource_label: primary resource_type: article resource_url: https://rockrid3r.github.io/2023/09/26/kcipher-writeup-corctf-2023.html parent_primary_url: https://rockrid3r.github.io/2023/09/26/kcipher-writeup-corctf-2023.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corCTF 2023 (kcipher): [writeup](https://rockrid3r.github.io/2023/09/26/kcipher-writeup-corctf-2023.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: ht",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://rockrid3r.github.io/2023/09/26/kcipher-writeup-corctf-2023.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://rockrid3r.github.io/2023/09/26/kcipher-writeup-corctf-2023.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://rockrid3r.github.io/2023/09/26/kcipher-writeup-corctf-2023.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2023 Linux kernel Practice: CTF Tasks resource \"corCTF 2023 (kcipher):\"; URL type: article.",
      "summary_zh": "2023 年 Linux 内核Practice: CTF Tasks资料：「corCTF 2023 (kcipher):」；URL 类型：article。",
      "source_markdown": "corCTF 2023 (kcipher): [writeup](https://rockrid3r.github.io/2023/09/26/kcipher-writeup-corctf-2023.html)",
      "search_text": "corctf 2023 (kcipher): corctf 2023 (kcipher):    practice ctf tasks practice: ctf tasks primary article https://rockrid3r.github.io/2023/09/26/kcipher-writeup-corctf-2023.html practice ctf tasks article  practice: ctf tasks 2023 linux kernel practice: ctf tasks resource \"corctf 2023 (kcipher):\"; url type: article. 2023 年 linux 内核practice: ctf tasks资料：「corctf 2023 (kcipher):」；url 类型：article。 # corctf 2023 (kcipher): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: corctf 2023 (kcipher): resource_label: primary resource_type: article resource_url: https://rockrid3r.github.io/2023/09/26/kcipher-writeup-corctf-2023.html parent_primary_url: https://rockrid3r.github.io/2023/09/26/kcipher-writeup-corctf-2023.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corctf 2023 (kcipher): [writeup](https://rockrid3r.github.io/2023/09/26/kcipher-writeup-corctf-2023.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: ht no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "59bacad5e059d984",
      "item_id": "a391670266d27fd6",
      "slug": "2022-practice-ctf-tasks-corctf-2022-cache-of-castaways-primary-d1e95f49",
      "year": 2022,
      "title": "corCTF 2022 (cache-of-castaways):",
      "item_title": "corCTF 2022 (cache-of-castaways):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://n132.github.io/2024/06/28/Castaways.html",
      "primary_url": "https://n132.github.io/2024/06/28/Castaways.html",
      "parent_primary_url": "https://n132.github.io/2024/06/28/Castaways.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2022-practice-ctf-tasks-corctf-2022-cache-of-castaways-primary-d1e95f49.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# corCTF 2022 (cache-of-castaways): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: corCTF 2022 (cache-of-castaways): resource_label: primary resource_type: article resource_url: https://n132.github.io/2024/06/28/Castaways.html parent_primary_url: https://n132.github.io/2024/06/28/Castaways.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corCTF 2022 (cache-of-castaways): [writeup](https://n132.github.io/2024/06/28/Castaways.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://n132.github.io/2024/06/28/Cast",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://n132.github.io/2024/06/28/Castaways.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://n132.github.io/2024/06/28/Castaways.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://n132.github.io/2024/06/28/Castaways.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2022 Linux kernel Practice: CTF Tasks resource \"corCTF 2022 (cache-of-castaways):\"; URL type: article.",
      "summary_zh": "2022 年 Linux 内核Practice: CTF Tasks资料：「corCTF 2022 (cache-of-castaways):」；URL 类型：article。",
      "source_markdown": "corCTF 2022 (cache-of-castaways): [writeup](https://n132.github.io/2024/06/28/Castaways.html)",
      "search_text": "corctf 2022 (cache-of-castaways): corctf 2022 (cache-of-castaways):    practice ctf tasks practice: ctf tasks primary article https://n132.github.io/2024/06/28/castaways.html practice ctf tasks article  practice: ctf tasks 2022 linux kernel practice: ctf tasks resource \"corctf 2022 (cache-of-castaways):\"; url type: article. 2022 年 linux 内核practice: ctf tasks资料：「corctf 2022 (cache-of-castaways):」；url 类型：article。 # corctf 2022 (cache-of-castaways): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: corctf 2022 (cache-of-castaways): resource_label: primary resource_type: article resource_url: https://n132.github.io/2024/06/28/castaways.html parent_primary_url: https://n132.github.io/2024/06/28/castaways.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corctf 2022 (cache-of-castaways): [writeup](https://n132.github.io/2024/06/28/castaways.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://n132.github.io/2024/06/28/cast no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ff303a2795f41579",
      "item_id": "f955982ae4dabf53",
      "slug": "2022-practice-ctf-tasks-hxp-ctf-2022-one-byte-primary-2ef80c2e",
      "year": 2022,
      "title": "hxp CTF 2022 (one_byte):",
      "item_title": "hxp CTF 2022 (one_byte):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://hxp.io/blog/99/hxp-CTF-2022-one_byte-writeup/",
      "primary_url": "https://hxp.io/blog/99/hxp-CTF-2022-one_byte-writeup/",
      "parent_primary_url": "https://hxp.io/blog/99/hxp-CTF-2022-one_byte-writeup/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2022-practice-ctf-tasks-hxp-ctf-2022-one-byte-primary-2ef80c2e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# hxp CTF 2022 (one_byte): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: hxp CTF 2022 (one_byte): resource_label: primary resource_type: article resource_url: https://hxp.io/blog/99/hxp-CTF-2022-one_byte-writeup/ parent_primary_url: https://hxp.io/blog/99/hxp-CTF-2022-one_byte-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hxp CTF 2022 (one_byte): [writeup](https://hxp.io/blog/99/hxp-CTF-2022-one_byte-writeup/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://hxp.io/blog/99/hxp-CTF-2022-one_byte-writeup/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://hxp.io/blog/99/hxp-CTF-2022-one_byte-writeup/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2022 Linux kernel Practice: CTF Tasks resource \"hxp CTF 2022 (one_byte):\"; URL type: article.",
      "summary_zh": "2022 年 Linux 内核Practice: CTF Tasks资料：「hxp CTF 2022 (one_byte):」；URL 类型：article。",
      "source_markdown": "hxp CTF 2022 (one_byte): [writeup](https://hxp.io/blog/99/hxp-CTF-2022-one_byte-writeup/)",
      "search_text": "hxp ctf 2022 (one_byte): hxp ctf 2022 (one_byte):    practice ctf tasks practice: ctf tasks primary article https://hxp.io/blog/99/hxp-ctf-2022-one_byte-writeup/ practice ctf tasks article  practice: ctf tasks 2022 linux kernel practice: ctf tasks resource \"hxp ctf 2022 (one_byte):\"; url type: article. 2022 年 linux 内核practice: ctf tasks资料：「hxp ctf 2022 (one_byte):」；url 类型：article。 # hxp ctf 2022 (one_byte): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: hxp ctf 2022 (one_byte): resource_label: primary resource_type: article resource_url: https://hxp.io/blog/99/hxp-ctf-2022-one_byte-writeup/ parent_primary_url: https://hxp.io/blog/99/hxp-ctf-2022-one_byte-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hxp ctf 2022 (one_byte): [writeup](https://hxp.io/blog/99/hxp-ctf-2022-one_byte-writeup/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https:// no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "905488f26d6c922e",
      "item_id": "dd6e49d6e06a7275",
      "slug": "2022-practice-ctf-tasks-bfs-ekoparty-2022-blunder-primary-1f6c844a",
      "year": 2022,
      "title": "BFS Ekoparty 2022 (blunder):",
      "item_title": "BFS Ekoparty 2022 (blunder):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://klecko.github.io/posts/bfs-ekoparty-2022/",
      "primary_url": "https://klecko.github.io/posts/bfs-ekoparty-2022/",
      "parent_primary_url": "https://klecko.github.io/posts/bfs-ekoparty-2022/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2022-practice-ctf-tasks-bfs-ekoparty-2022-blunder-primary-1f6c844a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BFS Ekoparty 2022 (blunder): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: BFS Ekoparty 2022 (blunder): resource_label: primary resource_type: article resource_url: https://klecko.github.io/posts/bfs-ekoparty-2022/ parent_primary_url: https://klecko.github.io/posts/bfs-ekoparty-2022/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: BFS Ekoparty 2022 (blunder): [writeup](https://klecko.github.io/posts/bfs-ekoparty-2022/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://klecko.github.io/posts/bfs-ekoparty-2022/ ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://klecko.github.io/posts/bfs-ekoparty-2022/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://klecko.github.io/posts/bfs-ekoparty-2022/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://klecko.github.io/posts/bfs-ekoparty-2022/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2022 Linux kernel Practice: CTF Tasks resource \"BFS Ekoparty 2022 (blunder):\"; URL type: article.",
      "summary_zh": "2022 年 Linux 内核Practice: CTF Tasks资料：「BFS Ekoparty 2022 (blunder):」；URL 类型：article。",
      "source_markdown": "BFS Ekoparty 2022 (blunder): [writeup](https://klecko.github.io/posts/bfs-ekoparty-2022/)",
      "search_text": "bfs ekoparty 2022 (blunder): bfs ekoparty 2022 (blunder):    practice ctf tasks practice: ctf tasks primary article https://klecko.github.io/posts/bfs-ekoparty-2022/ practice ctf tasks article  practice: ctf tasks 2022 linux kernel practice: ctf tasks resource \"bfs ekoparty 2022 (blunder):\"; url type: article. 2022 年 linux 内核practice: ctf tasks资料：「bfs ekoparty 2022 (blunder):」；url 类型：article。 # bfs ekoparty 2022 (blunder): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: bfs ekoparty 2022 (blunder): resource_label: primary resource_type: article resource_url: https://klecko.github.io/posts/bfs-ekoparty-2022/ parent_primary_url: https://klecko.github.io/posts/bfs-ekoparty-2022/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: bfs ekoparty 2022 (blunder): [writeup](https://klecko.github.io/posts/bfs-ekoparty-2022/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://klecko.github.io/posts/bfs-ekoparty-2022/  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "916e38372d208989",
      "item_id": "bc39329de081c25b",
      "slug": "2022-practice-ctf-tasks-d-3ctf-2022-d3bpf-html-primary-e95a28ec",
      "year": 2022,
      "title": "D^3CTF 2022 (d3bpf): .html),",
      "item_title": "D^3CTF 2022 (d3bpf): .html),",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://stdnoerr.github.io/writeup/2022/08/21/eBPF-exploitation-(ft.-D-3CTF-d3bpf",
      "primary_url": "https://stdnoerr.github.io/writeup/2022/08/21/eBPF-exploitation-(ft.-D-3CTF-d3bpf",
      "parent_primary_url": "https://stdnoerr.github.io/writeup/2022/08/21/eBPF-exploitation-(ft.-D-3CTF-d3bpf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2022-practice-ctf-tasks-d-3ctf-2022-d3bpf-html-primary-e95a28ec.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# D^3CTF 2022 (d3bpf): .html), record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: D^3CTF 2022 (d3bpf): .html), resource_label: primary resource_type: article resource_url: https://stdnoerr.github.io/writeup/2022/08/21/eBPF-exploitation-(ft.-D-3CTF-d3bpf parent_primary_url: https://stdnoerr.github.io/writeup/2022/08/21/eBPF-exploitation-(ft.-D-3CTF-d3bpf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: D^3CTF 2022 (d3bpf): [writeup](https://stdnoerr.github.io/writeup/2022/08/21/eBPF-exploitation-(ft.-D-3CTF-d3bpf).html), [writeup 2](https://github.com/chujDK/d3ctf2022-pwn-d3bpf-and-v2) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devi",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://stdnoerr.github.io/writeup/2022/08/21/eBPF-exploitation-(ft.-D-3CTF-d3bpf"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://github.com/chujDK/d3ctf2022-pwn-d3bpf-and-v2"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://stdnoerr.github.io/writeup/2022/08/21/eBPF-exploitation-(ft.-D-3CTF-d3bpf"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://github.com/chujDK/d3ctf2022-pwn-d3bpf-and-v2"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://stdnoerr.github.io/writeup/2022/08/21/eBPF-exploitation-(ft.-D-3CTF-d3bpf",
        "https://github.com/chujDK/d3ctf2022-pwn-d3bpf-and-v2"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2022 Linux kernel Practice: CTF Tasks resource \"D^3CTF 2022 (d3bpf): .html),\"; URL type: article.",
      "summary_zh": "2022 年 Linux 内核Practice: CTF Tasks资料：「D^3CTF 2022 (d3bpf): .html),」；URL 类型：article。",
      "source_markdown": "D^3CTF 2022 (d3bpf): [writeup](https://stdnoerr.github.io/writeup/2022/08/21/eBPF-exploitation-(ft.-D-3CTF-d3bpf).html), [writeup 2](https://github.com/chujDK/d3ctf2022-pwn-d3bpf-and-v2)",
      "search_text": "d^3ctf 2022 (d3bpf): .html), d^3ctf 2022 (d3bpf): .html),    practice ctf tasks practice: ctf tasks primary article https://stdnoerr.github.io/writeup/2022/08/21/ebpf-exploitation-(ft.-d-3ctf-d3bpf practice ctf tasks article  practice: ctf tasks 2022 linux kernel practice: ctf tasks resource \"d^3ctf 2022 (d3bpf): .html),\"; url type: article. 2022 年 linux 内核practice: ctf tasks资料：「d^3ctf 2022 (d3bpf): .html),」；url 类型：article。 # d^3ctf 2022 (d3bpf): .html), record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: d^3ctf 2022 (d3bpf): .html), resource_label: primary resource_type: article resource_url: https://stdnoerr.github.io/writeup/2022/08/21/ebpf-exploitation-(ft.-d-3ctf-d3bpf parent_primary_url: https://stdnoerr.github.io/writeup/2022/08/21/ebpf-exploitation-(ft.-d-3ctf-d3bpf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: d^3ctf 2022 (d3bpf): [writeup](https://stdnoerr.github.io/writeup/2022/08/21/ebpf-exploitation-(ft.-d-3ctf-d3bpf).html), [writeup 2](https://github.com/chujdk/d3ctf2022-pwn-d3bpf-and-v2) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "c06a1a9071205011",
      "item_id": "bc39329de081c25b",
      "slug": "2022-practice-ctf-tasks-d-3ctf-2022-d3bpf-html-writeup-2-dbec7c4f",
      "year": 2022,
      "title": "D^3CTF 2022 (d3bpf): .html), · writeup 2",
      "item_title": "D^3CTF 2022 (d3bpf): .html),",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup 2",
      "resource_type": "article",
      "resource_url": "https://github.com/chujDK/d3ctf2022-pwn-d3bpf-and-v2",
      "primary_url": "https://github.com/chujDK/d3ctf2022-pwn-d3bpf-and-v2",
      "parent_primary_url": "https://stdnoerr.github.io/writeup/2022/08/21/eBPF-exploitation-(ft.-D-3CTF-d3bpf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2022-practice-ctf-tasks-d-3ctf-2022-d3bpf-html-writeup-2-dbec7c4f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# D^3CTF 2022 (d3bpf): .html), · writeup 2 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: D^3CTF 2022 (d3bpf): .html), resource_label: writeup 2 resource_type: article resource_url: https://github.com/chujDK/d3ctf2022-pwn-d3bpf-and-v2 parent_primary_url: https://stdnoerr.github.io/writeup/2022/08/21/eBPF-exploitation-(ft.-D-3CTF-d3bpf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: D^3CTF 2022 (d3bpf): [writeup](https://stdnoerr.github.io/writeup/2022/08/21/eBPF-exploitation-(ft.-D-3CTF-d3bpf).html), [writeup 2](https://github.com/chujDK/d3ctf2022-pwn-d3bpf-and-v2) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://stdnoerr.github.io/writeup/2022/08/21/eBPF-exploitation-(ft.-D-3CTF-d3bpf"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://github.com/chujDK/d3ctf2022-pwn-d3bpf-and-v2"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://stdnoerr.github.io/writeup/2022/08/21/eBPF-exploitation-(ft.-D-3CTF-d3bpf"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://github.com/chujDK/d3ctf2022-pwn-d3bpf-and-v2"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://stdnoerr.github.io/writeup/2022/08/21/eBPF-exploitation-(ft.-D-3CTF-d3bpf",
        "https://github.com/chujDK/d3ctf2022-pwn-d3bpf-and-v2"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2022 Linux kernel Practice: CTF Tasks resource \"D^3CTF 2022 (d3bpf): .html), · writeup 2\"; URL type: article.",
      "summary_zh": "2022 年 Linux 内核Practice: CTF Tasks资料：「D^3CTF 2022 (d3bpf): .html), · writeup 2」；URL 类型：article。",
      "source_markdown": "D^3CTF 2022 (d3bpf): [writeup](https://stdnoerr.github.io/writeup/2022/08/21/eBPF-exploitation-(ft.-D-3CTF-d3bpf).html), [writeup 2](https://github.com/chujDK/d3ctf2022-pwn-d3bpf-and-v2)",
      "search_text": "d^3ctf 2022 (d3bpf): .html), · writeup 2 d^3ctf 2022 (d3bpf): .html),    practice ctf tasks practice: ctf tasks writeup 2 article https://github.com/chujdk/d3ctf2022-pwn-d3bpf-and-v2 practice ctf tasks article  practice: ctf tasks 2022 linux kernel practice: ctf tasks resource \"d^3ctf 2022 (d3bpf): .html), · writeup 2\"; url type: article. 2022 年 linux 内核practice: ctf tasks资料：「d^3ctf 2022 (d3bpf): .html), · writeup 2」；url 类型：article。 # d^3ctf 2022 (d3bpf): .html), · writeup 2 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: d^3ctf 2022 (d3bpf): .html), resource_label: writeup 2 resource_type: article resource_url: https://github.com/chujdk/d3ctf2022-pwn-d3bpf-and-v2 parent_primary_url: https://stdnoerr.github.io/writeup/2022/08/21/ebpf-exploitation-(ft.-d-3ctf-d3bpf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: d^3ctf 2022 (d3bpf): [writeup](https://stdnoerr.github.io/writeup/2022/08/21/ebpf-exploitation-(ft.-d-3ctf-d3bpf).html), [writeup 2](https://github.com/chujdk/d3ctf2022-pwn-d3bpf-and-v2) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "60fdb428832c042f",
      "item_id": "946dfdf7922f230c",
      "slug": "2022-practice-ctf-tasks-zer0pts-ctf-2022-krce-primary-13141d07",
      "year": 2022,
      "title": "zer0pts CTF 2022 (kRCE):",
      "item_title": "zer0pts CTF 2022 (kRCE):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.willsroot.io/2022/03/zer0pts-ctf-2022-krce-writeup.html",
      "primary_url": "https://www.willsroot.io/2022/03/zer0pts-ctf-2022-krce-writeup.html",
      "parent_primary_url": "https://www.willsroot.io/2022/03/zer0pts-ctf-2022-krce-writeup.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2022-practice-ctf-tasks-zer0pts-ctf-2022-krce-primary-13141d07.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# zer0pts CTF 2022 (kRCE): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: zer0pts CTF 2022 (kRCE): resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2022/03/zer0pts-ctf-2022-krce-writeup.html parent_primary_url: https://www.willsroot.io/2022/03/zer0pts-ctf-2022-krce-writeup.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: zer0pts CTF 2022 (kRCE): [writeup](https://www.willsroot.io/2022/03/zer0pts-ctf-2022-krce-writeup.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none co",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.willsroot.io/2022/03/zer0pts-ctf-2022-krce-writeup.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.willsroot.io/2022/03/zer0pts-ctf-2022-krce-writeup.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2022 Linux kernel Practice: CTF Tasks resource \"zer0pts CTF 2022 (kRCE):\"; URL type: article.",
      "summary_zh": "2022 年 Linux 内核Practice: CTF Tasks资料：「zer0pts CTF 2022 (kRCE):」；URL 类型：article。",
      "source_markdown": "zer0pts CTF 2022 (kRCE): [writeup](https://www.willsroot.io/2022/03/zer0pts-ctf-2022-krce-writeup.html)",
      "search_text": "zer0pts ctf 2022 (krce): zer0pts ctf 2022 (krce):    practice ctf tasks practice: ctf tasks primary article https://www.willsroot.io/2022/03/zer0pts-ctf-2022-krce-writeup.html practice ctf tasks article  practice: ctf tasks 2022 linux kernel practice: ctf tasks resource \"zer0pts ctf 2022 (krce):\"; url type: article. 2022 年 linux 内核practice: ctf tasks资料：「zer0pts ctf 2022 (krce):」；url 类型：article。 # zer0pts ctf 2022 (krce): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: zer0pts ctf 2022 (krce): resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2022/03/zer0pts-ctf-2022-krce-writeup.html parent_primary_url: https://www.willsroot.io/2022/03/zer0pts-ctf-2022-krce-writeup.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: zer0pts ctf 2022 (krce): [writeup](https://www.willsroot.io/2022/03/zer0pts-ctf-2022-krce-writeup.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none co no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d0da69332858ef50",
      "item_id": "872dde7b5407486d",
      "slug": "2022-practice-ctf-tasks-hitcon-ctf-2022-fourchain-kernel-primary-c608cf31",
      "year": 2022,
      "title": "HITCON CTF 2022 (fourchain-kernel):",
      "item_title": "HITCON CTF 2022 (fourchain-kernel):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://org.anize.rs/HITCON-2022/pwn/fourchain-kernel",
      "primary_url": "https://org.anize.rs/HITCON-2022/pwn/fourchain-kernel",
      "parent_primary_url": "https://org.anize.rs/HITCON-2022/pwn/fourchain-kernel",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2022-practice-ctf-tasks-hitcon-ctf-2022-fourchain-kernel-primary-c608cf31.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# HITCON CTF 2022 (fourchain-kernel): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: HITCON CTF 2022 (fourchain-kernel): resource_label: primary resource_type: article resource_url: https://org.anize.rs/HITCON-2022/pwn/fourchain-kernel parent_primary_url: https://org.anize.rs/HITCON-2022/pwn/fourchain-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: HITCON CTF 2022 (fourchain-kernel): [writeup and exploit](https://org.anize.rs/HITCON-2022/pwn/fourchain-kernel) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://org.anize.rs/HITCON-2022/pwn/fourchain-kernel"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://org.anize.rs/HITCON-2022/pwn/fourchain-kernel"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2022 Linux kernel Practice: CTF Tasks resource \"HITCON CTF 2022 (fourchain-kernel):\"; URL type: article.",
      "summary_zh": "2022 年 Linux 内核Practice: CTF Tasks资料：「HITCON CTF 2022 (fourchain-kernel):」；URL 类型：article。",
      "source_markdown": "HITCON CTF 2022 (fourchain-kernel): [writeup and exploit](https://org.anize.rs/HITCON-2022/pwn/fourchain-kernel)",
      "search_text": "hitcon ctf 2022 (fourchain-kernel): hitcon ctf 2022 (fourchain-kernel):    practice ctf tasks practice: ctf tasks primary article https://org.anize.rs/hitcon-2022/pwn/fourchain-kernel practice ctf tasks article  practice: ctf tasks 2022 linux kernel practice: ctf tasks resource \"hitcon ctf 2022 (fourchain-kernel):\"; url type: article. 2022 年 linux 内核practice: ctf tasks资料：「hitcon ctf 2022 (fourchain-kernel):」；url 类型：article。 # hitcon ctf 2022 (fourchain-kernel): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: hitcon ctf 2022 (fourchain-kernel): resource_label: primary resource_type: article resource_url: https://org.anize.rs/hitcon-2022/pwn/fourchain-kernel parent_primary_url: https://org.anize.rs/hitcon-2022/pwn/fourchain-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hitcon ctf 2022 (fourchain-kernel): [writeup and exploit](https://org.anize.rs/hitcon-2022/pwn/fourchain-kernel) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2a186fe5bf41d2a7",
      "item_id": "10bb2ba8510e517f",
      "slug": "2021-practice-ctf-tasks-vulncon-ctf-2021-ips-primary-1af6e8f4",
      "year": 2021,
      "title": "VULNCON CTF 2021 (IPS): , , ,",
      "item_title": "VULNCON CTF 2021 (IPS): , , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://kileak.github.io/ctf/2021/vulncon-ips/",
      "primary_url": "https://kileak.github.io/ctf/2021/vulncon-ips/",
      "parent_primary_url": "https://kileak.github.io/ctf/2021/vulncon-ips/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-vulncon-ctf-2021-ips-primary-1af6e8f4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# VULNCON CTF 2021 (IPS): , , , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: VULNCON CTF 2021 (IPS): , , , resource_label: primary resource_type: article resource_url: https://kileak.github.io/ctf/2021/vulncon-ips/ parent_primary_url: https://kileak.github.io/ctf/2021/vulncon-ips/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: VULNCON CTF 2021 (IPS): [writeup](https://kileak.github.io/ctf/2021/vulncon-ips/), [writeup 2](https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/), [writeup 3](https://n132.github.io/2024/02/09/IPS.html), [writeup 4](https://n132.github.io/2024/02/28/IPS-Freelist.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: P",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kileak.github.io/ctf/2021/vulncon-ips/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/"
        },
        {
          "label": "writeup 3",
          "type": "article",
          "url": "https://n132.github.io/2024/02/09/IPS.html"
        },
        {
          "label": "writeup 4",
          "type": "article",
          "url": "https://n132.github.io/2024/02/28/IPS-Freelist.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kileak.github.io/ctf/2021/vulncon-ips/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/"
          },
          {
            "label": "writeup 3",
            "type": "article",
            "url": "https://n132.github.io/2024/02/09/IPS.html"
          },
          {
            "label": "writeup 4",
            "type": "article",
            "url": "https://n132.github.io/2024/02/28/IPS-Freelist.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://kileak.github.io/ctf/2021/vulncon-ips/",
        "https://n132.github.io/2024/02/09/IPS.html",
        "https://n132.github.io/2024/02/28/IPS-Freelist.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2021 Linux kernel Practice: CTF Tasks resource \"VULNCON CTF 2021 (IPS): , , ,\"; URL type: article.",
      "summary_zh": "2021 年 Linux 内核Practice: CTF Tasks资料：「VULNCON CTF 2021 (IPS): , , ,」；URL 类型：article。",
      "source_markdown": "VULNCON CTF 2021 (IPS): [writeup](https://kileak.github.io/ctf/2021/vulncon-ips/), [writeup 2](https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/), [writeup 3](https://n132.github.io/2024/02/09/IPS.html), [writeup 4](https://n132.github.io/2024/02/28/IPS-Freelist.html)",
      "search_text": "vulncon ctf 2021 (ips): , , , vulncon ctf 2021 (ips): , , ,    practice ctf tasks practice: ctf tasks primary article https://kileak.github.io/ctf/2021/vulncon-ips/ practice ctf tasks article  practice: ctf tasks 2021 linux kernel practice: ctf tasks resource \"vulncon ctf 2021 (ips): , , ,\"; url type: article. 2021 年 linux 内核practice: ctf tasks资料：「vulncon ctf 2021 (ips): , , ,」；url 类型：article。 # vulncon ctf 2021 (ips): , , , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: vulncon ctf 2021 (ips): , , , resource_label: primary resource_type: article resource_url: https://kileak.github.io/ctf/2021/vulncon-ips/ parent_primary_url: https://kileak.github.io/ctf/2021/vulncon-ips/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: vulncon ctf 2021 (ips): [writeup](https://kileak.github.io/ctf/2021/vulncon-ips/), [writeup 2](https://blog.kylebot.net/2022/01/10/vulncon-2021-ips/), [writeup 3](https://n132.github.io/2024/02/09/ips.html), [writeup 4](https://n132.github.io/2024/02/28/ips-freelist.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: p no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3791e5f4951ea64c",
      "item_id": "10bb2ba8510e517f",
      "slug": "2021-practice-ctf-tasks-vulncon-ctf-2021-ips-writeup-2-c44844d9",
      "year": 2021,
      "title": "VULNCON CTF 2021 (IPS): , , , · writeup 2",
      "item_title": "VULNCON CTF 2021 (IPS): , , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup 2",
      "resource_type": "article",
      "resource_url": "https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/",
      "primary_url": "https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/",
      "parent_primary_url": "https://kileak.github.io/ctf/2021/vulncon-ips/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-vulncon-ctf-2021-ips-writeup-2-c44844d9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# VULNCON CTF 2021 (IPS): , , , · writeup 2 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: VULNCON CTF 2021 (IPS): , , , resource_label: writeup 2 resource_type: article resource_url: https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/ parent_primary_url: https://kileak.github.io/ctf/2021/vulncon-ips/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: VULNCON CTF 2021 (IPS): [writeup](https://kileak.github.io/ctf/2021/vulncon-ips/), [writeup 2](https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/), [writeup 3](https://n132.github.io/2024/02/09/IPS.html), [writeup 4](https://n132.github.io/2024/02/28/IPS-Freelist.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kileak.github.io/ctf/2021/vulncon-ips/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/"
        },
        {
          "label": "writeup 3",
          "type": "article",
          "url": "https://n132.github.io/2024/02/09/IPS.html"
        },
        {
          "label": "writeup 4",
          "type": "article",
          "url": "https://n132.github.io/2024/02/28/IPS-Freelist.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kileak.github.io/ctf/2021/vulncon-ips/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/"
          },
          {
            "label": "writeup 3",
            "type": "article",
            "url": "https://n132.github.io/2024/02/09/IPS.html"
          },
          {
            "label": "writeup 4",
            "type": "article",
            "url": "https://n132.github.io/2024/02/28/IPS-Freelist.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://kileak.github.io/ctf/2021/vulncon-ips/",
        "https://n132.github.io/2024/02/09/IPS.html",
        "https://n132.github.io/2024/02/28/IPS-Freelist.html"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2021 Linux kernel Practice: CTF Tasks resource \"VULNCON CTF 2021 (IPS): , , , · writeup 2\"; URL type: article.",
      "summary_zh": "2021 年 Linux 内核Practice: CTF Tasks资料：「VULNCON CTF 2021 (IPS): , , , · writeup 2」；URL 类型：article。",
      "source_markdown": "VULNCON CTF 2021 (IPS): [writeup](https://kileak.github.io/ctf/2021/vulncon-ips/), [writeup 2](https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/), [writeup 3](https://n132.github.io/2024/02/09/IPS.html), [writeup 4](https://n132.github.io/2024/02/28/IPS-Freelist.html)",
      "search_text": "vulncon ctf 2021 (ips): , , , · writeup 2 vulncon ctf 2021 (ips): , , ,    practice ctf tasks practice: ctf tasks writeup 2 article https://blog.kylebot.net/2022/01/10/vulncon-2021-ips/ practice ctf tasks article  practice: ctf tasks 2021 linux kernel practice: ctf tasks resource \"vulncon ctf 2021 (ips): , , , · writeup 2\"; url type: article. 2021 年 linux 内核practice: ctf tasks资料：「vulncon ctf 2021 (ips): , , , · writeup 2」；url 类型：article。 # vulncon ctf 2021 (ips): , , , · writeup 2 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: vulncon ctf 2021 (ips): , , , resource_label: writeup 2 resource_type: article resource_url: https://blog.kylebot.net/2022/01/10/vulncon-2021-ips/ parent_primary_url: https://kileak.github.io/ctf/2021/vulncon-ips/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: vulncon ctf 2021 (ips): [writeup](https://kileak.github.io/ctf/2021/vulncon-ips/), [writeup 2](https://blog.kylebot.net/2022/01/10/vulncon-2021-ips/), [writeup 3](https://n132.github.io/2024/02/09/ips.html), [writeup 4](https://n132.github.io/2024/02/28/ips-freelist.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "51efca183c43ca06",
      "item_id": "10bb2ba8510e517f",
      "slug": "2021-practice-ctf-tasks-vulncon-ctf-2021-ips-writeup-3-50269f47",
      "year": 2021,
      "title": "VULNCON CTF 2021 (IPS): , , , · writeup 3",
      "item_title": "VULNCON CTF 2021 (IPS): , , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup 3",
      "resource_type": "article",
      "resource_url": "https://n132.github.io/2024/02/09/IPS.html",
      "primary_url": "https://n132.github.io/2024/02/09/IPS.html",
      "parent_primary_url": "https://kileak.github.io/ctf/2021/vulncon-ips/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-vulncon-ctf-2021-ips-writeup-3-50269f47.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# VULNCON CTF 2021 (IPS): , , , · writeup 3 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: VULNCON CTF 2021 (IPS): , , , resource_label: writeup 3 resource_type: article resource_url: https://n132.github.io/2024/02/09/IPS.html parent_primary_url: https://kileak.github.io/ctf/2021/vulncon-ips/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: VULNCON CTF 2021 (IPS): [writeup](https://kileak.github.io/ctf/2021/vulncon-ips/), [writeup 2](https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/), [writeup 3](https://n132.github.io/2024/02/09/IPS.html), [writeup 4](https://n132.github.io/2024/02/28/IPS-Freelist.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kileak.github.io/ctf/2021/vulncon-ips/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/"
        },
        {
          "label": "writeup 3",
          "type": "article",
          "url": "https://n132.github.io/2024/02/09/IPS.html"
        },
        {
          "label": "writeup 4",
          "type": "article",
          "url": "https://n132.github.io/2024/02/28/IPS-Freelist.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kileak.github.io/ctf/2021/vulncon-ips/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/"
          },
          {
            "label": "writeup 3",
            "type": "article",
            "url": "https://n132.github.io/2024/02/09/IPS.html"
          },
          {
            "label": "writeup 4",
            "type": "article",
            "url": "https://n132.github.io/2024/02/28/IPS-Freelist.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://kileak.github.io/ctf/2021/vulncon-ips/",
        "https://n132.github.io/2024/02/09/IPS.html",
        "https://n132.github.io/2024/02/28/IPS-Freelist.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2021 Linux kernel Practice: CTF Tasks resource \"VULNCON CTF 2021 (IPS): , , , · writeup 3\"; URL type: article.",
      "summary_zh": "2021 年 Linux 内核Practice: CTF Tasks资料：「VULNCON CTF 2021 (IPS): , , , · writeup 3」；URL 类型：article。",
      "source_markdown": "VULNCON CTF 2021 (IPS): [writeup](https://kileak.github.io/ctf/2021/vulncon-ips/), [writeup 2](https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/), [writeup 3](https://n132.github.io/2024/02/09/IPS.html), [writeup 4](https://n132.github.io/2024/02/28/IPS-Freelist.html)",
      "search_text": "vulncon ctf 2021 (ips): , , , · writeup 3 vulncon ctf 2021 (ips): , , ,    practice ctf tasks practice: ctf tasks writeup 3 article https://n132.github.io/2024/02/09/ips.html practice ctf tasks article  practice: ctf tasks 2021 linux kernel practice: ctf tasks resource \"vulncon ctf 2021 (ips): , , , · writeup 3\"; url type: article. 2021 年 linux 内核practice: ctf tasks资料：「vulncon ctf 2021 (ips): , , , · writeup 3」；url 类型：article。 # vulncon ctf 2021 (ips): , , , · writeup 3 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: vulncon ctf 2021 (ips): , , , resource_label: writeup 3 resource_type: article resource_url: https://n132.github.io/2024/02/09/ips.html parent_primary_url: https://kileak.github.io/ctf/2021/vulncon-ips/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: vulncon ctf 2021 (ips): [writeup](https://kileak.github.io/ctf/2021/vulncon-ips/), [writeup 2](https://blog.kylebot.net/2022/01/10/vulncon-2021-ips/), [writeup 3](https://n132.github.io/2024/02/09/ips.html), [writeup 4](https://n132.github.io/2024/02/28/ips-freelist.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "2a65ca2c9deb4984",
      "item_id": "10bb2ba8510e517f",
      "slug": "2021-practice-ctf-tasks-vulncon-ctf-2021-ips-writeup-4-1b9171db",
      "year": 2021,
      "title": "VULNCON CTF 2021 (IPS): , , , · writeup 4",
      "item_title": "VULNCON CTF 2021 (IPS): , , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup 4",
      "resource_type": "article",
      "resource_url": "https://n132.github.io/2024/02/28/IPS-Freelist.html",
      "primary_url": "https://n132.github.io/2024/02/28/IPS-Freelist.html",
      "parent_primary_url": "https://kileak.github.io/ctf/2021/vulncon-ips/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-vulncon-ctf-2021-ips-writeup-4-1b9171db.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# VULNCON CTF 2021 (IPS): , , , · writeup 4 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: VULNCON CTF 2021 (IPS): , , , resource_label: writeup 4 resource_type: article resource_url: https://n132.github.io/2024/02/28/IPS-Freelist.html parent_primary_url: https://kileak.github.io/ctf/2021/vulncon-ips/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: VULNCON CTF 2021 (IPS): [writeup](https://kileak.github.io/ctf/2021/vulncon-ips/), [writeup 2](https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/), [writeup 3](https://n132.github.io/2024/02/09/IPS.html), [writeup 4](https://n132.github.io/2024/02/28/IPS-Freelist.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no i",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kileak.github.io/ctf/2021/vulncon-ips/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/"
        },
        {
          "label": "writeup 3",
          "type": "article",
          "url": "https://n132.github.io/2024/02/09/IPS.html"
        },
        {
          "label": "writeup 4",
          "type": "article",
          "url": "https://n132.github.io/2024/02/28/IPS-Freelist.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kileak.github.io/ctf/2021/vulncon-ips/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/"
          },
          {
            "label": "writeup 3",
            "type": "article",
            "url": "https://n132.github.io/2024/02/09/IPS.html"
          },
          {
            "label": "writeup 4",
            "type": "article",
            "url": "https://n132.github.io/2024/02/28/IPS-Freelist.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://kileak.github.io/ctf/2021/vulncon-ips/",
        "https://n132.github.io/2024/02/09/IPS.html",
        "https://n132.github.io/2024/02/28/IPS-Freelist.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2021 Linux kernel Practice: CTF Tasks resource \"VULNCON CTF 2021 (IPS): , , , · writeup 4\"; URL type: article.",
      "summary_zh": "2021 年 Linux 内核Practice: CTF Tasks资料：「VULNCON CTF 2021 (IPS): , , , · writeup 4」；URL 类型：article。",
      "source_markdown": "VULNCON CTF 2021 (IPS): [writeup](https://kileak.github.io/ctf/2021/vulncon-ips/), [writeup 2](https://blog.kylebot.net/2022/01/10/VULNCON-2021-IPS/), [writeup 3](https://n132.github.io/2024/02/09/IPS.html), [writeup 4](https://n132.github.io/2024/02/28/IPS-Freelist.html)",
      "search_text": "vulncon ctf 2021 (ips): , , , · writeup 4 vulncon ctf 2021 (ips): , , ,    practice ctf tasks practice: ctf tasks writeup 4 article https://n132.github.io/2024/02/28/ips-freelist.html practice ctf tasks article  practice: ctf tasks 2021 linux kernel practice: ctf tasks resource \"vulncon ctf 2021 (ips): , , , · writeup 4\"; url type: article. 2021 年 linux 内核practice: ctf tasks资料：「vulncon ctf 2021 (ips): , , , · writeup 4」；url 类型：article。 # vulncon ctf 2021 (ips): , , , · writeup 4 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: vulncon ctf 2021 (ips): , , , resource_label: writeup 4 resource_type: article resource_url: https://n132.github.io/2024/02/28/ips-freelist.html parent_primary_url: https://kileak.github.io/ctf/2021/vulncon-ips/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: vulncon ctf 2021 (ips): [writeup](https://kileak.github.io/ctf/2021/vulncon-ips/), [writeup 2](https://blog.kylebot.net/2022/01/10/vulncon-2021-ips/), [writeup 3](https://n132.github.io/2024/02/09/ips.html), [writeup 4](https://n132.github.io/2024/02/28/ips-freelist.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no i no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "d8191de35f23c9cc",
      "item_id": "3c4b4a2ec59c4931",
      "slug": "2021-practice-ctf-tasks-n1-ctf-2021-baby-guess-primary-5bb679e5",
      "year": 2021,
      "title": "N1 CTF 2021 (baby-guess): ,",
      "item_title": "N1 CTF 2021 (baby-guess): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/sajjadium/ctf-archives/tree/main/N1CTF/2021/pwn/baby_guess",
      "primary_url": "https://github.com/sajjadium/ctf-archives/tree/main/N1CTF/2021/pwn/baby_guess",
      "parent_primary_url": "https://github.com/sajjadium/ctf-archives/tree/main/N1CTF/2021/pwn/baby_guess",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-n1-ctf-2021-baby-guess-primary-5bb679e5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# N1 CTF 2021 (baby-guess): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: N1 CTF 2021 (baby-guess): , resource_label: primary resource_type: code resource_url: https://github.com/sajjadium/ctf-archives/tree/main/N1CTF/2021/pwn/baby_guess parent_primary_url: https://github.com/sajjadium/ctf-archives/tree/main/N1CTF/2021/pwn/baby_guess source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: N1 CTF 2021 (baby-guess): [source](https://github.com/sajjadium/ctf-archives/tree/main/N1CTF/2021/pwn/baby_guess), [writeup](https://kileak.github.io/ctf/2021/n1ctf21-babyguess/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU k",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/sajjadium/ctf-archives/tree/main/N1CTF/2021/pwn/baby_guess"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://kileak.github.io/ctf/2021/n1ctf21-babyguess/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://kileak.github.io/ctf/2021/n1ctf21-babyguess/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/sajjadium/ctf-archives/tree/main/N1CTF/2021/pwn/baby_guess"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/sajjadium/ctf-archives/tree/main/N1CTF/2021/pwn/baby_guess",
        "https://kileak.github.io/ctf/2021/n1ctf21-babyguess/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "pwn",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "The N1 CTF 2021 baby-guess challenge involves exploiting a vulnerability in a guessing game.",
      "summary_zh": "N1 CTF 2021 baby-guess 挑战涉及利用猜测游戏中的漏洞。",
      "source_markdown": "N1 CTF 2021 (baby-guess): [source](https://github.com/sajjadium/ctf-archives/tree/main/N1CTF/2021/pwn/baby_guess), [writeup](https://kileak.github.io/ctf/2021/n1ctf21-babyguess/)",
      "search_text": "n1 ctf 2021 (baby-guess): , n1 ctf 2021 (baby-guess): ,    practice ctf tasks practice: ctf tasks primary code https://github.com/sajjadium/ctf-archives/tree/main/n1ctf/2021/pwn/baby_guess ctf pwn vulnerability  challenge the n1 ctf 2021 baby-guess challenge involves exploiting a vulnerability in a guessing game. n1 ctf 2021 baby-guess 挑战涉及利用猜测游戏中的漏洞。 # n1 ctf 2021 (baby-guess): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: n1 ctf 2021 (baby-guess): , resource_label: primary resource_type: code resource_url: https://github.com/sajjadium/ctf-archives/tree/main/n1ctf/2021/pwn/baby_guess parent_primary_url: https://github.com/sajjadium/ctf-archives/tree/main/n1ctf/2021/pwn/baby_guess source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: n1 ctf 2021 (baby-guess): [source](https://github.com/sajjadium/ctf-archives/tree/main/n1ctf/2021/pwn/baby_guess), [writeup](https://kileak.github.io/ctf/2021/n1ctf21-babyguess/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu k no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "21edd690c9b56fb7",
      "item_id": "3c4b4a2ec59c4931",
      "slug": "2021-practice-ctf-tasks-n1-ctf-2021-baby-guess-writeup-55f50a63",
      "year": 2021,
      "title": "N1 CTF 2021 (baby-guess): , · writeup",
      "item_title": "N1 CTF 2021 (baby-guess): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup",
      "resource_type": "article",
      "resource_url": "https://kileak.github.io/ctf/2021/n1ctf21-babyguess/",
      "primary_url": "https://kileak.github.io/ctf/2021/n1ctf21-babyguess/",
      "parent_primary_url": "https://github.com/sajjadium/ctf-archives/tree/main/N1CTF/2021/pwn/baby_guess",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-n1-ctf-2021-baby-guess-writeup-55f50a63.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# N1 CTF 2021 (baby-guess): , · writeup record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: N1 CTF 2021 (baby-guess): , resource_label: writeup resource_type: article resource_url: https://kileak.github.io/ctf/2021/n1ctf21-babyguess/ parent_primary_url: https://github.com/sajjadium/ctf-archives/tree/main/N1CTF/2021/pwn/baby_guess source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: N1 CTF 2021 (baby-guess): [source](https://github.com/sajjadium/ctf-archives/tree/main/N1CTF/2021/pwn/baby_guess), [writeup](https://kileak.github.io/ctf/2021/n1ctf21-babyguess/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/sajjadium/ctf-archives/tree/main/N1CTF/2021/pwn/baby_guess"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://kileak.github.io/ctf/2021/n1ctf21-babyguess/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://kileak.github.io/ctf/2021/n1ctf21-babyguess/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/sajjadium/ctf-archives/tree/main/N1CTF/2021/pwn/baby_guess"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/sajjadium/ctf-archives/tree/main/N1CTF/2021/pwn/baby_guess",
        "https://kileak.github.io/ctf/2021/n1ctf21-babyguess/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "writeup",
        "pwn"
      ],
      "affected_area": "",
      "exploit_stage": "documentation",
      "summary_en": "The N1 CTF 2021 baby-guess writeup provides insights into the exploitation process.",
      "summary_zh": "N1 CTF 2021 baby-guess 的写作提供了对利用过程的见解。",
      "source_markdown": "N1 CTF 2021 (baby-guess): [source](https://github.com/sajjadium/ctf-archives/tree/main/N1CTF/2021/pwn/baby_guess), [writeup](https://kileak.github.io/ctf/2021/n1ctf21-babyguess/)",
      "search_text": "n1 ctf 2021 (baby-guess): , · writeup n1 ctf 2021 (baby-guess): ,    practice ctf tasks practice: ctf tasks writeup article https://kileak.github.io/ctf/2021/n1ctf21-babyguess/ ctf writeup pwn  documentation the n1 ctf 2021 baby-guess writeup provides insights into the exploitation process. n1 ctf 2021 baby-guess 的写作提供了对利用过程的见解。 # n1 ctf 2021 (baby-guess): , · writeup record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: n1 ctf 2021 (baby-guess): , resource_label: writeup resource_type: article resource_url: https://kileak.github.io/ctf/2021/n1ctf21-babyguess/ parent_primary_url: https://github.com/sajjadium/ctf-archives/tree/main/n1ctf/2021/pwn/baby_guess source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: n1 ctf 2021 (baby-guess): [source](https://github.com/sajjadium/ctf-archives/tree/main/n1ctf/2021/pwn/baby_guess), [writeup](https://kileak.github.io/ctf/2021/n1ctf21-babyguess/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b257db6a5737615c",
      "item_id": "15cb83b49fefc940",
      "slug": "2021-practice-ctf-tasks-balsn-ctf-2021-futex-primary-e3849ee1",
      "year": 2021,
      "title": "Balsn CTF 2021 (futex): ,",
      "item_title": "Balsn CTF 2021 (futex): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/sajjadium/ctf-archives/tree/main/Balsn/2021/pwn/futex",
      "primary_url": "https://github.com/sajjadium/ctf-archives/tree/main/Balsn/2021/pwn/futex",
      "parent_primary_url": "https://github.com/sajjadium/ctf-archives/tree/main/Balsn/2021/pwn/futex",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-balsn-ctf-2021-futex-primary-e3849ee1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Balsn CTF 2021 (futex): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Balsn CTF 2021 (futex): , resource_label: primary resource_type: code resource_url: https://github.com/sajjadium/ctf-archives/tree/main/Balsn/2021/pwn/futex parent_primary_url: https://github.com/sajjadium/ctf-archives/tree/main/Balsn/2021/pwn/futex source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Balsn CTF 2021 (futex): [source](https://github.com/sajjadium/ctf-archives/tree/main/Balsn/2021/pwn/futex), [writeup](https://gist.github.com/st424204/e6395bdbed43b1bf308a4de2ba9d6ba0) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel ra",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/sajjadium/ctf-archives/tree/main/Balsn/2021/pwn/futex"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://gist.github.com/st424204/e6395bdbed43b1bf308a4de2ba9d6ba0"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://gist.github.com/st424204/e6395bdbed43b1bf308a4de2ba9d6ba0"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/sajjadium/ctf-archives/tree/main/Balsn/2021/pwn/futex"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/sajjadium/ctf-archives/tree/main/Balsn/2021/pwn/futex",
        "https://gist.github.com/st424204/e6395bdbed43b1bf308a4de2ba9d6ba0"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "pwn",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "The Balsn CTF 2021 futex challenge focuses on exploiting a futex-related vulnerability.",
      "summary_zh": "Balsn CTF 2021 futex 挑战专注于利用与 futex 相关的漏洞。",
      "source_markdown": "Balsn CTF 2021 (futex): [source](https://github.com/sajjadium/ctf-archives/tree/main/Balsn/2021/pwn/futex), [writeup](https://gist.github.com/st424204/e6395bdbed43b1bf308a4de2ba9d6ba0)",
      "search_text": "balsn ctf 2021 (futex): , balsn ctf 2021 (futex): ,    practice ctf tasks practice: ctf tasks primary code https://github.com/sajjadium/ctf-archives/tree/main/balsn/2021/pwn/futex ctf pwn vulnerability  challenge the balsn ctf 2021 futex challenge focuses on exploiting a futex-related vulnerability. balsn ctf 2021 futex 挑战专注于利用与 futex 相关的漏洞。 # balsn ctf 2021 (futex): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: balsn ctf 2021 (futex): , resource_label: primary resource_type: code resource_url: https://github.com/sajjadium/ctf-archives/tree/main/balsn/2021/pwn/futex parent_primary_url: https://github.com/sajjadium/ctf-archives/tree/main/balsn/2021/pwn/futex source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: balsn ctf 2021 (futex): [source](https://github.com/sajjadium/ctf-archives/tree/main/balsn/2021/pwn/futex), [writeup](https://gist.github.com/st424204/e6395bdbed43b1bf308a4de2ba9d6ba0) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel ra no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "e8c17c51a4cf26bf",
      "item_id": "15cb83b49fefc940",
      "slug": "2021-practice-ctf-tasks-balsn-ctf-2021-futex-writeup-6b4e78bc",
      "year": 2021,
      "title": "Balsn CTF 2021 (futex): , · writeup",
      "item_title": "Balsn CTF 2021 (futex): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup",
      "resource_type": "article",
      "resource_url": "https://gist.github.com/st424204/e6395bdbed43b1bf308a4de2ba9d6ba0",
      "primary_url": "https://gist.github.com/st424204/e6395bdbed43b1bf308a4de2ba9d6ba0",
      "parent_primary_url": "https://github.com/sajjadium/ctf-archives/tree/main/Balsn/2021/pwn/futex",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-balsn-ctf-2021-futex-writeup-6b4e78bc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Balsn CTF 2021 (futex): , · writeup record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Balsn CTF 2021 (futex): , resource_label: writeup resource_type: article resource_url: https://gist.github.com/st424204/e6395bdbed43b1bf308a4de2ba9d6ba0 parent_primary_url: https://github.com/sajjadium/ctf-archives/tree/main/Balsn/2021/pwn/futex source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Balsn CTF 2021 (futex): [source](https://github.com/sajjadium/ctf-archives/tree/main/Balsn/2021/pwn/futex), [writeup](https://gist.github.com/st424204/e6395bdbed43b1bf308a4de2ba9d6ba0) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ker",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/sajjadium/ctf-archives/tree/main/Balsn/2021/pwn/futex"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://gist.github.com/st424204/e6395bdbed43b1bf308a4de2ba9d6ba0"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://gist.github.com/st424204/e6395bdbed43b1bf308a4de2ba9d6ba0"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/sajjadium/ctf-archives/tree/main/Balsn/2021/pwn/futex"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/sajjadium/ctf-archives/tree/main/Balsn/2021/pwn/futex",
        "https://gist.github.com/st424204/e6395bdbed43b1bf308a4de2ba9d6ba0"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "writeup",
        "pwn"
      ],
      "affected_area": "",
      "exploit_stage": "documentation",
      "summary_en": "The Balsn CTF 2021 futex writeup details the exploitation techniques used.",
      "summary_zh": "Balsn CTF 2021 futex 的写作详细介绍了使用的利用技术。",
      "source_markdown": "Balsn CTF 2021 (futex): [source](https://github.com/sajjadium/ctf-archives/tree/main/Balsn/2021/pwn/futex), [writeup](https://gist.github.com/st424204/e6395bdbed43b1bf308a4de2ba9d6ba0)",
      "search_text": "balsn ctf 2021 (futex): , · writeup balsn ctf 2021 (futex): ,    practice ctf tasks practice: ctf tasks writeup article https://gist.github.com/st424204/e6395bdbed43b1bf308a4de2ba9d6ba0 ctf writeup pwn  documentation the balsn ctf 2021 futex writeup details the exploitation techniques used. balsn ctf 2021 futex 的写作详细介绍了使用的利用技术。 # balsn ctf 2021 (futex): , · writeup record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: balsn ctf 2021 (futex): , resource_label: writeup resource_type: article resource_url: https://gist.github.com/st424204/e6395bdbed43b1bf308a4de2ba9d6ba0 parent_primary_url: https://github.com/sajjadium/ctf-archives/tree/main/balsn/2021/pwn/futex source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: balsn ctf 2021 (futex): [source](https://github.com/sajjadium/ctf-archives/tree/main/balsn/2021/pwn/futex), [writeup](https://gist.github.com/st424204/e6395bdbed43b1bf308a4de2ba9d6ba0) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu ker no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "c3c45f99c80aa342",
      "item_id": "79c42e5d2bbcd34b",
      "slug": "2021-practice-ctf-tasks-tsg-ctf-2021-lkgit-primary-58120bc1",
      "year": 2021,
      "title": "TSG CTF 2021 (lkgit): , ,",
      "item_title": "TSG CTF 2021 (lkgit): , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://kileak.github.io/ctf/2021/tsg-lkgit/",
      "primary_url": "https://kileak.github.io/ctf/2021/tsg-lkgit/",
      "parent_primary_url": "https://kileak.github.io/ctf/2021/tsg-lkgit/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-tsg-ctf-2021-lkgit-primary-58120bc1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TSG CTF 2021 (lkgit): , , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: TSG CTF 2021 (lkgit): , , resource_label: primary resource_type: article resource_url: https://kileak.github.io/ctf/2021/tsg-lkgit/ parent_primary_url: https://kileak.github.io/ctf/2021/tsg-lkgit/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: TSG CTF 2021 (lkgit): [writeup](https://kileak.github.io/ctf/2021/tsg-lkgit/), [writeup 2](https://smallkirby.hatenablog.com/entry/2021/10/03/171804), [writeup 3](https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kileak.github.io/ctf/2021/tsg-lkgit/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://smallkirby.hatenablog.com/entry/2021/10/03/171804"
        },
        {
          "label": "writeup 3",
          "type": "article",
          "url": "https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kileak.github.io/ctf/2021/tsg-lkgit/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://smallkirby.hatenablog.com/entry/2021/10/03/171804"
          },
          {
            "label": "writeup 3",
            "type": "article",
            "url": "https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://kileak.github.io/ctf/2021/tsg-lkgit/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "pwn",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "The TSG CTF 2021 lkgit challenge involves exploiting a vulnerability in a git-related application.",
      "summary_zh": "TSG CTF 2021 lkgit 挑战涉及利用与 git 相关的应用程序中的漏洞。",
      "source_markdown": "TSG CTF 2021 (lkgit): [writeup](https://kileak.github.io/ctf/2021/tsg-lkgit/), [writeup 2](https://smallkirby.hatenablog.com/entry/2021/10/03/171804), [writeup 3](https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves)",
      "search_text": "tsg ctf 2021 (lkgit): , , tsg ctf 2021 (lkgit): , ,    practice ctf tasks practice: ctf tasks primary article https://kileak.github.io/ctf/2021/tsg-lkgit/ ctf pwn vulnerability  challenge the tsg ctf 2021 lkgit challenge involves exploiting a vulnerability in a git-related application. tsg ctf 2021 lkgit 挑战涉及利用与 git 相关的应用程序中的漏洞。 # tsg ctf 2021 (lkgit): , , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: tsg ctf 2021 (lkgit): , , resource_label: primary resource_type: article resource_url: https://kileak.github.io/ctf/2021/tsg-lkgit/ parent_primary_url: https://kileak.github.io/ctf/2021/tsg-lkgit/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: tsg ctf 2021 (lkgit): [writeup](https://kileak.github.io/ctf/2021/tsg-lkgit/), [writeup 2](https://smallkirby.hatenablog.com/entry/2021/10/03/171804), [writeup 3](https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "128c12c9b0c18f87",
      "item_id": "79c42e5d2bbcd34b",
      "slug": "2021-practice-ctf-tasks-tsg-ctf-2021-lkgit-writeup-2-b89d61de",
      "year": 2021,
      "title": "TSG CTF 2021 (lkgit): , , · writeup 2",
      "item_title": "TSG CTF 2021 (lkgit): , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup 2",
      "resource_type": "article",
      "resource_url": "https://smallkirby.hatenablog.com/entry/2021/10/03/171804",
      "primary_url": "https://smallkirby.hatenablog.com/entry/2021/10/03/171804",
      "parent_primary_url": "https://kileak.github.io/ctf/2021/tsg-lkgit/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-tsg-ctf-2021-lkgit-writeup-2-b89d61de.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TSG CTF 2021 (lkgit): , , · writeup 2 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: TSG CTF 2021 (lkgit): , , resource_label: writeup 2 resource_type: article resource_url: https://smallkirby.hatenablog.com/entry/2021/10/03/171804 parent_primary_url: https://kileak.github.io/ctf/2021/tsg-lkgit/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: TSG CTF 2021 (lkgit): [writeup](https://kileak.github.io/ctf/2021/tsg-lkgit/), [writeup 2](https://smallkirby.hatenablog.com/entry/2021/10/03/171804), [writeup 3](https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production i",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kileak.github.io/ctf/2021/tsg-lkgit/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://smallkirby.hatenablog.com/entry/2021/10/03/171804"
        },
        {
          "label": "writeup 3",
          "type": "article",
          "url": "https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kileak.github.io/ctf/2021/tsg-lkgit/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://smallkirby.hatenablog.com/entry/2021/10/03/171804"
          },
          {
            "label": "writeup 3",
            "type": "article",
            "url": "https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://kileak.github.io/ctf/2021/tsg-lkgit/"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "writeup",
        "pwn"
      ],
      "affected_area": "",
      "exploit_stage": "documentation",
      "summary_en": "The TSG CTF 2021 lkgit writeup provides a comprehensive analysis of the exploitation process.",
      "summary_zh": "TSG CTF 2021 lkgit 的写作提供了对利用过程的全面分析。",
      "source_markdown": "TSG CTF 2021 (lkgit): [writeup](https://kileak.github.io/ctf/2021/tsg-lkgit/), [writeup 2](https://smallkirby.hatenablog.com/entry/2021/10/03/171804), [writeup 3](https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves)",
      "search_text": "tsg ctf 2021 (lkgit): , , · writeup 2 tsg ctf 2021 (lkgit): , ,    practice ctf tasks practice: ctf tasks writeup 2 article https://smallkirby.hatenablog.com/entry/2021/10/03/171804 ctf writeup pwn  documentation the tsg ctf 2021 lkgit writeup provides a comprehensive analysis of the exploitation process. tsg ctf 2021 lkgit 的写作提供了对利用过程的全面分析。 # tsg ctf 2021 (lkgit): , , · writeup 2 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: tsg ctf 2021 (lkgit): , , resource_label: writeup 2 resource_type: article resource_url: https://smallkirby.hatenablog.com/entry/2021/10/03/171804 parent_primary_url: https://kileak.github.io/ctf/2021/tsg-lkgit/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: tsg ctf 2021 (lkgit): [writeup](https://kileak.github.io/ctf/2021/tsg-lkgit/), [writeup 2](https://smallkirby.hatenablog.com/entry/2021/10/03/171804), [writeup 3](https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production i no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "a5f12746f8d3f762",
      "item_id": "79c42e5d2bbcd34b",
      "slug": "2021-practice-ctf-tasks-tsg-ctf-2021-lkgit-writeup-3-ff839b51",
      "year": 2021,
      "title": "TSG CTF 2021 (lkgit): , , · writeup 3",
      "item_title": "TSG CTF 2021 (lkgit): , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup 3",
      "resource_type": "article",
      "resource_url": "https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves",
      "primary_url": "https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves",
      "parent_primary_url": "https://kileak.github.io/ctf/2021/tsg-lkgit/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-tsg-ctf-2021-lkgit-writeup-3-ff839b51.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TSG CTF 2021 (lkgit): , , · writeup 3 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: TSG CTF 2021 (lkgit): , , resource_label: writeup 3 resource_type: article resource_url: https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves parent_primary_url: https://kileak.github.io/ctf/2021/tsg-lkgit/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: TSG CTF 2021 (lkgit): [writeup](https://kileak.github.io/ctf/2021/tsg-lkgit/), [writeup 2](https://smallkirby.hatenablog.com/entry/2021/10/03/171804), [writeup 3](https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_im",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kileak.github.io/ctf/2021/tsg-lkgit/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://smallkirby.hatenablog.com/entry/2021/10/03/171804"
        },
        {
          "label": "writeup 3",
          "type": "article",
          "url": "https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kileak.github.io/ctf/2021/tsg-lkgit/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://smallkirby.hatenablog.com/entry/2021/10/03/171804"
          },
          {
            "label": "writeup 3",
            "type": "article",
            "url": "https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://kileak.github.io/ctf/2021/tsg-lkgit/"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "writeup",
        "pwn"
      ],
      "affected_area": "",
      "exploit_stage": "documentation",
      "summary_en": "The TSG CTF 2021 lkgit writeup 3 offers additional insights into the challenge's exploitation.",
      "summary_zh": "TSG CTF 2021 lkgit 的写作 3 提供了对挑战利用的额外见解。",
      "source_markdown": "TSG CTF 2021 (lkgit): [writeup](https://kileak.github.io/ctf/2021/tsg-lkgit/), [writeup 2](https://smallkirby.hatenablog.com/entry/2021/10/03/171804), [writeup 3](https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves)",
      "search_text": "tsg ctf 2021 (lkgit): , , · writeup 3 tsg ctf 2021 (lkgit): , ,    practice ctf tasks practice: ctf tasks writeup 3 article https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves ctf writeup pwn  documentation the tsg ctf 2021 lkgit writeup 3 offers additional insights into the challenge's exploitation. tsg ctf 2021 lkgit 的写作 3 提供了对挑战利用的额外见解。 # tsg ctf 2021 (lkgit): , , · writeup 3 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: tsg ctf 2021 (lkgit): , , resource_label: writeup 3 resource_type: article resource_url: https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves parent_primary_url: https://kileak.github.io/ctf/2021/tsg-lkgit/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: tsg ctf 2021 (lkgit): [writeup](https://kileak.github.io/ctf/2021/tsg-lkgit/), [writeup 2](https://smallkirby.hatenablog.com/entry/2021/10/03/171804), [writeup 3](https://ptr-yudai.hatenablog.com/entry/2021/10/03/225325#pwn-322pts-lkgit-7-solves) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_im no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ebefd042e4506324",
      "item_id": "8046a28bbe45d895",
      "slug": "2021-practice-ctf-tasks-midnightsun-quals-2021-brohammer-primary-cfb0cff4",
      "year": 2021,
      "title": "Midnightsun Quals 2021 (BroHammer):",
      "item_title": "Midnightsun Quals 2021 (BroHammer):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.willsroot.io/2021/04/midnightsunquals-2021-brohammer-single.html",
      "primary_url": "https://www.willsroot.io/2021/04/midnightsunquals-2021-brohammer-single.html",
      "parent_primary_url": "https://www.willsroot.io/2021/04/midnightsunquals-2021-brohammer-single.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-midnightsun-quals-2021-brohammer-primary-cfb0cff4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Midnightsun Quals 2021 (BroHammer): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Midnightsun Quals 2021 (BroHammer): resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2021/04/midnightsunquals-2021-brohammer-single.html parent_primary_url: https://www.willsroot.io/2021/04/midnightsunquals-2021-brohammer-single.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Midnightsun Quals 2021 (BroHammer): [writeup](https://www.willsroot.io/2021/04/midnightsunquals-2021-brohammer-single.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: fal",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.willsroot.io/2021/04/midnightsunquals-2021-brohammer-single.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.willsroot.io/2021/04/midnightsunquals-2021-brohammer-single.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "writeup",
        "pwn"
      ],
      "affected_area": "",
      "exploit_stage": "documentation",
      "summary_en": "The Midnightsun Quals 2021 BroHammer writeup discusses the exploitation techniques used in the challenge.",
      "summary_zh": "Midnightsun Quals 2021 BroHammer 的写作讨论了在挑战中使用的利用技术。",
      "source_markdown": "Midnightsun Quals 2021 (BroHammer): [writeup](https://www.willsroot.io/2021/04/midnightsunquals-2021-brohammer-single.html)",
      "search_text": "midnightsun quals 2021 (brohammer): midnightsun quals 2021 (brohammer):    practice ctf tasks practice: ctf tasks primary article https://www.willsroot.io/2021/04/midnightsunquals-2021-brohammer-single.html ctf writeup pwn  documentation the midnightsun quals 2021 brohammer writeup discusses the exploitation techniques used in the challenge. midnightsun quals 2021 brohammer 的写作讨论了在挑战中使用的利用技术。 # midnightsun quals 2021 (brohammer): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: midnightsun quals 2021 (brohammer): resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2021/04/midnightsunquals-2021-brohammer-single.html parent_primary_url: https://www.willsroot.io/2021/04/midnightsunquals-2021-brohammer-single.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: midnightsun quals 2021 (brohammer): [writeup](https://www.willsroot.io/2021/04/midnightsunquals-2021-brohammer-single.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: fal no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b23427f4f6e463bd",
      "item_id": "6e63691bc9682121",
      "slug": "2021-practice-ctf-tasks-0ctf2021-kernote-primary-c3763b2d",
      "year": 2021,
      "title": "0ctf2021 (kernote): ,",
      "item_title": "0ctf2021 (kernote): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/YZloser/My-CTF-Challenges/tree/master/0ctf-2021-final/kernote",
      "primary_url": "https://github.com/YZloser/My-CTF-Challenges/tree/master/0ctf-2021-final/kernote",
      "parent_primary_url": "https://github.com/YZloser/My-CTF-Challenges/tree/master/0ctf-2021-final/kernote",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-0ctf2021-kernote-primary-c3763b2d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 0ctf2021 (kernote): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: 0ctf2021 (kernote): , resource_label: primary resource_type: article resource_url: https://github.com/YZloser/My-CTF-Challenges/tree/master/0ctf-2021-final/kernote parent_primary_url: https://github.com/YZloser/My-CTF-Challenges/tree/master/0ctf-2021-final/kernote source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 0ctf2021 (kernote): [source, exploit, and writeup](https://github.com/YZloser/My-CTF-Challenges/tree/master/0ctf-2021-final/kernote), [writeup 2](https://org.anize.rs/0CTF-2021-finals/pwn/kernote) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices us",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/YZloser/My-CTF-Challenges/tree/master/0ctf-2021-final/kernote"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://org.anize.rs/0CTF-2021-finals/pwn/kernote"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/YZloser/My-CTF-Challenges/tree/master/0ctf-2021-final/kernote"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://org.anize.rs/0CTF-2021-finals/pwn/kernote"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/YZloser/My-CTF-Challenges/tree/master/0ctf-2021-final/kernote"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "pwn",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "The 0ctf2021 kernote challenge involves exploiting a kernel-related vulnerability.",
      "summary_zh": "0ctf2021 kernote 挑战涉及利用与内核相关的漏洞。",
      "source_markdown": "0ctf2021 (kernote): [source, exploit, and writeup](https://github.com/YZloser/My-CTF-Challenges/tree/master/0ctf-2021-final/kernote), [writeup 2](https://org.anize.rs/0CTF-2021-finals/pwn/kernote)",
      "search_text": "0ctf2021 (kernote): , 0ctf2021 (kernote): ,    practice ctf tasks practice: ctf tasks primary article https://github.com/yzloser/my-ctf-challenges/tree/master/0ctf-2021-final/kernote ctf pwn vulnerability  challenge the 0ctf2021 kernote challenge involves exploiting a kernel-related vulnerability. 0ctf2021 kernote 挑战涉及利用与内核相关的漏洞。 # 0ctf2021 (kernote): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: 0ctf2021 (kernote): , resource_label: primary resource_type: article resource_url: https://github.com/yzloser/my-ctf-challenges/tree/master/0ctf-2021-final/kernote parent_primary_url: https://github.com/yzloser/my-ctf-challenges/tree/master/0ctf-2021-final/kernote source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 0ctf2021 (kernote): [source, exploit, and writeup](https://github.com/yzloser/my-ctf-challenges/tree/master/0ctf-2021-final/kernote), [writeup 2](https://org.anize.rs/0ctf-2021-finals/pwn/kernote) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices us no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "54990fd4bcb2cab0",
      "item_id": "6e63691bc9682121",
      "slug": "2021-practice-ctf-tasks-0ctf2021-kernote-writeup-2-194d14c2",
      "year": 2021,
      "title": "0ctf2021 (kernote): , · writeup 2",
      "item_title": "0ctf2021 (kernote): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup 2",
      "resource_type": "article",
      "resource_url": "https://org.anize.rs/0CTF-2021-finals/pwn/kernote",
      "primary_url": "https://org.anize.rs/0CTF-2021-finals/pwn/kernote",
      "parent_primary_url": "https://github.com/YZloser/My-CTF-Challenges/tree/master/0ctf-2021-final/kernote",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-0ctf2021-kernote-writeup-2-194d14c2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 0ctf2021 (kernote): , · writeup 2 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: 0ctf2021 (kernote): , resource_label: writeup 2 resource_type: article resource_url: https://org.anize.rs/0CTF-2021-finals/pwn/kernote parent_primary_url: https://github.com/YZloser/My-CTF-Challenges/tree/master/0ctf-2021-final/kernote source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 0ctf2021 (kernote): [source, exploit, and writeup](https://github.com/YZloser/My-CTF-Challenges/tree/master/0ctf-2021-final/kernote), [writeup 2](https://org.anize.rs/0CTF-2021-finals/pwn/kernote) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ker",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/YZloser/My-CTF-Challenges/tree/master/0ctf-2021-final/kernote"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://org.anize.rs/0CTF-2021-finals/pwn/kernote"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/YZloser/My-CTF-Challenges/tree/master/0ctf-2021-final/kernote"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://org.anize.rs/0CTF-2021-finals/pwn/kernote"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/YZloser/My-CTF-Challenges/tree/master/0ctf-2021-final/kernote"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "writeup",
        "pwn"
      ],
      "affected_area": "",
      "exploit_stage": "documentation",
      "summary_en": "The 0ctf2021 kernote writeup provides a detailed explanation of the exploitation process.",
      "summary_zh": "0ctf2021 kernote 的写作提供了对利用过程的详细解释。",
      "source_markdown": "0ctf2021 (kernote): [source, exploit, and writeup](https://github.com/YZloser/My-CTF-Challenges/tree/master/0ctf-2021-final/kernote), [writeup 2](https://org.anize.rs/0CTF-2021-finals/pwn/kernote)",
      "search_text": "0ctf2021 (kernote): , · writeup 2 0ctf2021 (kernote): ,    practice ctf tasks practice: ctf tasks writeup 2 article https://org.anize.rs/0ctf-2021-finals/pwn/kernote ctf writeup pwn  documentation the 0ctf2021 kernote writeup provides a detailed explanation of the exploitation process. 0ctf2021 kernote 的写作提供了对利用过程的详细解释。 # 0ctf2021 (kernote): , · writeup 2 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: 0ctf2021 (kernote): , resource_label: writeup 2 resource_type: article resource_url: https://org.anize.rs/0ctf-2021-finals/pwn/kernote parent_primary_url: https://github.com/yzloser/my-ctf-challenges/tree/master/0ctf-2021-final/kernote source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 0ctf2021 (kernote): [source, exploit, and writeup](https://github.com/yzloser/my-ctf-challenges/tree/master/0ctf-2021-final/kernote), [writeup 2](https://org.anize.rs/0ctf-2021-finals/pwn/kernote) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu ker no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "dad024c7f1547b07",
      "item_id": "fa81f5447737bc1b",
      "slug": "2021-practice-ctf-tasks-corctf-2021-fire-of-salvation-primary-0bad95c5",
      "year": 2021,
      "title": "corCTF 2021 (fire-of-salvation): ,",
      "item_title": "corCTF 2021 (fire-of-salvation): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation",
      "primary_url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation",
      "parent_primary_url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-corctf-2021-fire-of-salvation-primary-0bad95c5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# corCTF 2021 (fire-of-salvation): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: corCTF 2021 (fire-of-salvation): , resource_label: primary resource_type: code resource_url: https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation parent_primary_url: https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corCTF 2021 (fire-of-salvation): [source](https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation), [writeup](https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that t",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "pwn",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "The corCTF 2021 fire-of-salvation challenge focuses on exploiting a specific vulnerability.",
      "summary_zh": "corCTF 2021 fire-of-salvation 挑战专注于利用特定漏洞。",
      "source_markdown": "corCTF 2021 (fire-of-salvation): [source](https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation), [writeup](https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html)",
      "search_text": "corctf 2021 (fire-of-salvation): , corctf 2021 (fire-of-salvation): ,    practice ctf tasks practice: ctf tasks primary code https://github.com/crusaders-of-rust/corctf-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation ctf pwn vulnerability  challenge the corctf 2021 fire-of-salvation challenge focuses on exploiting a specific vulnerability. corctf 2021 fire-of-salvation 挑战专注于利用特定漏洞。 # corctf 2021 (fire-of-salvation): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: corctf 2021 (fire-of-salvation): , resource_label: primary resource_type: code resource_url: https://github.com/crusaders-of-rust/corctf-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation parent_primary_url: https://github.com/crusaders-of-rust/corctf-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corctf 2021 (fire-of-salvation): [source](https://github.com/crusaders-of-rust/corctf-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation), [writeup](https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that t no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "beeb68ef2c24e556",
      "item_id": "fa81f5447737bc1b",
      "slug": "2021-practice-ctf-tasks-corctf-2021-fire-of-salvation-writeup-820305f8",
      "year": 2021,
      "title": "corCTF 2021 (fire-of-salvation): , · writeup",
      "item_title": "corCTF 2021 (fire-of-salvation): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup",
      "resource_type": "article",
      "resource_url": "https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html",
      "primary_url": "https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html",
      "parent_primary_url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-corctf-2021-fire-of-salvation-writeup-820305f8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# corCTF 2021 (fire-of-salvation): , · writeup record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: corCTF 2021 (fire-of-salvation): , resource_label: writeup resource_type: article resource_url: https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html parent_primary_url: https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corCTF 2021 (fire-of-salvation): [source](https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation), [writeup](https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "writeup",
        "pwn"
      ],
      "affected_area": "",
      "exploit_stage": "documentation",
      "summary_en": "The corCTF 2021 fire-of-salvation writeup discusses the techniques used for exploitation.",
      "summary_zh": "corCTF 2021 fire-of-salvation 的写作讨论了用于利用的技术。",
      "source_markdown": "corCTF 2021 (fire-of-salvation): [source](https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation), [writeup](https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html)",
      "search_text": "corctf 2021 (fire-of-salvation): , · writeup corctf 2021 (fire-of-salvation): ,    practice ctf tasks practice: ctf tasks writeup article https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html ctf writeup pwn  documentation the corctf 2021 fire-of-salvation writeup discusses the techniques used for exploitation. corctf 2021 fire-of-salvation 的写作讨论了用于利用的技术。 # corctf 2021 (fire-of-salvation): , · writeup record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: corctf 2021 (fire-of-salvation): , resource_label: writeup resource_type: article resource_url: https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html parent_primary_url: https://github.com/crusaders-of-rust/corctf-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corctf 2021 (fire-of-salvation): [source](https://github.com/crusaders-of-rust/corctf-2021-public-challenge-archive/tree/main/pwn/fire-of-salvation), [writeup](https://www.willsroot.io/2021/08/corctf-2021-fire-of-salvation-writeup.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "9fa150f4523921ba",
      "item_id": "1641ba9479a7e0dd",
      "slug": "2021-practice-ctf-tasks-corctf-2021-wall-of-perdition-primary-e1bb63cf",
      "year": 2021,
      "title": "corCTF 2021 (wall-of-perdition): , ,",
      "item_title": "corCTF 2021 (wall-of-perdition): , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition",
      "primary_url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition",
      "parent_primary_url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-corctf-2021-wall-of-perdition-primary-e1bb63cf.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# corCTF 2021 (wall-of-perdition): , , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: corCTF 2021 (wall-of-perdition): , , resource_label: primary resource_type: code resource_url: https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition parent_primary_url: https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corCTF 2021 (wall-of-perdition): [source](https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition), [writeup](https://syst3mfailure.io/wall-of-perdition), [writeup 2](https://n132.github.io/2024/05/27/Wall-of-Perdition.html) cves: none android_impact_status: no android",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://syst3mfailure.io/wall-of-perdition"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://n132.github.io/2024/05/27/Wall-of-Perdition.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://syst3mfailure.io/wall-of-perdition"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://n132.github.io/2024/05/27/Wall-of-Perdition.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition",
        "https://n132.github.io/2024/05/27/Wall-of-Perdition.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "pwn",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "The corCTF 2021 wall-of-perdition challenge involves exploiting a vulnerability in a web application.",
      "summary_zh": "corCTF 2021 wall-of-perdition 挑战涉及利用网页应用程序中的漏洞。",
      "source_markdown": "corCTF 2021 (wall-of-perdition): [source](https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition), [writeup](https://syst3mfailure.io/wall-of-perdition), [writeup 2](https://n132.github.io/2024/05/27/Wall-of-Perdition.html)",
      "search_text": "corctf 2021 (wall-of-perdition): , , corctf 2021 (wall-of-perdition): , ,    practice ctf tasks practice: ctf tasks primary code https://github.com/crusaders-of-rust/corctf-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition ctf pwn vulnerability  challenge the corctf 2021 wall-of-perdition challenge involves exploiting a vulnerability in a web application. corctf 2021 wall-of-perdition 挑战涉及利用网页应用程序中的漏洞。 # corctf 2021 (wall-of-perdition): , , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: corctf 2021 (wall-of-perdition): , , resource_label: primary resource_type: code resource_url: https://github.com/crusaders-of-rust/corctf-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition parent_primary_url: https://github.com/crusaders-of-rust/corctf-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corctf 2021 (wall-of-perdition): [source](https://github.com/crusaders-of-rust/corctf-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition), [writeup](https://syst3mfailure.io/wall-of-perdition), [writeup 2](https://n132.github.io/2024/05/27/wall-of-perdition.html) cves: none android_impact_status: no android no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "1025fceb0ca4ddaf",
      "item_id": "1641ba9479a7e0dd",
      "slug": "2021-practice-ctf-tasks-corctf-2021-wall-of-perdition-writeup-349f4ca1",
      "year": 2021,
      "title": "corCTF 2021 (wall-of-perdition): , , · writeup",
      "item_title": "corCTF 2021 (wall-of-perdition): , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup",
      "resource_type": "article",
      "resource_url": "https://syst3mfailure.io/wall-of-perdition",
      "primary_url": "https://syst3mfailure.io/wall-of-perdition",
      "parent_primary_url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-corctf-2021-wall-of-perdition-writeup-349f4ca1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# corCTF 2021 (wall-of-perdition): , , · writeup record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: corCTF 2021 (wall-of-perdition): , , resource_label: writeup resource_type: article resource_url: https://syst3mfailure.io/wall-of-perdition parent_primary_url: https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corCTF 2021 (wall-of-perdition): [source](https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition), [writeup](https://syst3mfailure.io/wall-of-perdition), [writeup 2](https://n132.github.io/2024/05/27/Wall-of-Perdition.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this reso",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://syst3mfailure.io/wall-of-perdition"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://n132.github.io/2024/05/27/Wall-of-Perdition.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://syst3mfailure.io/wall-of-perdition"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://n132.github.io/2024/05/27/Wall-of-Perdition.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition",
        "https://n132.github.io/2024/05/27/Wall-of-Perdition.html"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "writeup",
        "pwn"
      ],
      "affected_area": "",
      "exploit_stage": "documentation",
      "summary_en": "The corCTF 2021 wall-of-perdition writeup provides insights into the exploitation techniques used.",
      "summary_zh": "corCTF 2021 wall-of-perdition 的写作提供了对利用技术的见解。",
      "source_markdown": "corCTF 2021 (wall-of-perdition): [source](https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition), [writeup](https://syst3mfailure.io/wall-of-perdition), [writeup 2](https://n132.github.io/2024/05/27/Wall-of-Perdition.html)",
      "search_text": "corctf 2021 (wall-of-perdition): , , · writeup corctf 2021 (wall-of-perdition): , ,    practice ctf tasks practice: ctf tasks writeup article https://syst3mfailure.io/wall-of-perdition ctf writeup pwn  documentation the corctf 2021 wall-of-perdition writeup provides insights into the exploitation techniques used. corctf 2021 wall-of-perdition 的写作提供了对利用技术的见解。 # corctf 2021 (wall-of-perdition): , , · writeup record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: corctf 2021 (wall-of-perdition): , , resource_label: writeup resource_type: article resource_url: https://syst3mfailure.io/wall-of-perdition parent_primary_url: https://github.com/crusaders-of-rust/corctf-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corctf 2021 (wall-of-perdition): [source](https://github.com/crusaders-of-rust/corctf-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition), [writeup](https://syst3mfailure.io/wall-of-perdition), [writeup 2](https://n132.github.io/2024/05/27/wall-of-perdition.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this reso no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "0167fd4a1d8792c5",
      "item_id": "1641ba9479a7e0dd",
      "slug": "2021-practice-ctf-tasks-corctf-2021-wall-of-perdition-writeup-2-9cd8e974",
      "year": 2021,
      "title": "corCTF 2021 (wall-of-perdition): , , · writeup 2",
      "item_title": "corCTF 2021 (wall-of-perdition): , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup 2",
      "resource_type": "article",
      "resource_url": "https://n132.github.io/2024/05/27/Wall-of-Perdition.html",
      "primary_url": "https://n132.github.io/2024/05/27/Wall-of-Perdition.html",
      "parent_primary_url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-corctf-2021-wall-of-perdition-writeup-2-9cd8e974.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# corCTF 2021 (wall-of-perdition): , , · writeup 2 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: corCTF 2021 (wall-of-perdition): , , resource_label: writeup 2 resource_type: article resource_url: https://n132.github.io/2024/05/27/Wall-of-Perdition.html parent_primary_url: https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corCTF 2021 (wall-of-perdition): [source](https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition), [writeup](https://syst3mfailure.io/wall-of-perdition), [writeup 2](https://n132.github.io/2024/05/27/Wall-of-Perdition.html) cves: none android_impact_status: no android_impact_reason: Not enough evide",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://syst3mfailure.io/wall-of-perdition"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://n132.github.io/2024/05/27/Wall-of-Perdition.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://syst3mfailure.io/wall-of-perdition"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://n132.github.io/2024/05/27/Wall-of-Perdition.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition",
        "https://n132.github.io/2024/05/27/Wall-of-Perdition.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "writeup",
        "pwn"
      ],
      "affected_area": "",
      "exploit_stage": "documentation",
      "summary_en": "The corCTF 2021 wall-of-perdition writeup 2 offers additional insights into the challenge's exploitation.",
      "summary_zh": "corCTF 2021 wall-of-perdition 的写作 2 提供了对挑战利用的额外见解。",
      "source_markdown": "corCTF 2021 (wall-of-perdition): [source](https://github.com/Crusaders-of-Rust/corCTF-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition), [writeup](https://syst3mfailure.io/wall-of-perdition), [writeup 2](https://n132.github.io/2024/05/27/Wall-of-Perdition.html)",
      "search_text": "corctf 2021 (wall-of-perdition): , , · writeup 2 corctf 2021 (wall-of-perdition): , ,    practice ctf tasks practice: ctf tasks writeup 2 article https://n132.github.io/2024/05/27/wall-of-perdition.html ctf writeup pwn  documentation the corctf 2021 wall-of-perdition writeup 2 offers additional insights into the challenge's exploitation. corctf 2021 wall-of-perdition 的写作 2 提供了对挑战利用的额外见解。 # corctf 2021 (wall-of-perdition): , , · writeup 2 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: corctf 2021 (wall-of-perdition): , , resource_label: writeup 2 resource_type: article resource_url: https://n132.github.io/2024/05/27/wall-of-perdition.html parent_primary_url: https://github.com/crusaders-of-rust/corctf-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: corctf 2021 (wall-of-perdition): [source](https://github.com/crusaders-of-rust/corctf-2021-public-challenge-archive/tree/main/pwn/wall-of-perdition), [writeup](https://syst3mfailure.io/wall-of-perdition), [writeup 2](https://n132.github.io/2024/05/27/wall-of-perdition.html) cves: none android_impact_status: no android_impact_reason: not enough evide no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6742a7cebec3f4fa",
      "item_id": "25a26043f556057c",
      "slug": "2021-practice-ctf-tasks-google-ctf-2021-pwn-fullchain-primary-42f3bdeb",
      "year": 2021,
      "title": "Google CTF 2021 (pwn-fullchain): ,",
      "item_title": "Google CTF 2021 (pwn-fullchain): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain",
      "primary_url": "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain",
      "parent_primary_url": "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-google-ctf-2021-pwn-fullchain-primary-42f3bdeb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Google CTF 2021 (pwn-fullchain): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Google CTF 2021 (pwn-fullchain): , resource_label: primary resource_type: code resource_url: https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain parent_primary_url: https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Google CTF 2021 (pwn-fullchain): [source](https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain), [writeup](https://ptr-yudai.hatenablog.com/entry/2021/07/26/225308) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use ",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://ptr-yudai.hatenablog.com/entry/2021/07/26/225308"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://ptr-yudai.hatenablog.com/entry/2021/07/26/225308"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "pwn",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "The Google CTF 2021 pwn-fullchain challenge involves exploiting a multi-stage vulnerability.",
      "summary_zh": "Google CTF 2021 pwn-fullchain 挑战涉及利用多阶段漏洞。",
      "source_markdown": "Google CTF 2021 (pwn-fullchain): [source](https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain), [writeup](https://ptr-yudai.hatenablog.com/entry/2021/07/26/225308)",
      "search_text": "google ctf 2021 (pwn-fullchain): , google ctf 2021 (pwn-fullchain): ,    practice ctf tasks practice: ctf tasks primary code https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain ctf pwn vulnerability  challenge the google ctf 2021 pwn-fullchain challenge involves exploiting a multi-stage vulnerability. google ctf 2021 pwn-fullchain 挑战涉及利用多阶段漏洞。 # google ctf 2021 (pwn-fullchain): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: google ctf 2021 (pwn-fullchain): , resource_label: primary resource_type: code resource_url: https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain parent_primary_url: https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: google ctf 2021 (pwn-fullchain): [source](https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain), [writeup](https://ptr-yudai.hatenablog.com/entry/2021/07/26/225308) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "080005c9e5b9d06e",
      "item_id": "25a26043f556057c",
      "slug": "2021-practice-ctf-tasks-google-ctf-2021-pwn-fullchain-writeup-5e3462bc",
      "year": 2021,
      "title": "Google CTF 2021 (pwn-fullchain): , · writeup",
      "item_title": "Google CTF 2021 (pwn-fullchain): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup",
      "resource_type": "article",
      "resource_url": "https://ptr-yudai.hatenablog.com/entry/2021/07/26/225308",
      "primary_url": "https://ptr-yudai.hatenablog.com/entry/2021/07/26/225308",
      "parent_primary_url": "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-google-ctf-2021-pwn-fullchain-writeup-5e3462bc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Google CTF 2021 (pwn-fullchain): , · writeup record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Google CTF 2021 (pwn-fullchain): , resource_label: writeup resource_type: article resource_url: https://ptr-yudai.hatenablog.com/entry/2021/07/26/225308 parent_primary_url: https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Google CTF 2021 (pwn-fullchain): [source](https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain), [writeup](https://ptr-yudai.hatenablog.com/entry/2021/07/26/225308) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Appl",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://ptr-yudai.hatenablog.com/entry/2021/07/26/225308"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://ptr-yudai.hatenablog.com/entry/2021/07/26/225308"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "writeup",
        "pwn"
      ],
      "affected_area": "",
      "exploit_stage": "documentation",
      "summary_en": "The Google CTF 2021 pwn-fullchain writeup provides a detailed analysis of the exploitation process.",
      "summary_zh": "Google CTF 2021 pwn-fullchain 的写作提供了对利用过程的详细分析。",
      "source_markdown": "Google CTF 2021 (pwn-fullchain): [source](https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain), [writeup](https://ptr-yudai.hatenablog.com/entry/2021/07/26/225308)",
      "search_text": "google ctf 2021 (pwn-fullchain): , · writeup google ctf 2021 (pwn-fullchain): ,    practice ctf tasks practice: ctf tasks writeup article https://ptr-yudai.hatenablog.com/entry/2021/07/26/225308 ctf writeup pwn  documentation the google ctf 2021 pwn-fullchain writeup provides a detailed analysis of the exploitation process. google ctf 2021 pwn-fullchain 的写作提供了对利用过程的详细分析。 # google ctf 2021 (pwn-fullchain): , · writeup record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: google ctf 2021 (pwn-fullchain): , resource_label: writeup resource_type: article resource_url: https://ptr-yudai.hatenablog.com/entry/2021/07/26/225308 parent_primary_url: https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: google ctf 2021 (pwn-fullchain): [source](https://github.com/google/google-ctf/tree/master/2021/quals/pwn-fullchain), [writeup](https://ptr-yudai.hatenablog.com/entry/2021/07/26/225308) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use appl no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "1267518fb842006d",
      "item_id": "afb9a5f837d810ea",
      "slug": "2021-practice-ctf-tasks-google-ctf-2021-pwn-ebpf-primary-f68553d8",
      "year": 2021,
      "title": "Google CTF 2021 (pwn-ebpf): ,",
      "item_title": "Google CTF 2021 (pwn-ebpf): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf",
      "primary_url": "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf",
      "parent_primary_url": "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-google-ctf-2021-pwn-ebpf-primary-f68553d8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Google CTF 2021 (pwn-ebpf): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Google CTF 2021 (pwn-ebpf): , resource_label: primary resource_type: code resource_url: https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf parent_primary_url: https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Google CTF 2021 (pwn-ebpf): [source](https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf), [writeup](https://mem2019.github.io/jekyll/update/2021/07/19/GCTF2021-eBPF.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kerne",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://mem2019.github.io/jekyll/update/2021/07/19/GCTF2021-eBPF.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://mem2019.github.io/jekyll/update/2021/07/19/GCTF2021-eBPF.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf",
        "https://mem2019.github.io/jekyll/update/2021/07/19/GCTF2021-eBPF.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "pwn",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "The Google CTF 2021 pwn-ebpf challenge focuses on exploiting a vulnerability in eBPF.",
      "summary_zh": "Google CTF 2021 pwn-ebpf 挑战专注于利用 eBPF 中的漏洞。",
      "source_markdown": "Google CTF 2021 (pwn-ebpf): [source](https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf), [writeup](https://mem2019.github.io/jekyll/update/2021/07/19/GCTF2021-eBPF.html)",
      "search_text": "google ctf 2021 (pwn-ebpf): , google ctf 2021 (pwn-ebpf): ,    practice ctf tasks practice: ctf tasks primary code https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf ctf pwn vulnerability  challenge the google ctf 2021 pwn-ebpf challenge focuses on exploiting a vulnerability in ebpf. google ctf 2021 pwn-ebpf 挑战专注于利用 ebpf 中的漏洞。 # google ctf 2021 (pwn-ebpf): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: google ctf 2021 (pwn-ebpf): , resource_label: primary resource_type: code resource_url: https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf parent_primary_url: https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: google ctf 2021 (pwn-ebpf): [source](https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf), [writeup](https://mem2019.github.io/jekyll/update/2021/07/19/gctf2021-ebpf.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kerne no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "26b9d4bd27cb4468",
      "item_id": "afb9a5f837d810ea",
      "slug": "2021-practice-ctf-tasks-google-ctf-2021-pwn-ebpf-writeup-5acb6339",
      "year": 2021,
      "title": "Google CTF 2021 (pwn-ebpf): , · writeup",
      "item_title": "Google CTF 2021 (pwn-ebpf): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup",
      "resource_type": "article",
      "resource_url": "https://mem2019.github.io/jekyll/update/2021/07/19/GCTF2021-eBPF.html",
      "primary_url": "https://mem2019.github.io/jekyll/update/2021/07/19/GCTF2021-eBPF.html",
      "parent_primary_url": "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-google-ctf-2021-pwn-ebpf-writeup-5acb6339.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Google CTF 2021 (pwn-ebpf): , · writeup record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Google CTF 2021 (pwn-ebpf): , resource_label: writeup resource_type: article resource_url: https://mem2019.github.io/jekyll/update/2021/07/19/GCTF2021-eBPF.html parent_primary_url: https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Google CTF 2021 (pwn-ebpf): [source](https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf), [writeup](https://mem2019.github.io/jekyll/update/2021/07/19/GCTF2021-eBPF.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use App",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://mem2019.github.io/jekyll/update/2021/07/19/GCTF2021-eBPF.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://mem2019.github.io/jekyll/update/2021/07/19/GCTF2021-eBPF.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf",
        "https://mem2019.github.io/jekyll/update/2021/07/19/GCTF2021-eBPF.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "writeup",
        "pwn"
      ],
      "affected_area": "",
      "exploit_stage": "documentation",
      "summary_en": "The Google CTF 2021 pwn-ebpf writeup discusses the exploitation techniques used in the challenge.",
      "summary_zh": "Google CTF 2021 pwn-ebpf 的写作讨论了在挑战中使用的利用技术。",
      "source_markdown": "Google CTF 2021 (pwn-ebpf): [source](https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf), [writeup](https://mem2019.github.io/jekyll/update/2021/07/19/GCTF2021-eBPF.html)",
      "search_text": "google ctf 2021 (pwn-ebpf): , · writeup google ctf 2021 (pwn-ebpf): ,    practice ctf tasks practice: ctf tasks writeup article https://mem2019.github.io/jekyll/update/2021/07/19/gctf2021-ebpf.html ctf writeup pwn  documentation the google ctf 2021 pwn-ebpf writeup discusses the exploitation techniques used in the challenge. google ctf 2021 pwn-ebpf 的写作讨论了在挑战中使用的利用技术。 # google ctf 2021 (pwn-ebpf): , · writeup record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: google ctf 2021 (pwn-ebpf): , resource_label: writeup resource_type: article resource_url: https://mem2019.github.io/jekyll/update/2021/07/19/gctf2021-ebpf.html parent_primary_url: https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: google ctf 2021 (pwn-ebpf): [source](https://github.com/google/google-ctf/tree/master/2021/quals/pwn-ebpf), [writeup](https://mem2019.github.io/jekyll/update/2021/07/19/gctf2021-ebpf.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use app no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "fdb49651c866eac6",
      "item_id": "85795bdb587a8313",
      "slug": "2021-practice-ctf-tasks-3kctf-2021-echo-primary-c167d402",
      "year": 2021,
      "title": "3kCTF 2021 (echo):",
      "item_title": "3kCTF 2021 (echo):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/MaherAzzouzi/3k21-pwn/tree/main/echo",
      "primary_url": "https://github.com/MaherAzzouzi/3k21-pwn/tree/main/echo",
      "parent_primary_url": "https://github.com/MaherAzzouzi/3k21-pwn/tree/main/echo",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-3kctf-2021-echo-primary-c167d402.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 3kCTF 2021 (echo): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: 3kCTF 2021 (echo): resource_label: primary resource_type: exploit resource_url: https://github.com/MaherAzzouzi/3k21-pwn/tree/main/echo parent_primary_url: https://github.com/MaherAzzouzi/3k21-pwn/tree/main/echo source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 3kCTF 2021 (echo): [source and exploit](https://github.com/MaherAzzouzi/3k21-pwn/tree/main/echo) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/MaherAzzouzi/3k21-pwn/tree/main/ec",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/MaherAzzouzi/3k21-pwn/tree/main/echo"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/MaherAzzouzi/3k21-pwn/tree/main/echo"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/MaherAzzouzi/3k21-pwn/tree/main/echo"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "pwn",
        "vulnerability"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "The 3kCTF 2021 echo challenge involves exploiting a vulnerability in an echo service.",
      "summary_zh": "3kCTF 2021 echo 挑战涉及利用回显服务中的漏洞。",
      "source_markdown": "3kCTF 2021 (echo): [source and exploit](https://github.com/MaherAzzouzi/3k21-pwn/tree/main/echo)",
      "search_text": "3kctf 2021 (echo): 3kctf 2021 (echo):    practice ctf tasks practice: ctf tasks primary exploit https://github.com/maherazzouzi/3k21-pwn/tree/main/echo ctf pwn vulnerability  challenge the 3kctf 2021 echo challenge involves exploiting a vulnerability in an echo service. 3kctf 2021 echo 挑战涉及利用回显服务中的漏洞。 # 3kctf 2021 (echo): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: 3kctf 2021 (echo): resource_label: primary resource_type: exploit resource_url: https://github.com/maherazzouzi/3k21-pwn/tree/main/echo parent_primary_url: https://github.com/maherazzouzi/3k21-pwn/tree/main/echo source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 3kctf 2021 (echo): [source and exploit](https://github.com/maherazzouzi/3k21-pwn/tree/main/echo) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/maherazzouzi/3k21-pwn/tree/main/ec no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "7e78b7c5d4430d5f",
      "item_id": "86dc68f9a4e57c4c",
      "slug": "2021-practice-ctf-tasks-3kctf-2021-klibrary-primary-41262a35",
      "year": 2021,
      "title": "3kCTF 2021 (klibrary): ,",
      "item_title": "3kCTF 2021 (klibrary): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/MaherAzzouzi/3k21-pwn/tree/main/klibrary",
      "primary_url": "https://github.com/MaherAzzouzi/3k21-pwn/tree/main/klibrary",
      "parent_primary_url": "https://github.com/MaherAzzouzi/3k21-pwn/tree/main/klibrary",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-3kctf-2021-klibrary-primary-41262a35.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 3kCTF 2021 (klibrary): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: 3kCTF 2021 (klibrary): , resource_label: primary resource_type: code resource_url: https://github.com/MaherAzzouzi/3k21-pwn/tree/main/klibrary parent_primary_url: https://github.com/MaherAzzouzi/3k21-pwn/tree/main/klibrary source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 3kCTF 2021 (klibrary): [source](https://github.com/MaherAzzouzi/3k21-pwn/tree/main/klibrary), [writeup](https://meowmeowxw.gitlab.io/ctf/3k-2021-klibrary/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploi",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/MaherAzzouzi/3k21-pwn/tree/main/klibrary"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://meowmeowxw.gitlab.io/ctf/3k-2021-klibrary/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://meowmeowxw.gitlab.io/ctf/3k-2021-klibrary/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/MaherAzzouzi/3k21-pwn/tree/main/klibrary"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/MaherAzzouzi/3k21-pwn/tree/main/klibrary"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "The klibrary challenge from 3kCTF 2021 involves kernel exploitation techniques.",
      "summary_zh": "3kCTF 2021的klibrary挑战涉及内核利用技术。",
      "source_markdown": "3kCTF 2021 (klibrary): [source](https://github.com/MaherAzzouzi/3k21-pwn/tree/main/klibrary), [writeup](https://meowmeowxw.gitlab.io/ctf/3k-2021-klibrary/)",
      "search_text": "3kctf 2021 (klibrary): , 3kctf 2021 (klibrary): ,    practice ctf tasks practice: ctf tasks primary code https://github.com/maherazzouzi/3k21-pwn/tree/main/klibrary ctf kernel exploitation  practice the klibrary challenge from 3kctf 2021 involves kernel exploitation techniques. 3kctf 2021的klibrary挑战涉及内核利用技术。 # 3kctf 2021 (klibrary): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: 3kctf 2021 (klibrary): , resource_label: primary resource_type: code resource_url: https://github.com/maherazzouzi/3k21-pwn/tree/main/klibrary parent_primary_url: https://github.com/maherazzouzi/3k21-pwn/tree/main/klibrary source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 3kctf 2021 (klibrary): [source](https://github.com/maherazzouzi/3k21-pwn/tree/main/klibrary), [writeup](https://meowmeowxw.gitlab.io/ctf/3k-2021-klibrary/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "02d66ec2a9027572",
      "item_id": "86dc68f9a4e57c4c",
      "slug": "2021-practice-ctf-tasks-3kctf-2021-klibrary-writeup-60f3210e",
      "year": 2021,
      "title": "3kCTF 2021 (klibrary): , · writeup",
      "item_title": "3kCTF 2021 (klibrary): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup",
      "resource_type": "article",
      "resource_url": "https://meowmeowxw.gitlab.io/ctf/3k-2021-klibrary/",
      "primary_url": "https://meowmeowxw.gitlab.io/ctf/3k-2021-klibrary/",
      "parent_primary_url": "https://github.com/MaherAzzouzi/3k21-pwn/tree/main/klibrary",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-3kctf-2021-klibrary-writeup-60f3210e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 3kCTF 2021 (klibrary): , · writeup record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: 3kCTF 2021 (klibrary): , resource_label: writeup resource_type: article resource_url: https://meowmeowxw.gitlab.io/ctf/3k-2021-klibrary/ parent_primary_url: https://github.com/MaherAzzouzi/3k21-pwn/tree/main/klibrary source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 3kCTF 2021 (klibrary): [source](https://github.com/MaherAzzouzi/3k21-pwn/tree/main/klibrary), [writeup](https://meowmeowxw.gitlab.io/ctf/3k-2021-klibrary/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_ex",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/MaherAzzouzi/3k21-pwn/tree/main/klibrary"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://meowmeowxw.gitlab.io/ctf/3k-2021-klibrary/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://meowmeowxw.gitlab.io/ctf/3k-2021-klibrary/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/MaherAzzouzi/3k21-pwn/tree/main/klibrary"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/MaherAzzouzi/3k21-pwn/tree/main/klibrary"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "writeup"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup details the exploitation techniques used in the klibrary challenge from 3kCTF 2021.",
      "summary_zh": "该写作详细介绍了在3kCTF 2021的klibrary挑战中使用的利用技术。",
      "source_markdown": "3kCTF 2021 (klibrary): [source](https://github.com/MaherAzzouzi/3k21-pwn/tree/main/klibrary), [writeup](https://meowmeowxw.gitlab.io/ctf/3k-2021-klibrary/)",
      "search_text": "3kctf 2021 (klibrary): , · writeup 3kctf 2021 (klibrary): ,    practice ctf tasks practice: ctf tasks writeup article https://meowmeowxw.gitlab.io/ctf/3k-2021-klibrary/ ctf kernel writeup  practice this writeup details the exploitation techniques used in the klibrary challenge from 3kctf 2021. 该写作详细介绍了在3kctf 2021的klibrary挑战中使用的利用技术。 # 3kctf 2021 (klibrary): , · writeup record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: 3kctf 2021 (klibrary): , resource_label: writeup resource_type: article resource_url: https://meowmeowxw.gitlab.io/ctf/3k-2021-klibrary/ parent_primary_url: https://github.com/maherazzouzi/3k21-pwn/tree/main/klibrary source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 3kctf 2021 (klibrary): [source](https://github.com/maherazzouzi/3k21-pwn/tree/main/klibrary), [writeup](https://meowmeowxw.gitlab.io/ctf/3k-2021-klibrary/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_ex no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "79462dc4717466a1",
      "item_id": "2402935bb847905f",
      "slug": "2021-practice-ctf-tasks-def-con-ctf-qualifier-2021-pza999-primary-f36275e8",
      "year": 2021,
      "title": "DEF CON CTF Qualifier 2021 (pza999):",
      "item_title": "DEF CON CTF Qualifier 2021 (pza999):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/o-o-overflow/dc2021q-pza999-public",
      "primary_url": "https://github.com/o-o-overflow/dc2021q-pza999-public",
      "parent_primary_url": "https://github.com/o-o-overflow/dc2021q-pza999-public",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-def-con-ctf-qualifier-2021-pza999-primary-f36275e8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DEF CON CTF Qualifier 2021 (pza999): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: DEF CON CTF Qualifier 2021 (pza999): resource_label: primary resource_type: exploit resource_url: https://github.com/o-o-overflow/dc2021q-pza999-public parent_primary_url: https://github.com/o-o-overflow/dc2021q-pza999-public source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: DEF CON CTF Qualifier 2021 (pza999): [source and exploit](https://github.com/o-o-overflow/dc2021q-pza999-public) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/o-o-overflow/dc2021q-pza999-public"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/o-o-overflow/dc2021q-pza999-public"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/o-o-overflow/dc2021q-pza999-public"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "The pza999 challenge from DEF CON CTF Qualifier 2021 showcases advanced kernel exploitation methods.",
      "summary_zh": "DEF CON CTF预选赛2021的pza999挑战展示了高级内核利用方法。",
      "source_markdown": "DEF CON CTF Qualifier 2021 (pza999): [source and exploit](https://github.com/o-o-overflow/dc2021q-pza999-public)",
      "search_text": "def con ctf qualifier 2021 (pza999): def con ctf qualifier 2021 (pza999):    practice ctf tasks practice: ctf tasks primary exploit https://github.com/o-o-overflow/dc2021q-pza999-public ctf kernel exploitation  practice the pza999 challenge from def con ctf qualifier 2021 showcases advanced kernel exploitation methods. def con ctf预选赛2021的pza999挑战展示了高级内核利用方法。 # def con ctf qualifier 2021 (pza999): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: def con ctf qualifier 2021 (pza999): resource_label: primary resource_type: exploit resource_url: https://github.com/o-o-overflow/dc2021q-pza999-public parent_primary_url: https://github.com/o-o-overflow/dc2021q-pza999-public source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: def con ctf qualifier 2021 (pza999): [source and exploit](https://github.com/o-o-overflow/dc2021q-pza999-public) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "8dc8854960e9a201",
      "item_id": "2dafd10b60a0ffa5",
      "slug": "2021-practice-ctf-tasks-dicectf-2021-hashbrown-primary-a73c798c",
      "year": 2021,
      "title": "DiceCTF 2021 (HashBrown):",
      "item_title": "DiceCTF 2021 (HashBrown):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.willsroot.io/2021/02/dicectf-2021-hashbrown-writeup-from.html",
      "primary_url": "https://www.willsroot.io/2021/02/dicectf-2021-hashbrown-writeup-from.html",
      "parent_primary_url": "https://www.willsroot.io/2021/02/dicectf-2021-hashbrown-writeup-from.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2021-practice-ctf-tasks-dicectf-2021-hashbrown-primary-a73c798c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DiceCTF 2021 (HashBrown): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: DiceCTF 2021 (HashBrown): resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2021/02/dicectf-2021-hashbrown-writeup-from.html parent_primary_url: https://www.willsroot.io/2021/02/dicectf-2021-hashbrown-writeup-from.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: DiceCTF 2021 (HashBrown): [writeup](https://www.willsroot.io/2021/02/dicectf-2021-hashbrown-writeup-from.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: fal",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.willsroot.io/2021/02/dicectf-2021-hashbrown-writeup-from.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.willsroot.io/2021/02/dicectf-2021-hashbrown-writeup-from.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "vulnerabilities"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "The HashBrown challenge from DiceCTF 2021 explores kernel vulnerabilities and exploitation.",
      "summary_zh": "DiceCTF 2021的HashBrown挑战探讨了内核漏洞和利用。",
      "source_markdown": "DiceCTF 2021 (HashBrown): [writeup](https://www.willsroot.io/2021/02/dicectf-2021-hashbrown-writeup-from.html)",
      "search_text": "dicectf 2021 (hashbrown): dicectf 2021 (hashbrown):    practice ctf tasks practice: ctf tasks primary article https://www.willsroot.io/2021/02/dicectf-2021-hashbrown-writeup-from.html ctf kernel vulnerabilities  practice the hashbrown challenge from dicectf 2021 explores kernel vulnerabilities and exploitation. dicectf 2021的hashbrown挑战探讨了内核漏洞和利用。 # dicectf 2021 (hashbrown): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: dicectf 2021 (hashbrown): resource_label: primary resource_type: article resource_url: https://www.willsroot.io/2021/02/dicectf-2021-hashbrown-writeup-from.html parent_primary_url: https://www.willsroot.io/2021/02/dicectf-2021-hashbrown-writeup-from.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: dicectf 2021 (hashbrown): [writeup](https://www.willsroot.io/2021/02/dicectf-2021-hashbrown-writeup-from.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: fal no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "087f1cdaff69b44f",
      "item_id": "7189e9bfe01ad001",
      "slug": "2020-practice-ctf-tasks-hxp-ctf-2020-pfoten-primary-107fb656",
      "year": 2020,
      "title": "hxp CTF 2020 (pfoten): ,",
      "item_title": "hxp CTF 2020 (pfoten): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/BrieflyX/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz",
      "primary_url": "https://github.com/BrieflyX/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz",
      "parent_primary_url": "https://github.com/BrieflyX/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-hxp-ctf-2020-pfoten-primary-107fb656.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# hxp CTF 2020 (pfoten): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: hxp CTF 2020 (pfoten): , resource_label: primary resource_type: code resource_url: https://github.com/BrieflyX/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz parent_primary_url: https://github.com/BrieflyX/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hxp CTF 2020 (pfoten): [source](https://github.com/BrieflyX/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz), [writeup](https://mem2019.github.io/jekyll/update/2020/12/21/hxp2020-pfoten.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no io",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/BrieflyX/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://mem2019.github.io/jekyll/update/2020/12/21/hxp2020-pfoten.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://mem2019.github.io/jekyll/update/2020/12/21/hxp2020-pfoten.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/BrieflyX/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/BrieflyX/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz",
        "https://mem2019.github.io/jekyll/update/2020/12/21/hxp2020-pfoten.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "The pfoten challenge from hxp CTF 2020 focuses on kernel exploitation techniques.",
      "summary_zh": "hxp CTF 2020的pfoten挑战专注于内核利用技术。",
      "source_markdown": "hxp CTF 2020 (pfoten): [source](https://github.com/BrieflyX/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz), [writeup](https://mem2019.github.io/jekyll/update/2020/12/21/hxp2020-pfoten.html)",
      "search_text": "hxp ctf 2020 (pfoten): , hxp ctf 2020 (pfoten): ,    practice ctf tasks practice: ctf tasks primary code https://github.com/brieflyx/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz ctf kernel exploitation  practice the pfoten challenge from hxp ctf 2020 focuses on kernel exploitation techniques. hxp ctf 2020的pfoten挑战专注于内核利用技术。 # hxp ctf 2020 (pfoten): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: hxp ctf 2020 (pfoten): , resource_label: primary resource_type: code resource_url: https://github.com/brieflyx/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz parent_primary_url: https://github.com/brieflyx/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hxp ctf 2020 (pfoten): [source](https://github.com/brieflyx/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz), [writeup](https://mem2019.github.io/jekyll/update/2020/12/21/hxp2020-pfoten.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no io no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "a240e88d8438f0b8",
      "item_id": "7189e9bfe01ad001",
      "slug": "2020-practice-ctf-tasks-hxp-ctf-2020-pfoten-writeup-b606dd74",
      "year": 2020,
      "title": "hxp CTF 2020 (pfoten): , · writeup",
      "item_title": "hxp CTF 2020 (pfoten): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup",
      "resource_type": "article",
      "resource_url": "https://mem2019.github.io/jekyll/update/2020/12/21/hxp2020-pfoten.html",
      "primary_url": "https://mem2019.github.io/jekyll/update/2020/12/21/hxp2020-pfoten.html",
      "parent_primary_url": "https://github.com/BrieflyX/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-hxp-ctf-2020-pfoten-writeup-b606dd74.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# hxp CTF 2020 (pfoten): , · writeup record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: hxp CTF 2020 (pfoten): , resource_label: writeup resource_type: article resource_url: https://mem2019.github.io/jekyll/update/2020/12/21/hxp2020-pfoten.html parent_primary_url: https://github.com/BrieflyX/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hxp CTF 2020 (pfoten): [source](https://github.com/BrieflyX/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz), [writeup](https://mem2019.github.io/jekyll/update/2020/12/21/hxp2020-pfoten.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_r",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/BrieflyX/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://mem2019.github.io/jekyll/update/2020/12/21/hxp2020-pfoten.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://mem2019.github.io/jekyll/update/2020/12/21/hxp2020-pfoten.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/BrieflyX/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/BrieflyX/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz",
        "https://mem2019.github.io/jekyll/update/2020/12/21/hxp2020-pfoten.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "writeup"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup analyzes the exploitation strategies used in the pfoten challenge from hxp CTF 2020.",
      "summary_zh": "该写作分析了在hxp CTF 2020的pfoten挑战中使用的利用策略。",
      "source_markdown": "hxp CTF 2020 (pfoten): [source](https://github.com/BrieflyX/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz), [writeup](https://mem2019.github.io/jekyll/update/2020/12/21/hxp2020-pfoten.html)",
      "search_text": "hxp ctf 2020 (pfoten): , · writeup hxp ctf 2020 (pfoten): ,    practice ctf tasks practice: ctf tasks writeup article https://mem2019.github.io/jekyll/update/2020/12/21/hxp2020-pfoten.html ctf kernel writeup  practice this writeup analyzes the exploitation strategies used in the pfoten challenge from hxp ctf 2020. 该写作分析了在hxp ctf 2020的pfoten挑战中使用的利用策略。 # hxp ctf 2020 (pfoten): , · writeup record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: hxp ctf 2020 (pfoten): , resource_label: writeup resource_type: article resource_url: https://mem2019.github.io/jekyll/update/2020/12/21/hxp2020-pfoten.html parent_primary_url: https://github.com/brieflyx/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hxp ctf 2020 (pfoten): [source](https://github.com/brieflyx/ctf-pwns/blob/master/kernel/pfoten/pfoten-c3c4a46948257e62.tar.xz), [writeup](https://mem2019.github.io/jekyll/update/2020/12/21/hxp2020-pfoten.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_r no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "51ff07ab8233a332",
      "item_id": "ff1ce963b591860f",
      "slug": "2020-practice-ctf-tasks-hxp-ctf-2020-kernel-rop-primary-c42e904c",
      "year": 2020,
      "title": "hxp CTF 2020 (kernel-rop):",
      "item_title": "hxp CTF 2020 (kernel-rop):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.wohin.me/posts/linux-kernel-pwn-01/",
      "primary_url": "https://blog.wohin.me/posts/linux-kernel-pwn-01/",
      "parent_primary_url": "https://blog.wohin.me/posts/linux-kernel-pwn-01/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-hxp-ctf-2020-kernel-rop-primary-c42e904c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# hxp CTF 2020 (kernel-rop): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: hxp CTF 2020 (kernel-rop): resource_label: primary resource_type: article resource_url: https://blog.wohin.me/posts/linux-kernel-pwn-01/ parent_primary_url: https://blog.wohin.me/posts/linux-kernel-pwn-01/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hxp CTF 2020 (kernel-rop): [writeup](https://blog.wohin.me/posts/linux-kernel-pwn-01/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://blog.wohi",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.wohin.me/posts/linux-kernel-pwn-01/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.wohin.me/posts/linux-kernel-pwn-01/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "ROP"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "The kernel-rop challenge from hxp CTF 2020 demonstrates return-oriented programming techniques in kernel exploitation.",
      "summary_zh": "hxp CTF 2020的kernel-rop挑战展示了内核利用中的返回导向编程技术。",
      "source_markdown": "hxp CTF 2020 (kernel-rop): [writeup](https://blog.wohin.me/posts/linux-kernel-pwn-01/)",
      "search_text": "hxp ctf 2020 (kernel-rop): hxp ctf 2020 (kernel-rop):    practice ctf tasks practice: ctf tasks primary article https://blog.wohin.me/posts/linux-kernel-pwn-01/ ctf kernel rop  practice the kernel-rop challenge from hxp ctf 2020 demonstrates return-oriented programming techniques in kernel exploitation. hxp ctf 2020的kernel-rop挑战展示了内核利用中的返回导向编程技术。 # hxp ctf 2020 (kernel-rop): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: hxp ctf 2020 (kernel-rop): resource_label: primary resource_type: article resource_url: https://blog.wohin.me/posts/linux-kernel-pwn-01/ parent_primary_url: https://blog.wohin.me/posts/linux-kernel-pwn-01/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hxp ctf 2020 (kernel-rop): [writeup](https://blog.wohin.me/posts/linux-kernel-pwn-01/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://blog.wohi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "68b0dcdc71aeede1",
      "item_id": "389ff9d1737e84df",
      "slug": "2020-practice-ctf-tasks-cuctf-2020-hotrod-primary-f015ec60",
      "year": 2020,
      "title": "CUCTF 2020 (Hotrod):",
      "item_title": "CUCTF 2020 (Hotrod):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://syst3mfailure.io/hotrod",
      "primary_url": "https://syst3mfailure.io/hotrod",
      "parent_primary_url": "https://syst3mfailure.io/hotrod",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-cuctf-2020-hotrod-primary-f015ec60.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CUCTF 2020 (Hotrod): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: CUCTF 2020 (Hotrod): resource_label: primary resource_type: article resource_url: https://syst3mfailure.io/hotrod parent_primary_url: https://syst3mfailure.io/hotrod source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: CUCTF 2020 (Hotrod): [writeup](https://syst3mfailure.io/hotrod) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://syst3mfailure.io/hotrod fetch_status: skipped fetch_note: original URL is pres",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://syst3mfailure.io/hotrod"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://syst3mfailure.io/hotrod"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "The Hotrod challenge from CUCTF 2020 highlights kernel exploitation techniques.",
      "summary_zh": "CUCTF 2020的Hotrod挑战突出了内核利用技术。",
      "source_markdown": "CUCTF 2020 (Hotrod): [writeup](https://syst3mfailure.io/hotrod)",
      "search_text": "cuctf 2020 (hotrod): cuctf 2020 (hotrod):    practice ctf tasks practice: ctf tasks primary article https://syst3mfailure.io/hotrod ctf kernel exploitation  practice the hotrod challenge from cuctf 2020 highlights kernel exploitation techniques. cuctf 2020的hotrod挑战突出了内核利用技术。 # cuctf 2020 (hotrod): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: cuctf 2020 (hotrod): resource_label: primary resource_type: article resource_url: https://syst3mfailure.io/hotrod parent_primary_url: https://syst3mfailure.io/hotrod source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: cuctf 2020 (hotrod): [writeup](https://syst3mfailure.io/hotrod) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://syst3mfailure.io/hotrod fetch_status: skipped fetch_note: original url is pres no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d2fd398abbf86000",
      "item_id": "51e7fc1cb1b1f175",
      "slug": "2020-practice-ctf-tasks-spamandflags-2020-secstore-primary-488ea90a",
      "year": 2020,
      "title": "SpamAndFlags 2020 (Secstore):",
      "item_title": "SpamAndFlags 2020 (Secstore):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://pwnfirstsear.ch/2020/05/10/spamandhexctf2020-secstore.html#secstore-1",
      "primary_url": "https://pwnfirstsear.ch/2020/05/10/spamandhexctf2020-secstore.html#secstore-1",
      "parent_primary_url": "https://pwnfirstsear.ch/2020/05/10/spamandhexctf2020-secstore.html#secstore-1",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-spamandflags-2020-secstore-primary-488ea90a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SpamAndFlags 2020 (Secstore): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: SpamAndFlags 2020 (Secstore): resource_label: primary resource_type: article resource_url: https://pwnfirstsear.ch/2020/05/10/spamandhexctf2020-secstore.html#secstore-1 parent_primary_url: https://pwnfirstsear.ch/2020/05/10/spamandhexctf2020-secstore.html#secstore-1 source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: SpamAndFlags 2020 (Secstore): [writeup](https://pwnfirstsear.ch/2020/05/10/spamandhexctf2020-secstore.html#secstore-1) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: fal",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://pwnfirstsear.ch/2020/05/10/spamandhexctf2020-secstore.html#secstore-1"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://pwnfirstsear.ch/2020/05/10/spamandhexctf2020-secstore.html#secstore-1"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "The Secstore challenge from SpamAndFlags 2020 involves kernel exploitation methodologies.",
      "summary_zh": "SpamAndFlags 2020的Secstore挑战涉及内核利用方法。",
      "source_markdown": "SpamAndFlags 2020 (Secstore): [writeup](https://pwnfirstsear.ch/2020/05/10/spamandhexctf2020-secstore.html#secstore-1)",
      "search_text": "spamandflags 2020 (secstore): spamandflags 2020 (secstore):    practice ctf tasks practice: ctf tasks primary article https://pwnfirstsear.ch/2020/05/10/spamandhexctf2020-secstore.html#secstore-1 ctf kernel exploitation  practice the secstore challenge from spamandflags 2020 involves kernel exploitation methodologies. spamandflags 2020的secstore挑战涉及内核利用方法。 # spamandflags 2020 (secstore): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: spamandflags 2020 (secstore): resource_label: primary resource_type: article resource_url: https://pwnfirstsear.ch/2020/05/10/spamandhexctf2020-secstore.html#secstore-1 parent_primary_url: https://pwnfirstsear.ch/2020/05/10/spamandhexctf2020-secstore.html#secstore-1 source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: spamandflags 2020 (secstore): [writeup](https://pwnfirstsear.ch/2020/05/10/spamandhexctf2020-secstore.html#secstore-1) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: fal no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7056462504ea94e3",
      "item_id": "4f452397f8394af5",
      "slug": "2020-practice-ctf-tasks-bsidestlv-ctf-2020-kapara-primary-daeb2625",
      "year": 2020,
      "title": "BSidesTLV CTF 2020 (Kapara): ,",
      "item_title": "BSidesTLV CTF 2020 (Kapara): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://jctf.team/BSidesTLV-2020/Kapara/",
      "primary_url": "https://jctf.team/BSidesTLV-2020/Kapara/",
      "parent_primary_url": "https://jctf.team/BSidesTLV-2020/Kapara/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-bsidestlv-ctf-2020-kapara-primary-daeb2625.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BSidesTLV CTF 2020 (Kapara): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: BSidesTLV CTF 2020 (Kapara): , resource_label: primary resource_type: article resource_url: https://jctf.team/BSidesTLV-2020/Kapara/ parent_primary_url: https://jctf.team/BSidesTLV-2020/Kapara/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: BSidesTLV CTF 2020 (Kapara): [writeup and exploit](https://jctf.team/BSidesTLV-2020/Kapara/), [video writeup](https://media.handmade-seattle.com/linux-kernel-adventures/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link:",
      "link_types": [
        "article",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://jctf.team/BSidesTLV-2020/Kapara/"
        },
        {
          "label": "video writeup",
          "type": "video",
          "url": "https://media.handmade-seattle.com/linux-kernel-adventures/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://jctf.team/BSidesTLV-2020/Kapara/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video writeup",
            "type": "video",
            "url": "https://media.handmade-seattle.com/linux-kernel-adventures/"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "vulnerabilities"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "The Kapara challenge from BSidesTLV CTF 2020 explores kernel vulnerabilities and exploitation techniques.",
      "summary_zh": "BSidesTLV CTF 2020的Kapara挑战探讨了内核漏洞和利用技术。",
      "source_markdown": "BSidesTLV CTF 2020 (Kapara): [writeup and exploit](https://jctf.team/BSidesTLV-2020/Kapara/), [video writeup](https://media.handmade-seattle.com/linux-kernel-adventures/)",
      "search_text": "bsidestlv ctf 2020 (kapara): , bsidestlv ctf 2020 (kapara): ,    practice ctf tasks practice: ctf tasks primary article https://jctf.team/bsidestlv-2020/kapara/ ctf kernel vulnerabilities  practice the kapara challenge from bsidestlv ctf 2020 explores kernel vulnerabilities and exploitation techniques. bsidestlv ctf 2020的kapara挑战探讨了内核漏洞和利用技术。 # bsidestlv ctf 2020 (kapara): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: bsidestlv ctf 2020 (kapara): , resource_label: primary resource_type: article resource_url: https://jctf.team/bsidestlv-2020/kapara/ parent_primary_url: https://jctf.team/bsidestlv-2020/kapara/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: bsidestlv ctf 2020 (kapara): [writeup and exploit](https://jctf.team/bsidestlv-2020/kapara/), [video writeup](https://media.handmade-seattle.com/linux-kernel-adventures/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e03960ffd615fda3",
      "item_id": "4f452397f8394af5",
      "slug": "2020-practice-ctf-tasks-bsidestlv-ctf-2020-kapara-video-writeup-167da1de",
      "year": 2020,
      "title": "BSidesTLV CTF 2020 (Kapara): , · video writeup",
      "item_title": "BSidesTLV CTF 2020 (Kapara): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "video writeup",
      "resource_type": "video",
      "resource_url": "https://media.handmade-seattle.com/linux-kernel-adventures/",
      "primary_url": "https://media.handmade-seattle.com/linux-kernel-adventures/",
      "parent_primary_url": "https://jctf.team/BSidesTLV-2020/Kapara/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-bsidestlv-ctf-2020-kapara-video-writeup-167da1de.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# BSidesTLV CTF 2020 (Kapara): , · video writeup record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: BSidesTLV CTF 2020 (Kapara): , resource_label: video writeup resource_type: video resource_url: https://media.handmade-seattle.com/linux-kernel-adventures/ parent_primary_url: https://jctf.team/BSidesTLV-2020/Kapara/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: BSidesTLV CTF 2020 (Kapara): [writeup and exploit](https://jctf.team/BSidesTLV-2020/Kapara/), [video writeup](https://media.handmade-seattle.com/linux-kernel-adventures/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code:",
      "link_types": [
        "article",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://jctf.team/BSidesTLV-2020/Kapara/"
        },
        {
          "label": "video writeup",
          "type": "video",
          "url": "https://media.handmade-seattle.com/linux-kernel-adventures/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://jctf.team/BSidesTLV-2020/Kapara/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "video writeup",
            "type": "video",
            "url": "https://media.handmade-seattle.com/linux-kernel-adventures/"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This video writeup covers the exploitation techniques used in the Kapara challenge from BSidesTLV CTF 2020.",
      "summary_zh": "该视频写作涵盖了在BSidesTLV CTF 2020的Kapara挑战中使用的利用技术。",
      "source_markdown": "BSidesTLV CTF 2020 (Kapara): [writeup and exploit](https://jctf.team/BSidesTLV-2020/Kapara/), [video writeup](https://media.handmade-seattle.com/linux-kernel-adventures/)",
      "search_text": "bsidestlv ctf 2020 (kapara): , · video writeup bsidestlv ctf 2020 (kapara): ,    practice ctf tasks practice: ctf tasks video writeup video https://media.handmade-seattle.com/linux-kernel-adventures/ ctf kernel video  practice this video writeup covers the exploitation techniques used in the kapara challenge from bsidestlv ctf 2020. 该视频写作涵盖了在bsidestlv ctf 2020的kapara挑战中使用的利用技术。 # bsidestlv ctf 2020 (kapara): , · video writeup record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: bsidestlv ctf 2020 (kapara): , resource_label: video writeup resource_type: video resource_url: https://media.handmade-seattle.com/linux-kernel-adventures/ parent_primary_url: https://jctf.team/bsidestlv-2020/kapara/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: bsidestlv ctf 2020 (kapara): [writeup and exploit](https://jctf.team/bsidestlv-2020/kapara/), [video writeup](https://media.handmade-seattle.com/linux-kernel-adventures/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "74e48cc097727e0d",
      "item_id": "52906fc2159568a5",
      "slug": "2020-practice-ctf-tasks-hitcon-ctf-2020-spark-primary-4512e2f8",
      "year": 2020,
      "title": "HITCON CTF 2020 (spark): , ,",
      "item_title": "HITCON CTF 2020 (spark): , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark",
      "primary_url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark",
      "parent_primary_url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-hitcon-ctf-2020-spark-primary-4512e2f8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# HITCON CTF 2020 (spark): , , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: HITCON CTF 2020 (spark): , , resource_label: primary resource_type: exploit resource_url: https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark parent_primary_url: https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: HITCON CTF 2020 (spark): [source and exploit #1](https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark), [writeup and exploit #2](https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/spark), [exploit #3](https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps",
      "link_types": [
        "exploit",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark"
        },
        {
          "label": "writeup and exploit #2",
          "type": "article",
          "url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/spark"
        },
        {
          "label": "exploit #3",
          "type": "exploit",
          "url": "https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup and exploit #2",
            "type": "article",
            "url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/spark"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark"
          },
          {
            "label": "exploit #3",
            "type": "exploit",
            "url": "https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark",
        "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/spark",
        "https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "The spark challenge from HITCON CTF 2020 showcases various kernel exploitation techniques.",
      "summary_zh": "HITCON CTF 2020的spark挑战展示了各种内核利用技术。",
      "source_markdown": "HITCON CTF 2020 (spark): [source and exploit #1](https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark), [writeup and exploit #2](https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/spark), [exploit #3](https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910)",
      "search_text": "hitcon ctf 2020 (spark): , , hitcon ctf 2020 (spark): , ,    practice ctf tasks practice: ctf tasks primary exploit https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark ctf kernel exploitation  practice the spark challenge from hitcon ctf 2020 showcases various kernel exploitation techniques. hitcon ctf 2020的spark挑战展示了各种内核利用技术。 # hitcon ctf 2020 (spark): , , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: hitcon ctf 2020 (spark): , , resource_label: primary resource_type: exploit resource_url: https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark parent_primary_url: https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hitcon ctf 2020 (spark): [source and exploit #1](https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark), [writeup and exploit #2](https://github.com/brieflyx/ctf-pwns/tree/master/kernel/spark), [exploit #3](https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "cec989f44d9143ee",
      "item_id": "52906fc2159568a5",
      "slug": "2020-practice-ctf-tasks-hitcon-ctf-2020-spark-writeup-and-exploit-2-f07fb32a",
      "year": 2020,
      "title": "HITCON CTF 2020 (spark): , , · writeup and exploit #2",
      "item_title": "HITCON CTF 2020 (spark): , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup and exploit #2",
      "resource_type": "article",
      "resource_url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/spark",
      "primary_url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/spark",
      "parent_primary_url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-hitcon-ctf-2020-spark-writeup-and-exploit-2-f07fb32a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# HITCON CTF 2020 (spark): , , · writeup and exploit #2 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: HITCON CTF 2020 (spark): , , resource_label: writeup and exploit #2 resource_type: article resource_url: https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/spark parent_primary_url: https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: HITCON CTF 2020 (spark): [source and exploit #1](https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark), [writeup and exploit #2](https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/spark), [exploit #3](https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910) cves: none android_impact_status: no android_impact_reason: Not enough ev",
      "link_types": [
        "exploit",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark"
        },
        {
          "label": "writeup and exploit #2",
          "type": "article",
          "url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/spark"
        },
        {
          "label": "exploit #3",
          "type": "exploit",
          "url": "https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup and exploit #2",
            "type": "article",
            "url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/spark"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark"
          },
          {
            "label": "exploit #3",
            "type": "exploit",
            "url": "https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark",
        "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/spark",
        "https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "writeup"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup and exploit analysis for the spark challenge from HITCON CTF 2020 details kernel exploitation methods.",
      "summary_zh": "该写作和利用分析HITCON CTF 2020的spark挑战，详细介绍了内核利用方法。",
      "source_markdown": "HITCON CTF 2020 (spark): [source and exploit #1](https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark), [writeup and exploit #2](https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/spark), [exploit #3](https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910)",
      "search_text": "hitcon ctf 2020 (spark): , , · writeup and exploit #2 hitcon ctf 2020 (spark): , ,    practice ctf tasks practice: ctf tasks writeup and exploit #2 article https://github.com/brieflyx/ctf-pwns/tree/master/kernel/spark ctf kernel writeup  practice this writeup and exploit analysis for the spark challenge from hitcon ctf 2020 details kernel exploitation methods. 该写作和利用分析hitcon ctf 2020的spark挑战，详细介绍了内核利用方法。 # hitcon ctf 2020 (spark): , , · writeup and exploit #2 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: hitcon ctf 2020 (spark): , , resource_label: writeup and exploit #2 resource_type: article resource_url: https://github.com/brieflyx/ctf-pwns/tree/master/kernel/spark parent_primary_url: https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hitcon ctf 2020 (spark): [source and exploit #1](https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark), [writeup and exploit #2](https://github.com/brieflyx/ctf-pwns/tree/master/kernel/spark), [exploit #3](https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910) cves: none android_impact_status: no android_impact_reason: not enough ev no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "fd05ec3a55c587c7",
      "item_id": "52906fc2159568a5",
      "slug": "2020-practice-ctf-tasks-hitcon-ctf-2020-spark-exploit-3-70b425f3",
      "year": 2020,
      "title": "HITCON CTF 2020 (spark): , , · exploit #3",
      "item_title": "HITCON CTF 2020 (spark): , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "exploit #3",
      "resource_type": "exploit",
      "resource_url": "https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910",
      "primary_url": "https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910",
      "parent_primary_url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-hitcon-ctf-2020-spark-exploit-3-70b425f3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# HITCON CTF 2020 (spark): , , · exploit #3 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: HITCON CTF 2020 (spark): , , resource_label: exploit #3 resource_type: exploit resource_url: https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910 parent_primary_url: https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: HITCON CTF 2020 (spark): [source and exploit #1](https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark), [writeup and exploit #2](https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/spark), [exploit #3](https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910) cves: none android_impact_status: no android_impact_reason: Not enough evidence that thi",
      "link_types": [
        "exploit",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark"
        },
        {
          "label": "writeup and exploit #2",
          "type": "article",
          "url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/spark"
        },
        {
          "label": "exploit #3",
          "type": "exploit",
          "url": "https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup and exploit #2",
            "type": "article",
            "url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/spark"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark"
          },
          {
            "label": "exploit #3",
            "type": "exploit",
            "url": "https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark",
        "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/spark",
        "https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "The third exploit for the spark challenge from HITCON CTF 2020 demonstrates advanced kernel exploitation techniques.",
      "summary_zh": "HITCON CTF 2020的spark挑战的第三个利用展示了高级内核利用技术。",
      "source_markdown": "HITCON CTF 2020 (spark): [source and exploit #1](https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark), [writeup and exploit #2](https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/spark), [exploit #3](https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910)",
      "search_text": "hitcon ctf 2020 (spark): , , · exploit #3 hitcon ctf 2020 (spark): , ,    practice ctf tasks practice: ctf tasks exploit #3 exploit https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910 ctf kernel exploitation  practice the third exploit for the spark challenge from hitcon ctf 2020 demonstrates advanced kernel exploitation techniques. hitcon ctf 2020的spark挑战的第三个利用展示了高级内核利用技术。 # hitcon ctf 2020 (spark): , , · exploit #3 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: hitcon ctf 2020 (spark): , , resource_label: exploit #3 resource_type: exploit resource_url: https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910 parent_primary_url: https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hitcon ctf 2020 (spark): [source and exploit #1](https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/spark), [writeup and exploit #2](https://github.com/brieflyx/ctf-pwns/tree/master/kernel/spark), [exploit #3](https://gist.github.com/sampritipanda/9fb8f1f92aef6591246e74ed5847c910) cves: none android_impact_status: no android_impact_reason: not enough evidence that thi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "dd98bade5dc2a888",
      "item_id": "a9e36a5491d53d17",
      "slug": "2020-practice-ctf-tasks-hitcon-ctf-2020-atoms-primary-054e02f6",
      "year": 2020,
      "title": "HITCON CTF 2020 (atoms):",
      "item_title": "HITCON CTF 2020 (atoms):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/atoms",
      "primary_url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/atoms",
      "parent_primary_url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/atoms",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-hitcon-ctf-2020-atoms-primary-054e02f6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# HITCON CTF 2020 (atoms): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: HITCON CTF 2020 (atoms): resource_label: primary resource_type: exploit resource_url: https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/atoms parent_primary_url: https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/atoms source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: HITCON CTF 2020 (atoms): [source and exploit](https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/atoms) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: tru",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/atoms"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/atoms"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/atoms"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "The atoms challenge from HITCON CTF 2020 focuses on kernel exploitation strategies.",
      "summary_zh": "HITCON CTF 2020的atoms挑战专注于内核利用策略。",
      "source_markdown": "HITCON CTF 2020 (atoms): [source and exploit](https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/atoms)",
      "search_text": "hitcon ctf 2020 (atoms): hitcon ctf 2020 (atoms):    practice ctf tasks practice: ctf tasks primary exploit https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/atoms ctf kernel exploitation  practice the atoms challenge from hitcon ctf 2020 focuses on kernel exploitation strategies. hitcon ctf 2020的atoms挑战专注于内核利用策略。 # hitcon ctf 2020 (atoms): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: hitcon ctf 2020 (atoms): resource_label: primary resource_type: exploit resource_url: https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/atoms parent_primary_url: https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/atoms source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hitcon ctf 2020 (atoms): [source and exploit](https://github.com/david942j/ctf-writeups/tree/master/hitcon-2020/atoms) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: tru no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "911713eac2bf2034",
      "item_id": "e148489e8eb96436",
      "slug": "2020-practice-ctf-tasks-n1-ctf-2020-w2l-primary-566c9007",
      "year": 2020,
      "title": "N1 CTF 2020 (W2L):",
      "item_title": "N1 CTF 2020 (W2L):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/Nu1LCTF/n1ctf-2020/blob/main/N1CTF2020%20Writeup%20By%20Nu1L.pdf",
      "primary_url": "https://github.com/Nu1LCTF/n1ctf-2020/blob/main/N1CTF2020%20Writeup%20By%20Nu1L.pdf",
      "parent_primary_url": "https://github.com/Nu1LCTF/n1ctf-2020/blob/main/N1CTF2020%20Writeup%20By%20Nu1L.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-n1-ctf-2020-w2l-primary-566c9007.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# N1 CTF 2020 (W2L): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: N1 CTF 2020 (W2L): resource_label: primary resource_type: article resource_url: https://github.com/Nu1LCTF/n1ctf-2020/blob/main/N1CTF2020%20Writeup%20By%20Nu1L.pdf parent_primary_url: https://github.com/Nu1LCTF/n1ctf-2020/blob/main/N1CTF2020%20Writeup%20By%20Nu1L.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: N1 CTF 2020 (W2L): [writeup](https://github.com/Nu1LCTF/n1ctf-2020/blob/main/N1CTF2020%20Writeup%20By%20Nu1L.pdf) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_l",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/Nu1LCTF/n1ctf-2020/blob/main/N1CTF2020%20Writeup%20By%20Nu1L.pdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/Nu1LCTF/n1ctf-2020/blob/main/N1CTF2020%20Writeup%20By%20Nu1L.pdf"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Nu1LCTF/n1ctf-2020/blob/main/N1CTF2020%20Writeup%20By%20Nu1L.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "vulnerabilities"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "The W2L challenge from N1 CTF 2020 explores kernel vulnerabilities and exploitation techniques.",
      "summary_zh": "N1 CTF 2020的W2L挑战探讨了内核漏洞和利用技术。",
      "source_markdown": "N1 CTF 2020 (W2L): [writeup](https://github.com/Nu1LCTF/n1ctf-2020/blob/main/N1CTF2020%20Writeup%20By%20Nu1L.pdf)",
      "search_text": "n1 ctf 2020 (w2l): n1 ctf 2020 (w2l):    practice ctf tasks practice: ctf tasks primary article https://github.com/nu1lctf/n1ctf-2020/blob/main/n1ctf2020%20writeup%20by%20nu1l.pdf ctf kernel vulnerabilities  practice the w2l challenge from n1 ctf 2020 explores kernel vulnerabilities and exploitation techniques. n1 ctf 2020的w2l挑战探讨了内核漏洞和利用技术。 # n1 ctf 2020 (w2l): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: n1 ctf 2020 (w2l): resource_label: primary resource_type: article resource_url: https://github.com/nu1lctf/n1ctf-2020/blob/main/n1ctf2020%20writeup%20by%20nu1l.pdf parent_primary_url: https://github.com/nu1lctf/n1ctf-2020/blob/main/n1ctf2020%20writeup%20by%20nu1l.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: n1 ctf 2020 (w2l): [writeup](https://github.com/nu1lctf/n1ctf-2020/blob/main/n1ctf2020%20writeup%20by%20nu1l.pdf) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_l no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "5cb1798498487f32",
      "item_id": "7544f5842062af05",
      "slug": "2020-practice-ctf-tasks-seccon-online-2020-kstack-primary-9b1a3000",
      "year": 2020,
      "title": "Seccon Online 2020 (Kstack):",
      "item_title": "Seccon Online 2020 (Kstack):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/kstack",
      "primary_url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/kstack",
      "parent_primary_url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/kstack",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-seccon-online-2020-kstack-primary-9b1a3000.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Seccon Online 2020 (Kstack): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Seccon Online 2020 (Kstack): resource_label: primary resource_type: article resource_url: https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/kstack parent_primary_url: https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/kstack source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Seccon Online 2020 (Kstack): [source, exploit, and writeup](https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/kstack) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false c",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/kstack"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/kstack"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/kstack"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "The Kstack challenge from Seccon Online 2020 involves kernel exploitation methodologies.",
      "summary_zh": "Seccon Online 2020的Kstack挑战涉及内核利用方法。",
      "source_markdown": "Seccon Online 2020 (Kstack): [source, exploit, and writeup](https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/kstack)",
      "search_text": "seccon online 2020 (kstack): seccon online 2020 (kstack):    practice ctf tasks practice: ctf tasks primary article https://github.com/brieflyx/ctf-pwns/tree/master/kernel/kstack ctf kernel exploitation  practice the kstack challenge from seccon online 2020 involves kernel exploitation methodologies. seccon online 2020的kstack挑战涉及内核利用方法。 # seccon online 2020 (kstack): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: seccon online 2020 (kstack): resource_label: primary resource_type: article resource_url: https://github.com/brieflyx/ctf-pwns/tree/master/kernel/kstack parent_primary_url: https://github.com/brieflyx/ctf-pwns/tree/master/kernel/kstack source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: seccon online 2020 (kstack): [source, exploit, and writeup](https://github.com/brieflyx/ctf-pwns/tree/master/kernel/kstack) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false c no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "7a9e6590acdd9823",
      "item_id": "cb641fb2041bcd10",
      "slug": "2020-practice-ctf-tasks-tokyowesterns-ctf-2020-eebpf-primary-ac1f576b",
      "year": 2020,
      "title": "TokyoWesterns CTF 2020 (EEBPF): ,",
      "item_title": "TokyoWesterns CTF 2020 (EEBPF): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/eebpf",
      "primary_url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/eebpf",
      "parent_primary_url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/eebpf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-tokyowesterns-ctf-2020-eebpf-primary-ac1f576b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TokyoWesterns CTF 2020 (EEBPF): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: TokyoWesterns CTF 2020 (EEBPF): , resource_label: primary resource_type: code resource_url: https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/eebpf parent_primary_url: https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/eebpf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: TokyoWesterns CTF 2020 (EEBPF): [source](https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/eebpf), [writeup](https://github.com/leesh3288/CTF/blob/master/2020/TWCTF_2020/eebpf/writeup.md) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/eebpf"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://github.com/leesh3288/CTF/blob/master/2020/TWCTF_2020/eebpf/writeup.md"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://github.com/leesh3288/CTF/blob/master/2020/TWCTF_2020/eebpf/writeup.md"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/eebpf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/eebpf",
        "https://github.com/leesh3288/CTF/blob/master/2020/TWCTF_2020/eebpf/writeup.md"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "The EEBPF challenge from TokyoWesterns CTF 2020 showcases kernel exploitation techniques.",
      "summary_zh": "TokyoWesterns CTF 2020的EEBPF挑战展示了内核利用技术。",
      "source_markdown": "TokyoWesterns CTF 2020 (EEBPF): [source](https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/eebpf), [writeup](https://github.com/leesh3288/CTF/blob/master/2020/TWCTF_2020/eebpf/writeup.md)",
      "search_text": "tokyowesterns ctf 2020 (eebpf): , tokyowesterns ctf 2020 (eebpf): ,    practice ctf tasks practice: ctf tasks primary code https://github.com/brieflyx/ctf-pwns/tree/master/kernel/eebpf ctf kernel exploitation  practice the eebpf challenge from tokyowesterns ctf 2020 showcases kernel exploitation techniques. tokyowesterns ctf 2020的eebpf挑战展示了内核利用技术。 # tokyowesterns ctf 2020 (eebpf): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: tokyowesterns ctf 2020 (eebpf): , resource_label: primary resource_type: code resource_url: https://github.com/brieflyx/ctf-pwns/tree/master/kernel/eebpf parent_primary_url: https://github.com/brieflyx/ctf-pwns/tree/master/kernel/eebpf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: tokyowesterns ctf 2020 (eebpf): [source](https://github.com/brieflyx/ctf-pwns/tree/master/kernel/eebpf), [writeup](https://github.com/leesh3288/ctf/blob/master/2020/twctf_2020/eebpf/writeup.md) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "1d64c6a5a161e796",
      "item_id": "cb641fb2041bcd10",
      "slug": "2020-practice-ctf-tasks-tokyowesterns-ctf-2020-eebpf-writeup-6a8a6aa1",
      "year": 2020,
      "title": "TokyoWesterns CTF 2020 (EEBPF): , · writeup",
      "item_title": "TokyoWesterns CTF 2020 (EEBPF): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup",
      "resource_type": "article",
      "resource_url": "https://github.com/leesh3288/CTF/blob/master/2020/TWCTF_2020/eebpf/writeup.md",
      "primary_url": "https://github.com/leesh3288/CTF/blob/master/2020/TWCTF_2020/eebpf/writeup.md",
      "parent_primary_url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/eebpf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-tokyowesterns-ctf-2020-eebpf-writeup-6a8a6aa1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TokyoWesterns CTF 2020 (EEBPF): , · writeup record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: TokyoWesterns CTF 2020 (EEBPF): , resource_label: writeup resource_type: article resource_url: https://github.com/leesh3288/CTF/blob/master/2020/TWCTF_2020/eebpf/writeup.md parent_primary_url: https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/eebpf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: TokyoWesterns CTF 2020 (EEBPF): [source](https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/eebpf), [writeup](https://github.com/leesh3288/CTF/blob/master/2020/TWCTF_2020/eebpf/writeup.md) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS d",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/eebpf"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://github.com/leesh3288/CTF/blob/master/2020/TWCTF_2020/eebpf/writeup.md"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://github.com/leesh3288/CTF/blob/master/2020/TWCTF_2020/eebpf/writeup.md"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/eebpf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/eebpf",
        "https://github.com/leesh3288/CTF/blob/master/2020/TWCTF_2020/eebpf/writeup.md"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "writeup"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This writeup analyzes the exploitation strategies used in the EEBPF challenge from TokyoWesterns CTF 2020.",
      "summary_zh": "该写作分析了在TokyoWesterns CTF 2020的EEBPF挑战中使用的利用策略。",
      "source_markdown": "TokyoWesterns CTF 2020 (EEBPF): [source](https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/eebpf), [writeup](https://github.com/leesh3288/CTF/blob/master/2020/TWCTF_2020/eebpf/writeup.md)",
      "search_text": "tokyowesterns ctf 2020 (eebpf): , · writeup tokyowesterns ctf 2020 (eebpf): ,    practice ctf tasks practice: ctf tasks writeup article https://github.com/leesh3288/ctf/blob/master/2020/twctf_2020/eebpf/writeup.md ctf kernel writeup  practice this writeup analyzes the exploitation strategies used in the eebpf challenge from tokyowesterns ctf 2020. 该写作分析了在tokyowesterns ctf 2020的eebpf挑战中使用的利用策略。 # tokyowesterns ctf 2020 (eebpf): , · writeup record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: tokyowesterns ctf 2020 (eebpf): , resource_label: writeup resource_type: article resource_url: https://github.com/leesh3288/ctf/blob/master/2020/twctf_2020/eebpf/writeup.md parent_primary_url: https://github.com/brieflyx/ctf-pwns/tree/master/kernel/eebpf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: tokyowesterns ctf 2020 (eebpf): [source](https://github.com/brieflyx/ctf-pwns/tree/master/kernel/eebpf), [writeup](https://github.com/leesh3288/ctf/blob/master/2020/twctf_2020/eebpf/writeup.md) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios d no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "0133c473a4275db2",
      "item_id": "c66be1fa4d8133e1",
      "slug": "2020-practice-ctf-tasks-r2con-ctf-2020-primary-1e4a0ddb",
      "year": 2020,
      "title": "r2con CTF 2020: ,",
      "item_title": "r2con CTF 2020: ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/esanfelix/r2con2020-ctf-kernel",
      "primary_url": "https://github.com/esanfelix/r2con2020-ctf-kernel",
      "parent_primary_url": "https://github.com/esanfelix/r2con2020-ctf-kernel",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-r2con-ctf-2020-primary-1e4a0ddb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# r2con CTF 2020: , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: r2con CTF 2020: , resource_label: primary resource_type: code resource_url: https://github.com/esanfelix/r2con2020-ctf-kernel parent_primary_url: https://github.com/esanfelix/r2con2020-ctf-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: r2con CTF 2020: [source](https://github.com/esanfelix/r2con2020-ctf-kernel), [exploit](https://github.com/dialluvioso/box/blob/master/r2con2020-ctf-kernel/exploit.c) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: h",
      "link_types": [
        "code",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/esanfelix/r2con2020-ctf-kernel"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/dialluvioso/box/blob/master/r2con2020-ctf-kernel/exploit.c"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/esanfelix/r2con2020-ctf-kernel"
          }
        ],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/dialluvioso/box/blob/master/r2con2020-ctf-kernel/exploit.c"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/esanfelix/r2con2020-ctf-kernel",
        "https://github.com/dialluvioso/box/blob/master/r2con2020-ctf-kernel/exploit.c"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "The r2con CTF 2020 challenge involves kernel exploitation techniques and methodologies.",
      "summary_zh": "r2con CTF 2020挑战涉及内核利用技术和方法。",
      "source_markdown": "r2con CTF 2020: [source](https://github.com/esanfelix/r2con2020-ctf-kernel), [exploit](https://github.com/dialluvioso/box/blob/master/r2con2020-ctf-kernel/exploit.c)",
      "search_text": "r2con ctf 2020: , r2con ctf 2020: ,    practice ctf tasks practice: ctf tasks primary code https://github.com/esanfelix/r2con2020-ctf-kernel ctf kernel exploitation  practice the r2con ctf 2020 challenge involves kernel exploitation techniques and methodologies. r2con ctf 2020挑战涉及内核利用技术和方法。 # r2con ctf 2020: , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: r2con ctf 2020: , resource_label: primary resource_type: code resource_url: https://github.com/esanfelix/r2con2020-ctf-kernel parent_primary_url: https://github.com/esanfelix/r2con2020-ctf-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: r2con ctf 2020: [source](https://github.com/esanfelix/r2con2020-ctf-kernel), [exploit](https://github.com/dialluvioso/box/blob/master/r2con2020-ctf-kernel/exploit.c) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: h no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "3b8552148d5a3e0c",
      "item_id": "c66be1fa4d8133e1",
      "slug": "2020-practice-ctf-tasks-r2con-ctf-2020-exploit-13432464",
      "year": 2020,
      "title": "r2con CTF 2020: , · exploit",
      "item_title": "r2con CTF 2020: ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/dialluvioso/box/blob/master/r2con2020-ctf-kernel/exploit.c",
      "primary_url": "https://github.com/dialluvioso/box/blob/master/r2con2020-ctf-kernel/exploit.c",
      "parent_primary_url": "https://github.com/esanfelix/r2con2020-ctf-kernel",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-r2con-ctf-2020-exploit-13432464.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# r2con CTF 2020: , · exploit record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: r2con CTF 2020: , resource_label: exploit resource_type: exploit resource_url: https://github.com/dialluvioso/box/blob/master/r2con2020-ctf-kernel/exploit.c parent_primary_url: https://github.com/esanfelix/r2con2020-ctf-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: r2con CTF 2020: [source](https://github.com/esanfelix/r2con2020-ctf-kernel), [exploit](https://github.com/dialluvioso/box/blob/master/r2con2020-ctf-kernel/exploit.c) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc:",
      "link_types": [
        "code",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/esanfelix/r2con2020-ctf-kernel"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://github.com/dialluvioso/box/blob/master/r2con2020-ctf-kernel/exploit.c"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/esanfelix/r2con2020-ctf-kernel"
          }
        ],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://github.com/dialluvioso/box/blob/master/r2con2020-ctf-kernel/exploit.c"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/esanfelix/r2con2020-ctf-kernel",
        "https://github.com/dialluvioso/box/blob/master/r2con2020-ctf-kernel/exploit.c"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "CTF Tasks",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: CTF Tasks",
      "summary_en": "2020 Linux kernel Practice: CTF Tasks resource \"r2con CTF 2020: , · exploit\"; URL type: exploit.",
      "summary_zh": "2020 年 Linux 内核Practice: CTF Tasks资料：「r2con CTF 2020: , · exploit」；URL 类型：exploit。",
      "source_markdown": "r2con CTF 2020: [source](https://github.com/esanfelix/r2con2020-ctf-kernel), [exploit](https://github.com/dialluvioso/box/blob/master/r2con2020-ctf-kernel/exploit.c)",
      "search_text": "r2con ctf 2020: , · exploit r2con ctf 2020: ,    practice ctf tasks practice: ctf tasks exploit exploit https://github.com/dialluvioso/box/blob/master/r2con2020-ctf-kernel/exploit.c practice ctf tasks exploit  practice: ctf tasks 2020 linux kernel practice: ctf tasks resource \"r2con ctf 2020: , · exploit\"; url type: exploit. 2020 年 linux 内核practice: ctf tasks资料：「r2con ctf 2020: , · exploit」；url 类型：exploit。 # r2con ctf 2020: , · exploit record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: r2con ctf 2020: , resource_label: exploit resource_type: exploit resource_url: https://github.com/dialluvioso/box/blob/master/r2con2020-ctf-kernel/exploit.c parent_primary_url: https://github.com/esanfelix/r2con2020-ctf-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: r2con ctf 2020: [source](https://github.com/esanfelix/r2con2020-ctf-kernel), [exploit](https://github.com/dialluvioso/box/blob/master/r2con2020-ctf-kernel/exploit.c) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "c40a216a57741011",
      "item_id": "d8a5f3143e33a868",
      "slug": "2020-practice-ctf-tasks-asis-ctf-2020-shared-house-primary-5f5ad779",
      "year": 2020,
      "title": "ASIS CTF 2020 (Shared House):",
      "item_title": "ASIS CTF 2020 (Shared House):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ptr-yudai.hatenablog.com/entry/2020/07/06/000622#354pts-Shared-House-7-solves",
      "primary_url": "https://ptr-yudai.hatenablog.com/entry/2020/07/06/000622#354pts-Shared-House-7-solves",
      "parent_primary_url": "https://ptr-yudai.hatenablog.com/entry/2020/07/06/000622#354pts-Shared-House-7-solves",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-asis-ctf-2020-shared-house-primary-5f5ad779.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ASIS CTF 2020 (Shared House): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: ASIS CTF 2020 (Shared House): resource_label: primary resource_type: article resource_url: https://ptr-yudai.hatenablog.com/entry/2020/07/06/000622#354pts-Shared-House-7-solves parent_primary_url: https://ptr-yudai.hatenablog.com/entry/2020/07/06/000622#354pts-Shared-House-7-solves source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: ASIS CTF 2020 (Shared House): [writeup](https://ptr-yudai.hatenablog.com/entry/2020/07/06/000622#354pts-Shared-House-7-solves) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ptr-yudai.hatenablog.com/entry/2020/07/06/000622#354pts-Shared-House-7-solves"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ptr-yudai.hatenablog.com/entry/2020/07/06/000622#354pts-Shared-House-7-solves"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "writeup",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "A writeup for the ASIS CTF 2020 Shared House challenge.",
      "summary_zh": "ASIS CTF 2020 Shared House挑战的写作。",
      "source_markdown": "ASIS CTF 2020 (Shared House): [writeup](https://ptr-yudai.hatenablog.com/entry/2020/07/06/000622#354pts-Shared-House-7-solves)",
      "search_text": "asis ctf 2020 (shared house): asis ctf 2020 (shared house):    practice ctf tasks practice: ctf tasks primary article https://ptr-yudai.hatenablog.com/entry/2020/07/06/000622#354pts-shared-house-7-solves writeup ctf  article a writeup for the asis ctf 2020 shared house challenge. asis ctf 2020 shared house挑战的写作。 # asis ctf 2020 (shared house): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: asis ctf 2020 (shared house): resource_label: primary resource_type: article resource_url: https://ptr-yudai.hatenablog.com/entry/2020/07/06/000622#354pts-shared-house-7-solves parent_primary_url: https://ptr-yudai.hatenablog.com/entry/2020/07/06/000622#354pts-shared-house-7-solves source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: asis ctf 2020 (shared house): [writeup](https://ptr-yudai.hatenablog.com/entry/2020/07/06/000622#354pts-shared-house-7-solves) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9b224f5a6a3ca0cf",
      "item_id": "a3e7e1c511c52c7e",
      "slug": "2020-practice-ctf-tasks-def-con-ctf-qualifier-2020-fungez-primary-ddf4ae67",
      "year": 2020,
      "title": "DEF CON CTF Qualifier 2020 (fungez): ,",
      "item_title": "DEF CON CTF Qualifier 2020 (fungez): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/o-o-overflow/dc2020q-fungez-public",
      "primary_url": "https://github.com/o-o-overflow/dc2020q-fungez-public",
      "parent_primary_url": "https://github.com/o-o-overflow/dc2020q-fungez-public",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-def-con-ctf-qualifier-2020-fungez-primary-ddf4ae67.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DEF CON CTF Qualifier 2020 (fungez): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: DEF CON CTF Qualifier 2020 (fungez): , resource_label: primary resource_type: code resource_url: https://github.com/o-o-overflow/dc2020q-fungez-public parent_primary_url: https://github.com/o-o-overflow/dc2020q-fungez-public source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: DEF CON CTF Qualifier 2020 (fungez): [source](https://github.com/o-o-overflow/dc2020q-fungez-public), [exploit and writeup](https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/fungez) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/o-o-overflow/dc2020q-fungez-public"
        },
        {
          "label": "exploit and writeup",
          "type": "article",
          "url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/fungez"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "exploit and writeup",
            "type": "article",
            "url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/fungez"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/o-o-overflow/dc2020q-fungez-public"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/o-o-overflow/dc2020q-fungez-public",
        "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/fungez"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "code",
        "CTF",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "code",
      "summary_en": "This resource includes code for the fungez challenge from DEF CON CTF Qualifier 2020.",
      "summary_zh": "该资源包含DEF CON CTF预选赛2020的fungez挑战的代码。",
      "source_markdown": "DEF CON CTF Qualifier 2020 (fungez): [source](https://github.com/o-o-overflow/dc2020q-fungez-public), [exploit and writeup](https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/fungez)",
      "search_text": "def con ctf qualifier 2020 (fungez): , def con ctf qualifier 2020 (fungez): ,    practice ctf tasks practice: ctf tasks primary code https://github.com/o-o-overflow/dc2020q-fungez-public code ctf kernel  code this resource includes code for the fungez challenge from def con ctf qualifier 2020. 该资源包含def con ctf预选赛2020的fungez挑战的代码。 # def con ctf qualifier 2020 (fungez): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: def con ctf qualifier 2020 (fungez): , resource_label: primary resource_type: code resource_url: https://github.com/o-o-overflow/dc2020q-fungez-public parent_primary_url: https://github.com/o-o-overflow/dc2020q-fungez-public source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: def con ctf qualifier 2020 (fungez): [source](https://github.com/o-o-overflow/dc2020q-fungez-public), [exploit and writeup](https://github.com/brieflyx/ctf-pwns/tree/master/kernel/fungez) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "d2f5fc1829a39ee0",
      "item_id": "a3e7e1c511c52c7e",
      "slug": "2020-practice-ctf-tasks-def-con-ctf-qualifier-2020-fungez-exploit-and-writeup-8f84327c",
      "year": 2020,
      "title": "DEF CON CTF Qualifier 2020 (fungez): , · exploit and writeup",
      "item_title": "DEF CON CTF Qualifier 2020 (fungez): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "exploit and writeup",
      "resource_type": "article",
      "resource_url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/fungez",
      "primary_url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/fungez",
      "parent_primary_url": "https://github.com/o-o-overflow/dc2020q-fungez-public",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-def-con-ctf-qualifier-2020-fungez-exploit-and-writeup-8f84327c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DEF CON CTF Qualifier 2020 (fungez): , · exploit and writeup record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: DEF CON CTF Qualifier 2020 (fungez): , resource_label: exploit and writeup resource_type: article resource_url: https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/fungez parent_primary_url: https://github.com/o-o-overflow/dc2020q-fungez-public source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: DEF CON CTF Qualifier 2020 (fungez): [source](https://github.com/o-o-overflow/dc2020q-fungez-public), [exploit and writeup](https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/fungez) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production ",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/o-o-overflow/dc2020q-fungez-public"
        },
        {
          "label": "exploit and writeup",
          "type": "article",
          "url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/fungez"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "exploit and writeup",
            "type": "article",
            "url": "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/fungez"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/o-o-overflow/dc2020q-fungez-public"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/o-o-overflow/dc2020q-fungez-public",
        "https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/fungez"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "writeup",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "An article detailing the exploit and writeup for the fungez challenge from DEF CON CTF Qualifier 2020.",
      "summary_zh": "一篇文章详细介绍了DEF CON CTF预选赛2020的fungez挑战的利用和写作。",
      "source_markdown": "DEF CON CTF Qualifier 2020 (fungez): [source](https://github.com/o-o-overflow/dc2020q-fungez-public), [exploit and writeup](https://github.com/BrieflyX/ctf-pwns/tree/master/kernel/fungez)",
      "search_text": "def con ctf qualifier 2020 (fungez): , · exploit and writeup def con ctf qualifier 2020 (fungez): ,    practice ctf tasks practice: ctf tasks exploit and writeup article https://github.com/brieflyx/ctf-pwns/tree/master/kernel/fungez exploit writeup ctf  exploit an article detailing the exploit and writeup for the fungez challenge from def con ctf qualifier 2020. 一篇文章详细介绍了def con ctf预选赛2020的fungez挑战的利用和写作。 # def con ctf qualifier 2020 (fungez): , · exploit and writeup record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: def con ctf qualifier 2020 (fungez): , resource_label: exploit and writeup resource_type: article resource_url: https://github.com/brieflyx/ctf-pwns/tree/master/kernel/fungez parent_primary_url: https://github.com/o-o-overflow/dc2020q-fungez-public source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: def con ctf qualifier 2020 (fungez): [source](https://github.com/o-o-overflow/dc2020q-fungez-public), [exploit and writeup](https://github.com/brieflyx/ctf-pwns/tree/master/kernel/fungez) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "f4cdf3e36efd515d",
      "item_id": "3449ad3b38a5d36b",
      "slug": "2020-practice-ctf-tasks-def-con-ctf-qualifier-2020-keml-primary-659ca86b",
      "year": 2020,
      "title": "DEF CON CTF Qualifier 2020 (keml): ,",
      "item_title": "DEF CON CTF Qualifier 2020 (keml): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/o-o-overflow/dc2020q-keml-public",
      "primary_url": "https://github.com/o-o-overflow/dc2020q-keml-public",
      "parent_primary_url": "https://github.com/o-o-overflow/dc2020q-keml-public",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-def-con-ctf-qualifier-2020-keml-primary-659ca86b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DEF CON CTF Qualifier 2020 (keml): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: DEF CON CTF Qualifier 2020 (keml): , resource_label: primary resource_type: code resource_url: https://github.com/o-o-overflow/dc2020q-keml-public parent_primary_url: https://github.com/o-o-overflow/dc2020q-keml-public source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: DEF CON CTF Qualifier 2020 (keml): [source](https://github.com/o-o-overflow/dc2020q-keml-public), [exploit](https://gist.github.com/LYoungJoo/4d225668991c6812701b1fcad6e18646) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: tr",
      "link_types": [
        "code",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/o-o-overflow/dc2020q-keml-public"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://gist.github.com/LYoungJoo/4d225668991c6812701b1fcad6e18646"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/o-o-overflow/dc2020q-keml-public"
          }
        ],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://gist.github.com/LYoungJoo/4d225668991c6812701b1fcad6e18646"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/o-o-overflow/dc2020q-keml-public",
        "https://gist.github.com/LYoungJoo/4d225668991c6812701b1fcad6e18646"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "code",
        "CTF",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "code",
      "summary_en": "This resource provides code for the keml challenge from DEF CON CTF Qualifier 2020.",
      "summary_zh": "该资源提供了DEF CON CTF预选赛2020的keml挑战的代码。",
      "source_markdown": "DEF CON CTF Qualifier 2020 (keml): [source](https://github.com/o-o-overflow/dc2020q-keml-public), [exploit](https://gist.github.com/LYoungJoo/4d225668991c6812701b1fcad6e18646)",
      "search_text": "def con ctf qualifier 2020 (keml): , def con ctf qualifier 2020 (keml): ,    practice ctf tasks practice: ctf tasks primary code https://github.com/o-o-overflow/dc2020q-keml-public code ctf kernel  code this resource provides code for the keml challenge from def con ctf qualifier 2020. 该资源提供了def con ctf预选赛2020的keml挑战的代码。 # def con ctf qualifier 2020 (keml): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: def con ctf qualifier 2020 (keml): , resource_label: primary resource_type: code resource_url: https://github.com/o-o-overflow/dc2020q-keml-public parent_primary_url: https://github.com/o-o-overflow/dc2020q-keml-public source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: def con ctf qualifier 2020 (keml): [source](https://github.com/o-o-overflow/dc2020q-keml-public), [exploit](https://gist.github.com/lyoungjoo/4d225668991c6812701b1fcad6e18646) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: tr no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "c957b491b0c017fa",
      "item_id": "3449ad3b38a5d36b",
      "slug": "2020-practice-ctf-tasks-def-con-ctf-qualifier-2020-keml-exploit-3085b7fe",
      "year": 2020,
      "title": "DEF CON CTF Qualifier 2020 (keml): , · exploit",
      "item_title": "DEF CON CTF Qualifier 2020 (keml): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://gist.github.com/LYoungJoo/4d225668991c6812701b1fcad6e18646",
      "primary_url": "https://gist.github.com/LYoungJoo/4d225668991c6812701b1fcad6e18646",
      "parent_primary_url": "https://github.com/o-o-overflow/dc2020q-keml-public",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-def-con-ctf-qualifier-2020-keml-exploit-3085b7fe.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# DEF CON CTF Qualifier 2020 (keml): , · exploit record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: DEF CON CTF Qualifier 2020 (keml): , resource_label: exploit resource_type: exploit resource_url: https://gist.github.com/LYoungJoo/4d225668991c6812701b1fcad6e18646 parent_primary_url: https://github.com/o-o-overflow/dc2020q-keml-public source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: DEF CON CTF Qualifier 2020 (keml): [source](https://github.com/o-o-overflow/dc2020q-keml-public), [exploit](https://gist.github.com/LYoungJoo/4d225668991c6812701b1fcad6e18646) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rat",
      "link_types": [
        "code",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/o-o-overflow/dc2020q-keml-public"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://gist.github.com/LYoungJoo/4d225668991c6812701b1fcad6e18646"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/o-o-overflow/dc2020q-keml-public"
          }
        ],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://gist.github.com/LYoungJoo/4d225668991c6812701b1fcad6e18646"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/o-o-overflow/dc2020q-keml-public",
        "https://gist.github.com/LYoungJoo/4d225668991c6812701b1fcad6e18646"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "An exploit resource for the keml challenge from DEF CON CTF Qualifier 2020.",
      "summary_zh": "DEF CON CTF预选赛2020的keml挑战的利用资源。",
      "source_markdown": "DEF CON CTF Qualifier 2020 (keml): [source](https://github.com/o-o-overflow/dc2020q-keml-public), [exploit](https://gist.github.com/LYoungJoo/4d225668991c6812701b1fcad6e18646)",
      "search_text": "def con ctf qualifier 2020 (keml): , · exploit def con ctf qualifier 2020 (keml): ,    practice ctf tasks practice: ctf tasks exploit exploit https://gist.github.com/lyoungjoo/4d225668991c6812701b1fcad6e18646 exploit ctf  exploit an exploit resource for the keml challenge from def con ctf qualifier 2020. def con ctf预选赛2020的keml挑战的利用资源。 # def con ctf qualifier 2020 (keml): , · exploit record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: def con ctf qualifier 2020 (keml): , resource_label: exploit resource_type: exploit resource_url: https://gist.github.com/lyoungjoo/4d225668991c6812701b1fcad6e18646 parent_primary_url: https://github.com/o-o-overflow/dc2020q-keml-public source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: def con ctf qualifier 2020 (keml): [source](https://github.com/o-o-overflow/dc2020q-keml-public), [exploit](https://gist.github.com/lyoungjoo/4d225668991c6812701b1fcad6e18646) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rat no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "0d363d838a2327f4",
      "item_id": "8a358f34e76d696c",
      "slug": "2020-practice-ctf-tasks-zer0pts-ctf-2020-meow-primary-64d9d062",
      "year": 2020,
      "title": "zer0pts CTF 2020 (meow):",
      "item_title": "zer0pts CTF 2020 (meow):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://pr0cf5.github.io/ctf/2020/03/09/the-plight-of-tty-in-the-linux-kernel.html",
      "primary_url": "https://pr0cf5.github.io/ctf/2020/03/09/the-plight-of-tty-in-the-linux-kernel.html",
      "parent_primary_url": "https://pr0cf5.github.io/ctf/2020/03/09/the-plight-of-tty-in-the-linux-kernel.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2020-practice-ctf-tasks-zer0pts-ctf-2020-meow-primary-64d9d062.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# zer0pts CTF 2020 (meow): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: zer0pts CTF 2020 (meow): resource_label: primary resource_type: article resource_url: https://pr0cf5.github.io/ctf/2020/03/09/the-plight-of-tty-in-the-linux-kernel.html parent_primary_url: https://pr0cf5.github.io/ctf/2020/03/09/the-plight-of-tty-in-the-linux-kernel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: zer0pts CTF 2020 (meow): [writeup](https://pr0cf5.github.io/ctf/2020/03/09/the-plight-of-tty-in-the-linux-kernel.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: fals",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://pr0cf5.github.io/ctf/2020/03/09/the-plight-of-tty-in-the-linux-kernel.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://pr0cf5.github.io/ctf/2020/03/09/the-plight-of-tty-in-the-linux-kernel.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://pr0cf5.github.io/ctf/2020/03/09/the-plight-of-tty-in-the-linux-kernel.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "writeup",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "A writeup for the meow challenge from zer0pts CTF 2020.",
      "summary_zh": "zer0pts CTF 2020的meow挑战的写作。",
      "source_markdown": "zer0pts CTF 2020 (meow): [writeup](https://pr0cf5.github.io/ctf/2020/03/09/the-plight-of-tty-in-the-linux-kernel.html)",
      "search_text": "zer0pts ctf 2020 (meow): zer0pts ctf 2020 (meow):    practice ctf tasks practice: ctf tasks primary article https://pr0cf5.github.io/ctf/2020/03/09/the-plight-of-tty-in-the-linux-kernel.html writeup ctf  article a writeup for the meow challenge from zer0pts ctf 2020. zer0pts ctf 2020的meow挑战的写作。 # zer0pts ctf 2020 (meow): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: zer0pts ctf 2020 (meow): resource_label: primary resource_type: article resource_url: https://pr0cf5.github.io/ctf/2020/03/09/the-plight-of-tty-in-the-linux-kernel.html parent_primary_url: https://pr0cf5.github.io/ctf/2020/03/09/the-plight-of-tty-in-the-linux-kernel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: zer0pts ctf 2020 (meow): [writeup](https://pr0cf5.github.io/ctf/2020/03/09/the-plight-of-tty-in-the-linux-kernel.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: fals no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ed70f7cc05a703e0",
      "item_id": "9467476d96962160",
      "slug": "2019-practice-ctf-tasks-de1ctf-2019-race-primary-c0759d36",
      "year": 2019,
      "title": "De1CTF 2019 (Race):",
      "item_title": "De1CTF 2019 (Race):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/De1ta-team/De1CTF2019/tree/master/writeup/pwn/Race",
      "primary_url": "https://github.com/De1ta-team/De1CTF2019/tree/master/writeup/pwn/Race",
      "parent_primary_url": "https://github.com/De1ta-team/De1CTF2019/tree/master/writeup/pwn/Race",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2019-practice-ctf-tasks-de1ctf-2019-race-primary-c0759d36.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# De1CTF 2019 (Race): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: De1CTF 2019 (Race): resource_label: primary resource_type: article resource_url: https://github.com/De1ta-team/De1CTF2019/tree/master/writeup/pwn/Race parent_primary_url: https://github.com/De1ta-team/De1CTF2019/tree/master/writeup/pwn/Race source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: De1CTF 2019 (Race): [writeup and exploit](https://github.com/De1ta-team/De1CTF2019/tree/master/writeup/pwn/Race) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/De1ta-team/De1CTF2019/tree/master/writeup/pwn/Race"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/De1ta-team/De1CTF2019/tree/master/writeup/pwn/Race"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/De1ta-team/De1CTF2019/tree/master/writeup/pwn/Race"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "writeup",
        "exploit",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "A writeup and exploit for the Race challenge from De1CTF 2019.",
      "summary_zh": "De1CTF 2019的Race挑战的写作和利用。",
      "source_markdown": "De1CTF 2019 (Race): [writeup and exploit](https://github.com/De1ta-team/De1CTF2019/tree/master/writeup/pwn/Race)",
      "search_text": "de1ctf 2019 (race): de1ctf 2019 (race):    practice ctf tasks practice: ctf tasks primary article https://github.com/de1ta-team/de1ctf2019/tree/master/writeup/pwn/race writeup exploit ctf  article a writeup and exploit for the race challenge from de1ctf 2019. de1ctf 2019的race挑战的写作和利用。 # de1ctf 2019 (race): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: de1ctf 2019 (race): resource_label: primary resource_type: article resource_url: https://github.com/de1ta-team/de1ctf2019/tree/master/writeup/pwn/race parent_primary_url: https://github.com/de1ta-team/de1ctf2019/tree/master/writeup/pwn/race source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: de1ctf 2019 (race): [writeup and exploit](https://github.com/de1ta-team/de1ctf2019/tree/master/writeup/pwn/race) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "40a98e54793ff58c",
      "item_id": "356354393d3c1424",
      "slug": "2019-practice-ctf-tasks-r2con-ctf-2019-primary-dd902354",
      "year": 2019,
      "title": "r2con CTF 2019:",
      "item_title": "r2con CTF 2019:",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/esanfelix/r2con2019-ctf-kernel",
      "primary_url": "https://github.com/esanfelix/r2con2019-ctf-kernel",
      "parent_primary_url": "https://github.com/esanfelix/r2con2019-ctf-kernel",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2019-practice-ctf-tasks-r2con-ctf-2019-primary-dd902354.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# r2con CTF 2019: record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: r2con CTF 2019: resource_label: primary resource_type: article resource_url: https://github.com/esanfelix/r2con2019-ctf-kernel parent_primary_url: https://github.com/esanfelix/r2con2019-ctf-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: r2con CTF 2019: [source, exploit, and writeup](https://github.com/esanfelix/r2con2019-ctf-kernel) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/esanfelix/r2con2019-ctf-kernel context_links: - [",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/esanfelix/r2con2019-ctf-kernel"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/esanfelix/r2con2019-ctf-kernel"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/esanfelix/r2con2019-ctf-kernel"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "writeup",
        "exploit",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "This resource includes a writeup and exploit for the r2con CTF 2019 challenge.",
      "summary_zh": "该资源包含r2con CTF 2019挑战的写作和利用。",
      "source_markdown": "r2con CTF 2019: [source, exploit, and writeup](https://github.com/esanfelix/r2con2019-ctf-kernel)",
      "search_text": "r2con ctf 2019: r2con ctf 2019:    practice ctf tasks practice: ctf tasks primary article https://github.com/esanfelix/r2con2019-ctf-kernel writeup exploit ctf  article this resource includes a writeup and exploit for the r2con ctf 2019 challenge. 该资源包含r2con ctf 2019挑战的写作和利用。 # r2con ctf 2019: record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: r2con ctf 2019: resource_label: primary resource_type: article resource_url: https://github.com/esanfelix/r2con2019-ctf-kernel parent_primary_url: https://github.com/esanfelix/r2con2019-ctf-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: r2con ctf 2019: [source, exploit, and writeup](https://github.com/esanfelix/r2con2019-ctf-kernel) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/esanfelix/r2con2019-ctf-kernel context_links: - [ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "7306c0dab95fa3a9",
      "item_id": "389d6374552752b5",
      "slug": "2019-practice-ctf-tasks-hitcon-ctf-quals-2019-poe-primary-6ed57407",
      "year": 2019,
      "title": "HITCON CTF Quals 2019 (PoE):",
      "item_title": "HITCON CTF Quals 2019 (PoE):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-quals-2019/PoE",
      "primary_url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-quals-2019/PoE",
      "parent_primary_url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-quals-2019/PoE",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2019-practice-ctf-tasks-hitcon-ctf-quals-2019-poe-primary-6ed57407.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# HITCON CTF Quals 2019 (PoE): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: HITCON CTF Quals 2019 (PoE): resource_label: primary resource_type: exploit resource_url: https://github.com/david942j/ctf-writeups/tree/master/hitcon-quals-2019/PoE parent_primary_url: https://github.com/david942j/ctf-writeups/tree/master/hitcon-quals-2019/PoE source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: HITCON CTF Quals 2019 (PoE): [source and exploit](https://github.com/david942j/ctf-writeups/tree/master/hitcon-quals-2019/PoE) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: tr",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-quals-2019/PoE"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/david942j/ctf-writeups/tree/master/hitcon-quals-2019/PoE"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/david942j/ctf-writeups/tree/master/hitcon-quals-2019/PoE"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "An exploit resource for the PoE challenge from HITCON CTF Quals 2019.",
      "summary_zh": "HITCON CTF预选赛2019的PoE挑战的利用资源。",
      "source_markdown": "HITCON CTF Quals 2019 (PoE): [source and exploit](https://github.com/david942j/ctf-writeups/tree/master/hitcon-quals-2019/PoE)",
      "search_text": "hitcon ctf quals 2019 (poe): hitcon ctf quals 2019 (poe):    practice ctf tasks practice: ctf tasks primary exploit https://github.com/david942j/ctf-writeups/tree/master/hitcon-quals-2019/poe exploit ctf  exploit an exploit resource for the poe challenge from hitcon ctf quals 2019. hitcon ctf预选赛2019的poe挑战的利用资源。 # hitcon ctf quals 2019 (poe): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: hitcon ctf quals 2019 (poe): resource_label: primary resource_type: exploit resource_url: https://github.com/david942j/ctf-writeups/tree/master/hitcon-quals-2019/poe parent_primary_url: https://github.com/david942j/ctf-writeups/tree/master/hitcon-quals-2019/poe source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hitcon ctf quals 2019 (poe): [source and exploit](https://github.com/david942j/ctf-writeups/tree/master/hitcon-quals-2019/poe) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: tr no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "c529b89685a4c9b7",
      "item_id": "c6b7c7078e60c441",
      "slug": "2019-practice-ctf-tasks-balsn-ctf-2019-krazynote-primary-f05289b1",
      "year": 2019,
      "title": "Balsn CTF 2019 (KrazyNote): ,",
      "item_title": "Balsn CTF 2019 (KrazyNote): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/Mem2019/Mem2019.github.io/blob/master/codes/krazynote.c",
      "primary_url": "https://github.com/Mem2019/Mem2019.github.io/blob/master/codes/krazynote.c",
      "parent_primary_url": "https://github.com/Mem2019/Mem2019.github.io/blob/master/codes/krazynote.c",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2019-practice-ctf-tasks-balsn-ctf-2019-krazynote-primary-f05289b1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Balsn CTF 2019 (KrazyNote): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Balsn CTF 2019 (KrazyNote): , resource_label: primary resource_type: exploit resource_url: https://github.com/Mem2019/Mem2019.github.io/blob/master/codes/krazynote.c parent_primary_url: https://github.com/Mem2019/Mem2019.github.io/blob/master/codes/krazynote.c source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Balsn CTF 2019 (KrazyNote): [exploit](https://github.com/Mem2019/Mem2019.github.io/blob/master/codes/krazynote.c), [writeup](https://pr0cf5.github.io/ctf/2019/10/10/balsn-ctf-krazynote.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use ",
      "link_types": [
        "exploit",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/Mem2019/Mem2019.github.io/blob/master/codes/krazynote.c"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://pr0cf5.github.io/ctf/2019/10/10/balsn-ctf-krazynote.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://pr0cf5.github.io/ctf/2019/10/10/balsn-ctf-krazynote.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/Mem2019/Mem2019.github.io/blob/master/codes/krazynote.c"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Mem2019/Mem2019.github.io/blob/master/codes/krazynote.c",
        "https://pr0cf5.github.io/ctf/2019/10/10/balsn-ctf-krazynote.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "writeup",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "This resource provides an exploit and writeup for the KrazyNote challenge from Balsn CTF 2019.",
      "summary_zh": "该资源提供了Balsn CTF 2019的KrazyNote挑战的利用和写作。",
      "source_markdown": "Balsn CTF 2019 (KrazyNote): [exploit](https://github.com/Mem2019/Mem2019.github.io/blob/master/codes/krazynote.c), [writeup](https://pr0cf5.github.io/ctf/2019/10/10/balsn-ctf-krazynote.html)",
      "search_text": "balsn ctf 2019 (krazynote): , balsn ctf 2019 (krazynote): ,    practice ctf tasks practice: ctf tasks primary exploit https://github.com/mem2019/mem2019.github.io/blob/master/codes/krazynote.c exploit writeup ctf  article this resource provides an exploit and writeup for the krazynote challenge from balsn ctf 2019. 该资源提供了balsn ctf 2019的krazynote挑战的利用和写作。 # balsn ctf 2019 (krazynote): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: balsn ctf 2019 (krazynote): , resource_label: primary resource_type: exploit resource_url: https://github.com/mem2019/mem2019.github.io/blob/master/codes/krazynote.c parent_primary_url: https://github.com/mem2019/mem2019.github.io/blob/master/codes/krazynote.c source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: balsn ctf 2019 (krazynote): [exploit](https://github.com/mem2019/mem2019.github.io/blob/master/codes/krazynote.c), [writeup](https://pr0cf5.github.io/ctf/2019/10/10/balsn-ctf-krazynote.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "ff4ae62baf1ce4b2",
      "item_id": "c6b7c7078e60c441",
      "slug": "2019-practice-ctf-tasks-balsn-ctf-2019-krazynote-writeup-efa4bfa0",
      "year": 2019,
      "title": "Balsn CTF 2019 (KrazyNote): , · writeup",
      "item_title": "Balsn CTF 2019 (KrazyNote): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup",
      "resource_type": "article",
      "resource_url": "https://pr0cf5.github.io/ctf/2019/10/10/balsn-ctf-krazynote.html",
      "primary_url": "https://pr0cf5.github.io/ctf/2019/10/10/balsn-ctf-krazynote.html",
      "parent_primary_url": "https://github.com/Mem2019/Mem2019.github.io/blob/master/codes/krazynote.c",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2019-practice-ctf-tasks-balsn-ctf-2019-krazynote-writeup-efa4bfa0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Balsn CTF 2019 (KrazyNote): , · writeup record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Balsn CTF 2019 (KrazyNote): , resource_label: writeup resource_type: article resource_url: https://pr0cf5.github.io/ctf/2019/10/10/balsn-ctf-krazynote.html parent_primary_url: https://github.com/Mem2019/Mem2019.github.io/blob/master/codes/krazynote.c source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Balsn CTF 2019 (KrazyNote): [exploit](https://github.com/Mem2019/Mem2019.github.io/blob/master/codes/krazynote.c), [writeup](https://pr0cf5.github.io/ctf/2019/10/10/balsn-ctf-krazynote.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use ",
      "link_types": [
        "exploit",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/Mem2019/Mem2019.github.io/blob/master/codes/krazynote.c"
        },
        {
          "label": "writeup",
          "type": "article",
          "url": "https://pr0cf5.github.io/ctf/2019/10/10/balsn-ctf-krazynote.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "writeup",
            "type": "article",
            "url": "https://pr0cf5.github.io/ctf/2019/10/10/balsn-ctf-krazynote.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/Mem2019/Mem2019.github.io/blob/master/codes/krazynote.c"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Mem2019/Mem2019.github.io/blob/master/codes/krazynote.c",
        "https://pr0cf5.github.io/ctf/2019/10/10/balsn-ctf-krazynote.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "writeup",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "A writeup for the KrazyNote challenge from Balsn CTF 2019.",
      "summary_zh": "Balsn CTF 2019的KrazyNote挑战的写作。",
      "source_markdown": "Balsn CTF 2019 (KrazyNote): [exploit](https://github.com/Mem2019/Mem2019.github.io/blob/master/codes/krazynote.c), [writeup](https://pr0cf5.github.io/ctf/2019/10/10/balsn-ctf-krazynote.html)",
      "search_text": "balsn ctf 2019 (krazynote): , · writeup balsn ctf 2019 (krazynote): ,    practice ctf tasks practice: ctf tasks writeup article https://pr0cf5.github.io/ctf/2019/10/10/balsn-ctf-krazynote.html writeup ctf  article a writeup for the krazynote challenge from balsn ctf 2019. balsn ctf 2019的krazynote挑战的写作。 # balsn ctf 2019 (krazynote): , · writeup record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: balsn ctf 2019 (krazynote): , resource_label: writeup resource_type: article resource_url: https://pr0cf5.github.io/ctf/2019/10/10/balsn-ctf-krazynote.html parent_primary_url: https://github.com/mem2019/mem2019.github.io/blob/master/codes/krazynote.c source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: balsn ctf 2019 (krazynote): [exploit](https://github.com/mem2019/mem2019.github.io/blob/master/codes/krazynote.c), [writeup](https://pr0cf5.github.io/ctf/2019/10/10/balsn-ctf-krazynote.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "0b54db912848b98e",
      "item_id": "11071d0616ea7765",
      "slug": "2019-practice-ctf-tasks-tokyowesterns-ctf-2019-gnote-video-primary-d1e31637",
      "year": 2019,
      "title": "TokyoWesterns CTF 2019 (gnote): , video ,",
      "item_title": "TokyoWesterns CTF 2019 (gnote): , video ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://rpis.ec/blog/tokyowesterns-2019-gnote/",
      "primary_url": "https://rpis.ec/blog/tokyowesterns-2019-gnote/",
      "parent_primary_url": "https://rpis.ec/blog/tokyowesterns-2019-gnote/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2019-practice-ctf-tasks-tokyowesterns-ctf-2019-gnote-video-primary-d1e31637.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TokyoWesterns CTF 2019 (gnote): , video , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: TokyoWesterns CTF 2019 (gnote): , video , resource_label: primary resource_type: article resource_url: https://rpis.ec/blog/tokyowesterns-2019-gnote/ parent_primary_url: https://rpis.ec/blog/tokyowesterns-2019-gnote/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: TokyoWesterns CTF 2019 (gnote): [writeup](https://rpis.ec/blog/tokyowesterns-2019-gnote/), video [part 1](https://www.youtube.com/watch?v=n7osrud3PMI), [part 2](https://www.youtube.com/watch?v=i8gZ85VC2Mw) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kerne",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://rpis.ec/blog/tokyowesterns-2019-gnote/"
        },
        {
          "label": "part 1",
          "type": "article",
          "url": "https://www.youtube.com/watch?v=n7osrud3PMI"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://www.youtube.com/watch?v=i8gZ85VC2Mw"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://rpis.ec/blog/tokyowesterns-2019-gnote/"
          },
          {
            "label": "part 1",
            "type": "article",
            "url": "https://www.youtube.com/watch?v=n7osrud3PMI"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://www.youtube.com/watch?v=i8gZ85VC2Mw"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "writeup",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "A writeup for the gnote challenge from TokyoWesterns CTF 2019.",
      "summary_zh": "TokyoWesterns CTF 2019的gnote挑战的写作。",
      "source_markdown": "TokyoWesterns CTF 2019 (gnote): [writeup](https://rpis.ec/blog/tokyowesterns-2019-gnote/), video [part 1](https://www.youtube.com/watch?v=n7osrud3PMI), [part 2](https://www.youtube.com/watch?v=i8gZ85VC2Mw)",
      "search_text": "tokyowesterns ctf 2019 (gnote): , video , tokyowesterns ctf 2019 (gnote): , video ,    practice ctf tasks practice: ctf tasks primary article https://rpis.ec/blog/tokyowesterns-2019-gnote/ writeup ctf  article a writeup for the gnote challenge from tokyowesterns ctf 2019. tokyowesterns ctf 2019的gnote挑战的写作。 # tokyowesterns ctf 2019 (gnote): , video , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: tokyowesterns ctf 2019 (gnote): , video , resource_label: primary resource_type: article resource_url: https://rpis.ec/blog/tokyowesterns-2019-gnote/ parent_primary_url: https://rpis.ec/blog/tokyowesterns-2019-gnote/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: tokyowesterns ctf 2019 (gnote): [writeup](https://rpis.ec/blog/tokyowesterns-2019-gnote/), video [part 1](https://www.youtube.com/watch?v=n7osrud3pmi), [part 2](https://www.youtube.com/watch?v=i8gz85vc2mw) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kerne no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "dea6523a0387b1d5",
      "item_id": "11071d0616ea7765",
      "slug": "2019-practice-ctf-tasks-tokyowesterns-ctf-2019-gnote-video-part-1-c4758921",
      "year": 2019,
      "title": "TokyoWesterns CTF 2019 (gnote): , video , · part 1",
      "item_title": "TokyoWesterns CTF 2019 (gnote): , video ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "part 1",
      "resource_type": "article",
      "resource_url": "https://www.youtube.com/watch?v=n7osrud3PMI",
      "primary_url": "https://www.youtube.com/watch?v=n7osrud3PMI",
      "parent_primary_url": "https://rpis.ec/blog/tokyowesterns-2019-gnote/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2019-practice-ctf-tasks-tokyowesterns-ctf-2019-gnote-video-part-1-c4758921.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TokyoWesterns CTF 2019 (gnote): , video , · part 1 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: TokyoWesterns CTF 2019 (gnote): , video , resource_label: part 1 resource_type: article resource_url: https://www.youtube.com/watch?v=n7osrud3PMI parent_primary_url: https://rpis.ec/blog/tokyowesterns-2019-gnote/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: TokyoWesterns CTF 2019 (gnote): [writeup](https://rpis.ec/blog/tokyowesterns-2019-gnote/), video [part 1](https://www.youtube.com/watch?v=n7osrud3PMI), [part 2](https://www.youtube.com/watch?v=i8gZ85VC2Mw) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://rpis.ec/blog/tokyowesterns-2019-gnote/"
        },
        {
          "label": "part 1",
          "type": "article",
          "url": "https://www.youtube.com/watch?v=n7osrud3PMI"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://www.youtube.com/watch?v=i8gZ85VC2Mw"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://rpis.ec/blog/tokyowesterns-2019-gnote/"
          },
          {
            "label": "part 1",
            "type": "article",
            "url": "https://www.youtube.com/watch?v=n7osrud3PMI"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://www.youtube.com/watch?v=i8gZ85VC2Mw"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "writeup",
        "video",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "This resource includes a writeup and video for the gnote challenge from TokyoWesterns CTF 2019.",
      "summary_zh": "该资源包含TokyoWesterns CTF 2019的gnote挑战的写作和视频。",
      "source_markdown": "TokyoWesterns CTF 2019 (gnote): [writeup](https://rpis.ec/blog/tokyowesterns-2019-gnote/), video [part 1](https://www.youtube.com/watch?v=n7osrud3PMI), [part 2](https://www.youtube.com/watch?v=i8gZ85VC2Mw)",
      "search_text": "tokyowesterns ctf 2019 (gnote): , video , · part 1 tokyowesterns ctf 2019 (gnote): , video ,    practice ctf tasks practice: ctf tasks part 1 article https://www.youtube.com/watch?v=n7osrud3pmi writeup video ctf  article this resource includes a writeup and video for the gnote challenge from tokyowesterns ctf 2019. 该资源包含tokyowesterns ctf 2019的gnote挑战的写作和视频。 # tokyowesterns ctf 2019 (gnote): , video , · part 1 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: tokyowesterns ctf 2019 (gnote): , video , resource_label: part 1 resource_type: article resource_url: https://www.youtube.com/watch?v=n7osrud3pmi parent_primary_url: https://rpis.ec/blog/tokyowesterns-2019-gnote/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: tokyowesterns ctf 2019 (gnote): [writeup](https://rpis.ec/blog/tokyowesterns-2019-gnote/), video [part 1](https://www.youtube.com/watch?v=n7osrud3pmi), [part 2](https://www.youtube.com/watch?v=i8gz85vc2mw) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "0fe076de18c507ce",
      "item_id": "11071d0616ea7765",
      "slug": "2019-practice-ctf-tasks-tokyowesterns-ctf-2019-gnote-video-part-2-a41e4100",
      "year": 2019,
      "title": "TokyoWesterns CTF 2019 (gnote): , video , · part 2",
      "item_title": "TokyoWesterns CTF 2019 (gnote): , video ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "part 2",
      "resource_type": "article",
      "resource_url": "https://www.youtube.com/watch?v=i8gZ85VC2Mw",
      "primary_url": "https://www.youtube.com/watch?v=i8gZ85VC2Mw",
      "parent_primary_url": "https://rpis.ec/blog/tokyowesterns-2019-gnote/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2019-practice-ctf-tasks-tokyowesterns-ctf-2019-gnote-video-part-2-a41e4100.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TokyoWesterns CTF 2019 (gnote): , video , · part 2 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: TokyoWesterns CTF 2019 (gnote): , video , resource_label: part 2 resource_type: article resource_url: https://www.youtube.com/watch?v=i8gZ85VC2Mw parent_primary_url: https://rpis.ec/blog/tokyowesterns-2019-gnote/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: TokyoWesterns CTF 2019 (gnote): [writeup](https://rpis.ec/blog/tokyowesterns-2019-gnote/), video [part 1](https://www.youtube.com/watch?v=n7osrud3PMI), [part 2](https://www.youtube.com/watch?v=i8gZ85VC2Mw) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://rpis.ec/blog/tokyowesterns-2019-gnote/"
        },
        {
          "label": "part 1",
          "type": "article",
          "url": "https://www.youtube.com/watch?v=n7osrud3PMI"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://www.youtube.com/watch?v=i8gZ85VC2Mw"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://rpis.ec/blog/tokyowesterns-2019-gnote/"
          },
          {
            "label": "part 1",
            "type": "article",
            "url": "https://www.youtube.com/watch?v=n7osrud3PMI"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://www.youtube.com/watch?v=i8gZ85VC2Mw"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "writeup",
        "video",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "A continuation of the writeup and video for the gnote challenge from TokyoWesterns CTF 2019.",
      "summary_zh": "TokyoWesterns CTF 2019的gnote挑战的写作和视频的延续。",
      "source_markdown": "TokyoWesterns CTF 2019 (gnote): [writeup](https://rpis.ec/blog/tokyowesterns-2019-gnote/), video [part 1](https://www.youtube.com/watch?v=n7osrud3PMI), [part 2](https://www.youtube.com/watch?v=i8gZ85VC2Mw)",
      "search_text": "tokyowesterns ctf 2019 (gnote): , video , · part 2 tokyowesterns ctf 2019 (gnote): , video ,    practice ctf tasks practice: ctf tasks part 2 article https://www.youtube.com/watch?v=i8gz85vc2mw writeup video ctf  article a continuation of the writeup and video for the gnote challenge from tokyowesterns ctf 2019. tokyowesterns ctf 2019的gnote挑战的写作和视频的延续。 # tokyowesterns ctf 2019 (gnote): , video , · part 2 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: tokyowesterns ctf 2019 (gnote): , video , resource_label: part 2 resource_type: article resource_url: https://www.youtube.com/watch?v=i8gz85vc2mw parent_primary_url: https://rpis.ec/blog/tokyowesterns-2019-gnote/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: tokyowesterns ctf 2019 (gnote): [writeup](https://rpis.ec/blog/tokyowesterns-2019-gnote/), video [part 1](https://www.youtube.com/watch?v=n7osrud3pmi), [part 2](https://www.youtube.com/watch?v=i8gz85vc2mw) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "85f3751846778a57",
      "item_id": "bff915fe2d8e3d81",
      "slug": "2019-practice-ctf-tasks-security-fest-2019-brainfuck64-primary-d7edb918",
      "year": 2019,
      "title": "Security Fest 2019 (brainfuck64):",
      "item_title": "Security Fest 2019 (brainfuck64):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://kileak.github.io/ctf/2019/secfest-brainfuck64/",
      "primary_url": "https://kileak.github.io/ctf/2019/secfest-brainfuck64/",
      "parent_primary_url": "https://kileak.github.io/ctf/2019/secfest-brainfuck64/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2019-practice-ctf-tasks-security-fest-2019-brainfuck64-primary-d7edb918.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Security Fest 2019 (brainfuck64): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Security Fest 2019 (brainfuck64): resource_label: primary resource_type: article resource_url: https://kileak.github.io/ctf/2019/secfest-brainfuck64/ parent_primary_url: https://kileak.github.io/ctf/2019/secfest-brainfuck64/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Security Fest 2019 (brainfuck64): [writeup](https://kileak.github.io/ctf/2019/secfest-brainfuck64/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://kileak.githu",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kileak.github.io/ctf/2019/secfest-brainfuck64/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kileak.github.io/ctf/2019/secfest-brainfuck64/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://kileak.github.io/ctf/2019/secfest-brainfuck64/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "writeup",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "A writeup for the brainfuck64 challenge from Security Fest 2019.",
      "summary_zh": "Security Fest 2019的brainfuck64挑战的写作。",
      "source_markdown": "Security Fest 2019 (brainfuck64): [writeup](https://kileak.github.io/ctf/2019/secfest-brainfuck64/)",
      "search_text": "security fest 2019 (brainfuck64): security fest 2019 (brainfuck64):    practice ctf tasks practice: ctf tasks primary article https://kileak.github.io/ctf/2019/secfest-brainfuck64/ writeup ctf  article a writeup for the brainfuck64 challenge from security fest 2019. security fest 2019的brainfuck64挑战的写作。 # security fest 2019 (brainfuck64): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: security fest 2019 (brainfuck64): resource_label: primary resource_type: article resource_url: https://kileak.github.io/ctf/2019/secfest-brainfuck64/ parent_primary_url: https://kileak.github.io/ctf/2019/secfest-brainfuck64/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: security fest 2019 (brainfuck64): [writeup](https://kileak.github.io/ctf/2019/secfest-brainfuck64/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://kileak.githu no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "bc015be113ae2e02",
      "item_id": "6d76f44f530e4c22",
      "slug": "2019-practice-ctf-tasks-insomni-hack-teaser-2019-1118daysober-primary-5737abc3",
      "year": 2019,
      "title": "Insomni'hack teaser 2019 (1118daysober): ,",
      "item_title": "Insomni'hack teaser 2019 (1118daysober): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ctftime.org/writeup/12919",
      "primary_url": "https://ctftime.org/writeup/12919",
      "parent_primary_url": "https://ctftime.org/writeup/12919",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2019-practice-ctf-tasks-insomni-hack-teaser-2019-1118daysober-primary-5737abc3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Insomni'hack teaser 2019 (1118daysober): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Insomni'hack teaser 2019 (1118daysober): , resource_label: primary resource_type: article resource_url: https://ctftime.org/writeup/12919 parent_primary_url: https://ctftime.org/writeup/12919 source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Insomni'hack teaser 2019 (1118daysober): [writeup 1](https://ctftime.org/writeup/12919), [writeup 2](https://github.com/EmpireCTF/empirectf/blob/master/writeups/2019-01-19-Insomni-Hack-Teaser/README.md#1118daysober) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ctftime.org/writeup/12919"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://github.com/EmpireCTF/empirectf/blob/master/writeups/2019-01-19-Insomni-Hack-Teaser/README.md#1118daysober"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ctftime.org/writeup/12919"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://github.com/EmpireCTF/empirectf/blob/master/writeups/2019-01-19-Insomni-Hack-Teaser/README.md#1118daysober"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/EmpireCTF/empirectf/blob/master/writeups/2019-01-19-Insomni-Hack-Teaser/README.md#1118daysober"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "writeup",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "This resource includes multiple writeups for the 1118daysober challenge from Insomni'hack teaser 2019.",
      "summary_zh": "该资源包含Insomni'hack teaser 2019的1118daysober挑战的多个写作。",
      "source_markdown": "Insomni'hack teaser 2019 (1118daysober): [writeup 1](https://ctftime.org/writeup/12919), [writeup 2](https://github.com/EmpireCTF/empirectf/blob/master/writeups/2019-01-19-Insomni-Hack-Teaser/README.md#1118daysober)",
      "search_text": "insomni'hack teaser 2019 (1118daysober): , insomni'hack teaser 2019 (1118daysober): ,    practice ctf tasks practice: ctf tasks primary article https://ctftime.org/writeup/12919 writeup ctf  article this resource includes multiple writeups for the 1118daysober challenge from insomni'hack teaser 2019. 该资源包含insomni'hack teaser 2019的1118daysober挑战的多个写作。 # insomni'hack teaser 2019 (1118daysober): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: insomni'hack teaser 2019 (1118daysober): , resource_label: primary resource_type: article resource_url: https://ctftime.org/writeup/12919 parent_primary_url: https://ctftime.org/writeup/12919 source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: insomni'hack teaser 2019 (1118daysober): [writeup 1](https://ctftime.org/writeup/12919), [writeup 2](https://github.com/empirectf/empirectf/blob/master/writeups/2019-01-19-insomni-hack-teaser/readme.md#1118daysober) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "f357296e7bc729f6",
      "item_id": "6d76f44f530e4c22",
      "slug": "2019-practice-ctf-tasks-insomni-hack-teaser-2019-1118daysober-writeup-2-85c574b9",
      "year": 2019,
      "title": "Insomni'hack teaser 2019 (1118daysober): , · writeup 2",
      "item_title": "Insomni'hack teaser 2019 (1118daysober): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup 2",
      "resource_type": "article",
      "resource_url": "https://github.com/EmpireCTF/empirectf/blob/master/writeups/2019-01-19-Insomni-Hack-Teaser/README.md#1118daysober",
      "primary_url": "https://github.com/EmpireCTF/empirectf/blob/master/writeups/2019-01-19-Insomni-Hack-Teaser/README.md#1118daysober",
      "parent_primary_url": "https://ctftime.org/writeup/12919",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2019-practice-ctf-tasks-insomni-hack-teaser-2019-1118daysober-writeup-2-85c574b9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Insomni'hack teaser 2019 (1118daysober): , · writeup 2 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Insomni'hack teaser 2019 (1118daysober): , resource_label: writeup 2 resource_type: article resource_url: https://github.com/EmpireCTF/empirectf/blob/master/writeups/2019-01-19-Insomni-Hack-Teaser/README.md#1118daysober parent_primary_url: https://ctftime.org/writeup/12919 source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Insomni'hack teaser 2019 (1118daysober): [writeup 1](https://ctftime.org/writeup/12919), [writeup 2](https://github.com/EmpireCTF/empirectf/blob/master/writeups/2019-01-19-Insomni-Hack-Teaser/README.md#1118daysober) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_i",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ctftime.org/writeup/12919"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://github.com/EmpireCTF/empirectf/blob/master/writeups/2019-01-19-Insomni-Hack-Teaser/README.md#1118daysober"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ctftime.org/writeup/12919"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://github.com/EmpireCTF/empirectf/blob/master/writeups/2019-01-19-Insomni-Hack-Teaser/README.md#1118daysober"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/EmpireCTF/empirectf/blob/master/writeups/2019-01-19-Insomni-Hack-Teaser/README.md#1118daysober"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "writeup",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "A writeup for the 1118daysober challenge from Insomni'hack teaser 2019.",
      "summary_zh": "Insomni'hack teaser 2019的1118daysober挑战的写作。",
      "source_markdown": "Insomni'hack teaser 2019 (1118daysober): [writeup 1](https://ctftime.org/writeup/12919), [writeup 2](https://github.com/EmpireCTF/empirectf/blob/master/writeups/2019-01-19-Insomni-Hack-Teaser/README.md#1118daysober)",
      "search_text": "insomni'hack teaser 2019 (1118daysober): , · writeup 2 insomni'hack teaser 2019 (1118daysober): ,    practice ctf tasks practice: ctf tasks writeup 2 article https://github.com/empirectf/empirectf/blob/master/writeups/2019-01-19-insomni-hack-teaser/readme.md#1118daysober writeup ctf  article a writeup for the 1118daysober challenge from insomni'hack teaser 2019. insomni'hack teaser 2019的1118daysober挑战的写作。 # insomni'hack teaser 2019 (1118daysober): , · writeup 2 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: insomni'hack teaser 2019 (1118daysober): , resource_label: writeup 2 resource_type: article resource_url: https://github.com/empirectf/empirectf/blob/master/writeups/2019-01-19-insomni-hack-teaser/readme.md#1118daysober parent_primary_url: https://ctftime.org/writeup/12919 source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: insomni'hack teaser 2019 (1118daysober): [writeup 1](https://ctftime.org/writeup/12919), [writeup 2](https://github.com/empirectf/empirectf/blob/master/writeups/2019-01-19-insomni-hack-teaser/readme.md#1118daysober) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_i no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "9a5bf5ed3802f722",
      "item_id": "7632894267442da2",
      "slug": "2018-practice-ctf-tasks-hxp-ctf-2018-green-computing-primary-f9879363",
      "year": 2018,
      "title": "hxp CTF 2018 (Green Computing):",
      "item_title": "hxp CTF 2018 (Green Computing):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://s3.eurecom.fr/nops/2018-12-10-hxp-ctf-2018-green-computing.html",
      "primary_url": "http://s3.eurecom.fr/nops/2018-12-10-hxp-ctf-2018-green-computing.html",
      "parent_primary_url": "http://s3.eurecom.fr/nops/2018-12-10-hxp-ctf-2018-green-computing.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2018-practice-ctf-tasks-hxp-ctf-2018-green-computing-primary-f9879363.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# hxp CTF 2018 (Green Computing): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: hxp CTF 2018 (Green Computing): resource_label: primary resource_type: article resource_url: http://s3.eurecom.fr/nops/2018-12-10-hxp-ctf-2018-green-computing.html parent_primary_url: http://s3.eurecom.fr/nops/2018-12-10-hxp-ctf-2018-green-computing.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hxp CTF 2018 (Green Computing): [writeup](http://s3.eurecom.fr/nops/2018-12-10-hxp-ctf-2018-green-computing.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://s3.eurecom.fr/nops/2018-12-10-hxp-ctf-2018-green-computing.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://s3.eurecom.fr/nops/2018-12-10-hxp-ctf-2018-green-computing.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "writeup",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "A writeup for the Green Computing challenge from hxp CTF 2018.",
      "summary_zh": "hxp CTF 2018的Green Computing挑战的写作。",
      "source_markdown": "hxp CTF 2018 (Green Computing): [writeup](http://s3.eurecom.fr/nops/2018-12-10-hxp-ctf-2018-green-computing.html)",
      "search_text": "hxp ctf 2018 (green computing): hxp ctf 2018 (green computing):    practice ctf tasks practice: ctf tasks primary article http://s3.eurecom.fr/nops/2018-12-10-hxp-ctf-2018-green-computing.html writeup ctf  article a writeup for the green computing challenge from hxp ctf 2018. hxp ctf 2018的green computing挑战的写作。 # hxp ctf 2018 (green computing): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: hxp ctf 2018 (green computing): resource_label: primary resource_type: article resource_url: http://s3.eurecom.fr/nops/2018-12-10-hxp-ctf-2018-green-computing.html parent_primary_url: http://s3.eurecom.fr/nops/2018-12-10-hxp-ctf-2018-green-computing.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: hxp ctf 2018 (green computing): [writeup](http://s3.eurecom.fr/nops/2018-12-10-hxp-ctf-2018-green-computing.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "552570a5702829eb",
      "item_id": "eb2b7e04504f9e62",
      "slug": "2018-practice-ctf-tasks-wctf-2018-cpf-primary-563f1643",
      "year": 2018,
      "title": "WCTF 2018 (cpf):",
      "item_title": "WCTF 2018 (cpf):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/cykorteam/cykor_belluminar_2018/tree/master/cpf",
      "primary_url": "https://github.com/cykorteam/cykor_belluminar_2018/tree/master/cpf",
      "parent_primary_url": "https://github.com/cykorteam/cykor_belluminar_2018/tree/master/cpf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2018-practice-ctf-tasks-wctf-2018-cpf-primary-563f1643.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# WCTF 2018 (cpf): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: WCTF 2018 (cpf): resource_label: primary resource_type: article resource_url: https://github.com/cykorteam/cykor_belluminar_2018/tree/master/cpf parent_primary_url: https://github.com/cykorteam/cykor_belluminar_2018/tree/master/cpf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: WCTF 2018 (cpf): [source, writeup, and exploit](https://github.com/cykorteam/cykor_belluminar_2018/tree/master/cpf) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/cykorteam/cykor_belluminar_2018/tree/master/cpf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/cykorteam/cykor_belluminar_2018/tree/master/cpf"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/cykorteam/cykor_belluminar_2018/tree/master/cpf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "source",
        "writeup",
        "exploit",
        "CTF"
      ],
      "affected_area": "",
      "exploit_stage": "article",
      "summary_en": "This resource includes a source, writeup, and exploit for the cpf challenge from WCTF 2018.",
      "summary_zh": "该资源包含WCTF 2018的cpf挑战的源代码、写作和利用。",
      "source_markdown": "WCTF 2018 (cpf): [source, writeup, and exploit](https://github.com/cykorteam/cykor_belluminar_2018/tree/master/cpf)",
      "search_text": "wctf 2018 (cpf): wctf 2018 (cpf):    practice ctf tasks practice: ctf tasks primary article https://github.com/cykorteam/cykor_belluminar_2018/tree/master/cpf source writeup exploit ctf  article this resource includes a source, writeup, and exploit for the cpf challenge from wctf 2018. 该资源包含wctf 2018的cpf挑战的源代码、写作和利用。 # wctf 2018 (cpf): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: wctf 2018 (cpf): resource_label: primary resource_type: article resource_url: https://github.com/cykorteam/cykor_belluminar_2018/tree/master/cpf parent_primary_url: https://github.com/cykorteam/cykor_belluminar_2018/tree/master/cpf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: wctf 2018 (cpf): [source, writeup, and exploit](https://github.com/cykorteam/cykor_belluminar_2018/tree/master/cpf) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "8a899cb4fbe31a89",
      "item_id": "ea7a8fedaf162287",
      "slug": "2018-practice-ctf-tasks-sect-ctf-2018-gh0st-primary-c7ed1ad2",
      "year": 2018,
      "title": "SECT CTF 2018 (Gh0st):",
      "item_title": "SECT CTF 2018 (Gh0st):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://mslc.ctf.su/wp/sect-ctf-2018-gh0st/",
      "primary_url": "http://mslc.ctf.su/wp/sect-ctf-2018-gh0st/",
      "parent_primary_url": "http://mslc.ctf.su/wp/sect-ctf-2018-gh0st/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2018-practice-ctf-tasks-sect-ctf-2018-gh0st-primary-c7ed1ad2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# SECT CTF 2018 (Gh0st): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: SECT CTF 2018 (Gh0st): resource_label: primary resource_type: article resource_url: http://mslc.ctf.su/wp/sect-ctf-2018-gh0st/ parent_primary_url: http://mslc.ctf.su/wp/sect-ctf-2018-gh0st/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: SECT CTF 2018 (Gh0st): [writeup](http://mslc.ctf.su/wp/sect-ctf-2018-gh0st/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: http://mslc.ctf.su/wp/sect-ctf-2018-gh0st/ fetc",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://mslc.ctf.su/wp/sect-ctf-2018-gh0st/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://mslc.ctf.su/wp/sect-ctf-2018-gh0st/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "challenge"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "SECT CTF 2018 featured a challenge called Gh0st.",
      "summary_zh": "SECT CTF 2018包含一个名为Gh0st的挑战。",
      "source_markdown": "SECT CTF 2018 (Gh0st): [writeup](http://mslc.ctf.su/wp/sect-ctf-2018-gh0st/)",
      "search_text": "sect ctf 2018 (gh0st): sect ctf 2018 (gh0st):    practice ctf tasks practice: ctf tasks primary article http://mslc.ctf.su/wp/sect-ctf-2018-gh0st/ ctf challenge  practice sect ctf 2018 featured a challenge called gh0st. sect ctf 2018包含一个名为gh0st的挑战。 # sect ctf 2018 (gh0st): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: sect ctf 2018 (gh0st): resource_label: primary resource_type: article resource_url: http://mslc.ctf.su/wp/sect-ctf-2018-gh0st/ parent_primary_url: http://mslc.ctf.su/wp/sect-ctf-2018-gh0st/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: sect ctf 2018 (gh0st): [writeup](http://mslc.ctf.su/wp/sect-ctf-2018-gh0st/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: http://mslc.ctf.su/wp/sect-ctf-2018-gh0st/ fetc no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5ad9106781ded1d9",
      "item_id": "864ddc2dc67fa358",
      "slug": "2018-practice-ctf-tasks-twctf-2018-readablekernelmodule-primary-7c9ed984",
      "year": 2018,
      "title": "TWCTF 2018 (ReadableKernelModule):",
      "item_title": "TWCTF 2018 (ReadableKernelModule):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://r3ka.eu/2018/09/twctf-2018-rkm-readablekernelmodule-writeup/",
      "primary_url": "http://r3ka.eu/2018/09/twctf-2018-rkm-readablekernelmodule-writeup/",
      "parent_primary_url": "http://r3ka.eu/2018/09/twctf-2018-rkm-readablekernelmodule-writeup/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2018-practice-ctf-tasks-twctf-2018-readablekernelmodule-primary-7c9ed984.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TWCTF 2018 (ReadableKernelModule): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: TWCTF 2018 (ReadableKernelModule): resource_label: primary resource_type: article resource_url: http://r3ka.eu/2018/09/twctf-2018-rkm-readablekernelmodule-writeup/ parent_primary_url: http://r3ka.eu/2018/09/twctf-2018-rkm-readablekernelmodule-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: TWCTF 2018 (ReadableKernelModule): [writeup](http://r3ka.eu/2018/09/twctf-2018-rkm-readablekernelmodule-writeup/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://r3ka.eu/2018/09/twctf-2018-rkm-readablekernelmodule-writeup/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://r3ka.eu/2018/09/twctf-2018-rkm-readablekernelmodule-writeup/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "challenge"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "TWCTF 2018 included a task known as ReadableKernelModule.",
      "summary_zh": "TWCTF 2018包含一个名为ReadableKernelModule的任务。",
      "source_markdown": "TWCTF 2018 (ReadableKernelModule): [writeup](http://r3ka.eu/2018/09/twctf-2018-rkm-readablekernelmodule-writeup/)",
      "search_text": "twctf 2018 (readablekernelmodule): twctf 2018 (readablekernelmodule):    practice ctf tasks practice: ctf tasks primary article http://r3ka.eu/2018/09/twctf-2018-rkm-readablekernelmodule-writeup/ ctf challenge  practice twctf 2018 included a task known as readablekernelmodule. twctf 2018包含一个名为readablekernelmodule的任务。 # twctf 2018 (readablekernelmodule): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: twctf 2018 (readablekernelmodule): resource_label: primary resource_type: article resource_url: http://r3ka.eu/2018/09/twctf-2018-rkm-readablekernelmodule-writeup/ parent_primary_url: http://r3ka.eu/2018/09/twctf-2018-rkm-readablekernelmodule-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: twctf 2018 (readablekernelmodule): [writeup](http://r3ka.eu/2018/09/twctf-2018-rkm-readablekernelmodule-writeup/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "cf5ffc5cb61c8b50",
      "item_id": "52ef13e5b4861c1d",
      "slug": "2018-practice-ctf-tasks-ncstisc-2018-babydriver-primary-b3a0d638",
      "year": 2018,
      "title": "NCSTISC 2018 (babydriver): ,",
      "item_title": "NCSTISC 2018 (babydriver): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://f0r1st.me/2018/03/28/ROP-in-Linux-Kernel/",
      "primary_url": "http://f0r1st.me/2018/03/28/ROP-in-Linux-Kernel/",
      "parent_primary_url": "http://f0r1st.me/2018/03/28/ROP-in-Linux-Kernel/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2018-practice-ctf-tasks-ncstisc-2018-babydriver-primary-b3a0d638.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# NCSTISC 2018 (babydriver): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: NCSTISC 2018 (babydriver): , resource_label: primary resource_type: article resource_url: http://f0r1st.me/2018/03/28/ROP-in-Linux-Kernel/ parent_primary_url: http://f0r1st.me/2018/03/28/ROP-in-Linux-Kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: NCSTISC 2018 (babydriver): [writeup](http://f0r1st.me/2018/03/28/ROP-in-Linux-Kernel/), [source and exploit](https://github.com/w0lfzhang/kernel_exploit/tree/master/2017-ncstisc-babydriver) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true ha",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://f0r1st.me/2018/03/28/ROP-in-Linux-Kernel/"
        },
        {
          "label": "source and exploit",
          "type": "exploit",
          "url": "https://github.com/w0lfzhang/kernel_exploit/tree/master/2017-ncstisc-babydriver"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://f0r1st.me/2018/03/28/ROP-in-Linux-Kernel/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "source and exploit",
            "type": "exploit",
            "url": "https://github.com/w0lfzhang/kernel_exploit/tree/master/2017-ncstisc-babydriver"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/w0lfzhang/kernel_exploit/tree/master/2017-ncstisc-babydriver"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "NCSTISC 2018 presented a challenge called babydriver with available code and PoC.",
      "summary_zh": "NCSTISC 2018提供了一个名为babydriver的挑战，包含代码和PoC。",
      "source_markdown": "NCSTISC 2018 (babydriver): [writeup](http://f0r1st.me/2018/03/28/ROP-in-Linux-Kernel/), [source and exploit](https://github.com/w0lfzhang/kernel_exploit/tree/master/2017-ncstisc-babydriver)",
      "search_text": "ncstisc 2018 (babydriver): , ncstisc 2018 (babydriver): ,    practice ctf tasks practice: ctf tasks primary article http://f0r1st.me/2018/03/28/rop-in-linux-kernel/ ctf exploit  practice ncstisc 2018 presented a challenge called babydriver with available code and poc. ncstisc 2018提供了一个名为babydriver的挑战，包含代码和poc。 # ncstisc 2018 (babydriver): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: ncstisc 2018 (babydriver): , resource_label: primary resource_type: article resource_url: http://f0r1st.me/2018/03/28/rop-in-linux-kernel/ parent_primary_url: http://f0r1st.me/2018/03/28/rop-in-linux-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: ncstisc 2018 (babydriver): [writeup](http://f0r1st.me/2018/03/28/rop-in-linux-kernel/), [source and exploit](https://github.com/w0lfzhang/kernel_exploit/tree/master/2017-ncstisc-babydriver) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true ha no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "ada38d9be33c72dd",
      "item_id": "52ef13e5b4861c1d",
      "slug": "2018-practice-ctf-tasks-ncstisc-2018-babydriver-source-and-exploit-7ba46608",
      "year": 2018,
      "title": "NCSTISC 2018 (babydriver): , · source and exploit",
      "item_title": "NCSTISC 2018 (babydriver): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "source and exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/w0lfzhang/kernel_exploit/tree/master/2017-ncstisc-babydriver",
      "primary_url": "https://github.com/w0lfzhang/kernel_exploit/tree/master/2017-ncstisc-babydriver",
      "parent_primary_url": "http://f0r1st.me/2018/03/28/ROP-in-Linux-Kernel/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2018-practice-ctf-tasks-ncstisc-2018-babydriver-source-and-exploit-7ba46608.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# NCSTISC 2018 (babydriver): , · source and exploit record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: NCSTISC 2018 (babydriver): , resource_label: source and exploit resource_type: exploit resource_url: https://github.com/w0lfzhang/kernel_exploit/tree/master/2017-ncstisc-babydriver parent_primary_url: http://f0r1st.me/2018/03/28/ROP-in-Linux-Kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: NCSTISC 2018 (babydriver): [writeup](http://f0r1st.me/2018/03/28/ROP-in-Linux-Kernel/), [source and exploit](https://github.com/w0lfzhang/kernel_exploit/tree/master/2017-ncstisc-babydriver) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devi",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://f0r1st.me/2018/03/28/ROP-in-Linux-Kernel/"
        },
        {
          "label": "source and exploit",
          "type": "exploit",
          "url": "https://github.com/w0lfzhang/kernel_exploit/tree/master/2017-ncstisc-babydriver"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://f0r1st.me/2018/03/28/ROP-in-Linux-Kernel/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "source and exploit",
            "type": "exploit",
            "url": "https://github.com/w0lfzhang/kernel_exploit/tree/master/2017-ncstisc-babydriver"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/w0lfzhang/kernel_exploit/tree/master/2017-ncstisc-babydriver"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "Another entry for NCSTISC 2018's babydriver challenge with source and exploit.",
      "summary_zh": "NCSTISC 2018的babydriver挑战的另一个条目，包含源代码和利用。",
      "source_markdown": "NCSTISC 2018 (babydriver): [writeup](http://f0r1st.me/2018/03/28/ROP-in-Linux-Kernel/), [source and exploit](https://github.com/w0lfzhang/kernel_exploit/tree/master/2017-ncstisc-babydriver)",
      "search_text": "ncstisc 2018 (babydriver): , · source and exploit ncstisc 2018 (babydriver): ,    practice ctf tasks practice: ctf tasks source and exploit exploit https://github.com/w0lfzhang/kernel_exploit/tree/master/2017-ncstisc-babydriver ctf exploit  practice another entry for ncstisc 2018's babydriver challenge with source and exploit. ncstisc 2018的babydriver挑战的另一个条目，包含源代码和利用。 # ncstisc 2018 (babydriver): , · source and exploit record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: ncstisc 2018 (babydriver): , resource_label: source and exploit resource_type: exploit resource_url: https://github.com/w0lfzhang/kernel_exploit/tree/master/2017-ncstisc-babydriver parent_primary_url: http://f0r1st.me/2018/03/28/rop-in-linux-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: ncstisc 2018 (babydriver): [writeup](http://f0r1st.me/2018/03/28/rop-in-linux-kernel/), [source and exploit](https://github.com/w0lfzhang/kernel_exploit/tree/master/2017-ncstisc-babydriver) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "e86a18642d0c0667",
      "item_id": "468ee1f2cc64415f",
      "slug": "2018-practice-ctf-tasks-sharif-ctf-2018-kdb-primary-760deaf9",
      "year": 2018,
      "title": "Sharif CTF 2018 (kdb): ,",
      "item_title": "Sharif CTF 2018 (kdb): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://changochen.github.io/2018-02-07-sharif8.html",
      "primary_url": "https://changochen.github.io/2018-02-07-sharif8.html",
      "parent_primary_url": "https://changochen.github.io/2018-02-07-sharif8.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2018-practice-ctf-tasks-sharif-ctf-2018-kdb-primary-760deaf9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Sharif CTF 2018 (kdb): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Sharif CTF 2018 (kdb): , resource_label: primary resource_type: article resource_url: https://changochen.github.io/2018-02-07-sharif8.html parent_primary_url: https://changochen.github.io/2018-02-07-sharif8.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Sharif CTF 2018 (kdb): [writeup](https://changochen.github.io/2018-02-07-sharif8.html), [source and exploit](https://github.com/Changochen/CTF/tree/master/2018/SharifCTF/kdb) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://changochen.github.io/2018-02-07-sharif8.html"
        },
        {
          "label": "source and exploit",
          "type": "exploit",
          "url": "https://github.com/Changochen/CTF/tree/master/2018/SharifCTF/kdb"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://changochen.github.io/2018-02-07-sharif8.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "source and exploit",
            "type": "exploit",
            "url": "https://github.com/Changochen/CTF/tree/master/2018/SharifCTF/kdb"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://changochen.github.io/2018-02-07-sharif8.html",
        "https://github.com/Changochen/CTF/tree/master/2018/SharifCTF/kdb"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "Sharif CTF 2018 featured a challenge named kdb with source and exploit available.",
      "summary_zh": "Sharif CTF 2018包含一个名为kdb的挑战，提供源代码和利用。",
      "source_markdown": "Sharif CTF 2018 (kdb): [writeup](https://changochen.github.io/2018-02-07-sharif8.html), [source and exploit](https://github.com/Changochen/CTF/tree/master/2018/SharifCTF/kdb)",
      "search_text": "sharif ctf 2018 (kdb): , sharif ctf 2018 (kdb): ,    practice ctf tasks practice: ctf tasks primary article https://changochen.github.io/2018-02-07-sharif8.html ctf exploit  practice sharif ctf 2018 featured a challenge named kdb with source and exploit available. sharif ctf 2018包含一个名为kdb的挑战，提供源代码和利用。 # sharif ctf 2018 (kdb): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: sharif ctf 2018 (kdb): , resource_label: primary resource_type: article resource_url: https://changochen.github.io/2018-02-07-sharif8.html parent_primary_url: https://changochen.github.io/2018-02-07-sharif8.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: sharif ctf 2018 (kdb): [writeup](https://changochen.github.io/2018-02-07-sharif8.html), [source and exploit](https://github.com/changochen/ctf/tree/master/2018/sharifctf/kdb) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "74e722d00f692b8b",
      "item_id": "468ee1f2cc64415f",
      "slug": "2018-practice-ctf-tasks-sharif-ctf-2018-kdb-source-and-exploit-29b39062",
      "year": 2018,
      "title": "Sharif CTF 2018 (kdb): , · source and exploit",
      "item_title": "Sharif CTF 2018 (kdb): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "source and exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/Changochen/CTF/tree/master/2018/SharifCTF/kdb",
      "primary_url": "https://github.com/Changochen/CTF/tree/master/2018/SharifCTF/kdb",
      "parent_primary_url": "https://changochen.github.io/2018-02-07-sharif8.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2018-practice-ctf-tasks-sharif-ctf-2018-kdb-source-and-exploit-29b39062.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Sharif CTF 2018 (kdb): , · source and exploit record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Sharif CTF 2018 (kdb): , resource_label: source and exploit resource_type: exploit resource_url: https://github.com/Changochen/CTF/tree/master/2018/SharifCTF/kdb parent_primary_url: https://changochen.github.io/2018-02-07-sharif8.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Sharif CTF 2018 (kdb): [writeup](https://changochen.github.io/2018-02-07-sharif8.html), [source and exploit](https://github.com/Changochen/CTF/tree/master/2018/SharifCTF/kdb) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather ",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://changochen.github.io/2018-02-07-sharif8.html"
        },
        {
          "label": "source and exploit",
          "type": "exploit",
          "url": "https://github.com/Changochen/CTF/tree/master/2018/SharifCTF/kdb"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://changochen.github.io/2018-02-07-sharif8.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "source and exploit",
            "type": "exploit",
            "url": "https://github.com/Changochen/CTF/tree/master/2018/SharifCTF/kdb"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://changochen.github.io/2018-02-07-sharif8.html",
        "https://github.com/Changochen/CTF/tree/master/2018/SharifCTF/kdb"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "Another entry for Sharif CTF 2018's kdb challenge with source and exploit.",
      "summary_zh": "Sharif CTF 2018的kdb挑战的另一个条目，包含源代码和利用。",
      "source_markdown": "Sharif CTF 2018 (kdb): [writeup](https://changochen.github.io/2018-02-07-sharif8.html), [source and exploit](https://github.com/Changochen/CTF/tree/master/2018/SharifCTF/kdb)",
      "search_text": "sharif ctf 2018 (kdb): , · source and exploit sharif ctf 2018 (kdb): ,    practice ctf tasks practice: ctf tasks source and exploit exploit https://github.com/changochen/ctf/tree/master/2018/sharifctf/kdb ctf exploit  practice another entry for sharif ctf 2018's kdb challenge with source and exploit. sharif ctf 2018的kdb挑战的另一个条目，包含源代码和利用。 # sharif ctf 2018 (kdb): , · source and exploit record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: sharif ctf 2018 (kdb): , resource_label: source and exploit resource_type: exploit resource_url: https://github.com/changochen/ctf/tree/master/2018/sharifctf/kdb parent_primary_url: https://changochen.github.io/2018-02-07-sharif8.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: sharif ctf 2018 (kdb): [writeup](https://changochen.github.io/2018-02-07-sharif8.html), [source and exploit](https://github.com/changochen/ctf/tree/master/2018/sharifctf/kdb) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "051ad76f62c731ea",
      "item_id": "d21a57b8aed883e7",
      "slug": "2018-practice-ctf-tasks-n1ctf-2018-primary-2df55d93",
      "year": 2018,
      "title": "N1CTF 2018:",
      "item_title": "N1CTF 2018:",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://r3ka.eu/2018/03/n1ctf-2018-network-card-writeup/",
      "primary_url": "http://r3ka.eu/2018/03/n1ctf-2018-network-card-writeup/",
      "parent_primary_url": "http://r3ka.eu/2018/03/n1ctf-2018-network-card-writeup/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2018-practice-ctf-tasks-n1ctf-2018-primary-2df55d93.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# N1CTF 2018: record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: N1CTF 2018: resource_label: primary resource_type: article resource_url: http://r3ka.eu/2018/03/n1ctf-2018-network-card-writeup/ parent_primary_url: http://r3ka.eu/2018/03/n1ctf-2018-network-card-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: N1CTF 2018: [writeup](http://r3ka.eu/2018/03/n1ctf-2018-network-card-writeup/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: http://r3ka.eu/2018/03/n1ctf-2018-network",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://r3ka.eu/2018/03/n1ctf-2018-network-card-writeup/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://r3ka.eu/2018/03/n1ctf-2018-network-card-writeup/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "challenge"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "N1CTF 2018 included a writeup for a network card challenge.",
      "summary_zh": "N1CTF 2018包含一个网络卡挑战的写作。",
      "source_markdown": "N1CTF 2018: [writeup](http://r3ka.eu/2018/03/n1ctf-2018-network-card-writeup/)",
      "search_text": "n1ctf 2018: n1ctf 2018:    practice ctf tasks practice: ctf tasks primary article http://r3ka.eu/2018/03/n1ctf-2018-network-card-writeup/ ctf challenge  practice n1ctf 2018 included a writeup for a network card challenge. n1ctf 2018包含一个网络卡挑战的写作。 # n1ctf 2018: record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: n1ctf 2018: resource_label: primary resource_type: article resource_url: http://r3ka.eu/2018/03/n1ctf-2018-network-card-writeup/ parent_primary_url: http://r3ka.eu/2018/03/n1ctf-2018-network-card-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: n1ctf 2018: [writeup](http://r3ka.eu/2018/03/n1ctf-2018-network-card-writeup/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: http://r3ka.eu/2018/03/n1ctf-2018-network no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "45a77b1175183cfe",
      "item_id": "51db57d768a43438",
      "slug": "undated-practice-ctf-tasks-blaze2018-blazeme-primary-5466e1d4",
      "year": null,
      "title": "Blaze2018 (blazeme): ,",
      "item_title": "Blaze2018 (blazeme): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/vakzz/ctfs/tree/master/Blaze2018/blazeme",
      "primary_url": "https://github.com/vakzz/ctfs/tree/master/Blaze2018/blazeme",
      "parent_primary_url": "https://github.com/vakzz/ctfs/tree/master/Blaze2018/blazeme",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/undated-practice-ctf-tasks-blaze2018-blazeme-primary-5466e1d4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Blaze2018 (blazeme): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Blaze2018 (blazeme): , resource_label: primary resource_type: exploit resource_url: https://github.com/vakzz/ctfs/tree/master/Blaze2018/blazeme parent_primary_url: https://github.com/vakzz/ctfs/tree/master/Blaze2018/blazeme source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Blaze2018 (blazeme): [source and exploit 1](https://github.com/vakzz/ctfs/tree/master/Blaze2018/blazeme), [soure and exploit 2](https://github.com/wangray/ctf_dump/tree/master/Blaze2018/blazeme) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. ha",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/vakzz/ctfs/tree/master/Blaze2018/blazeme"
        },
        {
          "label": "soure and exploit 2",
          "type": "exploit",
          "url": "https://github.com/wangray/ctf_dump/tree/master/Blaze2018/blazeme"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/vakzz/ctfs/tree/master/Blaze2018/blazeme"
          },
          {
            "label": "soure and exploit 2",
            "type": "exploit",
            "url": "https://github.com/wangray/ctf_dump/tree/master/Blaze2018/blazeme"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/vakzz/ctfs/tree/master/Blaze2018/blazeme",
        "https://github.com/wangray/ctf_dump/tree/master/Blaze2018/blazeme"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "Blaze2018 featured a challenge called blazeme with available source and exploit.",
      "summary_zh": "Blaze2018包含一个名为blazeme的挑战，提供源代码和利用。",
      "source_markdown": "Blaze2018 (blazeme): [source and exploit 1](https://github.com/vakzz/ctfs/tree/master/Blaze2018/blazeme), [soure and exploit 2](https://github.com/wangray/ctf_dump/tree/master/Blaze2018/blazeme)",
      "search_text": "blaze2018 (blazeme): , blaze2018 (blazeme): ,    practice ctf tasks practice: ctf tasks primary exploit https://github.com/vakzz/ctfs/tree/master/blaze2018/blazeme ctf exploit  practice blaze2018 featured a challenge called blazeme with available source and exploit. blaze2018包含一个名为blazeme的挑战，提供源代码和利用。 # blaze2018 (blazeme): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: blaze2018 (blazeme): , resource_label: primary resource_type: exploit resource_url: https://github.com/vakzz/ctfs/tree/master/blaze2018/blazeme parent_primary_url: https://github.com/vakzz/ctfs/tree/master/blaze2018/blazeme source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: blaze2018 (blazeme): [source and exploit 1](https://github.com/vakzz/ctfs/tree/master/blaze2018/blazeme), [soure and exploit 2](https://github.com/wangray/ctf_dump/tree/master/blaze2018/blazeme) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. ha no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "222c00c0c2fcb865",
      "item_id": "51db57d768a43438",
      "slug": "undated-practice-ctf-tasks-blaze2018-blazeme-soure-and-exploit-2-33f7feea",
      "year": null,
      "title": "Blaze2018 (blazeme): , · soure and exploit 2",
      "item_title": "Blaze2018 (blazeme): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "soure and exploit 2",
      "resource_type": "exploit",
      "resource_url": "https://github.com/wangray/ctf_dump/tree/master/Blaze2018/blazeme",
      "primary_url": "https://github.com/wangray/ctf_dump/tree/master/Blaze2018/blazeme",
      "parent_primary_url": "https://github.com/vakzz/ctfs/tree/master/Blaze2018/blazeme",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/undated-practice-ctf-tasks-blaze2018-blazeme-soure-and-exploit-2-33f7feea.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Blaze2018 (blazeme): , · soure and exploit 2 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Blaze2018 (blazeme): , resource_label: soure and exploit 2 resource_type: exploit resource_url: https://github.com/wangray/ctf_dump/tree/master/Blaze2018/blazeme parent_primary_url: https://github.com/vakzz/ctfs/tree/master/Blaze2018/blazeme source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Blaze2018 (blazeme): [source and exploit 1](https://github.com/vakzz/ctfs/tree/master/Blaze2018/blazeme), [soure and exploit 2](https://github.com/wangray/ctf_dump/tree/master/Blaze2018/blazeme) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use ",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/vakzz/ctfs/tree/master/Blaze2018/blazeme"
        },
        {
          "label": "soure and exploit 2",
          "type": "exploit",
          "url": "https://github.com/wangray/ctf_dump/tree/master/Blaze2018/blazeme"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/vakzz/ctfs/tree/master/Blaze2018/blazeme"
          },
          {
            "label": "soure and exploit 2",
            "type": "exploit",
            "url": "https://github.com/wangray/ctf_dump/tree/master/Blaze2018/blazeme"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/vakzz/ctfs/tree/master/Blaze2018/blazeme",
        "https://github.com/wangray/ctf_dump/tree/master/Blaze2018/blazeme"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "Another entry for Blaze2018's blazeme challenge with source and exploit.",
      "summary_zh": "Blaze2018的blazeme挑战的另一个条目，包含源代码和利用。",
      "source_markdown": "Blaze2018 (blazeme): [source and exploit 1](https://github.com/vakzz/ctfs/tree/master/Blaze2018/blazeme), [soure and exploit 2](https://github.com/wangray/ctf_dump/tree/master/Blaze2018/blazeme)",
      "search_text": "blaze2018 (blazeme): , · soure and exploit 2 blaze2018 (blazeme): ,    practice ctf tasks practice: ctf tasks soure and exploit 2 exploit https://github.com/wangray/ctf_dump/tree/master/blaze2018/blazeme ctf exploit  practice another entry for blaze2018's blazeme challenge with source and exploit. blaze2018的blazeme挑战的另一个条目，包含源代码和利用。 # blaze2018 (blazeme): , · soure and exploit 2 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: blaze2018 (blazeme): , resource_label: soure and exploit 2 resource_type: exploit resource_url: https://github.com/wangray/ctf_dump/tree/master/blaze2018/blazeme parent_primary_url: https://github.com/vakzz/ctfs/tree/master/blaze2018/blazeme source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: blaze2018 (blazeme): [source and exploit 1](https://github.com/vakzz/ctfs/tree/master/blaze2018/blazeme), [soure and exploit 2](https://github.com/wangray/ctf_dump/tree/master/blaze2018/blazeme) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "d610cd6e70117a6f",
      "item_id": "9fc6cbd1a0ab9b98",
      "slug": "2018-practice-ctf-tasks-qwb2018-solid-core-primary-8d24c695",
      "year": 2018,
      "title": "QWB2018 (solid_core): , , ,",
      "item_title": "QWB2018 (solid_core): , , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/",
      "primary_url": "http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/",
      "parent_primary_url": "http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2018-practice-ctf-tasks-qwb2018-solid-core-primary-8d24c695.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# QWB2018 (solid_core): , , , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: QWB2018 (solid_core): , , , resource_label: primary resource_type: article resource_url: http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/ parent_primary_url: http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: QWB2018 (solid_core): [writeup](http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/), [exploit 1](https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core), [exploit 2](https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core), [exploit 3](https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c) cves: none android_impact_status: no android_impact_reason: Not enough evidence that thi",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/"
        },
        {
          "label": "exploit 1",
          "type": "exploit",
          "url": "https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core"
        },
        {
          "label": "exploit 2",
          "type": "exploit",
          "url": "https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core"
        },
        {
          "label": "exploit 3",
          "type": "exploit",
          "url": "https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit 1",
            "type": "exploit",
            "url": "https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core"
          },
          {
            "label": "exploit 2",
            "type": "exploit",
            "url": "https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core"
          },
          {
            "label": "exploit 3",
            "type": "exploit",
            "url": "https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core",
        "https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core",
        "https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "QWB2018 presented a challenge called solid_core with multiple exploits available.",
      "summary_zh": "QWB2018提供了一个名为solid_core的挑战，包含多个利用。",
      "source_markdown": "QWB2018 (solid_core): [writeup](http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/), [exploit 1](https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core), [exploit 2](https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core), [exploit 3](https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c)",
      "search_text": "qwb2018 (solid_core): , , , qwb2018 (solid_core): , , ,    practice ctf tasks practice: ctf tasks primary article http://f0r1st.me/2018/04/02/qwb2018-solid-core-write-up/ ctf exploit  practice qwb2018 presented a challenge called solid_core with multiple exploits available. qwb2018提供了一个名为solid_core的挑战，包含多个利用。 # qwb2018 (solid_core): , , , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: qwb2018 (solid_core): , , , resource_label: primary resource_type: article resource_url: http://f0r1st.me/2018/04/02/qwb2018-solid-core-write-up/ parent_primary_url: http://f0r1st.me/2018/04/02/qwb2018-solid-core-write-up/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: qwb2018 (solid_core): [writeup](http://f0r1st.me/2018/04/02/qwb2018-solid-core-write-up/), [exploit 1](https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core), [exploit 2](https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core), [exploit 3](https://github.com/o0xmuhe/pwnablelog/blob/master/ctfwp/qwb2018/core/exp.c) cves: none android_impact_status: no android_impact_reason: not enough evidence that thi no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "6029e17cf0250514",
      "item_id": "9fc6cbd1a0ab9b98",
      "slug": "2018-practice-ctf-tasks-qwb2018-solid-core-exploit-1-95565c54",
      "year": 2018,
      "title": "QWB2018 (solid_core): , , , · exploit 1",
      "item_title": "QWB2018 (solid_core): , , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "exploit 1",
      "resource_type": "exploit",
      "resource_url": "https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core",
      "primary_url": "https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core",
      "parent_primary_url": "http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2018-practice-ctf-tasks-qwb2018-solid-core-exploit-1-95565c54.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# QWB2018 (solid_core): , , , · exploit 1 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: QWB2018 (solid_core): , , , resource_label: exploit 1 resource_type: exploit resource_url: https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core parent_primary_url: http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: QWB2018 (solid_core): [writeup](http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/), [exploit 1](https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core), [exploit 2](https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core), [exploit 3](https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c) cves: none android_impact_status: no android_impact_reason: N",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/"
        },
        {
          "label": "exploit 1",
          "type": "exploit",
          "url": "https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core"
        },
        {
          "label": "exploit 2",
          "type": "exploit",
          "url": "https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core"
        },
        {
          "label": "exploit 3",
          "type": "exploit",
          "url": "https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit 1",
            "type": "exploit",
            "url": "https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core"
          },
          {
            "label": "exploit 2",
            "type": "exploit",
            "url": "https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core"
          },
          {
            "label": "exploit 3",
            "type": "exploit",
            "url": "https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core",
        "https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core",
        "https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "Another entry for QWB2018's solid_core challenge with an available exploit.",
      "summary_zh": "QWB2018的solid_core挑战的另一个条目，包含一个可用的利用。",
      "source_markdown": "QWB2018 (solid_core): [writeup](http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/), [exploit 1](https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core), [exploit 2](https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core), [exploit 3](https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c)",
      "search_text": "qwb2018 (solid_core): , , , · exploit 1 qwb2018 (solid_core): , , ,    practice ctf tasks practice: ctf tasks exploit 1 exploit https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core ctf exploit  practice another entry for qwb2018's solid_core challenge with an available exploit. qwb2018的solid_core挑战的另一个条目，包含一个可用的利用。 # qwb2018 (solid_core): , , , · exploit 1 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: qwb2018 (solid_core): , , , resource_label: exploit 1 resource_type: exploit resource_url: https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core parent_primary_url: http://f0r1st.me/2018/04/02/qwb2018-solid-core-write-up/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: qwb2018 (solid_core): [writeup](http://f0r1st.me/2018/04/02/qwb2018-solid-core-write-up/), [exploit 1](https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core), [exploit 2](https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core), [exploit 3](https://github.com/o0xmuhe/pwnablelog/blob/master/ctfwp/qwb2018/core/exp.c) cves: none android_impact_status: no android_impact_reason: n no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "403ff65917cd260e",
      "item_id": "9fc6cbd1a0ab9b98",
      "slug": "2018-practice-ctf-tasks-qwb2018-solid-core-exploit-2-15bb20d7",
      "year": 2018,
      "title": "QWB2018 (solid_core): , , , · exploit 2",
      "item_title": "QWB2018 (solid_core): , , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "exploit 2",
      "resource_type": "exploit",
      "resource_url": "https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core",
      "primary_url": "https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core",
      "parent_primary_url": "http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2018-practice-ctf-tasks-qwb2018-solid-core-exploit-2-15bb20d7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# QWB2018 (solid_core): , , , · exploit 2 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: QWB2018 (solid_core): , , , resource_label: exploit 2 resource_type: exploit resource_url: https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core parent_primary_url: http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: QWB2018 (solid_core): [writeup](http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/), [exploit 1](https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core), [exploit 2](https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core), [exploit 3](https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c) cves: none android_impact_status: no android_impact_reason: Not ",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/"
        },
        {
          "label": "exploit 1",
          "type": "exploit",
          "url": "https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core"
        },
        {
          "label": "exploit 2",
          "type": "exploit",
          "url": "https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core"
        },
        {
          "label": "exploit 3",
          "type": "exploit",
          "url": "https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit 1",
            "type": "exploit",
            "url": "https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core"
          },
          {
            "label": "exploit 2",
            "type": "exploit",
            "url": "https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core"
          },
          {
            "label": "exploit 3",
            "type": "exploit",
            "url": "https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core",
        "https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core",
        "https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "Yet another entry for QWB2018's solid_core challenge with an available exploit.",
      "summary_zh": "QWB2018的solid_core挑战的又一个条目，包含一个可用的利用。",
      "source_markdown": "QWB2018 (solid_core): [writeup](http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/), [exploit 1](https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core), [exploit 2](https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core), [exploit 3](https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c)",
      "search_text": "qwb2018 (solid_core): , , , · exploit 2 qwb2018 (solid_core): , , ,    practice ctf tasks practice: ctf tasks exploit 2 exploit https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core ctf exploit  practice yet another entry for qwb2018's solid_core challenge with an available exploit. qwb2018的solid_core挑战的又一个条目，包含一个可用的利用。 # qwb2018 (solid_core): , , , · exploit 2 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: qwb2018 (solid_core): , , , resource_label: exploit 2 resource_type: exploit resource_url: https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core parent_primary_url: http://f0r1st.me/2018/04/02/qwb2018-solid-core-write-up/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: qwb2018 (solid_core): [writeup](http://f0r1st.me/2018/04/02/qwb2018-solid-core-write-up/), [exploit 1](https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core), [exploit 2](https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core), [exploit 3](https://github.com/o0xmuhe/pwnablelog/blob/master/ctfwp/qwb2018/core/exp.c) cves: none android_impact_status: no android_impact_reason: not  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "bb042844e50e81bc",
      "item_id": "9fc6cbd1a0ab9b98",
      "slug": "2018-practice-ctf-tasks-qwb2018-solid-core-exploit-3-9746bbe7",
      "year": 2018,
      "title": "QWB2018 (solid_core): , , , · exploit 3",
      "item_title": "QWB2018 (solid_core): , , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "exploit 3",
      "resource_type": "exploit",
      "resource_url": "https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c",
      "primary_url": "https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c",
      "parent_primary_url": "http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2018-practice-ctf-tasks-qwb2018-solid-core-exploit-3-9746bbe7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# QWB2018 (solid_core): , , , · exploit 3 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: QWB2018 (solid_core): , , , resource_label: exploit 3 resource_type: exploit resource_url: https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c parent_primary_url: http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: QWB2018 (solid_core): [writeup](http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/), [exploit 1](https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core), [exploit 2](https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core), [exploit 3](https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c) cves: none android_impact_status: no android_impact_reas",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/"
        },
        {
          "label": "exploit 1",
          "type": "exploit",
          "url": "https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core"
        },
        {
          "label": "exploit 2",
          "type": "exploit",
          "url": "https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core"
        },
        {
          "label": "exploit 3",
          "type": "exploit",
          "url": "https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit 1",
            "type": "exploit",
            "url": "https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core"
          },
          {
            "label": "exploit 2",
            "type": "exploit",
            "url": "https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core"
          },
          {
            "label": "exploit 3",
            "type": "exploit",
            "url": "https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core",
        "https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core",
        "https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "A final entry for QWB2018's solid_core challenge with an available exploit.",
      "summary_zh": "QWB2018的solid_core挑战的最后一个条目，包含一个可用的利用。",
      "source_markdown": "QWB2018 (solid_core): [writeup](http://f0r1st.me/2018/04/02/QWB2018-solid-core-Write-Up/), [exploit 1](https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core), [exploit 2](https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core), [exploit 3](https://github.com/o0xmuhe/PwnableLog/blob/master/CTFWP/qwb2018/core/exp.c)",
      "search_text": "qwb2018 (solid_core): , , , · exploit 3 qwb2018 (solid_core): , , ,    practice ctf tasks practice: ctf tasks exploit 3 exploit https://github.com/o0xmuhe/pwnablelog/blob/master/ctfwp/qwb2018/core/exp.c ctf exploit  practice a final entry for qwb2018's solid_core challenge with an available exploit. qwb2018的solid_core挑战的最后一个条目，包含一个可用的利用。 # qwb2018 (solid_core): , , , · exploit 3 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: qwb2018 (solid_core): , , , resource_label: exploit 3 resource_type: exploit resource_url: https://github.com/o0xmuhe/pwnablelog/blob/master/ctfwp/qwb2018/core/exp.c parent_primary_url: http://f0r1st.me/2018/04/02/qwb2018-solid-core-write-up/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: qwb2018 (solid_core): [writeup](http://f0r1st.me/2018/04/02/qwb2018-solid-core-write-up/), [exploit 1](https://github.com/w0lfzhang/kernel_exploit/tree/master/2018-qwb-core), [exploit 2](https://github.com/sixstars/ctf/tree/master/2018/qiangwangbei/core), [exploit 3](https://github.com/o0xmuhe/pwnablelog/blob/master/ctfwp/qwb2018/core/exp.c) cves: none android_impact_status: no android_impact_reas no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "478624c6065bb6da",
      "item_id": "35a118113647b59c",
      "slug": "2018-practice-ctf-tasks-0ctf2018-primary-6f3b7444",
      "year": 2018,
      "title": "0ctf2018: ,",
      "item_title": "0ctf2018: ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/",
      "primary_url": "http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/",
      "parent_primary_url": "http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2018-practice-ctf-tasks-0ctf2018-primary-6f3b7444.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 0ctf2018: , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: 0ctf2018: , resource_label: primary resource_type: article resource_url: http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/ parent_primary_url: http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 0ctf2018: [writeup 1](http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/), [writeup 2](http://ddaa.tw/0ctf_pwnable_478_zer0fs.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: -",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "http://ddaa.tw/0ctf_pwnable_478_zer0fs.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "http://ddaa.tw/0ctf_pwnable_478_zer0fs.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "challenge"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "0ctf2018 included a writeup for a challenge related to zerofs.",
      "summary_zh": "0ctf2018包含一个与zerofs相关的挑战的写作。",
      "source_markdown": "0ctf2018: [writeup 1](http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/), [writeup 2](http://ddaa.tw/0ctf_pwnable_478_zer0fs.html)",
      "search_text": "0ctf2018: , 0ctf2018: ,    practice ctf tasks practice: ctf tasks primary article http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/ ctf challenge  practice 0ctf2018 included a writeup for a challenge related to zerofs. 0ctf2018包含一个与zerofs相关的挑战的写作。 # 0ctf2018: , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: 0ctf2018: , resource_label: primary resource_type: article resource_url: http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/ parent_primary_url: http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 0ctf2018: [writeup 1](http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/), [writeup 2](http://ddaa.tw/0ctf_pwnable_478_zer0fs.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "23e1faa971efe41a",
      "item_id": "35a118113647b59c",
      "slug": "2018-practice-ctf-tasks-0ctf2018-writeup-2-f9e89665",
      "year": 2018,
      "title": "0ctf2018: , · writeup 2",
      "item_title": "0ctf2018: ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup 2",
      "resource_type": "article",
      "resource_url": "http://ddaa.tw/0ctf_pwnable_478_zer0fs.html",
      "primary_url": "http://ddaa.tw/0ctf_pwnable_478_zer0fs.html",
      "parent_primary_url": "http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2018-practice-ctf-tasks-0ctf2018-writeup-2-f9e89665.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 0ctf2018: , · writeup 2 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: 0ctf2018: , resource_label: writeup 2 resource_type: article resource_url: http://ddaa.tw/0ctf_pwnable_478_zer0fs.html parent_primary_url: http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 0ctf2018: [writeup 1](http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/), [writeup 2](http://ddaa.tw/0ctf_pwnable_478_zer0fs.html) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "http://ddaa.tw/0ctf_pwnable_478_zer0fs.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "http://ddaa.tw/0ctf_pwnable_478_zer0fs.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "challenge"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "Another entry for 0ctf2018's zerofs challenge with a second writeup.",
      "summary_zh": "0ctf2018的zerofs挑战的另一个条目，包含第二个写作。",
      "source_markdown": "0ctf2018: [writeup 1](http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/), [writeup 2](http://ddaa.tw/0ctf_pwnable_478_zer0fs.html)",
      "search_text": "0ctf2018: , · writeup 2 0ctf2018: ,    practice ctf tasks practice: ctf tasks writeup 2 article http://ddaa.tw/0ctf_pwnable_478_zer0fs.html ctf challenge  practice another entry for 0ctf2018's zerofs challenge with a second writeup. 0ctf2018的zerofs挑战的另一个条目，包含第二个写作。 # 0ctf2018: , · writeup 2 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: 0ctf2018: , resource_label: writeup 2 resource_type: article resource_url: http://ddaa.tw/0ctf_pwnable_478_zer0fs.html parent_primary_url: http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 0ctf2018: [writeup 1](http://blog.eadom.net/writeups/0ctf-2018-zerofs-writeup/), [writeup 2](http://ddaa.tw/0ctf_pwnable_478_zer0fs.html) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4d9ea778852d439f",
      "item_id": "338ace91028b8634",
      "slug": "2017-practice-ctf-tasks-tctf-2017-cred-jar-primary-e5ccbb48",
      "year": 2017,
      "title": "TCTF 2017 (cred_jar):",
      "item_title": "TCTF 2017 (cred_jar):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://ww9210.cn/2017/06/08/tctf-2017-final-cred_jar-linux-kernel-driver-pwn-write-up/",
      "primary_url": "http://ww9210.cn/2017/06/08/tctf-2017-final-cred_jar-linux-kernel-driver-pwn-write-up/",
      "parent_primary_url": "http://ww9210.cn/2017/06/08/tctf-2017-final-cred_jar-linux-kernel-driver-pwn-write-up/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2017-practice-ctf-tasks-tctf-2017-cred-jar-primary-e5ccbb48.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# TCTF 2017 (cred_jar): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: TCTF 2017 (cred_jar): resource_label: primary resource_type: article resource_url: http://ww9210.cn/2017/06/08/tctf-2017-final-cred_jar-linux-kernel-driver-pwn-write-up/ parent_primary_url: http://ww9210.cn/2017/06/08/tctf-2017-final-cred_jar-linux-kernel-driver-pwn-write-up/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: TCTF 2017 (cred_jar): [writeup](http://ww9210.cn/2017/06/08/tctf-2017-final-cred_jar-linux-kernel-driver-pwn-write-up/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://ww9210.cn/2017/06/08/tctf-2017-final-cred_jar-linux-kernel-driver-pwn-write-up/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://ww9210.cn/2017/06/08/tctf-2017-final-cred_jar-linux-kernel-driver-pwn-write-up/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "challenge"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "TCTF 2017 featured a challenge called cred_jar with a detailed writeup.",
      "summary_zh": "TCTF 2017包含一个名为cred_jar的挑战，附有详细的写作。",
      "source_markdown": "TCTF 2017 (cred_jar): [writeup](http://ww9210.cn/2017/06/08/tctf-2017-final-cred_jar-linux-kernel-driver-pwn-write-up/)",
      "search_text": "tctf 2017 (cred_jar): tctf 2017 (cred_jar):    practice ctf tasks practice: ctf tasks primary article http://ww9210.cn/2017/06/08/tctf-2017-final-cred_jar-linux-kernel-driver-pwn-write-up/ ctf challenge  practice tctf 2017 featured a challenge called cred_jar with a detailed writeup. tctf 2017包含一个名为cred_jar的挑战，附有详细的写作。 # tctf 2017 (cred_jar): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: tctf 2017 (cred_jar): resource_label: primary resource_type: article resource_url: http://ww9210.cn/2017/06/08/tctf-2017-final-cred_jar-linux-kernel-driver-pwn-write-up/ parent_primary_url: http://ww9210.cn/2017/06/08/tctf-2017-final-cred_jar-linux-kernel-driver-pwn-write-up/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: tctf 2017 (cred_jar): [writeup](http://ww9210.cn/2017/06/08/tctf-2017-final-cred_jar-linux-kernel-driver-pwn-write-up/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc:  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d905344f31c1bd71",
      "item_id": "b0cc3c95c47c8f29",
      "slug": "2017-practice-ctf-tasks-0ctf2017-primary-3c0d630f",
      "year": 2017,
      "title": "0ctf2017: ,",
      "item_title": "0ctf2017: ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/lovelydream/0ctf2017_kernel_pwn",
      "primary_url": "https://github.com/lovelydream/0ctf2017_kernel_pwn",
      "parent_primary_url": "https://github.com/lovelydream/0ctf2017_kernel_pwn",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2017-practice-ctf-tasks-0ctf2017-primary-3c0d630f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 0ctf2017: , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: 0ctf2017: , resource_label: primary resource_type: exploit resource_url: https://github.com/lovelydream/0ctf2017_kernel_pwn parent_primary_url: https://github.com/lovelydream/0ctf2017_kernel_pwn source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 0ctf2017: [source and exploit 1](https://github.com/lovelydream/0ctf2017_kernel_pwn), [source and exploit 2](https://github.com/yifengyou/CTF/tree/master/2017/0ctf/pwn/knote) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls:",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/lovelydream/0ctf2017_kernel_pwn"
        },
        {
          "label": "source and exploit 2",
          "type": "exploit",
          "url": "https://github.com/yifengyou/CTF/tree/master/2017/0ctf/pwn/knote"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/lovelydream/0ctf2017_kernel_pwn"
          },
          {
            "label": "source and exploit 2",
            "type": "exploit",
            "url": "https://github.com/yifengyou/CTF/tree/master/2017/0ctf/pwn/knote"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/lovelydream/0ctf2017_kernel_pwn",
        "https://github.com/yifengyou/CTF/tree/master/2017/0ctf/pwn/knote"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "0ctf2017 included a challenge with available source and exploit.",
      "summary_zh": "0ctf2017包含一个可用源代码和利用的挑战。",
      "source_markdown": "0ctf2017: [source and exploit 1](https://github.com/lovelydream/0ctf2017_kernel_pwn), [source and exploit 2](https://github.com/yifengyou/CTF/tree/master/2017/0ctf/pwn/knote)",
      "search_text": "0ctf2017: , 0ctf2017: ,    practice ctf tasks practice: ctf tasks primary exploit https://github.com/lovelydream/0ctf2017_kernel_pwn ctf exploit  practice 0ctf2017 included a challenge with available source and exploit. 0ctf2017包含一个可用源代码和利用的挑战。 # 0ctf2017: , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: 0ctf2017: , resource_label: primary resource_type: exploit resource_url: https://github.com/lovelydream/0ctf2017_kernel_pwn parent_primary_url: https://github.com/lovelydream/0ctf2017_kernel_pwn source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 0ctf2017: [source and exploit 1](https://github.com/lovelydream/0ctf2017_kernel_pwn), [source and exploit 2](https://github.com/yifengyou/ctf/tree/master/2017/0ctf/pwn/knote) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "66183cc165efd395",
      "item_id": "b0cc3c95c47c8f29",
      "slug": "2017-practice-ctf-tasks-0ctf2017-source-and-exploit-2-4636972c",
      "year": 2017,
      "title": "0ctf2017: , · source and exploit 2",
      "item_title": "0ctf2017: ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "source and exploit 2",
      "resource_type": "exploit",
      "resource_url": "https://github.com/yifengyou/CTF/tree/master/2017/0ctf/pwn/knote",
      "primary_url": "https://github.com/yifengyou/CTF/tree/master/2017/0ctf/pwn/knote",
      "parent_primary_url": "https://github.com/lovelydream/0ctf2017_kernel_pwn",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2017-practice-ctf-tasks-0ctf2017-source-and-exploit-2-4636972c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 0ctf2017: , · source and exploit 2 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: 0ctf2017: , resource_label: source and exploit 2 resource_type: exploit resource_url: https://github.com/yifengyou/CTF/tree/master/2017/0ctf/pwn/knote parent_primary_url: https://github.com/lovelydream/0ctf2017_kernel_pwn source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 0ctf2017: [source and exploit 1](https://github.com/lovelydream/0ctf2017_kernel_pwn), [source and exploit 2](https://github.com/yifengyou/CTF/tree/master/2017/0ctf/pwn/knote) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: tr",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/lovelydream/0ctf2017_kernel_pwn"
        },
        {
          "label": "source and exploit 2",
          "type": "exploit",
          "url": "https://github.com/yifengyou/CTF/tree/master/2017/0ctf/pwn/knote"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/lovelydream/0ctf2017_kernel_pwn"
          },
          {
            "label": "source and exploit 2",
            "type": "exploit",
            "url": "https://github.com/yifengyou/CTF/tree/master/2017/0ctf/pwn/knote"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/lovelydream/0ctf2017_kernel_pwn",
        "https://github.com/yifengyou/CTF/tree/master/2017/0ctf/pwn/knote"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "Another entry for 0ctf2017's challenge with a second source and exploit.",
      "summary_zh": "0ctf2017的挑战的另一个条目，包含第二个源代码和利用。",
      "source_markdown": "0ctf2017: [source and exploit 1](https://github.com/lovelydream/0ctf2017_kernel_pwn), [source and exploit 2](https://github.com/yifengyou/CTF/tree/master/2017/0ctf/pwn/knote)",
      "search_text": "0ctf2017: , · source and exploit 2 0ctf2017: ,    practice ctf tasks practice: ctf tasks source and exploit 2 exploit https://github.com/yifengyou/ctf/tree/master/2017/0ctf/pwn/knote ctf exploit  practice another entry for 0ctf2017's challenge with a second source and exploit. 0ctf2017的挑战的另一个条目，包含第二个源代码和利用。 # 0ctf2017: , · source and exploit 2 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: 0ctf2017: , resource_label: source and exploit 2 resource_type: exploit resource_url: https://github.com/yifengyou/ctf/tree/master/2017/0ctf/pwn/knote parent_primary_url: https://github.com/lovelydream/0ctf2017_kernel_pwn source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 0ctf2017: [source and exploit 1](https://github.com/lovelydream/0ctf2017_kernel_pwn), [source and exploit 2](https://github.com/yifengyou/ctf/tree/master/2017/0ctf/pwn/knote) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: tr no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "c2395dfdd9eb96d6",
      "item_id": "354cc694081aa5ad",
      "slug": "undated-practice-ctf-tasks-0ctf2016-primary-39714e8e",
      "year": null,
      "title": "0ctf2016: ,",
      "item_title": "0ctf2016: ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://dragonsector.pl/docs/0ctf2016_writeups.pdf",
      "primary_url": "http://dragonsector.pl/docs/0ctf2016_writeups.pdf",
      "parent_primary_url": "http://dragonsector.pl/docs/0ctf2016_writeups.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/undated-practice-ctf-tasks-0ctf2016-primary-39714e8e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 0ctf2016: , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: 0ctf2016: , resource_label: primary resource_type: article resource_url: http://dragonsector.pl/docs/0ctf2016_writeups.pdf parent_primary_url: http://dragonsector.pl/docs/0ctf2016_writeups.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 0ctf2016: [writeup](http://dragonsector.pl/docs/0ctf2016_writeups.pdf), [exploit](https://gist.github.com/anonymous/83f96600c5ae851940d6) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://gist.github.com/anonymous/83f9",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://dragonsector.pl/docs/0ctf2016_writeups.pdf"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://gist.github.com/anonymous/83f96600c5ae851940d6"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://dragonsector.pl/docs/0ctf2016_writeups.pdf"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://gist.github.com/anonymous/83f96600c5ae851940d6"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://gist.github.com/anonymous/83f96600c5ae851940d6"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "0ctf2016 featured a challenge with a writeup and an exploit available.",
      "summary_zh": "0ctf2016包含一个挑战，附有写作和可用的利用。",
      "source_markdown": "0ctf2016: [writeup](http://dragonsector.pl/docs/0ctf2016_writeups.pdf), [exploit](https://gist.github.com/anonymous/83f96600c5ae851940d6)",
      "search_text": "0ctf2016: , 0ctf2016: ,    practice ctf tasks practice: ctf tasks primary article http://dragonsector.pl/docs/0ctf2016_writeups.pdf ctf exploit  practice 0ctf2016 featured a challenge with a writeup and an exploit available. 0ctf2016包含一个挑战，附有写作和可用的利用。 # 0ctf2016: , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: 0ctf2016: , resource_label: primary resource_type: article resource_url: http://dragonsector.pl/docs/0ctf2016_writeups.pdf parent_primary_url: http://dragonsector.pl/docs/0ctf2016_writeups.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 0ctf2016: [writeup](http://dragonsector.pl/docs/0ctf2016_writeups.pdf), [exploit](https://gist.github.com/anonymous/83f96600c5ae851940d6) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://gist.github.com/anonymous/83f9 no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "575948a754823011",
      "item_id": "354cc694081aa5ad",
      "slug": "undated-practice-ctf-tasks-0ctf2016-exploit-5b239854",
      "year": null,
      "title": "0ctf2016: , · exploit",
      "item_title": "0ctf2016: ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "exploit",
      "resource_type": "exploit",
      "resource_url": "https://gist.github.com/anonymous/83f96600c5ae851940d6",
      "primary_url": "https://gist.github.com/anonymous/83f96600c5ae851940d6",
      "parent_primary_url": "http://dragonsector.pl/docs/0ctf2016_writeups.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/undated-practice-ctf-tasks-0ctf2016-exploit-5b239854.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 0ctf2016: , · exploit record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: 0ctf2016: , resource_label: exploit resource_type: exploit resource_url: https://gist.github.com/anonymous/83f96600c5ae851940d6 parent_primary_url: http://dragonsector.pl/docs/0ctf2016_writeups.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 0ctf2016: [writeup](http://dragonsector.pl/docs/0ctf2016_writeups.pdf), [exploit](https://gist.github.com/anonymous/83f96600c5ae851940d6) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://gist.github.com",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://dragonsector.pl/docs/0ctf2016_writeups.pdf"
        },
        {
          "label": "exploit",
          "type": "exploit",
          "url": "https://gist.github.com/anonymous/83f96600c5ae851940d6"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://dragonsector.pl/docs/0ctf2016_writeups.pdf"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "exploit",
            "type": "exploit",
            "url": "https://gist.github.com/anonymous/83f96600c5ae851940d6"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://gist.github.com/anonymous/83f96600c5ae851940d6"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "Another entry for 0ctf2016's challenge with an available exploit.",
      "summary_zh": "0ctf2016的挑战的另一个条目，包含一个可用的利用。",
      "source_markdown": "0ctf2016: [writeup](http://dragonsector.pl/docs/0ctf2016_writeups.pdf), [exploit](https://gist.github.com/anonymous/83f96600c5ae851940d6)",
      "search_text": "0ctf2016: , · exploit 0ctf2016: ,    practice ctf tasks practice: ctf tasks exploit exploit https://gist.github.com/anonymous/83f96600c5ae851940d6 ctf exploit  practice another entry for 0ctf2016's challenge with an available exploit. 0ctf2016的挑战的另一个条目，包含一个可用的利用。 # 0ctf2016: , · exploit record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: 0ctf2016: , resource_label: exploit resource_type: exploit resource_url: https://gist.github.com/anonymous/83f96600c5ae851940d6 parent_primary_url: http://dragonsector.pl/docs/0ctf2016_writeups.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: 0ctf2016: [writeup](http://dragonsector.pl/docs/0ctf2016_writeups.pdf), [exploit](https://gist.github.com/anonymous/83f96600c5ae851940d6) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://gist.github.com no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "46df0729d89b9c25",
      "item_id": "78df79dcde0d86d6",
      "slug": "2015-practice-ctf-tasks-insomni-hack-finals-2015-primary-d9fcd65b",
      "year": 2015,
      "title": "Insomni’hack finals 2015: ,",
      "item_title": "Insomni’hack finals 2015: ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/",
      "primary_url": "https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/",
      "parent_primary_url": "https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2015-practice-ctf-tasks-insomni-hack-finals-2015-primary-d9fcd65b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Insomni’hack finals 2015: , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Insomni’hack finals 2015: , resource_label: primary resource_type: article resource_url: https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/ parent_primary_url: https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Insomni’hack finals 2015: [writeup](https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/), [source and exploit](https://github.com/Insomnihack/Insomnihack-2015/tree/master/exploit/sh1tty) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's X",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/"
        },
        {
          "label": "source and exploit",
          "type": "exploit",
          "url": "https://github.com/Insomnihack/Insomnihack-2015/tree/master/exploit/sh1tty"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "source and exploit",
            "type": "exploit",
            "url": "https://github.com/Insomnihack/Insomnihack-2015/tree/master/exploit/sh1tty"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Insomnihack/Insomnihack-2015/tree/master/exploit/sh1tty"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "Insomni’hack finals 2015 provides insights into kernel exploitation challenges.",
      "summary_zh": "Insomni’hack 2015决赛提供了内核利用挑战的见解。",
      "source_markdown": "Insomni’hack finals 2015: [writeup](https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/), [source and exploit](https://github.com/Insomnihack/Insomnihack-2015/tree/master/exploit/sh1tty)",
      "search_text": "insomni’hack finals 2015: , insomni’hack finals 2015: ,    practice ctf tasks practice: ctf tasks primary article https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/ ctf kernel exploitation  challenge insomni’hack finals 2015 provides insights into kernel exploitation challenges. insomni’hack 2015决赛提供了内核利用挑战的见解。 # insomni’hack finals 2015: , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: insomni’hack finals 2015: , resource_label: primary resource_type: article resource_url: https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/ parent_primary_url: https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: insomni’hack finals 2015: [writeup](https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/), [source and exploit](https://github.com/insomnihack/insomnihack-2015/tree/master/exploit/sh1tty) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's x no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "075749a5cff358b7",
      "item_id": "78df79dcde0d86d6",
      "slug": "2015-practice-ctf-tasks-insomni-hack-finals-2015-source-and-exploit-9c2e16ba",
      "year": 2015,
      "title": "Insomni’hack finals 2015: , · source and exploit",
      "item_title": "Insomni’hack finals 2015: ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "source and exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/Insomnihack/Insomnihack-2015/tree/master/exploit/sh1tty",
      "primary_url": "https://github.com/Insomnihack/Insomnihack-2015/tree/master/exploit/sh1tty",
      "parent_primary_url": "https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2015-practice-ctf-tasks-insomni-hack-finals-2015-source-and-exploit-9c2e16ba.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Insomni’hack finals 2015: , · source and exploit record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: Insomni’hack finals 2015: , resource_label: source and exploit resource_type: exploit resource_url: https://github.com/Insomnihack/Insomnihack-2015/tree/master/exploit/sh1tty parent_primary_url: https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: Insomni’hack finals 2015: [writeup](https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/), [source and exploit](https://github.com/Insomnihack/Insomnihack-2015/tree/master/exploit/sh1tty) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reas",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/"
        },
        {
          "label": "source and exploit",
          "type": "exploit",
          "url": "https://github.com/Insomnihack/Insomnihack-2015/tree/master/exploit/sh1tty"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "source and exploit",
            "type": "exploit",
            "url": "https://github.com/Insomnihack/Insomnihack-2015/tree/master/exploit/sh1tty"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Insomnihack/Insomnihack-2015/tree/master/exploit/sh1tty"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "Insomni’hack finals 2015 includes source and exploit resources for kernel challenges.",
      "summary_zh": "Insomni’hack 2015决赛包含内核挑战的源代码和利用资源。",
      "source_markdown": "Insomni’hack finals 2015: [writeup](https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/), [source and exploit](https://github.com/Insomnihack/Insomnihack-2015/tree/master/exploit/sh1tty)",
      "search_text": "insomni’hack finals 2015: , · source and exploit insomni’hack finals 2015: ,    practice ctf tasks practice: ctf tasks source and exploit exploit https://github.com/insomnihack/insomnihack-2015/tree/master/exploit/sh1tty ctf kernel exploitation  challenge insomni’hack finals 2015 includes source and exploit resources for kernel challenges. insomni’hack 2015决赛包含内核挑战的源代码和利用资源。 # insomni’hack finals 2015: , · source and exploit record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: insomni’hack finals 2015: , resource_label: source and exploit resource_type: exploit resource_url: https://github.com/insomnihack/insomnihack-2015/tree/master/exploit/sh1tty parent_primary_url: https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: insomni’hack finals 2015: [writeup](https://blog.scrt.ch/2015/03/24/insomnihack-finals-sh1tty-writeup/), [source and exploit](https://github.com/insomnihack/insomnihack-2015/tree/master/exploit/sh1tty) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reas no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "c1cf20ae84f08eba",
      "item_id": "9c6ca99a697325cf",
      "slug": "2015-practice-ctf-tasks-csaw-ctf-2015-primary-b6a2e9dd",
      "year": 2015,
      "title": "CSAW CTF 2015: , ,",
      "item_title": "CSAW CTF 2015: , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/",
      "primary_url": "https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/",
      "parent_primary_url": "https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2015-practice-ctf-tasks-csaw-ctf-2015-primary-b6a2e9dd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CSAW CTF 2015: , , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: CSAW CTF 2015: , , resource_label: primary resource_type: article resource_url: https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/ parent_primary_url: https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: CSAW CTF 2015: [writeup 1](https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/), [writeup 2](http://itszn.com/blog/?p=21), [source and exploit](https://github.com/mncoppola/StringIPC) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices u",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "http://itszn.com/blog/?p=21"
        },
        {
          "label": "source and exploit",
          "type": "exploit",
          "url": "https://github.com/mncoppola/StringIPC"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "http://itszn.com/blog/?p=21"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "source and exploit",
            "type": "exploit",
            "url": "https://github.com/mncoppola/StringIPC"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/mncoppola/StringIPC"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "CSAW CTF 2015 features kernel exploitation challenges with detailed writeups.",
      "summary_zh": "CSAW CTF 2015包含内核利用挑战及详细的写作。",
      "source_markdown": "CSAW CTF 2015: [writeup 1](https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/), [writeup 2](http://itszn.com/blog/?p=21), [source and exploit](https://github.com/mncoppola/StringIPC)",
      "search_text": "csaw ctf 2015: , , csaw ctf 2015: , ,    practice ctf tasks practice: ctf tasks primary article https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/ ctf kernel exploitation  challenge csaw ctf 2015 features kernel exploitation challenges with detailed writeups. csaw ctf 2015包含内核利用挑战及详细的写作。 # csaw ctf 2015: , , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: csaw ctf 2015: , , resource_label: primary resource_type: article resource_url: https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/ parent_primary_url: https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: csaw ctf 2015: [writeup 1](https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/), [writeup 2](http://itszn.com/blog/?p=21), [source and exploit](https://github.com/mncoppola/stringipc) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices u no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "6ec3caab9bd7f2e5",
      "item_id": "9c6ca99a697325cf",
      "slug": "2015-practice-ctf-tasks-csaw-ctf-2015-writeup-2-be019356",
      "year": 2015,
      "title": "CSAW CTF 2015: , , · writeup 2",
      "item_title": "CSAW CTF 2015: , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "writeup 2",
      "resource_type": "article",
      "resource_url": "http://itszn.com/blog/?p=21",
      "primary_url": "http://itszn.com/blog/?p=21",
      "parent_primary_url": "https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2015-practice-ctf-tasks-csaw-ctf-2015-writeup-2-be019356.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CSAW CTF 2015: , , · writeup 2 record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: CSAW CTF 2015: , , resource_label: writeup 2 resource_type: article resource_url: http://itszn.com/blog/?p=21 parent_primary_url: https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: CSAW CTF 2015: [writeup 1](https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/), [writeup 2](http://itszn.com/blog/?p=21), [source and exploit](https://github.com/mncoppola/StringIPC) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Li",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "http://itszn.com/blog/?p=21"
        },
        {
          "label": "source and exploit",
          "type": "exploit",
          "url": "https://github.com/mncoppola/StringIPC"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "http://itszn.com/blog/?p=21"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "source and exploit",
            "type": "exploit",
            "url": "https://github.com/mncoppola/StringIPC"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/mncoppola/StringIPC"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "CSAW CTF 2015 provides additional writeups for kernel exploitation tasks.",
      "summary_zh": "CSAW CTF 2015为内核利用任务提供了额外的写作。",
      "source_markdown": "CSAW CTF 2015: [writeup 1](https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/), [writeup 2](http://itszn.com/blog/?p=21), [source and exploit](https://github.com/mncoppola/StringIPC)",
      "search_text": "csaw ctf 2015: , , · writeup 2 csaw ctf 2015: , ,    practice ctf tasks practice: ctf tasks writeup 2 article http://itszn.com/blog/?p=21 ctf kernel exploitation  challenge csaw ctf 2015 provides additional writeups for kernel exploitation tasks. csaw ctf 2015为内核利用任务提供了额外的写作。 # csaw ctf 2015: , , · writeup 2 record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: csaw ctf 2015: , , resource_label: writeup 2 resource_type: article resource_url: http://itszn.com/blog/?p=21 parent_primary_url: https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: csaw ctf 2015: [writeup 1](https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/), [writeup 2](http://itszn.com/blog/?p=21), [source and exploit](https://github.com/mncoppola/stringipc) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than li no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "22a5bcd8b8f31e48",
      "item_id": "9c6ca99a697325cf",
      "slug": "2015-practice-ctf-tasks-csaw-ctf-2015-source-and-exploit-f5988e42",
      "year": 2015,
      "title": "CSAW CTF 2015: , , · source and exploit",
      "item_title": "CSAW CTF 2015: , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "source and exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/mncoppola/StringIPC",
      "primary_url": "https://github.com/mncoppola/StringIPC",
      "parent_primary_url": "https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2015-practice-ctf-tasks-csaw-ctf-2015-source-and-exploit-f5988e42.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CSAW CTF 2015: , , · source and exploit record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: CSAW CTF 2015: , , resource_label: source and exploit resource_type: exploit resource_url: https://github.com/mncoppola/StringIPC parent_primary_url: https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: CSAW CTF 2015: [writeup 1](https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/), [writeup 2](http://itszn.com/blog/?p=21), [source and exploit](https://github.com/mncoppola/StringIPC) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Appl",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "http://itszn.com/blog/?p=21"
        },
        {
          "label": "source and exploit",
          "type": "exploit",
          "url": "https://github.com/mncoppola/StringIPC"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "http://itszn.com/blog/?p=21"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "source and exploit",
            "type": "exploit",
            "url": "https://github.com/mncoppola/StringIPC"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/mncoppola/StringIPC"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "CSAW CTF 2015 includes source and exploit resources for kernel tasks.",
      "summary_zh": "CSAW CTF 2015包含内核任务的源代码和利用资源。",
      "source_markdown": "CSAW CTF 2015: [writeup 1](https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/), [writeup 2](http://itszn.com/blog/?p=21), [source and exploit](https://github.com/mncoppola/StringIPC)",
      "search_text": "csaw ctf 2015: , , · source and exploit csaw ctf 2015: , ,    practice ctf tasks practice: ctf tasks source and exploit exploit https://github.com/mncoppola/stringipc ctf kernel exploitation  challenge csaw ctf 2015 includes source and exploit resources for kernel tasks. csaw ctf 2015包含内核任务的源代码和利用资源。 # csaw ctf 2015: , , · source and exploit record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: csaw ctf 2015: , , resource_label: source and exploit resource_type: exploit resource_url: https://github.com/mncoppola/stringipc parent_primary_url: https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: csaw ctf 2015: [writeup 1](https://poppopret.org/2015/11/16/csaw-ctf-2015-kernel-exploitation-challenge/), [writeup 2](http://itszn.com/blog/?p=21), [source and exploit](https://github.com/mncoppola/stringipc) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use appl no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "a1cc52df5a12e5ee",
      "item_id": "fdd3fd9d57644e32",
      "slug": "2014-practice-ctf-tasks-csaw-ctf-2014-primary-c153c2ce",
      "year": 2014,
      "title": "CSAW CTF 2014:",
      "item_title": "CSAW CTF 2014:",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/mncoppola/suckerusu",
      "primary_url": "https://github.com/mncoppola/suckerusu",
      "parent_primary_url": "https://github.com/mncoppola/suckerusu",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2014-practice-ctf-tasks-csaw-ctf-2014-primary-c153c2ce.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CSAW CTF 2014: record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: CSAW CTF 2014: resource_label: primary resource_type: exploit resource_url: https://github.com/mncoppola/suckerusu parent_primary_url: https://github.com/mncoppola/suckerusu source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: CSAW CTF 2014: [source and exploit](https://github.com/mncoppola/suckerusu) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/mncoppola/suckerusu context_links: - [exploit] primary: https://github.com/mncoppola/suckerusu fe",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/mncoppola/suckerusu"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/mncoppola/suckerusu"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/mncoppola/suckerusu"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "CSAW CTF 2014 features kernel exploitation challenges with available source.",
      "summary_zh": "CSAW CTF 2014包含可用源代码的内核利用挑战。",
      "source_markdown": "CSAW CTF 2014: [source and exploit](https://github.com/mncoppola/suckerusu)",
      "search_text": "csaw ctf 2014: csaw ctf 2014:    practice ctf tasks practice: ctf tasks primary exploit https://github.com/mncoppola/suckerusu ctf kernel exploitation  challenge csaw ctf 2014 features kernel exploitation challenges with available source. csaw ctf 2014包含可用源代码的内核利用挑战。 # csaw ctf 2014: record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: csaw ctf 2014: resource_label: primary resource_type: exploit resource_url: https://github.com/mncoppola/suckerusu parent_primary_url: https://github.com/mncoppola/suckerusu source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: csaw ctf 2014: [source and exploit](https://github.com/mncoppola/suckerusu) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/mncoppola/suckerusu context_links: - [exploit] primary: https://github.com/mncoppola/suckerusu fe no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "450886c47693c184",
      "item_id": "b0eae0488f6d67f8",
      "slug": "2013-practice-ctf-tasks-csaw-ctf-2013-primary-20030e79",
      "year": 2013,
      "title": "CSAW CTF 2013: ,",
      "item_title": "CSAW CTF 2013: ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/",
      "primary_url": "https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/",
      "parent_primary_url": "https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2013-practice-ctf-tasks-csaw-ctf-2013-primary-20030e79.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CSAW CTF 2013: , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: CSAW CTF 2013: , resource_label: primary resource_type: article resource_url: https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/ parent_primary_url: https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: CSAW CTF 2013: [writeup](https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/), [source and exploit](https://github.com/mncoppola/Brad-Oberberg) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/"
        },
        {
          "label": "source and exploit",
          "type": "exploit",
          "url": "https://github.com/mncoppola/Brad-Oberberg"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "source and exploit",
            "type": "exploit",
            "url": "https://github.com/mncoppola/Brad-Oberberg"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/mncoppola/Brad-Oberberg"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "CSAW CTF 2013 showcases kernel exploitation challenges with detailed writeups.",
      "summary_zh": "CSAW CTF 2013展示了内核利用挑战及详细的写作。",
      "source_markdown": "CSAW CTF 2013: [writeup](https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/), [source and exploit](https://github.com/mncoppola/Brad-Oberberg)",
      "search_text": "csaw ctf 2013: , csaw ctf 2013: ,    practice ctf tasks practice: ctf tasks primary article https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/ ctf kernel exploitation  challenge csaw ctf 2013 showcases kernel exploitation challenges with detailed writeups. csaw ctf 2013展示了内核利用挑战及详细的写作。 # csaw ctf 2013: , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: csaw ctf 2013: , resource_label: primary resource_type: article resource_url: https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/ parent_primary_url: https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: csaw ctf 2013: [writeup](https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/), [source and exploit](https://github.com/mncoppola/brad-oberberg) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "36dc27228b4851a2",
      "item_id": "b0eae0488f6d67f8",
      "slug": "2013-practice-ctf-tasks-csaw-ctf-2013-source-and-exploit-139d5c9e",
      "year": 2013,
      "title": "CSAW CTF 2013: , · source and exploit",
      "item_title": "CSAW CTF 2013: ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "source and exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/mncoppola/Brad-Oberberg",
      "primary_url": "https://github.com/mncoppola/Brad-Oberberg",
      "parent_primary_url": "https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2013-practice-ctf-tasks-csaw-ctf-2013-source-and-exploit-139d5c9e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CSAW CTF 2013: , · source and exploit record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: CSAW CTF 2013: , resource_label: source and exploit resource_type: exploit resource_url: https://github.com/mncoppola/Brad-Oberberg parent_primary_url: https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: CSAW CTF 2013: [writeup](https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/), [source and exploit](https://github.com/mncoppola/Brad-Oberberg) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_co",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/"
        },
        {
          "label": "source and exploit",
          "type": "exploit",
          "url": "https://github.com/mncoppola/Brad-Oberberg"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "source and exploit",
            "type": "exploit",
            "url": "https://github.com/mncoppola/Brad-Oberberg"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/mncoppola/Brad-Oberberg"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "CSAW CTF 2013 provides source and exploit resources for kernel challenges.",
      "summary_zh": "CSAW CTF 2013提供内核挑战的源代码和利用资源。",
      "source_markdown": "CSAW CTF 2013: [writeup](https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/), [source and exploit](https://github.com/mncoppola/Brad-Oberberg)",
      "search_text": "csaw ctf 2013: , · source and exploit csaw ctf 2013: ,    practice ctf tasks practice: ctf tasks source and exploit exploit https://github.com/mncoppola/brad-oberberg ctf kernel exploitation  challenge csaw ctf 2013 provides source and exploit resources for kernel challenges. csaw ctf 2013提供内核挑战的源代码和利用资源。 # csaw ctf 2013: , · source and exploit record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: csaw ctf 2013: , resource_label: source and exploit resource_type: exploit resource_url: https://github.com/mncoppola/brad-oberberg parent_primary_url: https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: csaw ctf 2013: [writeup](https://poppopret.org/2013/11/20/csaw-ctf-2013-kernel-exploitation-challenge/), [source and exploit](https://github.com/mncoppola/brad-oberberg) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_co no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "3af4797977f0cb95",
      "item_id": "e22441d5551ee475",
      "slug": "2013-practice-ctf-tasks-plaidctf-2013-servr-primary-f4d08626",
      "year": 2013,
      "title": "PlaidCTF 2013 (Servr): ,",
      "item_title": "PlaidCTF 2013 (Servr): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://blog.frizn.fr/plaidctf-2013/pwn-400-servr",
      "primary_url": "http://blog.frizn.fr/plaidctf-2013/pwn-400-servr",
      "parent_primary_url": "http://blog.frizn.fr/plaidctf-2013/pwn-400-servr",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2013-practice-ctf-tasks-plaidctf-2013-servr-primary-f4d08626.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PlaidCTF 2013 (Servr): , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: PlaidCTF 2013 (Servr): , resource_label: primary resource_type: article resource_url: http://blog.frizn.fr/plaidctf-2013/pwn-400-servr parent_primary_url: http://blog.frizn.fr/plaidctf-2013/pwn-400-servr source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: PlaidCTF 2013 (Servr): [writeup](http://blog.frizn.fr/plaidctf-2013/pwn-400-servr), [source](http://blog.frizn.fr/fil3z/pctf-2013/servr.tar.bz2) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: http:",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://blog.frizn.fr/plaidctf-2013/pwn-400-servr"
        },
        {
          "label": "source",
          "type": "code",
          "url": "http://blog.frizn.fr/fil3z/pctf-2013/servr.tar.bz2"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://blog.frizn.fr/plaidctf-2013/pwn-400-servr"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "source",
            "type": "code",
            "url": "http://blog.frizn.fr/fil3z/pctf-2013/servr.tar.bz2"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "http://blog.frizn.fr/fil3z/pctf-2013/servr.tar.bz2"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "PlaidCTF 2013 includes writeups for kernel exploitation tasks.",
      "summary_zh": "PlaidCTF 2013包含内核利用任务的写作。",
      "source_markdown": "PlaidCTF 2013 (Servr): [writeup](http://blog.frizn.fr/plaidctf-2013/pwn-400-servr), [source](http://blog.frizn.fr/fil3z/pctf-2013/servr.tar.bz2)",
      "search_text": "plaidctf 2013 (servr): , plaidctf 2013 (servr): ,    practice ctf tasks practice: ctf tasks primary article http://blog.frizn.fr/plaidctf-2013/pwn-400-servr ctf kernel exploitation  challenge plaidctf 2013 includes writeups for kernel exploitation tasks. plaidctf 2013包含内核利用任务的写作。 # plaidctf 2013 (servr): , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: plaidctf 2013 (servr): , resource_label: primary resource_type: article resource_url: http://blog.frizn.fr/plaidctf-2013/pwn-400-servr parent_primary_url: http://blog.frizn.fr/plaidctf-2013/pwn-400-servr source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: plaidctf 2013 (servr): [writeup](http://blog.frizn.fr/plaidctf-2013/pwn-400-servr), [source](http://blog.frizn.fr/fil3z/pctf-2013/servr.tar.bz2) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: http: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "56462f1eb43821b4",
      "item_id": "e22441d5551ee475",
      "slug": "2013-practice-ctf-tasks-plaidctf-2013-servr-source-03d35a53",
      "year": 2013,
      "title": "PlaidCTF 2013 (Servr): , · source",
      "item_title": "PlaidCTF 2013 (Servr): ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "source",
      "resource_type": "code",
      "resource_url": "http://blog.frizn.fr/fil3z/pctf-2013/servr.tar.bz2",
      "primary_url": "http://blog.frizn.fr/fil3z/pctf-2013/servr.tar.bz2",
      "parent_primary_url": "http://blog.frizn.fr/plaidctf-2013/pwn-400-servr",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2013-practice-ctf-tasks-plaidctf-2013-servr-source-03d35a53.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# PlaidCTF 2013 (Servr): , · source record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: PlaidCTF 2013 (Servr): , resource_label: source resource_type: code resource_url: http://blog.frizn.fr/fil3z/pctf-2013/servr.tar.bz2 parent_primary_url: http://blog.frizn.fr/plaidctf-2013/pwn-400-servr source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: PlaidCTF 2013 (Servr): [writeup](http://blog.frizn.fr/plaidctf-2013/pwn-400-servr), [source](http://blog.frizn.fr/fil3z/pctf-2013/servr.tar.bz2) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://blog.frizn.fr/plaidctf-2013/pwn-400-servr"
        },
        {
          "label": "source",
          "type": "code",
          "url": "http://blog.frizn.fr/fil3z/pctf-2013/servr.tar.bz2"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://blog.frizn.fr/plaidctf-2013/pwn-400-servr"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "source",
            "type": "code",
            "url": "http://blog.frizn.fr/fil3z/pctf-2013/servr.tar.bz2"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "http://blog.frizn.fr/fil3z/pctf-2013/servr.tar.bz2"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "PlaidCTF 2013 provides source resources for kernel exploitation tasks.",
      "summary_zh": "PlaidCTF 2013提供内核利用任务的源代码资源。",
      "source_markdown": "PlaidCTF 2013 (Servr): [writeup](http://blog.frizn.fr/plaidctf-2013/pwn-400-servr), [source](http://blog.frizn.fr/fil3z/pctf-2013/servr.tar.bz2)",
      "search_text": "plaidctf 2013 (servr): , · source plaidctf 2013 (servr): ,    practice ctf tasks practice: ctf tasks source code http://blog.frizn.fr/fil3z/pctf-2013/servr.tar.bz2 ctf kernel exploitation  challenge plaidctf 2013 provides source resources for kernel exploitation tasks. plaidctf 2013提供内核利用任务的源代码资源。 # plaidctf 2013 (servr): , · source record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: plaidctf 2013 (servr): , resource_label: source resource_type: code resource_url: http://blog.frizn.fr/fil3z/pctf-2013/servr.tar.bz2 parent_primary_url: http://blog.frizn.fr/plaidctf-2013/pwn-400-servr source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: plaidctf 2013 (servr): [writeup](http://blog.frizn.fr/plaidctf-2013/pwn-400-servr), [source](http://blog.frizn.fr/fil3z/pctf-2013/servr.tar.bz2) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "61c1bf2f128150cf",
      "item_id": "15bb69545db2d999",
      "slug": "2011-practice-ctf-tasks-csaw-ctf-2011-primary-a97c115a",
      "year": 2011,
      "title": "CSAW CTF 2011: ,",
      "item_title": "CSAW CTF 2011: ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/",
      "primary_url": "https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/",
      "parent_primary_url": "https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2011-practice-ctf-tasks-csaw-ctf-2011-primary-a97c115a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CSAW CTF 2011: , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: CSAW CTF 2011: , resource_label: primary resource_type: article resource_url: https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/ parent_primary_url: https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: CSAW CTF 2011: [writeup](https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/), [source](https://jon.oberheide.org/files/SqueamishOssifrage.c) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kern",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/"
        },
        {
          "label": "source",
          "type": "code",
          "url": "https://jon.oberheide.org/files/SqueamishOssifrage.c"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "source",
            "type": "code",
            "url": "https://jon.oberheide.org/files/SqueamishOssifrage.c"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://jon.oberheide.org/files/SqueamishOssifrage.c"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "CSAW CTF 2011 features kernel exploitation challenges with available source.",
      "summary_zh": "CSAW CTF 2011包含可用源代码的内核利用挑战。",
      "source_markdown": "CSAW CTF 2011: [writeup](https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/), [source](https://jon.oberheide.org/files/SqueamishOssifrage.c)",
      "search_text": "csaw ctf 2011: , csaw ctf 2011: ,    practice ctf tasks practice: ctf tasks primary article https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/ ctf kernel exploitation  challenge csaw ctf 2011 features kernel exploitation challenges with available source. csaw ctf 2011包含可用源代码的内核利用挑战。 # csaw ctf 2011: , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: csaw ctf 2011: , resource_label: primary resource_type: article resource_url: https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/ parent_primary_url: https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: csaw ctf 2011: [writeup](https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/), [source](https://jon.oberheide.org/files/squeamishossifrage.c) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kern no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "e0c11dd56b51ea3c",
      "item_id": "15bb69545db2d999",
      "slug": "2011-practice-ctf-tasks-csaw-ctf-2011-source-68bab442",
      "year": 2011,
      "title": "CSAW CTF 2011: , · source",
      "item_title": "CSAW CTF 2011: ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "source",
      "resource_type": "code",
      "resource_url": "https://jon.oberheide.org/files/SqueamishOssifrage.c",
      "primary_url": "https://jon.oberheide.org/files/SqueamishOssifrage.c",
      "parent_primary_url": "https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2011-practice-ctf-tasks-csaw-ctf-2011-source-68bab442.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CSAW CTF 2011: , · source record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: CSAW CTF 2011: , resource_label: source resource_type: code resource_url: https://jon.oberheide.org/files/SqueamishOssifrage.c parent_primary_url: https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: CSAW CTF 2011: [writeup](https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/), [source](https://jon.oberheide.org/files/SqueamishOssifrage.c) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_cod",
      "link_types": [
        "article",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/"
        },
        {
          "label": "source",
          "type": "code",
          "url": "https://jon.oberheide.org/files/SqueamishOssifrage.c"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "source",
            "type": "code",
            "url": "https://jon.oberheide.org/files/SqueamishOssifrage.c"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://jon.oberheide.org/files/SqueamishOssifrage.c"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "CSAW CTF 2011 provides source resources for kernel exploitation tasks.",
      "summary_zh": "CSAW CTF 2011提供内核利用任务的源代码资源。",
      "source_markdown": "CSAW CTF 2011: [writeup](https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/), [source](https://jon.oberheide.org/files/SqueamishOssifrage.c)",
      "search_text": "csaw ctf 2011: , · source csaw ctf 2011: ,    practice ctf tasks practice: ctf tasks source code https://jon.oberheide.org/files/squeamishossifrage.c ctf kernel exploitation  challenge csaw ctf 2011 provides source resources for kernel exploitation tasks. csaw ctf 2011提供内核利用任务的源代码资源。 # csaw ctf 2011: , · source record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: csaw ctf 2011: , resource_label: source resource_type: code resource_url: https://jon.oberheide.org/files/squeamishossifrage.c parent_primary_url: https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: csaw ctf 2011: [writeup](https://jon.oberheide.org/blog/2011/11/27/csaw-ctf-2011-kernel-exploitation-challenge/), [source](https://jon.oberheide.org/files/squeamishossifrage.c) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_cod no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "47f1d01d570f7338",
      "item_id": "c323b08ce687554e",
      "slug": "undated-practice-ctf-tasks-rwth2011-ctf-ps3game-primary-9c77691f",
      "year": null,
      "title": "rwth2011 CTF (ps3game):",
      "item_title": "rwth2011 CTF (ps3game):",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://mslc.ctf.su/wp/rwth2011-ctf-ps3game/",
      "primary_url": "http://mslc.ctf.su/wp/rwth2011-ctf-ps3game/",
      "parent_primary_url": "http://mslc.ctf.su/wp/rwth2011-ctf-ps3game/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/undated-practice-ctf-tasks-rwth2011-ctf-ps3game-primary-9c77691f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# rwth2011 CTF (ps3game): record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: rwth2011 CTF (ps3game): resource_label: primary resource_type: article resource_url: http://mslc.ctf.su/wp/rwth2011-ctf-ps3game/ parent_primary_url: http://mslc.ctf.su/wp/rwth2011-ctf-ps3game/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: rwth2011 CTF (ps3game): [writeup](http://mslc.ctf.su/wp/rwth2011-ctf-ps3game/) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: http://mslc.ctf.su/wp/rwth2011-ctf-ps3gam",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://mslc.ctf.su/wp/rwth2011-ctf-ps3game/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://mslc.ctf.su/wp/rwth2011-ctf-ps3game/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "rwth2011 CTF showcases kernel exploitation challenges with writeups.",
      "summary_zh": "rwth2011 CTF展示了内核利用挑战及写作。",
      "source_markdown": "rwth2011 CTF (ps3game): [writeup](http://mslc.ctf.su/wp/rwth2011-ctf-ps3game/)",
      "search_text": "rwth2011 ctf (ps3game): rwth2011 ctf (ps3game):    practice ctf tasks practice: ctf tasks primary article http://mslc.ctf.su/wp/rwth2011-ctf-ps3game/ ctf kernel exploitation  challenge rwth2011 ctf showcases kernel exploitation challenges with writeups. rwth2011 ctf展示了内核利用挑战及写作。 # rwth2011 ctf (ps3game): record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: rwth2011 ctf (ps3game): resource_label: primary resource_type: article resource_url: http://mslc.ctf.su/wp/rwth2011-ctf-ps3game/ parent_primary_url: http://mslc.ctf.su/wp/rwth2011-ctf-ps3game/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: rwth2011 ctf (ps3game): [writeup](http://mslc.ctf.su/wp/rwth2011-ctf-ps3game/) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: http://mslc.ctf.su/wp/rwth2011-ctf-ps3gam no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "894ae6e857dcb500",
      "item_id": "fedeedec60b7fcd2",
      "slug": "2010-practice-ctf-tasks-csaw-ctf-2010-primary-f2866306",
      "year": 2010,
      "title": "CSAW CTF 2010: , ,",
      "item_title": "CSAW CTF 2010: , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/",
      "primary_url": "https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/",
      "parent_primary_url": "https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2010-practice-ctf-tasks-csaw-ctf-2010-primary-f2866306.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CSAW CTF 2010: , , record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: CSAW CTF 2010: , , resource_label: primary resource_type: article resource_url: https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/ parent_primary_url: https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: CSAW CTF 2010: [writeup](https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/), [source](https://jon.oberheide.org/files/csaw.c), [source and exploit](https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android de",
      "link_types": [
        "article",
        "code",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/"
        },
        {
          "label": "source",
          "type": "code",
          "url": "https://jon.oberheide.org/files/csaw.c"
        },
        {
          "label": "source and exploit",
          "type": "exploit",
          "url": "https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "source",
            "type": "code",
            "url": "https://jon.oberheide.org/files/csaw.c"
          }
        ],
        "exploit": [
          {
            "label": "source and exploit",
            "type": "exploit",
            "url": "https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://jon.oberheide.org/files/csaw.c",
        "https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "CSAW CTF 2010 features kernel exploitation challenges with detailed writeups.",
      "summary_zh": "CSAW CTF 2010包含内核利用挑战及详细的写作。",
      "source_markdown": "CSAW CTF 2010: [writeup](https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/), [source](https://jon.oberheide.org/files/csaw.c), [source and exploit](https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge)",
      "search_text": "csaw ctf 2010: , , csaw ctf 2010: , ,    practice ctf tasks practice: ctf tasks primary article https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/ ctf kernel exploitation  challenge csaw ctf 2010 features kernel exploitation challenges with detailed writeups. csaw ctf 2010包含内核利用挑战及详细的写作。 # csaw ctf 2010: , , record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: csaw ctf 2010: , , resource_label: primary resource_type: article resource_url: https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/ parent_primary_url: https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: csaw ctf 2010: [writeup](https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/), [source](https://jon.oberheide.org/files/csaw.c), [source and exploit](https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android de no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "9c877463e2d084d2",
      "item_id": "fedeedec60b7fcd2",
      "slug": "2010-practice-ctf-tasks-csaw-ctf-2010-source-11b3bcdc",
      "year": 2010,
      "title": "CSAW CTF 2010: , , · source",
      "item_title": "CSAW CTF 2010: , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "source",
      "resource_type": "code",
      "resource_url": "https://jon.oberheide.org/files/csaw.c",
      "primary_url": "https://jon.oberheide.org/files/csaw.c",
      "parent_primary_url": "https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2010-practice-ctf-tasks-csaw-ctf-2010-source-11b3bcdc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CSAW CTF 2010: , , · source record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: CSAW CTF 2010: , , resource_label: source resource_type: code resource_url: https://jon.oberheide.org/files/csaw.c parent_primary_url: https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: CSAW CTF 2010: [writeup](https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/), [source](https://jon.oberheide.org/files/csaw.c), [source and exploit](https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impac",
      "link_types": [
        "article",
        "code",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/"
        },
        {
          "label": "source",
          "type": "code",
          "url": "https://jon.oberheide.org/files/csaw.c"
        },
        {
          "label": "source and exploit",
          "type": "exploit",
          "url": "https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "source",
            "type": "code",
            "url": "https://jon.oberheide.org/files/csaw.c"
          }
        ],
        "exploit": [
          {
            "label": "source and exploit",
            "type": "exploit",
            "url": "https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://jon.oberheide.org/files/csaw.c",
        "https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "CSAW CTF 2010 provides source resources for kernel exploitation tasks.",
      "summary_zh": "CSAW CTF 2010提供内核利用任务的源代码资源。",
      "source_markdown": "CSAW CTF 2010: [writeup](https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/), [source](https://jon.oberheide.org/files/csaw.c), [source and exploit](https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge)",
      "search_text": "csaw ctf 2010: , , · source csaw ctf 2010: , ,    practice ctf tasks practice: ctf tasks source code https://jon.oberheide.org/files/csaw.c ctf kernel exploitation  challenge csaw ctf 2010 provides source resources for kernel exploitation tasks. csaw ctf 2010提供内核利用任务的源代码资源。 # csaw ctf 2010: , , · source record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: csaw ctf 2010: , , resource_label: source resource_type: code resource_url: https://jon.oberheide.org/files/csaw.c parent_primary_url: https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: csaw ctf 2010: [writeup](https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/), [source](https://jon.oberheide.org/files/csaw.c), [source and exploit](https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impac no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "1bd2b3b95f3ab5a2",
      "item_id": "fedeedec60b7fcd2",
      "slug": "2010-practice-ctf-tasks-csaw-ctf-2010-source-and-exploit-4b9d409f",
      "year": 2010,
      "title": "CSAW CTF 2010: , , · source and exploit",
      "item_title": "CSAW CTF 2010: , ,",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "CTF Tasks",
      "section_path": "Practice / CTF Tasks",
      "category": "Practice: CTF Tasks",
      "vulnerability_class": "",
      "resource_label": "source and exploit",
      "resource_type": "exploit",
      "resource_url": "https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge",
      "primary_url": "https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge",
      "parent_primary_url": "https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#ctf-tasks",
      "raw_path": "/raw/2010-practice-ctf-tasks-csaw-ctf-2010-source-and-exploit-4b9d409f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CSAW CTF 2010: , , · source and exploit record_kind: linux-kernel-resource-url section: Practice subsection: CTF Tasks category: Practice: CTF Tasks item_title: CSAW CTF 2010: , , resource_label: source and exploit resource_type: exploit resource_url: https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge parent_primary_url: https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: CSAW CTF 2010: [writeup](https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/), [source](https://jon.oberheide.org/files/csaw.c), [source and exploit](https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge) cves: none android_impact_status: no android_impact_reason: Not enough evidence tha",
      "link_types": [
        "article",
        "code",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/"
        },
        {
          "label": "source",
          "type": "code",
          "url": "https://jon.oberheide.org/files/csaw.c"
        },
        {
          "label": "source and exploit",
          "type": "exploit",
          "url": "https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "source",
            "type": "code",
            "url": "https://jon.oberheide.org/files/csaw.c"
          }
        ],
        "exploit": [
          {
            "label": "source and exploit",
            "type": "exploit",
            "url": "https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://jon.oberheide.org/files/csaw.c",
        "https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "CSAW CTF 2010 includes source and exploit resources for kernel challenges.",
      "summary_zh": "CSAW CTF 2010包含内核挑战的源代码和利用资源。",
      "source_markdown": "CSAW CTF 2010: [writeup](https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/), [source](https://jon.oberheide.org/files/csaw.c), [source and exploit](https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge)",
      "search_text": "csaw ctf 2010: , , · source and exploit csaw ctf 2010: , ,    practice ctf tasks practice: ctf tasks source and exploit exploit https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge ctf kernel exploitation  challenge csaw ctf 2010 includes source and exploit resources for kernel challenges. csaw ctf 2010包含内核挑战的源代码和利用资源。 # csaw ctf 2010: , , · source and exploit record_kind: linux-kernel-resource-url section: practice subsection: ctf tasks category: practice: ctf tasks item_title: csaw ctf 2010: , , resource_label: source and exploit resource_type: exploit resource_url: https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge parent_primary_url: https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#ctf-tasks source_item: csaw ctf 2010: [writeup](https://jon.oberheide.org/blog/2010/11/02/csaw-ctf-kernel-exploitation-challenge/), [source](https://jon.oberheide.org/files/csaw.c), [source and exploit](https://github.com/0x3f97/pwn/tree/master/kernel/csaw-ctf-2010-kernel-exploitation-challenge) cves: none android_impact_status: no android_impact_reason: not enough evidence tha no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "e422d4e943c09b86",
      "item_id": "c0f95df1a7e11409",
      "slug": "undated-practice-other-tasks-pawnyable-linux-kernel-exploitation-primary-bd3cec64",
      "year": null,
      "title": "Pawnyable: Linux Kernel Exploitation",
      "item_title": "Pawnyable: Linux Kernel Exploitation",
      "authors": [
        "ptr-yudai"
      ],
      "cves": [],
      "tags": [
        "articles"
      ],
      "section": "Practice",
      "subsection": "Other tasks",
      "section_path": "Practice / Other tasks",
      "category": "Practice: Other tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://h0mbre.github.io/PAWNYABLE_UAF_Walkthrough/",
      "primary_url": "https://h0mbre.github.io/PAWNYABLE_UAF_Walkthrough/",
      "parent_primary_url": "https://h0mbre.github.io/PAWNYABLE_UAF_Walkthrough/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other-tasks",
      "raw_path": "/raw/undated-practice-other-tasks-pawnyable-linux-kernel-exploitation-primary-bd3cec64.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Pawnyable: Linux Kernel Exploitation record_kind: linux-kernel-resource-url section: Practice subsection: Other tasks category: Practice: Other tasks item_title: Pawnyable: Linux Kernel Exploitation resource_label: primary resource_type: article resource_url: https://h0mbre.github.io/PAWNYABLE_UAF_Walkthrough/ parent_primary_url: https://h0mbre.github.io/PAWNYABLE_UAF_Walkthrough/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: [\"Pawnyable: Linux Kernel Exploitation\" by ptr-yudai](https://pawnyable.cafe/linux-kernel/index.html) [articles] [[Holstein v3 writeup](https://h0mbre.github.io/PAWNYABLE_UAF_Walkthrough/)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather t",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://h0mbre.github.io/PAWNYABLE_UAF_Walkthrough/"
        },
        {
          "label": "\"Pawnyable: Linux Kernel Exploitation\" by ptr-yudai",
          "type": "exploit",
          "url": "https://pawnyable.cafe/linux-kernel/index.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://h0mbre.github.io/PAWNYABLE_UAF_Walkthrough/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "\"Pawnyable: Linux Kernel Exploitation\" by ptr-yudai",
            "type": "exploit",
            "url": "https://pawnyable.cafe/linux-kernel/index.html"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://h0mbre.github.io/PAWNYABLE_UAF_Walkthrough/",
        "https://pawnyable.cafe/linux-kernel/index.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "articles",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "Pawnyable provides resources for Linux kernel exploitation techniques.",
      "summary_zh": "Pawnyable提供Linux内核利用技术的资源。",
      "source_markdown": "[\"Pawnyable: Linux Kernel Exploitation\" by ptr-yudai](https://pawnyable.cafe/linux-kernel/index.html) [articles] [[Holstein v3 writeup](https://h0mbre.github.io/PAWNYABLE_UAF_Walkthrough/)]",
      "search_text": "pawnyable: linux kernel exploitation pawnyable: linux kernel exploitation ptr-yudai  articles practice other tasks practice: other tasks primary article https://h0mbre.github.io/pawnyable_uaf_walkthrough/ articles kernel exploitation  challenge pawnyable provides resources for linux kernel exploitation techniques. pawnyable提供linux内核利用技术的资源。 # pawnyable: linux kernel exploitation record_kind: linux-kernel-resource-url section: practice subsection: other tasks category: practice: other tasks item_title: pawnyable: linux kernel exploitation resource_label: primary resource_type: article resource_url: https://h0mbre.github.io/pawnyable_uaf_walkthrough/ parent_primary_url: https://h0mbre.github.io/pawnyable_uaf_walkthrough/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: [\"pawnyable: linux kernel exploitation\" by ptr-yudai](https://pawnyable.cafe/linux-kernel/index.html) [articles] [[holstein v3 writeup](https://h0mbre.github.io/pawnyable_uaf_walkthrough/)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather t no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "55b9dc9f29e2589f",
      "item_id": "c0f95df1a7e11409",
      "slug": "undated-practice-other-tasks-pawnyable-linux-kernel-exploitation-pawnyable-linux-kernel-exploitation-by-ptr-yu",
      "year": null,
      "title": "Pawnyable: Linux Kernel Exploitation · \"Pawnyable: Linux Kernel Exploitation\" by ptr-yudai",
      "item_title": "Pawnyable: Linux Kernel Exploitation",
      "authors": [
        "ptr-yudai"
      ],
      "cves": [],
      "tags": [
        "articles"
      ],
      "section": "Practice",
      "subsection": "Other tasks",
      "section_path": "Practice / Other tasks",
      "category": "Practice: Other tasks",
      "vulnerability_class": "",
      "resource_label": "\"Pawnyable: Linux Kernel Exploitation\" by ptr-yudai",
      "resource_type": "exploit",
      "resource_url": "https://pawnyable.cafe/linux-kernel/index.html",
      "primary_url": "https://pawnyable.cafe/linux-kernel/index.html",
      "parent_primary_url": "https://h0mbre.github.io/PAWNYABLE_UAF_Walkthrough/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other-tasks",
      "raw_path": "/raw/undated-practice-other-tasks-pawnyable-linux-kernel-exploitation-pawnyable-linux-kernel-exploitation-by-ptr-yu.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Pawnyable: Linux Kernel Exploitation · \"Pawnyable: Linux Kernel Exploitation\" by ptr-yudai record_kind: linux-kernel-resource-url section: Practice subsection: Other tasks category: Practice: Other tasks item_title: Pawnyable: Linux Kernel Exploitation resource_label: \"Pawnyable: Linux Kernel Exploitation\" by ptr-yudai resource_type: exploit resource_url: https://pawnyable.cafe/linux-kernel/index.html parent_primary_url: https://h0mbre.github.io/PAWNYABLE_UAF_Walkthrough/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: [\"Pawnyable: Linux Kernel Exploitation\" by ptr-yudai](https://pawnyable.cafe/linux-kernel/index.html) [articles] [[Holstein v3 writeup](https://h0mbre.github.io/PAWNYABLE_UAF_Walkthrough/)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. io",
      "link_types": [
        "article",
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://h0mbre.github.io/PAWNYABLE_UAF_Walkthrough/"
        },
        {
          "label": "\"Pawnyable: Linux Kernel Exploitation\" by ptr-yudai",
          "type": "exploit",
          "url": "https://pawnyable.cafe/linux-kernel/index.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://h0mbre.github.io/PAWNYABLE_UAF_Walkthrough/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "\"Pawnyable: Linux Kernel Exploitation\" by ptr-yudai",
            "type": "exploit",
            "url": "https://pawnyable.cafe/linux-kernel/index.html"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://h0mbre.github.io/PAWNYABLE_UAF_Walkthrough/",
        "https://pawnyable.cafe/linux-kernel/index.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "articles",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "Pawnyable includes source resources for Linux kernel exploitation tasks.",
      "summary_zh": "Pawnyable包含Linux内核利用任务的源代码资源。",
      "source_markdown": "[\"Pawnyable: Linux Kernel Exploitation\" by ptr-yudai](https://pawnyable.cafe/linux-kernel/index.html) [articles] [[Holstein v3 writeup](https://h0mbre.github.io/PAWNYABLE_UAF_Walkthrough/)]",
      "search_text": "pawnyable: linux kernel exploitation · \"pawnyable: linux kernel exploitation\" by ptr-yudai pawnyable: linux kernel exploitation ptr-yudai  articles practice other tasks practice: other tasks \"pawnyable: linux kernel exploitation\" by ptr-yudai exploit https://pawnyable.cafe/linux-kernel/index.html articles kernel exploitation  challenge pawnyable includes source resources for linux kernel exploitation tasks. pawnyable包含linux内核利用任务的源代码资源。 # pawnyable: linux kernel exploitation · \"pawnyable: linux kernel exploitation\" by ptr-yudai record_kind: linux-kernel-resource-url section: practice subsection: other tasks category: practice: other tasks item_title: pawnyable: linux kernel exploitation resource_label: \"pawnyable: linux kernel exploitation\" by ptr-yudai resource_type: exploit resource_url: https://pawnyable.cafe/linux-kernel/index.html parent_primary_url: https://h0mbre.github.io/pawnyable_uaf_walkthrough/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: [\"pawnyable: linux kernel exploitation\" by ptr-yudai](https://pawnyable.cafe/linux-kernel/index.html) [articles] [[holstein v3 writeup](https://h0mbre.github.io/pawnyable_uaf_walkthrough/)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. io no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "78aae49943d5fdae",
      "item_id": "cc7c08c5eda4ce07",
      "slug": "undated-practice-other-tasks-pwnable-kr-tasks-primary-50b03e97",
      "year": null,
      "title": "pwnable.kr tasks",
      "item_title": "pwnable.kr tasks",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "Other tasks",
      "section_path": "Practice / Other tasks",
      "category": "Practice: Other tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://pwnable.kr/play.php",
      "primary_url": "http://pwnable.kr/play.php",
      "parent_primary_url": "http://pwnable.kr/play.php",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other-tasks",
      "raw_path": "/raw/undated-practice-other-tasks-pwnable-kr-tasks-primary-50b03e97.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# pwnable.kr tasks record_kind: linux-kernel-resource-url section: Practice subsection: Other tasks category: Practice: Other tasks item_title: pwnable.kr tasks resource_label: primary resource_type: article resource_url: http://pwnable.kr/play.php parent_primary_url: http://pwnable.kr/play.php source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: [pwnable.kr tasks](http://pwnable.kr/play.php) (syscall, rootkit, softmmu, towelroot, kcrc, exynos) cves: none android_impact_status: unknown android_impact_reason: mentions mobile SoC/GPU components used by Android devices; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://pwnable.kr/play.php"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://pwnable.kr/play.php"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions mobile SoC/GPU components used by Android devices; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "tasks",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "pwnable.kr offers various tasks related to kernel exploitation.",
      "summary_zh": "pwnable.kr提供与内核利用相关的各种任务。",
      "source_markdown": "[pwnable.kr tasks](http://pwnable.kr/play.php) (syscall, rootkit, softmmu, towelroot, kcrc, exynos)",
      "search_text": "pwnable.kr tasks pwnable.kr tasks    practice other tasks practice: other tasks primary article http://pwnable.kr/play.php tasks kernel exploitation  challenge pwnable.kr offers various tasks related to kernel exploitation. pwnable.kr提供与内核利用相关的各种任务。 # pwnable.kr tasks record_kind: linux-kernel-resource-url section: practice subsection: other tasks category: practice: other tasks item_title: pwnable.kr tasks resource_label: primary resource_type: article resource_url: http://pwnable.kr/play.php parent_primary_url: http://pwnable.kr/play.php source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: [pwnable.kr tasks](http://pwnable.kr/play.php) (syscall, rootkit, softmmu, towelroot, kcrc, exynos) cves: none android_impact_status: unknown android_impact_reason: mentions mobile soc/gpu components used by android devices; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: -  unknown mentions mobile soc/gpu components used by android devices; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "5f9e1b52221b39a3",
      "item_id": "9ea44eb19eb14ff3",
      "slug": "undated-practice-other-tasks-reverselab-kernel-pwn-challenge-primary-6ca0dc50",
      "year": null,
      "title": "ReverseLab/kernel-pwn-challenge",
      "item_title": "ReverseLab/kernel-pwn-challenge",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "Other tasks",
      "section_path": "Practice / Other tasks",
      "category": "Practice: Other tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/ReverseLab/kernel-pwn-challenge",
      "primary_url": "https://github.com/ReverseLab/kernel-pwn-challenge",
      "parent_primary_url": "https://github.com/ReverseLab/kernel-pwn-challenge",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other-tasks",
      "raw_path": "/raw/undated-practice-other-tasks-reverselab-kernel-pwn-challenge-primary-6ca0dc50.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ReverseLab/kernel-pwn-challenge record_kind: linux-kernel-resource-url section: Practice subsection: Other tasks category: Practice: Other tasks item_title: ReverseLab/kernel-pwn-challenge resource_label: primary resource_type: code resource_url: https://github.com/ReverseLab/kernel-pwn-challenge parent_primary_url: https://github.com/ReverseLab/kernel-pwn-challenge source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: https://github.com/ReverseLab/kernel-pwn-challenge cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/ReverseLab/kernel-pwn-challenge context_links: - [code] pri",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/ReverseLab/kernel-pwn-challenge"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/ReverseLab/kernel-pwn-challenge"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ReverseLab/kernel-pwn-challenge"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "challenge",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "challenge",
      "summary_en": "ReverseLab provides a kernel pwn challenge for exploitation practice.",
      "summary_zh": "ReverseLab提供内核利用挑战以供实践。",
      "source_markdown": "https://github.com/ReverseLab/kernel-pwn-challenge",
      "search_text": "reverselab/kernel-pwn-challenge reverselab/kernel-pwn-challenge    practice other tasks practice: other tasks primary code https://github.com/reverselab/kernel-pwn-challenge challenge kernel exploitation  challenge reverselab provides a kernel pwn challenge for exploitation practice. reverselab提供内核利用挑战以供实践。 # reverselab/kernel-pwn-challenge record_kind: linux-kernel-resource-url section: practice subsection: other tasks category: practice: other tasks item_title: reverselab/kernel-pwn-challenge resource_label: primary resource_type: code resource_url: https://github.com/reverselab/kernel-pwn-challenge parent_primary_url: https://github.com/reverselab/kernel-pwn-challenge source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: https://github.com/reverselab/kernel-pwn-challenge cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/reverselab/kernel-pwn-challenge context_links: - [code] pri no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "4ff454331f07e298",
      "item_id": "2467720950aae93a",
      "slug": "undated-practice-other-tasks-r3x-how2kernel-primary-61d76d77",
      "year": null,
      "title": "R3x/How2Kernel",
      "item_title": "R3x/How2Kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "Other tasks",
      "section_path": "Practice / Other tasks",
      "category": "Practice: Other tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/R3x/How2Kernel",
      "primary_url": "https://github.com/R3x/How2Kernel",
      "parent_primary_url": "https://github.com/R3x/How2Kernel",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other-tasks",
      "raw_path": "/raw/undated-practice-other-tasks-r3x-how2kernel-primary-61d76d77.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# R3x/How2Kernel record_kind: linux-kernel-resource-url section: Practice subsection: Other tasks category: Practice: Other tasks item_title: R3x/How2Kernel resource_label: primary resource_type: code resource_url: https://github.com/R3x/How2Kernel parent_primary_url: https://github.com/R3x/How2Kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: https://github.com/R3x/How2Kernel cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/R3x/How2Kernel context_links: - [code] primary: https://github.com/R3x/How2Kernel fetch_status: skipped fetch_note: original URL is preserved; p",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/R3x/How2Kernel"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/R3x/How2Kernel"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/R3x/How2Kernel"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "exploitation",
        "learning"
      ],
      "affected_area": "",
      "exploit_stage": "education",
      "summary_en": "A resource for learning kernel exploitation techniques.",
      "summary_zh": "一个学习内核利用技术的资源。",
      "source_markdown": "https://github.com/R3x/How2Kernel",
      "search_text": "r3x/how2kernel r3x/how2kernel    practice other tasks practice: other tasks primary code https://github.com/r3x/how2kernel kernel exploitation learning  education a resource for learning kernel exploitation techniques. 一个学习内核利用技术的资源。 # r3x/how2kernel record_kind: linux-kernel-resource-url section: practice subsection: other tasks category: practice: other tasks item_title: r3x/how2kernel resource_label: primary resource_type: code resource_url: https://github.com/r3x/how2kernel parent_primary_url: https://github.com/r3x/how2kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: https://github.com/r3x/how2kernel cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/r3x/how2kernel context_links: - [code] primary: https://github.com/r3x/how2kernel fetch_status: skipped fetch_note: original url is preserved; p no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "e4511e6cb8a6dbc1",
      "item_id": "046f3615846496b5",
      "slug": "2023-practice-other-tasks-offensivecon-2023-bfsmatrix-primary-256a77c1",
      "year": 2023,
      "title": "OffensiveCon 2023: bfsmatrix",
      "item_title": "OffensiveCon 2023: bfsmatrix",
      "authors": [],
      "cves": [],
      "tags": [
        "task"
      ],
      "section": "Practice",
      "subsection": "Other tasks",
      "section_path": "Practice / Other tasks",
      "category": "Practice: Other tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3",
      "primary_url": "https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3",
      "parent_primary_url": "https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other-tasks",
      "raw_path": "/raw/2023-practice-other-tasks-offensivecon-2023-bfsmatrix-primary-256a77c1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# OffensiveCon 2023: bfsmatrix record_kind: linux-kernel-resource-url section: Practice subsection: Other tasks category: Practice: Other tasks item_title: OffensiveCon 2023: bfsmatrix resource_label: primary resource_type: exploit resource_url: https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3 parent_primary_url: https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: [OffensiveCon 2023: bfsmatrix](https://static.bluefrostsecurity.de/files/lab/bfsmatrix_offensivecon2023.tgz) [task] [[exploit](https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU k",
      "link_types": [
        "exploit",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3"
        },
        {
          "label": "OffensiveCon 2023: bfsmatrix",
          "type": "article",
          "url": "https://static.bluefrostsecurity.de/files/lab/bfsmatrix_offensivecon2023.tgz"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "OffensiveCon 2023: bfsmatrix",
            "type": "article",
            "url": "https://static.bluefrostsecurity.de/files/lab/bfsmatrix_offensivecon2023.tgz"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "kernel",
        "OffensiveCon"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "An exploit resource presented at OffensiveCon 2023 focusing on kernel tasks.",
      "summary_zh": "在OffensiveCon 2023上展示的一个专注于内核任务的利用资源。",
      "source_markdown": "[OffensiveCon 2023: bfsmatrix](https://static.bluefrostsecurity.de/files/lab/bfsmatrix_offensivecon2023.tgz) [task] [[exploit](https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3)]",
      "search_text": "offensivecon 2023: bfsmatrix offensivecon 2023: bfsmatrix   task practice other tasks practice: other tasks primary exploit https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3 exploit kernel offensivecon  exploit an exploit resource presented at offensivecon 2023 focusing on kernel tasks. 在offensivecon 2023上展示的一个专注于内核任务的利用资源。 # offensivecon 2023: bfsmatrix record_kind: linux-kernel-resource-url section: practice subsection: other tasks category: practice: other tasks item_title: offensivecon 2023: bfsmatrix resource_label: primary resource_type: exploit resource_url: https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3 parent_primary_url: https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: [offensivecon 2023: bfsmatrix](https://static.bluefrostsecurity.de/files/lab/bfsmatrix_offensivecon2023.tgz) [task] [[exploit](https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu k no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "88b059f21caff86e",
      "item_id": "046f3615846496b5",
      "slug": "2023-practice-other-tasks-offensivecon-2023-bfsmatrix-offensivecon-2023-bfsmatrix-7bc5d59c",
      "year": 2023,
      "title": "OffensiveCon 2023: bfsmatrix · OffensiveCon 2023: bfsmatrix",
      "item_title": "OffensiveCon 2023: bfsmatrix",
      "authors": [],
      "cves": [],
      "tags": [
        "task"
      ],
      "section": "Practice",
      "subsection": "Other tasks",
      "section_path": "Practice / Other tasks",
      "category": "Practice: Other tasks",
      "vulnerability_class": "",
      "resource_label": "OffensiveCon 2023: bfsmatrix",
      "resource_type": "article",
      "resource_url": "https://static.bluefrostsecurity.de/files/lab/bfsmatrix_offensivecon2023.tgz",
      "primary_url": "https://static.bluefrostsecurity.de/files/lab/bfsmatrix_offensivecon2023.tgz",
      "parent_primary_url": "https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other-tasks",
      "raw_path": "/raw/2023-practice-other-tasks-offensivecon-2023-bfsmatrix-offensivecon-2023-bfsmatrix-7bc5d59c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# OffensiveCon 2023: bfsmatrix · OffensiveCon 2023: bfsmatrix record_kind: linux-kernel-resource-url section: Practice subsection: Other tasks category: Practice: Other tasks item_title: OffensiveCon 2023: bfsmatrix resource_label: OffensiveCon 2023: bfsmatrix resource_type: article resource_url: https://static.bluefrostsecurity.de/files/lab/bfsmatrix_offensivecon2023.tgz parent_primary_url: https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: [OffensiveCon 2023: bfsmatrix](https://static.bluefrostsecurity.de/files/lab/bfsmatrix_offensivecon2023.tgz) [task] [[exploit](https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status",
      "link_types": [
        "exploit",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3"
        },
        {
          "label": "OffensiveCon 2023: bfsmatrix",
          "type": "article",
          "url": "https://static.bluefrostsecurity.de/files/lab/bfsmatrix_offensivecon2023.tgz"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "OffensiveCon 2023: bfsmatrix",
            "type": "article",
            "url": "https://static.bluefrostsecurity.de/files/lab/bfsmatrix_offensivecon2023.tgz"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "kernel",
        "OffensiveCon"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "An article detailing the bfsmatrix exploit from OffensiveCon 2023.",
      "summary_zh": "一篇详细介绍OffensiveCon 2023的bfsmatrix利用的文章。",
      "source_markdown": "[OffensiveCon 2023: bfsmatrix](https://static.bluefrostsecurity.de/files/lab/bfsmatrix_offensivecon2023.tgz) [task] [[exploit](https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3)]",
      "search_text": "offensivecon 2023: bfsmatrix · offensivecon 2023: bfsmatrix offensivecon 2023: bfsmatrix   task practice other tasks practice: other tasks offensivecon 2023: bfsmatrix article https://static.bluefrostsecurity.de/files/lab/bfsmatrix_offensivecon2023.tgz exploit kernel offensivecon  exploit an article detailing the bfsmatrix exploit from offensivecon 2023. 一篇详细介绍offensivecon 2023的bfsmatrix利用的文章。 # offensivecon 2023: bfsmatrix · offensivecon 2023: bfsmatrix record_kind: linux-kernel-resource-url section: practice subsection: other tasks category: practice: other tasks item_title: offensivecon 2023: bfsmatrix resource_label: offensivecon 2023: bfsmatrix resource_type: article resource_url: https://static.bluefrostsecurity.de/files/lab/bfsmatrix_offensivecon2023.tgz parent_primary_url: https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3 source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: [offensivecon 2023: bfsmatrix](https://static.bluefrostsecurity.de/files/lab/bfsmatrix_offensivecon2023.tgz) [task] [[exploit](https://gist.github.com/arget13/d4006af981356cdfb0316a722a0c90e3)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "2ca8fa90895f8d92",
      "item_id": "850adbacc8f61434",
      "slug": "2022-practice-other-tasks-ekoparty-2022-blunder-primary-1f6c844a",
      "year": 2022,
      "title": "Ekoparty 2022: blunder",
      "item_title": "Ekoparty 2022: blunder",
      "authors": [],
      "cves": [],
      "tags": [
        "task"
      ],
      "section": "Practice",
      "subsection": "Other tasks",
      "section_path": "Practice / Other tasks",
      "category": "Practice: Other tasks",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://klecko.github.io/posts/bfs-ekoparty-2022/",
      "primary_url": "https://klecko.github.io/posts/bfs-ekoparty-2022/",
      "parent_primary_url": "https://klecko.github.io/posts/bfs-ekoparty-2022/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other-tasks",
      "raw_path": "/raw/2022-practice-other-tasks-ekoparty-2022-blunder-primary-1f6c844a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Ekoparty 2022: blunder record_kind: linux-kernel-resource-url section: Practice subsection: Other tasks category: Practice: Other tasks item_title: Ekoparty 2022: blunder resource_label: primary resource_type: article resource_url: https://klecko.github.io/posts/bfs-ekoparty-2022/ parent_primary_url: https://klecko.github.io/posts/bfs-ekoparty-2022/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: [Ekoparty 2022: blunder](https://static.bluefrostsecurity.de/files/lab/module.tar.gz) [task] [[writeup 1](https://klecko.github.io/posts/bfs-ekoparty-2022/)] [[writeup 2](https://soez.github.io/posts/Bluefrost-challenge-EKOPARTY_2022/)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://klecko.github.io/posts/bfs-ekoparty-2022/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://soez.github.io/posts/Bluefrost-challenge-EKOPARTY_2022/"
        },
        {
          "label": "Ekoparty 2022: blunder",
          "type": "article",
          "url": "https://static.bluefrostsecurity.de/files/lab/module.tar.gz"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://klecko.github.io/posts/bfs-ekoparty-2022/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://soez.github.io/posts/Bluefrost-challenge-EKOPARTY_2022/"
          },
          {
            "label": "Ekoparty 2022: blunder",
            "type": "article",
            "url": "https://static.bluefrostsecurity.de/files/lab/module.tar.gz"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://klecko.github.io/posts/bfs-ekoparty-2022/",
        "https://soez.github.io/posts/Bluefrost-challenge-EKOPARTY_2022/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "Ekoparty",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "exploit",
      "summary_en": "An article discussing the blunder exploit showcased at Ekoparty 2022.",
      "summary_zh": "一篇讨论在Ekoparty 2022上展示的blunder利用的文章。",
      "source_markdown": "[Ekoparty 2022: blunder](https://static.bluefrostsecurity.de/files/lab/module.tar.gz) [task] [[writeup 1](https://klecko.github.io/posts/bfs-ekoparty-2022/)] [[writeup 2](https://soez.github.io/posts/Bluefrost-challenge-EKOPARTY_2022/)]",
      "search_text": "ekoparty 2022: blunder ekoparty 2022: blunder   task practice other tasks practice: other tasks primary article https://klecko.github.io/posts/bfs-ekoparty-2022/ exploit ekoparty kernel  exploit an article discussing the blunder exploit showcased at ekoparty 2022. 一篇讨论在ekoparty 2022上展示的blunder利用的文章。 # ekoparty 2022: blunder record_kind: linux-kernel-resource-url section: practice subsection: other tasks category: practice: other tasks item_title: ekoparty 2022: blunder resource_label: primary resource_type: article resource_url: https://klecko.github.io/posts/bfs-ekoparty-2022/ parent_primary_url: https://klecko.github.io/posts/bfs-ekoparty-2022/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: [ekoparty 2022: blunder](https://static.bluefrostsecurity.de/files/lab/module.tar.gz) [task] [[writeup 1](https://klecko.github.io/posts/bfs-ekoparty-2022/)] [[writeup 2](https://soez.github.io/posts/bluefrost-challenge-ekoparty_2022/)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "fbe451e224f0a028",
      "item_id": "850adbacc8f61434",
      "slug": "2022-practice-other-tasks-ekoparty-2022-blunder-writeup-2-ffe0f905",
      "year": 2022,
      "title": "Ekoparty 2022: blunder · writeup 2",
      "item_title": "Ekoparty 2022: blunder",
      "authors": [],
      "cves": [],
      "tags": [
        "task"
      ],
      "section": "Practice",
      "subsection": "Other tasks",
      "section_path": "Practice / Other tasks",
      "category": "Practice: Other tasks",
      "vulnerability_class": "",
      "resource_label": "writeup 2",
      "resource_type": "article",
      "resource_url": "https://soez.github.io/posts/Bluefrost-challenge-EKOPARTY_2022/",
      "primary_url": "https://soez.github.io/posts/Bluefrost-challenge-EKOPARTY_2022/",
      "parent_primary_url": "https://klecko.github.io/posts/bfs-ekoparty-2022/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other-tasks",
      "raw_path": "/raw/2022-practice-other-tasks-ekoparty-2022-blunder-writeup-2-ffe0f905.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Ekoparty 2022: blunder · writeup 2 record_kind: linux-kernel-resource-url section: Practice subsection: Other tasks category: Practice: Other tasks item_title: Ekoparty 2022: blunder resource_label: writeup 2 resource_type: article resource_url: https://soez.github.io/posts/Bluefrost-challenge-EKOPARTY_2022/ parent_primary_url: https://klecko.github.io/posts/bfs-ekoparty-2022/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: [Ekoparty 2022: blunder](https://static.bluefrostsecurity.de/files/lab/module.tar.gz) [task] [[writeup 1](https://klecko.github.io/posts/bfs-ekoparty-2022/)] [[writeup 2](https://soez.github.io/posts/Bluefrost-challenge-EKOPARTY_2022/)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://klecko.github.io/posts/bfs-ekoparty-2022/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://soez.github.io/posts/Bluefrost-challenge-EKOPARTY_2022/"
        },
        {
          "label": "Ekoparty 2022: blunder",
          "type": "article",
          "url": "https://static.bluefrostsecurity.de/files/lab/module.tar.gz"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://klecko.github.io/posts/bfs-ekoparty-2022/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://soez.github.io/posts/Bluefrost-challenge-EKOPARTY_2022/"
          },
          {
            "label": "Ekoparty 2022: blunder",
            "type": "article",
            "url": "https://static.bluefrostsecurity.de/files/lab/module.tar.gz"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://klecko.github.io/posts/bfs-ekoparty-2022/",
        "https://soez.github.io/posts/Bluefrost-challenge-EKOPARTY_2022/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "playground",
        "Android",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "A playground for practicing Android kernel exploitation techniques.",
      "summary_zh": "一个用于练习Android内核利用技术的游乐场。",
      "source_markdown": "[Ekoparty 2022: blunder](https://static.bluefrostsecurity.de/files/lab/module.tar.gz) [task] [[writeup 1](https://klecko.github.io/posts/bfs-ekoparty-2022/)] [[writeup 2](https://soez.github.io/posts/Bluefrost-challenge-EKOPARTY_2022/)]",
      "search_text": "ekoparty 2022: blunder · writeup 2 ekoparty 2022: blunder   task practice other tasks practice: other tasks writeup 2 article https://soez.github.io/posts/bluefrost-challenge-ekoparty_2022/ playground android exploitation  practice a playground for practicing android kernel exploitation techniques. 一个用于练习android内核利用技术的游乐场。 # ekoparty 2022: blunder · writeup 2 record_kind: linux-kernel-resource-url section: practice subsection: other tasks category: practice: other tasks item_title: ekoparty 2022: blunder resource_label: writeup 2 resource_type: article resource_url: https://soez.github.io/posts/bluefrost-challenge-ekoparty_2022/ parent_primary_url: https://klecko.github.io/posts/bfs-ekoparty-2022/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: [ekoparty 2022: blunder](https://static.bluefrostsecurity.de/files/lab/module.tar.gz) [task] [[writeup 1](https://klecko.github.io/posts/bfs-ekoparty-2022/)] [[writeup 2](https://soez.github.io/posts/bluefrost-challenge-ekoparty_2022/)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "0d64a929645d2aa4",
      "item_id": "850adbacc8f61434",
      "slug": "2022-practice-other-tasks-ekoparty-2022-blunder-ekoparty-2022-blunder-43ecbe37",
      "year": 2022,
      "title": "Ekoparty 2022: blunder · Ekoparty 2022: blunder",
      "item_title": "Ekoparty 2022: blunder",
      "authors": [],
      "cves": [],
      "tags": [
        "task"
      ],
      "section": "Practice",
      "subsection": "Other tasks",
      "section_path": "Practice / Other tasks",
      "category": "Practice: Other tasks",
      "vulnerability_class": "",
      "resource_label": "Ekoparty 2022: blunder",
      "resource_type": "article",
      "resource_url": "https://static.bluefrostsecurity.de/files/lab/module.tar.gz",
      "primary_url": "https://static.bluefrostsecurity.de/files/lab/module.tar.gz",
      "parent_primary_url": "https://klecko.github.io/posts/bfs-ekoparty-2022/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other-tasks",
      "raw_path": "/raw/2022-practice-other-tasks-ekoparty-2022-blunder-ekoparty-2022-blunder-43ecbe37.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Ekoparty 2022: blunder · Ekoparty 2022: blunder record_kind: linux-kernel-resource-url section: Practice subsection: Other tasks category: Practice: Other tasks item_title: Ekoparty 2022: blunder resource_label: Ekoparty 2022: blunder resource_type: article resource_url: https://static.bluefrostsecurity.de/files/lab/module.tar.gz parent_primary_url: https://klecko.github.io/posts/bfs-ekoparty-2022/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: [Ekoparty 2022: blunder](https://static.bluefrostsecurity.de/files/lab/module.tar.gz) [task] [[writeup 1](https://klecko.github.io/posts/bfs-ekoparty-2022/)] [[writeup 2](https://soez.github.io/posts/Bluefrost-challenge-EKOPARTY_2022/)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impa",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://klecko.github.io/posts/bfs-ekoparty-2022/"
        },
        {
          "label": "writeup 2",
          "type": "article",
          "url": "https://soez.github.io/posts/Bluefrost-challenge-EKOPARTY_2022/"
        },
        {
          "label": "Ekoparty 2022: blunder",
          "type": "article",
          "url": "https://static.bluefrostsecurity.de/files/lab/module.tar.gz"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://klecko.github.io/posts/bfs-ekoparty-2022/"
          },
          {
            "label": "writeup 2",
            "type": "article",
            "url": "https://soez.github.io/posts/Bluefrost-challenge-EKOPARTY_2022/"
          },
          {
            "label": "Ekoparty 2022: blunder",
            "type": "article",
            "url": "https://static.bluefrostsecurity.de/files/lab/module.tar.gz"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://klecko.github.io/posts/bfs-ekoparty-2022/",
        "https://soez.github.io/posts/Bluefrost-challenge-EKOPARTY_2022/"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "Other tasks",
        "article",
        "task"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: Other tasks",
      "summary_en": "2022 Linux kernel Practice: Other tasks resource \"Ekoparty 2022: blunder · Ekoparty 2022: blunder\"; URL type: article.",
      "summary_zh": "2022 年 Linux 内核Practice: Other tasks资料：「Ekoparty 2022: blunder · Ekoparty 2022: blunder」；URL 类型：article。",
      "source_markdown": "[Ekoparty 2022: blunder](https://static.bluefrostsecurity.de/files/lab/module.tar.gz) [task] [[writeup 1](https://klecko.github.io/posts/bfs-ekoparty-2022/)] [[writeup 2](https://soez.github.io/posts/Bluefrost-challenge-EKOPARTY_2022/)]",
      "search_text": "ekoparty 2022: blunder · ekoparty 2022: blunder ekoparty 2022: blunder   task practice other tasks practice: other tasks ekoparty 2022: blunder article https://static.bluefrostsecurity.de/files/lab/module.tar.gz practice other tasks article task  practice: other tasks 2022 linux kernel practice: other tasks resource \"ekoparty 2022: blunder · ekoparty 2022: blunder\"; url type: article. 2022 年 linux 内核practice: other tasks资料：「ekoparty 2022: blunder · ekoparty 2022: blunder」；url 类型：article。 # ekoparty 2022: blunder · ekoparty 2022: blunder record_kind: linux-kernel-resource-url section: practice subsection: other tasks category: practice: other tasks item_title: ekoparty 2022: blunder resource_label: ekoparty 2022: blunder resource_type: article resource_url: https://static.bluefrostsecurity.de/files/lab/module.tar.gz parent_primary_url: https://klecko.github.io/posts/bfs-ekoparty-2022/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-tasks source_item: [ekoparty 2022: blunder](https://static.bluefrostsecurity.de/files/lab/module.tar.gz) [task] [[writeup 1](https://klecko.github.io/posts/bfs-ekoparty-2022/)] [[writeup 2](https://soez.github.io/posts/bluefrost-challenge-ekoparty_2022/)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impa no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "f154ff9c91296ee5",
      "item_id": "be9fd0c079142cf8",
      "slug": "undated-practice-playgrounds-fuzion24-androidkernelexploitationplayground-primary-3efacd1f",
      "year": null,
      "title": "Fuzion24/AndroidKernelExploitationPlayground",
      "item_title": "Fuzion24/AndroidKernelExploitationPlayground",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "Playgrounds",
      "section_path": "Practice / Playgrounds",
      "category": "Practice: Playgrounds",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/Fuzion24/AndroidKernelExploitationPlayground",
      "primary_url": "https://github.com/Fuzion24/AndroidKernelExploitationPlayground",
      "parent_primary_url": "https://github.com/Fuzion24/AndroidKernelExploitationPlayground",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#playgrounds",
      "raw_path": "/raw/undated-practice-playgrounds-fuzion24-androidkernelexploitationplayground-primary-3efacd1f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Fuzion24/AndroidKernelExploitationPlayground record_kind: linux-kernel-resource-url section: Practice subsection: Playgrounds category: Practice: Playgrounds item_title: Fuzion24/AndroidKernelExploitationPlayground resource_label: primary resource_type: exploit resource_url: https://github.com/Fuzion24/AndroidKernelExploitationPlayground parent_primary_url: https://github.com/Fuzion24/AndroidKernelExploitationPlayground source_section_url: https://github.com/xairy/linux-kernel-exploitation#playgrounds source_item: https://github.com/Fuzion24/AndroidKernelExploitationPlayground cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://gith",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/Fuzion24/AndroidKernelExploitationPlayground"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/Fuzion24/AndroidKernelExploitationPlayground"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/Fuzion24/AndroidKernelExploitationPlayground"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Practice",
        "Playgrounds",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "Practice: Playgrounds",
      "summary_en": "Undated Linux kernel Practice: Playgrounds resource \"Fuzion24/AndroidKernelExploitationPlayground\"; URL type: exploit.",
      "summary_zh": "未标年份 Linux 内核Practice: Playgrounds资料：「Fuzion24/AndroidKernelExploitationPlayground」；URL 类型：exploit。",
      "source_markdown": "https://github.com/Fuzion24/AndroidKernelExploitationPlayground",
      "search_text": "fuzion24/androidkernelexploitationplayground fuzion24/androidkernelexploitationplayground    practice playgrounds practice: playgrounds primary exploit https://github.com/fuzion24/androidkernelexploitationplayground practice playgrounds exploit  practice: playgrounds undated linux kernel practice: playgrounds resource \"fuzion24/androidkernelexploitationplayground\"; url type: exploit. 未标年份 linux 内核practice: playgrounds资料：「fuzion24/androidkernelexploitationplayground」；url 类型：exploit。 # fuzion24/androidkernelexploitationplayground record_kind: linux-kernel-resource-url section: practice subsection: playgrounds category: practice: playgrounds item_title: fuzion24/androidkernelexploitationplayground resource_label: primary resource_type: exploit resource_url: https://github.com/fuzion24/androidkernelexploitationplayground parent_primary_url: https://github.com/fuzion24/androidkernelexploitationplayground source_section_url: https://github.com/xairy/linux-kernel-exploitation#playgrounds source_item: https://github.com/fuzion24/androidkernelexploitationplayground cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://gith no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "12029399f41399d0",
      "item_id": "fd0dc1cfbf23cb46",
      "slug": "undated-practice-playgrounds-djrbliss-libplayground-primary-e5a46add",
      "year": null,
      "title": "djrbliss/libplayground",
      "item_title": "djrbliss/libplayground",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "Playgrounds",
      "section_path": "Practice / Playgrounds",
      "category": "Practice: Playgrounds",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/djrbliss/libplayground",
      "primary_url": "https://github.com/djrbliss/libplayground",
      "parent_primary_url": "https://github.com/djrbliss/libplayground",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#playgrounds",
      "raw_path": "/raw/undated-practice-playgrounds-djrbliss-libplayground-primary-e5a46add.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# djrbliss/libplayground record_kind: linux-kernel-resource-url section: Practice subsection: Playgrounds category: Practice: Playgrounds item_title: djrbliss/libplayground resource_label: primary resource_type: code resource_url: https://github.com/djrbliss/libplayground parent_primary_url: https://github.com/djrbliss/libplayground source_section_url: https://github.com/xairy/linux-kernel-exploitation#playgrounds source_item: https://github.com/djrbliss/libplayground cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/djrbliss/libplayground context_links: - [code] primary: https://github.com/djrbliss/libplayground fetch_",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/djrbliss/libplayground"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/djrbliss/libplayground"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/djrbliss/libplayground"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "code",
        "kernel",
        "practice"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "A code resource for kernel exploitation practice.",
      "summary_zh": "一个用于内核利用练习的代码资源。",
      "source_markdown": "https://github.com/djrbliss/libplayground",
      "search_text": "djrbliss/libplayground djrbliss/libplayground    practice playgrounds practice: playgrounds primary code https://github.com/djrbliss/libplayground code kernel practice  practice a code resource for kernel exploitation practice. 一个用于内核利用练习的代码资源。 # djrbliss/libplayground record_kind: linux-kernel-resource-url section: practice subsection: playgrounds category: practice: playgrounds item_title: djrbliss/libplayground resource_label: primary resource_type: code resource_url: https://github.com/djrbliss/libplayground parent_primary_url: https://github.com/djrbliss/libplayground source_section_url: https://github.com/xairy/linux-kernel-exploitation#playgrounds source_item: https://github.com/djrbliss/libplayground cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/djrbliss/libplayground context_links: - [code] primary: https://github.com/djrbliss/libplayground fetch_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "a0061a2410dee92b",
      "item_id": "35037dcf7660074b",
      "slug": "undated-practice-playgrounds-a13xp0p0v-kernel-hack-drill-primary-fb88bd6e",
      "year": null,
      "title": "a13xp0p0v/kernel-hack-drill",
      "item_title": "a13xp0p0v/kernel-hack-drill",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "Playgrounds",
      "section_path": "Practice / Playgrounds",
      "category": "Practice: Playgrounds",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/a13xp0p0v/kernel-hack-drill",
      "primary_url": "https://github.com/a13xp0p0v/kernel-hack-drill",
      "parent_primary_url": "https://github.com/a13xp0p0v/kernel-hack-drill",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#playgrounds",
      "raw_path": "/raw/undated-practice-playgrounds-a13xp0p0v-kernel-hack-drill-primary-fb88bd6e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# a13xp0p0v/kernel-hack-drill record_kind: linux-kernel-resource-url section: Practice subsection: Playgrounds category: Practice: Playgrounds item_title: a13xp0p0v/kernel-hack-drill resource_label: primary resource_type: code resource_url: https://github.com/a13xp0p0v/kernel-hack-drill parent_primary_url: https://github.com/a13xp0p0v/kernel-hack-drill source_section_url: https://github.com/xairy/linux-kernel-exploitation#playgrounds source_item: https://github.com/a13xp0p0v/kernel-hack-drill cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/a13xp0p0v/kernel-hack-drill context_links: - [code] primary: https://github.com",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/a13xp0p0v/kernel-hack-drill"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/a13xp0p0v/kernel-hack-drill"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/a13xp0p0v/kernel-hack-drill"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "hacking",
        "practice"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "A resource for practicing kernel hacking techniques.",
      "summary_zh": "一个用于练习内核黑客技术的资源。",
      "source_markdown": "https://github.com/a13xp0p0v/kernel-hack-drill",
      "search_text": "a13xp0p0v/kernel-hack-drill a13xp0p0v/kernel-hack-drill    practice playgrounds practice: playgrounds primary code https://github.com/a13xp0p0v/kernel-hack-drill kernel hacking practice  practice a resource for practicing kernel hacking techniques. 一个用于练习内核黑客技术的资源。 # a13xp0p0v/kernel-hack-drill record_kind: linux-kernel-resource-url section: practice subsection: playgrounds category: practice: playgrounds item_title: a13xp0p0v/kernel-hack-drill resource_label: primary resource_type: code resource_url: https://github.com/a13xp0p0v/kernel-hack-drill parent_primary_url: https://github.com/a13xp0p0v/kernel-hack-drill source_section_url: https://github.com/xairy/linux-kernel-exploitation#playgrounds source_item: https://github.com/a13xp0p0v/kernel-hack-drill cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/a13xp0p0v/kernel-hack-drill context_links: - [code] primary: https://github.com no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "672435954b8ea5f8",
      "item_id": "a6c5edfd02c01ab1",
      "slug": "undated-practice-playgrounds-pr0cf5-kernel-exploit-practice-primary-b3402cc3",
      "year": null,
      "title": "pr0cf5/kernel-exploit-practice",
      "item_title": "pr0cf5/kernel-exploit-practice",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "Playgrounds",
      "section_path": "Practice / Playgrounds",
      "category": "Practice: Playgrounds",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/pr0cf5/kernel-exploit-practice",
      "primary_url": "https://github.com/pr0cf5/kernel-exploit-practice",
      "parent_primary_url": "https://github.com/pr0cf5/kernel-exploit-practice",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#playgrounds",
      "raw_path": "/raw/undated-practice-playgrounds-pr0cf5-kernel-exploit-practice-primary-b3402cc3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# pr0cf5/kernel-exploit-practice record_kind: linux-kernel-resource-url section: Practice subsection: Playgrounds category: Practice: Playgrounds item_title: pr0cf5/kernel-exploit-practice resource_label: primary resource_type: exploit resource_url: https://github.com/pr0cf5/kernel-exploit-practice parent_primary_url: https://github.com/pr0cf5/kernel-exploit-practice source_section_url: https://github.com/xairy/linux-kernel-exploitation#playgrounds source_item: https://github.com/pr0cf5/kernel-exploit-practice cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/pr0cf5/kernel-exploit-practice context_links: - [exploit] prima",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/pr0cf5/kernel-exploit-practice"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/pr0cf5/kernel-exploit-practice"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/pr0cf5/kernel-exploit-practice"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploit",
        "kernel",
        "practice"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "An exploit practice resource for kernel vulnerabilities.",
      "summary_zh": "一个用于内核漏洞利用练习的资源。",
      "source_markdown": "https://github.com/pr0cf5/kernel-exploit-practice",
      "search_text": "pr0cf5/kernel-exploit-practice pr0cf5/kernel-exploit-practice    practice playgrounds practice: playgrounds primary exploit https://github.com/pr0cf5/kernel-exploit-practice exploit kernel practice  practice an exploit practice resource for kernel vulnerabilities. 一个用于内核漏洞利用练习的资源。 # pr0cf5/kernel-exploit-practice record_kind: linux-kernel-resource-url section: practice subsection: playgrounds category: practice: playgrounds item_title: pr0cf5/kernel-exploit-practice resource_label: primary resource_type: exploit resource_url: https://github.com/pr0cf5/kernel-exploit-practice parent_primary_url: https://github.com/pr0cf5/kernel-exploit-practice source_section_url: https://github.com/xairy/linux-kernel-exploitation#playgrounds source_item: https://github.com/pr0cf5/kernel-exploit-practice cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/pr0cf5/kernel-exploit-practice context_links: - [exploit] prima no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "676f5170e477be62",
      "item_id": "8308909baecd0c41",
      "slug": "undated-practice-playgrounds-hardik05-damn-vulnerable-kernel-module-primary-b75e2397",
      "year": null,
      "title": "hardik05/Damn_Vulnerable_Kernel_Module",
      "item_title": "hardik05/Damn_Vulnerable_Kernel_Module",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "Playgrounds",
      "section_path": "Practice / Playgrounds",
      "category": "Practice: Playgrounds",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/hardik05/Damn_Vulnerable_Kernel_Module",
      "primary_url": "https://github.com/hardik05/Damn_Vulnerable_Kernel_Module",
      "parent_primary_url": "https://github.com/hardik05/Damn_Vulnerable_Kernel_Module",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#playgrounds",
      "raw_path": "/raw/undated-practice-playgrounds-hardik05-damn-vulnerable-kernel-module-primary-b75e2397.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# hardik05/Damn_Vulnerable_Kernel_Module record_kind: linux-kernel-resource-url section: Practice subsection: Playgrounds category: Practice: Playgrounds item_title: hardik05/Damn_Vulnerable_Kernel_Module resource_label: primary resource_type: code resource_url: https://github.com/hardik05/Damn_Vulnerable_Kernel_Module parent_primary_url: https://github.com/hardik05/Damn_Vulnerable_Kernel_Module source_section_url: https://github.com/xairy/linux-kernel-exploitation#playgrounds source_item: https://github.com/hardik05/Damn_Vulnerable_Kernel_Module cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/hardik05/Damn_Vulnerable",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/hardik05/Damn_Vulnerable_Kernel_Module"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/hardik05/Damn_Vulnerable_Kernel_Module"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/hardik05/Damn_Vulnerable_Kernel_Module"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerable",
        "kernel",
        "education"
      ],
      "affected_area": "",
      "exploit_stage": "education",
      "summary_en": "A vulnerable kernel module designed for educational purposes.",
      "summary_zh": "一个为教育目的设计的易受攻击的内核模块。",
      "source_markdown": "https://github.com/hardik05/Damn_Vulnerable_Kernel_Module",
      "search_text": "hardik05/damn_vulnerable_kernel_module hardik05/damn_vulnerable_kernel_module    practice playgrounds practice: playgrounds primary code https://github.com/hardik05/damn_vulnerable_kernel_module vulnerable kernel education  education a vulnerable kernel module designed for educational purposes. 一个为教育目的设计的易受攻击的内核模块。 # hardik05/damn_vulnerable_kernel_module record_kind: linux-kernel-resource-url section: practice subsection: playgrounds category: practice: playgrounds item_title: hardik05/damn_vulnerable_kernel_module resource_label: primary resource_type: code resource_url: https://github.com/hardik05/damn_vulnerable_kernel_module parent_primary_url: https://github.com/hardik05/damn_vulnerable_kernel_module source_section_url: https://github.com/xairy/linux-kernel-exploitation#playgrounds source_item: https://github.com/hardik05/damn_vulnerable_kernel_module cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/hardik05/damn_vulnerable no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ebd601acc6024986",
      "item_id": "ab2d900549aab5c9",
      "slug": "undated-practice-playgrounds-kernel-read-write-execute-krwx-primary-e49c1a70",
      "year": null,
      "title": "Kernel Read Write eXecute (KRWX)",
      "item_title": "Kernel Read Write eXecute (KRWX)",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "Playgrounds",
      "section_path": "Practice / Playgrounds",
      "category": "Practice: Playgrounds",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://www.nohat.it/presentations/KRWX_agroppo.pdf",
      "primary_url": "https://www.nohat.it/presentations/KRWX_agroppo.pdf",
      "parent_primary_url": "https://www.nohat.it/presentations/KRWX_agroppo.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#playgrounds",
      "raw_path": "/raw/undated-practice-playgrounds-kernel-read-write-execute-krwx-primary-e49c1a70.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Read Write eXecute (KRWX) record_kind: linux-kernel-resource-url section: Practice subsection: Playgrounds category: Practice: Playgrounds item_title: Kernel Read Write eXecute (KRWX) resource_label: primary resource_type: slides resource_url: https://www.nohat.it/presentations/KRWX_agroppo.pdf parent_primary_url: https://www.nohat.it/presentations/KRWX_agroppo.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#playgrounds source_item: [Kernel Read Write eXecute (KRWX)](https://github.com/hacktivesec/KRWX) [[slides](https://www.nohat.it/presentations/KRWX_agroppo.pdf)] [[playground](https://github.com/hacktivesec/beginner-kernel-exploitation-setup)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's ",
      "link_types": [
        "slides",
        "playground",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.nohat.it/presentations/KRWX_agroppo.pdf"
        },
        {
          "label": "playground",
          "type": "playground",
          "url": "https://github.com/hacktivesec/beginner-kernel-exploitation-setup"
        },
        {
          "label": "Kernel Read Write eXecute (KRWX)",
          "type": "code",
          "url": "https://github.com/hacktivesec/KRWX"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.nohat.it/presentations/KRWX_agroppo.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "Kernel Read Write eXecute (KRWX)",
            "type": "code",
            "url": "https://github.com/hacktivesec/KRWX"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "playground",
            "type": "playground",
            "url": "https://github.com/hacktivesec/beginner-kernel-exploitation-setup"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/hacktivesec/beginner-kernel-exploitation-setup",
        "https://github.com/hacktivesec/KRWX"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "presentation",
        "KRWX",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "education",
      "summary_en": "Slides and resources for Kernel Read Write eXecute (KRWX) presentation.",
      "summary_zh": "关于内核读写执行(KRWX)演示的幻灯片和资源。",
      "source_markdown": "[Kernel Read Write eXecute (KRWX)](https://github.com/hacktivesec/KRWX) [[slides](https://www.nohat.it/presentations/KRWX_agroppo.pdf)] [[playground](https://github.com/hacktivesec/beginner-kernel-exploitation-setup)]",
      "search_text": "kernel read write execute (krwx) kernel read write execute (krwx)    practice playgrounds practice: playgrounds primary slides https://www.nohat.it/presentations/krwx_agroppo.pdf presentation krwx kernel  education slides and resources for kernel read write execute (krwx) presentation. 关于内核读写执行(krwx)演示的幻灯片和资源。 # kernel read write execute (krwx) record_kind: linux-kernel-resource-url section: practice subsection: playgrounds category: practice: playgrounds item_title: kernel read write execute (krwx) resource_label: primary resource_type: slides resource_url: https://www.nohat.it/presentations/krwx_agroppo.pdf parent_primary_url: https://www.nohat.it/presentations/krwx_agroppo.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#playgrounds source_item: [kernel read write execute (krwx)](https://github.com/hacktivesec/krwx) [[slides](https://www.nohat.it/presentations/krwx_agroppo.pdf)] [[playground](https://github.com/hacktivesec/beginner-kernel-exploitation-setup)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "b02c78562c6b624f",
      "item_id": "ab2d900549aab5c9",
      "slug": "undated-practice-playgrounds-kernel-read-write-execute-krwx-playground-a04ec846",
      "year": null,
      "title": "Kernel Read Write eXecute (KRWX) · playground",
      "item_title": "Kernel Read Write eXecute (KRWX)",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "Playgrounds",
      "section_path": "Practice / Playgrounds",
      "category": "Practice: Playgrounds",
      "vulnerability_class": "",
      "resource_label": "playground",
      "resource_type": "playground",
      "resource_url": "https://github.com/hacktivesec/beginner-kernel-exploitation-setup",
      "primary_url": "https://github.com/hacktivesec/beginner-kernel-exploitation-setup",
      "parent_primary_url": "https://www.nohat.it/presentations/KRWX_agroppo.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#playgrounds",
      "raw_path": "/raw/undated-practice-playgrounds-kernel-read-write-execute-krwx-playground-a04ec846.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Read Write eXecute (KRWX) · playground record_kind: linux-kernel-resource-url section: Practice subsection: Playgrounds category: Practice: Playgrounds item_title: Kernel Read Write eXecute (KRWX) resource_label: playground resource_type: playground resource_url: https://github.com/hacktivesec/beginner-kernel-exploitation-setup parent_primary_url: https://www.nohat.it/presentations/KRWX_agroppo.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#playgrounds source_item: [Kernel Read Write eXecute (KRWX)](https://github.com/hacktivesec/KRWX) [[slides](https://www.nohat.it/presentations/KRWX_agroppo.pdf)] [[playground](https://github.com/hacktivesec/beginner-kernel-exploitation-setup)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: P",
      "link_types": [
        "slides",
        "playground",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.nohat.it/presentations/KRWX_agroppo.pdf"
        },
        {
          "label": "playground",
          "type": "playground",
          "url": "https://github.com/hacktivesec/beginner-kernel-exploitation-setup"
        },
        {
          "label": "Kernel Read Write eXecute (KRWX)",
          "type": "code",
          "url": "https://github.com/hacktivesec/KRWX"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.nohat.it/presentations/KRWX_agroppo.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "Kernel Read Write eXecute (KRWX)",
            "type": "code",
            "url": "https://github.com/hacktivesec/KRWX"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "playground",
            "type": "playground",
            "url": "https://github.com/hacktivesec/beginner-kernel-exploitation-setup"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/hacktivesec/beginner-kernel-exploitation-setup",
        "https://github.com/hacktivesec/KRWX"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "playground",
        "KRWX",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "A playground resource for Kernel Read Write eXecute (KRWX) practices.",
      "summary_zh": "一个用于内核读写执行(KRWX)实践的游乐场资源。",
      "source_markdown": "[Kernel Read Write eXecute (KRWX)](https://github.com/hacktivesec/KRWX) [[slides](https://www.nohat.it/presentations/KRWX_agroppo.pdf)] [[playground](https://github.com/hacktivesec/beginner-kernel-exploitation-setup)]",
      "search_text": "kernel read write execute (krwx) · playground kernel read write execute (krwx)    practice playgrounds practice: playgrounds playground playground https://github.com/hacktivesec/beginner-kernel-exploitation-setup playground krwx kernel  practice a playground resource for kernel read write execute (krwx) practices. 一个用于内核读写执行(krwx)实践的游乐场资源。 # kernel read write execute (krwx) · playground record_kind: linux-kernel-resource-url section: practice subsection: playgrounds category: practice: playgrounds item_title: kernel read write execute (krwx) resource_label: playground resource_type: playground resource_url: https://github.com/hacktivesec/beginner-kernel-exploitation-setup parent_primary_url: https://www.nohat.it/presentations/krwx_agroppo.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#playgrounds source_item: [kernel read write execute (krwx)](https://github.com/hacktivesec/krwx) [[slides](https://www.nohat.it/presentations/krwx_agroppo.pdf)] [[playground](https://github.com/hacktivesec/beginner-kernel-exploitation-setup)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: p no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "a7318a856290f1c9",
      "item_id": "ab2d900549aab5c9",
      "slug": "undated-practice-playgrounds-kernel-read-write-execute-krwx-kernel-read-write-execute-krwx-7434d905",
      "year": null,
      "title": "Kernel Read Write eXecute (KRWX) · Kernel Read Write eXecute (KRWX)",
      "item_title": "Kernel Read Write eXecute (KRWX)",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "Playgrounds",
      "section_path": "Practice / Playgrounds",
      "category": "Practice: Playgrounds",
      "vulnerability_class": "",
      "resource_label": "Kernel Read Write eXecute (KRWX)",
      "resource_type": "code",
      "resource_url": "https://github.com/hacktivesec/KRWX",
      "primary_url": "https://github.com/hacktivesec/KRWX",
      "parent_primary_url": "https://www.nohat.it/presentations/KRWX_agroppo.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#playgrounds",
      "raw_path": "/raw/undated-practice-playgrounds-kernel-read-write-execute-krwx-kernel-read-write-execute-krwx-7434d905.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Kernel Read Write eXecute (KRWX) · Kernel Read Write eXecute (KRWX) record_kind: linux-kernel-resource-url section: Practice subsection: Playgrounds category: Practice: Playgrounds item_title: Kernel Read Write eXecute (KRWX) resource_label: Kernel Read Write eXecute (KRWX) resource_type: code resource_url: https://github.com/hacktivesec/KRWX parent_primary_url: https://www.nohat.it/presentations/KRWX_agroppo.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#playgrounds source_item: [Kernel Read Write eXecute (KRWX)](https://github.com/hacktivesec/KRWX) [[slides](https://www.nohat.it/presentations/KRWX_agroppo.pdf)] [[playground](https://github.com/hacktivesec/beginner-kernel-exploitation-setup)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_r",
      "link_types": [
        "slides",
        "playground",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://www.nohat.it/presentations/KRWX_agroppo.pdf"
        },
        {
          "label": "playground",
          "type": "playground",
          "url": "https://github.com/hacktivesec/beginner-kernel-exploitation-setup"
        },
        {
          "label": "Kernel Read Write eXecute (KRWX)",
          "type": "code",
          "url": "https://github.com/hacktivesec/KRWX"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://www.nohat.it/presentations/KRWX_agroppo.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "Kernel Read Write eXecute (KRWX)",
            "type": "code",
            "url": "https://github.com/hacktivesec/KRWX"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "playground",
            "type": "playground",
            "url": "https://github.com/hacktivesec/beginner-kernel-exploitation-setup"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/hacktivesec/beginner-kernel-exploitation-setup",
        "https://github.com/hacktivesec/KRWX"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "code",
        "KRWX",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "education",
      "summary_en": "A code resource related to Kernel Read Write eXecute (KRWX).",
      "summary_zh": "一个与内核读写执行(KRWX)相关的代码资源。",
      "source_markdown": "[Kernel Read Write eXecute (KRWX)](https://github.com/hacktivesec/KRWX) [[slides](https://www.nohat.it/presentations/KRWX_agroppo.pdf)] [[playground](https://github.com/hacktivesec/beginner-kernel-exploitation-setup)]",
      "search_text": "kernel read write execute (krwx) · kernel read write execute (krwx) kernel read write execute (krwx)    practice playgrounds practice: playgrounds kernel read write execute (krwx) code https://github.com/hacktivesec/krwx code krwx kernel  education a code resource related to kernel read write execute (krwx). 一个与内核读写执行(krwx)相关的代码资源。 # kernel read write execute (krwx) · kernel read write execute (krwx) record_kind: linux-kernel-resource-url section: practice subsection: playgrounds category: practice: playgrounds item_title: kernel read write execute (krwx) resource_label: kernel read write execute (krwx) resource_type: code resource_url: https://github.com/hacktivesec/krwx parent_primary_url: https://www.nohat.it/presentations/krwx_agroppo.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#playgrounds source_item: [kernel read write execute (krwx)](https://github.com/hacktivesec/krwx) [[slides](https://www.nohat.it/presentations/krwx_agroppo.pdf)] [[playground](https://github.com/hacktivesec/beginner-kernel-exploitation-setup)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_r no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "f0c466d390b9a421",
      "item_id": "2ad8f107e369140d",
      "slug": "undated-practice-playgrounds-d1sgr4c3-boffer-primary-7cd408e0",
      "year": null,
      "title": "d1sgr4c3/boffer",
      "item_title": "d1sgr4c3/boffer",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "Playgrounds",
      "section_path": "Practice / Playgrounds",
      "category": "Practice: Playgrounds",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/d1sgr4c3/boffer",
      "primary_url": "https://github.com/d1sgr4c3/boffer",
      "parent_primary_url": "https://github.com/d1sgr4c3/boffer",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#playgrounds",
      "raw_path": "/raw/undated-practice-playgrounds-d1sgr4c3-boffer-primary-7cd408e0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# d1sgr4c3/boffer record_kind: linux-kernel-resource-url section: Practice subsection: Playgrounds category: Practice: Playgrounds item_title: d1sgr4c3/boffer resource_label: primary resource_type: code resource_url: https://github.com/d1sgr4c3/boffer parent_primary_url: https://github.com/d1sgr4c3/boffer source_section_url: https://github.com/xairy/linux-kernel-exploitation#playgrounds source_item: https://github.com/d1sgr4c3/boffer cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/d1sgr4c3/boffer context_links: - [code] primary: https://github.com/d1sgr4c3/boffer fetch_status: skipped fetch_note: original URL is prese",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/d1sgr4c3/boffer"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/d1sgr4c3/boffer"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/d1sgr4c3/boffer"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "code",
        "kernel",
        "practice"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "A code resource for practicing kernel exploitation techniques.",
      "summary_zh": "一个用于练习内核利用技术的代码资源。",
      "source_markdown": "https://github.com/d1sgr4c3/boffer",
      "search_text": "d1sgr4c3/boffer d1sgr4c3/boffer    practice playgrounds practice: playgrounds primary code https://github.com/d1sgr4c3/boffer code kernel practice  practice a code resource for practicing kernel exploitation techniques. 一个用于练习内核利用技术的代码资源。 # d1sgr4c3/boffer record_kind: linux-kernel-resource-url section: practice subsection: playgrounds category: practice: playgrounds item_title: d1sgr4c3/boffer resource_label: primary resource_type: code resource_url: https://github.com/d1sgr4c3/boffer parent_primary_url: https://github.com/d1sgr4c3/boffer source_section_url: https://github.com/xairy/linux-kernel-exploitation#playgrounds source_item: https://github.com/d1sgr4c3/boffer cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/d1sgr4c3/boffer context_links: - [code] primary: https://github.com/d1sgr4c3/boffer fetch_status: skipped fetch_note: original url is prese no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6af5fb4d5cf42b27",
      "item_id": "958850d4b8f1e0cb",
      "slug": "undated-practice-infrastructure-mncoppola-linux-kernel-ctf-primary-1f9d2466",
      "year": null,
      "title": "mncoppola/Linux-Kernel-CTF",
      "item_title": "mncoppola/Linux-Kernel-CTF",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "Infrastructure",
      "section_path": "Practice / Infrastructure",
      "category": "Practice: Infrastructure",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "ctf",
      "resource_url": "https://github.com/mncoppola/Linux-Kernel-CTF",
      "primary_url": "https://github.com/mncoppola/Linux-Kernel-CTF",
      "parent_primary_url": "https://github.com/mncoppola/Linux-Kernel-CTF",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#infrastructure",
      "raw_path": "/raw/undated-practice-infrastructure-mncoppola-linux-kernel-ctf-primary-1f9d2466.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# mncoppola/Linux-Kernel-CTF record_kind: linux-kernel-resource-url section: Practice subsection: Infrastructure category: Practice: Infrastructure item_title: mncoppola/Linux-Kernel-CTF resource_label: primary resource_type: ctf resource_url: https://github.com/mncoppola/Linux-Kernel-CTF parent_primary_url: https://github.com/mncoppola/Linux-Kernel-CTF source_section_url: https://github.com/xairy/linux-kernel-exploitation#infrastructure source_item: https://github.com/mncoppola/Linux-Kernel-CTF cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/mncoppola/Linux-Kernel-CTF context_links: - [ctf] primary: https://github.co",
      "link_types": [
        "ctf"
      ],
      "links": [
        {
          "label": "primary",
          "type": "ctf",
          "url": "https://github.com/mncoppola/Linux-Kernel-CTF"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "ctf",
            "url": "https://github.com/mncoppola/Linux-Kernel-CTF"
          }
        ]
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/mncoppola/Linux-Kernel-CTF"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CTF",
        "kernel",
        "challenges"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "A CTF resource focused on Linux kernel challenges.",
      "summary_zh": "一个专注于Linux内核挑战的CTF资源。",
      "source_markdown": "https://github.com/mncoppola/Linux-Kernel-CTF",
      "search_text": "mncoppola/linux-kernel-ctf mncoppola/linux-kernel-ctf    practice infrastructure practice: infrastructure primary ctf https://github.com/mncoppola/linux-kernel-ctf ctf kernel challenges  practice a ctf resource focused on linux kernel challenges. 一个专注于linux内核挑战的ctf资源。 # mncoppola/linux-kernel-ctf record_kind: linux-kernel-resource-url section: practice subsection: infrastructure category: practice: infrastructure item_title: mncoppola/linux-kernel-ctf resource_label: primary resource_type: ctf resource_url: https://github.com/mncoppola/linux-kernel-ctf parent_primary_url: https://github.com/mncoppola/linux-kernel-ctf source_section_url: https://github.com/xairy/linux-kernel-exploitation#infrastructure source_item: https://github.com/mncoppola/linux-kernel-ctf cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/mncoppola/linux-kernel-ctf context_links: - [ctf] primary: https://github.co no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "5e17f0c65e9c9e0c",
      "item_id": "75e38741c19a9928",
      "slug": "2014-practice-infrastructure-crowell-old-blog-primary-6122e149",
      "year": 2014,
      "title": "crowell/old_blog",
      "item_title": "crowell/old_blog",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Practice",
      "subsection": "Infrastructure",
      "section_path": "Practice / Infrastructure",
      "category": "Practice: Infrastructure",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/crowell/old_blog/blob/source/source/_posts/2014-11-24-hosting-a-local-kernel-ctf-challenge.markdown",
      "primary_url": "https://github.com/crowell/old_blog/blob/source/source/_posts/2014-11-24-hosting-a-local-kernel-ctf-challenge.markdown",
      "parent_primary_url": "https://github.com/crowell/old_blog/blob/source/source/_posts/2014-11-24-hosting-a-local-kernel-ctf-challenge.markdown",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#infrastructure",
      "raw_path": "/raw/2014-practice-infrastructure-crowell-old-blog-primary-6122e149.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# crowell/old_blog record_kind: linux-kernel-resource-url section: Practice subsection: Infrastructure category: Practice: Infrastructure item_title: crowell/old_blog resource_label: primary resource_type: code resource_url: https://github.com/crowell/old_blog/blob/source/source/_posts/2014-11-24-hosting-a-local-kernel-ctf-challenge.markdown parent_primary_url: https://github.com/crowell/old_blog/blob/source/source/_posts/2014-11-24-hosting-a-local-kernel-ctf-challenge.markdown source_section_url: https://github.com/xairy/linux-kernel-exploitation#infrastructure source_item: https://github.com/crowell/old_blog/blob/source/source/_posts/2014-11-24-hosting-a-local-kernel-ctf-challenge.markdown cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices us",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/crowell/old_blog/blob/source/source/_posts/2014-11-24-hosting-a-local-kernel-ctf-challenge.markdown"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/crowell/old_blog/blob/source/source/_posts/2014-11-24-hosting-a-local-kernel-ctf-challenge.markdown"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/crowell/old_blog/blob/source/source/_posts/2014-11-24-hosting-a-local-kernel-ctf-challenge.markdown"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "blog",
        "CTF",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "education",
      "summary_en": "A blog resource discussing hosting local kernel CTF challenges.",
      "summary_zh": "一个讨论托管本地内核CTF挑战的博客资源。",
      "source_markdown": "https://github.com/crowell/old_blog/blob/source/source/_posts/2014-11-24-hosting-a-local-kernel-ctf-challenge.markdown",
      "search_text": "crowell/old_blog crowell/old_blog    practice infrastructure practice: infrastructure primary code https://github.com/crowell/old_blog/blob/source/source/_posts/2014-11-24-hosting-a-local-kernel-ctf-challenge.markdown blog ctf kernel  education a blog resource discussing hosting local kernel ctf challenges. 一个讨论托管本地内核ctf挑战的博客资源。 # crowell/old_blog record_kind: linux-kernel-resource-url section: practice subsection: infrastructure category: practice: infrastructure item_title: crowell/old_blog resource_label: primary resource_type: code resource_url: https://github.com/crowell/old_blog/blob/source/source/_posts/2014-11-24-hosting-a-local-kernel-ctf-challenge.markdown parent_primary_url: https://github.com/crowell/old_blog/blob/source/source/_posts/2014-11-24-hosting-a-local-kernel-ctf-challenge.markdown source_section_url: https://github.com/xairy/linux-kernel-exploitation#infrastructure source_item: https://github.com/crowell/old_blog/blob/source/source/_posts/2014-11-24-hosting-a-local-kernel-ctf-challenge.markdown cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices us no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "fb2f002ab650678a",
      "item_id": "d4af86b019f98dd7",
      "slug": "undated-other-lists-grsecurity-pax-citations-in-academic-research-primary-3af9bf8c",
      "year": null,
      "title": "grsecurity/PaX Citations in Academic Research",
      "item_title": "grsecurity/PaX Citations in Academic Research",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Other lists",
      "subsection": "",
      "section_path": "Other lists",
      "category": "Other lists",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://grsecurity.net/research.php",
      "primary_url": "https://grsecurity.net/research.php",
      "parent_primary_url": "https://grsecurity.net/research.php",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other-lists",
      "raw_path": "/raw/undated-other-lists-grsecurity-pax-citations-in-academic-research-primary-3af9bf8c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# grsecurity/PaX Citations in Academic Research record_kind: linux-kernel-resource-url section: Other lists subsection: none category: Other lists item_title: grsecurity/PaX Citations in Academic Research resource_label: primary resource_type: article resource_url: https://grsecurity.net/research.php parent_primary_url: https://grsecurity.net/research.php source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-lists source_item: [grsecurity/PaX Citations in Academic Research](https://grsecurity.net/research.php) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://grsecur",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://grsecurity.net/research.php"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://grsecurity.net/research.php"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "research",
        "grsecurity",
        "PaX"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "A collection of academic research citations related to PaX and grsecurity.",
      "summary_zh": "与PaX和grsecurity相关的学术研究引用集合。",
      "source_markdown": "[grsecurity/PaX Citations in Academic Research](https://grsecurity.net/research.php)",
      "search_text": "grsecurity/pax citations in academic research grsecurity/pax citations in academic research    other lists  other lists primary article https://grsecurity.net/research.php research grsecurity pax  research a collection of academic research citations related to pax and grsecurity. 与pax和grsecurity相关的学术研究引用集合。 # grsecurity/pax citations in academic research record_kind: linux-kernel-resource-url section: other lists subsection: none category: other lists item_title: grsecurity/pax citations in academic research resource_label: primary resource_type: article resource_url: https://grsecurity.net/research.php parent_primary_url: https://grsecurity.net/research.php source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-lists source_item: [grsecurity/pax citations in academic research](https://grsecurity.net/research.php) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://grsecur no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ccac9bc8f0a5b8e2",
      "item_id": "b0165456607179aa",
      "slug": "undated-other-lists-0xricksanchez-paper-collection-primary-e3c84aeb",
      "year": null,
      "title": "0xricksanchez/paper_collection",
      "item_title": "0xricksanchez/paper_collection",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Other lists",
      "subsection": "",
      "section_path": "Other lists",
      "category": "Other lists",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://github.com/0xricksanchez/paper_collection",
      "primary_url": "https://github.com/0xricksanchez/paper_collection",
      "parent_primary_url": "https://github.com/0xricksanchez/paper_collection",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other-lists",
      "raw_path": "/raw/undated-other-lists-0xricksanchez-paper-collection-primary-e3c84aeb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 0xricksanchez/paper_collection record_kind: linux-kernel-resource-url section: Other lists subsection: none category: Other lists item_title: 0xricksanchez/paper_collection resource_label: primary resource_type: paper resource_url: https://github.com/0xricksanchez/paper_collection parent_primary_url: https://github.com/0xricksanchez/paper_collection source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-lists source_item: https://github.com/0xricksanchez/paper_collection cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/0xricksanchez/paper_collection context_links: - [paper] primary: https://gith",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://github.com/0xricksanchez/paper_collection"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://github.com/0xricksanchez/paper_collection"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/0xricksanchez/paper_collection"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "papers",
        "security",
        "research"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "A collection of papers related to security research.",
      "summary_zh": "与安全研究相关的论文集合。",
      "source_markdown": "https://github.com/0xricksanchez/paper_collection",
      "search_text": "0xricksanchez/paper_collection 0xricksanchez/paper_collection    other lists  other lists primary paper https://github.com/0xricksanchez/paper_collection papers security research  research a collection of papers related to security research. 与安全研究相关的论文集合。 # 0xricksanchez/paper_collection record_kind: linux-kernel-resource-url section: other lists subsection: none category: other lists item_title: 0xricksanchez/paper_collection resource_label: primary resource_type: paper resource_url: https://github.com/0xricksanchez/paper_collection parent_primary_url: https://github.com/0xricksanchez/paper_collection source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-lists source_item: https://github.com/0xricksanchez/paper_collection cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/0xricksanchez/paper_collection context_links: - [paper] primary: https://gith no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "4e34ccd5180eeacf",
      "item_id": "0034d4e4434515ea",
      "slug": "undated-other-lists-netkingj-awesome-android-security-primary-85e316a8",
      "year": null,
      "title": "NetKingJ/awesome-android-security",
      "item_title": "NetKingJ/awesome-android-security",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Other lists",
      "subsection": "",
      "section_path": "Other lists",
      "category": "Other lists",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/NetKingJ/awesome-android-security",
      "primary_url": "https://github.com/NetKingJ/awesome-android-security",
      "parent_primary_url": "https://github.com/NetKingJ/awesome-android-security",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other-lists",
      "raw_path": "/raw/undated-other-lists-netkingj-awesome-android-security-primary-85e316a8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# NetKingJ/awesome-android-security record_kind: linux-kernel-resource-url section: Other lists subsection: none category: Other lists item_title: NetKingJ/awesome-android-security resource_label: primary resource_type: code resource_url: https://github.com/NetKingJ/awesome-android-security parent_primary_url: https://github.com/NetKingJ/awesome-android-security source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-lists source_item: https://github.com/NetKingJ/awesome-android-security cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/NetKingJ/awesome-android",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/NetKingJ/awesome-android-security"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/NetKingJ/awesome-android-security"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/NetKingJ/awesome-android-security"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Android",
        "security",
        "resources"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "A curated list of resources focused on Android security.",
      "summary_zh": "一个专注于Android安全的资源汇编。",
      "source_markdown": "https://github.com/NetKingJ/awesome-android-security",
      "search_text": "netkingj/awesome-android-security netkingj/awesome-android-security    other lists  other lists primary code https://github.com/netkingj/awesome-android-security android security resources  research a curated list of resources focused on android security. 一个专注于android安全的资源汇编。 # netkingj/awesome-android-security record_kind: linux-kernel-resource-url section: other lists subsection: none category: other lists item_title: netkingj/awesome-android-security resource_label: primary resource_type: code resource_url: https://github.com/netkingj/awesome-android-security parent_primary_url: https://github.com/netkingj/awesome-android-security source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-lists source_item: https://github.com/netkingj/awesome-android-security cves: none android_impact_status: unknown android_impact_reason: mentions android; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/netkingj/awesome-android unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "cc856b6f40f5a30a",
      "item_id": "caf7aba97f371d65",
      "slug": "undated-other-lists-0xor0ne-awesome-list-primary-6150bc11",
      "year": null,
      "title": "0xor0ne/awesome-list",
      "item_title": "0xor0ne/awesome-list",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Other lists",
      "subsection": "",
      "section_path": "Other lists",
      "category": "Other lists",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/0xor0ne/awesome-list/",
      "primary_url": "https://github.com/0xor0ne/awesome-list/",
      "parent_primary_url": "https://github.com/0xor0ne/awesome-list/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#other-lists",
      "raw_path": "/raw/undated-other-lists-0xor0ne-awesome-list-primary-6150bc11.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 0xor0ne/awesome-list record_kind: linux-kernel-resource-url section: Other lists subsection: none category: Other lists item_title: 0xor0ne/awesome-list resource_label: primary resource_type: code resource_url: https://github.com/0xor0ne/awesome-list/ parent_primary_url: https://github.com/0xor0ne/awesome-list/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-lists source_item: https://github.com/0xor0ne/awesome-list/ cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/0xor0ne/awesome-list/ context_links: - [code] primary: https://github.com/0xor0ne/awesome-list/ fetch_status: skipped fetch_n",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/0xor0ne/awesome-list/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/0xor0ne/awesome-list/"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/0xor0ne/awesome-list/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Other lists",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "Other lists",
      "summary_en": "Undated Linux kernel Other lists resource \"0xor0ne/awesome-list\"; URL type: code.",
      "summary_zh": "未标年份 Linux 内核Other lists资料：「0xor0ne/awesome-list」；URL 类型：code。",
      "source_markdown": "https://github.com/0xor0ne/awesome-list/",
      "search_text": "0xor0ne/awesome-list 0xor0ne/awesome-list    other lists  other lists primary code https://github.com/0xor0ne/awesome-list/ other lists code  other lists undated linux kernel other lists resource \"0xor0ne/awesome-list\"; url type: code. 未标年份 linux 内核other lists资料：「0xor0ne/awesome-list」；url 类型：code。 # 0xor0ne/awesome-list record_kind: linux-kernel-resource-url section: other lists subsection: none category: other lists item_title: 0xor0ne/awesome-list resource_label: primary resource_type: code resource_url: https://github.com/0xor0ne/awesome-list/ parent_primary_url: https://github.com/0xor0ne/awesome-list/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#other-lists source_item: https://github.com/0xor0ne/awesome-list/ cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/0xor0ne/awesome-list/ context_links: - [code] primary: https://github.com/0xor0ne/awesome-list/ fetch_status: skipped fetch_n no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "e32402154c260038",
      "item_id": "f225e6fb834f09b7",
      "slug": "2026-misc-notes-on-io-uring-bugs-exploitation-primary-de656cee",
      "year": 2026,
      "title": "Notes on io_uring bugs & exploitation",
      "item_title": "Notes on io_uring bugs & exploitation",
      "authors": [
        "Moe Acherir"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://mohandacherir.github.io/Qdiv7/posts/io_uring_exploitation/",
      "primary_url": "https://mohandacherir.github.io/Qdiv7/posts/io_uring_exploitation/",
      "parent_primary_url": "https://mohandacherir.github.io/Qdiv7/posts/io_uring_exploitation/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2026-misc-notes-on-io-uring-bugs-exploitation-primary-de656cee.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Notes on io_uring bugs & exploitation record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Notes on io_uring bugs & exploitation resource_label: primary resource_type: article resource_url: https://mohandacherir.github.io/Qdiv7/posts/io_uring_exploitation/ parent_primary_url: https://mohandacherir.github.io/Qdiv7/posts/io_uring_exploitation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"Notes on io_uring bugs & exploitation\" by Moe Acherir](https://mohandacherir.github.io/Qdiv7/posts/io_uring_exploitation/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://mohandacherir.github.io/Qdiv7/posts/io_uring_exploitation/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://mohandacherir.github.io/Qdiv7/posts/io_uring_exploitation/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://mohandacherir.github.io/Qdiv7/posts/io_uring_exploitation/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "io_uring",
        "exploitation",
        "bugs"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article discusses bugs and exploitation techniques related to io_uring in the Linux kernel.",
      "summary_zh": "本文讨论了与Linux内核中io_uring相关的漏洞和利用技术。",
      "source_markdown": "[2026: \"Notes on io_uring bugs & exploitation\" by Moe Acherir](https://mohandacherir.github.io/Qdiv7/posts/io_uring_exploitation/) [article]",
      "search_text": "notes on io_uring bugs & exploitation notes on io_uring bugs & exploitation moe acherir   misc  misc primary article https://mohandacherir.github.io/qdiv7/posts/io_uring_exploitation/ io_uring exploitation bugs  defensive research this article discusses bugs and exploitation techniques related to io_uring in the linux kernel. 本文讨论了与linux内核中io_uring相关的漏洞和利用技术。 # notes on io_uring bugs & exploitation record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: notes on io_uring bugs & exploitation resource_label: primary resource_type: article resource_url: https://mohandacherir.github.io/qdiv7/posts/io_uring_exploitation/ parent_primary_url: https://mohandacherir.github.io/qdiv7/posts/io_uring_exploitation/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"notes on io_uring bugs & exploitation\" by moe acherir](https://mohandacherir.github.io/qdiv7/posts/io_uring_exploitation/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "d7c7ce2dda70f397",
      "item_id": "14d5457ffc5b32be",
      "slug": "2026-misc-68-000-kernel-bug-reproducers-primary-be08eff2",
      "year": 2026,
      "title": "68,000 Kernel Bug Reproducers",
      "item_title": "68,000 Kernel Bug Reproducers",
      "authors": [
        "Palash Oswal"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://oswalpalash.com/68-000-kernel-bug-reproducers/",
      "primary_url": "https://oswalpalash.com/68-000-kernel-bug-reproducers/",
      "parent_primary_url": "https://oswalpalash.com/68-000-kernel-bug-reproducers/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2026-misc-68-000-kernel-bug-reproducers-primary-be08eff2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 68,000 Kernel Bug Reproducers record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: 68,000 Kernel Bug Reproducers resource_label: primary resource_type: article resource_url: https://oswalpalash.com/68-000-kernel-bug-reproducers/ parent_primary_url: https://oswalpalash.com/68-000-kernel-bug-reproducers/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"68,000 Kernel Bug Reproducers\" by Palash Oswal](https://oswalpalash.com/68-000-kernel-bug-reproducers/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] pr",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://oswalpalash.com/68-000-kernel-bug-reproducers/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://oswalpalash.com/68-000-kernel-bug-reproducers/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bug",
        "reproducers",
        "testing"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article presents a collection of 68,000 kernel bug reproducers for testing purposes.",
      "summary_zh": "本文提供了68,000个内核漏洞重现器的集合，用于测试目的。",
      "source_markdown": "[2026: \"68,000 Kernel Bug Reproducers\" by Palash Oswal](https://oswalpalash.com/68-000-kernel-bug-reproducers/) [article]",
      "search_text": "68,000 kernel bug reproducers 68,000 kernel bug reproducers palash oswal   misc  misc primary article https://oswalpalash.com/68-000-kernel-bug-reproducers/ bug reproducers testing  defensive research this article presents a collection of 68,000 kernel bug reproducers for testing purposes. 本文提供了68,000个内核漏洞重现器的集合，用于测试目的。 # 68,000 kernel bug reproducers record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: 68,000 kernel bug reproducers resource_label: primary resource_type: article resource_url: https://oswalpalash.com/68-000-kernel-bug-reproducers/ parent_primary_url: https://oswalpalash.com/68-000-kernel-bug-reproducers/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"68,000 kernel bug reproducers\" by palash oswal](https://oswalpalash.com/68-000-kernel-bug-reproducers/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] pr no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "63e00f755e621688",
      "item_id": "4554a43556c92492",
      "slug": "2026-misc-building-the-pixel-8-kernel-with-mte-kasan-and-kcov-primary-e0faa697",
      "year": 2026,
      "title": "Building the Pixel 8 kernel with MTE, KASAN and KCOV",
      "item_title": "Building the Pixel 8 kernel with MTE, KASAN and KCOV",
      "authors": [
        "Berk Cem Goksel"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://berkgoksel.com/pixel8-kasan-mte-custom-kernel",
      "primary_url": "https://berkgoksel.com/pixel8-kasan-mte-custom-kernel",
      "parent_primary_url": "https://berkgoksel.com/pixel8-kasan-mte-custom-kernel",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2026-misc-building-the-pixel-8-kernel-with-mte-kasan-and-kcov-primary-e0faa697.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Building the Pixel 8 kernel with MTE, KASAN and KCOV record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Building the Pixel 8 kernel with MTE, KASAN and KCOV resource_label: primary resource_type: article resource_url: https://berkgoksel.com/pixel8-kasan-mte-custom-kernel parent_primary_url: https://berkgoksel.com/pixel8-kasan-mte-custom-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"Building the Pixel 8 kernel with MTE, KASAN and KCOV\" by Berk Cem Goksel](https://berkgoksel.com/pixel8-kasan-mte-custom-kernel) [article] cves: none android_impact_status: unknown android_impact_reason: mentions Pixel devices; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rathe",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://berkgoksel.com/pixel8-kasan-mte-custom-kernel"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://berkgoksel.com/pixel8-kasan-mte-custom-kernel"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Pixel devices; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "MTE",
        "KASAN",
        "KCOV"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article discusses building the Pixel 8 kernel with advanced memory error detection features.",
      "summary_zh": "本文讨论了如何构建具有高级内存错误检测功能的Pixel 8内核。",
      "source_markdown": "[2026: \"Building the Pixel 8 kernel with MTE, KASAN and KCOV\" by Berk Cem Goksel](https://berkgoksel.com/pixel8-kasan-mte-custom-kernel) [article]",
      "search_text": "building the pixel 8 kernel with mte, kasan and kcov building the pixel 8 kernel with mte, kasan and kcov berk cem goksel   misc  misc primary article https://berkgoksel.com/pixel8-kasan-mte-custom-kernel mte kasan kcov  defensive research this article discusses building the pixel 8 kernel with advanced memory error detection features. 本文讨论了如何构建具有高级内存错误检测功能的pixel 8内核。 # building the pixel 8 kernel with mte, kasan and kcov record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: building the pixel 8 kernel with mte, kasan and kcov resource_label: primary resource_type: article resource_url: https://berkgoksel.com/pixel8-kasan-mte-custom-kernel parent_primary_url: https://berkgoksel.com/pixel8-kasan-mte-custom-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"building the pixel 8 kernel with mte, kasan and kcov\" by berk cem goksel](https://berkgoksel.com/pixel8-kasan-mte-custom-kernel) [article] cves: none android_impact_status: unknown android_impact_reason: mentions pixel devices; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rathe unknown mentions pixel devices; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "97a288b1e087a1c1",
      "item_id": "d9f46106156f9dc9",
      "slug": "2026-misc-exploring-nvidia-linux-drivers-internals-basics-primary-21271d18",
      "year": 2026,
      "title": "Exploring NVIDIA Linux Drivers Internals Basics",
      "item_title": "Exploring NVIDIA Linux Drivers Internals Basics",
      "authors": [
        "Moe Acherir"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://fuzzinglabs.com/exploring-nvidia-linux-drivers-internals-basics-ioctls/",
      "primary_url": "https://fuzzinglabs.com/exploring-nvidia-linux-drivers-internals-basics-ioctls/",
      "parent_primary_url": "https://fuzzinglabs.com/exploring-nvidia-linux-drivers-internals-basics-ioctls/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2026-misc-exploring-nvidia-linux-drivers-internals-basics-primary-21271d18.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploring NVIDIA Linux Drivers Internals Basics record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Exploring NVIDIA Linux Drivers Internals Basics resource_label: primary resource_type: article resource_url: https://fuzzinglabs.com/exploring-nvidia-linux-drivers-internals-basics-ioctls/ parent_primary_url: https://fuzzinglabs.com/exploring-nvidia-linux-drivers-internals-basics-ioctls/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"Exploring NVIDIA Linux Drivers Internals Basics\" by Moe Acherir](https://fuzzinglabs.com/exploring-nvidia-linux-drivers-internals-basics-ioctls/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XN",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://fuzzinglabs.com/exploring-nvidia-linux-drivers-internals-basics-ioctls/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://fuzzinglabs.com/exploring-nvidia-linux-drivers-internals-basics-ioctls/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "NVIDIA",
        "drivers",
        "internals"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article provides insights into NVIDIA Linux drivers and their internal workings.",
      "summary_zh": "本文提供了关于NVIDIA Linux驱动程序及其内部工作原理的见解。",
      "source_markdown": "[2026: \"Exploring NVIDIA Linux Drivers Internals Basics\" by Moe Acherir](https://fuzzinglabs.com/exploring-nvidia-linux-drivers-internals-basics-ioctls/) [article]",
      "search_text": "exploring nvidia linux drivers internals basics exploring nvidia linux drivers internals basics moe acherir   misc  misc primary article https://fuzzinglabs.com/exploring-nvidia-linux-drivers-internals-basics-ioctls/ nvidia drivers internals  defensive research this article provides insights into nvidia linux drivers and their internal workings. 本文提供了关于nvidia linux驱动程序及其内部工作原理的见解。 # exploring nvidia linux drivers internals basics record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: exploring nvidia linux drivers internals basics resource_label: primary resource_type: article resource_url: https://fuzzinglabs.com/exploring-nvidia-linux-drivers-internals-basics-ioctls/ parent_primary_url: https://fuzzinglabs.com/exploring-nvidia-linux-drivers-internals-basics-ioctls/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"exploring nvidia linux drivers internals basics\" by moe acherir](https://fuzzinglabs.com/exploring-nvidia-linux-drivers-internals-basics-ioctls/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xn no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f53f133324036b83",
      "item_id": "2c4ae575d8eec383",
      "slug": "2026-misc-black-hat-llms-primary-951b6f05",
      "year": 2026,
      "title": "Black-hat LLMs",
      "item_title": "Black-hat LLMs",
      "authors": [
        "Nicholas Carlini"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=1sd26pWhfmg",
      "primary_url": "https://www.youtube.com/watch?v=1sd26pWhfmg",
      "parent_primary_url": "https://www.youtube.com/watch?v=1sd26pWhfmg",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2026-misc-black-hat-llms-primary-951b6f05.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Black-hat LLMs record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Black-hat LLMs resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=1sd26pWhfmg parent_primary_url: https://www.youtube.com/watch?v=1sd26pWhfmg source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"Black-hat LLMs\" by Nicholas Carlini](https://www.youtube.com/watch?v=1sd26pWhfmg) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [video] primary: https://www.youtube.com/watch?v=1sd26pWhfmg fetch_status: skipped fetch_n",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=1sd26pWhfmg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=1sd26pWhfmg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "LLM",
        "security",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This video discusses the implications of black-hat large language models in security contexts.",
      "summary_zh": "本视频讨论了黑帽大型语言模型在安全环境中的影响。",
      "source_markdown": "[2026: \"Black-hat LLMs\" by Nicholas Carlini](https://www.youtube.com/watch?v=1sd26pWhfmg) [video]",
      "search_text": "black-hat llms black-hat llms nicholas carlini   misc  misc primary video https://www.youtube.com/watch?v=1sd26pwhfmg llm security video  defensive research this video discusses the implications of black-hat large language models in security contexts. 本视频讨论了黑帽大型语言模型在安全环境中的影响。 # black-hat llms record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: black-hat llms resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=1sd26pwhfmg parent_primary_url: https://www.youtube.com/watch?v=1sd26pwhfmg source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"black-hat llms\" by nicholas carlini](https://www.youtube.com/watch?v=1sd26pwhfmg) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [video] primary: https://www.youtube.com/watch?v=1sd26pwhfmg fetch_status: skipped fetch_n no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5ce2e0abb132b373",
      "item_id": "b7774c476556847f",
      "slug": "2026-misc-update-on-the-slub-allocator-sheaves-primary-46f52ac9",
      "year": 2026,
      "title": "Update on the SLUB allocator sheaves",
      "item_title": "Update on the SLUB allocator sheaves",
      "authors": [
        "Vlastimil Babka"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://fosdem.org/2026/events/attachments/DPXVYJ-slub-sheaves-update/slides/267397/fosdem-sh_pvi6fpf.pdf",
      "primary_url": "https://fosdem.org/2026/events/attachments/DPXVYJ-slub-sheaves-update/slides/267397/fosdem-sh_pvi6fpf.pdf",
      "parent_primary_url": "https://fosdem.org/2026/events/attachments/DPXVYJ-slub-sheaves-update/slides/267397/fosdem-sh_pvi6fpf.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2026-misc-update-on-the-slub-allocator-sheaves-primary-46f52ac9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Update on the SLUB allocator sheaves record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Update on the SLUB allocator sheaves resource_label: primary resource_type: slides resource_url: https://fosdem.org/2026/events/attachments/DPXVYJ-slub-sheaves-update/slides/267397/fosdem-sh_pvi6fpf.pdf parent_primary_url: https://fosdem.org/2026/events/attachments/DPXVYJ-slub-sheaves-update/slides/267397/fosdem-sh_pvi6fpf.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"Update on the SLUB allocator sheaves\" by Vlastimil Babka](https://fosdem.org/2026/events/attachments/DPXVYJ-slub-sheaves-update/slides/267397/fosdem-sh_pvi6fpf.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impac",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://fosdem.org/2026/events/attachments/DPXVYJ-slub-sheaves-update/slides/267397/fosdem-sh_pvi6fpf.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://fosdem.org/2026/events/attachments/DPXVYJ-slub-sheaves-update/slides/267397/fosdem-sh_pvi6fpf.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "SLUB",
        "allocator",
        "update"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This presentation updates on the SLUB allocator and its improvements in the Linux kernel.",
      "summary_zh": "本演示更新了SLUB分配器及其在Linux内核中的改进。",
      "source_markdown": "[2026: \"Update on the SLUB allocator sheaves\" by Vlastimil Babka](https://fosdem.org/2026/events/attachments/DPXVYJ-slub-sheaves-update/slides/267397/fosdem-sh_pvi6fpf.pdf) [slides]",
      "search_text": "update on the slub allocator sheaves update on the slub allocator sheaves vlastimil babka   misc  misc primary slides https://fosdem.org/2026/events/attachments/dpxvyj-slub-sheaves-update/slides/267397/fosdem-sh_pvi6fpf.pdf slub allocator update  defensive research this presentation updates on the slub allocator and its improvements in the linux kernel. 本演示更新了slub分配器及其在linux内核中的改进。 # update on the slub allocator sheaves record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: update on the slub allocator sheaves resource_label: primary resource_type: slides resource_url: https://fosdem.org/2026/events/attachments/dpxvyj-slub-sheaves-update/slides/267397/fosdem-sh_pvi6fpf.pdf parent_primary_url: https://fosdem.org/2026/events/attachments/dpxvyj-slub-sheaves-update/slides/267397/fosdem-sh_pvi6fpf.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"update on the slub allocator sheaves\" by vlastimil babka](https://fosdem.org/2026/events/attachments/dpxvyj-slub-sheaves-update/slides/267397/fosdem-sh_pvi6fpf.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impac no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c5312e1038fdc670",
      "item_id": "25bcc1a1687c41df",
      "slug": "2026-misc-more-timing-side-channels-for-the-page-cache-primary-d71271f2",
      "year": 2026,
      "title": "More timing side-channels for the page cache",
      "item_title": "More timing side-channels for the page cache",
      "authors": [
        "Daroc Alden"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://lwn.net/Articles/1061743/",
      "primary_url": "https://lwn.net/Articles/1061743/",
      "parent_primary_url": "https://lwn.net/Articles/1061743/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2026-misc-more-timing-side-channels-for-the-page-cache-primary-d71271f2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# More timing side-channels for the page cache record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: More timing side-channels for the page cache resource_label: primary resource_type: article resource_url: https://lwn.net/Articles/1061743/ parent_primary_url: https://lwn.net/Articles/1061743/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"More timing side-channels for the page cache\" by Daroc Alden](https://lwn.net/Articles/1061743/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://lwn.",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://lwn.net/Articles/1061743/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://lwn.net/Articles/1061743/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "timing",
        "side-channels",
        "page cache"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article explores timing side-channels related to the page cache in the Linux kernel.",
      "summary_zh": "本文探讨了与Linux内核中页面缓存相关的时间侧信道。",
      "source_markdown": "[2026: \"More timing side-channels for the page cache\" by Daroc Alden](https://lwn.net/Articles/1061743/) [article]",
      "search_text": "more timing side-channels for the page cache more timing side-channels for the page cache daroc alden   misc  misc primary article https://lwn.net/articles/1061743/ timing side-channels page cache  defensive research this article explores timing side-channels related to the page cache in the linux kernel. 本文探讨了与linux内核中页面缓存相关的时间侧信道。 # more timing side-channels for the page cache record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: more timing side-channels for the page cache resource_label: primary resource_type: article resource_url: https://lwn.net/articles/1061743/ parent_primary_url: https://lwn.net/articles/1061743/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"more timing side-channels for the page cache\" by daroc alden](https://lwn.net/articles/1061743/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://lwn. no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "bc797ce235273458",
      "item_id": "aebce6513ccba909",
      "slug": "2026-misc-process-hijacking-via-pidfd-stealing-file-descriptors-for-post-exploitation-shells-primary-6130b10d",
      "year": 2026,
      "title": "Process Hijacking via pidfd: Stealing File Descriptors for Post-Exploitation Shells",
      "item_title": "Process Hijacking via pidfd: Stealing File Descriptors for Post-Exploitation Shells",
      "authors": [
        "Ali Raza"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://locus-x64.github.io/blog/hijack-pidfd",
      "primary_url": "https://locus-x64.github.io/blog/hijack-pidfd",
      "parent_primary_url": "https://locus-x64.github.io/blog/hijack-pidfd",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2026-misc-process-hijacking-via-pidfd-stealing-file-descriptors-for-post-exploitation-shells-primary-6130b10d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Process Hijacking via pidfd: Stealing File Descriptors for Post-Exploitation Shells record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Process Hijacking via pidfd: Stealing File Descriptors for Post-Exploitation Shells resource_label: primary resource_type: article resource_url: https://locus-x64.github.io/blog/hijack-pidfd parent_primary_url: https://locus-x64.github.io/blog/hijack-pidfd source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"Process Hijacking via pidfd: Stealing File Descriptors for Post-Exploitation Shells\" by Ali Raza](https://locus-x64.github.io/blog/hijack-pidfd) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://locus-x64.github.io/blog/hijack-pidfd"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://locus-x64.github.io/blog/hijack-pidfd"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://locus-x64.github.io/blog/hijack-pidfd"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "pidfd",
        "hijacking",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article discusses process hijacking techniques using pidfd to steal file descriptors.",
      "summary_zh": "本文讨论了使用pidfd进行进程劫持的技术，以窃取文件描述符。",
      "source_markdown": "[2026: \"Process Hijacking via pidfd: Stealing File Descriptors for Post-Exploitation Shells\" by Ali Raza](https://locus-x64.github.io/blog/hijack-pidfd) [article]",
      "search_text": "process hijacking via pidfd: stealing file descriptors for post-exploitation shells process hijacking via pidfd: stealing file descriptors for post-exploitation shells ali raza   misc  misc primary article https://locus-x64.github.io/blog/hijack-pidfd pidfd hijacking exploitation  defensive research this article discusses process hijacking techniques using pidfd to steal file descriptors. 本文讨论了使用pidfd进行进程劫持的技术，以窃取文件描述符。 # process hijacking via pidfd: stealing file descriptors for post-exploitation shells record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: process hijacking via pidfd: stealing file descriptors for post-exploitation shells resource_label: primary resource_type: article resource_url: https://locus-x64.github.io/blog/hijack-pidfd parent_primary_url: https://locus-x64.github.io/blog/hijack-pidfd source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"process hijacking via pidfd: stealing file descriptors for post-exploitation shells\" by ali raza](https://locus-x64.github.io/blog/hijack-pidfd) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3abf59413c4aa09d",
      "item_id": "44ea460d73319551",
      "slug": "2026-misc-hiding-from-the-panic-button-singularity-sysrq-hook-primary-c3e5db82",
      "year": 2026,
      "title": "Hiding from the Panic Button: Singularity SysRq Hook",
      "item_title": "Hiding from the Panic Button: Singularity SysRq Hook",
      "authors": [
        "MatheuZ"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.kyntra.io/Hiding-from-the-Panic-Button-Singularity-SysRq-Hook",
      "primary_url": "https://blog.kyntra.io/Hiding-from-the-Panic-Button-Singularity-SysRq-Hook",
      "parent_primary_url": "https://blog.kyntra.io/Hiding-from-the-Panic-Button-Singularity-SysRq-Hook",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2026-misc-hiding-from-the-panic-button-singularity-sysrq-hook-primary-c3e5db82.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Hiding from the Panic Button: Singularity SysRq Hook record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Hiding from the Panic Button: Singularity SysRq Hook resource_label: primary resource_type: article resource_url: https://blog.kyntra.io/Hiding-from-the-Panic-Button-Singularity-SysRq-Hook parent_primary_url: https://blog.kyntra.io/Hiding-from-the-Panic-Button-Singularity-SysRq-Hook source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"Hiding from the Panic Button: Singularity SysRq Hook\" by MatheuZ](https://blog.kyntra.io/Hiding-from-the-Panic-Button-Singularity-SysRq-Hook) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ke",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.kyntra.io/Hiding-from-the-Panic-Button-Singularity-SysRq-Hook"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.kyntra.io/Hiding-from-the-Panic-Button-Singularity-SysRq-Hook"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "SysRq",
        "hiding",
        "security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article describes a method to hide from the panic button using a SysRq hook.",
      "summary_zh": "本文描述了一种使用SysRq钩子隐藏在紧急按钮下的方法。",
      "source_markdown": "[2026: \"Hiding from the Panic Button: Singularity SysRq Hook\" by MatheuZ](https://blog.kyntra.io/Hiding-from-the-Panic-Button-Singularity-SysRq-Hook) [article]",
      "search_text": "hiding from the panic button: singularity sysrq hook hiding from the panic button: singularity sysrq hook matheuz   misc  misc primary article https://blog.kyntra.io/hiding-from-the-panic-button-singularity-sysrq-hook sysrq hiding security  defensive research this article describes a method to hide from the panic button using a sysrq hook. 本文描述了一种使用sysrq钩子隐藏在紧急按钮下的方法。 # hiding from the panic button: singularity sysrq hook record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: hiding from the panic button: singularity sysrq hook resource_label: primary resource_type: article resource_url: https://blog.kyntra.io/hiding-from-the-panic-button-singularity-sysrq-hook parent_primary_url: https://blog.kyntra.io/hiding-from-the-panic-button-singularity-sysrq-hook source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"hiding from the panic button: singularity sysrq hook\" by matheuz](https://blog.kyntra.io/hiding-from-the-panic-button-singularity-sysrq-hook) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu ke no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "76608d040ebd974e",
      "item_id": "b17628c76260a158",
      "slug": "2026-misc-breaking-ebpf-security-how-kernel-rootkits-blind-observability-tools-primary-6523f031",
      "year": 2026,
      "title": "Breaking eBPF Security: How Kernel Rootkits Blind Observability Tools",
      "item_title": "Breaking eBPF Security: How Kernel Rootkits Blind Observability Tools",
      "authors": [
        "MatheuZ"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://matheuzsecurity.github.io/hacking/ebpf-security-tools-hacking/",
      "primary_url": "https://matheuzsecurity.github.io/hacking/ebpf-security-tools-hacking/",
      "parent_primary_url": "https://matheuzsecurity.github.io/hacking/ebpf-security-tools-hacking/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2026-misc-breaking-ebpf-security-how-kernel-rootkits-blind-observability-tools-primary-6523f031.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Breaking eBPF Security: How Kernel Rootkits Blind Observability Tools record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Breaking eBPF Security: How Kernel Rootkits Blind Observability Tools resource_label: primary resource_type: article resource_url: https://matheuzsecurity.github.io/hacking/ebpf-security-tools-hacking/ parent_primary_url: https://matheuzsecurity.github.io/hacking/ebpf-security-tools-hacking/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"Breaking eBPF Security: How Kernel Rootkits Blind Observability Tools\" by MatheuZ](https://matheuzsecurity.github.io/hacking/ebpf-security-tools-hacking/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Pr",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://matheuzsecurity.github.io/hacking/ebpf-security-tools-hacking/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://matheuzsecurity.github.io/hacking/ebpf-security-tools-hacking/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://matheuzsecurity.github.io/hacking/ebpf-security-tools-hacking/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "eBPF",
        "rootkits",
        "security"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article examines how kernel rootkits can compromise eBPF security and observability tools.",
      "summary_zh": "本文研究了内核根工具如何危害eBPF安全性和可观察性工具。",
      "source_markdown": "[2026: \"Breaking eBPF Security: How Kernel Rootkits Blind Observability Tools\" by MatheuZ](https://matheuzsecurity.github.io/hacking/ebpf-security-tools-hacking/) [article]",
      "search_text": "breaking ebpf security: how kernel rootkits blind observability tools breaking ebpf security: how kernel rootkits blind observability tools matheuz   misc  misc primary article https://matheuzsecurity.github.io/hacking/ebpf-security-tools-hacking/ ebpf rootkits security  defensive research this article examines how kernel rootkits can compromise ebpf security and observability tools. 本文研究了内核根工具如何危害ebpf安全性和可观察性工具。 # breaking ebpf security: how kernel rootkits blind observability tools record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: breaking ebpf security: how kernel rootkits blind observability tools resource_label: primary resource_type: article resource_url: https://matheuzsecurity.github.io/hacking/ebpf-security-tools-hacking/ parent_primary_url: https://matheuzsecurity.github.io/hacking/ebpf-security-tools-hacking/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"breaking ebpf security: how kernel rootkits blind observability tools\" by matheuz](https://matheuzsecurity.github.io/hacking/ebpf-security-tools-hacking/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: pr no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "e07469cb2a3a92fc",
      "item_id": "27fdbb40ef5a429a",
      "slug": "2026-misc-crushing-pwn2own-h1-with-kernel-driver-exploits-primary-773905d6",
      "year": 2026,
      "title": "Crushing Pwn2Own & H1 with Kernel Driver Exploits",
      "item_title": "Crushing Pwn2Own & H1 with Kernel Driver Exploits",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=pcAdNDK-lrs",
      "primary_url": "https://www.youtube.com/watch?v=pcAdNDK-lrs",
      "parent_primary_url": "https://www.youtube.com/watch?v=pcAdNDK-lrs",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2026-misc-crushing-pwn2own-h1-with-kernel-driver-exploits-primary-773905d6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Crushing Pwn2Own & H1 with Kernel Driver Exploits record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Crushing Pwn2Own & H1 with Kernel Driver Exploits resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=pcAdNDK-lrs parent_primary_url: https://www.youtube.com/watch?v=pcAdNDK-lrs source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"Crushing Pwn2Own & H1 with Kernel Driver Exploits\"](https://www.youtube.com/watch?v=pcAdNDK-lrs) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [vide",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=pcAdNDK-lrs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=pcAdNDK-lrs"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Pwn2Own",
        "kernel",
        "exploits"
      ],
      "affected_area": "",
      "exploit_stage": "practice",
      "summary_en": "This video covers kernel driver exploits demonstrated at Pwn2Own and H1 events.",
      "summary_zh": "本视频涵盖了在Pwn2Own和H1活动中展示的内核驱动程序漏洞。",
      "source_markdown": "[2026: \"Crushing Pwn2Own & H1 with Kernel Driver Exploits\"](https://www.youtube.com/watch?v=pcAdNDK-lrs) [video]",
      "search_text": "crushing pwn2own & h1 with kernel driver exploits crushing pwn2own & h1 with kernel driver exploits    misc  misc primary video https://www.youtube.com/watch?v=pcadndk-lrs pwn2own kernel exploits  practice this video covers kernel driver exploits demonstrated at pwn2own and h1 events. 本视频涵盖了在pwn2own和h1活动中展示的内核驱动程序漏洞。 # crushing pwn2own & h1 with kernel driver exploits record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: crushing pwn2own & h1 with kernel driver exploits resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=pcadndk-lrs parent_primary_url: https://www.youtube.com/watch?v=pcadndk-lrs source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2026: \"crushing pwn2own & h1 with kernel driver exploits\"](https://www.youtube.com/watch?v=pcadndk-lrs) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [vide no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "88d414cb51a7af31",
      "item_id": "32249e7d2d36d068",
      "slug": "2025-misc-notes-on-refcounting-and-unix-garbage-collector-in-the-linux-kernel-primary-dbc6fb6f",
      "year": 2025,
      "title": "Notes on refcounting and Unix Garbage Collector in the Linux Kernel",
      "item_title": "Notes on refcounting and Unix Garbage Collector in the Linux Kernel",
      "authors": [
        "Moe Acherir"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://mohandacherir.github.io/Qdiv7/posts/refcounting-linux-kernel/",
      "primary_url": "https://mohandacherir.github.io/Qdiv7/posts/refcounting-linux-kernel/",
      "parent_primary_url": "https://mohandacherir.github.io/Qdiv7/posts/refcounting-linux-kernel/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-notes-on-refcounting-and-unix-garbage-collector-in-the-linux-kernel-primary-dbc6fb6f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Notes on refcounting and Unix Garbage Collector in the Linux Kernel record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Notes on refcounting and Unix Garbage Collector in the Linux Kernel resource_label: primary resource_type: article resource_url: https://mohandacherir.github.io/Qdiv7/posts/refcounting-linux-kernel/ parent_primary_url: https://mohandacherir.github.io/Qdiv7/posts/refcounting-linux-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"Notes on refcounting and Unix Garbage Collector in the Linux Kernel\" by Moe Acherir](https://mohandacherir.github.io/Qdiv7/posts/refcounting-linux-kernel/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Product",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://mohandacherir.github.io/Qdiv7/posts/refcounting-linux-kernel/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://mohandacherir.github.io/Qdiv7/posts/refcounting-linux-kernel/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://mohandacherir.github.io/Qdiv7/posts/refcounting-linux-kernel/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "refcounting",
        "garbage collection",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article discusses refcounting and garbage collection mechanisms in the Linux kernel.",
      "summary_zh": "本文讨论了Linux内核中的引用计数和垃圾收集机制。",
      "source_markdown": "[2025: \"Notes on refcounting and Unix Garbage Collector in the Linux Kernel\" by Moe Acherir](https://mohandacherir.github.io/Qdiv7/posts/refcounting-linux-kernel/) [article]",
      "search_text": "notes on refcounting and unix garbage collector in the linux kernel notes on refcounting and unix garbage collector in the linux kernel moe acherir   misc  misc primary article https://mohandacherir.github.io/qdiv7/posts/refcounting-linux-kernel/ refcounting garbage collection kernel  defensive research this article discusses refcounting and garbage collection mechanisms in the linux kernel. 本文讨论了linux内核中的引用计数和垃圾收集机制。 # notes on refcounting and unix garbage collector in the linux kernel record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: notes on refcounting and unix garbage collector in the linux kernel resource_label: primary resource_type: article resource_url: https://mohandacherir.github.io/qdiv7/posts/refcounting-linux-kernel/ parent_primary_url: https://mohandacherir.github.io/qdiv7/posts/refcounting-linux-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"notes on refcounting and unix garbage collector in the linux kernel\" by moe acherir](https://mohandacherir.github.io/qdiv7/posts/refcounting-linux-kernel/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: product no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "2fe4d4fd0baf6ffa",
      "item_id": "553d0e84a2d9f556",
      "slug": "2025-misc-the-joys-of-linux-kernel-rop-gadget-scanning-primary-b3270be2",
      "year": 2025,
      "title": "The Joys of Linux Kernel ROP Gadget Scanning",
      "item_title": "The Joys of Linux Kernel ROP Gadget Scanning",
      "authors": [
        "Jennifer Miller"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.zolutal.io/joys-of-kernel-rop/",
      "primary_url": "https://blog.zolutal.io/joys-of-kernel-rop/",
      "parent_primary_url": "https://blog.zolutal.io/joys-of-kernel-rop/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-the-joys-of-linux-kernel-rop-gadget-scanning-primary-b3270be2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Joys of Linux Kernel ROP Gadget Scanning record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: The Joys of Linux Kernel ROP Gadget Scanning resource_label: primary resource_type: article resource_url: https://blog.zolutal.io/joys-of-kernel-rop/ parent_primary_url: https://blog.zolutal.io/joys-of-kernel-rop/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"The Joys of Linux Kernel ROP Gadget Scanning\" by Jennifer Miller](https://blog.zolutal.io/joys-of-kernel-rop/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links:",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.zolutal.io/joys-of-kernel-rop/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.zolutal.io/joys-of-kernel-rop/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "ROP",
        "gadget",
        "scanning"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This article explores techniques for scanning ROP gadgets in the Linux kernel.",
      "summary_zh": "本文探讨了在Linux内核中扫描ROP小工具的技术。",
      "source_markdown": "[2025: \"The Joys of Linux Kernel ROP Gadget Scanning\" by Jennifer Miller](https://blog.zolutal.io/joys-of-kernel-rop/) [article]",
      "search_text": "the joys of linux kernel rop gadget scanning the joys of linux kernel rop gadget scanning jennifer miller   misc  misc primary article https://blog.zolutal.io/joys-of-kernel-rop/ rop gadget scanning  defensive research this article explores techniques for scanning rop gadgets in the linux kernel. 本文探讨了在linux内核中扫描rop小工具的技术。 # the joys of linux kernel rop gadget scanning record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: the joys of linux kernel rop gadget scanning resource_label: primary resource_type: article resource_url: https://blog.zolutal.io/joys-of-kernel-rop/ parent_primary_url: https://blog.zolutal.io/joys-of-kernel-rop/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"the joys of linux kernel rop gadget scanning\" by jennifer miller](https://blog.zolutal.io/joys-of-kernel-rop/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "6e0df9c8203bdc06",
      "item_id": "97dc9d81d1c4042e",
      "slug": "2025-misc-singularity-deep-dive-into-a-modern-stealth-linux-kernel-rootkit-primary-b025e12a",
      "year": 2025,
      "title": "Singularity: Deep Dive into a Modern Stealth Linux Kernel Rootkit",
      "item_title": "Singularity: Deep Dive into a Modern Stealth Linux Kernel Rootkit",
      "authors": [
        "MatheuZSec"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.kyntra.io/Singularity-A-final-boss-linux-kernel-rootkit",
      "primary_url": "https://blog.kyntra.io/Singularity-A-final-boss-linux-kernel-rootkit",
      "parent_primary_url": "https://blog.kyntra.io/Singularity-A-final-boss-linux-kernel-rootkit",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-singularity-deep-dive-into-a-modern-stealth-linux-kernel-rootkit-primary-b025e12a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Singularity: Deep Dive into a Modern Stealth Linux Kernel Rootkit record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Singularity: Deep Dive into a Modern Stealth Linux Kernel Rootkit resource_label: primary resource_type: article resource_url: https://blog.kyntra.io/Singularity-A-final-boss-linux-kernel-rootkit parent_primary_url: https://blog.kyntra.io/Singularity-A-final-boss-linux-kernel-rootkit source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"Singularity: Deep Dive into a Modern Stealth Linux Kernel Rootkit\" by MatheuZSec](https://blog.kyntra.io/Singularity-A-final-boss-linux-kernel-rootkit) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS de",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.kyntra.io/Singularity-A-final-boss-linux-kernel-rootkit"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.kyntra.io/Singularity-A-final-boss-linux-kernel-rootkit"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "rootkit",
        "stealth",
        "Linux"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article explores the capabilities and stealth features of a modern Linux kernel rootkit named Singularity.",
      "summary_zh": "本文探讨了一种名为Singularity的现代Linux内核根工具的能力和隐蔽特性。",
      "source_markdown": "[2025: \"Singularity: Deep Dive into a Modern Stealth Linux Kernel Rootkit\" by MatheuZSec](https://blog.kyntra.io/Singularity-A-final-boss-linux-kernel-rootkit) [article]",
      "search_text": "singularity: deep dive into a modern stealth linux kernel rootkit singularity: deep dive into a modern stealth linux kernel rootkit matheuzsec   misc  misc primary article https://blog.kyntra.io/singularity-a-final-boss-linux-kernel-rootkit rootkit stealth linux  research this article explores the capabilities and stealth features of a modern linux kernel rootkit named singularity. 本文探讨了一种名为singularity的现代linux内核根工具的能力和隐蔽特性。 # singularity: deep dive into a modern stealth linux kernel rootkit record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: singularity: deep dive into a modern stealth linux kernel rootkit resource_label: primary resource_type: article resource_url: https://blog.kyntra.io/singularity-a-final-boss-linux-kernel-rootkit parent_primary_url: https://blog.kyntra.io/singularity-a-final-boss-linux-kernel-rootkit source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"singularity: deep dive into a modern stealth linux kernel rootkit\" by matheuzsec](https://blog.kyntra.io/singularity-a-final-boss-linux-kernel-rootkit) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios de no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "062510c75c8cb7d9",
      "item_id": "d1c4bd1330c35a1d",
      "slug": "2025-misc-exploiting-a-13-years-old-bug-on-qemu-primary-bc8a2fdb",
      "year": 2025,
      "title": "Exploiting a 13-years old bug on QEMU",
      "item_title": "Exploiting a 13-years old bug on QEMU",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://kqx.io/post/qemu-nday/",
      "primary_url": "https://kqx.io/post/qemu-nday/",
      "parent_primary_url": "https://kqx.io/post/qemu-nday/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-exploiting-a-13-years-old-bug-on-qemu-primary-bc8a2fdb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Exploiting a 13-years old bug on QEMU record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Exploiting a 13-years old bug on QEMU resource_label: primary resource_type: article resource_url: https://kqx.io/post/qemu-nday/ parent_primary_url: https://kqx.io/post/qemu-nday/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"Exploiting a 13-years old bug on QEMU\"](https://kqx.io/post/qemu-nday/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://kqx.io/post/qemu-nday/ fetch_status: skipped fetc",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kqx.io/post/qemu-nday/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kqx.io/post/qemu-nday/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "QEMU",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "The article discusses the exploitation of a 13-year-old vulnerability in QEMU, highlighting its implications.",
      "summary_zh": "本文讨论了对QEMU中一个13年漏洞的利用，强调了其影响。",
      "source_markdown": "[2025: \"Exploiting a 13-years old bug on QEMU\"](https://kqx.io/post/qemu-nday/) [article]",
      "search_text": "exploiting a 13-years old bug on qemu exploiting a 13-years old bug on qemu    misc  misc primary article https://kqx.io/post/qemu-nday/ vulnerability qemu exploit  research the article discusses the exploitation of a 13-year-old vulnerability in qemu, highlighting its implications. 本文讨论了对qemu中一个13年漏洞的利用，强调了其影响。 # exploiting a 13-years old bug on qemu record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: exploiting a 13-years old bug on qemu resource_label: primary resource_type: article resource_url: https://kqx.io/post/qemu-nday/ parent_primary_url: https://kqx.io/post/qemu-nday/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"exploiting a 13-years old bug on qemu\"](https://kqx.io/post/qemu-nday/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://kqx.io/post/qemu-nday/ fetch_status: skipped fetc no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "188974c95b1b26e0",
      "item_id": "f4b1a0a0ad375c89",
      "slug": "2025-misc-linkpro-ebpf-rootkit-analysis-primary-a2c8cc6a",
      "year": 2025,
      "title": "LinkPro: eBPF rootkit analysis",
      "item_title": "LinkPro: eBPF rootkit analysis",
      "authors": [
        "Théo Letailleur"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.synacktiv.com/en/publications/linkpro-ebpf-rootkit-analysis",
      "primary_url": "https://www.synacktiv.com/en/publications/linkpro-ebpf-rootkit-analysis",
      "parent_primary_url": "https://www.synacktiv.com/en/publications/linkpro-ebpf-rootkit-analysis",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-linkpro-ebpf-rootkit-analysis-primary-a2c8cc6a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# LinkPro: eBPF rootkit analysis record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: LinkPro: eBPF rootkit analysis resource_label: primary resource_type: article resource_url: https://www.synacktiv.com/en/publications/linkpro-ebpf-rootkit-analysis parent_primary_url: https://www.synacktiv.com/en/publications/linkpro-ebpf-rootkit-analysis source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"LinkPro: eBPF rootkit analysis\" by Théo Letailleur](https://www.synacktiv.com/en/publications/linkpro-ebpf-rootkit-analysis) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.synacktiv.com/en/publications/linkpro-ebpf-rootkit-analysis"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.synacktiv.com/en/publications/linkpro-ebpf-rootkit-analysis"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "eBPF",
        "rootkit",
        "analysis"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "LinkPro provides an analysis of an eBPF rootkit, detailing its functionality and impact.",
      "summary_zh": "LinkPro提供了对eBPF根工具的分析，详细说明了其功能和影响。",
      "source_markdown": "[2025: \"LinkPro: eBPF rootkit analysis\" by Théo Letailleur](https://www.synacktiv.com/en/publications/linkpro-ebpf-rootkit-analysis) [article]",
      "search_text": "linkpro: ebpf rootkit analysis linkpro: ebpf rootkit analysis théo letailleur   misc  misc primary article https://www.synacktiv.com/en/publications/linkpro-ebpf-rootkit-analysis ebpf rootkit analysis  research linkpro provides an analysis of an ebpf rootkit, detailing its functionality and impact. linkpro提供了对ebpf根工具的分析，详细说明了其功能和影响。 # linkpro: ebpf rootkit analysis record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: linkpro: ebpf rootkit analysis resource_label: primary resource_type: article resource_url: https://www.synacktiv.com/en/publications/linkpro-ebpf-rootkit-analysis parent_primary_url: https://www.synacktiv.com/en/publications/linkpro-ebpf-rootkit-analysis source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"linkpro: ebpf rootkit analysis\" by théo letailleur](https://www.synacktiv.com/en/publications/linkpro-ebpf-rootkit-analysis) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "02954c3435f68ff7",
      "item_id": "2e527127f1e98ee9",
      "slug": "2025-misc-the-anatomy-of-a-bug-6-months-at-star-labs-primary-9add2048",
      "year": 2025,
      "title": "The anatomy of a bug: 6 Months at STAR Labs",
      "item_title": "The anatomy of a bug: 6 Months at STAR Labs",
      "authors": [
        "Gerrard Tai"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://gerrardtai.com/anatomy-of-a-bug",
      "primary_url": "https://gerrardtai.com/anatomy-of-a-bug",
      "parent_primary_url": "https://gerrardtai.com/anatomy-of-a-bug",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-the-anatomy-of-a-bug-6-months-at-star-labs-primary-9add2048.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The anatomy of a bug: 6 Months at STAR Labs record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: The anatomy of a bug: 6 Months at STAR Labs resource_label: primary resource_type: article resource_url: https://gerrardtai.com/anatomy-of-a-bug parent_primary_url: https://gerrardtai.com/anatomy-of-a-bug source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"The anatomy of a bug: 6 Months at STAR Labs\" by Gerrard Tai](https://gerrardtai.com/anatomy-of-a-bug) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primar",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://gerrardtai.com/anatomy-of-a-bug"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://gerrardtai.com/anatomy-of-a-bug"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bug",
        "vulnerability",
        "research"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article reflects on the bug-fixing process over six months at STAR Labs, offering insights into software vulnerabilities.",
      "summary_zh": "本文回顾了在STAR实验室六个月的漏洞修复过程，提供了对软件漏洞的见解。",
      "source_markdown": "[2025: \"The anatomy of a bug: 6 Months at STAR Labs\" by Gerrard Tai](https://gerrardtai.com/anatomy-of-a-bug) [article]",
      "search_text": "the anatomy of a bug: 6 months at star labs the anatomy of a bug: 6 months at star labs gerrard tai   misc  misc primary article https://gerrardtai.com/anatomy-of-a-bug bug vulnerability research  research this article reflects on the bug-fixing process over six months at star labs, offering insights into software vulnerabilities. 本文回顾了在star实验室六个月的漏洞修复过程，提供了对软件漏洞的见解。 # the anatomy of a bug: 6 months at star labs record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: the anatomy of a bug: 6 months at star labs resource_label: primary resource_type: article resource_url: https://gerrardtai.com/anatomy-of-a-bug parent_primary_url: https://gerrardtai.com/anatomy-of-a-bug source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"the anatomy of a bug: 6 months at star labs\" by gerrard tai](https://gerrardtai.com/anatomy-of-a-bug) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primar no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "717db1d0550ed9c6",
      "item_id": "347acc60c504aa4c",
      "slug": "2025-misc-qualcomm-dsp-kernel-internals-primary-adc2b4d0",
      "year": 2025,
      "title": "Qualcomm DSP Kernel Internals",
      "item_title": "Qualcomm DSP Kernel Internals",
      "authors": [
        "Shreyas Penkar"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://streypaws.github.io/posts/DSP-Kernel-Internals/",
      "primary_url": "https://streypaws.github.io/posts/DSP-Kernel-Internals/",
      "parent_primary_url": "https://streypaws.github.io/posts/DSP-Kernel-Internals/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-qualcomm-dsp-kernel-internals-primary-adc2b4d0.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Qualcomm DSP Kernel Internals record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Qualcomm DSP Kernel Internals resource_label: primary resource_type: article resource_url: https://streypaws.github.io/posts/DSP-Kernel-Internals/ parent_primary_url: https://streypaws.github.io/posts/DSP-Kernel-Internals/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"Qualcomm DSP Kernel Internals\" by Shreyas Penkar](https://streypaws.github.io/posts/DSP-Kernel-Internals/) [article] cves: none android_impact_status: unknown android_impact_reason: mentions Qualcomm/Adreno Android SoC components; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: f",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://streypaws.github.io/posts/DSP-Kernel-Internals/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://streypaws.github.io/posts/DSP-Kernel-Internals/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://streypaws.github.io/posts/DSP-Kernel-Internals/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Qualcomm/Adreno Android SoC components; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Qualcomm",
        "DSP",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "The article delves into the internals of Qualcomm DSP kernel, providing insights into its architecture and security.",
      "summary_zh": "本文深入探讨了Qualcomm DSP内核的内部结构，提供了对其架构和安全性的见解。",
      "source_markdown": "[2025: \"Qualcomm DSP Kernel Internals\" by Shreyas Penkar](https://streypaws.github.io/posts/DSP-Kernel-Internals/) [article]",
      "search_text": "qualcomm dsp kernel internals qualcomm dsp kernel internals shreyas penkar   misc  misc primary article https://streypaws.github.io/posts/dsp-kernel-internals/ qualcomm dsp kernel  research the article delves into the internals of qualcomm dsp kernel, providing insights into its architecture and security. 本文深入探讨了qualcomm dsp内核的内部结构，提供了对其架构和安全性的见解。 # qualcomm dsp kernel internals record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: qualcomm dsp kernel internals resource_label: primary resource_type: article resource_url: https://streypaws.github.io/posts/dsp-kernel-internals/ parent_primary_url: https://streypaws.github.io/posts/dsp-kernel-internals/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"qualcomm dsp kernel internals\" by shreyas penkar](https://streypaws.github.io/posts/dsp-kernel-internals/) [article] cves: none android_impact_status: unknown android_impact_reason: mentions qualcomm/adreno android soc components; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: f unknown mentions qualcomm/adreno android soc components; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "5ae0842de400b81a",
      "item_id": "9dbedc7fd084a96c",
      "slug": "2025-misc-debugging-the-pixel-8-kernel-via-kgdb-primary-b894289e",
      "year": 2025,
      "title": "Debugging the Pixel 8 kernel via KGDB",
      "item_title": "Debugging the Pixel 8 kernel via KGDB",
      "authors": [
        "Andrey Konovalov"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://xairy.io/articles/pixel-kgdb",
      "primary_url": "https://xairy.io/articles/pixel-kgdb",
      "parent_primary_url": "https://xairy.io/articles/pixel-kgdb",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-debugging-the-pixel-8-kernel-via-kgdb-primary-b894289e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Debugging the Pixel 8 kernel via KGDB record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Debugging the Pixel 8 kernel via KGDB resource_label: primary resource_type: article resource_url: https://xairy.io/articles/pixel-kgdb parent_primary_url: https://xairy.io/articles/pixel-kgdb source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"Debugging the Pixel 8 kernel via KGDB\" by Andrey Konovalov](https://xairy.io/articles/pixel-kgdb) [article] cves: none android_impact_status: unknown android_impact_reason: mentions Pixel devices; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_li",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://xairy.io/articles/pixel-kgdb"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://xairy.io/articles/pixel-kgdb"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Pixel devices; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "debugging",
        "Pixel 8",
        "KGDB"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article discusses debugging techniques for the Pixel 8 kernel using KGDB, enhancing kernel development practices.",
      "summary_zh": "本文讨论了使用KGDB调试Pixel 8内核的技术，增强了内核开发实践。",
      "source_markdown": "[2025: \"Debugging the Pixel 8 kernel via KGDB\" by Andrey Konovalov](https://xairy.io/articles/pixel-kgdb) [article]",
      "search_text": "debugging the pixel 8 kernel via kgdb debugging the pixel 8 kernel via kgdb andrey konovalov   misc  misc primary article https://xairy.io/articles/pixel-kgdb debugging pixel 8 kgdb  research this article discusses debugging techniques for the pixel 8 kernel using kgdb, enhancing kernel development practices. 本文讨论了使用kgdb调试pixel 8内核的技术，增强了内核开发实践。 # debugging the pixel 8 kernel via kgdb record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: debugging the pixel 8 kernel via kgdb resource_label: primary resource_type: article resource_url: https://xairy.io/articles/pixel-kgdb parent_primary_url: https://xairy.io/articles/pixel-kgdb source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"debugging the pixel 8 kernel via kgdb\" by andrey konovalov](https://xairy.io/articles/pixel-kgdb) [article] cves: none android_impact_status: unknown android_impact_reason: mentions pixel devices; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_li unknown mentions pixel devices; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "075b66bfdff97dae",
      "item_id": "36b5cece5e2bf299",
      "slug": "2025-misc-triaging-cves-for-the-linux-kernel-primary-2c88ce6a",
      "year": 2025,
      "title": "Triaging CVEs for the Linux Kernel",
      "item_title": "Triaging CVEs for the Linux Kernel",
      "authors": [
        "Christoph Steiger"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://opensource.siemens.com/events/2025/slides/Christoph_Steiger__Triaging_CVEs_for_the_Linux_Kernel.pdf",
      "primary_url": "https://opensource.siemens.com/events/2025/slides/Christoph_Steiger__Triaging_CVEs_for_the_Linux_Kernel.pdf",
      "parent_primary_url": "https://opensource.siemens.com/events/2025/slides/Christoph_Steiger__Triaging_CVEs_for_the_Linux_Kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-triaging-cves-for-the-linux-kernel-primary-2c88ce6a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Triaging CVEs for the Linux Kernel record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Triaging CVEs for the Linux Kernel resource_label: primary resource_type: slides resource_url: https://opensource.siemens.com/events/2025/slides/Christoph_Steiger__Triaging_CVEs_for_the_Linux_Kernel.pdf parent_primary_url: https://opensource.siemens.com/events/2025/slides/Christoph_Steiger__Triaging_CVEs_for_the_Linux_Kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"Triaging CVEs for the Linux Kernel\" by Christoph Steiger](https://opensource.siemens.com/events/2025/slides/Christoph_Steiger__Triaging_CVEs_for_the_Linux_Kernel.pdf) [slides] [[video](https://www.youtube.com/watch?v=YAJOPgehFT0)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://opensource.siemens.com/events/2025/slides/Christoph_Steiger__Triaging_CVEs_for_the_Linux_Kernel.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=YAJOPgehFT0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://opensource.siemens.com/events/2025/slides/Christoph_Steiger__Triaging_CVEs_for_the_Linux_Kernel.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=YAJOPgehFT0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE",
        "triaging",
        "Linux kernel"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "The slides present a framework for triaging CVEs in the Linux kernel, aimed at improving vulnerability management.",
      "summary_zh": "这些幻灯片展示了一个用于对Linux内核中的CVE进行分类的框架，旨在改善漏洞管理。",
      "source_markdown": "[2025: \"Triaging CVEs for the Linux Kernel\" by Christoph Steiger](https://opensource.siemens.com/events/2025/slides/Christoph_Steiger__Triaging_CVEs_for_the_Linux_Kernel.pdf) [slides] [[video](https://www.youtube.com/watch?v=YAJOPgehFT0)]",
      "search_text": "triaging cves for the linux kernel triaging cves for the linux kernel christoph steiger   misc  misc primary slides https://opensource.siemens.com/events/2025/slides/christoph_steiger__triaging_cves_for_the_linux_kernel.pdf cve triaging linux kernel  research the slides present a framework for triaging cves in the linux kernel, aimed at improving vulnerability management. 这些幻灯片展示了一个用于对linux内核中的cve进行分类的框架，旨在改善漏洞管理。 # triaging cves for the linux kernel record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: triaging cves for the linux kernel resource_label: primary resource_type: slides resource_url: https://opensource.siemens.com/events/2025/slides/christoph_steiger__triaging_cves_for_the_linux_kernel.pdf parent_primary_url: https://opensource.siemens.com/events/2025/slides/christoph_steiger__triaging_cves_for_the_linux_kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"triaging cves for the linux kernel\" by christoph steiger](https://opensource.siemens.com/events/2025/slides/christoph_steiger__triaging_cves_for_the_linux_kernel.pdf) [slides] [[video](https://www.youtube.com/watch?v=yajopgehft0)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "febf86958d8eca59",
      "item_id": "36b5cece5e2bf299",
      "slug": "2025-misc-triaging-cves-for-the-linux-kernel-video-9e7df28c",
      "year": 2025,
      "title": "Triaging CVEs for the Linux Kernel · video",
      "item_title": "Triaging CVEs for the Linux Kernel",
      "authors": [
        "Christoph Steiger"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=YAJOPgehFT0",
      "primary_url": "https://www.youtube.com/watch?v=YAJOPgehFT0",
      "parent_primary_url": "https://opensource.siemens.com/events/2025/slides/Christoph_Steiger__Triaging_CVEs_for_the_Linux_Kernel.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-triaging-cves-for-the-linux-kernel-video-9e7df28c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Triaging CVEs for the Linux Kernel · video record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Triaging CVEs for the Linux Kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=YAJOPgehFT0 parent_primary_url: https://opensource.siemens.com/events/2025/slides/Christoph_Steiger__Triaging_CVEs_for_the_Linux_Kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"Triaging CVEs for the Linux Kernel\" by Christoph Steiger](https://opensource.siemens.com/events/2025/slides/Christoph_Steiger__Triaging_CVEs_for_the_Linux_Kernel.pdf) [slides] [[video](https://www.youtube.com/watch?v=YAJOPgehFT0)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://opensource.siemens.com/events/2025/slides/Christoph_Steiger__Triaging_CVEs_for_the_Linux_Kernel.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=YAJOPgehFT0"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://opensource.siemens.com/events/2025/slides/Christoph_Steiger__Triaging_CVEs_for_the_Linux_Kernel.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=YAJOPgehFT0"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE",
        "triaging",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This video complements the slides on triaging CVEs for the Linux kernel, providing additional insights.",
      "summary_zh": "该视频补充了关于Linux内核CVE分类的幻灯片，提供了额外的见解。",
      "source_markdown": "[2025: \"Triaging CVEs for the Linux Kernel\" by Christoph Steiger](https://opensource.siemens.com/events/2025/slides/Christoph_Steiger__Triaging_CVEs_for_the_Linux_Kernel.pdf) [slides] [[video](https://www.youtube.com/watch?v=YAJOPgehFT0)]",
      "search_text": "triaging cves for the linux kernel · video triaging cves for the linux kernel christoph steiger   misc  misc video video https://www.youtube.com/watch?v=yajopgehft0 cve triaging video  research this video complements the slides on triaging cves for the linux kernel, providing additional insights. 该视频补充了关于linux内核cve分类的幻灯片，提供了额外的见解。 # triaging cves for the linux kernel · video record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: triaging cves for the linux kernel resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=yajopgehft0 parent_primary_url: https://opensource.siemens.com/events/2025/slides/christoph_steiger__triaging_cves_for_the_linux_kernel.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"triaging cves for the linux kernel\" by christoph steiger](https://opensource.siemens.com/events/2025/slides/christoph_steiger__triaging_cves_for_the_linux_kernel.pdf) [slides] [[video](https://www.youtube.com/watch?v=yajopgehft0)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "87730e196aeb80fe",
      "item_id": "e7675d0fd2da25ce",
      "slug": "2025-misc-beating-the-kctf-pow-with-avx512ifma-for-51k-primary-61c34c5e",
      "year": 2025,
      "title": "Beating the kCTF PoW with AVX512IFMA for $51k",
      "item_title": "Beating the kCTF PoW with AVX512IFMA for $51k",
      "authors": [
        "Timothy Herchen"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://anemato.de/blog/kctf-vdf",
      "primary_url": "https://anemato.de/blog/kctf-vdf",
      "parent_primary_url": "https://anemato.de/blog/kctf-vdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-beating-the-kctf-pow-with-avx512ifma-for-51k-primary-61c34c5e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Beating the kCTF PoW with AVX512IFMA for $51k record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Beating the kCTF PoW with AVX512IFMA for $51k resource_label: primary resource_type: article resource_url: https://anemato.de/blog/kctf-vdf parent_primary_url: https://anemato.de/blog/kctf-vdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"Beating the kCTF PoW with AVX512IFMA for $51k\" by Timothy Herchen](https://anemato.de/blog/kctf-vdf) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://anemato.de/blog/kctf-vdf"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://anemato.de/blog/kctf-vdf"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kCTF",
        "AVX512IFMA",
        "techniques"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "The article discusses a successful approach to overcoming kCTF challenges using AVX512IFMA, showcasing advanced techniques.",
      "summary_zh": "本文讨论了使用AVX512IFMA克服kCTF挑战的成功方法，展示了先进技术。",
      "source_markdown": "[2025: \"Beating the kCTF PoW with AVX512IFMA for $51k\" by Timothy Herchen](https://anemato.de/blog/kctf-vdf) [article]",
      "search_text": "beating the kctf pow with avx512ifma for $51k beating the kctf pow with avx512ifma for $51k timothy herchen   misc  misc primary article https://anemato.de/blog/kctf-vdf kctf avx512ifma techniques  research the article discusses a successful approach to overcoming kctf challenges using avx512ifma, showcasing advanced techniques. 本文讨论了使用avx512ifma克服kctf挑战的成功方法，展示了先进技术。 # beating the kctf pow with avx512ifma for $51k record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: beating the kctf pow with avx512ifma for $51k resource_label: primary resource_type: article resource_url: https://anemato.de/blog/kctf-vdf parent_primary_url: https://anemato.de/blog/kctf-vdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"beating the kctf pow with avx512ifma for $51k\" by timothy herchen](https://anemato.de/blog/kctf-vdf) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https:// no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a31b264d6ed324f6",
      "item_id": "a51175c647f369e1",
      "slug": "2025-misc-redefining-indirect-call-analysis-with-kallgraph-primary-3c4afc49",
      "year": 2025,
      "title": "Redefining Indirect Call Analysis with KallGraph",
      "item_title": "Redefining Indirect Call Analysis with KallGraph",
      "authors": [
        "Guoren Li et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland25_indirect_call.pdf",
      "primary_url": "https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland25_indirect_call.pdf",
      "parent_primary_url": "https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland25_indirect_call.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-redefining-indirect-call-analysis-with-kallgraph-primary-3c4afc49.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Redefining Indirect Call Analysis with KallGraph record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Redefining Indirect Call Analysis with KallGraph resource_label: primary resource_type: paper resource_url: https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland25_indirect_call.pdf parent_primary_url: https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland25_indirect_call.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"Redefining Indirect Call Analysis with KallGraph\" by Guoren Li et al.](https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland25_indirect_call.pdf) [paper] [[code](https://github.com/seclab-ucr/KallGraph)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices us",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland25_indirect_call.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/seclab-ucr/KallGraph"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland25_indirect_call.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/seclab-ucr/KallGraph"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/seclab-ucr/KallGraph"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KallGraph",
        "indirect call",
        "analysis"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This paper introduces KallGraph, a tool for indirect call analysis in the Linux kernel, enhancing security research.",
      "summary_zh": "本文介绍了KallGraph，一个用于Linux内核间接调用分析的工具，增强了安全研究。",
      "source_markdown": "[2025: \"Redefining Indirect Call Analysis with KallGraph\" by Guoren Li et al.](https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland25_indirect_call.pdf) [paper] [[code](https://github.com/seclab-ucr/KallGraph)]",
      "search_text": "redefining indirect call analysis with kallgraph redefining indirect call analysis with kallgraph guoren li et al.   misc  misc primary paper https://www.cs.ucr.edu/%7ezhiyunq/pub/oakland25_indirect_call.pdf kallgraph indirect call analysis  research this paper introduces kallgraph, a tool for indirect call analysis in the linux kernel, enhancing security research. 本文介绍了kallgraph，一个用于linux内核间接调用分析的工具，增强了安全研究。 # redefining indirect call analysis with kallgraph record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: redefining indirect call analysis with kallgraph resource_label: primary resource_type: paper resource_url: https://www.cs.ucr.edu/%7ezhiyunq/pub/oakland25_indirect_call.pdf parent_primary_url: https://www.cs.ucr.edu/%7ezhiyunq/pub/oakland25_indirect_call.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"redefining indirect call analysis with kallgraph\" by guoren li et al.](https://www.cs.ucr.edu/%7ezhiyunq/pub/oakland25_indirect_call.pdf) [paper] [[code](https://github.com/seclab-ucr/kallgraph)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices us no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "330eb18e7b16918e",
      "item_id": "a51175c647f369e1",
      "slug": "2025-misc-redefining-indirect-call-analysis-with-kallgraph-code-c4aa0da8",
      "year": 2025,
      "title": "Redefining Indirect Call Analysis with KallGraph · code",
      "item_title": "Redefining Indirect Call Analysis with KallGraph",
      "authors": [
        "Guoren Li et al."
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/seclab-ucr/KallGraph",
      "primary_url": "https://github.com/seclab-ucr/KallGraph",
      "parent_primary_url": "https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland25_indirect_call.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-redefining-indirect-call-analysis-with-kallgraph-code-c4aa0da8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Redefining Indirect Call Analysis with KallGraph · code record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Redefining Indirect Call Analysis with KallGraph resource_label: code resource_type: code resource_url: https://github.com/seclab-ucr/KallGraph parent_primary_url: https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland25_indirect_call.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"Redefining Indirect Call Analysis with KallGraph\" by Guoren Li et al.](https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland25_indirect_call.pdf) [paper] [[code](https://github.com/seclab-ucr/KallGraph)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel ra",
      "link_types": [
        "paper",
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland25_indirect_call.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/seclab-ucr/KallGraph"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland25_indirect_call.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/seclab-ucr/KallGraph"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/seclab-ucr/KallGraph"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KallGraph",
        "code",
        "analysis"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "The code repository for KallGraph supports indirect call analysis, contributing to kernel security research.",
      "summary_zh": "KallGraph的代码库支持间接调用分析，为内核安全研究做出贡献。",
      "source_markdown": "[2025: \"Redefining Indirect Call Analysis with KallGraph\" by Guoren Li et al.](https://www.cs.ucr.edu/%7Ezhiyunq/pub/oakland25_indirect_call.pdf) [paper] [[code](https://github.com/seclab-ucr/KallGraph)]",
      "search_text": "redefining indirect call analysis with kallgraph · code redefining indirect call analysis with kallgraph guoren li et al.   misc  misc code code https://github.com/seclab-ucr/kallgraph kallgraph code analysis  research the code repository for kallgraph supports indirect call analysis, contributing to kernel security research. kallgraph的代码库支持间接调用分析，为内核安全研究做出贡献。 # redefining indirect call analysis with kallgraph · code record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: redefining indirect call analysis with kallgraph resource_label: code resource_type: code resource_url: https://github.com/seclab-ucr/kallgraph parent_primary_url: https://www.cs.ucr.edu/%7ezhiyunq/pub/oakland25_indirect_call.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"redefining indirect call analysis with kallgraph\" by guoren li et al.](https://www.cs.ucr.edu/%7ezhiyunq/pub/oakland25_indirect_call.pdf) [paper] [[code](https://github.com/seclab-ucr/kallgraph)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel ra no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "e9d5ad0321543ed3",
      "item_id": "c1e9f6eba66c45be",
      "slug": "2025-misc-a-quick-dive-into-the-linux-kernel-page-allocator-primary-935f5b24",
      "year": 2025,
      "title": "A Quick Dive Into The Linux Kernel Page Allocator",
      "item_title": "A Quick Dive Into The Linux Kernel Page Allocator",
      "authors": [
        "D3vil"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://syst3mfailure.io/linux-page-allocator/",
      "primary_url": "https://syst3mfailure.io/linux-page-allocator/",
      "parent_primary_url": "https://syst3mfailure.io/linux-page-allocator/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-a-quick-dive-into-the-linux-kernel-page-allocator-primary-935f5b24.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# A Quick Dive Into The Linux Kernel Page Allocator record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: A Quick Dive Into The Linux Kernel Page Allocator resource_label: primary resource_type: article resource_url: https://syst3mfailure.io/linux-page-allocator/ parent_primary_url: https://syst3mfailure.io/linux-page-allocator/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"A Quick Dive Into The Linux Kernel Page Allocator\" by D3vil](https://syst3mfailure.io/linux-page-allocator/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://syst3mfailure.io/linux-page-allocator/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://syst3mfailure.io/linux-page-allocator/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "page allocator",
        "Linux kernel",
        "overview"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article provides a quick overview of the Linux kernel page allocator, discussing its design and functionality.",
      "summary_zh": "本文提供了Linux内核页面分配器的快速概述，讨论了其设计和功能。",
      "source_markdown": "[2025: \"A Quick Dive Into The Linux Kernel Page Allocator\" by D3vil](https://syst3mfailure.io/linux-page-allocator/) [article]",
      "search_text": "a quick dive into the linux kernel page allocator a quick dive into the linux kernel page allocator d3vil   misc  misc primary article https://syst3mfailure.io/linux-page-allocator/ page allocator linux kernel overview  research this article provides a quick overview of the linux kernel page allocator, discussing its design and functionality. 本文提供了linux内核页面分配器的快速概述，讨论了其设计和功能。 # a quick dive into the linux kernel page allocator record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: a quick dive into the linux kernel page allocator resource_label: primary resource_type: article resource_url: https://syst3mfailure.io/linux-page-allocator/ parent_primary_url: https://syst3mfailure.io/linux-page-allocator/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"a quick dive into the linux kernel page allocator\" by d3vil](https://syst3mfailure.io/linux-page-allocator/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f23e48e562baddb3",
      "item_id": "046572f93990cd09",
      "slug": "2025-misc-musing-from-decades-of-linux-kernel-security-research-primary-4be9a800",
      "year": 2025,
      "title": "Musing from Decades of Linux Kernel Security Research",
      "item_title": "Musing from Decades of Linux Kernel Security Research",
      "authors": [
        "Joshua Drake"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://github.com/jduck/bs25-slides",
      "primary_url": "https://github.com/jduck/bs25-slides",
      "parent_primary_url": "https://github.com/jduck/bs25-slides",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-musing-from-decades-of-linux-kernel-security-research-primary-4be9a800.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Musing from Decades of Linux Kernel Security Research record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Musing from Decades of Linux Kernel Security Research resource_label: primary resource_type: slides resource_url: https://github.com/jduck/bs25-slides parent_primary_url: https://github.com/jduck/bs25-slides source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"Musing from Decades of Linux Kernel Security Research\" by Joshua Drake](https://github.com/jduck/bs25-slides) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/jduck/bs25-slides"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/jduck/bs25-slides"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/jduck/bs25-slides"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Linux kernel",
        "security",
        "research"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "The slides reflect on decades of Linux kernel security research, summarizing key findings and advancements.",
      "summary_zh": "这些幻灯片回顾了数十年的Linux内核安全研究，总结了关键发现和进展。",
      "source_markdown": "[2025: \"Musing from Decades of Linux Kernel Security Research\" by Joshua Drake](https://github.com/jduck/bs25-slides) [slides]",
      "search_text": "musing from decades of linux kernel security research musing from decades of linux kernel security research joshua drake   misc  misc primary slides https://github.com/jduck/bs25-slides linux kernel security research  research the slides reflect on decades of linux kernel security research, summarizing key findings and advancements. 这些幻灯片回顾了数十年的linux内核安全研究，总结了关键发现和进展。 # musing from decades of linux kernel security research record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: musing from decades of linux kernel security research resource_label: primary resource_type: slides resource_url: https://github.com/jduck/bs25-slides parent_primary_url: https://github.com/jduck/bs25-slides source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"musing from decades of linux kernel security research\" by joshua drake](https://github.com/jduck/bs25-slides) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "5e0fb75803e1be87",
      "item_id": "f464cd74e423ff79",
      "slug": "2025-misc-understanding-socket-internals-through-a-series-of-cve-fixes-primary-fb9fa954",
      "year": 2025,
      "title": "Understanding Socket Internals Through a Series of CVE Fixes",
      "item_title": "Understanding Socket Internals Through a Series of CVE Fixes",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/03/23/understanding-socket-internals-through-a-series-of-cve-fixes.html",
      "primary_url": "https://u1f383.github.io/linux/2025/03/23/understanding-socket-internals-through-a-series-of-cve-fixes.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/03/23/understanding-socket-internals-through-a-series-of-cve-fixes.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-understanding-socket-internals-through-a-series-of-cve-fixes-primary-fb9fa954.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Understanding Socket Internals Through a Series of CVE Fixes record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Understanding Socket Internals Through a Series of CVE Fixes resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/03/23/understanding-socket-internals-through-a-series-of-cve-fixes.html parent_primary_url: https://u1f383.github.io/linux/2025/03/23/understanding-socket-internals-through-a-series-of-cve-fixes.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"Understanding Socket Internals Through a Series of CVE Fixes\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/03/23/understanding-socket-internals-through-a-series-of-cve-fixes.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that t",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/03/23/understanding-socket-internals-through-a-series-of-cve-fixes.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/03/23/understanding-socket-internals-through-a-series-of-cve-fixes.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/03/23/understanding-socket-internals-through-a-series-of-cve-fixes.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "socket",
        "CVE",
        "network security"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article explores socket internals through a series of CVE fixes, enhancing understanding of network security.",
      "summary_zh": "本文通过一系列CVE修复探讨了套接字内部结构，增强了对网络安全的理解。",
      "source_markdown": "[2025: \"Understanding Socket Internals Through a Series of CVE Fixes\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/03/23/understanding-socket-internals-through-a-series-of-cve-fixes.html) [article]",
      "search_text": "understanding socket internals through a series of cve fixes understanding socket internals through a series of cve fixes pumpkin chang   misc  misc primary article https://u1f383.github.io/linux/2025/03/23/understanding-socket-internals-through-a-series-of-cve-fixes.html socket cve network security  research this article explores socket internals through a series of cve fixes, enhancing understanding of network security. 本文通过一系列cve修复探讨了套接字内部结构，增强了对网络安全的理解。 # understanding socket internals through a series of cve fixes record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: understanding socket internals through a series of cve fixes resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/03/23/understanding-socket-internals-through-a-series-of-cve-fixes.html parent_primary_url: https://u1f383.github.io/linux/2025/03/23/understanding-socket-internals-through-a-series-of-cve-fixes.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"understanding socket internals through a series of cve fixes\" by pumpkin chang](https://u1f383.github.io/linux/2025/03/23/understanding-socket-internals-through-a-series-of-cve-fixes.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that t no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "360df83c69473de8",
      "item_id": "bb1e45d056068a15",
      "slug": "2025-misc-building-a-mali-gpu-debug-environment-primary-52d06fb2",
      "year": 2025,
      "title": "Building a Mali GPU Debug Environment",
      "item_title": "Building a Mali GPU Debug Environment",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/03/22/building-a-mali-debug-environment.html",
      "primary_url": "https://u1f383.github.io/linux/2025/03/22/building-a-mali-debug-environment.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/03/22/building-a-mali-debug-environment.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-building-a-mali-gpu-debug-environment-primary-52d06fb2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Building a Mali GPU Debug Environment record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Building a Mali GPU Debug Environment resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/03/22/building-a-mali-debug-environment.html parent_primary_url: https://u1f383.github.io/linux/2025/03/22/building-a-mali-debug-environment.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"Building a Mali GPU Debug Environment\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/03/22/building-a-mali-debug-environment.html) [article] cves: none android_impact_status: unknown android_impact_reason: mentions mobile SoC/GPU components used by Android devices; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/03/22/building-a-mali-debug-environment.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/03/22/building-a-mali-debug-environment.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/03/22/building-a-mali-debug-environment.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions mobile SoC/GPU components used by Android devices; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Mali GPU",
        "debug",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "The article outlines the process of building a debug environment for Mali GPUs, focusing on kernel interactions.",
      "summary_zh": "本文概述了为Mali GPU构建调试环境的过程，重点关注内核交互。",
      "source_markdown": "[2025: \"Building a Mali GPU Debug Environment\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/03/22/building-a-mali-debug-environment.html) [article]",
      "search_text": "building a mali gpu debug environment building a mali gpu debug environment pumpkin chang   misc  misc primary article https://u1f383.github.io/linux/2025/03/22/building-a-mali-debug-environment.html mali gpu debug kernel  research the article outlines the process of building a debug environment for mali gpus, focusing on kernel interactions. 本文概述了为mali gpu构建调试环境的过程，重点关注内核交互。 # building a mali gpu debug environment record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: building a mali gpu debug environment resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/03/22/building-a-mali-debug-environment.html parent_primary_url: https://u1f383.github.io/linux/2025/03/22/building-a-mali-debug-environment.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"building a mali gpu debug environment\" by pumpkin chang](https://u1f383.github.io/linux/2025/03/22/building-a-mali-debug-environment.html) [article] cves: none android_impact_status: unknown android_impact_reason: mentions mobile soc/gpu components used by android devices; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no  unknown mentions mobile soc/gpu components used by android devices; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android  has-code code poc artifact "
    },
    {
      "id": "0d7a69af278c8e85",
      "item_id": "378bec5bb0590e20",
      "slug": "2025-misc-enomem-in-linux-kernel-primary-85b705ba",
      "year": 2025,
      "title": "ENOMEM In Linux Kernel",
      "item_title": "ENOMEM In Linux Kernel",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/03/04/enomem-in-linux-kernel.html",
      "primary_url": "https://u1f383.github.io/linux/2025/03/04/enomem-in-linux-kernel.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/03/04/enomem-in-linux-kernel.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-enomem-in-linux-kernel-primary-85b705ba.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ENOMEM In Linux Kernel record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: ENOMEM In Linux Kernel resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/03/04/enomem-in-linux-kernel.html parent_primary_url: https://u1f383.github.io/linux/2025/03/04/enomem-in-linux-kernel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"ENOMEM In Linux Kernel\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/03/04/enomem-in-linux-kernel.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://u1",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/03/04/enomem-in-linux-kernel.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/03/04/enomem-in-linux-kernel.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/03/04/enomem-in-linux-kernel.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "ENOMEM",
        "Linux kernel",
        "error analysis"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article discusses the ENOMEM error in the Linux kernel, analyzing its causes and implications.",
      "summary_zh": "本文讨论了Linux内核中的ENOMEM错误，分析了其原因和影响。",
      "source_markdown": "[2025: \"ENOMEM In Linux Kernel\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/03/04/enomem-in-linux-kernel.html) [article]",
      "search_text": "enomem in linux kernel enomem in linux kernel pumpkin chang   misc  misc primary article https://u1f383.github.io/linux/2025/03/04/enomem-in-linux-kernel.html enomem linux kernel error analysis  research this article discusses the enomem error in the linux kernel, analyzing its causes and implications. 本文讨论了linux内核中的enomem错误，分析了其原因和影响。 # enomem in linux kernel record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: enomem in linux kernel resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/03/04/enomem-in-linux-kernel.html parent_primary_url: https://u1f383.github.io/linux/2025/03/04/enomem-in-linux-kernel.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"enomem in linux kernel\" by pumpkin chang](https://u1f383.github.io/linux/2025/03/04/enomem-in-linux-kernel.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://u1 no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "a12f49f06b691a00",
      "item_id": "2d65d0ebd749e3eb",
      "slug": "2025-misc-how-does-linux-direct-mapping-work-primary-44722e35",
      "year": 2025,
      "title": "How Does Linux Direct Mapping Work?",
      "item_title": "How Does Linux Direct Mapping Work?",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/02/27/how-does-linux-direct-mapping-work.html",
      "primary_url": "https://u1f383.github.io/linux/2025/02/27/how-does-linux-direct-mapping-work.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/02/27/how-does-linux-direct-mapping-work.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-how-does-linux-direct-mapping-work-primary-44722e35.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# How Does Linux Direct Mapping Work? record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: How Does Linux Direct Mapping Work? resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/02/27/how-does-linux-direct-mapping-work.html parent_primary_url: https://u1f383.github.io/linux/2025/02/27/how-does-linux-direct-mapping-work.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"How Does Linux Direct Mapping Work?\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/02/27/how-does-linux-direct-mapping-work.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/02/27/how-does-linux-direct-mapping-work.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/02/27/how-does-linux-direct-mapping-work.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/02/27/how-does-linux-direct-mapping-work.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "direct mapping",
        "memory management",
        "Linux"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "The article explains how Linux direct mapping works, detailing its impact on memory management.",
      "summary_zh": "本文解释了Linux直接映射的工作原理，详细说明了其对内存管理的影响。",
      "source_markdown": "[2025: \"How Does Linux Direct Mapping Work?\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/02/27/how-does-linux-direct-mapping-work.html) [article]",
      "search_text": "how does linux direct mapping work? how does linux direct mapping work? pumpkin chang   misc  misc primary article https://u1f383.github.io/linux/2025/02/27/how-does-linux-direct-mapping-work.html direct mapping memory management linux  research the article explains how linux direct mapping works, detailing its impact on memory management. 本文解释了linux直接映射的工作原理，详细说明了其对内存管理的影响。 # how does linux direct mapping work? record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: how does linux direct mapping work? resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/02/27/how-does-linux-direct-mapping-work.html parent_primary_url: https://u1f383.github.io/linux/2025/02/27/how-does-linux-direct-mapping-work.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"how does linux direct mapping work?\" by pumpkin chang](https://u1f383.github.io/linux/2025/02/27/how-does-linux-direct-mapping-work.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux.  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "f48e806e1763a45a",
      "item_id": "c3505eab6cba3a39",
      "slug": "2025-misc-linux-kernel-tls-primary-7c336de5",
      "year": 2025,
      "title": "Linux Kernel TLS",
      "item_title": "Linux Kernel TLS",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html",
      "primary_url": "https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-linux-kernel-tls-primary-7c336de5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel TLS record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Linux Kernel TLS resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html parent_primary_url: https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"Linux Kernel TLS\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html) [article] [[part 2](https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_cod",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html",
        "https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "TLS",
        "Linux kernel",
        "security"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article discusses Linux Kernel TLS, covering its implementation and security features.",
      "summary_zh": "本文讨论了Linux内核TLS，涵盖了其实现和安全特性。",
      "source_markdown": "[2025: \"Linux Kernel TLS\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html) [article] [[part 2](https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html)]",
      "search_text": "linux kernel tls linux kernel tls pumpkin chang   misc  misc primary article https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html tls linux kernel security  research this article discusses linux kernel tls, covering its implementation and security features. 本文讨论了linux内核tls，涵盖了其实现和安全特性。 # linux kernel tls record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: linux kernel tls resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html parent_primary_url: https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"linux kernel tls\" by pumpkin chang](https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html) [article] [[part 2](https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_cod no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "63769f96f0cba472",
      "item_id": "c3505eab6cba3a39",
      "slug": "2025-misc-linux-kernel-tls-part-2-32dde2b2",
      "year": 2025,
      "title": "Linux Kernel TLS · part 2",
      "item_title": "Linux Kernel TLS",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "part 2",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html",
      "primary_url": "https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-linux-kernel-tls-part-2-32dde2b2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel TLS · part 2 record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Linux Kernel TLS resource_label: part 2 resource_type: article resource_url: https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html parent_primary_url: https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"Linux Kernel TLS\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html) [article] [[part 2](https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux.",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html",
        "https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "TLS",
        "Linux kernel",
        "security"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "The second part of the article on Linux Kernel TLS continues the discussion on its features and applications.",
      "summary_zh": "关于Linux内核TLS的第二部分继续讨论其特性和应用。",
      "source_markdown": "[2025: \"Linux Kernel TLS\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html) [article] [[part 2](https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html)]",
      "search_text": "linux kernel tls · part 2 linux kernel tls pumpkin chang   misc  misc part 2 article https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html tls linux kernel security  research the second part of the article on linux kernel tls continues the discussion on its features and applications. 关于linux内核tls的第二部分继续讨论其特性和应用。 # linux kernel tls · part 2 record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: linux kernel tls resource_label: part 2 resource_type: article resource_url: https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html parent_primary_url: https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"linux kernel tls\" by pumpkin chang](https://u1f383.github.io/linux/2025/01/20/linux-kernel-tls-part-1.html) [article] [[part 2](https://u1f383.github.io/linux/2025/01/21/linux-kernel-tls-part-2.html)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "b798d4cff18ff34e",
      "item_id": "d69eb63d780699de",
      "slug": "2025-misc-linux-kaslr-entropy-primary-171d5c6b",
      "year": 2025,
      "title": "Linux KASLR Entropy",
      "item_title": "Linux KASLR Entropy",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2025/01/02/linux-kaslr-entropy.html",
      "primary_url": "https://u1f383.github.io/linux/2025/01/02/linux-kaslr-entropy.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2025/01/02/linux-kaslr-entropy.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2025-misc-linux-kaslr-entropy-primary-171d5c6b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux KASLR Entropy record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Linux KASLR Entropy resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/01/02/linux-kaslr-entropy.html parent_primary_url: https://u1f383.github.io/linux/2025/01/02/linux-kaslr-entropy.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"Linux KASLR Entropy\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/01/02/linux-kaslr-entropy.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://u1f383.github.io/lin",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2025/01/02/linux-kaslr-entropy.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2025/01/02/linux-kaslr-entropy.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2025/01/02/linux-kaslr-entropy.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "KASLR",
        "entropy",
        "Linux kernel"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article analyzes Linux KASLR entropy, discussing its importance for kernel security.",
      "summary_zh": "本文分析了Linux KASLR熵，讨论了其对内核安全的重要性。",
      "source_markdown": "[2025: \"Linux KASLR Entropy\" by Pumpkin Chang](https://u1f383.github.io/linux/2025/01/02/linux-kaslr-entropy.html) [article]",
      "search_text": "linux kaslr entropy linux kaslr entropy pumpkin chang   misc  misc primary article https://u1f383.github.io/linux/2025/01/02/linux-kaslr-entropy.html kaslr entropy linux kernel  research this article analyzes linux kaslr entropy, discussing its importance for kernel security. 本文分析了linux kaslr熵，讨论了其对内核安全的重要性。 # linux kaslr entropy record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: linux kaslr entropy resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2025/01/02/linux-kaslr-entropy.html parent_primary_url: https://u1f383.github.io/linux/2025/01/02/linux-kaslr-entropy.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2025: \"linux kaslr entropy\" by pumpkin chang](https://u1f383.github.io/linux/2025/01/02/linux-kaslr-entropy.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://u1f383.github.io/lin no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "8f630e85b658de2e",
      "item_id": "acadb2e0657bff8a",
      "slug": "2024-misc-binder-internals-primary-2983a67f",
      "year": 2024,
      "title": "Binder Internals",
      "item_title": "Binder Internals",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://androidoffsec.withgoogle.com/posts/binder-internals/",
      "primary_url": "https://androidoffsec.withgoogle.com/posts/binder-internals/",
      "parent_primary_url": "https://androidoffsec.withgoogle.com/posts/binder-internals/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-binder-internals-primary-2983a67f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Binder Internals record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Binder Internals resource_label: primary resource_type: article resource_url: https://androidoffsec.withgoogle.com/posts/binder-internals/ parent_primary_url: https://androidoffsec.withgoogle.com/posts/binder-internals/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Binder Internals\"](https://androidoffsec.withgoogle.com/posts/binder-internals/) [article] cves: none android_impact_status: unknown android_impact_reason: mentions Binder, a core Android IPC driver; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none c",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://androidoffsec.withgoogle.com/posts/binder-internals/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://androidoffsec.withgoogle.com/posts/binder-internals/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Binder, a core Android IPC driver; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "IPC",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article discusses the internals of the Binder IPC mechanism in Android.",
      "summary_zh": "本文讨论了Android中Binder IPC机制的内部结构。",
      "source_markdown": "[2024: \"Binder Internals\"](https://androidoffsec.withgoogle.com/posts/binder-internals/) [article]",
      "search_text": "binder internals binder internals    misc  misc primary article https://androidoffsec.withgoogle.com/posts/binder-internals/ ipc android  research this article discusses the internals of the binder ipc mechanism in android. 本文讨论了android中binder ipc机制的内部结构。 # binder internals record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: binder internals resource_label: primary resource_type: article resource_url: https://androidoffsec.withgoogle.com/posts/binder-internals/ parent_primary_url: https://androidoffsec.withgoogle.com/posts/binder-internals/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"binder internals\"](https://androidoffsec.withgoogle.com/posts/binder-internals/) [article] cves: none android_impact_status: unknown android_impact_reason: mentions binder, a core android ipc driver; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none c unknown mentions binder, a core android ipc driver; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "4d40c738ed218550",
      "item_id": "df192ffdfc215d7e",
      "slug": "2024-misc-linternals-exploring-the-mm-subsystem-via-mmap-primary-0f358f39",
      "year": 2024,
      "title": "Linternals: Exploring The mm Subsystem via mmap",
      "item_title": "Linternals: Exploring The mm Subsystem via mmap",
      "authors": [
        "Samuel Page"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/",
      "primary_url": "https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/",
      "parent_primary_url": "https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-linternals-exploring-the-mm-subsystem-via-mmap-primary-0f358f39.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linternals: Exploring The mm Subsystem via mmap record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Linternals: Exploring The mm Subsystem via mmap resource_label: primary resource_type: article resource_url: https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/ parent_primary_url: https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Linternals: Exploring The mm Subsystem via mmap\" by Samuel Page](https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/) [article] [[part 2](https://sam4k.com/linternals-exploring-the-mm-subsystem-part-2/)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Productio",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://sam4k.com/linternals-exploring-the-mm-subsystem-part-2/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://sam4k.com/linternals-exploring-the-mm-subsystem-part-2/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory management"
      ],
      "affected_area": "mm",
      "exploit_stage": "research",
      "summary_en": "This article explores the memory management subsystem of the Linux kernel using mmap.",
      "summary_zh": "本文探讨了使用mmap的Linux内核内存管理子系统。",
      "source_markdown": "[2024: \"Linternals: Exploring The mm Subsystem via mmap\" by Samuel Page](https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/) [article] [[part 2](https://sam4k.com/linternals-exploring-the-mm-subsystem-part-2/)]",
      "search_text": "linternals: exploring the mm subsystem via mmap linternals: exploring the mm subsystem via mmap samuel page   misc  misc primary article https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/ memory management mm research this article explores the memory management subsystem of the linux kernel using mmap. 本文探讨了使用mmap的linux内核内存管理子系统。 # linternals: exploring the mm subsystem via mmap record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: linternals: exploring the mm subsystem via mmap resource_label: primary resource_type: article resource_url: https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/ parent_primary_url: https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"linternals: exploring the mm subsystem via mmap\" by samuel page](https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/) [article] [[part 2](https://sam4k.com/linternals-exploring-the-mm-subsystem-part-2/)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: productio no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "08adf92d5f72b83e",
      "item_id": "df192ffdfc215d7e",
      "slug": "2024-misc-linternals-exploring-the-mm-subsystem-via-mmap-part-2-bcd86442",
      "year": 2024,
      "title": "Linternals: Exploring The mm Subsystem via mmap · part 2",
      "item_title": "Linternals: Exploring The mm Subsystem via mmap",
      "authors": [
        "Samuel Page"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "part 2",
      "resource_type": "article",
      "resource_url": "https://sam4k.com/linternals-exploring-the-mm-subsystem-part-2/",
      "primary_url": "https://sam4k.com/linternals-exploring-the-mm-subsystem-part-2/",
      "parent_primary_url": "https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-linternals-exploring-the-mm-subsystem-via-mmap-part-2-bcd86442.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linternals: Exploring The mm Subsystem via mmap · part 2 record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Linternals: Exploring The mm Subsystem via mmap resource_label: part 2 resource_type: article resource_url: https://sam4k.com/linternals-exploring-the-mm-subsystem-part-2/ parent_primary_url: https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Linternals: Exploring The mm Subsystem via mmap\" by Samuel Page](https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/) [article] [[part 2](https://sam4k.com/linternals-exploring-the-mm-subsystem-part-2/)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: P",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://sam4k.com/linternals-exploring-the-mm-subsystem-part-2/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://sam4k.com/linternals-exploring-the-mm-subsystem-part-2/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "memory management"
      ],
      "affected_area": "mm",
      "exploit_stage": "research",
      "summary_en": "Continuation of the exploration of the mm subsystem in the Linux kernel via mmap.",
      "summary_zh": "继续探讨Linux内核中通过mmap的mm子系统。",
      "source_markdown": "[2024: \"Linternals: Exploring The mm Subsystem via mmap\" by Samuel Page](https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/) [article] [[part 2](https://sam4k.com/linternals-exploring-the-mm-subsystem-part-2/)]",
      "search_text": "linternals: exploring the mm subsystem via mmap · part 2 linternals: exploring the mm subsystem via mmap samuel page   misc  misc part 2 article https://sam4k.com/linternals-exploring-the-mm-subsystem-part-2/ memory management mm research continuation of the exploration of the mm subsystem in the linux kernel via mmap. 继续探讨linux内核中通过mmap的mm子系统。 # linternals: exploring the mm subsystem via mmap · part 2 record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: linternals: exploring the mm subsystem via mmap resource_label: part 2 resource_type: article resource_url: https://sam4k.com/linternals-exploring-the-mm-subsystem-part-2/ parent_primary_url: https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"linternals: exploring the mm subsystem via mmap\" by samuel page](https://sam4k.com/linternals-exploring-the-mm-subsystem-part-1/) [article] [[part 2](https://sam4k.com/linternals-exploring-the-mm-subsystem-part-2/)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: p no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "8aa681527342405f",
      "item_id": "0e48832f638a7d8f",
      "slug": "2024-misc-approaches-to-determining-the-attack-surface-for-fuzzing-the-linux-kernel-primary-f41c0d69",
      "year": 2024,
      "title": "Approaches to determining the attack surface for fuzzing the Linux kernel",
      "item_title": "Approaches to determining the attack surface for fuzzing the Linux kernel",
      "authors": [
        "Pavel Teplyuk",
        "Aleksey Yakunin"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.e3s-conferences.org/articles/e3sconf/pdf/2024/61/e3sconf_uesf2024_03005.pdf",
      "primary_url": "https://www.e3s-conferences.org/articles/e3sconf/pdf/2024/61/e3sconf_uesf2024_03005.pdf",
      "parent_primary_url": "https://www.e3s-conferences.org/articles/e3sconf/pdf/2024/61/e3sconf_uesf2024_03005.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-approaches-to-determining-the-attack-surface-for-fuzzing-the-linux-kernel-primary-f41c0d69.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Approaches to determining the attack surface for fuzzing the Linux kernel record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Approaches to determining the attack surface for fuzzing the Linux kernel resource_label: primary resource_type: paper resource_url: https://www.e3s-conferences.org/articles/e3sconf/pdf/2024/61/e3sconf_uesf2024_03005.pdf parent_primary_url: https://www.e3s-conferences.org/articles/e3sconf/pdf/2024/61/e3sconf_uesf2024_03005.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Approaches to determining the attack surface for fuzzing the Linux kernel\" by Pavel Teplyuk and Aleksey Yakunin](https://www.e3s-conferences.org/articles/e3sconf/pdf/2024/61/e3sconf_uesf2024_03005.pdf) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this r",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.e3s-conferences.org/articles/e3sconf/pdf/2024/61/e3sconf_uesf2024_03005.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.e3s-conferences.org/articles/e3sconf/pdf/2024/61/e3sconf_uesf2024_03005.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "attack surface"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This paper presents methods for identifying the attack surface for fuzzing the Linux kernel.",
      "summary_zh": "本文提出了识别Linux内核模糊测试攻击面的方法。",
      "source_markdown": "[2024: \"Approaches to determining the attack surface for fuzzing the Linux kernel\" by Pavel Teplyuk and Aleksey Yakunin](https://www.e3s-conferences.org/articles/e3sconf/pdf/2024/61/e3sconf_uesf2024_03005.pdf) [paper]",
      "search_text": "approaches to determining the attack surface for fuzzing the linux kernel approaches to determining the attack surface for fuzzing the linux kernel pavel teplyuk aleksey yakunin   misc  misc primary paper https://www.e3s-conferences.org/articles/e3sconf/pdf/2024/61/e3sconf_uesf2024_03005.pdf fuzzing attack surface  research this paper presents methods for identifying the attack surface for fuzzing the linux kernel. 本文提出了识别linux内核模糊测试攻击面的方法。 # approaches to determining the attack surface for fuzzing the linux kernel record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: approaches to determining the attack surface for fuzzing the linux kernel resource_label: primary resource_type: paper resource_url: https://www.e3s-conferences.org/articles/e3sconf/pdf/2024/61/e3sconf_uesf2024_03005.pdf parent_primary_url: https://www.e3s-conferences.org/articles/e3sconf/pdf/2024/61/e3sconf_uesf2024_03005.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"approaches to determining the attack surface for fuzzing the linux kernel\" by pavel teplyuk and aleksey yakunin](https://www.e3s-conferences.org/articles/e3sconf/pdf/2024/61/e3sconf_uesf2024_03005.pdf) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this r no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c223da4d710e8b14",
      "item_id": "783108458ce4eb0d",
      "slug": "2024-misc-the-feasibility-of-using-hardware-breakpoints-to-extend-the-race-window-primary-353344b8",
      "year": 2024,
      "title": "The Feasibility of Using Hardware Breakpoints To Extend the Race Window",
      "item_title": "The Feasibility of Using Hardware Breakpoints To Extend the Race Window",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2024/12/29/the-feasibility-of-using-hardware-breakpoints-to-extend-the-race-window.html",
      "primary_url": "https://u1f383.github.io/linux/2024/12/29/the-feasibility-of-using-hardware-breakpoints-to-extend-the-race-window.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2024/12/29/the-feasibility-of-using-hardware-breakpoints-to-extend-the-race-window.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-the-feasibility-of-using-hardware-breakpoints-to-extend-the-race-window-primary-353344b8.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Feasibility of Using Hardware Breakpoints To Extend the Race Window record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: The Feasibility of Using Hardware Breakpoints To Extend the Race Window resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/12/29/the-feasibility-of-using-hardware-breakpoints-to-extend-the-race-window.html parent_primary_url: https://u1f383.github.io/linux/2024/12/29/the-feasibility-of-using-hardware-breakpoints-to-extend-the-race-window.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"The Feasibility of Using Hardware Breakpoints To Extend the Race Window\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/12/29/the-feasibility-of-using-hardware-breakpoints-to-extend-the-race-window.html) [article] cves: none android_i",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/12/29/the-feasibility-of-using-hardware-breakpoints-to-extend-the-race-window.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/12/29/the-feasibility-of-using-hardware-breakpoints-to-extend-the-race-window.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2024/12/29/the-feasibility-of-using-hardware-breakpoints-to-extend-the-race-window.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "race condition",
        "hardware"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article examines the use of hardware breakpoints to extend the race window in kernel exploitation.",
      "summary_zh": "本文研究了使用硬件断点来扩展内核利用中的竞争窗口。",
      "source_markdown": "[2024: \"The Feasibility of Using Hardware Breakpoints To Extend the Race Window\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/12/29/the-feasibility-of-using-hardware-breakpoints-to-extend-the-race-window.html) [article]",
      "search_text": "the feasibility of using hardware breakpoints to extend the race window the feasibility of using hardware breakpoints to extend the race window pumpkin chang   misc  misc primary article https://u1f383.github.io/linux/2024/12/29/the-feasibility-of-using-hardware-breakpoints-to-extend-the-race-window.html race condition hardware  research this article examines the use of hardware breakpoints to extend the race window in kernel exploitation. 本文研究了使用硬件断点来扩展内核利用中的竞争窗口。 # the feasibility of using hardware breakpoints to extend the race window record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: the feasibility of using hardware breakpoints to extend the race window resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/12/29/the-feasibility-of-using-hardware-breakpoints-to-extend-the-race-window.html parent_primary_url: https://u1f383.github.io/linux/2024/12/29/the-feasibility-of-using-hardware-breakpoints-to-extend-the-race-window.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"the feasibility of using hardware breakpoints to extend the race window\" by pumpkin chang](https://u1f383.github.io/linux/2024/12/29/the-feasibility-of-using-hardware-breakpoints-to-extend-the-race-window.html) [article] cves: none android_i no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "00c7c54f5f49e46b",
      "item_id": "cfbf14131a51398b",
      "slug": "2024-misc-linux-kernel-heap-spraying-over-a-network-connection-primary-c128a193",
      "year": 2024,
      "title": "Linux Kernel Heap Spraying Over A Network Connection",
      "item_title": "Linux Kernel Heap Spraying Over A Network Connection",
      "authors": [
        "Pumpkin Chang"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://u1f383.github.io/linux/2024/06/20/linux-kernel-heap-spraying-over-a-network-connection.html",
      "primary_url": "https://u1f383.github.io/linux/2024/06/20/linux-kernel-heap-spraying-over-a-network-connection.html",
      "parent_primary_url": "https://u1f383.github.io/linux/2024/06/20/linux-kernel-heap-spraying-over-a-network-connection.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-linux-kernel-heap-spraying-over-a-network-connection-primary-c128a193.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Heap Spraying Over A Network Connection record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Linux Kernel Heap Spraying Over A Network Connection resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/06/20/linux-kernel-heap-spraying-over-a-network-connection.html parent_primary_url: https://u1f383.github.io/linux/2024/06/20/linux-kernel-heap-spraying-over-a-network-connection.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Linux Kernel Heap Spraying Over A Network Connection\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/06/20/linux-kernel-heap-spraying-over-a-network-connection.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. i",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://u1f383.github.io/linux/2024/06/20/linux-kernel-heap-spraying-over-a-network-connection.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://u1f383.github.io/linux/2024/06/20/linux-kernel-heap-spraying-over-a-network-connection.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://u1f383.github.io/linux/2024/06/20/linux-kernel-heap-spraying-over-a-network-connection.html"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "heap spraying",
        "network"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article discusses heap spraying techniques targeting the Linux kernel over a network connection.",
      "summary_zh": "本文讨论了针对Linux内核的网络连接堆喷射技术。",
      "source_markdown": "[2024: \"Linux Kernel Heap Spraying Over A Network Connection\" by Pumpkin Chang](https://u1f383.github.io/linux/2024/06/20/linux-kernel-heap-spraying-over-a-network-connection.html) [article]",
      "search_text": "linux kernel heap spraying over a network connection linux kernel heap spraying over a network connection pumpkin chang   misc  misc primary article https://u1f383.github.io/linux/2024/06/20/linux-kernel-heap-spraying-over-a-network-connection.html heap spraying network  research this article discusses heap spraying techniques targeting the linux kernel over a network connection. 本文讨论了针对linux内核的网络连接堆喷射技术。 # linux kernel heap spraying over a network connection record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: linux kernel heap spraying over a network connection resource_label: primary resource_type: article resource_url: https://u1f383.github.io/linux/2024/06/20/linux-kernel-heap-spraying-over-a-network-connection.html parent_primary_url: https://u1f383.github.io/linux/2024/06/20/linux-kernel-heap-spraying-over-a-network-connection.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"linux kernel heap spraying over a network connection\" by pumpkin chang](https://u1f383.github.io/linux/2024/06/20/linux-kernel-heap-spraying-over-a-network-connection.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. i no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6a57209387a3b307",
      "item_id": "722e4bfb33522898",
      "slug": "2024-misc-dashing-kernel-exploitation-primary-6cbd9c59",
      "year": 2024,
      "title": "Dashing Kernel Exploitation",
      "item_title": "Dashing Kernel Exploitation",
      "authors": [
        "Eduardo Vela",
        "Jordy Zomer"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf",
      "primary_url": "https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf",
      "parent_primary_url": "https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-dashing-kernel-exploitation-primary-6cbd9c59.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Dashing Kernel Exploitation record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Dashing Kernel Exploitation resource_label: primary resource_type: slides resource_url: https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf parent_primary_url: https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Dashing Kernel Exploitation\" by Eduardo Vela and Jordy Zomer](https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf) [slides] [[code](https://github.com/google/security-research/tree/master/analysis/kernel)] [[dashboard](https://lookerstudio.googl",
      "link_types": [
        "slides",
        "code",
        "dashboard"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/google/security-research/tree/master/analysis/kernel"
        },
        {
          "label": "dashboard",
          "type": "dashboard",
          "url": "https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855c/page/n92nD"
        },
        {
          "label": "new dashboard",
          "type": "dashboard",
          "url": "https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/google/security-research/tree/master/analysis/kernel"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "dashboard",
            "type": "dashboard",
            "url": "https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855c/page/n92nD"
          },
          {
            "label": "new dashboard",
            "type": "dashboard",
            "url": "https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf",
        "https://github.com/google/security-research/tree/master/analysis/kernel",
        "https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Slides on kernel exploitation techniques presented at a conference.",
      "summary_zh": "在会议上展示的内核利用技术幻灯片。",
      "source_markdown": "[2024: \"Dashing Kernel Exploitation\" by Eduardo Vela and Jordy Zomer](https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf) [slides] [[code](https://github.com/google/security-research/tree/master/analysis/kernel)] [[dashboard](https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855c/page/n92nD)] [new dashboard](https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128)",
      "search_text": "dashing kernel exploitation dashing kernel exploitation eduardo vela jordy zomer   misc  misc primary slides https://github.com/google/security-research/blob/master/analysis/kernel/slides/dashing%20kernel%20exploitation-h2hc-2024.pdf exploitation slides  research slides on kernel exploitation techniques presented at a conference. 在会议上展示的内核利用技术幻灯片。 # dashing kernel exploitation record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: dashing kernel exploitation resource_label: primary resource_type: slides resource_url: https://github.com/google/security-research/blob/master/analysis/kernel/slides/dashing%20kernel%20exploitation-h2hc-2024.pdf parent_primary_url: https://github.com/google/security-research/blob/master/analysis/kernel/slides/dashing%20kernel%20exploitation-h2hc-2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"dashing kernel exploitation\" by eduardo vela and jordy zomer](https://github.com/google/security-research/blob/master/analysis/kernel/slides/dashing%20kernel%20exploitation-h2hc-2024.pdf) [slides] [[code](https://github.com/google/security-research/tree/master/analysis/kernel)] [[dashboard](https://lookerstudio.googl no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "2be45a1abfc3bf17",
      "item_id": "722e4bfb33522898",
      "slug": "2024-misc-dashing-kernel-exploitation-code-19ecb829",
      "year": 2024,
      "title": "Dashing Kernel Exploitation · code",
      "item_title": "Dashing Kernel Exploitation",
      "authors": [
        "Eduardo Vela",
        "Jordy Zomer"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "code",
      "resource_type": "code",
      "resource_url": "https://github.com/google/security-research/tree/master/analysis/kernel",
      "primary_url": "https://github.com/google/security-research/tree/master/analysis/kernel",
      "parent_primary_url": "https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-dashing-kernel-exploitation-code-19ecb829.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Dashing Kernel Exploitation · code record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Dashing Kernel Exploitation resource_label: code resource_type: code resource_url: https://github.com/google/security-research/tree/master/analysis/kernel parent_primary_url: https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Dashing Kernel Exploitation\" by Eduardo Vela and Jordy Zomer](https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf) [slides] [[code](https://github.com/google/security-research/tree/master/analysis/kernel)] [[dashboard](https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855",
      "link_types": [
        "slides",
        "code",
        "dashboard"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/google/security-research/tree/master/analysis/kernel"
        },
        {
          "label": "dashboard",
          "type": "dashboard",
          "url": "https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855c/page/n92nD"
        },
        {
          "label": "new dashboard",
          "type": "dashboard",
          "url": "https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/google/security-research/tree/master/analysis/kernel"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "dashboard",
            "type": "dashboard",
            "url": "https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855c/page/n92nD"
          },
          {
            "label": "new dashboard",
            "type": "dashboard",
            "url": "https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf",
        "https://github.com/google/security-research/tree/master/analysis/kernel",
        "https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Code related to kernel exploitation techniques discussed in the conference slides.",
      "summary_zh": "与会议幻灯片中讨论的内核利用技术相关的代码。",
      "source_markdown": "[2024: \"Dashing Kernel Exploitation\" by Eduardo Vela and Jordy Zomer](https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf) [slides] [[code](https://github.com/google/security-research/tree/master/analysis/kernel)] [[dashboard](https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855c/page/n92nD)] [new dashboard](https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128)",
      "search_text": "dashing kernel exploitation · code dashing kernel exploitation eduardo vela jordy zomer   misc  misc code code https://github.com/google/security-research/tree/master/analysis/kernel exploitation code  research code related to kernel exploitation techniques discussed in the conference slides. 与会议幻灯片中讨论的内核利用技术相关的代码。 # dashing kernel exploitation · code record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: dashing kernel exploitation resource_label: code resource_type: code resource_url: https://github.com/google/security-research/tree/master/analysis/kernel parent_primary_url: https://github.com/google/security-research/blob/master/analysis/kernel/slides/dashing%20kernel%20exploitation-h2hc-2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"dashing kernel exploitation\" by eduardo vela and jordy zomer](https://github.com/google/security-research/blob/master/analysis/kernel/slides/dashing%20kernel%20exploitation-h2hc-2024.pdf) [slides] [[code](https://github.com/google/security-research/tree/master/analysis/kernel)] [[dashboard](https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855 no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "ddb64e1e8c8d6a06",
      "item_id": "722e4bfb33522898",
      "slug": "2024-misc-dashing-kernel-exploitation-dashboard-77a0681c",
      "year": 2024,
      "title": "Dashing Kernel Exploitation · dashboard",
      "item_title": "Dashing Kernel Exploitation",
      "authors": [
        "Eduardo Vela",
        "Jordy Zomer"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "dashboard",
      "resource_type": "dashboard",
      "resource_url": "https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855c/page/n92nD",
      "primary_url": "https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855c/page/n92nD",
      "parent_primary_url": "https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-dashing-kernel-exploitation-dashboard-77a0681c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Dashing Kernel Exploitation · dashboard record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Dashing Kernel Exploitation resource_label: dashboard resource_type: dashboard resource_url: https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855c/page/n92nD parent_primary_url: https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Dashing Kernel Exploitation\" by Eduardo Vela and Jordy Zomer](https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf) [slides] [[code](https://github.com/google/security-research/tree/master/analysis/kernel)] [[dashboard](https://lookerstudio.google.com/reporting/68",
      "link_types": [
        "slides",
        "code",
        "dashboard"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/google/security-research/tree/master/analysis/kernel"
        },
        {
          "label": "dashboard",
          "type": "dashboard",
          "url": "https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855c/page/n92nD"
        },
        {
          "label": "new dashboard",
          "type": "dashboard",
          "url": "https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/google/security-research/tree/master/analysis/kernel"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "dashboard",
            "type": "dashboard",
            "url": "https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855c/page/n92nD"
          },
          {
            "label": "new dashboard",
            "type": "dashboard",
            "url": "https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf",
        "https://github.com/google/security-research/tree/master/analysis/kernel",
        "https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "exploitation",
        "dashboard"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Dashboard and resources related to kernel exploitation techniques presented at a conference.",
      "summary_zh": "与会议上展示的内核利用技术相关的仪表板和资源。",
      "source_markdown": "[2024: \"Dashing Kernel Exploitation\" by Eduardo Vela and Jordy Zomer](https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf) [slides] [[code](https://github.com/google/security-research/tree/master/analysis/kernel)] [[dashboard](https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855c/page/n92nD)] [new dashboard](https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128)",
      "search_text": "dashing kernel exploitation · dashboard dashing kernel exploitation eduardo vela jordy zomer   misc  misc dashboard dashboard https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855c/page/n92nd exploitation dashboard  research dashboard and resources related to kernel exploitation techniques presented at a conference. 与会议上展示的内核利用技术相关的仪表板和资源。 # dashing kernel exploitation · dashboard record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: dashing kernel exploitation resource_label: dashboard resource_type: dashboard resource_url: https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855c/page/n92nd parent_primary_url: https://github.com/google/security-research/blob/master/analysis/kernel/slides/dashing%20kernel%20exploitation-h2hc-2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"dashing kernel exploitation\" by eduardo vela and jordy zomer](https://github.com/google/security-research/blob/master/analysis/kernel/slides/dashing%20kernel%20exploitation-h2hc-2024.pdf) [slides] [[code](https://github.com/google/security-research/tree/master/analysis/kernel)] [[dashboard](https://lookerstudio.google.com/reporting/68 no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "d2ff118c0762c61d",
      "item_id": "722e4bfb33522898",
      "slug": "2024-misc-dashing-kernel-exploitation-new-dashboard-2b2afe2c",
      "year": 2024,
      "title": "Dashing Kernel Exploitation · new dashboard",
      "item_title": "Dashing Kernel Exploitation",
      "authors": [
        "Eduardo Vela",
        "Jordy Zomer"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "new dashboard",
      "resource_type": "dashboard",
      "resource_url": "https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128",
      "primary_url": "https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128",
      "parent_primary_url": "https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-dashing-kernel-exploitation-new-dashboard-2b2afe2c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Dashing Kernel Exploitation · new dashboard record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Dashing Kernel Exploitation resource_label: new dashboard resource_type: dashboard resource_url: https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128 parent_primary_url: https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Dashing Kernel Exploitation\" by Eduardo Vela and Jordy Zomer](https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf) [slides] [[code](https://github.com/google/security-research/tree/master/analysis/kernel)] [[dashboard](https://lookerstudio.googl",
      "link_types": [
        "slides",
        "code",
        "dashboard"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf"
        },
        {
          "label": "code",
          "type": "code",
          "url": "https://github.com/google/security-research/tree/master/analysis/kernel"
        },
        {
          "label": "dashboard",
          "type": "dashboard",
          "url": "https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855c/page/n92nD"
        },
        {
          "label": "new dashboard",
          "type": "dashboard",
          "url": "https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "code",
            "type": "code",
            "url": "https://github.com/google/security-research/tree/master/analysis/kernel"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "dashboard",
            "type": "dashboard",
            "url": "https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855c/page/n92nD"
          },
          {
            "label": "new dashboard",
            "type": "dashboard",
            "url": "https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128"
          }
        ]
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf",
        "https://github.com/google/security-research/tree/master/analysis/kernel",
        "https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "tooling"
      ],
      "affected_area": "",
      "exploit_stage": "defensive",
      "summary_en": "Dashing Kernel Exploitation provides insights and tools for kernel vulnerability analysis.",
      "summary_zh": "Dashing Kernel Exploitation提供了对内核漏洞分析的见解和工具。",
      "source_markdown": "[2024: \"Dashing Kernel Exploitation\" by Eduardo Vela and Jordy Zomer](https://github.com/google/security-research/blob/master/analysis/kernel/slides/Dashing%20Kernel%20Exploitation-H2HC-2024.pdf) [slides] [[code](https://github.com/google/security-research/tree/master/analysis/kernel)] [[dashboard](https://lookerstudio.google.com/reporting/68b02863-4f5c-4d85-b3c1-992af89c855c/page/n92nD)] [new dashboard](https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128)",
      "search_text": "dashing kernel exploitation · new dashboard dashing kernel exploitation eduardo vela jordy zomer   misc  misc new dashboard dashboard https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128 fuzzing tooling  defensive dashing kernel exploitation provides insights and tools for kernel vulnerability analysis. dashing kernel exploitation提供了对内核漏洞分析的见解和工具。 # dashing kernel exploitation · new dashboard record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: dashing kernel exploitation resource_label: new dashboard resource_type: dashboard resource_url: https://kernelctf-dash.storage.googleapis.com/processed/v6.1.111/index.html#!heap/*/msg_msg/64..128 parent_primary_url: https://github.com/google/security-research/blob/master/analysis/kernel/slides/dashing%20kernel%20exploitation-h2hc-2024.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"dashing kernel exploitation\" by eduardo vela and jordy zomer](https://github.com/google/security-research/blob/master/analysis/kernel/slides/dashing%20kernel%20exploitation-h2hc-2024.pdf) [slides] [[code](https://github.com/google/security-research/tree/master/analysis/kernel)] [[dashboard](https://lookerstudio.googl no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "9c743fd26cc3f2e3",
      "item_id": "02a48586304fed74",
      "slug": "2024-misc-linux-kernel-attack-surface-beyond-ioctl-dma-buf-primary-94c10a62",
      "year": 2024,
      "title": "Linux Kernel Attack Surface: beyond IOCTL. DMA-BUF",
      "item_title": "Linux Kernel Attack Surface: beyond IOCTL. DMA-BUF",
      "authors": [
        "Slava Moskvin"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://slavamoskvin.com/linux-kernel-attack-surface-beyond-ioctl.-dma-buf/",
      "primary_url": "https://slavamoskvin.com/linux-kernel-attack-surface-beyond-ioctl.-dma-buf/",
      "parent_primary_url": "https://slavamoskvin.com/linux-kernel-attack-surface-beyond-ioctl.-dma-buf/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-linux-kernel-attack-surface-beyond-ioctl-dma-buf-primary-94c10a62.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Attack Surface: beyond IOCTL. DMA-BUF record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Linux Kernel Attack Surface: beyond IOCTL. DMA-BUF resource_label: primary resource_type: article resource_url: https://slavamoskvin.com/linux-kernel-attack-surface-beyond-ioctl.-dma-buf/ parent_primary_url: https://slavamoskvin.com/linux-kernel-attack-surface-beyond-ioctl.-dma-buf/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Linux Kernel Attack Surface: beyond IOCTL. DMA-BUF\" by Slava Moskvin](https://slavamoskvin.com/linux-kernel-attack-surface-beyond-ioctl.-dma-buf/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://slavamoskvin.com/linux-kernel-attack-surface-beyond-ioctl.-dma-buf/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://slavamoskvin.com/linux-kernel-attack-surface-beyond-ioctl.-dma-buf/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "attack surface",
        "DMA-BUF"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article explores the Linux kernel attack surface beyond IOCTL, focusing on DMA-BUF.",
      "summary_zh": "本文探讨了超越IOCTL的Linux内核攻击面，重点关注DMA-BUF。",
      "source_markdown": "[2024: \"Linux Kernel Attack Surface: beyond IOCTL. DMA-BUF\" by Slava Moskvin](https://slavamoskvin.com/linux-kernel-attack-surface-beyond-ioctl.-dma-buf/) [article]",
      "search_text": "linux kernel attack surface: beyond ioctl. dma-buf linux kernel attack surface: beyond ioctl. dma-buf slava moskvin   misc  misc primary article https://slavamoskvin.com/linux-kernel-attack-surface-beyond-ioctl.-dma-buf/ attack surface dma-buf  research this article explores the linux kernel attack surface beyond ioctl, focusing on dma-buf. 本文探讨了超越ioctl的linux内核攻击面，重点关注dma-buf。 # linux kernel attack surface: beyond ioctl. dma-buf record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: linux kernel attack surface: beyond ioctl. dma-buf resource_label: primary resource_type: article resource_url: https://slavamoskvin.com/linux-kernel-attack-surface-beyond-ioctl.-dma-buf/ parent_primary_url: https://slavamoskvin.com/linux-kernel-attack-surface-beyond-ioctl.-dma-buf/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"linux kernel attack surface: beyond ioctl. dma-buf\" by slava moskvin](https://slavamoskvin.com/linux-kernel-attack-surface-beyond-ioctl.-dma-buf/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2bff992dddf09a12",
      "item_id": "63194b3f68bbd139",
      "slug": "2024-misc-more-bang-for-your-bug-primary-d1996983",
      "year": 2024,
      "title": "More Bang for Your Bug!",
      "item_title": "More Bang for Your Bug!",
      "authors": [
        "Eduardo Vela",
        "Space Meyer"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://docs.google.com/presentation/d/163DiKhThCTEb4Udv9FWfBQOiDtOXQHiCZ61pE-srBOw/present",
      "primary_url": "https://docs.google.com/presentation/d/163DiKhThCTEb4Udv9FWfBQOiDtOXQHiCZ61pE-srBOw/present",
      "parent_primary_url": "https://docs.google.com/presentation/d/163DiKhThCTEb4Udv9FWfBQOiDtOXQHiCZ61pE-srBOw/present",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-more-bang-for-your-bug-primary-d1996983.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# More Bang for Your Bug! record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: More Bang for Your Bug! resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/163DiKhThCTEb4Udv9FWfBQOiDtOXQHiCZ61pE-srBOw/present parent_primary_url: https://docs.google.com/presentation/d/163DiKhThCTEb4Udv9FWfBQOiDtOXQHiCZ61pE-srBOw/present source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"More Bang for Your Bug!\" by Eduardo Vela and Space Meyer](https://docs.google.com/presentation/d/163DiKhThCTEb4Udv9FWfBQOiDtOXQHiCZ61pE-srBOw/present) [slides] [[video](https://www.youtube.com/watch?v=S0Wzy0Knw0M)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Pro",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/163DiKhThCTEb4Udv9FWfBQOiDtOXQHiCZ61pE-srBOw/present"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=S0Wzy0Knw0M"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/163DiKhThCTEb4Udv9FWfBQOiDtOXQHiCZ61pE-srBOw/present"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=S0Wzy0Knw0M"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Slides discussing the importance of maximizing the impact of discovered vulnerabilities.",
      "summary_zh": "讨论最大化发现的漏洞影响的重要性的幻灯片。",
      "source_markdown": "[2024: \"More Bang for Your Bug!\" by Eduardo Vela and Space Meyer](https://docs.google.com/presentation/d/163DiKhThCTEb4Udv9FWfBQOiDtOXQHiCZ61pE-srBOw/present) [slides] [[video](https://www.youtube.com/watch?v=S0Wzy0Knw0M)]",
      "search_text": "more bang for your bug! more bang for your bug! eduardo vela space meyer   misc  misc primary slides https://docs.google.com/presentation/d/163dikhthcteb4udv9fwfbqoidtoxqhicz61pe-srbow/present vulnerability slides  research slides discussing the importance of maximizing the impact of discovered vulnerabilities. 讨论最大化发现的漏洞影响的重要性的幻灯片。 # more bang for your bug! record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: more bang for your bug! resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/163dikhthcteb4udv9fwfbqoidtoxqhicz61pe-srbow/present parent_primary_url: https://docs.google.com/presentation/d/163dikhthcteb4udv9fwfbqoidtoxqhicz61pe-srbow/present source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"more bang for your bug!\" by eduardo vela and space meyer](https://docs.google.com/presentation/d/163dikhthcteb4udv9fwfbqoidtoxqhicz61pe-srbow/present) [slides] [[video](https://www.youtube.com/watch?v=s0wzy0knw0m)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: pro no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9d2a274607ade132",
      "item_id": "63194b3f68bbd139",
      "slug": "2024-misc-more-bang-for-your-bug-video-5bd952a1",
      "year": 2024,
      "title": "More Bang for Your Bug! · video",
      "item_title": "More Bang for Your Bug!",
      "authors": [
        "Eduardo Vela",
        "Space Meyer"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=S0Wzy0Knw0M",
      "primary_url": "https://www.youtube.com/watch?v=S0Wzy0Knw0M",
      "parent_primary_url": "https://docs.google.com/presentation/d/163DiKhThCTEb4Udv9FWfBQOiDtOXQHiCZ61pE-srBOw/present",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-more-bang-for-your-bug-video-5bd952a1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# More Bang for Your Bug! · video record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: More Bang for Your Bug! resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=S0Wzy0Knw0M parent_primary_url: https://docs.google.com/presentation/d/163DiKhThCTEb4Udv9FWfBQOiDtOXQHiCZ61pE-srBOw/present source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"More Bang for Your Bug!\" by Eduardo Vela and Space Meyer](https://docs.google.com/presentation/d/163DiKhThCTEb4Udv9FWfBQOiDtOXQHiCZ61pE-srBOw/present) [slides] [[video](https://www.youtube.com/watch?v=S0Wzy0Knw0M)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/163DiKhThCTEb4Udv9FWfBQOiDtOXQHiCZ61pE-srBOw/present"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=S0Wzy0Knw0M"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/163DiKhThCTEb4Udv9FWfBQOiDtOXQHiCZ61pE-srBOw/present"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=S0Wzy0Knw0M"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Video presentation on maximizing the impact of discovered vulnerabilities in kernel exploitation.",
      "summary_zh": "关于在内核利用中最大化发现的漏洞影响的视频演示。",
      "source_markdown": "[2024: \"More Bang for Your Bug!\" by Eduardo Vela and Space Meyer](https://docs.google.com/presentation/d/163DiKhThCTEb4Udv9FWfBQOiDtOXQHiCZ61pE-srBOw/present) [slides] [[video](https://www.youtube.com/watch?v=S0Wzy0Knw0M)]",
      "search_text": "more bang for your bug! · video more bang for your bug! eduardo vela space meyer   misc  misc video video https://www.youtube.com/watch?v=s0wzy0knw0m vulnerability video  research video presentation on maximizing the impact of discovered vulnerabilities in kernel exploitation. 关于在内核利用中最大化发现的漏洞影响的视频演示。 # more bang for your bug! · video record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: more bang for your bug! resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=s0wzy0knw0m parent_primary_url: https://docs.google.com/presentation/d/163dikhthcteb4udv9fwfbqoidtoxqhicz61pe-srbow/present source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"more bang for your bug!\" by eduardo vela and space meyer](https://docs.google.com/presentation/d/163dikhthcteb4udv9fwfbqoidtoxqhicz61pe-srbow/present) [slides] [[video](https://www.youtube.com/watch?v=s0wzy0knw0m)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b50ebc132899d51b",
      "item_id": "9a9b4b4f74f25ff2",
      "slug": "2024-misc-linux-kernel-cves-what-has-caused-so-many-to-suddenly-show-up-primary-87ebedbe",
      "year": 2024,
      "title": "Linux Kernel CVEs, What Has Caused So Many to Suddenly Show Up?",
      "item_title": "Linux Kernel CVEs, What Has Caused So Many to Suddenly Show Up?",
      "authors": [
        "Greg Kroah-Hartman"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf",
      "primary_url": "https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf",
      "parent_primary_url": "https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-linux-kernel-cves-what-has-caused-so-many-to-suddenly-show-up-primary-87ebedbe.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel CVEs, What Has Caused So Many to Suddenly Show Up? record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Linux Kernel CVEs, What Has Caused So Many to Suddenly Show Up? resource_label: primary resource_type: slides resource_url: https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf parent_primary_url: https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Linux Kernel CVEs, What Has Caused So Many to Suddenly Show Up?\" by Greg Kroah-Hartman](https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf) [slides] [[video](https://www.youtube.com/watch?v=Rg_VPMT0XXw)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to relea",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Rg_VPMT0XXw"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Rg_VPMT0XXw"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Slides discussing the recent surge in Linux kernel CVEs and their causes.",
      "summary_zh": "讨论Linux内核CVE最近激增及其原因的幻灯片。",
      "source_markdown": "[2024: \"Linux Kernel CVEs, What Has Caused So Many to Suddenly Show Up?\" by Greg Kroah-Hartman](https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf) [slides] [[video](https://www.youtube.com/watch?v=Rg_VPMT0XXw)]",
      "search_text": "linux kernel cves, what has caused so many to suddenly show up? linux kernel cves, what has caused so many to suddenly show up? greg kroah-hartman   misc  misc primary slides https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf cve slides  research slides discussing the recent surge in linux kernel cves and their causes. 讨论linux内核cve最近激增及其原因的幻灯片。 # linux kernel cves, what has caused so many to suddenly show up? record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: linux kernel cves, what has caused so many to suddenly show up? resource_label: primary resource_type: slides resource_url: https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf parent_primary_url: https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"linux kernel cves, what has caused so many to suddenly show up?\" by greg kroah-hartman](https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf) [slides] [[video](https://www.youtube.com/watch?v=rg_vpmt0xxw)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to relea no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "348fdbb46e0a41ed",
      "item_id": "9a9b4b4f74f25ff2",
      "slug": "2024-misc-linux-kernel-cves-what-has-caused-so-many-to-suddenly-show-up-video-1ad889d9",
      "year": 2024,
      "title": "Linux Kernel CVEs, What Has Caused So Many to Suddenly Show Up? · video",
      "item_title": "Linux Kernel CVEs, What Has Caused So Many to Suddenly Show Up?",
      "authors": [
        "Greg Kroah-Hartman"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=Rg_VPMT0XXw",
      "primary_url": "https://www.youtube.com/watch?v=Rg_VPMT0XXw",
      "parent_primary_url": "https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-linux-kernel-cves-what-has-caused-so-many-to-suddenly-show-up-video-1ad889d9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel CVEs, What Has Caused So Many to Suddenly Show Up? · video record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Linux Kernel CVEs, What Has Caused So Many to Suddenly Show Up? resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=Rg_VPMT0XXw parent_primary_url: https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Linux Kernel CVEs, What Has Caused So Many to Suddenly Show Up?\" by Greg Kroah-Hartman](https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf) [slides] [[video](https://www.youtube.com/watch?v=Rg_VPMT0XXw)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_imp",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Rg_VPMT0XXw"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Rg_VPMT0XXw"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CVE",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Video presentation on the recent surge in Linux kernel CVEs and their causes.",
      "summary_zh": "关于Linux内核CVE最近激增及其原因的视频演示。",
      "source_markdown": "[2024: \"Linux Kernel CVEs, What Has Caused So Many to Suddenly Show Up?\" by Greg Kroah-Hartman](https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf) [slides] [[video](https://www.youtube.com/watch?v=Rg_VPMT0XXw)]",
      "search_text": "linux kernel cves, what has caused so many to suddenly show up? · video linux kernel cves, what has caused so many to suddenly show up? greg kroah-hartman   misc  misc video video https://www.youtube.com/watch?v=rg_vpmt0xxw cve video  research video presentation on the recent surge in linux kernel cves and their causes. 关于linux内核cve最近激增及其原因的视频演示。 # linux kernel cves, what has caused so many to suddenly show up? · video record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: linux kernel cves, what has caused so many to suddenly show up? resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=rg_vpmt0xxw parent_primary_url: https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"linux kernel cves, what has caused so many to suddenly show up?\" by greg kroah-hartman](https://git.sr.ht/~gregkh/presentation-security/blob/main/security-stuff.pdf) [slides] [[video](https://www.youtube.com/watch?v=rg_vpmt0xxw)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_imp no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "d79dc8368099cff3",
      "item_id": "4db3f8a290c8e598",
      "slug": "2024-misc-reverse-engineering-a-kernel-driver-chall-s01-e01-primary-4c5f3b17",
      "year": 2024,
      "title": "Reverse Engineering a Kernel Driver chall: S01 E01",
      "item_title": "Reverse Engineering a Kernel Driver chall: S01 E01",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=Ar4dZNL9rHE",
      "primary_url": "https://www.youtube.com/watch?v=Ar4dZNL9rHE",
      "parent_primary_url": "https://www.youtube.com/watch?v=Ar4dZNL9rHE",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-reverse-engineering-a-kernel-driver-chall-s01-e01-primary-4c5f3b17.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Reverse Engineering a Kernel Driver chall: S01 E01 record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Reverse Engineering a Kernel Driver chall: S01 E01 resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=Ar4dZNL9rHE parent_primary_url: https://www.youtube.com/watch?v=Ar4dZNL9rHE source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Reverse Engineering a Kernel Driver chall: S01 E01\"](https://www.youtube.com/watch?v=Ar4dZNL9rHE) [video] [[E02](https://www.youtube.com/watch?v=e7ydGxJ5fTQ)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_ex",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Ar4dZNL9rHE"
        },
        {
          "label": "E02",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=e7ydGxJ5fTQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Ar4dZNL9rHE"
          },
          {
            "label": "E02",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=e7ydGxJ5fTQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "reverse engineering",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Video series on reverse engineering kernel drivers, starting with the first challenge.",
      "summary_zh": "关于反向工程内核驱动的视频系列，从第一个挑战开始。",
      "source_markdown": "[2024: \"Reverse Engineering a Kernel Driver chall: S01 E01\"](https://www.youtube.com/watch?v=Ar4dZNL9rHE) [video] [[E02](https://www.youtube.com/watch?v=e7ydGxJ5fTQ)]",
      "search_text": "reverse engineering a kernel driver chall: s01 e01 reverse engineering a kernel driver chall: s01 e01    misc  misc primary video https://www.youtube.com/watch?v=ar4dznl9rhe reverse engineering video  research video series on reverse engineering kernel drivers, starting with the first challenge. 关于反向工程内核驱动的视频系列，从第一个挑战开始。 # reverse engineering a kernel driver chall: s01 e01 record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: reverse engineering a kernel driver chall: s01 e01 resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=ar4dznl9rhe parent_primary_url: https://www.youtube.com/watch?v=ar4dznl9rhe source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"reverse engineering a kernel driver chall: s01 e01\"](https://www.youtube.com/watch?v=ar4dznl9rhe) [video] [[e02](https://www.youtube.com/watch?v=e7ydgxj5ftq)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_ex no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "cf15763b6188293c",
      "item_id": "4db3f8a290c8e598",
      "slug": "2024-misc-reverse-engineering-a-kernel-driver-chall-s01-e01-e02-0c2bb7f6",
      "year": 2024,
      "title": "Reverse Engineering a Kernel Driver chall: S01 E01 · E02",
      "item_title": "Reverse Engineering a Kernel Driver chall: S01 E01",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "E02",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=e7ydGxJ5fTQ",
      "primary_url": "https://www.youtube.com/watch?v=e7ydGxJ5fTQ",
      "parent_primary_url": "https://www.youtube.com/watch?v=Ar4dZNL9rHE",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-reverse-engineering-a-kernel-driver-chall-s01-e01-e02-0c2bb7f6.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Reverse Engineering a Kernel Driver chall: S01 E01 · E02 record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Reverse Engineering a Kernel Driver chall: S01 E01 resource_label: E02 resource_type: video resource_url: https://www.youtube.com/watch?v=e7ydGxJ5fTQ parent_primary_url: https://www.youtube.com/watch?v=Ar4dZNL9rHE source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Reverse Engineering a Kernel Driver chall: S01 E01\"](https://www.youtube.com/watch?v=Ar4dZNL9rHE) [video] [[E02](https://www.youtube.com/watch?v=e7ydGxJ5fTQ)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=Ar4dZNL9rHE"
        },
        {
          "label": "E02",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=e7ydGxJ5fTQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=Ar4dZNL9rHE"
          },
          {
            "label": "E02",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=e7ydGxJ5fTQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "reverse engineering",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Continuation of the video series on reverse engineering kernel drivers, featuring the second episode.",
      "summary_zh": "反向工程内核驱动的视频系列的延续，包含第二集。",
      "source_markdown": "[2024: \"Reverse Engineering a Kernel Driver chall: S01 E01\"](https://www.youtube.com/watch?v=Ar4dZNL9rHE) [video] [[E02](https://www.youtube.com/watch?v=e7ydGxJ5fTQ)]",
      "search_text": "reverse engineering a kernel driver chall: s01 e01 · e02 reverse engineering a kernel driver chall: s01 e01    misc  misc e02 video https://www.youtube.com/watch?v=e7ydgxj5ftq reverse engineering video  research continuation of the video series on reverse engineering kernel drivers, featuring the second episode. 反向工程内核驱动的视频系列的延续，包含第二集。 # reverse engineering a kernel driver chall: s01 e01 · e02 record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: reverse engineering a kernel driver chall: s01 e01 resource_label: e02 resource_type: video resource_url: https://www.youtube.com/watch?v=e7ydgxj5ftq parent_primary_url: https://www.youtube.com/watch?v=ar4dznl9rhe source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"reverse engineering a kernel driver chall: s01 e01\"](https://www.youtube.com/watch?v=ar4dznl9rhe) [video] [[e02](https://www.youtube.com/watch?v=e7ydgxj5ftq)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "147100314fb4e59d",
      "item_id": "14b2c1e836c54936",
      "slug": "2024-misc-love-and-hate-the-cyber-tale-between-fuzzer-and-exploits-in-linux-kernel-primary-04e7ebe9",
      "year": 2024,
      "title": "Love and hate - The cyber tale between fuzzer and exploits in Linux kernel",
      "item_title": "Love and hate - The cyber tale between fuzzer and exploits in Linux kernel",
      "authors": [
        "Zou Xiaochen"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=cDcMlMH-XjU",
      "primary_url": "https://www.youtube.com/watch?v=cDcMlMH-XjU",
      "parent_primary_url": "https://www.youtube.com/watch?v=cDcMlMH-XjU",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-love-and-hate-the-cyber-tale-between-fuzzer-and-exploits-in-linux-kernel-primary-04e7ebe9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Love and hate - The cyber tale between fuzzer and exploits in Linux kernel record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Love and hate - The cyber tale between fuzzer and exploits in Linux kernel resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=cDcMlMH-XjU parent_primary_url: https://www.youtube.com/watch?v=cDcMlMH-XjU source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Love and hate - The cyber tale between fuzzer and exploits in Linux kernel\" by Zou Xiaochen](https://www.youtube.com/watch?v=cDcMlMH-XjU) [video] [[slides](https://github.com/star-sg/OBO/blob/main/2024/Day%202/Love%20and%20hate%20-%20The%20cyber%20tale%20between%20fuzzer%20and%20exploits%20in%20Linux%20kernel.pptx)] cves: none android_impact_status: no android_impact_reason: Not enoug",
      "link_types": [
        "video",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=cDcMlMH-XjU"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://github.com/star-sg/OBO/blob/main/2024/Day%202/Love%20and%20hate%20-%20The%20cyber%20tale%20between%20fuzzer%20and%20exploits%20in%20Linux%20kernel.pptx"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://github.com/star-sg/OBO/blob/main/2024/Day%202/Love%20and%20hate%20-%20The%20cyber%20tale%20between%20fuzzer%20and%20exploits%20in%20Linux%20kernel.pptx"
          }
        ],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=cDcMlMH-XjU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/star-sg/OBO/blob/main/2024/Day%202/Love%20and%20hate%20-%20The%20cyber%20tale%20between%20fuzzer%20and%20exploits%20in%20Linux%20kernel.pptx"
      ],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "exploitation",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This video discusses the relationship between fuzzers and exploits in the Linux kernel.",
      "summary_zh": "该视频讨论了Linux内核中模糊测试器和利用之间的关系。",
      "source_markdown": "[2024: \"Love and hate - The cyber tale between fuzzer and exploits in Linux kernel\" by Zou Xiaochen](https://www.youtube.com/watch?v=cDcMlMH-XjU) [video] [[slides](https://github.com/star-sg/OBO/blob/main/2024/Day%202/Love%20and%20hate%20-%20The%20cyber%20tale%20between%20fuzzer%20and%20exploits%20in%20Linux%20kernel.pptx)]",
      "search_text": "love and hate - the cyber tale between fuzzer and exploits in linux kernel love and hate - the cyber tale between fuzzer and exploits in linux kernel zou xiaochen   misc  misc primary video https://www.youtube.com/watch?v=cdcmlmh-xju fuzzing exploitation video  research this video discusses the relationship between fuzzers and exploits in the linux kernel. 该视频讨论了linux内核中模糊测试器和利用之间的关系。 # love and hate - the cyber tale between fuzzer and exploits in linux kernel record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: love and hate - the cyber tale between fuzzer and exploits in linux kernel resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=cdcmlmh-xju parent_primary_url: https://www.youtube.com/watch?v=cdcmlmh-xju source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"love and hate - the cyber tale between fuzzer and exploits in linux kernel\" by zou xiaochen](https://www.youtube.com/watch?v=cdcmlmh-xju) [video] [[slides](https://github.com/star-sg/obo/blob/main/2024/day%202/love%20and%20hate%20-%20the%20cyber%20tale%20between%20fuzzer%20and%20exploits%20in%20linux%20kernel.pptx)] cves: none android_impact_status: no android_impact_reason: not enoug no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "fe0408ff32dfd5d5",
      "item_id": "14b2c1e836c54936",
      "slug": "2024-misc-love-and-hate-the-cyber-tale-between-fuzzer-and-exploits-in-linux-kernel-slides-de7a2451",
      "year": 2024,
      "title": "Love and hate - The cyber tale between fuzzer and exploits in Linux kernel · slides",
      "item_title": "Love and hate - The cyber tale between fuzzer and exploits in Linux kernel",
      "authors": [
        "Zou Xiaochen"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://github.com/star-sg/OBO/blob/main/2024/Day%202/Love%20and%20hate%20-%20The%20cyber%20tale%20between%20fuzzer%20and%20exploits%20in%20Linux%20kernel.pptx",
      "primary_url": "https://github.com/star-sg/OBO/blob/main/2024/Day%202/Love%20and%20hate%20-%20The%20cyber%20tale%20between%20fuzzer%20and%20exploits%20in%20Linux%20kernel.pptx",
      "parent_primary_url": "https://www.youtube.com/watch?v=cDcMlMH-XjU",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-love-and-hate-the-cyber-tale-between-fuzzer-and-exploits-in-linux-kernel-slides-de7a2451.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Love and hate - The cyber tale between fuzzer and exploits in Linux kernel · slides record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Love and hate - The cyber tale between fuzzer and exploits in Linux kernel resource_label: slides resource_type: slides resource_url: https://github.com/star-sg/OBO/blob/main/2024/Day%202/Love%20and%20hate%20-%20The%20cyber%20tale%20between%20fuzzer%20and%20exploits%20in%20Linux%20kernel.pptx parent_primary_url: https://www.youtube.com/watch?v=cDcMlMH-XjU source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Love and hate - The cyber tale between fuzzer and exploits in Linux kernel\" by Zou Xiaochen](https://www.youtube.com/watch?v=cDcMlMH-XjU) [video] [[slides](https://github.com/star-sg/OBO/blob/main/2024/Day%202/Love%20and%20hate%20-%20The%20cyber%20tale%20between",
      "link_types": [
        "video",
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=cDcMlMH-XjU"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://github.com/star-sg/OBO/blob/main/2024/Day%202/Love%20and%20hate%20-%20The%20cyber%20tale%20between%20fuzzer%20and%20exploits%20in%20Linux%20kernel.pptx"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://github.com/star-sg/OBO/blob/main/2024/Day%202/Love%20and%20hate%20-%20The%20cyber%20tale%20between%20fuzzer%20and%20exploits%20in%20Linux%20kernel.pptx"
          }
        ],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=cDcMlMH-XjU"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/star-sg/OBO/blob/main/2024/Day%202/Love%20and%20hate%20-%20The%20cyber%20tale%20between%20fuzzer%20and%20exploits%20in%20Linux%20kernel.pptx"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security",
        "RANDSTRUCT"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article reflects on the use of RANDSTRUCT in GrapheneOS for security purposes.",
      "summary_zh": "本文反思了在GrapheneOS中出于安全目的使用RANDSTRUCT。",
      "source_markdown": "[2024: \"Love and hate - The cyber tale between fuzzer and exploits in Linux kernel\" by Zou Xiaochen](https://www.youtube.com/watch?v=cDcMlMH-XjU) [video] [[slides](https://github.com/star-sg/OBO/blob/main/2024/Day%202/Love%20and%20hate%20-%20The%20cyber%20tale%20between%20fuzzer%20and%20exploits%20in%20Linux%20kernel.pptx)]",
      "search_text": "love and hate - the cyber tale between fuzzer and exploits in linux kernel · slides love and hate - the cyber tale between fuzzer and exploits in linux kernel zou xiaochen   misc  misc slides slides https://github.com/star-sg/obo/blob/main/2024/day%202/love%20and%20hate%20-%20the%20cyber%20tale%20between%20fuzzer%20and%20exploits%20in%20linux%20kernel.pptx security randstruct  research this article reflects on the use of randstruct in grapheneos for security purposes. 本文反思了在grapheneos中出于安全目的使用randstruct。 # love and hate - the cyber tale between fuzzer and exploits in linux kernel · slides record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: love and hate - the cyber tale between fuzzer and exploits in linux kernel resource_label: slides resource_type: slides resource_url: https://github.com/star-sg/obo/blob/main/2024/day%202/love%20and%20hate%20-%20the%20cyber%20tale%20between%20fuzzer%20and%20exploits%20in%20linux%20kernel.pptx parent_primary_url: https://www.youtube.com/watch?v=cdcmlmh-xju source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"love and hate - the cyber tale between fuzzer and exploits in linux kernel\" by zou xiaochen](https://www.youtube.com/watch?v=cdcmlmh-xju) [video] [[slides](https://github.com/star-sg/obo/blob/main/2024/day%202/love%20and%20hate%20-%20the%20cyber%20tale%20between no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "f4946eb45776561f",
      "item_id": "46997727e69bd6d8",
      "slug": "2024-misc-reflections-on-randstruct-in-grapheneos-primary-8a0dcb20",
      "year": 2024,
      "title": "Reflections on RANDSTRUCT in GrapheneOS",
      "item_title": "Reflections on RANDSTRUCT in GrapheneOS",
      "authors": [
        "Julien Voisin"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://dustri.org/b/reflections-on-randstruct-in-grapheneos.html",
      "primary_url": "https://dustri.org/b/reflections-on-randstruct-in-grapheneos.html",
      "parent_primary_url": "https://dustri.org/b/reflections-on-randstruct-in-grapheneos.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-reflections-on-randstruct-in-grapheneos-primary-8a0dcb20.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Reflections on RANDSTRUCT in GrapheneOS record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Reflections on RANDSTRUCT in GrapheneOS resource_label: primary resource_type: article resource_url: https://dustri.org/b/reflections-on-randstruct-in-grapheneos.html parent_primary_url: https://dustri.org/b/reflections-on-randstruct-in-grapheneos.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Reflections on RANDSTRUCT in GrapheneOS\" by Julien Voisin](https://dustri.org/b/reflections-on-randstruct-in-grapheneos.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_e",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://dustri.org/b/reflections-on-randstruct-in-grapheneos.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://dustri.org/b/reflections-on-randstruct-in-grapheneos.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "2024 Linux kernel Misc resource \"Reflections on RANDSTRUCT in GrapheneOS\"; URL type: article.",
      "summary_zh": "2024 年 Linux 内核Misc资料：「Reflections on RANDSTRUCT in GrapheneOS」；URL 类型：article。",
      "source_markdown": "[2024: \"Reflections on RANDSTRUCT in GrapheneOS\" by Julien Voisin](https://dustri.org/b/reflections-on-randstruct-in-grapheneos.html) [article]",
      "search_text": "reflections on randstruct in grapheneos reflections on randstruct in grapheneos julien voisin   misc  misc primary article https://dustri.org/b/reflections-on-randstruct-in-grapheneos.html misc article  misc 2024 linux kernel misc resource \"reflections on randstruct in grapheneos\"; url type: article. 2024 年 linux 内核misc资料：「reflections on randstruct in grapheneos」；url 类型：article。 # reflections on randstruct in grapheneos record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: reflections on randstruct in grapheneos resource_label: primary resource_type: article resource_url: https://dustri.org/b/reflections-on-randstruct-in-grapheneos.html parent_primary_url: https://dustri.org/b/reflections-on-randstruct-in-grapheneos.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"reflections on randstruct in grapheneos\" by julien voisin](https://dustri.org/b/reflections-on-randstruct-in-grapheneos.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_e no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f9767a003d4f8986",
      "item_id": "bb344b6a603aa2a8",
      "slug": "2024-misc-linux-kernel-security-process-or-why-are-there-so-many-kernel-cves-now-primary-451de874",
      "year": 2024,
      "title": "Linux Kernel Security Process or Why are there so many kernel CVEs now?”",
      "item_title": "Linux Kernel Security Process or Why are there so many kernel CVEs now?”",
      "authors": [
        "Greg Kroah-Hartman"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://static.sched.com/hosted_files/kccncossaidevchn2024/17/security-stuff.pdf",
      "primary_url": "https://static.sched.com/hosted_files/kccncossaidevchn2024/17/security-stuff.pdf",
      "parent_primary_url": "https://static.sched.com/hosted_files/kccncossaidevchn2024/17/security-stuff.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-linux-kernel-security-process-or-why-are-there-so-many-kernel-cves-now-primary-451de874.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux Kernel Security Process or Why are there so many kernel CVEs now?” record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Linux Kernel Security Process or Why are there so many kernel CVEs now?” resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/kccncossaidevchn2024/17/security-stuff.pdf parent_primary_url: https://static.sched.com/hosted_files/kccncossaidevchn2024/17/security-stuff.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Linux Kernel Security Process or Why are there so many kernel CVEs now?” by Greg Kroah-Hartman](https://static.sched.com/hosted_files/kccncossaidevchn2024/17/security-stuff.pdf) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devic",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://static.sched.com/hosted_files/kccncossaidevchn2024/17/security-stuff.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://static.sched.com/hosted_files/kccncossaidevchn2024/17/security-stuff.pdf"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security process",
        "CVE",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Slides discussing the Linux kernel security process and the increase in kernel CVEs.",
      "summary_zh": "讨论Linux内核安全过程及内核CVE增加的幻灯片。",
      "source_markdown": "[2024: \"Linux Kernel Security Process or Why are there so many kernel CVEs now?” by Greg Kroah-Hartman](https://static.sched.com/hosted_files/kccncossaidevchn2024/17/security-stuff.pdf) [slides]",
      "search_text": "linux kernel security process or why are there so many kernel cves now?” linux kernel security process or why are there so many kernel cves now?” greg kroah-hartman   misc  misc primary slides https://static.sched.com/hosted_files/kccncossaidevchn2024/17/security-stuff.pdf security process cve slides  research slides discussing the linux kernel security process and the increase in kernel cves. 讨论linux内核安全过程及内核cve增加的幻灯片。 # linux kernel security process or why are there so many kernel cves now?” record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: linux kernel security process or why are there so many kernel cves now?” resource_label: primary resource_type: slides resource_url: https://static.sched.com/hosted_files/kccncossaidevchn2024/17/security-stuff.pdf parent_primary_url: https://static.sched.com/hosted_files/kccncossaidevchn2024/17/security-stuff.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"linux kernel security process or why are there so many kernel cves now?” by greg kroah-hartman](https://static.sched.com/hosted_files/kccncossaidevchn2024/17/security-stuff.pdf) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devic no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "74d92a2e70e6dcf9",
      "item_id": "de98552b04ff59c1",
      "slug": "2024-misc-who-opened-this-big-hole-in-the-linux-kernel-primary-1b38871d",
      "year": 2024,
      "title": "Who opened this big hole in the Linux kernel?",
      "item_title": "Who opened this big hole in the Linux kernel?",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://mp.weixin.qq.com/s/Sr4qIy-AdLhpkus6q1su9w",
      "primary_url": "https://mp.weixin.qq.com/s/Sr4qIy-AdLhpkus6q1su9w",
      "parent_primary_url": "https://mp.weixin.qq.com/s/Sr4qIy-AdLhpkus6q1su9w",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-who-opened-this-big-hole-in-the-linux-kernel-primary-1b38871d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Who opened this big hole in the Linux kernel? record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Who opened this big hole in the Linux kernel? resource_label: primary resource_type: article resource_url: https://mp.weixin.qq.com/s/Sr4qIy-AdLhpkus6q1su9w parent_primary_url: https://mp.weixin.qq.com/s/Sr4qIy-AdLhpkus6q1su9w source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Who opened this big hole in the Linux kernel?\"](https://mp.weixin.qq.com/s/Sr4qIy-AdLhpkus6q1su9w) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_link",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://mp.weixin.qq.com/s/Sr4qIy-AdLhpkus6q1su9w"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://mp.weixin.qq.com/s/Sr4qIy-AdLhpkus6q1su9w"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "kernel",
        "security"
      ],
      "affected_area": "",
      "exploit_stage": "discovery",
      "summary_en": "This article discusses a significant vulnerability discovered in the Linux kernel.",
      "summary_zh": "本文讨论了在Linux内核中发现的重大漏洞。",
      "source_markdown": "[2024: \"Who opened this big hole in the Linux kernel?\"](https://mp.weixin.qq.com/s/Sr4qIy-AdLhpkus6q1su9w) [article]",
      "search_text": "who opened this big hole in the linux kernel? who opened this big hole in the linux kernel?    misc  misc primary article https://mp.weixin.qq.com/s/sr4qiy-adlhpkus6q1su9w vulnerability kernel security  discovery this article discusses a significant vulnerability discovered in the linux kernel. 本文讨论了在linux内核中发现的重大漏洞。 # who opened this big hole in the linux kernel? record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: who opened this big hole in the linux kernel? resource_label: primary resource_type: article resource_url: https://mp.weixin.qq.com/s/sr4qiy-adlhpkus6q1su9w parent_primary_url: https://mp.weixin.qq.com/s/sr4qiy-adlhpkus6q1su9w source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"who opened this big hole in the linux kernel?\"](https://mp.weixin.qq.com/s/sr4qiy-adlhpkus6q1su9w) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_link no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "010b618a0a02f2a8",
      "item_id": "42653047cdfe0e68",
      "slug": "2024-misc-kernjc-automated-vulnerable-environment-generation-for-linux-kernel-vulnerabilities-primary-2f49f5d7",
      "year": 2024,
      "title": "KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities",
      "item_title": "KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/2404.11107",
      "primary_url": "https://arxiv.org/pdf/2404.11107",
      "parent_primary_url": "https://arxiv.org/pdf/2404.11107",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-kernjc-automated-vulnerable-environment-generation-for-linux-kernel-vulnerabilities-primary-2f49f5d7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2404.11107 parent_primary_url: https://arxiv.org/pdf/2404.11107 source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities\"](https://arxiv.org/pdf/2404.11107) [paper] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_p",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/2404.11107"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/2404.11107"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "automation",
        "testing"
      ],
      "affected_area": "",
      "exploit_stage": "development",
      "summary_en": "KernJC provides automated generation of vulnerable environments for testing Linux kernel vulnerabilities.",
      "summary_zh": "KernJC提供了用于测试Linux内核漏洞的自动生成脆弱环境。",
      "source_markdown": "[2024: \"KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities\"](https://arxiv.org/pdf/2404.11107) [paper]",
      "search_text": "kernjc: automated vulnerable environment generation for linux kernel vulnerabilities kernjc: automated vulnerable environment generation for linux kernel vulnerabilities    misc  misc primary paper https://arxiv.org/pdf/2404.11107 fuzzing automation testing  development kernjc provides automated generation of vulnerable environments for testing linux kernel vulnerabilities. kernjc提供了用于测试linux内核漏洞的自动生成脆弱环境。 # kernjc: automated vulnerable environment generation for linux kernel vulnerabilities record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: kernjc: automated vulnerable environment generation for linux kernel vulnerabilities resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2404.11107 parent_primary_url: https://arxiv.org/pdf/2404.11107 source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"kernjc: automated vulnerable environment generation for linux kernel vulnerabilities\"](https://arxiv.org/pdf/2404.11107) [paper] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_p no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "42ffa5b3263e3bd0",
      "item_id": "0e1c6c293b891d03",
      "slug": "2024-misc-silent-syscall-hooking-on-arm64-linux-via-patching-svc-handler-primary-652a9a54",
      "year": 2024,
      "title": "silent syscall hooking on arm64 linux via patching svc handler",
      "item_title": "silent syscall hooking on arm64 linux via patching svc handler",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://tmpout.sh/3/23.html",
      "primary_url": "https://tmpout.sh/3/23.html",
      "parent_primary_url": "https://tmpout.sh/3/23.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-silent-syscall-hooking-on-arm64-linux-via-patching-svc-handler-primary-652a9a54.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# silent syscall hooking on arm64 linux via patching svc handler record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: silent syscall hooking on arm64 linux via patching svc handler resource_label: primary resource_type: article resource_url: https://tmpout.sh/3/23.html parent_primary_url: https://tmpout.sh/3/23.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"silent syscall hooking on arm64 linux via patching svc handler\"](https://tmpout.sh/3/23.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] ",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://tmpout.sh/3/23.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://tmpout.sh/3/23.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "hooking",
        "syscall",
        "arm64"
      ],
      "affected_area": "",
      "exploit_stage": "exploitation",
      "summary_en": "This article explores silent syscall hooking techniques on arm64 Linux systems.",
      "summary_zh": "本文探讨了在arm64 Linux系统上进行静默系统调用钩子的技术。",
      "source_markdown": "[2024: \"silent syscall hooking on arm64 linux via patching svc handler\"](https://tmpout.sh/3/23.html) [article]",
      "search_text": "silent syscall hooking on arm64 linux via patching svc handler silent syscall hooking on arm64 linux via patching svc handler    misc  misc primary article https://tmpout.sh/3/23.html hooking syscall arm64  exploitation this article explores silent syscall hooking techniques on arm64 linux systems. 本文探讨了在arm64 linux系统上进行静默系统调用钩子的技术。 # silent syscall hooking on arm64 linux via patching svc handler record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: silent syscall hooking on arm64 linux via patching svc handler resource_label: primary resource_type: article resource_url: https://tmpout.sh/3/23.html parent_primary_url: https://tmpout.sh/3/23.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"silent syscall hooking on arm64 linux via patching svc handler\"](https://tmpout.sh/3/23.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article]  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b8725aac6574b305",
      "item_id": "ef27f3fc406eb2a0",
      "slug": "2024-misc-cve-2021-4440-a-linux-cna-case-study-primary-3176dc6d",
      "year": 2024,
      "title": "CVE-2021-4440: A Linux CNA Case Study",
      "item_title": "CVE-2021-4440: A Linux CNA Case Study",
      "authors": [
        "Brad Spengler"
      ],
      "cves": [
        "CVE-2021-4440"
      ],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://grsecurity.net/cve-2021-4440_linux_cna_case_study",
      "primary_url": "https://grsecurity.net/cve-2021-4440_linux_cna_case_study",
      "parent_primary_url": "https://grsecurity.net/cve-2021-4440_linux_cna_case_study",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-cve-2021-4440-a-linux-cna-case-study-primary-3176dc6d.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# CVE-2021-4440: A Linux CNA Case Study record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: CVE-2021-4440: A Linux CNA Case Study resource_label: primary resource_type: article resource_url: https://grsecurity.net/cve-2021-4440_linux_cna_case_study parent_primary_url: https://grsecurity.net/cve-2021-4440_linux_cna_case_study source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"CVE-2021-4440: A Linux CNA Case Study\" by Brad Spengler](https://grsecurity.net/cve-2021-4440_linux_cna_case_study) [article] cves: CVE-2021-4440 android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false co",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://grsecurity.net/cve-2021-4440_linux_cna_case_study"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://grsecurity.net/cve-2021-4440_linux_cna_case_study"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "case study",
        "CVE",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "analysis",
      "summary_en": "The article provides a case study on CVE-2021-4440 and its implications in the Linux kernel.",
      "summary_zh": "本文提供了关于CVE-2021-4440及其在Linux内核中影响的案例研究。",
      "source_markdown": "[2024: \"CVE-2021-4440: A Linux CNA Case Study\" by Brad Spengler](https://grsecurity.net/cve-2021-4440_linux_cna_case_study) [article]",
      "search_text": "cve-2021-4440: a linux cna case study cve-2021-4440: a linux cna case study brad spengler cve-2021-4440  misc  misc primary article https://grsecurity.net/cve-2021-4440_linux_cna_case_study case study cve kernel  analysis the article provides a case study on cve-2021-4440 and its implications in the linux kernel. 本文提供了关于cve-2021-4440及其在linux内核中影响的案例研究。 # cve-2021-4440: a linux cna case study record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: cve-2021-4440: a linux cna case study resource_label: primary resource_type: article resource_url: https://grsecurity.net/cve-2021-4440_linux_cna_case_study parent_primary_url: https://grsecurity.net/cve-2021-4440_linux_cna_case_study source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"cve-2021-4440: a linux cna case study\" by brad spengler](https://grsecurity.net/cve-2021-4440_linux_cna_case_study) [article] cves: cve-2021-4440 android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false co no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "dd26e91e061d2f3b",
      "item_id": "1eee5f3ce2d7bd37",
      "slug": "2024-misc-make-your-own-backdoor-cflags-code-injection-makefile-injection-pkg-config-primary-223ed25c",
      "year": 2024,
      "title": "Make your own backdoor: CFLAGS code injection, Makefile injection, pkg-config",
      "item_title": "Make your own backdoor: CFLAGS code injection, Makefile injection, pkg-config",
      "authors": [
        "Vegard Nossum"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.openwall.com/lists/oss-security/2024/04/17/3",
      "primary_url": "https://www.openwall.com/lists/oss-security/2024/04/17/3",
      "parent_primary_url": "https://www.openwall.com/lists/oss-security/2024/04/17/3",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-make-your-own-backdoor-cflags-code-injection-makefile-injection-pkg-config-primary-223ed25c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Make your own backdoor: CFLAGS code injection, Makefile injection, pkg-config record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Make your own backdoor: CFLAGS code injection, Makefile injection, pkg-config resource_label: primary resource_type: article resource_url: https://www.openwall.com/lists/oss-security/2024/04/17/3 parent_primary_url: https://www.openwall.com/lists/oss-security/2024/04/17/3 source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Make your own backdoor: CFLAGS code injection, Makefile injection, pkg-config\" by Vegard Nossum](https://www.openwall.com/lists/oss-security/2024/04/17/3) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.openwall.com/lists/oss-security/2024/04/17/3"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.openwall.com/lists/oss-security/2024/04/17/3"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "detection",
        "CVE",
        "demo"
      ],
      "affected_area": "",
      "exploit_stage": "evaluation",
      "summary_en": "This demo illustrates the limitations of Claude Opus in detecting CVE-2023-0266.",
      "summary_zh": "该演示展示了Claude Opus在检测CVE-2023-0266方面的局限性。",
      "source_markdown": "[2024: \"Make your own backdoor: CFLAGS code injection, Makefile injection, pkg-config\" by Vegard Nossum](https://www.openwall.com/lists/oss-security/2024/04/17/3) [article]",
      "search_text": "make your own backdoor: cflags code injection, makefile injection, pkg-config make your own backdoor: cflags code injection, makefile injection, pkg-config vegard nossum   misc  misc primary article https://www.openwall.com/lists/oss-security/2024/04/17/3 detection cve demo  evaluation this demo illustrates the limitations of claude opus in detecting cve-2023-0266. 该演示展示了claude opus在检测cve-2023-0266方面的局限性。 # make your own backdoor: cflags code injection, makefile injection, pkg-config record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: make your own backdoor: cflags code injection, makefile injection, pkg-config resource_label: primary resource_type: article resource_url: https://www.openwall.com/lists/oss-security/2024/04/17/3 parent_primary_url: https://www.openwall.com/lists/oss-security/2024/04/17/3 source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"make your own backdoor: cflags code injection, makefile injection, pkg-config\" by vegard nossum](https://www.openwall.com/lists/oss-security/2024/04/17/3) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e0d4161cb3c13419",
      "item_id": "128effebda7efe6d",
      "slug": "2024-misc-demo-showing-claude-opus-does-not-find-cve-2023-0266-primary-a73be521",
      "year": 2024,
      "title": "Demo showing Claude Opus does not find CVE-2023-0266",
      "item_title": "Demo showing Claude Opus does not find CVE-2023-0266",
      "authors": [
        "Sean Heelan"
      ],
      "cves": [
        "CVE-2023-0266"
      ],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://github.com/SeanHeelan/claude_opus_cve_2023_0266",
      "primary_url": "https://github.com/SeanHeelan/claude_opus_cve_2023_0266",
      "parent_primary_url": "https://github.com/SeanHeelan/claude_opus_cve_2023_0266",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-demo-showing-claude-opus-does-not-find-cve-2023-0266-primary-a73be521.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Demo showing Claude Opus does not find CVE-2023-0266 record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Demo showing Claude Opus does not find CVE-2023-0266 resource_label: primary resource_type: article resource_url: https://github.com/SeanHeelan/claude_opus_cve_2023_0266 parent_primary_url: https://github.com/SeanHeelan/claude_opus_cve_2023_0266 source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Demo showing Claude Opus does not find CVE-2023-0266\" by Sean Heelan](https://github.com/SeanHeelan/claude_opus_cve_2023_0266) [article] cves: CVE-2023-0266 android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_p",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://github.com/SeanHeelan/claude_opus_cve_2023_0266"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://github.com/SeanHeelan/claude_opus_cve_2023_0266"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/SeanHeelan/claude_opus_cve_2023_0266"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "article",
        "CVE-2023-0266"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "2024 Linux kernel Misc resource \"Demo showing Claude Opus does not find CVE-2023-0266\" (CVE-2023-0266); URL type: article.",
      "summary_zh": "2024 年 Linux 内核Misc资料：「Demo showing Claude Opus does not find CVE-2023-0266」（CVE-2023-0266）；URL 类型：article。",
      "source_markdown": "[2024: \"Demo showing Claude Opus does not find CVE-2023-0266\" by Sean Heelan](https://github.com/SeanHeelan/claude_opus_cve_2023_0266) [article]",
      "search_text": "demo showing claude opus does not find cve-2023-0266 demo showing claude opus does not find cve-2023-0266 sean heelan cve-2023-0266  misc  misc primary article https://github.com/seanheelan/claude_opus_cve_2023_0266 misc article cve-2023-0266  misc 2024 linux kernel misc resource \"demo showing claude opus does not find cve-2023-0266\" (cve-2023-0266); url type: article. 2024 年 linux 内核misc资料：「demo showing claude opus does not find cve-2023-0266」（cve-2023-0266）；url 类型：article。 # demo showing claude opus does not find cve-2023-0266 record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: demo showing claude opus does not find cve-2023-0266 resource_label: primary resource_type: article resource_url: https://github.com/seanheelan/claude_opus_cve_2023_0266 parent_primary_url: https://github.com/seanheelan/claude_opus_cve_2023_0266 source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"demo showing claude opus does not find cve-2023-0266\" by sean heelan](https://github.com/seanheelan/claude_opus_cve_2023_0266) [article] cves: cve-2023-0266 android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_p no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "0c8b9b2896c282b1",
      "item_id": "c0ff500ae8a356f6",
      "slug": "2024-misc-linux-is-a-cna-primary-6bb4334f",
      "year": 2024,
      "title": "Linux is a CNA",
      "item_title": "Linux is a CNA",
      "authors": [
        "Greg Kroah-Hartman"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "http://www.kroah.com/log/blog/2024/02/13/linux-is-a-cna/",
      "primary_url": "http://www.kroah.com/log/blog/2024/02/13/linux-is-a-cna/",
      "parent_primary_url": "http://www.kroah.com/log/blog/2024/02/13/linux-is-a-cna/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-linux-is-a-cna-primary-6bb4334f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Linux is a CNA record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Linux is a CNA resource_label: primary resource_type: article resource_url: http://www.kroah.com/log/blog/2024/02/13/linux-is-a-cna/ parent_primary_url: http://www.kroah.com/log/blog/2024/02/13/linux-is-a-cna/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"Linux is a CNA\" by Greg Kroah-Hartman](http://www.kroah.com/log/blog/2024/02/13/linux-is-a-cna/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: http://www.kroah.com/log/b",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "http://www.kroah.com/log/blog/2024/02/13/linux-is-a-cna/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "http://www.kroah.com/log/blog/2024/02/13/linux-is-a-cna/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "CNA",
        "vulnerability",
        "assessment"
      ],
      "affected_area": "",
      "exploit_stage": "policy",
      "summary_en": "The article discusses the role of Linux as a Common Vulnerability Assessment (CNA).",
      "summary_zh": "本文讨论了Linux作为公共漏洞评估（CNA）的角色。",
      "source_markdown": "[2024: \"Linux is a CNA\" by Greg Kroah-Hartman](http://www.kroah.com/log/blog/2024/02/13/linux-is-a-cna/) [article]",
      "search_text": "linux is a cna linux is a cna greg kroah-hartman   misc  misc primary article http://www.kroah.com/log/blog/2024/02/13/linux-is-a-cna/ cna vulnerability assessment  policy the article discusses the role of linux as a common vulnerability assessment (cna). 本文讨论了linux作为公共漏洞评估（cna）的角色。 # linux is a cna record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: linux is a cna resource_label: primary resource_type: article resource_url: http://www.kroah.com/log/blog/2024/02/13/linux-is-a-cna/ parent_primary_url: http://www.kroah.com/log/blog/2024/02/13/linux-is-a-cna/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"linux is a cna\" by greg kroah-hartman](http://www.kroah.com/log/blog/2024/02/13/linux-is-a-cna/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: http://www.kroah.com/log/b no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b519492d92ea7492",
      "item_id": "f38d9f3c66ac5ba7",
      "slug": "2024-misc-an-investigation-of-patch-porting-practices-of-the-linux-kernel-ecosystem-primary-232651dd",
      "year": 2024,
      "title": "An Investigation of Patch Porting Practices of the Linux Kernel Ecosystem",
      "item_title": "An Investigation of Patch Porting Practices of the Linux Kernel Ecosystem",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://arxiv.org/pdf/2402.05212.pdf",
      "primary_url": "https://arxiv.org/pdf/2402.05212.pdf",
      "parent_primary_url": "https://arxiv.org/pdf/2402.05212.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-an-investigation-of-patch-porting-practices-of-the-linux-kernel-ecosystem-primary-232651dd.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An Investigation of Patch Porting Practices of the Linux Kernel Ecosystem record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: An Investigation of Patch Porting Practices of the Linux Kernel Ecosystem resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2402.05212.pdf parent_primary_url: https://arxiv.org/pdf/2402.05212.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"An Investigation of Patch Porting Practices of the Linux Kernel Ecosystem\"](https://arxiv.org/pdf/2402.05212.pdf) [paper] [[video](https://www.youtube.com/watch?v=nE0QcLT3Tvs)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather",
      "link_types": [
        "paper",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/2402.05212.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=nE0QcLT3Tvs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/2402.05212.pdf"
          }
        ],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=nE0QcLT3Tvs"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "patching",
        "research",
        "ecosystem"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This paper investigates the practices of patch porting within the Linux kernel ecosystem.",
      "summary_zh": "本文研究了Linux内核生态系统中补丁移植的实践。",
      "source_markdown": "[2024: \"An Investigation of Patch Porting Practices of the Linux Kernel Ecosystem\"](https://arxiv.org/pdf/2402.05212.pdf) [paper] [[video](https://www.youtube.com/watch?v=nE0QcLT3Tvs)]",
      "search_text": "an investigation of patch porting practices of the linux kernel ecosystem an investigation of patch porting practices of the linux kernel ecosystem    misc  misc primary paper https://arxiv.org/pdf/2402.05212.pdf patching research ecosystem  research this paper investigates the practices of patch porting within the linux kernel ecosystem. 本文研究了linux内核生态系统中补丁移植的实践。 # an investigation of patch porting practices of the linux kernel ecosystem record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: an investigation of patch porting practices of the linux kernel ecosystem resource_label: primary resource_type: paper resource_url: https://arxiv.org/pdf/2402.05212.pdf parent_primary_url: https://arxiv.org/pdf/2402.05212.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"an investigation of patch porting practices of the linux kernel ecosystem\"](https://arxiv.org/pdf/2402.05212.pdf) [paper] [[video](https://www.youtube.com/watch?v=ne0qclt3tvs)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "f27db34edc166d28",
      "item_id": "f38d9f3c66ac5ba7",
      "slug": "2024-misc-an-investigation-of-patch-porting-practices-of-the-linux-kernel-ecosystem-video-3d959151",
      "year": 2024,
      "title": "An Investigation of Patch Porting Practices of the Linux Kernel Ecosystem · video",
      "item_title": "An Investigation of Patch Porting Practices of the Linux Kernel Ecosystem",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=nE0QcLT3Tvs",
      "primary_url": "https://www.youtube.com/watch?v=nE0QcLT3Tvs",
      "parent_primary_url": "https://arxiv.org/pdf/2402.05212.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2024-misc-an-investigation-of-patch-porting-practices-of-the-linux-kernel-ecosystem-video-3d959151.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An Investigation of Patch Porting Practices of the Linux Kernel Ecosystem · video record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: An Investigation of Patch Porting Practices of the Linux Kernel Ecosystem resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=nE0QcLT3Tvs parent_primary_url: https://arxiv.org/pdf/2402.05212.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"An Investigation of Patch Porting Practices of the Linux Kernel Ecosystem\"](https://arxiv.org/pdf/2402.05212.pdf) [paper] [[video](https://www.youtube.com/watch?v=nE0QcLT3Tvs)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ",
      "link_types": [
        "paper",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://arxiv.org/pdf/2402.05212.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=nE0QcLT3Tvs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://arxiv.org/pdf/2402.05212.pdf"
          }
        ],
        "slides": [],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=nE0QcLT3Tvs"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "patching",
        "video",
        "ecosystem"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "The video presents findings on patch porting practices in the Linux kernel ecosystem.",
      "summary_zh": "该视频展示了Linux内核生态系统中补丁移植实践的发现。",
      "source_markdown": "[2024: \"An Investigation of Patch Porting Practices of the Linux Kernel Ecosystem\"](https://arxiv.org/pdf/2402.05212.pdf) [paper] [[video](https://www.youtube.com/watch?v=nE0QcLT3Tvs)]",
      "search_text": "an investigation of patch porting practices of the linux kernel ecosystem · video an investigation of patch porting practices of the linux kernel ecosystem    misc  misc video video https://www.youtube.com/watch?v=ne0qclt3tvs patching video ecosystem  research the video presents findings on patch porting practices in the linux kernel ecosystem. 该视频展示了linux内核生态系统中补丁移植实践的发现。 # an investigation of patch porting practices of the linux kernel ecosystem · video record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: an investigation of patch porting practices of the linux kernel ecosystem resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=ne0qclt3tvs parent_primary_url: https://arxiv.org/pdf/2402.05212.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2024: \"an investigation of patch porting practices of the linux kernel ecosystem\"](https://arxiv.org/pdf/2402.05212.pdf) [paper] [[video](https://www.youtube.com/watch?v=ne0qclt3tvs)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "a7773bada3ccb610",
      "item_id": "ff4a82a3852a3169",
      "slug": "2023-misc-syzbot-7-years-of-continuous-kernel-fuzzing-primary-75074235",
      "year": 2023,
      "title": "Syzbot: 7 years of continuous kernel fuzzing",
      "item_title": "Syzbot: 7 years of continuous kernel fuzzing",
      "authors": [
        "Aleksandr Nogikh"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://lpc.events/event/17/contributions/1521/attachments/1272/2698/LPC'23_%20Syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf",
      "primary_url": "https://lpc.events/event/17/contributions/1521/attachments/1272/2698/LPC'23_%20Syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf",
      "parent_primary_url": "https://lpc.events/event/17/contributions/1521/attachments/1272/2698/LPC'23_%20Syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2023-misc-syzbot-7-years-of-continuous-kernel-fuzzing-primary-75074235.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Syzbot: 7 years of continuous kernel fuzzing record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Syzbot: 7 years of continuous kernel fuzzing resource_label: primary resource_type: slides resource_url: https://lpc.events/event/17/contributions/1521/attachments/1272/2698/LPC'23_%20Syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf parent_primary_url: https://lpc.events/event/17/contributions/1521/attachments/1272/2698/LPC'23_%20Syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"Syzbot: 7 years of continuous kernel fuzzing\" by Aleksandr Nogikh](https://lpc.events/event/17/contributions/1521/attachments/1272/2698/LPC'23_%20Syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf) [slides] [[video](https://www.youtube.com/watc",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/17/contributions/1521/attachments/1272/2698/LPC'23_%20Syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=sDMNEBoTtrI"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/17/contributions/1521/attachments/1272/2698/LPC'23_%20Syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=sDMNEBoTtrI"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "Syzbot",
        "security"
      ],
      "affected_area": "",
      "exploit_stage": "testing",
      "summary_en": "Syzbot has been continuously fuzzing the Linux kernel for seven years, improving security.",
      "summary_zh": "Syzbot已连续七年对Linux内核进行模糊测试，提高了安全性。",
      "source_markdown": "[2023: \"Syzbot: 7 years of continuous kernel fuzzing\" by Aleksandr Nogikh](https://lpc.events/event/17/contributions/1521/attachments/1272/2698/LPC'23_%20Syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf) [slides] [[video](https://www.youtube.com/watch?v=sDMNEBoTtrI)]",
      "search_text": "syzbot: 7 years of continuous kernel fuzzing syzbot: 7 years of continuous kernel fuzzing aleksandr nogikh   misc  misc primary slides https://lpc.events/event/17/contributions/1521/attachments/1272/2698/lpc'23_%20syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf fuzzing syzbot security  testing syzbot has been continuously fuzzing the linux kernel for seven years, improving security. syzbot已连续七年对linux内核进行模糊测试，提高了安全性。 # syzbot: 7 years of continuous kernel fuzzing record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: syzbot: 7 years of continuous kernel fuzzing resource_label: primary resource_type: slides resource_url: https://lpc.events/event/17/contributions/1521/attachments/1272/2698/lpc'23_%20syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf parent_primary_url: https://lpc.events/event/17/contributions/1521/attachments/1272/2698/lpc'23_%20syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"syzbot: 7 years of continuous kernel fuzzing\" by aleksandr nogikh](https://lpc.events/event/17/contributions/1521/attachments/1272/2698/lpc'23_%20syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf) [slides] [[video](https://www.youtube.com/watc no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "b085cfd04ffbe850",
      "item_id": "ff4a82a3852a3169",
      "slug": "2023-misc-syzbot-7-years-of-continuous-kernel-fuzzing-video-a29623b9",
      "year": 2023,
      "title": "Syzbot: 7 years of continuous kernel fuzzing · video",
      "item_title": "Syzbot: 7 years of continuous kernel fuzzing",
      "authors": [
        "Aleksandr Nogikh"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=sDMNEBoTtrI",
      "primary_url": "https://www.youtube.com/watch?v=sDMNEBoTtrI",
      "parent_primary_url": "https://lpc.events/event/17/contributions/1521/attachments/1272/2698/LPC'23_%20Syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2023-misc-syzbot-7-years-of-continuous-kernel-fuzzing-video-a29623b9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Syzbot: 7 years of continuous kernel fuzzing · video record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Syzbot: 7 years of continuous kernel fuzzing resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=sDMNEBoTtrI parent_primary_url: https://lpc.events/event/17/contributions/1521/attachments/1272/2698/LPC'23_%20Syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"Syzbot: 7 years of continuous kernel fuzzing\" by Aleksandr Nogikh](https://lpc.events/event/17/contributions/1521/attachments/1272/2698/LPC'23_%20Syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf) [slides] [[video](https://www.youtube.com/watch?v=sDMNEBoTtrI)] cves: none android_impact_status: no android_impact_reason: Not enough ev",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/17/contributions/1521/attachments/1272/2698/LPC'23_%20Syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=sDMNEBoTtrI"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/17/contributions/1521/attachments/1272/2698/LPC'23_%20Syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=sDMNEBoTtrI"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "video",
        "Syzbot"
      ],
      "affected_area": "",
      "exploit_stage": "testing",
      "summary_en": "This video discusses the continuous fuzzing efforts of Syzbot over seven years.",
      "summary_zh": "该视频讨论了Syzbot在七年中的持续模糊测试工作。",
      "source_markdown": "[2023: \"Syzbot: 7 years of continuous kernel fuzzing\" by Aleksandr Nogikh](https://lpc.events/event/17/contributions/1521/attachments/1272/2698/LPC'23_%20Syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf) [slides] [[video](https://www.youtube.com/watch?v=sDMNEBoTtrI)]",
      "search_text": "syzbot: 7 years of continuous kernel fuzzing · video syzbot: 7 years of continuous kernel fuzzing aleksandr nogikh   misc  misc video video https://www.youtube.com/watch?v=sdmnebottri fuzzing video syzbot  testing this video discusses the continuous fuzzing efforts of syzbot over seven years. 该视频讨论了syzbot在七年中的持续模糊测试工作。 # syzbot: 7 years of continuous kernel fuzzing · video record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: syzbot: 7 years of continuous kernel fuzzing resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=sdmnebottri parent_primary_url: https://lpc.events/event/17/contributions/1521/attachments/1272/2698/lpc'23_%20syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"syzbot: 7 years of continuous kernel fuzzing\" by aleksandr nogikh](https://lpc.events/event/17/contributions/1521/attachments/1272/2698/lpc'23_%20syzbot_%207%20years%20of%20continuous%20kernel%20fuzzing.pdf) [slides] [[video](https://www.youtube.com/watch?v=sdmnebottri)] cves: none android_impact_status: no android_impact_reason: not enough ev no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "dac7f3b0f88c54a4",
      "item_id": "35c352d7229c4787",
      "slug": "2023-misc-operating-system-security-how-to-get-into-the-subject-primary-ca97f0e5",
      "year": 2023,
      "title": "Operating system security: how to get into the subject",
      "item_title": "Operating system security: how to get into the subject",
      "authors": [
        "Alexander Popov"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=pq-0JKKNZVQ",
      "primary_url": "https://www.youtube.com/watch?v=pq-0JKKNZVQ",
      "parent_primary_url": "https://www.youtube.com/watch?v=pq-0JKKNZVQ",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2023-misc-operating-system-security-how-to-get-into-the-subject-primary-ca97f0e5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Operating system security: how to get into the subject record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Operating system security: how to get into the subject resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=pq-0JKKNZVQ parent_primary_url: https://www.youtube.com/watch?v=pq-0JKKNZVQ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"Operating system security: how to get into the subject\" by Alexander Popov](https://www.youtube.com/watch?v=pq-0JKKNZVQ) [video] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=pq-0JKKNZVQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=pq-0JKKNZVQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security",
        "video",
        "introduction"
      ],
      "affected_area": "",
      "exploit_stage": "education",
      "summary_en": "The video provides an introduction to operating system security concepts.",
      "summary_zh": "该视频介绍了操作系统安全概念。",
      "source_markdown": "[2023: \"Operating system security: how to get into the subject\" by Alexander Popov](https://www.youtube.com/watch?v=pq-0JKKNZVQ) [video]",
      "search_text": "operating system security: how to get into the subject operating system security: how to get into the subject alexander popov   misc  misc primary video https://www.youtube.com/watch?v=pq-0jkknzvq security video introduction  education the video provides an introduction to operating system security concepts. 该视频介绍了操作系统安全概念。 # operating system security: how to get into the subject record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: operating system security: how to get into the subject resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=pq-0jkknzvq parent_primary_url: https://www.youtube.com/watch?v=pq-0jkknzvq source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"operating system security: how to get into the subject\" by alexander popov](https://www.youtube.com/watch?v=pq-0jkknzvq) [video] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "79444bee26df7359",
      "item_id": "b03ef1735da01af2",
      "slug": "2023-misc-demystifying-the-linux-kernel-security-process-primary-ab0f2f94",
      "year": 2023,
      "title": "Demystifying the Linux kernel security process",
      "item_title": "Demystifying the Linux kernel security process",
      "authors": [
        "Greg Kroah-Hartman"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process",
      "primary_url": "https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process",
      "parent_primary_url": "https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2023-misc-demystifying-the-linux-kernel-security-process-primary-ab0f2f94.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Demystifying the Linux kernel security process record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Demystifying the Linux kernel security process resource_label: primary resource_type: slides resource_url: https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process parent_primary_url: https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"Demystifying the Linux kernel security process\" by Greg Kroah-Hartman](https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process) [slides] [[video](https://www.youtube.com/watch?v=2TZe5EROFhE)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_i",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=2TZe5EROFhE"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=2TZe5EROFhE"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security",
        "presentation",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "education",
      "summary_en": "This presentation demystifies the Linux kernel security process and its challenges.",
      "summary_zh": "该演示揭示了Linux内核安全过程及其挑战。",
      "source_markdown": "[2023: \"Demystifying the Linux kernel security process\" by Greg Kroah-Hartman](https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process) [slides] [[video](https://www.youtube.com/watch?v=2TZe5EROFhE)]",
      "search_text": "demystifying the linux kernel security process demystifying the linux kernel security process greg kroah-hartman   misc  misc primary slides https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process security presentation kernel  education this presentation demystifies the linux kernel security process and its challenges. 该演示揭示了linux内核安全过程及其挑战。 # demystifying the linux kernel security process record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: demystifying the linux kernel security process resource_label: primary resource_type: slides resource_url: https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process parent_primary_url: https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"demystifying the linux kernel security process\" by greg kroah-hartman](https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process) [slides] [[video](https://www.youtube.com/watch?v=2tze5erofhe)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_i no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "62692712075e20a5",
      "item_id": "b03ef1735da01af2",
      "slug": "2023-misc-demystifying-the-linux-kernel-security-process-video-ca2715f5",
      "year": 2023,
      "title": "Demystifying the Linux kernel security process · video",
      "item_title": "Demystifying the Linux kernel security process",
      "authors": [
        "Greg Kroah-Hartman"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=2TZe5EROFhE",
      "primary_url": "https://www.youtube.com/watch?v=2TZe5EROFhE",
      "parent_primary_url": "https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2023-misc-demystifying-the-linux-kernel-security-process-video-ca2715f5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Demystifying the Linux kernel security process · video record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Demystifying the Linux kernel security process resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=2TZe5EROFhE parent_primary_url: https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"Demystifying the Linux kernel security process\" by Greg Kroah-Hartman](https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process) [slides] [[video](https://www.youtube.com/watch?v=2TZe5EROFhE)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS ",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=2TZe5EROFhE"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=2TZe5EROFhE"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security",
        "video",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "education",
      "summary_en": "The video elaborates on the Linux kernel security process and its complexities.",
      "summary_zh": "该视频详细阐述了Linux内核安全过程及其复杂性。",
      "source_markdown": "[2023: \"Demystifying the Linux kernel security process\" by Greg Kroah-Hartman](https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process) [slides] [[video](https://www.youtube.com/watch?v=2TZe5EROFhE)]",
      "search_text": "demystifying the linux kernel security process · video demystifying the linux kernel security process greg kroah-hartman   misc  misc video video https://www.youtube.com/watch?v=2tze5erofhe security video kernel  education the video elaborates on the linux kernel security process and its complexities. 该视频详细阐述了linux内核安全过程及其复杂性。 # demystifying the linux kernel security process · video record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: demystifying the linux kernel security process resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=2tze5erofhe parent_primary_url: https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"demystifying the linux kernel security process\" by greg kroah-hartman](https://speakerdeck.com/ennael/demystifying-the-linux-kernel-security-process) [slides] [[video](https://www.youtube.com/watch?v=2tze5erofhe)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4dc3a4125bf27b6e",
      "item_id": "84eb93520cb61ad4",
      "slug": "2023-misc-rustproofing-linux-primary-b216ed38",
      "year": 2023,
      "title": "Rustproofing Linux",
      "item_title": "Rustproofing Linux",
      "authors": [
        "Domen Puncer Kugler"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/",
      "primary_url": "https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/",
      "parent_primary_url": "https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2023-misc-rustproofing-linux-primary-b216ed38.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Rustproofing Linux record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Rustproofing Linux resource_label: primary resource_type: article resource_url: https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/ parent_primary_url: https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"Rustproofing Linux\" by Domen Puncer Kugler](https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/) [article] [[part 2](https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/)] [[part 3](https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/)] [[part 4](https://research.nccgroup.com/2023/02/16/rustproofing-linu",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/"
        },
        {
          "label": "part 3",
          "type": "article",
          "url": "https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/"
        },
        {
          "label": "part 4",
          "type": "article",
          "url": "https://research.nccgroup.com/2023/02/16/rustproofing-linux-part-4-4-shared-memory/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/"
          },
          {
            "label": "part 3",
            "type": "article",
            "url": "https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/"
          },
          {
            "label": "part 4",
            "type": "article",
            "url": "https://research.nccgroup.com/2023/02/16/rustproofing-linux-part-4-4-shared-memory/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Rust",
        "security",
        "enhancement"
      ],
      "affected_area": "",
      "exploit_stage": "development",
      "summary_en": "This article discusses strategies for enhancing Linux security through Rust programming.",
      "summary_zh": "本文讨论了通过Rust编程增强Linux安全性的策略。",
      "source_markdown": "[2023: \"Rustproofing Linux\" by Domen Puncer Kugler](https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/) [article] [[part 2](https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/)] [[part 3](https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/)] [[part 4](https://research.nccgroup.com/2023/02/16/rustproofing-linux-part-4-4-shared-memory/)]",
      "search_text": "rustproofing linux rustproofing linux domen puncer kugler   misc  misc primary article https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/ rust security enhancement  development this article discusses strategies for enhancing linux security through rust programming. 本文讨论了通过rust编程增强linux安全性的策略。 # rustproofing linux record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: rustproofing linux resource_label: primary resource_type: article resource_url: https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/ parent_primary_url: https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"rustproofing linux\" by domen puncer kugler](https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/) [article] [[part 2](https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/)] [[part 3](https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/)] [[part 4](https://research.nccgroup.com/2023/02/16/rustproofing-linu no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "1e2eac9f215e1d1a",
      "item_id": "84eb93520cb61ad4",
      "slug": "2023-misc-rustproofing-linux-part-2-cb7f7156",
      "year": 2023,
      "title": "Rustproofing Linux · part 2",
      "item_title": "Rustproofing Linux",
      "authors": [
        "Domen Puncer Kugler"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "part 2",
      "resource_type": "article",
      "resource_url": "https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/",
      "primary_url": "https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/",
      "parent_primary_url": "https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2023-misc-rustproofing-linux-part-2-cb7f7156.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Rustproofing Linux · part 2 record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Rustproofing Linux resource_label: part 2 resource_type: article resource_url: https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/ parent_primary_url: https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"Rustproofing Linux\" by Domen Puncer Kugler](https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/) [article] [[part 2](https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/)] [[part 3](https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/)] [[part 4](https://research.nccgroup.com/2023/02/16/rustproofin",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/"
        },
        {
          "label": "part 3",
          "type": "article",
          "url": "https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/"
        },
        {
          "label": "part 4",
          "type": "article",
          "url": "https://research.nccgroup.com/2023/02/16/rustproofing-linux-part-4-4-shared-memory/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/"
          },
          {
            "label": "part 3",
            "type": "article",
            "url": "https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/"
          },
          {
            "label": "part 4",
            "type": "article",
            "url": "https://research.nccgroup.com/2023/02/16/rustproofing-linux-part-4-4-shared-memory/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Rust",
        "race conditions",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "development",
      "summary_en": "Part 2 of the Rustproofing Linux series focuses on race conditions in kernel development.",
      "summary_zh": "Rustproofing Linux系列的第二部分集中于内核开发中的竞争条件。",
      "source_markdown": "[2023: \"Rustproofing Linux\" by Domen Puncer Kugler](https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/) [article] [[part 2](https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/)] [[part 3](https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/)] [[part 4](https://research.nccgroup.com/2023/02/16/rustproofing-linux-part-4-4-shared-memory/)]",
      "search_text": "rustproofing linux · part 2 rustproofing linux domen puncer kugler   misc  misc part 2 article https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/ rust race conditions kernel  development part 2 of the rustproofing linux series focuses on race conditions in kernel development. rustproofing linux系列的第二部分集中于内核开发中的竞争条件。 # rustproofing linux · part 2 record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: rustproofing linux resource_label: part 2 resource_type: article resource_url: https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/ parent_primary_url: https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"rustproofing linux\" by domen puncer kugler](https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/) [article] [[part 2](https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/)] [[part 3](https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/)] [[part 4](https://research.nccgroup.com/2023/02/16/rustproofin no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "5d2ca44f0efd1224",
      "item_id": "84eb93520cb61ad4",
      "slug": "2023-misc-rustproofing-linux-part-3-9db0d838",
      "year": 2023,
      "title": "Rustproofing Linux · part 3",
      "item_title": "Rustproofing Linux",
      "authors": [
        "Domen Puncer Kugler"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "part 3",
      "resource_type": "article",
      "resource_url": "https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/",
      "primary_url": "https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/",
      "parent_primary_url": "https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2023-misc-rustproofing-linux-part-3-9db0d838.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Rustproofing Linux · part 3 record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Rustproofing Linux resource_label: part 3 resource_type: article resource_url: https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/ parent_primary_url: https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"Rustproofing Linux\" by Domen Puncer Kugler](https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/) [article] [[part 2](https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/)] [[part 3](https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/)] [[part 4](https://research.nccgroup.com/2023/02/16/rustproof",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/"
        },
        {
          "label": "part 3",
          "type": "article",
          "url": "https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/"
        },
        {
          "label": "part 4",
          "type": "article",
          "url": "https://research.nccgroup.com/2023/02/16/rustproofing-linux-part-4-4-shared-memory/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/"
          },
          {
            "label": "part 3",
            "type": "article",
            "url": "https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/"
          },
          {
            "label": "part 4",
            "type": "article",
            "url": "https://research.nccgroup.com/2023/02/16/rustproofing-linux-part-4-4-shared-memory/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Rust",
        "integer overflow",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "development",
      "summary_en": "Part 3 of the series addresses integer overflows in Linux kernel security.",
      "summary_zh": "该系列的第三部分讨论了Linux内核安全中的整数溢出问题。",
      "source_markdown": "[2023: \"Rustproofing Linux\" by Domen Puncer Kugler](https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/) [article] [[part 2](https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/)] [[part 3](https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/)] [[part 4](https://research.nccgroup.com/2023/02/16/rustproofing-linux-part-4-4-shared-memory/)]",
      "search_text": "rustproofing linux · part 3 rustproofing linux domen puncer kugler   misc  misc part 3 article https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/ rust integer overflow kernel  development part 3 of the series addresses integer overflows in linux kernel security. 该系列的第三部分讨论了linux内核安全中的整数溢出问题。 # rustproofing linux · part 3 record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: rustproofing linux resource_label: part 3 resource_type: article resource_url: https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/ parent_primary_url: https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"rustproofing linux\" by domen puncer kugler](https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/) [article] [[part 2](https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/)] [[part 3](https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/)] [[part 4](https://research.nccgroup.com/2023/02/16/rustproof no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "9d4bfd6371441569",
      "item_id": "84eb93520cb61ad4",
      "slug": "2023-misc-rustproofing-linux-part-4-648c3d23",
      "year": 2023,
      "title": "Rustproofing Linux · part 4",
      "item_title": "Rustproofing Linux",
      "authors": [
        "Domen Puncer Kugler"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "part 4",
      "resource_type": "article",
      "resource_url": "https://research.nccgroup.com/2023/02/16/rustproofing-linux-part-4-4-shared-memory/",
      "primary_url": "https://research.nccgroup.com/2023/02/16/rustproofing-linux-part-4-4-shared-memory/",
      "parent_primary_url": "https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2023-misc-rustproofing-linux-part-4-648c3d23.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Rustproofing Linux · part 4 record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Rustproofing Linux resource_label: part 4 resource_type: article resource_url: https://research.nccgroup.com/2023/02/16/rustproofing-linux-part-4-4-shared-memory/ parent_primary_url: https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"Rustproofing Linux\" by Domen Puncer Kugler](https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/) [article] [[part 2](https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/)] [[part 3](https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/)] [[part 4](https://research.nccgroup.com/2023/02/16/rustproofing-",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/"
        },
        {
          "label": "part 2",
          "type": "article",
          "url": "https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/"
        },
        {
          "label": "part 3",
          "type": "article",
          "url": "https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/"
        },
        {
          "label": "part 4",
          "type": "article",
          "url": "https://research.nccgroup.com/2023/02/16/rustproofing-linux-part-4-4-shared-memory/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/"
          },
          {
            "label": "part 2",
            "type": "article",
            "url": "https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/"
          },
          {
            "label": "part 3",
            "type": "article",
            "url": "https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/"
          },
          {
            "label": "part 4",
            "type": "article",
            "url": "https://research.nccgroup.com/2023/02/16/rustproofing-linux-part-4-4-shared-memory/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Rust",
        "shared memory",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "development",
      "summary_en": "Part 4 of the Rustproofing Linux series examines shared memory issues in kernel security.",
      "summary_zh": "Rustproofing Linux系列的第四部分检查了内核安全中的共享内存问题。",
      "source_markdown": "[2023: \"Rustproofing Linux\" by Domen Puncer Kugler](https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/) [article] [[part 2](https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/)] [[part 3](https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/)] [[part 4](https://research.nccgroup.com/2023/02/16/rustproofing-linux-part-4-4-shared-memory/)]",
      "search_text": "rustproofing linux · part 4 rustproofing linux domen puncer kugler   misc  misc part 4 article https://research.nccgroup.com/2023/02/16/rustproofing-linux-part-4-4-shared-memory/ rust shared memory kernel  development part 4 of the rustproofing linux series examines shared memory issues in kernel security. rustproofing linux系列的第四部分检查了内核安全中的共享内存问题。 # rustproofing linux · part 4 record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: rustproofing linux resource_label: part 4 resource_type: article resource_url: https://research.nccgroup.com/2023/02/16/rustproofing-linux-part-4-4-shared-memory/ parent_primary_url: https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"rustproofing linux\" by domen puncer kugler](https://research.nccgroup.com/2023/02/06/rustproofing-linux-part-1-4-leaking-addresses/) [article] [[part 2](https://research.nccgroup.com/2023/02/08/rustproofing-linux-part-2-4-race-conditions/)] [[part 3](https://research.nccgroup.com/2023/02/14/rustproofing-linux-part-3-4-integer-overflows/)] [[part 4](https://research.nccgroup.com/2023/02/16/rustproofing- no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "0ddfa2cb4e8754a2",
      "item_id": "3787d46de46b1574",
      "slug": "2023-misc-what-is-a-good-linux-kernel-bug-primary-6f569cba",
      "year": 2023,
      "title": "What is a 'good' Linux Kernel bug?",
      "item_title": "What is a 'good' Linux Kernel bug?",
      "authors": [
        "Ben Hawkes"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://blog.isosceles.com/what-is-a-good-linux-kernel-bug/",
      "primary_url": "https://blog.isosceles.com/what-is-a-good-linux-kernel-bug/",
      "parent_primary_url": "https://blog.isosceles.com/what-is-a-good-linux-kernel-bug/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2023-misc-what-is-a-good-linux-kernel-bug-primary-6f569cba.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# What is a 'good' Linux Kernel bug? record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: What is a 'good' Linux Kernel bug? resource_label: primary resource_type: article resource_url: https://blog.isosceles.com/what-is-a-good-linux-kernel-bug/ parent_primary_url: https://blog.isosceles.com/what-is-a-good-linux-kernel-bug/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"What is a 'good' Linux Kernel bug?\" by Ben Hawkes](https://blog.isosceles.com/what-is-a-good-linux-kernel-bug/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none c",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://blog.isosceles.com/what-is-a-good-linux-kernel-bug/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://blog.isosceles.com/what-is-a-good-linux-kernel-bug/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "bug",
        "kernel",
        "analysis"
      ],
      "affected_area": "",
      "exploit_stage": "analysis",
      "summary_en": "The article explores what constitutes a 'good' bug in the Linux kernel.",
      "summary_zh": "本文探讨了在Linux内核中什么构成一个“好”漏洞。",
      "source_markdown": "[2023: \"What is a 'good' Linux Kernel bug?\" by Ben Hawkes](https://blog.isosceles.com/what-is-a-good-linux-kernel-bug/) [article]",
      "search_text": "what is a 'good' linux kernel bug? what is a 'good' linux kernel bug? ben hawkes   misc  misc primary article https://blog.isosceles.com/what-is-a-good-linux-kernel-bug/ bug kernel analysis  analysis the article explores what constitutes a 'good' bug in the linux kernel. 本文探讨了在linux内核中什么构成一个“好”漏洞。 # what is a 'good' linux kernel bug? record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: what is a 'good' linux kernel bug? resource_label: primary resource_type: article resource_url: https://blog.isosceles.com/what-is-a-good-linux-kernel-bug/ parent_primary_url: https://blog.isosceles.com/what-is-a-good-linux-kernel-bug/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"what is a 'good' linux kernel bug?\" by ben hawkes](https://blog.isosceles.com/what-is-a-good-linux-kernel-bug/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none c no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "e139cc09d4db2ed0",
      "item_id": "9b211fd86bd3738d",
      "slug": "2023-misc-analysing-linux-kernel-commits-primary-75092793",
      "year": 2023,
      "title": "Analysing Linux Kernel Commits",
      "item_title": "Analysing Linux Kernel Commits",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://sam4k.com/analysing-linux-kernel-commits/",
      "primary_url": "https://sam4k.com/analysing-linux-kernel-commits/",
      "parent_primary_url": "https://sam4k.com/analysing-linux-kernel-commits/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2023-misc-analysing-linux-kernel-commits-primary-75092793.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Analysing Linux Kernel Commits record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Analysing Linux Kernel Commits resource_label: primary resource_type: article resource_url: https://sam4k.com/analysing-linux-kernel-commits/ parent_primary_url: https://sam4k.com/analysing-linux-kernel-commits/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"Analysing Linux Kernel Commits\"](https://sam4k.com/analysing-linux-kernel-commits/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://sam4k.com/ana",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://sam4k.com/analysing-linux-kernel-commits/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://sam4k.com/analysing-linux-kernel-commits/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "analysis",
        "commits",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article analyzes Linux kernel commits to understand development patterns.",
      "summary_zh": "本文分析了Linux内核提交，以了解开发模式。",
      "source_markdown": "[2023: \"Analysing Linux Kernel Commits\"](https://sam4k.com/analysing-linux-kernel-commits/) [article]",
      "search_text": "analysing linux kernel commits analysing linux kernel commits    misc  misc primary article https://sam4k.com/analysing-linux-kernel-commits/ analysis commits kernel  research this article analyzes linux kernel commits to understand development patterns. 本文分析了linux内核提交，以了解开发模式。 # analysing linux kernel commits record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: analysing linux kernel commits resource_label: primary resource_type: article resource_url: https://sam4k.com/analysing-linux-kernel-commits/ parent_primary_url: https://sam4k.com/analysing-linux-kernel-commits/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2023: \"analysing linux kernel commits\"](https://sam4k.com/analysing-linux-kernel-commits/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://sam4k.com/ana no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "404baede90cae9b6",
      "item_id": "be662d3dcb8f168d",
      "slug": "2022-misc-mind-the-gap-primary-aa16e401",
      "year": 2022,
      "title": "Mind the Gap",
      "item_title": "Mind the Gap",
      "authors": [
        "Ian Beer"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://googleprojectzero.blogspot.com/2022/11/mind-the-gap.html",
      "primary_url": "https://googleprojectzero.blogspot.com/2022/11/mind-the-gap.html",
      "parent_primary_url": "https://googleprojectzero.blogspot.com/2022/11/mind-the-gap.html",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2022-misc-mind-the-gap-primary-aa16e401.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Mind the Gap record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Mind the Gap resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2022/11/mind-the-gap.html parent_primary_url: https://googleprojectzero.blogspot.com/2022/11/mind-the-gap.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2022: \"Mind the Gap\" by Ian Beer](https://googleprojectzero.blogspot.com/2022/11/mind-the-gap.html) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://googleproj",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://googleprojectzero.blogspot.com/2022/11/mind-the-gap.html"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://googleprojectzero.blogspot.com/2022/11/mind-the-gap.html"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "exploitation",
        "research"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "This article discusses the challenges and considerations in kernel exploitation.",
      "summary_zh": "本文讨论了内核利用中的挑战和考虑因素。",
      "source_markdown": "[2022: \"Mind the Gap\" by Ian Beer](https://googleprojectzero.blogspot.com/2022/11/mind-the-gap.html) [article]",
      "search_text": "mind the gap mind the gap ian beer   misc  misc primary article https://googleprojectzero.blogspot.com/2022/11/mind-the-gap.html kernel exploitation research  research this article discusses the challenges and considerations in kernel exploitation. 本文讨论了内核利用中的挑战和考虑因素。 # mind the gap record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: mind the gap resource_label: primary resource_type: article resource_url: https://googleprojectzero.blogspot.com/2022/11/mind-the-gap.html parent_primary_url: https://googleprojectzero.blogspot.com/2022/11/mind-the-gap.html source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2022: \"mind the gap\" by ian beer](https://googleprojectzero.blogspot.com/2022/11/mind-the-gap.html) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://googleproj no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "00e8a5cd16c0f8fa",
      "item_id": "e2a902dbb90ebe92",
      "slug": "2022-misc-designing-subsystems-for-fuzz-ability-primary-d96aa839",
      "year": 2022,
      "title": "Designing subsystems for FUZZ-ability",
      "item_title": "Designing subsystems for FUZZ-ability",
      "authors": [
        "Dmitry Vyukov"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://lpc.events/event/16/contributions/1309/attachments/988/1979/Designing%20subsystems%20for%20testability_fuzzing%20%28PDF%20version%29.pdf",
      "primary_url": "https://lpc.events/event/16/contributions/1309/attachments/988/1979/Designing%20subsystems%20for%20testability_fuzzing%20%28PDF%20version%29.pdf",
      "parent_primary_url": "https://lpc.events/event/16/contributions/1309/attachments/988/1979/Designing%20subsystems%20for%20testability_fuzzing%20%28PDF%20version%29.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2022-misc-designing-subsystems-for-fuzz-ability-primary-d96aa839.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Designing subsystems for FUZZ-ability record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Designing subsystems for FUZZ-ability resource_label: primary resource_type: slides resource_url: https://lpc.events/event/16/contributions/1309/attachments/988/1979/Designing%20subsystems%20for%20testability_fuzzing%20%28PDF%20version%29.pdf parent_primary_url: https://lpc.events/event/16/contributions/1309/attachments/988/1979/Designing%20subsystems%20for%20testability_fuzzing%20%28PDF%20version%29.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2022: \"Designing subsystems for FUZZ-ability\" by Dmitry Vyukov](https://lpc.events/event/16/contributions/1309/attachments/988/1979/Designing%20subsystems%20for%20testability_fuzzing%20%28PDF%20version%29.pdf) [slides] [[video](https://www.youtube.com/watch?v=zmF_A",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/16/contributions/1309/attachments/988/1979/Designing%20subsystems%20for%20testability_fuzzing%20%28PDF%20version%29.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=zmF_AswbVbQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/16/contributions/1309/attachments/988/1979/Designing%20subsystems%20for%20testability_fuzzing%20%28PDF%20version%29.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=zmF_AswbVbQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "subsystems",
        "design"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Slides on designing kernel subsystems to enhance fuzzing capabilities.",
      "summary_zh": "关于设计内核子系统以增强模糊测试能力的幻灯片。",
      "source_markdown": "[2022: \"Designing subsystems for FUZZ-ability\" by Dmitry Vyukov](https://lpc.events/event/16/contributions/1309/attachments/988/1979/Designing%20subsystems%20for%20testability_fuzzing%20%28PDF%20version%29.pdf) [slides] [[video](https://www.youtube.com/watch?v=zmF_AswbVbQ)]",
      "search_text": "designing subsystems for fuzz-ability designing subsystems for fuzz-ability dmitry vyukov   misc  misc primary slides https://lpc.events/event/16/contributions/1309/attachments/988/1979/designing%20subsystems%20for%20testability_fuzzing%20%28pdf%20version%29.pdf fuzzing subsystems design  defensive research slides on designing kernel subsystems to enhance fuzzing capabilities. 关于设计内核子系统以增强模糊测试能力的幻灯片。 # designing subsystems for fuzz-ability record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: designing subsystems for fuzz-ability resource_label: primary resource_type: slides resource_url: https://lpc.events/event/16/contributions/1309/attachments/988/1979/designing%20subsystems%20for%20testability_fuzzing%20%28pdf%20version%29.pdf parent_primary_url: https://lpc.events/event/16/contributions/1309/attachments/988/1979/designing%20subsystems%20for%20testability_fuzzing%20%28pdf%20version%29.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2022: \"designing subsystems for fuzz-ability\" by dmitry vyukov](https://lpc.events/event/16/contributions/1309/attachments/988/1979/designing%20subsystems%20for%20testability_fuzzing%20%28pdf%20version%29.pdf) [slides] [[video](https://www.youtube.com/watch?v=zmf_a no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "431f002b287cb0bf",
      "item_id": "e2a902dbb90ebe92",
      "slug": "2022-misc-designing-subsystems-for-fuzz-ability-video-42f4c077",
      "year": 2022,
      "title": "Designing subsystems for FUZZ-ability · video",
      "item_title": "Designing subsystems for FUZZ-ability",
      "authors": [
        "Dmitry Vyukov"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=zmF_AswbVbQ",
      "primary_url": "https://www.youtube.com/watch?v=zmF_AswbVbQ",
      "parent_primary_url": "https://lpc.events/event/16/contributions/1309/attachments/988/1979/Designing%20subsystems%20for%20testability_fuzzing%20%28PDF%20version%29.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2022-misc-designing-subsystems-for-fuzz-ability-video-42f4c077.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Designing subsystems for FUZZ-ability · video record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Designing subsystems for FUZZ-ability resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=zmF_AswbVbQ parent_primary_url: https://lpc.events/event/16/contributions/1309/attachments/988/1979/Designing%20subsystems%20for%20testability_fuzzing%20%28PDF%20version%29.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2022: \"Designing subsystems for FUZZ-ability\" by Dmitry Vyukov](https://lpc.events/event/16/contributions/1309/attachments/988/1979/Designing%20subsystems%20for%20testability_fuzzing%20%28PDF%20version%29.pdf) [slides] [[video](https://www.youtube.com/watch?v=zmF_AswbVbQ)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that th",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/16/contributions/1309/attachments/988/1979/Designing%20subsystems%20for%20testability_fuzzing%20%28PDF%20version%29.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=zmF_AswbVbQ"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/16/contributions/1309/attachments/988/1979/Designing%20subsystems%20for%20testability_fuzzing%20%28PDF%20version%29.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=zmF_AswbVbQ"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "subsystems",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Video presentation on designing kernel subsystems for improved fuzzing.",
      "summary_zh": "关于设计内核子系统以改善模糊测试的视频演示。",
      "source_markdown": "[2022: \"Designing subsystems for FUZZ-ability\" by Dmitry Vyukov](https://lpc.events/event/16/contributions/1309/attachments/988/1979/Designing%20subsystems%20for%20testability_fuzzing%20%28PDF%20version%29.pdf) [slides] [[video](https://www.youtube.com/watch?v=zmF_AswbVbQ)]",
      "search_text": "designing subsystems for fuzz-ability · video designing subsystems for fuzz-ability dmitry vyukov   misc  misc video video https://www.youtube.com/watch?v=zmf_aswbvbq fuzzing subsystems video  defensive research video presentation on designing kernel subsystems for improved fuzzing. 关于设计内核子系统以改善模糊测试的视频演示。 # designing subsystems for fuzz-ability · video record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: designing subsystems for fuzz-ability resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=zmf_aswbvbq parent_primary_url: https://lpc.events/event/16/contributions/1309/attachments/988/1979/designing%20subsystems%20for%20testability_fuzzing%20%28pdf%20version%29.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2022: \"designing subsystems for fuzz-ability\" by dmitry vyukov](https://lpc.events/event/16/contributions/1309/attachments/988/1979/designing%20subsystems%20for%20testability_fuzzing%20%28pdf%20version%29.pdf) [slides] [[video](https://www.youtube.com/watch?v=zmf_aswbvbq)] cves: none android_impact_status: no android_impact_reason: not enough evidence that th no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "4fb698f55b021bc8",
      "item_id": "9a7124283d458e3d",
      "slug": "2022-misc-making-syzbot-reports-more-developer-friendly-primary-9ee1bce4",
      "year": 2022,
      "title": "Making syzbot reports more developer-friendly",
      "item_title": "Making syzbot reports more developer-friendly",
      "authors": [
        "Aleksandr Nogikh"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://lpc.events/event/16/contributions/1311/attachments/1013/1951/Making%20syzbot%20reports%20more%20developer-friendly.pdf",
      "primary_url": "https://lpc.events/event/16/contributions/1311/attachments/1013/1951/Making%20syzbot%20reports%20more%20developer-friendly.pdf",
      "parent_primary_url": "https://lpc.events/event/16/contributions/1311/attachments/1013/1951/Making%20syzbot%20reports%20more%20developer-friendly.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2022-misc-making-syzbot-reports-more-developer-friendly-primary-9ee1bce4.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Making syzbot reports more developer-friendly record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Making syzbot reports more developer-friendly resource_label: primary resource_type: slides resource_url: https://lpc.events/event/16/contributions/1311/attachments/1013/1951/Making%20syzbot%20reports%20more%20developer-friendly.pdf parent_primary_url: https://lpc.events/event/16/contributions/1311/attachments/1013/1951/Making%20syzbot%20reports%20more%20developer-friendly.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2022: \"Making syzbot reports more developer-friendly\" by Aleksandr Nogikh](https://lpc.events/event/16/contributions/1311/attachments/1013/1951/Making%20syzbot%20reports%20more%20developer-friendly.pdf) [slides] [[video](https://www.youtube.com/watch?v=ePldLzdAArg)] cves: none android",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/16/contributions/1311/attachments/1013/1951/Making%20syzbot%20reports%20more%20developer-friendly.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=ePldLzdAArg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/16/contributions/1311/attachments/1013/1951/Making%20syzbot%20reports%20more%20developer-friendly.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=ePldLzdAArg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "syzbot",
        "reporting",
        "development"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Slides on improving the developer-friendliness of syzbot reports.",
      "summary_zh": "关于提高syzbot报告开发者友好性的幻灯片。",
      "source_markdown": "[2022: \"Making syzbot reports more developer-friendly\" by Aleksandr Nogikh](https://lpc.events/event/16/contributions/1311/attachments/1013/1951/Making%20syzbot%20reports%20more%20developer-friendly.pdf) [slides] [[video](https://www.youtube.com/watch?v=ePldLzdAArg)]",
      "search_text": "making syzbot reports more developer-friendly making syzbot reports more developer-friendly aleksandr nogikh   misc  misc primary slides https://lpc.events/event/16/contributions/1311/attachments/1013/1951/making%20syzbot%20reports%20more%20developer-friendly.pdf syzbot reporting development  defensive research slides on improving the developer-friendliness of syzbot reports. 关于提高syzbot报告开发者友好性的幻灯片。 # making syzbot reports more developer-friendly record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: making syzbot reports more developer-friendly resource_label: primary resource_type: slides resource_url: https://lpc.events/event/16/contributions/1311/attachments/1013/1951/making%20syzbot%20reports%20more%20developer-friendly.pdf parent_primary_url: https://lpc.events/event/16/contributions/1311/attachments/1013/1951/making%20syzbot%20reports%20more%20developer-friendly.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2022: \"making syzbot reports more developer-friendly\" by aleksandr nogikh](https://lpc.events/event/16/contributions/1311/attachments/1013/1951/making%20syzbot%20reports%20more%20developer-friendly.pdf) [slides] [[video](https://www.youtube.com/watch?v=epldlzdaarg)] cves: none android no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "c6dc64d6e01baf0d",
      "item_id": "9a7124283d458e3d",
      "slug": "2022-misc-making-syzbot-reports-more-developer-friendly-video-805246b5",
      "year": 2022,
      "title": "Making syzbot reports more developer-friendly · video",
      "item_title": "Making syzbot reports more developer-friendly",
      "authors": [
        "Aleksandr Nogikh"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=ePldLzdAArg",
      "primary_url": "https://www.youtube.com/watch?v=ePldLzdAArg",
      "parent_primary_url": "https://lpc.events/event/16/contributions/1311/attachments/1013/1951/Making%20syzbot%20reports%20more%20developer-friendly.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2022-misc-making-syzbot-reports-more-developer-friendly-video-805246b5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Making syzbot reports more developer-friendly · video record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Making syzbot reports more developer-friendly resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=ePldLzdAArg parent_primary_url: https://lpc.events/event/16/contributions/1311/attachments/1013/1951/Making%20syzbot%20reports%20more%20developer-friendly.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2022: \"Making syzbot reports more developer-friendly\" by Aleksandr Nogikh](https://lpc.events/event/16/contributions/1311/attachments/1013/1951/Making%20syzbot%20reports%20more%20developer-friendly.pdf) [slides] [[video](https://www.youtube.com/watch?v=ePldLzdAArg)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resour",
      "link_types": [
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://lpc.events/event/16/contributions/1311/attachments/1013/1951/Making%20syzbot%20reports%20more%20developer-friendly.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=ePldLzdAArg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://lpc.events/event/16/contributions/1311/attachments/1013/1951/Making%20syzbot%20reports%20more%20developer-friendly.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=ePldLzdAArg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "syzbot",
        "reporting",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Video presentation on making syzbot reports more accessible for developers.",
      "summary_zh": "关于使syzbot报告对开发者更易于访问的视频演示。",
      "source_markdown": "[2022: \"Making syzbot reports more developer-friendly\" by Aleksandr Nogikh](https://lpc.events/event/16/contributions/1311/attachments/1013/1951/Making%20syzbot%20reports%20more%20developer-friendly.pdf) [slides] [[video](https://www.youtube.com/watch?v=ePldLzdAArg)]",
      "search_text": "making syzbot reports more developer-friendly · video making syzbot reports more developer-friendly aleksandr nogikh   misc  misc video video https://www.youtube.com/watch?v=epldlzdaarg syzbot reporting video  defensive research video presentation on making syzbot reports more accessible for developers. 关于使syzbot报告对开发者更易于访问的视频演示。 # making syzbot reports more developer-friendly · video record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: making syzbot reports more developer-friendly resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=epldlzdaarg parent_primary_url: https://lpc.events/event/16/contributions/1311/attachments/1013/1951/making%20syzbot%20reports%20more%20developer-friendly.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2022: \"making syzbot reports more developer-friendly\" by aleksandr nogikh](https://lpc.events/event/16/contributions/1311/attachments/1013/1951/making%20syzbot%20reports%20more%20developer-friendly.pdf) [slides] [[video](https://www.youtube.com/watch?v=epldlzdaarg)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resour no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "787b22ebb7c8455c",
      "item_id": "f3ee161b75c1bee1",
      "slug": "2022-misc-peeking-into-the-bpf-verifier-primary-937f3dfe",
      "year": 2022,
      "title": "Peeking into the BPF verifier",
      "item_title": "Peeking into the BPF verifier",
      "authors": [
        "Shung-Hsi Yu"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "slides",
      "resource_url": "https://docs.google.com/presentation/d/1abYBW7L8kAupgG9YkFPRGayZSXm9hGv_Dvp7ADBkfyg/edit?usp=sharing",
      "primary_url": "https://docs.google.com/presentation/d/1abYBW7L8kAupgG9YkFPRGayZSXm9hGv_Dvp7ADBkfyg/edit?usp=sharing",
      "parent_primary_url": "https://docs.google.com/presentation/d/1abYBW7L8kAupgG9YkFPRGayZSXm9hGv_Dvp7ADBkfyg/edit?usp=sharing",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2022-misc-peeking-into-the-bpf-verifier-primary-937f3dfe.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Peeking into the BPF verifier record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Peeking into the BPF verifier resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/1abYBW7L8kAupgG9YkFPRGayZSXm9hGv_Dvp7ADBkfyg/edit?usp=sharing parent_primary_url: https://docs.google.com/presentation/d/1abYBW7L8kAupgG9YkFPRGayZSXm9hGv_Dvp7ADBkfyg/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2022: \"Peeking into the BPF verifier\" by Shung-Hsi Yu](https://docs.google.com/presentation/d/1abYBW7L8kAupgG9YkFPRGayZSXm9hGv_Dvp7ADBkfyg/edit?usp=sharing) [slides] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Ap",
      "link_types": [
        "slides"
      ],
      "links": [
        {
          "label": "primary",
          "type": "slides",
          "url": "https://docs.google.com/presentation/d/1abYBW7L8kAupgG9YkFPRGayZSXm9hGv_Dvp7ADBkfyg/edit?usp=sharing"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [
          {
            "label": "primary",
            "type": "slides",
            "url": "https://docs.google.com/presentation/d/1abYBW7L8kAupgG9YkFPRGayZSXm9hGv_Dvp7ADBkfyg/edit?usp=sharing"
          }
        ],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "BPF",
        "verification",
        "slides"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "Slides exploring the BPF verifier and its implications.",
      "summary_zh": "探讨BPF验证器及其影响的幻灯片。",
      "source_markdown": "[2022: \"Peeking into the BPF verifier\" by Shung-Hsi Yu](https://docs.google.com/presentation/d/1abYBW7L8kAupgG9YkFPRGayZSXm9hGv_Dvp7ADBkfyg/edit?usp=sharing) [slides]",
      "search_text": "peeking into the bpf verifier peeking into the bpf verifier shung-hsi yu   misc  misc primary slides https://docs.google.com/presentation/d/1abybw7l8kaupgg9ykfprgayzsxm9hgv_dvp7adbkfyg/edit?usp=sharing bpf verification slides  defensive research slides exploring the bpf verifier and its implications. 探讨bpf验证器及其影响的幻灯片。 # peeking into the bpf verifier record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: peeking into the bpf verifier resource_label: primary resource_type: slides resource_url: https://docs.google.com/presentation/d/1abybw7l8kaupgg9ykfprgayzsxm9hgv_dvp7adbkfyg/edit?usp=sharing parent_primary_url: https://docs.google.com/presentation/d/1abybw7l8kaupgg9ykfprgayzsxm9hgv_dvp7adbkfyg/edit?usp=sharing source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2022: \"peeking into the bpf verifier\" by shung-hsi yu](https://docs.google.com/presentation/d/1abybw7l8kaupgg9ykfprgayzsxm9hgv_dvp7adbkfyg/edit?usp=sharing) [slides] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use ap no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "2bcd5c44542be9f3",
      "item_id": "04433ff40e399f02",
      "slug": "2022-misc-so-you-wanna-pwn-the-kernel-primary-7b529843",
      "year": 2022,
      "title": "So You Wanna Pwn The Kernel?",
      "item_title": "So You Wanna Pwn The Kernel?",
      "authors": [
        "Samuel Page"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://sam4k.com/so-you-wanna-pwn-the-kernel/",
      "primary_url": "https://sam4k.com/so-you-wanna-pwn-the-kernel/",
      "parent_primary_url": "https://sam4k.com/so-you-wanna-pwn-the-kernel/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2022-misc-so-you-wanna-pwn-the-kernel-primary-7b529843.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# So You Wanna Pwn The Kernel? record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: So You Wanna Pwn The Kernel? resource_label: primary resource_type: article resource_url: https://sam4k.com/so-you-wanna-pwn-the-kernel/ parent_primary_url: https://sam4k.com/so-you-wanna-pwn-the-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2022: \"So You Wanna Pwn The Kernel?\" by Samuel Page](https://sam4k.com/so-you-wanna-pwn-the-kernel/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://sam4k.com/so-",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://sam4k.com/so-you-wanna-pwn-the-kernel/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://sam4k.com/so-you-wanna-pwn-the-kernel/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "exploitation",
        "research"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "An article discussing methods to exploit the Linux kernel.",
      "summary_zh": "一篇讨论利用Linux内核的方法的文章。",
      "source_markdown": "[2022: \"So You Wanna Pwn The Kernel?\" by Samuel Page](https://sam4k.com/so-you-wanna-pwn-the-kernel/) [article]",
      "search_text": "so you wanna pwn the kernel? so you wanna pwn the kernel? samuel page   misc  misc primary article https://sam4k.com/so-you-wanna-pwn-the-kernel/ kernel exploitation research  research an article discussing methods to exploit the linux kernel. 一篇讨论利用linux内核的方法的文章。 # so you wanna pwn the kernel? record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: so you wanna pwn the kernel? resource_label: primary resource_type: article resource_url: https://sam4k.com/so-you-wanna-pwn-the-kernel/ parent_primary_url: https://sam4k.com/so-you-wanna-pwn-the-kernel/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2022: \"so you wanna pwn the kernel?\" by samuel page](https://sam4k.com/so-you-wanna-pwn-the-kernel/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://sam4k.com/so- no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "317e599ec343fc06",
      "item_id": "9895584d13758a43",
      "slug": "2022-misc-automated-re-of-kernel-configurations-primary-0bd610d2",
      "year": 2022,
      "title": "Automated RE of Kernel Configurations",
      "item_title": "Automated RE of Kernel Configurations",
      "authors": [
        "zznop"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://zznop.com/2022/01/02/automated-re-of-kernel-build-configs/",
      "primary_url": "https://zznop.com/2022/01/02/automated-re-of-kernel-build-configs/",
      "parent_primary_url": "https://zznop.com/2022/01/02/automated-re-of-kernel-build-configs/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2022-misc-automated-re-of-kernel-configurations-primary-0bd610d2.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Automated RE of Kernel Configurations record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Automated RE of Kernel Configurations resource_label: primary resource_type: article resource_url: https://zznop.com/2022/01/02/automated-re-of-kernel-build-configs/ parent_primary_url: https://zznop.com/2022/01/02/automated-re-of-kernel-build-configs/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2022: \"Automated RE of Kernel Configurations\" by zznop](https://zznop.com/2022/01/02/automated-re-of-kernel-build-configs/) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://zznop.com/2022/01/02/automated-re-of-kernel-build-configs/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://zznop.com/2022/01/02/automated-re-of-kernel-build-configs/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "reverse engineering",
        "kernel",
        "automation"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "An article on automated reverse engineering of kernel configurations.",
      "summary_zh": "关于内核配置自动逆向工程的文章。",
      "source_markdown": "[2022: \"Automated RE of Kernel Configurations\" by zznop](https://zznop.com/2022/01/02/automated-re-of-kernel-build-configs/) [article]",
      "search_text": "automated re of kernel configurations automated re of kernel configurations zznop   misc  misc primary article https://zznop.com/2022/01/02/automated-re-of-kernel-build-configs/ reverse engineering kernel automation  defensive research an article on automated reverse engineering of kernel configurations. 关于内核配置自动逆向工程的文章。 # automated re of kernel configurations record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: automated re of kernel configurations resource_label: primary resource_type: article resource_url: https://zznop.com/2022/01/02/automated-re-of-kernel-build-configs/ parent_primary_url: https://zznop.com/2022/01/02/automated-re-of-kernel-build-configs/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2022: \"automated re of kernel configurations\" by zznop](https://zznop.com/2022/01/02/automated-re-of-kernel-build-configs/) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "334fe5f524493a73",
      "item_id": "cbaf859df9e13e84",
      "slug": "2021-misc-an-investigation-of-the-android-kernel-patch-ecosystem-at-usenix-primary-18b811a3",
      "year": 2021,
      "title": "An Investigation of the Android Kernel Patch Ecosystem\" at USENIX",
      "item_title": "An Investigation of the Android Kernel Patch Ecosystem\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://www.usenix.org/system/files/sec21-zhang-zheng.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec21-zhang-zheng.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-zhang-zheng.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2021-misc-an-investigation-of-the-android-kernel-patch-ecosystem-at-usenix-primary-18b811a3.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An Investigation of the Android Kernel Patch Ecosystem\" at USENIX record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: An Investigation of the Android Kernel Patch Ecosystem\" at USENIX resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec21-zhang-zheng.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-zhang-zheng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2021: \"An Investigation of the Android Kernel Patch Ecosystem\" at USENIX](https://www.usenix.org/system/files/sec21-zhang-zheng.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf)] [[video](https://www.youtube.com/watch?v=sx2unUrsQhc)] cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-related resource, bu",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-zhang-zheng.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=sx2unUrsQhc"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-zhang-zheng.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=sx2unUrsQhc"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Android",
        "kernel",
        "patches"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "A paper investigating the Android kernel patch ecosystem.",
      "summary_zh": "一篇研究Android内核补丁生态系统的论文。",
      "source_markdown": "[2021: \"An Investigation of the Android Kernel Patch Ecosystem\" at USENIX](https://www.usenix.org/system/files/sec21-zhang-zheng.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf)] [[video](https://www.youtube.com/watch?v=sx2unUrsQhc)]",
      "search_text": "an investigation of the android kernel patch ecosystem\" at usenix an investigation of the android kernel patch ecosystem\" at usenix    misc  misc primary paper https://www.usenix.org/system/files/sec21-zhang-zheng.pdf android kernel patches  research a paper investigating the android kernel patch ecosystem. 一篇研究android内核补丁生态系统的论文。 # an investigation of the android kernel patch ecosystem\" at usenix record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: an investigation of the android kernel patch ecosystem\" at usenix resource_label: primary resource_type: paper resource_url: https://www.usenix.org/system/files/sec21-zhang-zheng.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-zhang-zheng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2021: \"an investigation of the android kernel patch ecosystem\" at usenix](https://www.usenix.org/system/files/sec21-zhang-zheng.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf)] [[video](https://www.youtube.com/watch?v=sx2unursqhc)] cves: none android_impact_status: unknown android_impact_reason: mentions android; android-related resource, bu unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "303caafe58cf0c87",
      "item_id": "cbaf859df9e13e84",
      "slug": "2021-misc-an-investigation-of-the-android-kernel-patch-ecosystem-at-usenix-slides-2c33c90a",
      "year": 2021,
      "title": "An Investigation of the Android Kernel Patch Ecosystem\" at USENIX · slides",
      "item_title": "An Investigation of the Android Kernel Patch Ecosystem\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "slides",
      "resource_type": "slides",
      "resource_url": "https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf",
      "primary_url": "https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-zhang-zheng.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2021-misc-an-investigation-of-the-android-kernel-patch-ecosystem-at-usenix-slides-2c33c90a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An Investigation of the Android Kernel Patch Ecosystem\" at USENIX · slides record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: An Investigation of the Android Kernel Patch Ecosystem\" at USENIX resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-zhang-zheng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2021: \"An Investigation of the Android Kernel Patch Ecosystem\" at USENIX](https://www.usenix.org/system/files/sec21-zhang-zheng.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf)] [[video](https://www.youtube.com/watch?v=sx2unUrsQhc)] cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-rela",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-zhang-zheng.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=sx2unUrsQhc"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-zhang-zheng.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=sx2unUrsQhc"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Android",
        "kernel",
        "patches"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Slides accompanying the investigation of the Android kernel patch ecosystem.",
      "summary_zh": "伴随Android内核补丁生态系统研究的幻灯片。",
      "source_markdown": "[2021: \"An Investigation of the Android Kernel Patch Ecosystem\" at USENIX](https://www.usenix.org/system/files/sec21-zhang-zheng.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf)] [[video](https://www.youtube.com/watch?v=sx2unUrsQhc)]",
      "search_text": "an investigation of the android kernel patch ecosystem\" at usenix · slides an investigation of the android kernel patch ecosystem\" at usenix    misc  misc slides slides https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf android kernel patches  research slides accompanying the investigation of the android kernel patch ecosystem. 伴随android内核补丁生态系统研究的幻灯片。 # an investigation of the android kernel patch ecosystem\" at usenix · slides record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: an investigation of the android kernel patch ecosystem\" at usenix resource_label: slides resource_type: slides resource_url: https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf parent_primary_url: https://www.usenix.org/system/files/sec21-zhang-zheng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2021: \"an investigation of the android kernel patch ecosystem\" at usenix](https://www.usenix.org/system/files/sec21-zhang-zheng.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf)] [[video](https://www.youtube.com/watch?v=sx2unursqhc)] cves: none android_impact_status: unknown android_impact_reason: mentions android; android-rela unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "d21e61369a2d1309",
      "item_id": "cbaf859df9e13e84",
      "slug": "2021-misc-an-investigation-of-the-android-kernel-patch-ecosystem-at-usenix-video-463a139e",
      "year": 2021,
      "title": "An Investigation of the Android Kernel Patch Ecosystem\" at USENIX · video",
      "item_title": "An Investigation of the Android Kernel Patch Ecosystem\" at USENIX",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "video",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=sx2unUrsQhc",
      "primary_url": "https://www.youtube.com/watch?v=sx2unUrsQhc",
      "parent_primary_url": "https://www.usenix.org/system/files/sec21-zhang-zheng.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2021-misc-an-investigation-of-the-android-kernel-patch-ecosystem-at-usenix-video-463a139e.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# An Investigation of the Android Kernel Patch Ecosystem\" at USENIX · video record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: An Investigation of the Android Kernel Patch Ecosystem\" at USENIX resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=sx2unUrsQhc parent_primary_url: https://www.usenix.org/system/files/sec21-zhang-zheng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2021: \"An Investigation of the Android Kernel Patch Ecosystem\" at USENIX](https://www.usenix.org/system/files/sec21-zhang-zheng.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf)] [[video](https://www.youtube.com/watch?v=sx2unUrsQhc)] cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-related resource, but produc",
      "link_types": [
        "paper",
        "slides",
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://www.usenix.org/system/files/sec21-zhang-zheng.pdf"
        },
        {
          "label": "slides",
          "type": "slides",
          "url": "https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf"
        },
        {
          "label": "video",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=sx2unUrsQhc"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://www.usenix.org/system/files/sec21-zhang-zheng.pdf"
          }
        ],
        "slides": [
          {
            "label": "slides",
            "type": "slides",
            "url": "https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf"
          }
        ],
        "video": [
          {
            "label": "video",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=sx2unUrsQhc"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Android",
        "kernel",
        "patches"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "Video presentation on the Android kernel patch ecosystem investigation.",
      "summary_zh": "关于Android内核补丁生态系统研究的视频演示。",
      "source_markdown": "[2021: \"An Investigation of the Android Kernel Patch Ecosystem\" at USENIX](https://www.usenix.org/system/files/sec21-zhang-zheng.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf)] [[video](https://www.youtube.com/watch?v=sx2unUrsQhc)]",
      "search_text": "an investigation of the android kernel patch ecosystem\" at usenix · video an investigation of the android kernel patch ecosystem\" at usenix    misc  misc video video https://www.youtube.com/watch?v=sx2unursqhc android kernel patches  research video presentation on the android kernel patch ecosystem investigation. 关于android内核补丁生态系统研究的视频演示。 # an investigation of the android kernel patch ecosystem\" at usenix · video record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: an investigation of the android kernel patch ecosystem\" at usenix resource_label: video resource_type: video resource_url: https://www.youtube.com/watch?v=sx2unursqhc parent_primary_url: https://www.usenix.org/system/files/sec21-zhang-zheng.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2021: \"an investigation of the android kernel patch ecosystem\" at usenix](https://www.usenix.org/system/files/sec21-zhang-zheng.pdf) [paper] [[slides](https://www.usenix.org/system/files/sec21_slides_zhang-zheng.pdf)] [[video](https://www.youtube.com/watch?v=sx2unursqhc)] cves: none android_impact_status: unknown android_impact_reason: mentions android; android-related resource, but produc unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "62cc51c714b6dd42",
      "item_id": "377a5d490c1dfd63",
      "slug": "2021-misc-the-complicated-history-of-a-simple-linux-kernel-api-primary-f41a1ad1",
      "year": 2021,
      "title": "The Complicated History of a Simple Linux Kernel API",
      "item_title": "The Complicated History of a Simple Linux Kernel API",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.grsecurity.net/complicated_history_simple_linux_kernel_api",
      "primary_url": "https://www.grsecurity.net/complicated_history_simple_linux_kernel_api",
      "parent_primary_url": "https://www.grsecurity.net/complicated_history_simple_linux_kernel_api",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2021-misc-the-complicated-history-of-a-simple-linux-kernel-api-primary-f41a1ad1.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# The Complicated History of a Simple Linux Kernel API record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: The Complicated History of a Simple Linux Kernel API resource_label: primary resource_type: article resource_url: https://www.grsecurity.net/complicated_history_simple_linux_kernel_api parent_primary_url: https://www.grsecurity.net/complicated_history_simple_linux_kernel_api source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2021: \"The Complicated History of a Simple Linux Kernel API\"](https://www.grsecurity.net/complicated_history_simple_linux_kernel_api) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux.",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.grsecurity.net/complicated_history_simple_linux_kernel_api"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.grsecurity.net/complicated_history_simple_linux_kernel_api"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "API",
        "history",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "An article detailing the history of a Linux kernel API.",
      "summary_zh": "一篇详细介绍Linux内核API历史的文章。",
      "source_markdown": "[2021: \"The Complicated History of a Simple Linux Kernel API\"](https://www.grsecurity.net/complicated_history_simple_linux_kernel_api) [article]",
      "search_text": "the complicated history of a simple linux kernel api the complicated history of a simple linux kernel api    misc  misc primary article https://www.grsecurity.net/complicated_history_simple_linux_kernel_api api history kernel  research an article detailing the history of a linux kernel api. 一篇详细介绍linux内核api历史的文章。 # the complicated history of a simple linux kernel api record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: the complicated history of a simple linux kernel api resource_label: primary resource_type: article resource_url: https://www.grsecurity.net/complicated_history_simple_linux_kernel_api parent_primary_url: https://www.grsecurity.net/complicated_history_simple_linux_kernel_api source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2021: \"the complicated history of a simple linux kernel api\"](https://www.grsecurity.net/complicated_history_simple_linux_kernel_api) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ef7cefbee7bd04a5",
      "item_id": "f5cea3a025c1335b",
      "slug": "2021-misc-on-the-feasibility-of-stealthily-introducing-vulnerabilities-in-open-source-software-via-hypocrite-c",
      "year": 2021,
      "title": "On the Feasibility of Stealthily Introducing Vulnerabilities in Open-Source Software via Hypocrite Commit",
      "item_title": "On the Feasibility of Stealthily Introducing Vulnerabilities in Open-Source Software via Hypocrite Commit",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "paper",
      "resource_url": "https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/OpenSourceInsecurity.pdf",
      "primary_url": "https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/OpenSourceInsecurity.pdf",
      "parent_primary_url": "https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/OpenSourceInsecurity.pdf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2021-misc-on-the-feasibility-of-stealthily-introducing-vulnerabilities-in-open-source-software-via-hypocrite-c.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# On the Feasibility of Stealthily Introducing Vulnerabilities in Open-Source Software via Hypocrite Commit record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: On the Feasibility of Stealthily Introducing Vulnerabilities in Open-Source Software via Hypocrite Commit resource_label: primary resource_type: paper resource_url: https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/OpenSourceInsecurity.pdf parent_primary_url: https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/OpenSourceInsecurity.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2021: \"On the Feasibility of Stealthily Introducing Vulnerabilities in Open-Source Software via Hypocrite Commit\"](https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/OpenSourceInsecurity.pdf) [paper] cves: none android_impact_sta",
      "link_types": [
        "paper"
      ],
      "links": [
        {
          "label": "primary",
          "type": "paper",
          "url": "https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/OpenSourceInsecurity.pdf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [
          {
            "label": "primary",
            "type": "paper",
            "url": "https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/OpenSourceInsecurity.pdf"
          }
        ],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/OpenSourceInsecurity.pdf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerabilities",
        "open-source",
        "research"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "A paper discussing the introduction of vulnerabilities in open-source software.",
      "summary_zh": "一篇讨论在开源软件中引入漏洞的论文。",
      "source_markdown": "[2021: \"On the Feasibility of Stealthily Introducing Vulnerabilities in Open-Source Software via Hypocrite Commit\"](https://github.com/QiushiWu/QiushiWu.github.io/blob/main/papers/OpenSourceInsecurity.pdf) [paper]",
      "search_text": "on the feasibility of stealthily introducing vulnerabilities in open-source software via hypocrite commit on the feasibility of stealthily introducing vulnerabilities in open-source software via hypocrite commit    misc  misc primary paper https://github.com/qiushiwu/qiushiwu.github.io/blob/main/papers/opensourceinsecurity.pdf vulnerabilities open-source research  research a paper discussing the introduction of vulnerabilities in open-source software. 一篇讨论在开源软件中引入漏洞的论文。 # on the feasibility of stealthily introducing vulnerabilities in open-source software via hypocrite commit record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: on the feasibility of stealthily introducing vulnerabilities in open-source software via hypocrite commit resource_label: primary resource_type: paper resource_url: https://github.com/qiushiwu/qiushiwu.github.io/blob/main/papers/opensourceinsecurity.pdf parent_primary_url: https://github.com/qiushiwu/qiushiwu.github.io/blob/main/papers/opensourceinsecurity.pdf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2021: \"on the feasibility of stealthily introducing vulnerabilities in open-source software via hypocrite commit\"](https://github.com/qiushiwu/qiushiwu.github.io/blob/main/papers/opensourceinsecurity.pdf) [paper] cves: none android_impact_sta no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "ce23cf0d169ceb60",
      "item_id": "0caa1fab9f560212",
      "slug": "2020-misc-checklist-for-when-you-get-stuck-with-a-kernel-exploit-primary-228d9ccc",
      "year": 2020,
      "title": "Checklist for when you get stuck with a Kernel Exploit",
      "item_title": "Checklist for when you get stuck with a Kernel Exploit",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://ptr-yudai.hatenablog.com/entry/2020/03/11/125818",
      "primary_url": "https://ptr-yudai.hatenablog.com/entry/2020/03/11/125818",
      "parent_primary_url": "https://ptr-yudai.hatenablog.com/entry/2020/03/11/125818",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2020-misc-checklist-for-when-you-get-stuck-with-a-kernel-exploit-primary-228d9ccc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Checklist for when you get stuck with a Kernel Exploit record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Checklist for when you get stuck with a Kernel Exploit resource_label: primary resource_type: article resource_url: https://ptr-yudai.hatenablog.com/entry/2020/03/11/125818 parent_primary_url: https://ptr-yudai.hatenablog.com/entry/2020/03/11/125818 source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2020: \"Checklist for when you get stuck with a Kernel Exploit\"](https://ptr-yudai.hatenablog.com/entry/2020/03/11/125818) [article] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://ptr-yudai.hatenablog.com/entry/2020/03/11/125818"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://ptr-yudai.hatenablog.com/entry/2020/03/11/125818"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "checklist",
        "kernel",
        "exploitation"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "An article providing a checklist for kernel exploit challenges.",
      "summary_zh": "提供内核利用挑战清单的文章。",
      "source_markdown": "[2020: \"Checklist for when you get stuck with a Kernel Exploit\"](https://ptr-yudai.hatenablog.com/entry/2020/03/11/125818) [article]",
      "search_text": "checklist for when you get stuck with a kernel exploit checklist for when you get stuck with a kernel exploit    misc  misc primary article https://ptr-yudai.hatenablog.com/entry/2020/03/11/125818 checklist kernel exploitation  defensive research an article providing a checklist for kernel exploit challenges. 提供内核利用挑战清单的文章。 # checklist for when you get stuck with a kernel exploit record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: checklist for when you get stuck with a kernel exploit resource_label: primary resource_type: article resource_url: https://ptr-yudai.hatenablog.com/entry/2020/03/11/125818 parent_primary_url: https://ptr-yudai.hatenablog.com/entry/2020/03/11/125818 source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2020: \"checklist for when you get stuck with a kernel exploit\"](https://ptr-yudai.hatenablog.com/entry/2020/03/11/125818) [article] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_ no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "ba60bce466ac944d",
      "item_id": "7fe52e43415ebacf",
      "slug": "2020-misc-android-linux-slub-aliasing-for-general-and-special-purpose-caches-primary-a48b7247",
      "year": 2020,
      "title": "Android / Linux SLUB aliasing for general- and special-purpose caches",
      "item_title": "Android / Linux SLUB aliasing for general- and special-purpose caches",
      "authors": [
        "Vitaly Nikolenko"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/watch?v=5-eRsA0l8Pg",
      "primary_url": "https://www.youtube.com/watch?v=5-eRsA0l8Pg",
      "parent_primary_url": "https://www.youtube.com/watch?v=5-eRsA0l8Pg",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2020-misc-android-linux-slub-aliasing-for-general-and-special-purpose-caches-primary-a48b7247.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Android / Linux SLUB aliasing for general- and special-purpose caches record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Android / Linux SLUB aliasing for general- and special-purpose caches resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=5-eRsA0l8Pg parent_primary_url: https://www.youtube.com/watch?v=5-eRsA0l8Pg source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2020: \"Android / Linux SLUB aliasing for general- and special-purpose caches\" by Vitaly Nikolenko](https://www.youtube.com/watch?v=5-eRsA0l8Pg) [video] cves: none android_impact_status: unknown android_impact_reason: mentions Android; Android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU ",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/watch?v=5-eRsA0l8Pg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/watch?v=5-eRsA0l8Pg"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Android; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "SLUB",
        "caching",
        "Android"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "A video discussing SLUB aliasing in Android/Linux for cache management.",
      "summary_zh": "讨论Android/Linux中SLUB别名用于缓存管理的视频。",
      "source_markdown": "[2020: \"Android / Linux SLUB aliasing for general- and special-purpose caches\" by Vitaly Nikolenko](https://www.youtube.com/watch?v=5-eRsA0l8Pg) [video]",
      "search_text": "android / linux slub aliasing for general- and special-purpose caches android / linux slub aliasing for general- and special-purpose caches vitaly nikolenko   misc  misc primary video https://www.youtube.com/watch?v=5-ersa0l8pg slub caching android  research a video discussing slub aliasing in android/linux for cache management. 讨论android/linux中slub别名用于缓存管理的视频。 # android / linux slub aliasing for general- and special-purpose caches record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: android / linux slub aliasing for general- and special-purpose caches resource_label: primary resource_type: video resource_url: https://www.youtube.com/watch?v=5-ersa0l8pg parent_primary_url: https://www.youtube.com/watch?v=5-ersa0l8pg source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2020: \"android / linux slub aliasing for general- and special-purpose caches\" by vitaly nikolenko](https://www.youtube.com/watch?v=5-ersa0l8pg) [video] cves: none android_impact_status: unknown android_impact_reason: mentions android; android-related resource, but production-device vulnerability impact is not established. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu  unknown mentions android; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "d2bfaa1c1b09c327",
      "item_id": "7d94383153b71c54",
      "slug": "2018-misc-binder-transactions-in-the-bowels-of-the-linux-kernel-primary-93fda6e7",
      "year": 2018,
      "title": "Binder transactions in the bowels of the Linux Kernel",
      "item_title": "Binder transactions in the bowels of the Linux Kernel",
      "authors": [
        "Jean-Baptiste Cayrou"
      ],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://www.synacktiv.com/en/publications/binder-transactions-in-the-bowels-of-the-linux-kernel",
      "primary_url": "https://www.synacktiv.com/en/publications/binder-transactions-in-the-bowels-of-the-linux-kernel",
      "parent_primary_url": "https://www.synacktiv.com/en/publications/binder-transactions-in-the-bowels-of-the-linux-kernel",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/2018-misc-binder-transactions-in-the-bowels-of-the-linux-kernel-primary-93fda6e7.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Binder transactions in the bowels of the Linux Kernel record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Binder transactions in the bowels of the Linux Kernel resource_label: primary resource_type: article resource_url: https://www.synacktiv.com/en/publications/binder-transactions-in-the-bowels-of-the-linux-kernel parent_primary_url: https://www.synacktiv.com/en/publications/binder-transactions-in-the-bowels-of-the-linux-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2018: \"Binder transactions in the bowels of the Linux Kernel\" by Jean-Baptiste Cayrou](https://www.synacktiv.com/en/publications/binder-transactions-in-the-bowels-of-the-linux-kernel) [article] cves: none android_impact_status: unknown android_impact_reason: mentions Binder, a core Android IPC driver; Android-related resource, b",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://www.synacktiv.com/en/publications/binder-transactions-in-the-bowels-of-the-linux-kernel"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://www.synacktiv.com/en/publications/binder-transactions-in-the-bowels-of-the-linux-kernel"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "unknown",
      "android_related": true,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "mentions Binder, a core Android IPC driver; Android-related resource, but production-device vulnerability impact is not established.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "binder",
        "transactions",
        "kernel"
      ],
      "affected_area": "",
      "exploit_stage": "research",
      "summary_en": "An article on binder transactions within the Linux kernel.",
      "summary_zh": "关于Linux内核中绑定事务的文章。",
      "source_markdown": "[2018: \"Binder transactions in the bowels of the Linux Kernel\" by Jean-Baptiste Cayrou](https://www.synacktiv.com/en/publications/binder-transactions-in-the-bowels-of-the-linux-kernel) [article]",
      "search_text": "binder transactions in the bowels of the linux kernel binder transactions in the bowels of the linux kernel jean-baptiste cayrou   misc  misc primary article https://www.synacktiv.com/en/publications/binder-transactions-in-the-bowels-of-the-linux-kernel binder transactions kernel  research an article on binder transactions within the linux kernel. 关于linux内核中绑定事务的文章。 # binder transactions in the bowels of the linux kernel record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: binder transactions in the bowels of the linux kernel resource_label: primary resource_type: article resource_url: https://www.synacktiv.com/en/publications/binder-transactions-in-the-bowels-of-the-linux-kernel parent_primary_url: https://www.synacktiv.com/en/publications/binder-transactions-in-the-bowels-of-the-linux-kernel source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [2018: \"binder transactions in the bowels of the linux kernel\" by jean-baptiste cayrou](https://www.synacktiv.com/en/publications/binder-transactions-in-the-bowels-of-the-linux-kernel) [article] cves: none android_impact_status: unknown android_impact_reason: mentions binder, a core android ipc driver; android-related resource, b unknown mentions binder, a core android ipc driver; android-related resource, but production-device vulnerability impact is not established. no production ios devices use apple's xnu kernel rather than linux. android-related android   "
    },
    {
      "id": "0d01fff0b7d0bd44",
      "item_id": "e339dbbe5524bed2",
      "slug": "undated-misc-grsecurity-cve-dataset-primary-30278b41",
      "year": null,
      "title": "grsecurity CVE-Dataset",
      "item_title": "grsecurity CVE-Dataset",
      "authors": [],
      "cves": [],
      "tags": [
        "spreadsheet"
      ],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://docs.google.com/spreadsheets/u/0/d/1JO43UfT7Vjun9ytSWNdI17xmnzZMg19Tii-rKw94Rvw/htmlview#gid=0",
      "primary_url": "https://docs.google.com/spreadsheets/u/0/d/1JO43UfT7Vjun9ytSWNdI17xmnzZMg19Tii-rKw94Rvw/htmlview#gid=0",
      "parent_primary_url": "https://docs.google.com/spreadsheets/u/0/d/1JO43UfT7Vjun9ytSWNdI17xmnzZMg19Tii-rKw94Rvw/htmlview#gid=0",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-grsecurity-cve-dataset-primary-30278b41.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# grsecurity CVE-Dataset record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: grsecurity CVE-Dataset resource_label: primary resource_type: article resource_url: https://docs.google.com/spreadsheets/u/0/d/1JO43UfT7Vjun9ytSWNdI17xmnzZMg19Tii-rKw94Rvw/htmlview#gid=0 parent_primary_url: https://docs.google.com/spreadsheets/u/0/d/1JO43UfT7Vjun9ytSWNdI17xmnzZMg19Tii-rKw94Rvw/htmlview#gid=0 source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [grsecurity CVE-Dataset](https://docs.google.com/spreadsheets/u/0/d/1JO43UfT7Vjun9ytSWNdI17xmnzZMg19Tii-rKw94Rvw/htmlview#gid=0) [spreadsheet] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linu",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://docs.google.com/spreadsheets/u/0/d/1JO43UfT7Vjun9ytSWNdI17xmnzZMg19Tii-rKw94Rvw/htmlview#gid=0"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://docs.google.com/spreadsheets/u/0/d/1JO43UfT7Vjun9ytSWNdI17xmnzZMg19Tii-rKw94Rvw/htmlview#gid=0"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "article",
        "spreadsheet"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"grsecurity CVE-Dataset\"; URL type: article.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「grsecurity CVE-Dataset」；URL 类型：article。",
      "source_markdown": "[grsecurity CVE-Dataset](https://docs.google.com/spreadsheets/u/0/d/1JO43UfT7Vjun9ytSWNdI17xmnzZMg19Tii-rKw94Rvw/htmlview#gid=0) [spreadsheet]",
      "search_text": "grsecurity cve-dataset grsecurity cve-dataset   spreadsheet misc  misc primary article https://docs.google.com/spreadsheets/u/0/d/1jo43uft7vjun9ytswndi17xmnzzmg19tii-rkw94rvw/htmlview#gid=0 misc article spreadsheet  misc undated linux kernel misc resource \"grsecurity cve-dataset\"; url type: article. 未标年份 linux 内核misc资料：「grsecurity cve-dataset」；url 类型：article。 # grsecurity cve-dataset record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: grsecurity cve-dataset resource_label: primary resource_type: article resource_url: https://docs.google.com/spreadsheets/u/0/d/1jo43uft7vjun9ytswndi17xmnzzmg19tii-rkw94rvw/htmlview#gid=0 parent_primary_url: https://docs.google.com/spreadsheets/u/0/d/1jo43uft7vjun9ytswndi17xmnzzmg19tii-rkw94rvw/htmlview#gid=0 source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [grsecurity cve-dataset](https://docs.google.com/spreadsheets/u/0/d/1jo43uft7vjun9ytswndi17xmnzzmg19tii-rkw94rvw/htmlview#gid=0) [spreadsheet] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linu no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7ef90edbae0394ff",
      "item_id": "af7c400b5938b03d",
      "slug": "undated-misc-syzkaller-coverage-dashboard-primary-52d7ae7a",
      "year": null,
      "title": "Syzkaller Coverage Dashboard",
      "item_title": "Syzkaller Coverage Dashboard",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "dashboard",
      "resource_url": "https://lookerstudio.google.com/reporting/41ae4a20-9826-4f7f-be14-a934a04686fe/page/4EOpD",
      "primary_url": "https://lookerstudio.google.com/reporting/41ae4a20-9826-4f7f-be14-a934a04686fe/page/4EOpD",
      "parent_primary_url": "https://lookerstudio.google.com/reporting/41ae4a20-9826-4f7f-be14-a934a04686fe/page/4EOpD",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-syzkaller-coverage-dashboard-primary-52d7ae7a.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# Syzkaller Coverage Dashboard record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: Syzkaller Coverage Dashboard resource_label: primary resource_type: dashboard resource_url: https://lookerstudio.google.com/reporting/41ae4a20-9826-4f7f-be14-a934a04686fe/page/4EOpD parent_primary_url: https://lookerstudio.google.com/reporting/41ae4a20-9826-4f7f-be14-a934a04686fe/page/4EOpD source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [Syzkaller Coverage Dashboard](https://lookerstudio.google.com/reporting/41ae4a20-9826-4f7f-be14-a934a04686fe/page/4EOpD) cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false",
      "link_types": [
        "dashboard"
      ],
      "links": [
        {
          "label": "primary",
          "type": "dashboard",
          "url": "https://lookerstudio.google.com/reporting/41ae4a20-9826-4f7f-be14-a934a04686fe/page/4EOpD"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": [
          {
            "label": "primary",
            "type": "dashboard",
            "url": "https://lookerstudio.google.com/reporting/41ae4a20-9826-4f7f-be14-a934a04686fe/page/4EOpD"
          }
        ]
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"Syzkaller Coverage Dashboard\"; URL type: article.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「Syzkaller Coverage Dashboard」；URL 类型：article。",
      "source_markdown": "[Syzkaller Coverage Dashboard](https://lookerstudio.google.com/reporting/41ae4a20-9826-4f7f-be14-a934a04686fe/page/4EOpD)",
      "search_text": "syzkaller coverage dashboard syzkaller coverage dashboard    misc  misc primary dashboard https://lookerstudio.google.com/reporting/41ae4a20-9826-4f7f-be14-a934a04686fe/page/4eopd misc article  misc undated linux kernel misc resource \"syzkaller coverage dashboard\"; url type: article. 未标年份 linux 内核misc资料：「syzkaller coverage dashboard」；url 类型：article。 # syzkaller coverage dashboard record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: syzkaller coverage dashboard resource_label: primary resource_type: dashboard resource_url: https://lookerstudio.google.com/reporting/41ae4a20-9826-4f7f-be14-a934a04686fe/page/4eopd parent_primary_url: https://lookerstudio.google.com/reporting/41ae4a20-9826-4f7f-be14-a934a04686fe/page/4eopd source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [syzkaller coverage dashboard](https://lookerstudio.google.com/reporting/41ae4a20-9826-4f7f-be14-a934a04686fe/page/4eopd) cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "7abd661585ac56e5",
      "item_id": "bc2d3d8bafd96bb0",
      "slug": "undated-misc-kernel-vulns-missing-stable-backports-primary-04d014a5",
      "year": null,
      "title": "kernel vulns missing stable backports",
      "item_title": "kernel vulns missing stable backports",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://twitter.com/sirdarckcat/status/1779894891608220052",
      "primary_url": "https://twitter.com/sirdarckcat/status/1779894891608220052",
      "parent_primary_url": "https://twitter.com/sirdarckcat/status/1779894891608220052",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-kernel-vulns-missing-stable-backports-primary-04d014a5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# kernel vulns missing stable backports record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: kernel vulns missing stable backports resource_label: primary resource_type: code resource_url: https://twitter.com/sirdarckcat/status/1779894891608220052 parent_primary_url: https://twitter.com/sirdarckcat/status/1779894891608220052 source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [kernel vulns missing stable backports](https://docs.google.com/spreadsheets/d/1JzRy4amgEn98KvyNs1yB4H_R08TovFZH0nutWx2tvZg/view#gid=0) [[source](https://twitter.com/sirdarckcat/status/1779894891608220052)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than L",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://twitter.com/sirdarckcat/status/1779894891608220052"
        },
        {
          "label": "kernel vulns missing stable backports",
          "type": "article",
          "url": "https://docs.google.com/spreadsheets/d/1JzRy4amgEn98KvyNs1yB4H_R08TovFZH0nutWx2tvZg/view#gid=0"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "kernel vulns missing stable backports",
            "type": "article",
            "url": "https://docs.google.com/spreadsheets/d/1JzRy4amgEn98KvyNs1yB4H_R08TovFZH0nutWx2tvZg/view#gid=0"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://twitter.com/sirdarckcat/status/1779894891608220052"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://twitter.com/sirdarckcat/status/1779894891608220052"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"kernel vulns missing stable backports\"; URL type: code.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「kernel vulns missing stable backports」；URL 类型：code。",
      "source_markdown": "[kernel vulns missing stable backports](https://docs.google.com/spreadsheets/d/1JzRy4amgEn98KvyNs1yB4H_R08TovFZH0nutWx2tvZg/view#gid=0) [[source](https://twitter.com/sirdarckcat/status/1779894891608220052)]",
      "search_text": "kernel vulns missing stable backports kernel vulns missing stable backports    misc  misc primary code https://twitter.com/sirdarckcat/status/1779894891608220052 misc code  misc undated linux kernel misc resource \"kernel vulns missing stable backports\"; url type: code. 未标年份 linux 内核misc资料：「kernel vulns missing stable backports」；url 类型：code。 # kernel vulns missing stable backports record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: kernel vulns missing stable backports resource_label: primary resource_type: code resource_url: https://twitter.com/sirdarckcat/status/1779894891608220052 parent_primary_url: https://twitter.com/sirdarckcat/status/1779894891608220052 source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [kernel vulns missing stable backports](https://docs.google.com/spreadsheets/d/1jzry4amgen98kvyns1yb4h_r08tovfzh0nutwx2tvzg/view#gid=0) [[source](https://twitter.com/sirdarckcat/status/1779894891608220052)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than l no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "884e4f0be029ff91",
      "item_id": "bc2d3d8bafd96bb0",
      "slug": "undated-misc-kernel-vulns-missing-stable-backports-kernel-vulns-missing-stable-backports-dadc3607",
      "year": null,
      "title": "kernel vulns missing stable backports · kernel vulns missing stable backports",
      "item_title": "kernel vulns missing stable backports",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "kernel vulns missing stable backports",
      "resource_type": "article",
      "resource_url": "https://docs.google.com/spreadsheets/d/1JzRy4amgEn98KvyNs1yB4H_R08TovFZH0nutWx2tvZg/view#gid=0",
      "primary_url": "https://docs.google.com/spreadsheets/d/1JzRy4amgEn98KvyNs1yB4H_R08TovFZH0nutWx2tvZg/view#gid=0",
      "parent_primary_url": "https://twitter.com/sirdarckcat/status/1779894891608220052",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-kernel-vulns-missing-stable-backports-kernel-vulns-missing-stable-backports-dadc3607.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# kernel vulns missing stable backports · kernel vulns missing stable backports record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: kernel vulns missing stable backports resource_label: kernel vulns missing stable backports resource_type: article resource_url: https://docs.google.com/spreadsheets/d/1JzRy4amgEn98KvyNs1yB4H_R08TovFZH0nutWx2tvZg/view#gid=0 parent_primary_url: https://twitter.com/sirdarckcat/status/1779894891608220052 source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [kernel vulns missing stable backports](https://docs.google.com/spreadsheets/d/1JzRy4amgEn98KvyNs1yB4H_R08TovFZH0nutWx2tvZg/view#gid=0) [[source](https://twitter.com/sirdarckcat/status/1779894891608220052)] cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android ",
      "link_types": [
        "code",
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://twitter.com/sirdarckcat/status/1779894891608220052"
        },
        {
          "label": "kernel vulns missing stable backports",
          "type": "article",
          "url": "https://docs.google.com/spreadsheets/d/1JzRy4amgEn98KvyNs1yB4H_R08TovFZH0nutWx2tvZg/view#gid=0"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "kernel vulns missing stable backports",
            "type": "article",
            "url": "https://docs.google.com/spreadsheets/d/1JzRy4amgEn98KvyNs1yB4H_R08TovFZH0nutWx2tvZg/view#gid=0"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://twitter.com/sirdarckcat/status/1779894891608220052"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://twitter.com/sirdarckcat/status/1779894891608220052"
      ],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"kernel vulns missing stable backports · kernel vulns missing stable backports\"; URL type: article.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「kernel vulns missing stable backports · kernel vulns missing stable backports」；URL 类型：article。",
      "source_markdown": "[kernel vulns missing stable backports](https://docs.google.com/spreadsheets/d/1JzRy4amgEn98KvyNs1yB4H_R08TovFZH0nutWx2tvZg/view#gid=0) [[source](https://twitter.com/sirdarckcat/status/1779894891608220052)]",
      "search_text": "kernel vulns missing stable backports · kernel vulns missing stable backports kernel vulns missing stable backports    misc  misc kernel vulns missing stable backports article https://docs.google.com/spreadsheets/d/1jzry4amgen98kvyns1yb4h_r08tovfzh0nutwx2tvzg/view#gid=0 misc article  misc undated linux kernel misc resource \"kernel vulns missing stable backports · kernel vulns missing stable backports\"; url type: article. 未标年份 linux 内核misc资料：「kernel vulns missing stable backports · kernel vulns missing stable backports」；url 类型：article。 # kernel vulns missing stable backports · kernel vulns missing stable backports record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: kernel vulns missing stable backports resource_label: kernel vulns missing stable backports resource_type: article resource_url: https://docs.google.com/spreadsheets/d/1jzry4amgen98kvyns1yb4h_r08tovfzh0nutwx2tvzg/view#gid=0 parent_primary_url: https://twitter.com/sirdarckcat/status/1779894891608220052 source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: [kernel vulns missing stable backports](https://docs.google.com/spreadsheets/d/1jzry4amgen98kvyns1yb4h_r08tovfzh0nutwx2tvzg/view#gid=0) [[source](https://twitter.com/sirdarckcat/status/1779894891608220052)] cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "52fb561cd2121cba",
      "item_id": "39307268dfea23d2",
      "slug": "undated-misc-nccgroup-exploit-mitigations-primary-08ced21f",
      "year": null,
      "title": "nccgroup/exploit_mitigations",
      "item_title": "nccgroup/exploit_mitigations",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/nccgroup/exploit_mitigations",
      "primary_url": "https://github.com/nccgroup/exploit_mitigations",
      "parent_primary_url": "https://github.com/nccgroup/exploit_mitigations",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-nccgroup-exploit-mitigations-primary-08ced21f.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# nccgroup/exploit_mitigations record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: nccgroup/exploit_mitigations resource_label: primary resource_type: exploit resource_url: https://github.com/nccgroup/exploit_mitigations parent_primary_url: https://github.com/nccgroup/exploit_mitigations source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/nccgroup/exploit_mitigations cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/nccgroup/exploit_mitigations context_links: - [exploit] primary: https://github.com/nccgroup/exploit_mitigat",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/nccgroup/exploit_mitigations"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/nccgroup/exploit_mitigations"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/nccgroup/exploit_mitigations"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"nccgroup/exploit_mitigations\"; URL type: exploit.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「nccgroup/exploit_mitigations」；URL 类型：exploit。",
      "source_markdown": "https://github.com/nccgroup/exploit_mitigations",
      "search_text": "nccgroup/exploit_mitigations nccgroup/exploit_mitigations    misc  misc primary exploit https://github.com/nccgroup/exploit_mitigations misc exploit  misc undated linux kernel misc resource \"nccgroup/exploit_mitigations\"; url type: exploit. 未标年份 linux 内核misc资料：「nccgroup/exploit_mitigations」；url 类型：exploit。 # nccgroup/exploit_mitigations record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: nccgroup/exploit_mitigations resource_label: primary resource_type: exploit resource_url: https://github.com/nccgroup/exploit_mitigations parent_primary_url: https://github.com/nccgroup/exploit_mitigations source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/nccgroup/exploit_mitigations cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/nccgroup/exploit_mitigations context_links: - [exploit] primary: https://github.com/nccgroup/exploit_mitigat no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "0841ac0c370221e2",
      "item_id": "971d29a4ee993da0",
      "slug": "undated-misc-bsauce-kernel-security-learning-primary-863a67d5",
      "year": null,
      "title": "bsauce/kernel-security-learning",
      "item_title": "bsauce/kernel-security-learning",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/bsauce/kernel-security-learning",
      "primary_url": "https://github.com/bsauce/kernel-security-learning",
      "parent_primary_url": "https://github.com/bsauce/kernel-security-learning",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-bsauce-kernel-security-learning-primary-863a67d5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# bsauce/kernel-security-learning record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: bsauce/kernel-security-learning resource_label: primary resource_type: code resource_url: https://github.com/bsauce/kernel-security-learning parent_primary_url: https://github.com/bsauce/kernel-security-learning source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/bsauce/kernel-security-learning cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/bsauce/kernel-security-learning context_links: - [code] primary: https://github.com/bsauce/ker",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/bsauce/kernel-security-learning"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/bsauce/kernel-security-learning"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/bsauce/kernel-security-learning"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"bsauce/kernel-security-learning\"; URL type: code.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「bsauce/kernel-security-learning」；URL 类型：code。",
      "source_markdown": "https://github.com/bsauce/kernel-security-learning",
      "search_text": "bsauce/kernel-security-learning bsauce/kernel-security-learning    misc  misc primary code https://github.com/bsauce/kernel-security-learning misc code  misc undated linux kernel misc resource \"bsauce/kernel-security-learning\"; url type: code. 未标年份 linux 内核misc资料：「bsauce/kernel-security-learning」；url 类型：code。 # bsauce/kernel-security-learning record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: bsauce/kernel-security-learning resource_label: primary resource_type: code resource_url: https://github.com/bsauce/kernel-security-learning parent_primary_url: https://github.com/bsauce/kernel-security-learning source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/bsauce/kernel-security-learning cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/bsauce/kernel-security-learning context_links: - [code] primary: https://github.com/bsauce/ker no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "f00b747e47a41c84",
      "item_id": "1dd1daf66c53b24f",
      "slug": "undated-misc-hackedteam-primary-ceec86dc",
      "year": null,
      "title": "hackedteam",
      "item_title": "hackedteam",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/hackedteam",
      "primary_url": "https://github.com/hackedteam",
      "parent_primary_url": "https://github.com/hackedteam",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-hackedteam-primary-ceec86dc.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# hackedteam record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: hackedteam resource_label: primary resource_type: code resource_url: https://github.com/hackedteam parent_primary_url: https://github.com/hackedteam source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/hackedteam cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/hackedteam context_links: - [code] primary: https://github.com/hackedteam fetch_status: skipped fetch_note: original URL is preserved; public dataset stores metadata and short excerpts rather than re",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/hackedteam"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/hackedteam"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/hackedteam"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"hackedteam\"; URL type: code.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「hackedteam」；URL 类型：code。",
      "source_markdown": "https://github.com/hackedteam",
      "search_text": "hackedteam hackedteam    misc  misc primary code https://github.com/hackedteam misc code  misc undated linux kernel misc resource \"hackedteam\"; url type: code. 未标年份 linux 内核misc资料：「hackedteam」；url 类型：code。 # hackedteam record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: hackedteam resource_label: primary resource_type: code resource_url: https://github.com/hackedteam parent_primary_url: https://github.com/hackedteam source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/hackedteam cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/hackedteam context_links: - [code] primary: https://github.com/hackedteam fetch_status: skipped fetch_note: original url is preserved; public dataset stores metadata and short excerpts rather than re no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "7e56e6c662becce0",
      "item_id": "c58f6231d65b0049",
      "slug": "undated-misc-viewforum-primary-0af16a01",
      "year": null,
      "title": "viewforum",
      "item_title": "viewforum",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://forums.grsecurity.net/viewforum.php?f=7",
      "primary_url": "https://forums.grsecurity.net/viewforum.php?f=7",
      "parent_primary_url": "https://forums.grsecurity.net/viewforum.php?f=7",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-viewforum-primary-0af16a01.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# viewforum record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: viewforum resource_label: primary resource_type: article resource_url: https://forums.grsecurity.net/viewforum.php?f=7 parent_primary_url: https://forums.grsecurity.net/viewforum.php?f=7 source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://forums.grsecurity.net/viewforum.php?f=7 cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://forums.grsecurity.net/viewforum.php?f=7 fetch_status: skipped fetch_note: original URL is preserved; public datas",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://forums.grsecurity.net/viewforum.php?f=7"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://forums.grsecurity.net/viewforum.php?f=7"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"viewforum\"; URL type: article.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「viewforum」；URL 类型：article。",
      "source_markdown": "https://forums.grsecurity.net/viewforum.php?f=7",
      "search_text": "viewforum viewforum    misc  misc primary article https://forums.grsecurity.net/viewforum.php?f=7 misc article  misc undated linux kernel misc resource \"viewforum\"; url type: article. 未标年份 linux 内核misc资料：「viewforum」；url 类型：article。 # viewforum record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: viewforum resource_label: primary resource_type: article resource_url: https://forums.grsecurity.net/viewforum.php?f=7 parent_primary_url: https://forums.grsecurity.net/viewforum.php?f=7 source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://forums.grsecurity.net/viewforum.php?f=7 cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://forums.grsecurity.net/viewforum.php?f=7 fetch_status: skipped fetch_note: original url is preserved; public datas no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "adb10813ac2974e7",
      "item_id": "57806fadec4b8dcf",
      "slug": "undated-misc-jameshilliard-linux-grsec-primary-6c979790",
      "year": null,
      "title": "jameshilliard/linux-grsec",
      "item_title": "jameshilliard/linux-grsec",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/jameshilliard/linux-grsec/",
      "primary_url": "https://github.com/jameshilliard/linux-grsec/",
      "parent_primary_url": "https://github.com/jameshilliard/linux-grsec/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-jameshilliard-linux-grsec-primary-6c979790.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# jameshilliard/linux-grsec record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: jameshilliard/linux-grsec resource_label: primary resource_type: code resource_url: https://github.com/jameshilliard/linux-grsec/ parent_primary_url: https://github.com/jameshilliard/linux-grsec/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/jameshilliard/linux-grsec/ cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/jameshilliard/linux-grsec/ context_links: - [code] primary: https://github.com/jameshilliard/linux-grsec/ fetch_status: s",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/jameshilliard/linux-grsec/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/jameshilliard/linux-grsec/"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/jameshilliard/linux-grsec/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"jameshilliard/linux-grsec\"; URL type: code.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「jameshilliard/linux-grsec」；URL 类型：code。",
      "source_markdown": "https://github.com/jameshilliard/linux-grsec/",
      "search_text": "jameshilliard/linux-grsec jameshilliard/linux-grsec    misc  misc primary code https://github.com/jameshilliard/linux-grsec/ misc code  misc undated linux kernel misc resource \"jameshilliard/linux-grsec\"; url type: code. 未标年份 linux 内核misc资料：「jameshilliard/linux-grsec」；url 类型：code。 # jameshilliard/linux-grsec record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: jameshilliard/linux-grsec resource_label: primary resource_type: code resource_url: https://github.com/jameshilliard/linux-grsec/ parent_primary_url: https://github.com/jameshilliard/linux-grsec/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/jameshilliard/linux-grsec/ cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/jameshilliard/linux-grsec/ context_links: - [code] primary: https://github.com/jameshilliard/linux-grsec/ fetch_status: s no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "3c391ce49a0bd036",
      "item_id": "6b5bd52f95f99576",
      "slug": "undated-misc-videos-primary-f94f9904",
      "year": null,
      "title": "videos",
      "item_title": "videos",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "video",
      "resource_url": "https://www.youtube.com/c/dayzerosec/videos",
      "primary_url": "https://www.youtube.com/c/dayzerosec/videos",
      "parent_primary_url": "https://www.youtube.com/c/dayzerosec/videos",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-videos-primary-f94f9904.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# videos record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: videos resource_label: primary resource_type: video resource_url: https://www.youtube.com/c/dayzerosec/videos parent_primary_url: https://www.youtube.com/c/dayzerosec/videos source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://www.youtube.com/c/dayzerosec/videos cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [video] primary: https://www.youtube.com/c/dayzerosec/videos fetch_status: skipped fetch_note: original URL is preserved; public dataset stores metadata and sho",
      "link_types": [
        "video"
      ],
      "links": [
        {
          "label": "primary",
          "type": "video",
          "url": "https://www.youtube.com/c/dayzerosec/videos"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [
          {
            "label": "primary",
            "type": "video",
            "url": "https://www.youtube.com/c/dayzerosec/videos"
          }
        ],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": true,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "video"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"videos\"; URL type: video.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「videos」；URL 类型：video。",
      "source_markdown": "https://www.youtube.com/c/dayzerosec/videos",
      "search_text": "videos videos    misc  misc primary video https://www.youtube.com/c/dayzerosec/videos misc video  misc undated linux kernel misc resource \"videos\"; url type: video. 未标年份 linux 内核misc资料：「videos」；url 类型：video。 # videos record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: videos resource_label: primary resource_type: video resource_url: https://www.youtube.com/c/dayzerosec/videos parent_primary_url: https://www.youtube.com/c/dayzerosec/videos source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://www.youtube.com/c/dayzerosec/videos cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [video] primary: https://www.youtube.com/c/dayzerosec/videos fetch_status: skipped fetch_note: original url is preserved; public dataset stores metadata and sho no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "425887dc24a1d6b0",
      "item_id": "24851e8355bde2e9",
      "slug": "undated-misc-milabs-lkrg-bypass-primary-f256af71",
      "year": null,
      "title": "milabs/lkrg-bypass",
      "item_title": "milabs/lkrg-bypass",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/milabs/lkrg-bypass",
      "primary_url": "https://github.com/milabs/lkrg-bypass",
      "parent_primary_url": "https://github.com/milabs/lkrg-bypass",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-milabs-lkrg-bypass-primary-f256af71.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# milabs/lkrg-bypass record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: milabs/lkrg-bypass resource_label: primary resource_type: code resource_url: https://github.com/milabs/lkrg-bypass parent_primary_url: https://github.com/milabs/lkrg-bypass source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/milabs/lkrg-bypass cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/milabs/lkrg-bypass context_links: - [code] primary: https://github.com/milabs/lkrg-bypass fetch_status: skipped fetch_note: original URL is preserved; public d",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/milabs/lkrg-bypass"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/milabs/lkrg-bypass"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/milabs/lkrg-bypass"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"milabs/lkrg-bypass\"; URL type: code.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「milabs/lkrg-bypass」；URL 类型：code。",
      "source_markdown": "https://github.com/milabs/lkrg-bypass",
      "search_text": "milabs/lkrg-bypass milabs/lkrg-bypass    misc  misc primary code https://github.com/milabs/lkrg-bypass misc code  misc undated linux kernel misc resource \"milabs/lkrg-bypass\"; url type: code. 未标年份 linux 内核misc资料：「milabs/lkrg-bypass」；url 类型：code。 # milabs/lkrg-bypass record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: milabs/lkrg-bypass resource_label: primary resource_type: code resource_url: https://github.com/milabs/lkrg-bypass parent_primary_url: https://github.com/milabs/lkrg-bypass source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/milabs/lkrg-bypass cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/milabs/lkrg-bypass context_links: - [code] primary: https://github.com/milabs/lkrg-bypass fetch_status: skipped fetch_note: original url is preserved; public d no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "fc5e464284cbabd6",
      "item_id": "6d63939519fa0950",
      "slug": "undated-misc-v4bel-kernel-exploit-technique-primary-73df02f5",
      "year": null,
      "title": "V4bel/kernel-exploit-technique",
      "item_title": "V4bel/kernel-exploit-technique",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/V4bel/kernel-exploit-technique",
      "primary_url": "https://github.com/V4bel/kernel-exploit-technique",
      "parent_primary_url": "https://github.com/V4bel/kernel-exploit-technique",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-v4bel-kernel-exploit-technique-primary-73df02f5.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# V4bel/kernel-exploit-technique record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: V4bel/kernel-exploit-technique resource_label: primary resource_type: exploit resource_url: https://github.com/V4bel/kernel-exploit-technique parent_primary_url: https://github.com/V4bel/kernel-exploit-technique source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/V4bel/kernel-exploit-technique cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/V4bel/kernel-exploit-technique context_links: - [exploit] primary: https://github.com/V4bel/kernel",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/V4bel/kernel-exploit-technique"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/V4bel/kernel-exploit-technique"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/V4bel/kernel-exploit-technique"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"V4bel/kernel-exploit-technique\"; URL type: exploit.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「V4bel/kernel-exploit-technique」；URL 类型：exploit。",
      "source_markdown": "https://github.com/V4bel/kernel-exploit-technique",
      "search_text": "v4bel/kernel-exploit-technique v4bel/kernel-exploit-technique    misc  misc primary exploit https://github.com/v4bel/kernel-exploit-technique misc exploit  misc undated linux kernel misc resource \"v4bel/kernel-exploit-technique\"; url type: exploit. 未标年份 linux 内核misc资料：「v4bel/kernel-exploit-technique」；url 类型：exploit。 # v4bel/kernel-exploit-technique record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: v4bel/kernel-exploit-technique resource_label: primary resource_type: exploit resource_url: https://github.com/v4bel/kernel-exploit-technique parent_primary_url: https://github.com/v4bel/kernel-exploit-technique source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/v4bel/kernel-exploit-technique cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/v4bel/kernel-exploit-technique context_links: - [exploit] primary: https://github.com/v4bel/kernel no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "4a9751c9409bd841",
      "item_id": "cc5d1a2d2df3a5bc",
      "slug": "undated-misc-mudongliang-reproduce-kernel-bugs-primary-17e67f48",
      "year": null,
      "title": "mudongliang/reproduce_kernel_bugs",
      "item_title": "mudongliang/reproduce_kernel_bugs",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/mudongliang/reproduce_kernel_bugs",
      "primary_url": "https://github.com/mudongliang/reproduce_kernel_bugs",
      "parent_primary_url": "https://github.com/mudongliang/reproduce_kernel_bugs",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-mudongliang-reproduce-kernel-bugs-primary-17e67f48.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# mudongliang/reproduce_kernel_bugs record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: mudongliang/reproduce_kernel_bugs resource_label: primary resource_type: code resource_url: https://github.com/mudongliang/reproduce_kernel_bugs parent_primary_url: https://github.com/mudongliang/reproduce_kernel_bugs source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/mudongliang/reproduce_kernel_bugs cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/mudongliang/reproduce_kernel_bugs context_links: - [code] primary: https://github.co",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/mudongliang/reproduce_kernel_bugs"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/mudongliang/reproduce_kernel_bugs"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/mudongliang/reproduce_kernel_bugs"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"mudongliang/reproduce_kernel_bugs\"; URL type: code.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「mudongliang/reproduce_kernel_bugs」；URL 类型：code。",
      "source_markdown": "https://github.com/mudongliang/reproduce_kernel_bugs",
      "search_text": "mudongliang/reproduce_kernel_bugs mudongliang/reproduce_kernel_bugs    misc  misc primary code https://github.com/mudongliang/reproduce_kernel_bugs misc code  misc undated linux kernel misc resource \"mudongliang/reproduce_kernel_bugs\"; url type: code. 未标年份 linux 内核misc资料：「mudongliang/reproduce_kernel_bugs」；url 类型：code。 # mudongliang/reproduce_kernel_bugs record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: mudongliang/reproduce_kernel_bugs resource_label: primary resource_type: code resource_url: https://github.com/mudongliang/reproduce_kernel_bugs parent_primary_url: https://github.com/mudongliang/reproduce_kernel_bugs source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/mudongliang/reproduce_kernel_bugs cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/mudongliang/reproduce_kernel_bugs context_links: - [code] primary: https://github.co no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "762aa5b15aefac49",
      "item_id": "43bdb7e8ecd92232",
      "slug": "undated-misc-bata24-gef-primary-895ba50b",
      "year": null,
      "title": "bata24/gef",
      "item_title": "bata24/gef",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/bata24/gef",
      "primary_url": "https://github.com/bata24/gef",
      "parent_primary_url": "https://github.com/bata24/gef",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-bata24-gef-primary-895ba50b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# bata24/gef record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: bata24/gef resource_label: primary resource_type: code resource_url: https://github.com/bata24/gef parent_primary_url: https://github.com/bata24/gef source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/bata24/gef cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/bata24/gef context_links: - [code] primary: https://github.com/bata24/gef fetch_status: skipped fetch_note: original URL is preserved; public dataset stores metadata and short excerpts rather than re",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/bata24/gef"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/bata24/gef"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/bata24/gef"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"bata24/gef\"; URL type: code.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「bata24/gef」；URL 类型：code。",
      "source_markdown": "https://github.com/bata24/gef",
      "search_text": "bata24/gef bata24/gef    misc  misc primary code https://github.com/bata24/gef misc code  misc undated linux kernel misc resource \"bata24/gef\"; url type: code. 未标年份 linux 内核misc资料：「bata24/gef」；url 类型：code。 # bata24/gef record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: bata24/gef resource_label: primary resource_type: code resource_url: https://github.com/bata24/gef parent_primary_url: https://github.com/bata24/gef source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/bata24/gef cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/bata24/gef context_links: - [code] primary: https://github.com/bata24/gef fetch_status: skipped fetch_note: original url is preserved; public dataset stores metadata and short excerpts rather than re no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "a01eb686a9aae0da",
      "item_id": "5388a56eaf4c4505",
      "slug": "undated-misc-davidmalcolm-antipatterns-ko-primary-a9e848ea",
      "year": null,
      "title": "davidmalcolm/antipatterns.ko",
      "item_title": "davidmalcolm/antipatterns.ko",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/davidmalcolm/antipatterns.ko",
      "primary_url": "https://github.com/davidmalcolm/antipatterns.ko",
      "parent_primary_url": "https://github.com/davidmalcolm/antipatterns.ko",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-davidmalcolm-antipatterns-ko-primary-a9e848ea.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# davidmalcolm/antipatterns.ko record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: davidmalcolm/antipatterns.ko resource_label: primary resource_type: code resource_url: https://github.com/davidmalcolm/antipatterns.ko parent_primary_url: https://github.com/davidmalcolm/antipatterns.ko source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/davidmalcolm/antipatterns.ko cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/davidmalcolm/antipatterns.ko context_links: - [code] primary: https://github.com/davidmalcolm/antipatterns.ko",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/davidmalcolm/antipatterns.ko"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/davidmalcolm/antipatterns.ko"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/davidmalcolm/antipatterns.ko"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"davidmalcolm/antipatterns.ko\"; URL type: code.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「davidmalcolm/antipatterns.ko」；URL 类型：code。",
      "source_markdown": "https://github.com/davidmalcolm/antipatterns.ko",
      "search_text": "davidmalcolm/antipatterns.ko davidmalcolm/antipatterns.ko    misc  misc primary code https://github.com/davidmalcolm/antipatterns.ko misc code  misc undated linux kernel misc resource \"davidmalcolm/antipatterns.ko\"; url type: code. 未标年份 linux 内核misc资料：「davidmalcolm/antipatterns.ko」；url 类型：code。 # davidmalcolm/antipatterns.ko record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: davidmalcolm/antipatterns.ko resource_label: primary resource_type: code resource_url: https://github.com/davidmalcolm/antipatterns.ko parent_primary_url: https://github.com/davidmalcolm/antipatterns.ko source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/davidmalcolm/antipatterns.ko cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/davidmalcolm/antipatterns.ko context_links: - [code] primary: https://github.com/davidmalcolm/antipatterns.ko no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "867a67cb473693c8",
      "item_id": "b7f4de3e104bf589",
      "slug": "undated-misc-kernel-primary-639c3aec",
      "year": null,
      "title": "kernel",
      "item_title": "kernel",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://kernel.dance/",
      "primary_url": "https://kernel.dance/",
      "parent_primary_url": "https://kernel.dance/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-kernel-primary-639c3aec.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# kernel record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: kernel resource_label: primary resource_type: article resource_url: https://kernel.dance/ parent_primary_url: https://kernel.dance/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://kernel.dance/ cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://kernel.dance/ fetch_status: skipped fetch_note: original URL is preserved; public dataset stores metadata and short excerpts rather than republishing full third-party articles.",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://kernel.dance/"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://kernel.dance/"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "article"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"kernel\"; URL type: article.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「kernel」；URL 类型：article。",
      "source_markdown": "https://kernel.dance/",
      "search_text": "kernel kernel    misc  misc primary article https://kernel.dance/ misc article  misc undated linux kernel misc resource \"kernel\"; url type: article. 未标年份 linux 内核misc资料：「kernel」；url 类型：article。 # kernel record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: kernel resource_label: primary resource_type: article resource_url: https://kernel.dance/ parent_primary_url: https://kernel.dance/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://kernel.dance/ cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://kernel.dance/ fetch_status: skipped fetch_note: original url is preserved; public dataset stores metadata and short excerpts rather than republishing full third-party articles. no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "af0c247fb8317fee",
      "item_id": "e3c107a6ecc4d178",
      "slug": "undated-misc-0xricksanchez-like-dbg-primary-cb21df40",
      "year": null,
      "title": "0xricksanchez/like-dbg",
      "item_title": "0xricksanchez/like-dbg",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/0xricksanchez/like-dbg",
      "primary_url": "https://github.com/0xricksanchez/like-dbg",
      "parent_primary_url": "https://github.com/0xricksanchez/like-dbg",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-0xricksanchez-like-dbg-primary-cb21df40.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 0xricksanchez/like-dbg record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: 0xricksanchez/like-dbg resource_label: primary resource_type: code resource_url: https://github.com/0xricksanchez/like-dbg parent_primary_url: https://github.com/0xricksanchez/like-dbg source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/0xricksanchez/like-dbg cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/0xricksanchez/like-dbg context_links: - [code] primary: https://github.com/0xricksanchez/like-dbg fetch_status: skipped fetch_note: origina",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/0xricksanchez/like-dbg"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/0xricksanchez/like-dbg"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/0xricksanchez/like-dbg"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"0xricksanchez/like-dbg\"; URL type: code.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「0xricksanchez/like-dbg」；URL 类型：code。",
      "source_markdown": "https://github.com/0xricksanchez/like-dbg",
      "search_text": "0xricksanchez/like-dbg 0xricksanchez/like-dbg    misc  misc primary code https://github.com/0xricksanchez/like-dbg misc code  misc undated linux kernel misc resource \"0xricksanchez/like-dbg\"; url type: code. 未标年份 linux 内核misc资料：「0xricksanchez/like-dbg」；url 类型：code。 # 0xricksanchez/like-dbg record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: 0xricksanchez/like-dbg resource_label: primary resource_type: code resource_url: https://github.com/0xricksanchez/like-dbg parent_primary_url: https://github.com/0xricksanchez/like-dbg source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/0xricksanchez/like-dbg cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/0xricksanchez/like-dbg context_links: - [code] primary: https://github.com/0xricksanchez/like-dbg fetch_status: skipped fetch_note: origina no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "551523ca650b0e0c",
      "item_id": "9f74590b5a24f149",
      "slug": "undated-misc-ameetsaahu-kernel-exploitation-primary-9249c2bb",
      "year": null,
      "title": "ameetsaahu/Kernel-exploitation",
      "item_title": "ameetsaahu/Kernel-exploitation",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "exploit",
      "resource_url": "https://github.com/ameetsaahu/Kernel-exploitation",
      "primary_url": "https://github.com/ameetsaahu/Kernel-exploitation",
      "parent_primary_url": "https://github.com/ameetsaahu/Kernel-exploitation",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-ameetsaahu-kernel-exploitation-primary-9249c2bb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# ameetsaahu/Kernel-exploitation record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: ameetsaahu/Kernel-exploitation resource_label: primary resource_type: exploit resource_url: https://github.com/ameetsaahu/Kernel-exploitation parent_primary_url: https://github.com/ameetsaahu/Kernel-exploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/ameetsaahu/Kernel-exploitation cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/ameetsaahu/Kernel-exploitation context_links: - [exploit] primary: https://github.com/ameetsaahu/K",
      "link_types": [
        "exploit"
      ],
      "links": [
        {
          "label": "primary",
          "type": "exploit",
          "url": "https://github.com/ameetsaahu/Kernel-exploitation"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [
          {
            "label": "primary",
            "type": "exploit",
            "url": "https://github.com/ameetsaahu/Kernel-exploitation"
          }
        ],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": true,
      "has_exploit_link": true,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/ameetsaahu/Kernel-exploitation"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "exploit"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"ameetsaahu/Kernel-exploitation\"; URL type: exploit.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「ameetsaahu/Kernel-exploitation」；URL 类型：exploit。",
      "source_markdown": "https://github.com/ameetsaahu/Kernel-exploitation",
      "search_text": "ameetsaahu/kernel-exploitation ameetsaahu/kernel-exploitation    misc  misc primary exploit https://github.com/ameetsaahu/kernel-exploitation misc exploit  misc undated linux kernel misc resource \"ameetsaahu/kernel-exploitation\"; url type: exploit. 未标年份 linux 内核misc资料：「ameetsaahu/kernel-exploitation」；url 类型：exploit。 # ameetsaahu/kernel-exploitation record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: ameetsaahu/kernel-exploitation resource_label: primary resource_type: exploit resource_url: https://github.com/ameetsaahu/kernel-exploitation parent_primary_url: https://github.com/ameetsaahu/kernel-exploitation source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/ameetsaahu/kernel-exploitation cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: true has_exploit_link: true code_urls: https://github.com/ameetsaahu/kernel-exploitation context_links: - [exploit] primary: https://github.com/ameetsaahu/k no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact has-poc poc proof-of-concept"
    },
    {
      "id": "822f9f0edf9268a1",
      "item_id": "d428586c4278caac",
      "slug": "undated-misc-cmu-pasta-linux-kernel-enriched-corpus-primary-9482508b",
      "year": null,
      "title": "cmu-pasta/linux-kernel-enriched-corpus",
      "item_title": "cmu-pasta/linux-kernel-enriched-corpus",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/cmu-pasta/linux-kernel-enriched-corpus",
      "primary_url": "https://github.com/cmu-pasta/linux-kernel-enriched-corpus",
      "parent_primary_url": "https://github.com/cmu-pasta/linux-kernel-enriched-corpus",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-cmu-pasta-linux-kernel-enriched-corpus-primary-9482508b.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# cmu-pasta/linux-kernel-enriched-corpus record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: cmu-pasta/linux-kernel-enriched-corpus resource_label: primary resource_type: code resource_url: https://github.com/cmu-pasta/linux-kernel-enriched-corpus parent_primary_url: https://github.com/cmu-pasta/linux-kernel-enriched-corpus source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/cmu-pasta/linux-kernel-enriched-corpus cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/cmu-pasta/linux-kernel-enriched-corpus context_links: - [co",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/cmu-pasta/linux-kernel-enriched-corpus"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/cmu-pasta/linux-kernel-enriched-corpus"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/cmu-pasta/linux-kernel-enriched-corpus"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Misc",
        "code"
      ],
      "affected_area": "",
      "exploit_stage": "Misc",
      "summary_en": "Undated Linux kernel Misc resource \"cmu-pasta/linux-kernel-enriched-corpus\"; URL type: code.",
      "summary_zh": "未标年份 Linux 内核Misc资料：「cmu-pasta/linux-kernel-enriched-corpus」；URL 类型：code。",
      "source_markdown": "https://github.com/cmu-pasta/linux-kernel-enriched-corpus",
      "search_text": "cmu-pasta/linux-kernel-enriched-corpus cmu-pasta/linux-kernel-enriched-corpus    misc  misc primary code https://github.com/cmu-pasta/linux-kernel-enriched-corpus misc code  misc undated linux kernel misc resource \"cmu-pasta/linux-kernel-enriched-corpus\"; url type: code. 未标年份 linux 内核misc资料：「cmu-pasta/linux-kernel-enriched-corpus」；url 类型：code。 # cmu-pasta/linux-kernel-enriched-corpus record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: cmu-pasta/linux-kernel-enriched-corpus resource_label: primary resource_type: code resource_url: https://github.com/cmu-pasta/linux-kernel-enriched-corpus parent_primary_url: https://github.com/cmu-pasta/linux-kernel-enriched-corpus source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/cmu-pasta/linux-kernel-enriched-corpus cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/cmu-pasta/linux-kernel-enriched-corpus context_links: - [co no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "2034b665213322a5",
      "item_id": "a99283f106b50065",
      "slug": "undated-misc-niveb-nocrypt-primary-50cafeec",
      "year": null,
      "title": "niveb/NoCrypt",
      "item_title": "niveb/NoCrypt",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/niveb/NoCrypt",
      "primary_url": "https://github.com/niveb/NoCrypt",
      "parent_primary_url": "https://github.com/niveb/NoCrypt",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-niveb-nocrypt-primary-50cafeec.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# niveb/NoCrypt record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: niveb/NoCrypt resource_label: primary resource_type: code resource_url: https://github.com/niveb/NoCrypt parent_primary_url: https://github.com/niveb/NoCrypt source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/niveb/NoCrypt cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/niveb/NoCrypt context_links: - [code] primary: https://github.com/niveb/NoCrypt fetch_status: skipped fetch_note: original URL is preserved; public dataset stores metadata and short ex",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/niveb/NoCrypt"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/niveb/NoCrypt"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/niveb/NoCrypt"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "security",
        "encryption",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "NoCrypt is a tool designed to enhance security by eliminating the need for cryptographic keys in certain contexts.",
      "summary_zh": "NoCrypt是一个旨在通过消除在某些上下文中对加密密钥的需求来增强安全性的工具。",
      "source_markdown": "https://github.com/niveb/NoCrypt",
      "search_text": "niveb/nocrypt niveb/nocrypt    misc  misc primary code https://github.com/niveb/nocrypt security encryption tool  defensive research nocrypt is a tool designed to enhance security by eliminating the need for cryptographic keys in certain contexts. nocrypt是一个旨在通过消除在某些上下文中对加密密钥的需求来增强安全性的工具。 # niveb/nocrypt record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: niveb/nocrypt resource_label: primary resource_type: code resource_url: https://github.com/niveb/nocrypt parent_primary_url: https://github.com/niveb/nocrypt source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/niveb/nocrypt cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/niveb/nocrypt context_links: - [code] primary: https://github.com/niveb/nocrypt fetch_status: skipped fetch_note: original url is preserved; public dataset stores metadata and short ex no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "6fbacef69b4fe56b",
      "item_id": "4a721d17d443c74f",
      "slug": "undated-misc-1681924752800366592-primary-aaaab218",
      "year": null,
      "title": "1681924752800366592",
      "item_title": "1681924752800366592",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "article",
      "resource_url": "https://twitter.com/sirdarckcat/status/1681924752800366592",
      "primary_url": "https://twitter.com/sirdarckcat/status/1681924752800366592",
      "parent_primary_url": "https://twitter.com/sirdarckcat/status/1681924752800366592",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-1681924752800366592-primary-aaaab218.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# 1681924752800366592 record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: 1681924752800366592 resource_label: primary resource_type: article resource_url: https://twitter.com/sirdarckcat/status/1681924752800366592 parent_primary_url: https://twitter.com/sirdarckcat/status/1681924752800366592 source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://twitter.com/sirdarckcat/status/1681924752800366592 cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://twitter.com/sirdarckcat/status/1681924752800366592 fetch_sta",
      "link_types": [
        "article"
      ],
      "links": [
        {
          "label": "primary",
          "type": "article",
          "url": "https://twitter.com/sirdarckcat/status/1681924752800366592"
        }
      ],
      "link_buckets": {
        "article": [
          {
            "label": "primary",
            "type": "article",
            "url": "https://twitter.com/sirdarckcat/status/1681924752800366592"
          }
        ],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": false,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": false,
      "code_urls": [],
      "is_code_resource": false,
      "is_media_resource": false,
      "is_text_resource": true,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "vulnerability",
        "discussion",
        "insight"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "This Twitter thread discusses insights related to Linux security vulnerabilities.",
      "summary_zh": "该推特线程讨论了与Linux安全漏洞相关的见解。",
      "source_markdown": "https://twitter.com/sirdarckcat/status/1681924752800366592",
      "search_text": "1681924752800366592 1681924752800366592    misc  misc primary article https://twitter.com/sirdarckcat/status/1681924752800366592 vulnerability discussion insight  defensive research this twitter thread discusses insights related to linux security vulnerabilities. 该推特线程讨论了与linux安全漏洞相关的见解。 # 1681924752800366592 record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: 1681924752800366592 resource_label: primary resource_type: article resource_url: https://twitter.com/sirdarckcat/status/1681924752800366592 parent_primary_url: https://twitter.com/sirdarckcat/status/1681924752800366592 source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://twitter.com/sirdarckcat/status/1681924752800366592 cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: false has_poc: false has_exploit_link: false code_urls: none context_links: - [article] primary: https://twitter.com/sirdarckcat/status/1681924752800366592 fetch_sta no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.    "
    },
    {
      "id": "8cd5c20a58690084",
      "item_id": "8f3de8e090233ae8",
      "slug": "undated-misc-hardenedvault-ved-ebpf-primary-1114a395",
      "year": null,
      "title": "hardenedvault/ved-ebpf",
      "item_title": "hardenedvault/ved-ebpf",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/hardenedvault/ved-ebpf",
      "primary_url": "https://github.com/hardenedvault/ved-ebpf",
      "parent_primary_url": "https://github.com/hardenedvault/ved-ebpf",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-hardenedvault-ved-ebpf-primary-1114a395.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# hardenedvault/ved-ebpf record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: hardenedvault/ved-ebpf resource_label: primary resource_type: code resource_url: https://github.com/hardenedvault/ved-ebpf parent_primary_url: https://github.com/hardenedvault/ved-ebpf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/hardenedvault/ved-ebpf cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/hardenedvault/ved-ebpf context_links: - [code] primary: https://github.com/hardenedvault/ved-ebpf fetch_status: skipped fetch_note: origina",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/hardenedvault/ved-ebpf"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/hardenedvault/ved-ebpf"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/hardenedvault/ved-ebpf"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "eBPF",
        "security",
        "tool"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "ved-ebpf is a project focused on enhancing the security of eBPF in Linux environments.",
      "summary_zh": "ved-ebpf是一个专注于增强Linux环境中eBPF安全性的项目。",
      "source_markdown": "https://github.com/hardenedvault/ved-ebpf",
      "search_text": "hardenedvault/ved-ebpf hardenedvault/ved-ebpf    misc  misc primary code https://github.com/hardenedvault/ved-ebpf ebpf security tool  defensive research ved-ebpf is a project focused on enhancing the security of ebpf in linux environments. ved-ebpf是一个专注于增强linux环境中ebpf安全性的项目。 # hardenedvault/ved-ebpf record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: hardenedvault/ved-ebpf resource_label: primary resource_type: code resource_url: https://github.com/hardenedvault/ved-ebpf parent_primary_url: https://github.com/hardenedvault/ved-ebpf source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/hardenedvault/ved-ebpf cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/hardenedvault/ved-ebpf context_links: - [code] primary: https://github.com/hardenedvault/ved-ebpf fetch_status: skipped fetch_note: origina no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "5e17c74e7cc96f9a",
      "item_id": "46ddb76316bfa259",
      "slug": "undated-misc-thebabush-linux-russian-roulette-primary-a95939cb",
      "year": null,
      "title": "thebabush/linux-russian-roulette",
      "item_title": "thebabush/linux-russian-roulette",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/thebabush/linux-russian-roulette",
      "primary_url": "https://github.com/thebabush/linux-russian-roulette",
      "parent_primary_url": "https://github.com/thebabush/linux-russian-roulette",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-thebabush-linux-russian-roulette-primary-a95939cb.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# thebabush/linux-russian-roulette record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: thebabush/linux-russian-roulette resource_label: primary resource_type: code resource_url: https://github.com/thebabush/linux-russian-roulette parent_primary_url: https://github.com/thebabush/linux-russian-roulette source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/thebabush/linux-russian-roulette cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/thebabush/linux-russian-roulette context_links: - [code] primary: https://github.com/theb",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/thebabush/linux-russian-roulette"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/thebabush/linux-russian-roulette"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/thebabush/linux-russian-roulette"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "fuzzing",
        "randomness",
        "testing"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "linux-russian-roulette is a tool that introduces randomness into the Linux kernel to enhance security testing.",
      "summary_zh": "linux-russian-roulette是一个工具，通过在Linux内核中引入随机性来增强安全性测试。",
      "source_markdown": "https://github.com/thebabush/linux-russian-roulette",
      "search_text": "thebabush/linux-russian-roulette thebabush/linux-russian-roulette    misc  misc primary code https://github.com/thebabush/linux-russian-roulette fuzzing randomness testing  defensive research linux-russian-roulette is a tool that introduces randomness into the linux kernel to enhance security testing. linux-russian-roulette是一个工具，通过在linux内核中引入随机性来增强安全性测试。 # thebabush/linux-russian-roulette record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: thebabush/linux-russian-roulette resource_label: primary resource_type: code resource_url: https://github.com/thebabush/linux-russian-roulette parent_primary_url: https://github.com/thebabush/linux-russian-roulette source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/thebabush/linux-russian-roulette cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/thebabush/linux-russian-roulette context_links: - [code] primary: https://github.com/theb no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "991eb731166e54d6",
      "item_id": "aa67b4fc214f4337",
      "slug": "undated-misc-kspp-github-primary-be0a4986",
      "year": null,
      "title": "kspp.github",
      "item_title": "kspp.github",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://kspp.github.io/",
      "primary_url": "https://kspp.github.io/",
      "parent_primary_url": "https://kspp.github.io/",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-kspp-github-primary-be0a4986.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# kspp.github record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: kspp.github resource_label: primary resource_type: code resource_url: https://kspp.github.io/ parent_primary_url: https://kspp.github.io/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://kspp.github.io/ cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://kspp.github.io/ context_links: - [code] primary: https://kspp.github.io/ fetch_status: skipped fetch_note: original URL is preserved; public dataset stores metadata and short excerpts rather than republishing full third-party ",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://kspp.github.io/"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://kspp.github.io/"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://kspp.github.io/"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "kernel",
        "self-protection",
        "resource"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "kspp.github provides resources and information related to kernel self-protection projects.",
      "summary_zh": "kspp.github提供与内核自我保护项目相关的资源和信息。",
      "source_markdown": "https://kspp.github.io/",
      "search_text": "kspp.github kspp.github    misc  misc primary code https://kspp.github.io/ kernel self-protection resource  defensive research kspp.github provides resources and information related to kernel self-protection projects. kspp.github提供与内核自我保护项目相关的资源和信息。 # kspp.github record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: kspp.github resource_label: primary resource_type: code resource_url: https://kspp.github.io/ parent_primary_url: https://kspp.github.io/ source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://kspp.github.io/ cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://kspp.github.io/ context_links: - [code] primary: https://kspp.github.io/ fetch_status: skipped fetch_note: original url is preserved; public dataset stores metadata and short excerpts rather than republishing full third-party  no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    },
    {
      "id": "960139fb76fcf293",
      "item_id": "9c494b78cad392c2",
      "slug": "undated-misc-androidoffsec-libdevbinder-primary-043ea3c9",
      "year": null,
      "title": "androidoffsec/libdevbinder",
      "item_title": "androidoffsec/libdevbinder",
      "authors": [],
      "cves": [],
      "tags": [],
      "section": "Misc",
      "subsection": "",
      "section_path": "Misc",
      "category": "Misc",
      "vulnerability_class": "",
      "resource_label": "primary",
      "resource_type": "code",
      "resource_url": "https://github.com/androidoffsec/libdevbinder",
      "primary_url": "https://github.com/androidoffsec/libdevbinder",
      "parent_primary_url": "https://github.com/androidoffsec/libdevbinder",
      "source_url": "https://github.com/xairy/linux-kernel-exploitation#misc",
      "raw_path": "/raw/undated-misc-androidoffsec-libdevbinder-primary-043ea3c9.txt",
      "raw_status": "skipped",
      "raw_excerpt": "# androidoffsec/libdevbinder record_kind: linux-kernel-resource-url section: Misc subsection: none category: Misc item_title: androidoffsec/libdevbinder resource_label: primary resource_type: code resource_url: https://github.com/androidoffsec/libdevbinder parent_primary_url: https://github.com/androidoffsec/libdevbinder source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/androidoffsec/libdevbinder cves: none android_impact_status: no android_impact_reason: Not enough evidence that this resource maps to released Android devices. ios_impact_status: no ios_impact_reason: Production iOS devices use Apple's XNU kernel rather than Linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/androidoffsec/libdevbinder context_links: - [code] primary: https://github.com/androidoffsec/libdevbinder fetch_status:",
      "link_types": [
        "code"
      ],
      "links": [
        {
          "label": "primary",
          "type": "code",
          "url": "https://github.com/androidoffsec/libdevbinder"
        }
      ],
      "link_buckets": {
        "article": [],
        "paper": [],
        "slides": [],
        "video": [],
        "audio": [],
        "code": [
          {
            "label": "primary",
            "type": "code",
            "url": "https://github.com/androidoffsec/libdevbinder"
          }
        ],
        "exploit": [],
        "poc": [],
        "other": []
      },
      "has_code": true,
      "has_poc": false,
      "has_exploit_link": false,
      "has_artifact": true,
      "code_urls": [
        "https://github.com/androidoffsec/libdevbinder"
      ],
      "is_code_resource": true,
      "is_media_resource": false,
      "is_text_resource": false,
      "android_impact_status": "no",
      "android_related": false,
      "android_affected": false,
      "android_confirmed": false,
      "android_impact_reason": "Not enough evidence that this resource maps to released Android devices.",
      "ios_impact_status": "no",
      "ios_related": false,
      "ios_affected": false,
      "ios_confirmed": false,
      "ios_impact_reason": "Production iOS devices use Apple's XNU kernel rather than Linux.",
      "technique_tags": [
        "Android",
        "security",
        "library"
      ],
      "affected_area": "",
      "exploit_stage": "defensive research",
      "summary_en": "libdevbinder is a library aimed at improving the security of device binding in Android systems.",
      "summary_zh": "libdevbinder是一个旨在提高Android系统中设备绑定安全性的库。",
      "source_markdown": "https://github.com/androidoffsec/libdevbinder",
      "search_text": "androidoffsec/libdevbinder androidoffsec/libdevbinder    misc  misc primary code https://github.com/androidoffsec/libdevbinder android security library  defensive research libdevbinder is a library aimed at improving the security of device binding in android systems. libdevbinder是一个旨在提高android系统中设备绑定安全性的库。 # androidoffsec/libdevbinder record_kind: linux-kernel-resource-url section: misc subsection: none category: misc item_title: androidoffsec/libdevbinder resource_label: primary resource_type: code resource_url: https://github.com/androidoffsec/libdevbinder parent_primary_url: https://github.com/androidoffsec/libdevbinder source_section_url: https://github.com/xairy/linux-kernel-exploitation#misc source_item: https://github.com/androidoffsec/libdevbinder cves: none android_impact_status: no android_impact_reason: not enough evidence that this resource maps to released android devices. ios_impact_status: no ios_impact_reason: production ios devices use apple's xnu kernel rather than linux. has_code: true has_poc: false has_exploit_link: false code_urls: https://github.com/androidoffsec/libdevbinder context_links: - [code] primary: https://github.com/androidoffsec/libdevbinder fetch_status: no not enough evidence that this resource maps to released android devices. no production ios devices use apple's xnu kernel rather than linux.   has-code code poc artifact "
    }
  ]
}